00000)="a0870e28d157a816e83840cbe9a8dd6d6b1b17f71bf7ab4d2d6bd163a6545c33996fb9dba15d2f40187cc2c3ee6c506b62bc891169d641e8ec75e0fe62dde7546b46d53bb835a4ebbb9b4bed866e7469025837f2a4ba1ed50d3acd818ca7e77302bb69bb2c583bdb178c0d82926e5ecc8d0c196bf183e550e8827db9ff080eae30efc84c66dea12941752b8968e2a71a8a7531d6b3f194ada501137155487ca9f72bd4329c96c13ba4f2e13d690daa864c28d35dcffb80b8702860763a3e13f23c3dc0007e5e9229e0620d4ee86f1083a70bdbb43d178c00d18e2fdfddc2", 0xde, 0x80, &(0x7f0000000140)={{0x3, @bcast, 0x5}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x1f)

08:04:24 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x8, 0x0, &(0x7f0000001c40)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = socket$inet(0x2, 0x3, 0x19)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@loopback}}, 0xe8)
r4 = getpgrp(0x0)
process_vm_readv(r4, &(0x7f0000001a00)=[{&(0x7f0000000100)=""/95, 0x5f}, {&(0x7f0000000300)=""/59, 0x3b}, {&(0x7f0000000440)=""/224, 0xe0}, {&(0x7f0000000540)=""/107, 0x6b}, {&(0x7f00000005c0)=""/145, 0x91}, {&(0x7f0000000680)=""/216, 0xd8}, {&(0x7f0000000780)=""/235, 0xeb}, {&(0x7f0000000880)=""/4096, 0x1000}, {&(0x7f0000001880)=""/249, 0xf9}, {&(0x7f0000001980)=""/93, 0x5d}], 0xa, &(0x7f0000000340)=[{&(0x7f0000001ac0)=""/236, 0xec}], 0x1, 0x0)
setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x16, &(0x7f0000001c80)=ANY=[@ANYBLOB="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"], 0x90)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r5 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r5, &(0x7f0000fca000), 0x0, &(0x7f0000fcafa0)=[{&(0x7f00000001c0)=""/145, 0x91}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:25 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x3b9, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:25 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
r2 = mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2000004, 0x2110, r1, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000380)={0xac, 0x0, &(0x7f0000000200)=[@reply_sg={0x40486312, {{0x1, 0x0, 0x2, 0x0, 0x10, 0x0, 0x0, 0x30, 0x48, &(0x7f00000000c0)=[@flat={0x77622a85, 0x1, r2, 0x1}, @fd={0x66642a85, 0x0, r1, 0x0, 0x1}], &(0x7f0000000100)=[0x20, 0x0, 0x30, 0x28, 0x68, 0x78, 0x40, 0xe2d89f7fe9e8ae48, 0x60]}, 0x7}}, @reply={0x40406301, {0x2, 0x0, 0x4, 0x0, 0x10, 0x0, 0x0, 0x18, 0x10, &(0x7f0000000180)=[@fd={0x66642a85, 0x0, r1, 0x0, 0x3}], &(0x7f00000001c0)=[0x30, 0x38]}}, @enter_looper, @release, @dead_binder_done, @register_looper], 0x90, 0x0, &(0x7f00000002c0)="39a6b0bda07bc8948e47e1ccdf71492dbcfc9ceef44d06090b544cf47a8f973a3bb7faaa31dd2a47455b2ade6e0838fcdc2a9d2a9c1747873ef3e04ce91d4ac271493685ac5298d7b1407196532fee6211b24d3b5a8eca4a46fb54dbe4231808ba9bb3d254f6c9e009fe43edc5e5dfbbc3b791e5caf99cd8fc0c8cc3dca9c0e28d043aaaa58d6dd4cd98549a070a7503"})
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:25 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f00000000c0)="002c5150ba8d346f7fc91a72680925f37018ffed89dd0bfe6ce780751bee1a8be6b961b0a5a316930718fec599176ea8cc0e12be2f5775d56fe05f8aa6a60b1471d851efbebb5ff8436724e1b11da9ebada92094d0b87a58d0f4268f09545141fba36c8800f1d0b4a2708cb6bc9175ad67710f9fd33c2dbf2117b274480d1675b03a6c9357c9cb5718b9dbb318cf8c9a0b18fd95528a4886c069")
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:04:25 executing program 2:
r0 = open(0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x89a0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$capi20(0xffffffffffffff9c, 0x0, 0x40, 0x0)
shutdown(0xffffffffffffffff, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(0xffffffffffffffff, 0x12, 0x2, 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x402080, 0x41)
connect$inet6(r0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r4, &(0x7f0000000400)="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", 0x1f0)
sendfile(0xffffffffffffffff, r5, 0x0, 0x10000)
linkat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0)

08:04:25 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0xfffffdba}], 0x1)

08:04:25 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='coredump_filter\x00')
syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x0)
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video35\x00', 0x2, 0x0)

08:04:25 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c12a41d88b070abc11791d6367d71b83ef66b866d2f4d")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:25 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x3d0, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:25 executing program 1:
r0 = openat$cgroup_type(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.type\x00', 0x2, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0)
r1 = accept4$vsock_stream(0xffffffffffffff9c, &(0x7f0000000100)={0x28, 0x0, 0x0, @host}, 0x10, 0x800)
fcntl$dupfd(r0, 0x0, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x1, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:25 executing program 0:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000080)='coredump_filter\x00'}, 0x30)
gettid()
r0 = gettid()
r1 = syz_open_procfs(r0, &(0x7f0000000340)='net/icmp6\x00')
r2 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$sock_inet6_tcp_SIOCINQ(r2, 0xc0386105, &(0x7f0000000040))
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0xb5, 0x2)

08:04:25 executing program 2:
r0 = open(0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x89a0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$capi20(0xffffffffffffff9c, 0x0, 0x40, 0x0)
shutdown(r0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(0xffffffffffffffff, 0x12, 0x2, 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x402080, 0x41)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r4, &(0x7f0000000400)="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", 0x1f0)
sendfile(0xffffffffffffffff, r5, 0x0, 0x10000)
linkat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0)

08:04:25 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x3, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x924b, 0x10200)

08:04:25 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x7ffffff2, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:25 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
r1 = openat$cgroup_subtree(r0, &(0x7f0000000000)='cgroup.subtree_control\x00', 0x2, 0x0)
write$FUSE_INTERRUPT(r0, &(0x7f0000000040)={0x10, 0x0, 0x3}, 0x10)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000140)=ANY=[@ANYBLOB="010000800000000005000000000000000800000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="00000000050000000000000000000000000000000000000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r0, @ANYBLOB="00000000010000000000000000000000000000000000000000000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'])
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:26 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x4e24, @empty}})
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:04:26 executing program 2:
r0 = open(0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x89a0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$capi20(0xffffffffffffff9c, 0x0, 0x40, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
bind$rds(r5, &(0x7f00000001c0)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(0xffffffffffffffff, 0x12, 0x2, 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x402080, 0x41)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$P9_RLINK(r4, &(0x7f0000000200)={0x7, 0x47, 0x2}, 0x7)
r6 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r6, &(0x7f0000000400)="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", 0x1f0)
sendfile(0xffffffffffffffff, r7, 0x0, 0x10000)
linkat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0)

08:04:26 executing program 3:
r0 = userfaultfd(0x80800)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x401, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
fcntl$notify(r1, 0x402, 0x80000004)
r3 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f0000000140)={0x508d, 0x10000000000000, 0x8, 0xfffffffffffffffd, 0x3, 0x0, 0xd8, 0x2, 0x408, 0x3, 0x9, 0x80000001})
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:26 executing program 0:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000000)='coredump_filter\x00'}, 0x30)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='coredump_filter\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f0000000040)="989c932ae5d244a3dc8dfbb633d6ed7e35f932660564b6f2634c48322d4a9585d6bd34a5a3a0e8393a6f459b9c3e395f7a", 0x31}], 0x1)
ioctl$KVM_SET_TSC_KHZ(r1, 0xaea2, 0x4)

08:04:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f00000000c0))
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:26 executing program 0:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='coredump_fi\x8bter\x00')
socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000040)={0x3, [<r2=>0x0, 0x0, 0x0]}, &(0x7f00000000c0)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x7, 0x4, 0x100000000, 0x2, r2}, 0x10)
prctl$PR_GET_CHILD_SUBREAPER(0x25)
writev(r1, &(0x7f00000013c0)=[{&(0x7f0000000140)="cf59b7b9a1de7b7a570efbd1c7f74cccc9777ea10135ae3101ed549e2cdb52484f703e6ca1b59ce53cf27a481c843772d4d70ea3ef729f09b9e59445c9f1604402641234674590824c1b", 0x4a}], 0x1)

[ 1139.074657][T27864] handle_userfault: 3 callbacks suppressed
[ 1139.074667][T27864] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1139.120754][T27864] CPU: 0 PID: 27864 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1139.129807][T27864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1139.139868][T27864] Call Trace:
[ 1139.143190][T27864]  dump_stack+0x172/0x1f0
[ 1139.147544][T27864]  handle_userfault.cold+0x41/0x5d
[ 1139.152666][T27864]  ? __lock_acquire+0x548/0x3fb0
[ 1139.157631][T27864]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1139.162923][T27864]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
08:04:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000001100)='/dev/cec#\x00', 0x3, 0x2)
setsockopt$inet_dccp_buf(r1, 0x21, 0xcd, &(0x7f00000000c0)="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", 0x1000)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000080)={'ipvs\x00'}, &(0x7f00000010c0)=0x1e)

[ 1139.168908][T27864]  ? find_held_lock+0x35/0x130
[ 1139.173682][T27864]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1139.179673][T27864]  ? kasan_check_write+0x14/0x20
[ 1139.184621][T27864]  ? lock_downgrade+0x880/0x880
[ 1139.189488][T27864]  ? kasan_check_read+0x11/0x20
[ 1139.194350][T27864]  ? do_raw_spin_unlock+0x57/0x270
[ 1139.199471][T27864]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1139.205283][T27864]  ? kasan_check_read+0x11/0x20
[ 1139.210190][T27864]  ? __thp_get_unmapped_area+0x190/0x190
[ 1139.215826][T27864]  ? pmd_val+0x100/0x100
[ 1139.215843][T27864]  ? __lock_acquire+0x548/0x3fb0
[ 1139.215857][T27864]  ? __kernel_text_address+0xd/0x40
[ 1139.215883][T27864]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1139.225044][T27864]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1139.225061][T27864]  ? find_held_lock+0x35/0x130
[ 1139.225077][T27864]  ? handle_mm_fault+0x322/0xb30
[ 1139.225107][T27864]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1139.256880][T27864]  ? kasan_check_read+0x11/0x20
[ 1139.261744][T27864]  handle_mm_fault+0x43f/0xb30
[ 1139.266526][T27864]  __get_user_pages+0x7b6/0x1a40
[ 1139.271486][T27864]  ? follow_page_mask+0x19a0/0x19a0
[ 1139.276702][T27864]  ? get_user_pages_remote+0x17d/0x440
[ 1139.282192][T27864]  get_user_pages_remote+0x1a3/0x440
[ 1139.287496][T27864]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1139.293156][T27864]  ? alloc_vmap_area.cold+0x24/0x24
[ 1139.298379][T27864]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1139.304632][T27864]  ? _copy_from_user+0xdd/0x150
[ 1139.309495][T27864]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1139.315228][T27864]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1139.320704][T27864]  process_vm_rw+0x21f/0x240
[ 1139.325306][T27864]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1139.331122][T27864]  ? __might_fault+0x12b/0x1e0
[ 1139.335912][T27864]  ? kasan_check_read+0x11/0x20
[ 1139.340767][T27864]  ? _copy_to_user+0xc9/0x120
[ 1139.345455][T27864]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1139.351707][T27864]  ? nsecs_to_jiffies+0x30/0x30
[ 1139.356577][T27864]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1139.362037][T27864]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1139.367498][T27864]  ? do_syscall_64+0x26/0x610
08:04:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f00000000c0)={0x2, 0x4e21, @remote}, 0x10)

[ 1139.372201][T27864]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1139.377849][T27864]  do_syscall_64+0x103/0x610
[ 1139.382453][T27864]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.388602][T27864] RIP: 0033:0x458209
[ 1139.392500][T27864] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1139.412107][T27864] RSP: 002b:00007f09b4415c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
08:04:26 executing program 2:
r0 = open(0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, 0x0)
ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x4e23, 0x0, @empty, 0xf1e}, 0x1c)
r4 = pkey_alloc(0x0, 0x0)
pkey_free(r4)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$capi20(0xffffffffffffff9c, 0x0, 0x40, 0x0)
shutdown(r0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(0xffffffffffffffff, 0x12, 0x2, 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x402080, 0x41)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={r0, 0x1, 0x1, 0x3f5b, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa}, 0x20)
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r6 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r5, &(0x7f0000000400)="34fd98aa1d0e7adec937a5f331a75f487934f50242a0751944936972896c29a5068c8ecba1aa0a4e2a631b5180e1fbde79f4502dc4c4a1fba9dcd9ed83e639aefa1b87631c33d1a82cb0c0035676ddfeb0fe7984d7519b0f839d497fc9d64ef14d1de22220ff2623df4950134b9fb734a52adad95f131cce3672a9d7d7b400d2c62810b5f20351639330948107bf8d4534a03ac389455c54d8eb4d609b3e858b7213b38eb01f0eeaba3739ae927916e28da6a79a3fd5e32d30ab30bf959d4596e5ffbff6789a650b9e7d248d1ba849012336a4f3ef8fab07a8f5b81bb0bc45b2174538315ca12b7c723b2157562564a8a1f19d28179f8c565448e0e921b8c3e6fc4adaafa8b929ad077f633325b6a6f71a586cabc4883e03e19315f946b277858593a7367e232202fe9ad656c6768a1517da7f0498b48cb078e929fb11db0cc551f754bffc4859dd89a396915cc809b07d448573098409ea21371056f67ef4114ec10547f498d24513fe594308bf022868ad21e85bba811942fdc45161a1a8a7fe00d5c6b05ed7954f631bbd12a5c9a5cfa5965e0595de608b04ebe02b3fcbf3b9f57807a1a7ad8528992e2ec65949da2f4a0478dfd3ae52639c15d8aeaa351da6d393b58c772168fae604d097fef4d6b9360eb169a0b0ee70cdc22435a003e68698f61b3b63b1f51011bc8f4ef944c1", 0x1f0)
ioctl$KDGKBDIACR(r5, 0x4b4a, &(0x7f0000000280)=""/21)
sendfile(0xffffffffffffffff, r6, 0x0, 0x10000)
sync_file_range(r3, 0x9, 0x0, 0x0)
linkat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0)

[ 1139.420520][T27864] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1139.428585][T27864] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d08
[ 1139.436562][T27864] RBP: 000000000073bf00 R08: 0000000000000001 R09: 0000000000000000
[ 1139.444539][T27864] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b44166d4
[ 1139.453266][T27864] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
fcntl$setsig(r0, 0xa, 0x4)
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x4})
setsockopt$RDS_GET_MR(r1, 0x114, 0x2, &(0x7f00000001c0)={{&(0x7f00000000c0)=""/134, 0x86}, &(0x7f0000000180), 0x2}, 0x20)

08:04:26 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x7ffffff8, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:26 executing program 0:
fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000080))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000000c0))
r0 = getpgid(0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000140)='cp_filt^\x03\x00\x00\xca\'\x0f\xcd\xa8\xd2\xd6or\x9b\xd92sl\xcf\xe6FC{\x8bx\x9f\xbf\x88\x89\xf4\xd7\x86k\xd6\xc8\xbf\xf645\x10\xaf2*\xe9\xc4\x14\x04\x19:\\\x87\x06\xa97\xb6v\xa0\x195\x18s\xb4\xce\xc9\x18\xb46\xad\x8a\xe1\x19\x03eX\xb7\xba\xebU\xf0\"Y\x9eS\xb9\xbbR\xfe \xf8Rk&\xd2\xe2 \xfeF\xde\'\xc4a\x86\xc0/B\xd5J')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:26 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
arch_prctl$ARCH_SET_CPUID(0x1012, 0x1)

08:04:26 executing program 1:
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x20001, 0x1)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x4, 0x0, 0x100}}, 0x30)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:26 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer\x00', 0x208400, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000440)='TIPCv2\x00')
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000540)={&(0x7f0000000400), 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x58, r3, 0x9, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_LINK={0x10, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_BEARER={0x34, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8001}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xa2bb}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffe}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0x5)
r4 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r4, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:27 executing program 2:
r0 = open(0x0, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x89a0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="66b9810000400f322ed30cbad104ec660f38df2b0fe21526660ff85e503ede1b0f20c06635000000800f22c0b800088ec00fae470b", 0x35}], 0x1, 0x51, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfff, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$capi20(0xffffffffffffff9c, 0x0, 0x40, 0x0)
shutdown(0xffffffffffffffff, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r4, 0x12, 0x2, 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x402080, 0x41)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f00000001c0)=0x2, 0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r6 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r5, &(0x7f0000000400)="34fd98aa1d0e7adec937a5f331a75f487934f50242a0751944936972896c29a5068c8ecba1aa0a4e2a631b5180e1fbde79f4502dc4c4a1fba9dcd9ed83e639aefa1b87631c33d1a82cb0c0035676ddfeb0fe7984d7519b0f839d497fc9d64ef14d1de22220ff2623df4950134b9fb734a52adad95f131cce3672a9d7d7b400d2c62810b5f20351639330948107bf8d4534a03ac389455c54d8eb4d609b3e858b7213b38eb01f0eeaba3739ae927916e28da6a79a3fd5e32d30ab30bf959d4596e5ffbff6789a650b9e7d248d1ba849012336a4f3ef8fab07a8f5b81bb0bc45b2174538315ca12b7c723b2157562564a8a1f19d28179f8c565448e0e921b8c3e6fc4adaafa8b929ad077f633325b6a6f71a586cabc4883e03e19315f946b277858593a7367e232202fe9ad656c6768a1517da7f0498b48cb078e929fb11db0cc551f754bffc4859dd89a396915cc809b07d448573098409ea21371056f67ef4114ec10547f498d24513fe594308bf022868ad21e85bba811942fdc45161a1a8a7fe00d5c6b05ed7954f631bbd12a5c9a5cfa5965e0595de608b04ebe02b3fcbf3b9f57807a1a7ad8528992e2ec65949da2f4a0478dfd3ae52639c15d8aeaa351da6d393b58c772168fae604d097fef4d6b9360eb169a0b0ee70cdc22435a003e68698f61b3b63b1f51011bc8f4ef944c1", 0x1f0)
sendfile(0xffffffffffffffff, r6, 0x0, 0x10000)
linkat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0)

08:04:27 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000000)={0x3, 0xe9f9})
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040), 0x2)

[ 1140.035504][   T27] audit: type=1800 audit(1553328267.112:4658): pid=28844 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=16582 res=0
[ 1140.061643][T28867] FAULT_FLAG_ALLOW_RETRY missing a0
08:04:27 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x2, 0x400080)
ioctl$BLKRAGET(r1, 0x1263, &(0x7f00000001c0))
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1140.062076][   T27] audit: type=1804 audit(1553328267.112:4659): pid=28844 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir688712978/syzkaller.qoxo8a/1750/file0" dev="sda1" ino=16582 res=1
[ 1140.077806][T28867] CPU: 1 PID: 28867 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1140.100795][T28867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1140.110851][T28867] Call Trace:
[ 1140.114149][T28867]  dump_stack+0x172/0x1f0
[ 1140.118510][T28867]  handle_userfault.cold+0x41/0x5d
[ 1140.123633][T28867]  ? __lock_acquire+0x548/0x3fb0
[ 1140.128602][T28867]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1140.133905][T28867]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1140.139902][T28867]  ? find_held_lock+0x35/0x130
[ 1140.144687][T28867]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1140.150691][T28867]  ? kasan_check_write+0x14/0x20
[ 1140.155643][T28867]  ? lock_downgrade+0x880/0x880
[ 1140.160513][T28867]  ? kasan_check_read+0x11/0x20
[ 1140.165372][T28867]  ? do_raw_spin_unlock+0x57/0x270
[ 1140.170493][T28867]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1140.176303][T28867]  ? kasan_check_read+0x11/0x20
[ 1140.181178][T28867]  ? __thp_get_unmapped_area+0x190/0x190
[ 1140.186993][T28867]  ? pmd_val+0x100/0x100
[ 1140.191220][T28867]  ? __lock_acquire+0x548/0x3fb0
[ 1140.196327][T28867]  ? __kernel_text_address+0xd/0x40
[ 1140.201583][T28867]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1140.206728][T28867]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1140.212297][T28867]  ? find_held_lock+0x35/0x130
[ 1140.217080][T28867]  ? handle_mm_fault+0x322/0xb30
[ 1140.222034][T28867]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1140.228263][T28867]  ? kasan_check_read+0x11/0x20
[ 1140.233101][T28867]  handle_mm_fault+0x43f/0xb30
[ 1140.237852][T28867]  __get_user_pages+0x7b6/0x1a40
[ 1140.242780][T28867]  ? follow_page_mask+0x19a0/0x19a0
[ 1140.247963][T28867]  ? get_user_pages_remote+0x17d/0x440
[ 1140.253409][T28867]  get_user_pages_remote+0x1a3/0x440
[ 1140.258685][T28867]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1140.264312][T28867]  ? alloc_vmap_area.cold+0x24/0x24
[ 1140.269508][T28867]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1140.275745][T28867]  ? _copy_from_user+0xdd/0x150
[ 1140.280591][T28867]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1140.286322][T28867]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1140.291767][T28867]  process_vm_rw+0x21f/0x240
[ 1140.296341][T28867]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1140.302142][T28867]  ? __might_fault+0x12b/0x1e0
[ 1140.306905][T28867]  ? kasan_check_read+0x11/0x20
[ 1140.311735][T28867]  ? _copy_to_user+0xc9/0x120
[ 1140.316410][T28867]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1140.322650][T28867]  ? nsecs_to_jiffies+0x30/0x30
[ 1140.327504][T28867]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1140.332947][T28867]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1140.338396][T28867]  ? do_syscall_64+0x26/0x610
[ 1140.343062][T28867]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1140.348686][T28867]  do_syscall_64+0x103/0x610
[ 1140.353262][T28867]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1140.359133][T28867] RIP: 0033:0x458209
[ 1140.363024][T28867] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:04:27 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r1, 0x300, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000200)="2460dd641517794b00968f664a594d1b4076e290dd55b2ecd53c0ab3b66c4d96b368dab34f1b642433599fb67895e78024f38e1385d0983abe6719fcdb7f3470a0", 0x41}], 0x1)

[ 1140.382615][T28867] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1140.391020][T28867] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1140.398995][T28867] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d0d
[ 1140.406973][T28867] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1140.414956][T28867] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1140.422919][T28867] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:27 executing program 2:
syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="b97e0f2a1645729c20c06a7f0806000508000604739bb54a6889ff7b8c30ae00010180c2000000ac1414bb0180c2000000bb1414ac"], 0x0)

08:04:27 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80200, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000000200)={0x30, 0x5, 0x0, {0x0, 0x2, 0x2, 0x1}}, 0x30)
r4 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r5 = add_key$keyring(&(0x7f0000000600)='keyring\x00', &(0x7f0000000640)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
r6 = add_key$keyring(&(0x7f00000006c0)='keyring\x00', &(0x7f0000000680)={'syz', 0x3}, 0x0, 0x0, r5)
r7 = add_key(&(0x7f00000003c0)='id_legacy\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000440)="e1e341583d43ffe023d2688a34226038e3ab4f2f1dc76d31c57c97c22d24724572584daf19705b36b95626e28efc638b79ea33421836813dee475158d908ed87ada803df860821ffefb112409b81f835b7e15576e45ea41be9bc73a3b98f28600411108f3cf04c85c596aa64208bfdfcdcac8d507f455424d10a3a1ec77ddcd3f062116a309cbf55946001236b4644d45f8994ce12f0ee789c926e29f73e8e571692d4b066094220d5036e0b106a677e0a129ddc8d8cc03bcee56ff394b13c4ab088e4657e0c95658d60bc1697382c6c6d5da51e7128d28b91c8ac2a585746a67354c3f27b4b38", 0xe7, 0xfffffffffffffff9)
keyctl$search(0xa, r6, &(0x7f0000000340)='id_resolver\x00', &(0x7f0000000380)={'syz', 0x0}, r7)
process_vm_readv(r4, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
r8 = fcntl$dupfd(r1, 0x0, r0)
getsockopt$X25_QBITINCL(r8, 0x106, 0x1, &(0x7f0000000100), &(0x7f0000000140)=0x4)

08:04:27 executing program 0:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x80000, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000300)=""/4096, 0x28000, 0x800, 0x9}, 0x18)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:27 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x7ffffff9, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:27 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f00000000c0)={0x57, 0x7d, 0xffff, {0xffffffff, 0x2a}, {0x30, 0x3}, @ramp={0xffffffffffffffc0, 0x0, {0xff, 0x101, 0x6, 0x7fffffff}}})
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1140.725300][T29463] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1140.730924][T29463] CPU: 0 PID: 29463 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1140.739961][T29463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1140.750012][T29463] Call Trace:
[ 1140.753331][T29463]  dump_stack+0x172/0x1f0
[ 1140.757656][T29463]  handle_userfault.cold+0x41/0x5d
[ 1140.762760][T29463]  ? __lock_acquire+0x548/0x3fb0
[ 1140.767724][T29463]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
08:04:27 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x2, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
io_setup(0x9, &(0x7f0000000140)=<r2=>0x0)
fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f00000002c0))
io_submit(r2, 0x1, &(0x7f0000000280)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0xf, 0x2, r1, &(0x7f0000000180)="0ba22ba1d732458782a650b3c3c777f9a19317f92339969e4e44aa5175195eb5c2a55834631d857e1bb4e30020124d4835cc7ee241eb8b38123142db57364945e07b56ea154ee4513896fea649a471998a9b0da4d848ad326579efeef9c5c800d67aa47cfbe1717a089695ca0e0235f4cce9f27d43c6fb37b1d4a02d39ae3d2ad20514d9bf6ad36ce92f0d93f857f037", 0x90, 0x5, 0x0, 0x2, r1}])
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000300)=[@in={0x2, 0x4e20, @local}, @in6={0xa, 0x4e22, 0x4, @empty}, @in6={0xa, 0x4e20, 0x6, @remote, 0x1f}, @in={0x2, 0x4e20, @multicast2}, @in6={0xa, 0x4e23, 0x6, @mcast2, 0xc0}], 0x74)
ioctl$IMCTRLREQ(r1, 0x80044945, &(0x7f0000000080)={0x80, 0x81, 0xff, 0x4})
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000000)=""/12)

08:04:27 executing program 2:

08:04:27 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000080)={r0, 0x50}, 0x10)
ioctl$UI_DEV_DESTROY(r0, 0x5502)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000140)={{0x1, 0x1}, {0x1, 0x3}, 0x5, 0x1, 0x4})
writev(r0, &(0x7f00000013c0), 0x2c4)
bind$vsock_stream(r0, &(0x7f00000001c0)={0x28, 0x0, 0x0, @reserved}, 0x10)
syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x6, 0x1)

[ 1140.773059][T29463]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1140.779134][T29463]  ? find_held_lock+0x35/0x130
[ 1140.783931][T29463]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1140.789950][T29463]  ? kasan_check_write+0x14/0x20
[ 1140.794900][T29463]  ? lock_downgrade+0x880/0x880
[ 1140.799771][T29463]  ? kasan_check_read+0x11/0x20
[ 1140.804631][T29463]  ? do_raw_spin_unlock+0x57/0x270
[ 1140.809750][T29463]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1140.815563][T29463]  ? kasan_check_read+0x11/0x20
[ 1140.820426][T29463]  ? __thp_get_unmapped_area+0x190/0x190
[ 1140.826057][T29463]  ? pmd_val+0x100/0x100
[ 1140.830298][T29463]  ? __lock_acquire+0x548/0x3fb0
[ 1140.835240][T29463]  ? __kernel_text_address+0xd/0x40
[ 1140.840451][T29463]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1140.845576][T29463]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1140.851124][T29463]  ? find_held_lock+0x35/0x130
[ 1140.855906][T29463]  ? handle_mm_fault+0x322/0xb30
[ 1140.860864][T29463]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1140.867114][T29463]  ? kasan_check_read+0x11/0x20
08:04:27 executing program 2:

[ 1140.871972][T29463]  handle_mm_fault+0x43f/0xb30
[ 1140.876744][T29463]  __get_user_pages+0x7b6/0x1a40
[ 1140.881700][T29463]  ? follow_page_mask+0x19a0/0x19a0
[ 1140.886910][T29463]  ? get_user_pages_remote+0x17d/0x440
[ 1140.892387][T29463]  get_user_pages_remote+0x1a3/0x440
[ 1140.897689][T29463]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1140.903350][T29463]  ? alloc_vmap_area.cold+0x24/0x24
[ 1140.903372][T29463]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1140.903387][T29463]  ? _copy_from_user+0xdd/0x150
[ 1140.903405][T29463]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1140.903422][T29463]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1140.903447][T29463]  process_vm_rw+0x21f/0x240
[ 1140.914871][T29463]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1140.914885][T29463]  ? __might_fault+0x12b/0x1e0
[ 1140.914926][T29463]  ? kasan_check_read+0x11/0x20
[ 1140.914939][T29463]  ? _copy_to_user+0xc9/0x120
[ 1140.914958][T29463]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1140.914976][T29463]  ? nsecs_to_jiffies+0x30/0x30
[ 1140.915001][T29463]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1140.915017][T29463]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1140.915038][T29463]  ? do_syscall_64+0x26/0x610
[ 1140.982245][T29463]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1140.987907][T29463]  do_syscall_64+0x103/0x610
[ 1140.992516][T29463]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1140.998412][T29463] RIP: 0033:0x458209
[ 1141.002314][T29463] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:04:28 executing program 2:

08:04:28 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='coreSuilter\x00.\x7f\xdd\x9f\xd1\xeb\x1a\x03\xe6\xb6\x19\\?\x94Ja\xc5\x85,\x9d\xb8\x86\xfehbAvI~\xbf\xdc\x82\xe3\xab\xb3\xa3\xa8%\xc1\xe0A\xa7M-V[\x98\xae\xbc\x83\\K\x06\xd4sB\xa8\x11\xa8D\x1f\xed)I\xc1\b\'S\x94\x02JK\x03[\xbb\xae.\x0e,Hz\x90\x1a\xe0\a\x00\"\x1f\xf2\xf3\xd7\x86\xd3\xcc\x1dX\x8e/\'\x7f\xcb\xd1\xbd\xe5\xd7\x01\xb2\xa6k\x8c\xc6\xd1(\fbO\xe4y\x19\v\x1b\x1b\xecc\xfdV\xf9\xc1\xbc')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1141.021926][T29463] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1141.030350][T29463] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1141.038320][T29463] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d11
[ 1141.046290][T29463] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1141.046307][T29463] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1141.062233][T29463] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:28 executing program 2:

08:04:28 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x200000, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000100)={0x0, 0x401, 0x4, &(0x7f00000000c0)=0x1})
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="e65b0d2fa736e4fca7c61f123c12a41d88b0707b2a41249707a68b00c6bfbcf2b10b2d53c5271f8573ef000000000000000d010dd97d17ca9dca99778851aa12834df0aa8d59e771a2434f7425dbfc955771f324d036b8e1becd6ff623d512628c94683d553c9601007436a1d39f63f988ac08b4739cacaed51786557a7ac08db2a6acb1b74c4c00000000000000000000000000")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x4})
ioctl(r2, 0x63b, &(0x7f0000000000)="6beafabaa72d52e5f79a65f59f554db430")
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000140), &(0x7f0000000180)=0x4)

08:04:28 executing program 0:
r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x4, 0xa000)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x212401, 0x4)
fcntl$dupfd(r0, 0x406, r1)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='coredump_filter\x00')
writev(r2, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:28 executing program 2:

08:04:28 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x7ffffffa, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:28 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = open(&(0x7f0000002600)='./file0\x00', 0x80000, 0x80)
setsockopt$inet_sctp6_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000002640)=0x2, 0x4)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x40})
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r4 = gettid()
dup3(r1, r2, 0x80000)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000032d000/0x4000)=nil, 0x4000}, 0x2})
io_setup(0xfff, &(0x7f00000001c0)=<r5=>0x0)
io_cancel(r5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x7, 0x4, r0, &(0x7f0000000200)="57ca5c28814d16e63c3e024d16fa8cc15488b8d815da9c674d4e8beb85b16cba7aaef3fd14e437c6f449806a8874933ec6297fb1ff485848d7f3d1accca910c68ab4ffdb9040f53abbb87eadac1b8a8d3b3965b8ce76522259d74229201d46d653618163e16ab86f02307beb4ba13814", 0x70, 0x8, 0x0, 0x1, 0xffffffffffffff9c}, &(0x7f0000000340))
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r4, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1141.699869][T29914] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1141.705420][T29914] CPU: 0 PID: 29914 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1141.714437][T29914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1141.724478][T29914] Call Trace:
[ 1141.727814][T29914]  dump_stack+0x172/0x1f0
[ 1141.732156][T29914]  handle_userfault.cold+0x41/0x5d
[ 1141.737288][T29914]  ? __lock_acquire+0x548/0x3fb0
[ 1141.742230][T29914]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1141.747514][T29914]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1141.753515][T29914]  ? find_held_lock+0x35/0x130
[ 1141.758263][T29914]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1141.764246][T29914]  ? kasan_check_write+0x14/0x20
[ 1141.769205][T29914]  ? lock_downgrade+0x880/0x880
[ 1141.774046][T29914]  ? kasan_check_read+0x11/0x20
[ 1141.778880][T29914]  ? do_raw_spin_unlock+0x57/0x270
[ 1141.783995][T29914]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1141.789838][T29914]  ? kasan_check_read+0x11/0x20
[ 1141.794689][T29914]  ? __thp_get_unmapped_area+0x190/0x190
[ 1141.801186][T29914]  ? pmd_val+0x100/0x100
[ 1141.805434][T29914]  ? __lock_acquire+0x548/0x3fb0
[ 1141.810351][T29914]  ? __kernel_text_address+0xd/0x40
[ 1141.815538][T29914]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1141.820652][T29914]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1141.826200][T29914]  ? find_held_lock+0x35/0x130
[ 1141.830956][T29914]  ? handle_mm_fault+0x322/0xb30
[ 1141.835890][T29914]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1141.842138][T29914]  ? kasan_check_read+0x11/0x20
[ 1141.846998][T29914]  handle_mm_fault+0x43f/0xb30
[ 1141.851765][T29914]  __get_user_pages+0x7b6/0x1a40
[ 1141.856705][T29914]  ? follow_page_mask+0x19a0/0x19a0
[ 1141.861901][T29914]  ? get_user_pages_remote+0x17d/0x440
[ 1141.867371][T29914]  get_user_pages_remote+0x1a3/0x440
[ 1141.872677][T29914]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1141.878309][T29914]  ? alloc_vmap_area.cold+0x24/0x24
[ 1141.883504][T29914]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1141.889740][T29914]  ? _copy_from_user+0xdd/0x150
[ 1141.894585][T29914]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1141.900297][T29914]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1141.905753][T29914]  process_vm_rw+0x21f/0x240
[ 1141.910334][T29914]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1141.916120][T29914]  ? __might_fault+0x12b/0x1e0
[ 1141.920897][T29914]  ? kasan_check_read+0x11/0x20
[ 1141.925753][T29914]  ? _copy_to_user+0xc9/0x120
[ 1141.930429][T29914]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1141.936670][T29914]  ? nsecs_to_jiffies+0x30/0x30
[ 1141.941535][T29914]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1141.946990][T29914]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1141.952438][T29914]  ? do_syscall_64+0x26/0x610
[ 1141.957115][T29914]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1141.962853][T29914]  do_syscall_64+0x103/0x610
[ 1141.967441][T29914]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1141.973315][T29914] RIP: 0033:0x458209
[ 1141.977214][T29914] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1141.996812][T29914] RSP: 002b:00007f09b43b3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1142.005204][T29914] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1142.013154][T29914] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d16
[ 1142.021124][T29914] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1142.029085][T29914] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43b46d4
[ 1142.037036][T29914] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:29 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x7, 0x189100)
ioctl$RTC_RD_TIME(r1, 0x80247009, &(0x7f00000000c0))
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))

08:04:29 executing program 2:

08:04:29 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
syz_open_dev$ndb(&(0x7f00000000c0)='/dev/nbd#\x00', 0x0, 0x400)

08:04:29 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)="6893f71f111e33e6d4a1f1ee7b7eb263cd80f3ca0216", 0x1}], 0x10000000000001b8)

08:04:29 executing program 2:

08:04:29 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000100)='self@selfmd5sumprocGPLself{\x00')
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:29 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000040)="81", 0x1}], 0x1)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={<r1=>0x0}, &(0x7f0000000200)=0x8)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x200000, 0x0)
r2 = syz_open_dev$usb(&(0x7f0000000280)='/dev/bus/usb/00#/00#\x00', 0xa5, 0x800)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000240)={r1, 0x2da, 0x4}, 0x8)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000400)=ANY=[@ANYBLOB="0500000010000000ffffffffcf00836de89ee8ac8b00006b0000001800000053173bb0911ea73b8edb9659b2bfa9654008ff27cee2adcd3f6affff0000934e86e607c65a9f36ffe2e8b2b4f4cc9f62586a1128d7eabadb84a727752dd6db4f32565442e040b587eadb3b7ce494fdec69d71db4940e59bd97f8b783ac8369d8eb266c58c6604a7dab668d89911c37fa44eef9d1da4dfc605b03b2c28554e87effb231797f5ae579c1bef778d8baec59ecb7fb37433c7d537500a0fc651565b60677e3e9618d795029fae07019eb72a3e8e0520c6e37367d94c341"])
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000140)=""/134, &(0x7f0000000080)=0x86)
setsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f0000000000)=0xfff, 0x4)

08:04:29 executing program 2:

08:04:29 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0xb, 0x400002)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000001c0)='veno\x00', 0x5)
r2 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x3, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:29 executing program 2:

[ 1142.401267][T30093] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1142.409037][T30093] CPU: 1 PID: 30093 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1142.418065][T30093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1142.428105][T30093] Call Trace:
[ 1142.431403][T30093]  dump_stack+0x172/0x1f0
[ 1142.435750][T30093]  handle_userfault.cold+0x41/0x5d
[ 1142.440863][T30093]  ? __lock_acquire+0x548/0x3fb0
[ 1142.445789][T30093]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1142.451073][T30093]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1142.457050][T30093]  ? find_held_lock+0x35/0x130
[ 1142.461800][T30093]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1142.467764][T30093]  ? kasan_check_write+0x14/0x20
[ 1142.472694][T30093]  ? lock_downgrade+0x880/0x880
[ 1142.477544][T30093]  ? kasan_check_read+0x11/0x20
[ 1142.482390][T30093]  ? do_raw_spin_unlock+0x57/0x270
[ 1142.487486][T30093]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1142.493290][T30093]  ? kasan_check_read+0x11/0x20
[ 1142.498145][T30093]  ? __thp_get_unmapped_area+0x190/0x190
[ 1142.503849][T30093]  ? pmd_val+0x100/0x100
[ 1142.508081][T30093]  ? __lock_acquire+0x548/0x3fb0
[ 1142.513004][T30093]  ? __kernel_text_address+0xd/0x40
[ 1142.518212][T30093]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1142.523422][T30093]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1142.528950][T30093]  ? find_held_lock+0x35/0x130
[ 1142.533699][T30093]  ? handle_mm_fault+0x322/0xb30
[ 1142.538712][T30093]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1142.544975][T30093]  ? kasan_check_read+0x11/0x20
[ 1142.549820][T30093]  handle_mm_fault+0x43f/0xb30
[ 1142.554583][T30093]  __get_user_pages+0x7b6/0x1a40
[ 1142.559508][T30093]  ? follow_page_mask+0x19a0/0x19a0
[ 1142.564719][T30093]  ? get_user_pages_remote+0x17d/0x440
[ 1142.570189][T30093]  get_user_pages_remote+0x1a3/0x440
[ 1142.575476][T30093]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1142.581112][T30093]  ? alloc_vmap_area.cold+0x24/0x24
[ 1142.586294][T30093]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1142.592516][T30093]  ? _copy_from_user+0xdd/0x150
[ 1142.597357][T30093]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1142.603077][T30093]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1142.608536][T30093]  process_vm_rw+0x21f/0x240
[ 1142.613137][T30093]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1142.618973][T30093]  ? __might_fault+0x12b/0x1e0
[ 1142.623731][T30093]  ? kasan_check_read+0x11/0x20
[ 1142.628562][T30093]  ? _copy_to_user+0xc9/0x120
[ 1142.633221][T30093]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1142.639463][T30093]  ? nsecs_to_jiffies+0x30/0x30
[ 1142.644302][T30093]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1142.649751][T30093]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1142.655197][T30093]  ? do_syscall_64+0x26/0x610
[ 1142.659864][T30093]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1142.665481][T30093]  do_syscall_64+0x103/0x610
[ 1142.670057][T30093]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1142.675929][T30093] RIP: 0033:0x458209
[ 1142.679802][T30093] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1142.699396][T30093] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1142.707787][T30093] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1142.715737][T30093] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d1a
[ 1142.723713][T30093] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1142.731666][T30093] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1142.739619][T30093] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:29 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0x7ffff000}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:29 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
r1 = fcntl$getown(r0, 0x9)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000140)={{0x8, 0x7, 0x1000, 0x1, '\x00', 0x7}, 0x5, 0x10000000, 0x40, r1, 0x3, 0x80000001, 'syz1\x00', &(0x7f0000000000)=['coredump_filter\x00', 'coredump_filter\x00', 'coredump_filter\x00'], 0x30, [], [0x3ff, 0x5, 0x8, 0x10000]})
getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000080)=0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000000c0)={@dev={0xfe, 0x80, [], 0xf}, r2}, 0x14)
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1142.962203][T30361] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1142.967695][T30361] CPU: 1 PID: 30361 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1142.976713][T30361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1142.986748][T30361] Call Trace:
[ 1142.990024][T30361]  dump_stack+0x172/0x1f0
[ 1142.994369][T30361]  handle_userfault.cold+0x41/0x5d
[ 1142.999471][T30361]  ? __lock_acquire+0x548/0x3fb0
[ 1143.004406][T30361]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1143.009673][T30361]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1143.015644][T30361]  ? find_held_lock+0x35/0x130
[ 1143.020406][T30361]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1143.026369][T30361]  ? kasan_check_write+0x14/0x20
[ 1143.031304][T30361]  ? lock_downgrade+0x880/0x880
[ 1143.036161][T30361]  ? kasan_check_read+0x11/0x20
[ 1143.041004][T30361]  ? do_raw_spin_unlock+0x57/0x270
[ 1143.046094][T30361]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1143.051894][T30361]  ? kasan_check_read+0x11/0x20
[ 1143.056742][T30361]  ? __thp_get_unmapped_area+0x190/0x190
[ 1143.062396][T30361]  ? pmd_val+0x100/0x100
[ 1143.066616][T30361]  ? __lock_acquire+0x548/0x3fb0
[ 1143.071543][T30361]  ? __kernel_text_address+0xd/0x40
[ 1143.076735][T30361]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1143.081828][T30361]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1143.087353][T30361]  ? find_held_lock+0x35/0x130
[ 1143.092106][T30361]  ? handle_mm_fault+0x322/0xb30
[ 1143.097039][T30361]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1143.103261][T30361]  ? kasan_check_read+0x11/0x20
[ 1143.108091][T30361]  handle_mm_fault+0x43f/0xb30
[ 1143.112851][T30361]  __get_user_pages+0x7b6/0x1a40
[ 1143.117805][T30361]  ? follow_page_mask+0x19a0/0x19a0
[ 1143.122986][T30361]  ? get_user_pages_remote+0x17d/0x440
[ 1143.128445][T30361]  get_user_pages_remote+0x1a3/0x440
[ 1143.133736][T30361]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1143.139367][T30361]  ? alloc_vmap_area.cold+0x24/0x24
[ 1143.144572][T30361]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1143.150807][T30361]  ? _copy_from_user+0xdd/0x150
[ 1143.155658][T30361]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1143.161375][T30361]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1143.166815][T30361]  process_vm_rw+0x21f/0x240
[ 1143.171398][T30361]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1143.177196][T30361]  ? __might_fault+0x12b/0x1e0
[ 1143.181951][T30361]  ? kasan_check_read+0x11/0x20
[ 1143.186779][T30361]  ? _copy_to_user+0xc9/0x120
[ 1143.191452][T30361]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1143.197686][T30361]  ? nsecs_to_jiffies+0x30/0x30
[ 1143.202523][T30361]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1143.207959][T30361]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1143.213409][T30361]  ? do_syscall_64+0x26/0x610
[ 1143.218080][T30361]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1143.223697][T30361]  do_syscall_64+0x103/0x610
[ 1143.228267][T30361]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1143.234147][T30361] RIP: 0033:0x458209
[ 1143.238042][T30361] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:04:30 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x3, 0x4)
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:04:30 executing program 2:

08:04:30 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffe000/0x2000)=nil, 0x2000}, 0x2})

08:04:30 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)

08:04:30 executing program 0:
r0 = openat$apparmor_task_current(0xffffffffffffff9c, 0xfffffffffffffffe, 0x2, 0x0)
ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f0000000040)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000300)={0x0, 0x0, 0x4, 0x0, [], [{0x5, 0x0, 0x4, 0x3, 0x7fffffff, 0x9}, {0x3, 0x5, 0x3, 0x602, 0x8, 0x7}], [[], [], [], []]})
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
signalfd4(r0, &(0x7f0000000080)={0xff}, 0x8, 0x800)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r1, 0x4010aeab, &(0x7f0000000000)={0x140000, 0x10000})

[ 1143.257631][T30361] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1143.266043][T30361] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1143.274193][T30361] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 000000000000139b
[ 1143.282188][T30361] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1143.290229][T30361] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1143.298189][T30361] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:30 executing program 2:

08:04:30 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe63}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:30 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='status\x00')
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000100)={<r2=>0xffffffffffffffff}, 0x0, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r1, &(0x7f0000000180)={0x14, 0x88, 0xfa00, {r2, 0x1c, 0x0, @ib={0x1b, 0x4, 0x1, {"fa90d8ea80e70455dd172434449377d2"}, 0xff, 0x2}}}, 0x90)
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:30 executing program 2:

08:04:30 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f0000000000))

08:04:30 executing program 2:

[ 1143.587907][T30585] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1143.597807][T30585] CPU: 0 PID: 30585 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1143.606846][T30585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1143.616936][T30585] Call Trace:
[ 1143.620250][T30585]  dump_stack+0x172/0x1f0
[ 1143.624607][T30585]  handle_userfault.cold+0x41/0x5d
[ 1143.629731][T30585]  ? __lock_acquire+0x548/0x3fb0
[ 1143.634696][T30585]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1143.639998][T30585]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1143.645991][T30585]  ? find_held_lock+0x35/0x130
[ 1143.650765][T30585]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1143.656757][T30585]  ? kasan_check_write+0x14/0x20
[ 1143.661706][T30585]  ? lock_downgrade+0x880/0x880
[ 1143.666563][T30585]  ? kasan_check_read+0x11/0x20
[ 1143.671427][T30585]  ? do_raw_spin_unlock+0x57/0x270
[ 1143.676555][T30585]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1143.682374][T30585]  ? kasan_check_read+0x11/0x20
[ 1143.687233][T30585]  ? __thp_get_unmapped_area+0x190/0x190
[ 1143.694348][T30585]  ? pmd_val+0x100/0x100
[ 1143.698599][T30585]  ? __lock_acquire+0x548/0x3fb0
[ 1143.703537][T30585]  ? __kernel_text_address+0xd/0x40
[ 1143.713804][T30585]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1143.718912][T30585]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1143.724496][T30585]  ? find_held_lock+0x35/0x130
[ 1143.729251][T30585]  ? handle_mm_fault+0x322/0xb30
[ 1143.734203][T30585]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1143.740426][T30585]  ? kasan_check_read+0x11/0x20
[ 1143.745273][T30585]  handle_mm_fault+0x43f/0xb30
[ 1143.750026][T30585]  __get_user_pages+0x7b6/0x1a40
[ 1143.754997][T30585]  ? follow_page_mask+0x19a0/0x19a0
[ 1143.760207][T30585]  ? get_user_pages_remote+0x17d/0x440
[ 1143.765662][T30585]  get_user_pages_remote+0x1a3/0x440
[ 1143.770937][T30585]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1143.776652][T30585]  ? alloc_vmap_area.cold+0x24/0x24
[ 1143.781846][T30585]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1143.788087][T30585]  ? _copy_from_user+0xdd/0x150
[ 1143.792922][T30585]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1143.799544][T30585]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1143.804988][T30585]  process_vm_rw+0x21f/0x240
[ 1143.809569][T30585]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1143.815355][T30585]  ? __might_fault+0x12b/0x1e0
[ 1143.820128][T30585]  ? kasan_check_read+0x11/0x20
[ 1143.824983][T30585]  ? _copy_to_user+0xc9/0x120
[ 1143.829648][T30585]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1143.835875][T30585]  ? nsecs_to_jiffies+0x30/0x30
[ 1143.840713][T30585]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1143.846150][T30585]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1143.851605][T30585]  ? do_syscall_64+0x26/0x610
[ 1143.856277][T30585]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1143.861907][T30585]  do_syscall_64+0x103/0x610
[ 1143.866490][T30585]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1143.872375][T30585] RIP: 0033:0x458209
[ 1143.876273][T30585] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1143.895893][T30585] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1143.904300][T30585] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1143.912279][T30585] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 000000000000139f
[ 1143.920230][T30585] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1143.928191][T30585] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
08:04:31 executing program 2:

[ 1143.936154][T30585] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:31 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x0, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x80000000, {0xff29, 0x8, 0x10000, 0xfffffffffffffff7, 0xff, 0x2}, 0x13c, 0x80}, 0xe)
ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x3)

08:04:31 executing program 0:
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000000)=<r0=>0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=<r1=>0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0xc)
sendmsg$nl_netfilter(r2, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x38, 0x5, 0xf, 0x100, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x3}, [@typed={0x8, 0x10, @uid=r3}, @typed={0xc, 0x3, @u64=0x2}, @typed={0x10, 0x73, @str='/dev/media#\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000003c0)={0x2c89, 0x9, 0x0, 0x101, 0x3, [{0x96eb, 0x0, 0x7, 0x0, 0x0, 0x800}, {0x6, 0x35ed, 0x3f, 0x0, 0x0, 0x2802}, {0xfffffffffffff000, 0xd86, 0x8, 0x0, 0x0, 0x2104}]})
r4 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x7ff, 0x40)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2000, 0x2)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r5)
kcmp(r0, r1, 0x1, r4, r5)
r6 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r6, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000180))

08:04:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x4900, 0x0)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000400)=""/4096, &(0x7f0000000380)=0x1000)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x68, r3, 0x10, 0x70bd26, 0x25dfdbff, {{}, 0x0, 0x4108, 0x0, {0x4c, 0x18, {0x0, @media='udp\x00'}}}, ["", "", "", "", "", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x20000044}, 0x4040000)
r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000001400)={0x4, [0x0, <r5=>0x0, 0x0, 0x0]}, &(0x7f0000001440)=0x14)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000001480)={r5, @in={{0x2, 0x4e24, @remote}}, 0x4, 0xaf, 0x9, 0x5b2, 0x6}, &(0x7f0000001540)=0x98)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r4, 0x800442d2, &(0x7f0000000340)={0x6, &(0x7f0000000280)=[{0x0, 0x0, 0x0, @broadcast}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @broadcast}, {0x0, 0x0, 0x0, @dev}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @link_local}]})
ioctl$IOC_PR_PREEMPT(r4, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:31 executing program 2:

08:04:31 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffeca}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:31 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:31 executing program 2:

08:04:31 executing program 2:

08:04:31 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)="48733000af4c2dd3bc1171198f9976ee4697b658584aba61c21e7e3c90661b86b0af224d8efffb5d59121628bc1b249d3bcb9c33bcc04233961d87438c92bb74378c9a52bdb50a62dfc89326b12a574031cc573ea9013bffe3a300a7722404ce00000000000000", 0xb3}], 0x100000000000007f)
getxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='system.sockprotoname\x00', &(0x7f0000000140)=""/245, 0xf5)

[ 1144.359499][T30903] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1144.370806][T30919] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1144.377401][T30903] CPU: 0 PID: 30903 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1144.386436][T30903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1144.396502][T30903] Call Trace:
[ 1144.399807][T30903]  dump_stack+0x172/0x1f0
[ 1144.404156][T30903]  handle_userfault.cold+0x41/0x5d
[ 1144.409394][T30903]  ? __lock_acquire+0x548/0x3fb0
[ 1144.414357][T30903]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1144.419647][T30903]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1144.425643][T30903]  ? find_held_lock+0x35/0x130
[ 1144.430412][T30903]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1144.436406][T30903]  ? kasan_check_write+0x14/0x20
[ 1144.441350][T30903]  ? lock_downgrade+0x880/0x880
[ 1144.446225][T30903]  ? kasan_check_read+0x11/0x20
[ 1144.451089][T30903]  ? do_raw_spin_unlock+0x57/0x270
[ 1144.456223][T30903]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1144.462042][T30903]  ? kasan_check_read+0x11/0x20
[ 1144.466908][T30903]  ? __thp_get_unmapped_area+0x190/0x190
[ 1144.472547][T30903]  ? pmd_val+0x100/0x100
[ 1144.476796][T30903]  ? __lock_acquire+0x548/0x3fb0
[ 1144.481736][T30903]  ? __kernel_text_address+0xd/0x40
[ 1144.486946][T30903]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1144.492075][T30903]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1144.497660][T30903]  ? find_held_lock+0x35/0x130
[ 1144.502436][T30903]  ? handle_mm_fault+0x322/0xb30
[ 1144.507392][T30903]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1144.513650][T30903]  ? kasan_check_read+0x11/0x20
[ 1144.518630][T30903]  handle_mm_fault+0x43f/0xb30
[ 1144.523409][T30903]  __get_user_pages+0x7b6/0x1a40
[ 1144.528366][T30903]  ? follow_page_mask+0x19a0/0x19a0
[ 1144.533583][T30903]  ? get_user_pages_remote+0x17d/0x440
[ 1144.539061][T30903]  get_user_pages_remote+0x1a3/0x440
[ 1144.544366][T30903]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1144.550020][T30903]  ? alloc_vmap_area.cold+0x24/0x24
08:04:31 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000480)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ad", 0x1)
recvfrom(r1, &(0x7f00000001c0)=""/124, 0x7c, 0x0, 0x0, 0x0)
recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

08:04:31 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0xfffffffffffffed8}], 0x1)
fdatasync(r0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000140)={{{@in=@multicast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@remote}, 0x0, @in=@empty}}, &(0x7f0000000080)=0xe8)
r2 = getgid()
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getresuid(&(0x7f0000000300)=<r4=>0x0, &(0x7f0000000340), &(0x7f0000000380))
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x4000, &(0x7f00000003c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xe000}, 0x2c, {'user_id', 0x3d, r1}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x2}}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@default_permissions='default_permissions'}], [{@euid_lt={'euid<', r3}}, {@context={'context', 0x3d, 'system_u'}}, {@uid_lt={'uid<', r4}}, {@permit_directio='permit_directio'}]}})

[ 1144.555241][T30903]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1144.561485][T30903]  ? _copy_from_user+0xdd/0x150
[ 1144.566340][T30903]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1144.572071][T30903]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1144.577549][T30903]  process_vm_rw+0x21f/0x240
[ 1144.582157][T30903]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1144.587981][T30903]  ? __might_fault+0x12b/0x1e0
[ 1144.592803][T30903]  ? kasan_check_read+0x11/0x20
[ 1144.597659][T30903]  ? _copy_to_user+0xc9/0x120
[ 1144.602366][T30903]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1144.608622][T30903]  ? nsecs_to_jiffies+0x30/0x30
[ 1144.613490][T30903]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1144.618959][T30903]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1144.624422][T30903]  ? do_syscall_64+0x26/0x610
[ 1144.629115][T30903]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1144.634761][T30903]  do_syscall_64+0x103/0x610
[ 1144.639370][T30903]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1144.645265][T30903] RIP: 0033:0x458209
[ 1144.649254][T30903] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1144.668867][T30903] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1144.677295][T30903] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1144.685283][T30903] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013a3
[ 1144.693292][T30903] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1144.701264][T30903] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
08:04:31 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x200001000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x0, 0x2)
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f00000000c0))
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x800000000, 0x4})

[ 1144.709242][T30903] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1144.734930][T30919] CPU: 1 PID: 30919 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1144.744062][T30919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1144.754123][T30919] Call Trace:
[ 1144.757422][T30919]  dump_stack+0x172/0x1f0
[ 1144.761778][T30919]  handle_userfault.cold+0x41/0x5d
[ 1144.766894][T30919]  ? __lock_acquire+0x548/0x3fb0
[ 1144.771852][T30919]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1144.777154][T30919]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1144.783161][T30919]  ? find_held_lock+0x35/0x130
[ 1144.787956][T30919]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1144.793950][T30919]  ? kasan_check_write+0x14/0x20
[ 1144.799211][T30919]  ? lock_downgrade+0x880/0x880
[ 1144.804074][T30919]  ? kasan_check_read+0x11/0x20
[ 1144.808936][T30919]  ? do_raw_spin_unlock+0x57/0x270
[ 1144.814061][T30919]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1144.819872][T30919]  ? kasan_check_read+0x11/0x20
[ 1144.824740][T30919]  ? __thp_get_unmapped_area+0x190/0x190
[ 1144.830377][T30919]  ? pmd_val+0x100/0x100
[ 1144.834627][T30919]  ? __lock_acquire+0x548/0x3fb0
[ 1144.839567][T30919]  ? __kernel_text_address+0xd/0x40
[ 1144.844777][T30919]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1144.844801][T30919]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1144.844817][T30919]  ? find_held_lock+0x35/0x130
[ 1144.844833][T30919]  ? handle_mm_fault+0x322/0xb30
[ 1144.844858][T30919]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1144.844880][T30919]  ? kasan_check_read+0x11/0x20
[ 1144.855517][T30919]  handle_mm_fault+0x43f/0xb30
[ 1144.855537][T30919]  __get_user_pages+0x7b6/0x1a40
[ 1144.855569][T30919]  ? follow_page_mask+0x19a0/0x19a0
[ 1144.891122][T30919]  ? get_user_pages_remote+0x17d/0x440
[ 1144.896588][T30919]  get_user_pages_remote+0x1a3/0x440
[ 1144.901869][T30919]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1144.907492][T30919]  ? alloc_vmap_area.cold+0x24/0x24
[ 1144.912673][T30919]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1144.918905][T30919]  ? _copy_from_user+0xdd/0x150
[ 1144.923753][T30919]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1144.929478][T30919]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1144.934944][T30919]  process_vm_rw+0x21f/0x240
[ 1144.939543][T30919]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1144.945355][T30919]  ? __might_fault+0x12b/0x1e0
[ 1144.950125][T30919]  ? kasan_check_read+0x11/0x20
[ 1144.954955][T30919]  ? _copy_to_user+0xc9/0x120
[ 1144.959614][T30919]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1144.965843][T30919]  ? nsecs_to_jiffies+0x30/0x30
[ 1144.970699][T30919]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1144.976149][T30919]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1144.981612][T30919]  ? do_syscall_64+0x26/0x610
[ 1144.986546][T30919]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1144.992195][T30919]  do_syscall_64+0x103/0x610
[ 1144.996831][T30919]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1145.002726][T30919] RIP: 0033:0x458209
[ 1145.006614][T30919] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1145.026196][T30919] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1145.034592][T30919] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1145.042552][T30919] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d22
[ 1145.050519][T30919] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
08:04:32 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40, 0x0)
getsockopt$inet6_dccp_int(r1, 0x21, 0x0, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x7})
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000180)={<r3=>0x0})
ioctl$DRM_IOCTL_DMA(r2, 0xc0406429, &(0x7f00000002c0)={r3, 0x2, &(0x7f00000001c0)=[0x100, 0x180], &(0x7f0000000200)=[0x2], 0x22, 0x5, 0xe536, &(0x7f0000000240)=[0x1, 0x5, 0x800, 0x7, 0x1], &(0x7f0000000280)=[0x0, 0x0, 0x7]})

08:04:32 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, <r1=>0x0})
rt_sigqueueinfo(r1, 0x1e, &(0x7f0000000040)={0x1e, 0x401, 0x10f1})

08:04:32 executing program 2:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000000000004)
writev(r0, &(0x7f00007af000)=[{&(0x7f0000000080)="480000001400190a20ffff7fffffff5602113b850e1de0974881000000fe58a23c4a03049164643e89720000de213ee23ffbf510040041feff5aff2b000000000000070000000000", 0x48}], 0x1)

[ 1145.058488][T30919] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1145.066454][T30919] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:32 executing program 3:
r0 = syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000140))
r1 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
read(r1, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:32 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x2, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:32 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000200)="0adc1f12b7e9a431b65302eb81803ec5fb59e50287c517df5c127abb8cc32084f0ad4f06afcd204f3721bdab34edfa1904129d846a51d15cab661944b7dfa61ed9e3a7c2e864365fd1b897")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000040)={<r2=>0x0, 0x82d}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000100)={r2, 0x7}, 0x8)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:32 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = request_key(&(0x7f0000000480)='id_resolver\x00', &(0x7f00000004c0)={'syz', 0x0}, &(0x7f0000000500)='+em1\x00', 0x0)
request_key(&(0x7f0000000200)='id_legacy\x00', &(0x7f0000000400)={'syz', 0x2}, &(0x7f0000000440)='#\x00', r2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = timerfd_create(0x0, 0x0)
readv(r3, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/14, 0x34c}], 0x1)
timerfd_settime(r3, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0)
writev(r0, &(0x7f0000000580)=[{&(0x7f0000000540)="ebc42f523b6065218d0070df12a14f8038b71b2b6ccae41287", 0x19}], 0x1)
splice(r0, &(0x7f0000000100), r0, &(0x7f0000000140), 0x100000001, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x80000003, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000002c0)={0x1, {{0x2, 0x4e21, @local}}, {{0x2, 0x4e20, @multicast1}}}, 0x108)
write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f00000000c0)={0x7, 0x4d, 0x1}, 0x7)
clone(0x40100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000ffc000/0x4000)=nil)
io_setup(0x3ff, &(0x7f0000000180)=<r4=>0x0)
mkdirat(r3, &(0x7f00000005c0)='./file0\x00', 0x1a)
io_cancel(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0x2, 0xffffffffffffffff, &(0x7f0000000200), 0x0, 0x8, 0x0, 0x2, r0}, 0x0)
io_setup(0x0, 0x0)

08:04:32 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0)

08:04:32 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x68, r1, 0x511, 0x70bd2c, 0x25dfdbfc, {{}, 0x0, 0x4108, 0x0, {0x4c, 0x18, {0x10001, @link='broadcast-link\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0x4000040)

08:04:32 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={<r2=>0x0, 0x5, 0x8, 0xa51, 0x9, 0x3f}, &(0x7f0000000100)=0x14)
sendmsg$rds(r1, &(0x7f0000000700)={&(0x7f0000000240)={0x2, 0x4e22, @multicast2}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000280)}, {&(0x7f00000002c0)=""/240, 0xf0}, {&(0x7f00000003c0)=""/25, 0x19}], 0x3, &(0x7f00000005c0)=[@cswp={0x58, 0x114, 0x7, {{0x3, 0x800}, &(0x7f0000000440)=0x2, &(0x7f0000000480)=0x38, 0xffff, 0x0, 0x292d, 0xfffffffffffffe84, 0x20, 0x8}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x7fffffff}, @mask_cswp={0x58, 0x114, 0x9, {{0x3, 0xf2}, &(0x7f00000004c0)=0x40, &(0x7f0000000500)=0xc000000000000, 0xe598, 0x6, 0x3, 0x6, 0x2, 0x3}}, @fadd={0x58, 0x114, 0x6, {{0x1000, 0x1fffffffc000}, &(0x7f0000000540)=0x4, &(0x7f0000000580)=0x20, 0x9, 0x2, 0x200, 0xf4, 0x40, 0x8000}}], 0x120, 0x4004}, 0x4004000)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000180)={r2, 0x6, 0x20}, 0xc)
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000280))
ioctl$UI_END_FF_UPLOAD(r1, 0x406855c9, &(0x7f00000001c0)={0xc, 0x2, {0x55, 0x81, 0x80, {0xe9, 0x800000008000000}, {0x0, 0x3}, @period={0x5c, 0x6, 0x0, 0x9, 0x4, {0x8, 0xab49, 0x101, 0x5}, 0x1, &(0x7f0000000140)=[0x8]}}, {0x0, 0x4, 0x8, {0x5, 0x101}, {0xfffffffffffff2dd, 0x2}, @rumble={0x1aa, 0x10000}}})
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1145.355924][T31550] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1145.365951][T31550] CPU: 0 PID: 31550 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1145.374987][T31550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1145.385042][T31550] Call Trace:
[ 1145.388340][T31550]  dump_stack+0x172/0x1f0
[ 1145.392709][T31550]  handle_userfault.cold+0x41/0x5d
[ 1145.397840][T31550]  ? __lock_acquire+0x548/0x3fb0
[ 1145.402810][T31550]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1145.408108][T31550]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1145.414101][T31550]  ? find_held_lock+0x35/0x130
[ 1145.418875][T31550]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1145.424865][T31550]  ? kasan_check_write+0x14/0x20
[ 1145.429825][T31550]  ? lock_downgrade+0x880/0x880
[ 1145.434688][T31550]  ? kasan_check_read+0x11/0x20
[ 1145.439549][T31550]  ? do_raw_spin_unlock+0x57/0x270
[ 1145.444670][T31550]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1145.450486][T31550]  ? kasan_check_read+0x11/0x20
[ 1145.455351][T31550]  ? __thp_get_unmapped_area+0x190/0x190
[ 1145.460992][T31550]  ? pmd_val+0x100/0x100
[ 1145.465241][T31550]  ? __lock_acquire+0x548/0x3fb0
[ 1145.470197][T31550]  ? __kernel_text_address+0xd/0x40
[ 1145.475432][T31550]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1145.480558][T31550]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1145.486112][T31550]  ? find_held_lock+0x35/0x130
[ 1145.490889][T31550]  ? handle_mm_fault+0x322/0xb30
[ 1145.495843][T31550]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1145.502097][T31550]  ? kasan_check_read+0x11/0x20
[ 1145.506963][T31550]  handle_mm_fault+0x43f/0xb30
[ 1145.511738][T31550]  __get_user_pages+0x7b6/0x1a40
[ 1145.516686][T31550]  ? follow_page_mask+0x19a0/0x19a0
[ 1145.521894][T31550]  ? get_user_pages_remote+0x17d/0x440
[ 1145.527387][T31550]  get_user_pages_remote+0x1a3/0x440
[ 1145.532696][T31550]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1145.538355][T31550]  ? alloc_vmap_area.cold+0x24/0x24
[ 1145.543566][T31550]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1145.549805][T31550]  ? _copy_from_user+0xdd/0x150
[ 1145.554651][T31550]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1145.560377][T31550]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1145.565856][T31550]  process_vm_rw+0x21f/0x240
[ 1145.570459][T31550]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1145.576272][T31550]  ? __might_fault+0x12b/0x1e0
[ 1145.581071][T31550]  ? kasan_check_read+0x11/0x20
[ 1145.585930][T31550]  ? _copy_to_user+0xc9/0x120
[ 1145.590643][T31550]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1145.596892][T31550]  ? nsecs_to_jiffies+0x30/0x30
[ 1145.601762][T31550]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1145.607228][T31550]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1145.612695][T31550]  ? do_syscall_64+0x26/0x610
[ 1145.617383][T31550]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1145.623030][T31550]  do_syscall_64+0x103/0x610
[ 1145.627634][T31550]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1145.633531][T31550] RIP: 0033:0x458209
[ 1145.637434][T31550] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:04:32 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
sendmsg(r0, &(0x7f00000045c0)={&(0x7f00000000c0)=@un=@abs={0x1, 0x0, 0x4e21}, 0x80, &(0x7f0000001280)=[{&(0x7f0000000140)="ff2e0c61c37d8322faba9d6898c90ee13f21f7618cb7c6cf062ebf33752b614750448534cc2e13a1c8183a3cda322df8dea734a28d759faeeab3c2c1e307bd7eb5436c366fcaa523094291fb14", 0x4d}, {&(0x7f00000001c0)="2564092626bdd29b3e2dd87a6825", 0xe}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="19c26ecc8d6fcb69e11ede94f52d75fe7289776cdff901366f9fbfd194c63948a717f1cfaae37b2cee74351d01b5b6b251bfe3ffa1eff22c437a133c47842f87f519e36dd72a38e369897f6d871bb4e770182b9eb9dfc0973e01ef587a02f27b78726e279f7c23cf2e1c39ce402a55cdb31c0a1b6e9eb31ea4ea", 0x7a}], 0x4, &(0x7f00000012c0)=[{0x1010, 0x10b, 0x5, "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"}, {0x40, 0x11d, 0x3, "3b68b8e8e22294fac02a019b5be7713c56fad88c20a41f756e0675bffc6ba2c925204f66bbdb3d506f203a048b6b"}, {0x1010, 0x107, 0x7, "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"}, {0xe0, 0x13f, 0x0, "52cd0c6b78c731403340f6e914e757d968120497966244368b64eba6c8ad5a27ae7a20d733a39328d6e0c6d49b6a50217bd322fc9d3bd2ed24e144db78733446dc8976588cb6328e5131f9573667b53b2f70479a1a07c312b20630c9df11f9a13f47e595c90077ff49fe2afa581d2010a2fa466e302176ba62bbf21927af961275ecab4053e952cbbd528e0dda50affb23dab5d3c847b824616178fc464f62881b45d6e4f715c618486f8f2b03ff96d80e82698d3d5ea93464390ac7191be9b180320021d0519863763ceccc"}, {0x108, 0x107, 0x89a8, "a6c3537f7ca8fbab551008e43d2084711a30b5b7843a0e8312b60aa85032c8f5593e4f9e6e2ccdd90e51d41f24a54b0056aa0819fd2105b195d1da1cac07407969b6eb659fa26427348d9ed695a146bf0f964b3d9c9bc95ba8b2b4b731708e79b412fde472dffb9744fe7d972e6156cd69f81ee23023aa4ec8d32711d64cd49f44ac6968652cd31ef59dcf9850d49531e5e72fda22ad654ee6757f474e9aece6af732eeea62e10dc6200a6aa08ffe16f39c40c377d215caa5add31d62368e7262e8cb7e12f970a05ac5454fe91c50c33268448f5001a05792168f9fcbbf575862228134ced12254fb97193223719b1284f955d"}, {0x1010, 0x10d, 0x5, "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"}, {0x18, 0x1ff, 0x5, "2b38511c342c"}, {0x60, 0x119, 0x47c68e00, "06938ab2019256630a1b3df87e740ee21686264b5d289994723c74f8a4d699f2a904ac49695c11954a7371536ae5a7ff5408d57e722029c37fb9e8111522759143204aaa3797b15b26d0"}], 0x32d0}, 0x8000)
r1 = syz_open_dev$cec(&(0x7f0000004600)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:32 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:32 executing program 2:
sched_setaffinity(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup2(r2, r0)
write$P9_RSTATFS(r3, &(0x7f0000000280)={0x43}, 0x43)
recvmmsg(r1, &(0x7f0000000b80)=[{{&(0x7f0000000200)=@l2, 0x80, &(0x7f00000005c0), 0x227, &(0x7f0000000600)=""/84, 0x54}}, {{&(0x7f0000000680)=@l2, 0x80, &(0x7f0000000a40), 0x0, &(0x7f0000000ac0)=""/147, 0x93}}], 0x4000000000002ce, 0x0, 0x0)

[ 1145.657039][T31550] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1145.665457][T31550] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1145.673433][T31550] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d26
[ 1145.681406][T31550] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1145.689845][T31550] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1145.697828][T31550] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:32 executing program 0:
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000100)='coredump_filter\x00')
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)="005e0cf6ee451b4b3f55a61711d062c596d00e3451822de4827b63538476e9d8f2d455d7c9888b83474871e8a6ddc4a67c28abf783d63eb385b9daf809f02280eb4afb94b5f005", 0x47}], 0x1)

[ 1145.753807][T32069] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1145.759065][T32069] CPU: 0 PID: 32069 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1145.768083][T32069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1145.778142][T32069] Call Trace:
[ 1145.781467][T32069]  dump_stack+0x172/0x1f0
[ 1145.785827][T32069]  handle_userfault.cold+0x41/0x5d
[ 1145.791829][T32069]  ? __lock_acquire+0x548/0x3fb0
[ 1145.797865][T32069]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1145.803184][T32069]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1145.809186][T32069]  ? find_held_lock+0x35/0x130
[ 1145.813960][T32069]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1145.819952][T32069]  ? kasan_check_write+0x14/0x20
[ 1145.824904][T32069]  ? lock_downgrade+0x880/0x880
[ 1145.829769][T32069]  ? kasan_check_read+0x11/0x20
[ 1145.834626][T32069]  ? do_raw_spin_unlock+0x57/0x270
[ 1145.839748][T32069]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1145.845564][T32069]  ? kasan_check_read+0x11/0x20
[ 1145.845587][T32069]  ? __thp_get_unmapped_area+0x190/0x190
[ 1145.845600][T32069]  ? pmd_val+0x100/0x100
[ 1145.845622][T32069]  ? __lock_acquire+0x548/0x3fb0
[ 1145.856078][T32069]  ? __kernel_text_address+0xd/0x40
[ 1145.856100][T32069]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1145.856121][T32069]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1145.856141][T32069]  ? find_held_lock+0x35/0x130
[ 1145.885870][T32069]  ? handle_mm_fault+0x322/0xb30
[ 1145.890825][T32069]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1145.897074][T32069]  ? kasan_check_read+0x11/0x20
[ 1145.901936][T32069]  handle_mm_fault+0x43f/0xb30
[ 1145.906709][T32069]  __get_user_pages+0x7b6/0x1a40
[ 1145.911665][T32069]  ? follow_page_mask+0x19a0/0x19a0
[ 1145.916878][T32069]  ? get_user_pages_remote+0x17d/0x440
[ 1145.922360][T32069]  get_user_pages_remote+0x1a3/0x440
[ 1145.927666][T32069]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1145.933326][T32069]  ? alloc_vmap_area.cold+0x24/0x24
[ 1145.938544][T32069]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1145.944790][T32069]  ? _copy_from_user+0xdd/0x150
[ 1145.949648][T32069]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1145.955382][T32069]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1145.960859][T32069]  process_vm_rw+0x21f/0x240
[ 1145.965467][T32069]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1145.971275][T32069]  ? __might_fault+0x12b/0x1e0
[ 1145.976073][T32069]  ? kasan_check_read+0x11/0x20
[ 1145.980931][T32069]  ? _copy_to_user+0xc9/0x120
[ 1145.985620][T32069]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1145.991863][T32069]  ? nsecs_to_jiffies+0x30/0x30
[ 1145.996730][T32069]  ? trace_hardirqs_on_thunk+0x1a/0x1c
08:04:33 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f0000000000), 0x0)

08:04:33 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20\x00', 0x60441, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
r3 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1146.002206][T32069]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1146.007673][T32069]  ? do_syscall_64+0x26/0x610
[ 1146.012360][T32069]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1146.018010][T32069]  do_syscall_64+0x103/0x610
[ 1146.022623][T32069]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1146.028513][T32069] RIP: 0033:0x458209
[ 1146.032417][T32069] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1146.052022][T32069] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1146.060439][T32069] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1146.068414][T32069] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013a7
[ 1146.076393][T32069] RBP: 000000000073bfa0 R08: 0000000000000002 R09: 0000000000000000
[ 1146.084362][T32069] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1146.092338][T32069] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:33 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:33 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
ioctl$BLKRAGET(r1, 0x1263, &(0x7f00000000c0))

08:04:33 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000040)=<r1=>0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={<r2=>0x0}, &(0x7f00000000c0)=0xc)
fcntl$getownex(r0, 0x10, &(0x7f0000000280)={0x0, <r3=>0x0})
stat(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000e00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
stat(&(0x7f0000000e80)='./file0\x00', &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
openat$ipvs(0xffffffffffffff9c, &(0x7f00000011c0)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000001240)=<r6=>0x0)
fstat(r0, &(0x7f0000000f80)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
stat(&(0x7f0000001000)='./file0\x00', &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
sendmsg$netlink(r0, &(0x7f0000001180)={&(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)=[{&(0x7f0000000300)={0x4f0, 0x3a, 0x0, 0x70bd2a, 0x25dfdbfb, "", [@nested={0x230, 0x50, [@generic="2c980e949e8a0ea85b113c038bbab7dae3be1a1da7cbb7a0d3bdc89376623570d76c57b16e85eec07c2abfc40567ab0d37b5df5243a42b54e6731e0f1a490856a13e1de26c94823fe26b44daa57af348cb381f3921f4ccc683ecbeb5a871552e71534a7fa468bf7e11c0b3fe33f9210adf161a8eef40fc183c824b8c3e8de1fb208ca201a093ec7ce31eedd71f89fc6d4fc7732e6d23b01576696bdb80e16cb0fd797dd4ca0ed552ed72", @typed={0x8, 0x1b, @pid=r1}, @generic="95b9820178efd981ae597a7b77985a4e36be37c82c14e39c822ac16a2047e80e47e0ac25e4906003320b927adb64d8e8283987a2fe3577a027c96cc1bf91d51c762c0572485c617cb43dbb9b53cb6d536f6408cde9c87a0e54f30d322ecf3dce0b40fe28d8a4a65b3493b9024be8ae3a6878f9efe527171a1fb9b25b16650db2a6b5", @typed={0x8, 0x4e, @str='\x00'}, @generic="1547c752dcfe4b7ce4f0e330b940a63834a250a0ca2cad605aac04de6840d35b194d643010aba7b149c14b020a29e7ed7feea45313d17b9dc99ade7bd76508fa43716b0fa0196fefb9c42d697c929b732aab33508906632c7b57cb8bb6a55509345690452564aebb42e8019c0bbaaff8a2870a5419a44cad332c726a5d90440390c90a042f5d7155e402", @generic="508a2ea30d87c054af5c2b0e6bd19e2fc6c311b93e638363981619dd2b14839c5b5022e4bcef78a7dfa040439f73136c7ecafd79298dbc390c88726bededf7cab6181b2de2cd29f9303ba880fd1ff0da5bea17c1ea58bc5d0291ad3cdd07fc1ed32185b50f"]}, @typed={0xc, 0x76, @u64}, @typed={0x8, 0x25, @u32=0x2}, @nested={0x4, 0x2f}, @nested={0x160, 0x23, [@generic="d37918fb80c2a7fcb636918a24d188c21a2da00a3e76c1cf2e4e988d265932651420c91d81529ae78051039a12a92c82860371f8a798ad5637156772776b6fc22758f942dbb7496b4ec65e63c8e390a408177ac0fac1500aeda91aad66216fa7938daa4c69f4b6e9cfd2e58bea96a730fd044260e5fcdd3d70142b115c4f33831c7fdc23e23a0a0a46a57d6a3bdd00376324ef2f18873236f2e03ff2ba4785006cb5a1dc9a3ec2a0005fb6fb2b06ab138e36cce669649025054ed965abf93edcccbed341683f37c36a31f76d0f3d4dbe05c4b9cf58e261f6bb49be3cb1406a75db20d23a3b921b", @generic="09fbe67bcf99f3de2547d89e2f703bbeef028d5d28dc80f1c999bf7ac4aa8bd7a0ee385eb36142080dd1fdcbaa55361fae8a790af8a0dc3ae6526554dbce81d5044008e2f282826b1842f1d01680719598cbecefa877ff6af3552960d8548f6cb8b81341981d238204fd2144f71cc76713c293d88e"]}, @generic="d8c6c204ea37f76d97be0179f2ea455d2788c7415abee41343509a8bb01620b6c96fc9618f79b19ac05e61e55597af98d7a7ae98df5f137bfc0eb06141aff3a50df0cc2441e12f94684947d4ecd2ad9fe214", @typed={0x8, 0x69, @fd=r0}, @nested={0xdc, 0x95, [@generic="6025ffa89b08da2aa5e09705fbd524705bf173d663d8e3efce52f43db119a006aeb558200ab61ebf454ea810e611469e96b72088570b5fcc123fa354478b69a1bc2c868e648501efe8899ad5afc14cc1f9ab9560450f7fe614ce1c9e", @typed={0x14, 0x6a, @ipv6=@rand_addr="a405d9ab774937b340591d6a0ea863a6"}, @generic="0b6b550c2b4e60464d8af63f4a961da4b47f7c3dc7ce296c963b7e85bfc840ae5258f138931c9ba864f65c163c83d419858ffabe1733df070a0e7aa8da6128da10e7ad56fac70d361991af710877b8c68e190d37cad1a87defa9dbb35ff8042d2572dec4f1"]}]}, 0x4f0}, {&(0x7f0000000800)={0x3f8, 0x12, 0x212, 0x70bd2a, 0x25dfdbfe, "", [@generic="8b6022abd31ea7b40d252e7fbab9b05983c51ae4fd0cdfeaa14ca0538eac38f2ab3988c7130855842b2f925893c0f53a588cc057fb5a8310491045c842c99c6234168ed7453677cfc85a9665cf4cb56b625a2359425727c15d40e0b9bad137f9536609c94e3ef62f125a149a28df3129ec20107be4ef4bf9b8d14fb5732fb383da4cfc90558002d664f423fa6de36a542ae1381724b5ba0f40a97b556eb49c7b306c74a40d7c50", @generic="cd01e36b428bbc78e34b49c26b175255ee89cf03a00ab6627323516c79f1e29a70a9b29a45a23f0da00de6d8d1e0cb483346d1207962eecc00f4a7fcf75615cb953934729c80785c9c9f34280c9c53269c230743485da0c1dd86e1b38c63bcc6b11cdab69f07beab17eb1b9c7f362dbec0eedd1b9f05", @typed={0xa0, 0x10, @binary="613e0d79a19ede95b8df2d97665ac4faa2da94e20c062ba26c42525217eda06f8a4224ff809d89c7821b052ce91c02f2c5f54c5e066b354dfe23ee2dbd33645015ab440d5c2b49f897a13334e02bfb1a48de385134a23fd0c132985bdfca17ed4c2a4f3cdbe6abc8a39424571ef05ec5b7996af8b9afe227ffad508fbe02f53d4f1949fcc040eb5bb8db98ef35f962fbf1a2e2887c65229704276770"}, @generic="37c18343fa2721701b87f8603256ed05c6b6dee8a6e98c98974d316fef8580c7af8499efa3ce85077e7967c4370467248772c88e3829dd53f9b671ace0b6d9b697e11f772865abcf582fbc14b53eccad5e73d57dac3ed83cc65c231438fdbcd8cd26a7ec4783dfdc39a5eca4a9ec6f27a561537e13c3680d449d6afc5cc6f1a406c80d9010626c5f17ee754033f1f077bc83e2eaaf60a2495ce52ad01252189bbcab764ed024214f335add0e90795e87f2fc4d9def46e5f35d00ec255e6472838edb3e1890ddf5fa3a2a4542e1", @generic="5ab7e88d84536abdf1fe1a63ecb1b4552d126d05cc53dc08257f276eadcf9fbcb00f86129d63c9093a99af0aaa4a4a938bdb22cccfa88de006864f211f4140b3416775061d4624b2c59c89cec5277ae873a92032138721a3bc4d0740b09800d636632014200f422915facad1e3aed26907f2b5544bb00c289dbc2189fe36a462869a812a2d8ad8cf21c4a9adf64faf7660f9b9", @nested={0x14, 0x52, [@generic="aaee9f", @typed={0x8, 0x91, @pid=r2}, @typed={0x4, 0x1}]}, @typed={0x14, 0x46, @str='coredump_filter\x00'}, @generic="0d527322eaa85b778d65f96560fed1120679d84a7c3f038213dcdfff9c584640fae8310ac73f8e257aab3d2d848cb9286c2568702025970998667d7d985acf0c941d9cdce80d21dc31400d04474c08b4a61b235fcc0b38882906486d542be134f0d15b53936fc9adc2a0dbcde3ebd54565db6913730171e85da2391fab01ea592eff6bb7b1e203f2ec5559c0e0ecb68540a00d1319ebc26a49a3699d97ffb38e3e2550"]}, 0x3f8}, {&(0x7f0000000c00)={0x1b0, 0x16, 0x100, 0x70bd2b, 0x25dfdbff, "", [@generic="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", @generic="e65e91d92a7ce643d3bcaf45449910fcc27601bf91dfe7ea037fcdc81f4d70f5e783ed0ec33b95beb78a377f44a857fd521a8a31fc18bcde831a8aa2fdd079f1e70afc6115e03d19c0628bbf9577f5efc4a9acc25bccaad57fc73f07fb39a0ae890766bbdd198dee1e8fbd53cdcc2aa0a683f363f1550b3e1f0c71cafe5910a78eebb0ddd7c11c880dae920979479e2b52c18436ea01b5baaa2c57993c39ea30e7c03dd0"]}, 0x1b0}, {&(0x7f0000000140)={0xe0, 0x2b, 0x4, 0x70bd25, 0x25dfdbfc, "", [@generic="6847f1118ee56fca7f3cb139a83b5a8ed3a0067fd6cf23bb9b50c3d0065de27e02f1efb809b5454727d6b1d91d18f5f1d2d8361f032c9b8f419aa13fd2142e6009120574e71249b64b07bdf17816cebc33124928e72e2deaaeb0fc4bf200b563561951c0d4a188bf6dd532665cb852cc917760d3957145c85dcff1c62c5d4eb96c228fd2c3ba95e8e54dd20e49a2b9ad29263972b815c43fb0c873f3473ebe9e03dc81a8aebad43c6c45dd9901f8db7c9a11eb37164f676f4596ab0f0201c185414eec2a535fba168defa5900e7b52"]}, 0xe0}], 0x4, &(0x7f00000010c0)=[@cred={0x20, 0x1, 0x2, r3, r4, r5}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0]}, @rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r6, r7, r8}], 0xc0, 0x40}, 0x4000)

08:04:33 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
pwritev(r1, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8ed812277093e7f3c0fc997957e93efaa8ccf17577b5484f8238a619f2617934eddb5f9bf2e404ae5d13b97cd7c8d9d3d74838d0d048fdb684cad675f54da0e2e0240587c3dc0e237c3db7b607e1191b3da161389b5f6d09c0b72927d736a72c5f7f2a41f574e45a578afbb280c569e4fd9710a0b2a575e59ca986e70d42d0fe7f43627c026957fa5f9e1914a069e3e8ddcb4cb6839ffadad73bd0d1b9b65dab9877aead5510ffc482c3d3973c396fabfd34aa63c66164450f295afe93f958a7372c2ba8555f290b1", 0xc9}, {&(0x7f00000001c0)="38d0fb11f858e3937925282cc9487115a423d43c2ee64a9f56d5a6ea2f1da8ce46137991be0ae29a949925a8a262456c50316002e63ecb249dbe5cb99ec2deda938c140c2288e2d01703b6a44cfc7abae26744e57dd8ffe36eed6311ad8c7aafeaec2613a4b2fdb590775ecdf7ea2e449f8db61e9895a053ebd102d1691977c35f8a", 0x82}, {&(0x7f0000000280)="ff042f3846b72b539af53c89d00dea7dca107f1ac5784ddd1b69ad1ed7ae16e5e45fea9c245da4295330dc6475113424369ed1284c0908fe1c50a49a4c9db5605176ad20a187deb6a45e7e3160b1e1bfd658678b4409222dc2ac6a7b56af882d306d23fbf02482972a95dfbca529405e36e71d0d63f1b9618f738ab4898303d4bc937952f510019e18b6523d1db862d2a1c5fe30a59099fc900b2e4e8d8aac6b262be19c10fcced2570d0fca525d542dd92cff086ce792b9e2a1580cad3f4c517af7adaca40fc7ee812bfcaa908fd769808e64c69231a301ef366a207ccab16b4baa8d9faf", 0xe5}, {&(0x7f0000000380)="fb3783b0f6db83da9ce8401170bf99fccf90637fecd37356e3a28eeac18ea1a710c4c513ee53b77166227c3976c5f33a1d318bba1cc0b8764de167fb6e4a7071677c08d4356bfcf39add1f18dc6f437665eafe59f1124ea9a7c4acd6b8277255ab83aff8745accb8a1aaf2eae184bea2911fbefc42f264bbd6eae21d8115a52d9f5429dde6c9757f20d58c7b4a35cafa47e5bdec1244791acf40f34765c14a83f9fde45fe1986bf70be3539fe774b6fb7faa0059db5c463e866c2e3830533d0cb99e26c9b4674334e5100132ac0d45", 0xcf}], 0x4, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f00000004c0)='SEG6\x00')
clock_gettime(0x0, &(0x7f0000000480)={<r4=>0x0, <r5=>0x0})
nanosleep(&(0x7f0000000500)={r4, r5+30000000}, &(0x7f0000000940))
sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000580)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000540)={&(0x7f0000000880)=ANY=[@ANYPTR=&(0x7f0000000600)=ANY=[@ANYRES16, @ANYRES32=r2], @ANYRESDEC=r2, @ANYPTR, @ANYRES64=r1, @ANYPTR64=&(0x7f0000000800)=ANY=[@ANYPTR64=&(0x7f0000000640)=ANY=[@ANYRESHEX, @ANYRES32=r1, @ANYRESOCT=r3, @ANYRESHEX=r1, @ANYRESDEC=r2, @ANYRES16=r0, @ANYRES64=r1, @ANYRESDEC=r3, @ANYPTR], @ANYRES32=r1, @ANYPTR=&(0x7f00000006c0)=ANY=[@ANYBLOB="d9ee5f1d2b244a33fd4768b0b9a1693f516ebf66d39d9730fd97f9bc6eb804f527c52a5a59fddc610abc1c1d96eef873415280ffb9231a7d783c9574a1080bf1572fa46f90ef4e26fda2aa5310948ccb57d911c7f8d947151ba60d6f528d877313a1d3d9a702418085077429f54b44ae1a88ba8bf8a1536717a1241fc39688115f156bfa358794d0f47eb673babc40e9c1c9d2449e9a488fd42b4035a9cfb4e45c0e68ae8f8294e8e1ff63f6ceb7feccb1", @ANYPTR64, @ANYRESDEC=r1, @ANYPTR64, @ANYRESDEC=0x0, @ANYRESDEC, @ANYRES32=0x0, @ANYRES32=r0]], @ANYRES64=r3, @ANYRESDEC=r2], 0x7}, 0x1, 0x0, 0x0, 0x4000}, 0x4011)

[ 1146.207111][T32285] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1146.219357][T32285] CPU: 1 PID: 32285 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1146.228390][T32285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1146.238447][T32285] Call Trace:
[ 1146.241763][T32285]  dump_stack+0x172/0x1f0
[ 1146.246116][T32285]  handle_userfault.cold+0x41/0x5d
[ 1146.251255][T32285]  ? __lock_acquire+0x548/0x3fb0
[ 1146.256242][T32285]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1146.261545][T32285]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1146.267719][T32285]  ? find_held_lock+0x35/0x130
[ 1146.272502][T32285]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1146.278496][T32285]  ? kasan_check_write+0x14/0x20
[ 1146.283443][T32285]  ? lock_downgrade+0x880/0x880
[ 1146.288315][T32285]  ? kasan_check_read+0x11/0x20
[ 1146.293171][T32285]  ? do_raw_spin_unlock+0x57/0x270
[ 1146.298274][T32285]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1146.304080][T32285]  ? kasan_check_read+0x11/0x20
[ 1146.308943][T32285]  ? __thp_get_unmapped_area+0x190/0x190
[ 1146.314586][T32285]  ? pmd_val+0x100/0x100
[ 1146.318838][T32285]  ? __lock_acquire+0x548/0x3fb0
[ 1146.323783][T32285]  ? __kernel_text_address+0xd/0x40
[ 1146.328991][T32285]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1146.334119][T32285]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1146.339842][T32285]  ? find_held_lock+0x35/0x130
[ 1146.344611][T32285]  ? handle_mm_fault+0x322/0xb30
[ 1146.349560][T32285]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
08:04:33 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)="81", 0x1}], 0x1)

08:04:33 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='task\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000000)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}, 0x1})
accept4$inet(r0, &(0x7f0000000040), &(0x7f0000000080)=0x10, 0x80000)

[ 1146.355818][T32285]  ? kasan_check_read+0x11/0x20
[ 1146.360688][T32285]  handle_mm_fault+0x43f/0xb30
[ 1146.365476][T32285]  __get_user_pages+0x7b6/0x1a40
[ 1146.370440][T32285]  ? follow_page_mask+0x19a0/0x19a0
[ 1146.375651][T32285]  ? get_user_pages_remote+0x17d/0x440
[ 1146.381128][T32285]  get_user_pages_remote+0x1a3/0x440
[ 1146.386445][T32285]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1146.392096][T32285]  ? alloc_vmap_area.cold+0x24/0x24
[ 1146.397313][T32285]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
08:04:33 executing program 0:
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000040)=<r0=>0x0)
setpriority(0x1, r0, 0x3)
r1 = getpgid(0xffffffffffffffff)
r2 = syz_open_procfs(r1, &(0x7f0000000100)='coredump_filter\x00')
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000000)={<r3=>0x0}, &(0x7f00000000c0)=0xfe59)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000080)={r3, 0x5}, 0x8)
writev(r2, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1146.403565][T32285]  ? _copy_from_user+0xdd/0x150
[ 1146.408426][T32285]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1146.414149][T32285]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1146.419635][T32285]  process_vm_rw+0x21f/0x240
[ 1146.424259][T32285]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1146.430071][T32285]  ? __might_fault+0x12b/0x1e0
[ 1146.434870][T32285]  ? kasan_check_read+0x11/0x20
[ 1146.439736][T32285]  ? _copy_to_user+0xc9/0x120
[ 1146.444425][T32285]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1146.450686][T32285]  ? nsecs_to_jiffies+0x30/0x30
08:04:33 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
write$binfmt_aout(r0, &(0x7f0000000000)={{0x108, 0x7, 0x6, 0x2f9, 0x106, 0x7, 0x211, 0x7ff}, "850836daf3984e1238abedffda"}, 0x2d)
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1146.455565][T32285]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1146.461033][T32285]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1146.466503][T32285]  ? do_syscall_64+0x26/0x610
[ 1146.471201][T32285]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1146.476843][T32285]  do_syscall_64+0x103/0x610
[ 1146.481451][T32285]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1146.487351][T32285] RIP: 0033:0x458209
[ 1146.491248][T32285] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1146.510852][T32285] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1146.519522][T32285] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1146.527496][T32285] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d29
[ 1146.535476][T32285] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1146.543456][T32285] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1146.551430][T32285] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:33 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x9, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f00000000c0)={0x9, 0x100, 0x0, {0xe7ff}})

08:04:33 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000080)={<r1=>0x0, <r2=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f00000000c0)={<r3=>0x0, <r4=>0x0})
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f00000001c0)=0x7fff, 0x8)
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000180)={r3, r2})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000140)={r1, r4})
ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000000)={0x3, {0x4, 0x25, 0x8, 0x4}, {0x100000000, 0x6ace, 0x2, 0x80000000}, {0x3, 0x1}})
ioctl$SIOCX25SCAUSEDIAG(r0, 0x89ec, &(0x7f0000000040)={0xe7, 0x6})
getpeername$inet(r0, &(0x7f0000000200)={0x2, 0x0, @multicast2}, &(0x7f0000000240)=0x10)
ioctl$VIDIOC_TRY_DECODER_CMD(r0, 0xc0485661, &(0x7f0000000300)={0x7, 0x0, @raw_data=[0x8, 0xffffffffffff7fff, 0x9, 0x1000, 0x5, 0xf0e, 0x2, 0x5, 0x7, 0x800, 0x2, 0x200, 0x665, 0x6, 0xd9, 0x9]})
prctl$PR_SET_FPEMU(0xa, 0x3)
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:33 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cachefiles\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f00000001c0)={<r3=>0x0, 0x3f}, &(0x7f0000000200)=0x8)
getsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000240)={r3, 0xffffffffffffffc1}, &(0x7f0000000300)=0x8)
r4 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r4, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000340)=""/30)

08:04:33 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f00000000c0), &(0x7f0000000100)=0x4)

[ 1146.830757][  T569] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1146.836062][  T569] CPU: 1 PID: 569 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1146.844915][  T569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1146.854962][  T569] Call Trace:
[ 1146.858279][  T569]  dump_stack+0x172/0x1f0
[ 1146.862629][  T569]  handle_userfault.cold+0x41/0x5d
[ 1146.867749][  T569]  ? __lock_acquire+0x548/0x3fb0
[ 1146.872699][  T569]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1146.877987][  T569]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1146.883948][  T569]  ? find_held_lock+0x35/0x130
[ 1146.888698][  T569]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1146.894675][  T569]  ? kasan_check_write+0x14/0x20
[ 1146.899620][  T569]  ? lock_downgrade+0x880/0x880
[ 1146.904454][  T569]  ? kasan_check_read+0x11/0x20
[ 1146.909305][  T569]  ? do_raw_spin_unlock+0x57/0x270
[ 1146.914416][  T569]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1146.920226][  T569]  ? kasan_check_read+0x11/0x20
[ 1146.925091][  T569]  ? __thp_get_unmapped_area+0x190/0x190
[ 1146.930723][  T569]  ? pmd_val+0x100/0x100
[ 1146.934962][  T569]  ? __lock_acquire+0x548/0x3fb0
[ 1146.939894][  T569]  ? __kernel_text_address+0xd/0x40
[ 1146.945092][  T569]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1146.950212][  T569]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1146.955753][  T569]  ? find_held_lock+0x35/0x130
[ 1146.960785][  T569]  ? handle_mm_fault+0x322/0xb30
[ 1146.965723][  T569]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1146.971946][  T569]  ? kasan_check_read+0x11/0x20
[ 1146.976780][  T569]  handle_mm_fault+0x43f/0xb30
[ 1146.981538][  T569]  __get_user_pages+0x7b6/0x1a40
[ 1146.986500][  T569]  ? follow_page_mask+0x19a0/0x19a0
[ 1146.991688][  T569]  ? get_user_pages_remote+0x17d/0x440
[ 1146.997149][  T569]  get_user_pages_remote+0x1a3/0x440
[ 1147.002450][  T569]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1147.008074][  T569]  ? alloc_vmap_area.cold+0x24/0x24
[ 1147.013286][  T569]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1147.019528][  T569]  ? _copy_from_user+0xdd/0x150
[ 1147.024394][  T569]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1147.030126][  T569]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1147.035707][  T569]  process_vm_rw+0x21f/0x240
[ 1147.040315][  T569]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1147.046123][  T569]  ? __might_fault+0x12b/0x1e0
[ 1147.050926][  T569]  ? kasan_check_read+0x11/0x20
[ 1147.055785][  T569]  ? _copy_to_user+0xc9/0x120
[ 1147.060474][  T569]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1147.066728][  T569]  ? nsecs_to_jiffies+0x30/0x30
[ 1147.071595][  T569]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1147.077060][  T569]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1147.082529][  T569]  ? do_syscall_64+0x26/0x610
[ 1147.087238][  T569]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1147.092884][  T569]  do_syscall_64+0x103/0x610
[ 1147.097491][  T569]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1147.103390][  T569] RIP: 0033:0x458209
[ 1147.107291][  T569] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:04:34 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x4, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:34 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:34 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008914, &(0x7f0000000100)="005ab7ab318ca55dbe")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:34 executing program 0:
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000))
getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000140)={<r0=>0x0}, &(0x7f0000000180)=0xc)
r1 = syz_open_procfs(r0, &(0x7f00000000c0)='\x9fr\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00l\r\x01VT')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:34 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x3, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000000000)={0x100, 0x4, 0xfffffffffffffff7, 0x5, 0x80000000})

[ 1147.126904][  T569] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1147.135317][  T569] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1147.143291][  T569] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d2d
[ 1147.151278][  T569] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1147.159252][  T569] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1147.167230][  T569] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:34 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0xfffffffffffffff9, 0x200000)
dup(r0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$TCSETAW(r1, 0x5407, &(0x7f0000000040)={0x1, 0x8c, 0x0, 0x10000, 0x9, 0x7, 0x101, 0x6, 0x5, 0x3})

08:04:34 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000300)={0xaa, 0x1000000000000000})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r3 = syz_open_dev$usb(&(0x7f00000001c0)='/dev/bus/usb/00#/00#\x00', 0x4, 0x101000)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x1)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x129800, 0x0)
ioctl$VIDIOC_S_FREQUENCY(r4, 0x402c5639, &(0x7f0000000140)={0x5, 0x3, 0x8})
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f00003be000/0x2000)=nil, 0x2000})

08:04:34 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:34 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x2, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:34 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x200881, 0x0)
ioctl$VIDIOC_ENUMINPUT(r3, 0xc050561a, &(0x7f00000001c0)={0x3, "818238801fd796da0d5bc3b3dd6b47efd701e367758c98261942f64f1dbf0b9a", 0x3, 0x611, 0x0, 0xff2000, 0x0, 0x2})

[ 1147.441126][ T1094] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1147.453244][ T1094] CPU: 1 PID: 1094 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1147.462204][ T1094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1147.472264][ T1094] Call Trace:
[ 1147.475572][ T1094]  dump_stack+0x172/0x1f0
[ 1147.479924][ T1094]  handle_userfault.cold+0x41/0x5d
[ 1147.485051][ T1094]  ? __lock_acquire+0x548/0x3fb0
[ 1147.490019][ T1094]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1147.495324][ T1094]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1147.501405][ T1094]  ? find_held_lock+0x35/0x130
[ 1147.506190][ T1094]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1147.512195][ T1094]  ? kasan_check_write+0x14/0x20
[ 1147.517143][ T1094]  ? lock_downgrade+0x880/0x880
[ 1147.522020][ T1094]  ? kasan_check_read+0x11/0x20
[ 1147.526876][ T1094]  ? do_raw_spin_unlock+0x57/0x270
[ 1147.532008][ T1094]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1147.537822][ T1094]  ? kasan_check_read+0x11/0x20
[ 1147.542692][ T1094]  ? __thp_get_unmapped_area+0x190/0x190
[ 1147.548331][ T1094]  ? pmd_val+0x100/0x100
[ 1147.552571][ T1094]  ? __lock_acquire+0x548/0x3fb0
[ 1147.557490][ T1094]  ? __kernel_text_address+0xd/0x40
[ 1147.562670][ T1094]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1147.567784][ T1094]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1147.573332][ T1094]  ? find_held_lock+0x35/0x130
[ 1147.578102][ T1094]  ? handle_mm_fault+0x322/0xb30
[ 1147.583066][ T1094]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1147.589323][ T1094]  ? kasan_check_read+0x11/0x20
[ 1147.590440][ T1289] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1147.594192][ T1094]  handle_mm_fault+0x43f/0xb30
[ 1147.594218][ T1094]  __get_user_pages+0x7b6/0x1a40
[ 1147.594244][ T1094]  ? follow_page_mask+0x19a0/0x19a0
[ 1147.594269][ T1094]  ? get_user_pages_remote+0x17d/0x440
[ 1147.619773][ T1094]  get_user_pages_remote+0x1a3/0x440
[ 1147.625083][ T1094]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1147.630742][ T1094]  ? alloc_vmap_area.cold+0x24/0x24
[ 1147.635950][ T1094]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1147.642195][ T1094]  ? _copy_from_user+0xdd/0x150
[ 1147.647053][ T1094]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1147.652779][ T1094]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1147.658250][ T1094]  process_vm_rw+0x21f/0x240
[ 1147.662856][ T1094]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1147.668663][ T1094]  ? __might_fault+0x12b/0x1e0
[ 1147.673462][ T1094]  ? kasan_check_read+0x11/0x20
[ 1147.678321][ T1094]  ? _copy_to_user+0xc9/0x120
[ 1147.683005][ T1094]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1147.689808][ T1094]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1147.695273][ T1094]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1147.700730][ T1094]  ? do_syscall_64+0x26/0x610
[ 1147.710141][ T1094]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1147.715792][ T1094]  do_syscall_64+0x103/0x610
[ 1147.720390][ T1094]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1147.726282][ T1094] RIP: 0033:0x458209
[ 1147.730193][ T1094] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1147.749798][ T1094] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1147.758215][ T1094] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1147.766198][ T1094] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013b0
[ 1147.774184][ T1094] RBP: 000000000073bfa0 R08: 0000000000000004 R09: 0000000000000000
[ 1147.782159][ T1094] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1147.790144][ T1094] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1147.799088][ T1289] CPU: 0 PID: 1289 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1147.808023][ T1289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1147.818082][ T1289] Call Trace:
[ 1147.821380][ T1289]  dump_stack+0x172/0x1f0
[ 1147.825737][ T1289]  handle_userfault.cold+0x41/0x5d
[ 1147.830853][ T1289]  ? __lock_acquire+0x548/0x3fb0
[ 1147.835832][ T1289]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
08:04:34 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:34 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1147.841136][ T1289]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1147.847123][ T1289]  ? find_held_lock+0x35/0x130
[ 1147.851894][ T1289]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1147.857949][ T1289]  ? kasan_check_write+0x14/0x20
[ 1147.862895][ T1289]  ? lock_downgrade+0x880/0x880
[ 1147.867768][ T1289]  ? kasan_check_read+0x11/0x20
[ 1147.872621][ T1289]  ? do_raw_spin_unlock+0x57/0x270
[ 1147.872642][ T1289]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1147.872659][ T1289]  ? kasan_check_read+0x11/0x20
[ 1147.872678][ T1289]  ? __thp_get_unmapped_area+0x190/0x190
[ 1147.872691][ T1289]  ? pmd_val+0x100/0x100
[ 1147.872705][ T1289]  ? __lock_acquire+0x548/0x3fb0
[ 1147.872719][ T1289]  ? __kernel_text_address+0xd/0x40
[ 1147.872739][ T1289]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1147.872760][ T1289]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1147.872775][ T1289]  ? find_held_lock+0x35/0x130
[ 1147.872791][ T1289]  ? handle_mm_fault+0x322/0xb30
[ 1147.872816][ T1289]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1147.872838][ T1289]  ? kasan_check_read+0x11/0x20
[ 1147.940022][ T1289]  handle_mm_fault+0x43f/0xb30
[ 1147.944808][ T1289]  __get_user_pages+0x7b6/0x1a40
[ 1147.949763][ T1289]  ? follow_page_mask+0x19a0/0x19a0
[ 1147.954972][ T1289]  ? get_user_pages_remote+0x17d/0x440
[ 1147.960443][ T1289]  get_user_pages_remote+0x1a3/0x440
[ 1147.965749][ T1289]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1147.971432][ T1289]  ? alloc_vmap_area.cold+0x24/0x24
[ 1147.976647][ T1289]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1147.982894][ T1289]  ? _copy_from_user+0xdd/0x150
[ 1147.987759][ T1289]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1147.993483][ T1289]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1147.993509][ T1289]  process_vm_rw+0x21f/0x240
[ 1147.993531][ T1289]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1148.003557][ T1289]  ? __might_fault+0x12b/0x1e0
[ 1148.003597][ T1289]  ? kasan_check_read+0x11/0x20
[ 1148.003610][ T1289]  ? _copy_to_user+0xc9/0x120
[ 1148.003628][ T1289]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1148.003647][ T1289]  ? nsecs_to_jiffies+0x30/0x30
[ 1148.003672][ T1289]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1148.040226][ T1289]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1148.045685][ T1289]  ? do_syscall_64+0x26/0x610
[ 1148.050349][ T1289]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1148.055964][ T1289]  do_syscall_64+0x103/0x610
[ 1148.060547][ T1289]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1148.066435][ T1289] RIP: 0033:0x458209
[ 1148.070310][ T1289] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1148.089899][ T1289] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1148.098301][ T1289] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1148.106267][ T1289] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d34
[ 1148.114221][ T1289] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1148.122187][ T1289] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1148.130176][ T1289] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:35 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x8, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:35 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000040)={0x9, 0x1, 0x4, 0x20000, {0x0, 0x7530}, {0x6, 0x0, 0x77a, 0xd31, 0xffffffffffff8000, 0x7ff, "d12a874d"}, 0x800, 0x4, @fd=r0, 0x4})
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000000)={0x1, 0xffffffff, 0x100, 0xbc}, 0x6)

08:04:35 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x68, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:35 executing program 5:
r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2)
ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f00000000c0)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getsockname$inet(r1, &(0x7f0000000100)={0x2, 0x0, @local}, &(0x7f0000000140)=0x10)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))

08:04:35 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x0, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00')
sendmsg$TIPC_NL_LINK_GET(r2, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)={0x110, r3, 0xd6baa1667f8cbcb8, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x70, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'tunl0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x8, @local, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e23, @rand_addr=0x4}}}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}]}]}, @TIPC_NLA_LINK={0x8c, 0x4, [@TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400000000}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4}, 0x4008080)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x600000, 0x0)
ioctl$KIOCSOUND(r4, 0x4b2f, 0x3)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DEST(r4, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x84, r5, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x4f1310c0}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
r6 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r6, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:35 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f00000000c0)={0x0, 0xfffffffffffffffe, 0x0, 0x5})

08:04:35 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
ioctl$sock_netrom_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x1, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={'rose', 0x0}, 0xa9, 'syz1\x00', @bcast, 0x6, 0x7, [@default, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
writev(r0, &(0x7f00000013c0), 0x2e1)
syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xfffffffffffffff7, 0x2)

08:04:35 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x68, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1148.400844][ T1752] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1148.406123][ T1752] CPU: 0 PID: 1752 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1148.415068][ T1752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1148.425124][ T1752] Call Trace:
[ 1148.428472][ T1752]  dump_stack+0x172/0x1f0
[ 1148.432822][ T1752]  handle_userfault.cold+0x41/0x5d
[ 1148.437942][ T1752]  ? __lock_acquire+0x548/0x3fb0
[ 1148.442910][ T1752]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1148.448239][ T1752]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1148.454226][ T1752]  ? find_held_lock+0x35/0x130
[ 1148.458994][ T1752]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1148.464985][ T1752]  ? kasan_check_write+0x14/0x20
[ 1148.469934][ T1752]  ? lock_downgrade+0x880/0x880
[ 1148.474793][ T1752]  ? kasan_check_read+0x11/0x20
[ 1148.479652][ T1752]  ? do_raw_spin_unlock+0x57/0x270
[ 1148.484772][ T1752]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1148.490585][ T1752]  ? kasan_check_read+0x11/0x20
[ 1148.495448][ T1752]  ? __thp_get_unmapped_area+0x190/0x190
08:04:35 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000380)="3921af5cdaaf92d4aa719fa817404f52cfbf01cbd13674e62b93cc46b05c9d3e5cf12a22dbca610636aa851aa65ce6c8d541862a75f9ff142ff516fc9a236bd62a47d7631b4bbd6e38f6c01eb7c1668190a9f47aa9671a27eaf1af9e45d8210632f13e70429221ba459b2617aa5a13f4df64e6b19b915476a386d095175620600776e592820a60700176e61a58fed867559e2e23db12cf8c65f835b17dc21d5e9f88ea34fe696ea447ef5efaa074b71fa2e2d6382c8c6ca31b2d42a60569c214a18c5484d725643a6983be2827d2c07d7f0de2", 0xd3}], 0x1)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x0, {0x2, 0x4e20, @multicast1}, {0x2, 0x4e22, @local}, {0x2, 0x4e21, @loopback}, 0x42, 0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000)='team_slave_1\x00', 0x8, 0x8001, 0x30b})

[ 1148.501107][ T1752]  ? pmd_val+0x100/0x100
[ 1148.505369][ T1752]  ? __lock_acquire+0x548/0x3fb0
[ 1148.510312][ T1752]  ? __kernel_text_address+0xd/0x40
[ 1148.515521][ T1752]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1148.520641][ T1752]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1148.526211][ T1752]  ? find_held_lock+0x35/0x130
[ 1148.530983][ T1752]  ? handle_mm_fault+0x322/0xb30
[ 1148.535939][ T1752]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1148.542209][ T1752]  ? kasan_check_read+0x11/0x20
[ 1148.547076][ T1752]  handle_mm_fault+0x43f/0xb30
[ 1148.551851][ T1752]  __get_user_pages+0x7b6/0x1a40
[ 1148.556807][ T1752]  ? follow_page_mask+0x19a0/0x19a0
[ 1148.562018][ T1752]  ? get_user_pages_remote+0x17d/0x440
[ 1148.567497][ T1752]  get_user_pages_remote+0x1a3/0x440
[ 1148.572797][ T1752]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1148.578485][ T1752]  ? alloc_vmap_area.cold+0x24/0x24
[ 1148.583694][ T1752]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1148.589941][ T1752]  ? _copy_from_user+0xdd/0x150
[ 1148.594816][ T1752]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
08:04:35 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x4000000000000200, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x3, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1148.600548][ T1752]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1148.606021][ T1752]  process_vm_rw+0x21f/0x240
[ 1148.610624][ T1752]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1148.616440][ T1752]  ? __might_fault+0x12b/0x1e0
[ 1148.621244][ T1752]  ? kasan_check_read+0x11/0x20
[ 1148.626099][ T1752]  ? _copy_to_user+0xc9/0x120
[ 1148.630789][ T1752]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1148.637041][ T1752]  ? nsecs_to_jiffies+0x30/0x30
[ 1148.641910][ T1752]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1148.647384][ T1752]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1148.652855][ T1752]  ? do_syscall_64+0x26/0x610
[ 1148.657547][ T1752]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1148.663211][ T1752]  do_syscall_64+0x103/0x610
[ 1148.667817][ T1752]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1148.673716][ T1752] RIP: 0033:0x458209
[ 1148.677613][ T1752] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1148.697219][ T1752] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1148.705718][ T1752] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1148.713691][ T1752] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d39
[ 1148.721663][ T1752] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1148.729641][ T1752] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1148.737620][ T1752] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:35 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x68, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:35 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
fsetxattr$security_ima(r0, &(0x7f0000000040)='security.ima\x00', &(0x7f0000000080)=@ng={0x4, 0x4, "ba8467390f284b4308c3c61da7"}, 0xf, 0x2)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)="51d39f048090ef2380c8cd25ae75351b448d6efb5bb41d2e23d9e5082c6e04220e39b24ec518c425eadc42fadb7d6d334e02661e5b7137b494a6b15551d80d82ca45b8ad0b7dd720c0c9f9f2650d502db4ecd826d2556ee7cfd7ac29ba0c1297ac7a228ae68c0a47ad2c33936e2e2670c6a0a9a2eea2475f96889c3aa8e9be56e0bad5ade2b40b10c165da3583816dd94056f024963a627fda762cd0a3f8c950af78ddf9be7ec8d1e347abe9eac9701cae14e1584ea4278b43a3a4615ebdb2a4411954cf", 0xc4}, {&(0x7f0000000240)="9ae80299d369c45b067dfc1f026aa79125042c0eef2fc4ec89fb0b48d2f2846e8f97620a62c70c9ca1985ca92fadfd2efff8eec10d42e575798260212872587beb71da6cea09cfec6f9688488630135d35d3dd65", 0x54}, {&(0x7f0000000300)="9f58f70eef7432063a37d47fc0aedd6ef52e980739c67dbb2fc1c00e4819242255d14f99c0d5575132566c550c33e6fbcd882c3260df97fc2d756698eb18d1caf401c9e8c3487d860f5578234d4fb08ba22aeeccdb2901cc1e8c510e9c340955497f6e9e08ff411cc6227265140233dd9b3c19fd187536cde9097a2f092125e27b0d4df776f58e594f040c2efb03f6073233d36da004cb470a47dec58055646e", 0xa0}], 0x3)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000000)=0x13, 0x4)

[ 1148.748012][ T1776] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1148.756492][ T1776] CPU: 0 PID: 1776 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1148.765442][ T1776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1148.775498][ T1776] Call Trace:
[ 1148.778798][ T1776]  dump_stack+0x172/0x1f0
[ 1148.783143][ T1776]  handle_userfault.cold+0x41/0x5d
[ 1148.788282][ T1776]  ? __lock_acquire+0x548/0x3fb0
[ 1148.793249][ T1776]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1148.798556][ T1776]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1148.804542][ T1776]  ? find_held_lock+0x35/0x130
[ 1148.809326][ T1776]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1148.815314][ T1776]  ? kasan_check_write+0x14/0x20
[ 1148.820259][ T1776]  ? lock_downgrade+0x880/0x880
[ 1148.825123][ T1776]  ? kasan_check_read+0x11/0x20
[ 1148.829985][ T1776]  ? do_raw_spin_unlock+0x57/0x270
[ 1148.835109][ T1776]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1148.840928][ T1776]  ? kasan_check_read+0x11/0x20
[ 1148.845789][ T1776]  ? __thp_get_unmapped_area+0x190/0x190
[ 1148.851432][ T1776]  ? pmd_val+0x100/0x100
[ 1148.855681][ T1776]  ? __lock_acquire+0x548/0x3fb0
[ 1148.860620][ T1776]  ? __kernel_text_address+0xd/0x40
[ 1148.865830][ T1776]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1148.870957][ T1776]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1148.876507][ T1776]  ? find_held_lock+0x35/0x130
[ 1148.881275][ T1776]  ? handle_mm_fault+0x322/0xb30
[ 1148.886244][ T1776]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1148.892500][ T1776]  ? kasan_check_read+0x11/0x20
[ 1148.897357][ T1776]  handle_mm_fault+0x43f/0xb30
[ 1148.902140][ T1776]  __get_user_pages+0x7b6/0x1a40
[ 1148.907112][ T1776]  ? follow_page_mask+0x19a0/0x19a0
[ 1148.912323][ T1776]  ? get_user_pages_remote+0x17d/0x440
[ 1148.917800][ T1776]  get_user_pages_remote+0x1a3/0x440
[ 1148.923108][ T1776]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1148.928765][ T1776]  ? alloc_vmap_area.cold+0x24/0x24
[ 1148.933977][ T1776]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1148.939968][ T1776]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1148.946221][ T1776]  ? _copy_from_user+0xdd/0x150
[ 1148.951093][ T1776]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1148.956824][ T1776]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1148.962300][ T1776]  process_vm_rw+0x21f/0x240
[ 1148.966903][ T1776]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1148.972717][ T1776]  ? __might_fault+0x12b/0x1e0
[ 1148.977515][ T1776]  ? kasan_check_read+0x11/0x20
[ 1148.982369][ T1776]  ? _copy_to_user+0xc9/0x120
[ 1148.987059][ T1776]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1148.993327][ T1776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1148.998790][ T1776]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1149.004256][ T1776]  ? do_syscall_64+0x26/0x610
[ 1149.008944][ T1776]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1149.014587][ T1776]  do_syscall_64+0x103/0x610
[ 1149.019211][ T1776]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1149.025111][ T1776] RIP: 0033:0x458209
[ 1149.029017][ T1776] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1149.048635][ T1776] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1149.057046][ T1776] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1149.065025][ T1776] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013b4
[ 1149.073022][ T1776] RBP: 000000000073bfa0 R08: 0000000000000008 R09: 0000000000000000
[ 1149.080997][ T1776] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1149.088966][ T1776] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:36 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x9, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:36 executing program 0:
r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x6, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x101000, 0x23)
sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x880}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x84, r1, 0xd00, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x70, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xf}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3c07}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}]}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r2, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
fchdir(r0)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f00000000c0)=0x80000001, 0x4)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x101000, 0x5)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000100))
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, [0xc962]})

08:04:36 executing program 5:
syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:04:36 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x0, 0x0)
getsockopt$packet_int(r3, 0x107, 0x12, &(0x7f0000000200), &(0x7f0000000240)=0x4)
openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r4 = gettid()
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000000000000f8ffffffffffff0300000000000000", @ANYRES32=r2, @ANYBLOB="00000000ffff00000000000000000000000000000000000000000000", @ANYRES32=r1, @ANYBLOB="00000000800000000000000000000000000000000000000000000000", @ANYRES32=r2, @ANYBLOB="00000000e5ecd10542b44bae57e10000c0000000000000000000000000000000000000000000"])
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r4, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:36 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$CAPI_CLR_FLAGS(r0, 0x80044325, &(0x7f00000000c0)=0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x80000, 0x4})

08:04:36 executing program 0:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000000200)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x2, {0x4e23}}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000080)="78b277889781d5bd", 0x8}, {&(0x7f0000000140)="d05bc823bb66db40606582d1aa24f30deea9d373226e2e750f30fa251d494afd401edbb858b510089fdfadf5f78791d58eb7741159ee838bde32f39c892f110b5256dc6b2375ab6a7b65380e82747ef76ceb7979bf4d9346b542d0b50eb16497dbbf789367f1c1ff1a9a7b114edcbbc736deac6e5d105cbc96", 0x79}, {&(0x7f00000000c0)="c266df4c68b6496217051e76a055174a5d95f6cc83abe58d6b14e46c10b49c2b", 0x20}], 0x3, &(0x7f0000000300)="3e137222d450a15825c63a543f57a956c4ba7a99858ce1272477f141ac6fbb5cb6c346ce1159f154bb4c6682ccd4ff2b861da7dfef99ec0af856a7a45267f4cdbcf28ba33f403a2d5fdd467fac172537d188b2ee0c09e9b3e246b89d67985c7086b218b1ac2d9b0749d73142aa14b6a2cf3db1d556a262a9c98c98e2b0422121825442be8bf3382377d919bd6e9bcf5a52b94229070840b2328dac891ef954b062dfc611466344cd0a4dd0fb9bca4bd82ec4bcf06e565346a694625184b8426701e71b829ae42f0f54033a46ab9d0ab49ce8ed7397", 0xd5, 0x8000}, 0x4)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:36 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000040)={'ip6gretap0\x00'})

[ 1149.366984][ T2652] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1149.372762][ T2652] CPU: 1 PID: 2652 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1149.381740][ T2652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1149.383190][ T2683] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1149.391798][ T2652] Call Trace:
[ 1149.391836][ T2652]  dump_stack+0x172/0x1f0
[ 1149.391863][ T2652]  handle_userfault.cold+0x41/0x5d
[ 1149.391881][ T2652]  ? __lock_acquire+0x548/0x3fb0
[ 1149.391916][ T2652]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1149.420014][ T2652]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1149.426010][ T2652]  ? find_held_lock+0x35/0x130
[ 1149.430785][ T2652]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1149.436772][ T2652]  ? kasan_check_write+0x14/0x20
[ 1149.441722][ T2652]  ? lock_downgrade+0x880/0x880
[ 1149.446591][ T2652]  ? kasan_check_read+0x11/0x20
[ 1149.451451][ T2652]  ? do_raw_spin_unlock+0x57/0x270
[ 1149.456577][ T2652]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1149.462393][ T2652]  ? kasan_check_read+0x11/0x20
[ 1149.467259][ T2652]  ? __thp_get_unmapped_area+0x190/0x190
[ 1149.472892][ T2652]  ? pmd_val+0x100/0x100
[ 1149.477145][ T2652]  ? __lock_acquire+0x548/0x3fb0
[ 1149.482096][ T2652]  ? __kernel_text_address+0xd/0x40
[ 1149.487308][ T2652]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1149.492428][ T2652]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1149.497981][ T2652]  ? find_held_lock+0x35/0x130
[ 1149.502753][ T2652]  ? handle_mm_fault+0x322/0xb30
[ 1149.507719][ T2652]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1149.513975][ T2652]  ? kasan_check_read+0x11/0x20
[ 1149.518836][ T2652]  handle_mm_fault+0x43f/0xb30
[ 1149.523614][ T2652]  __get_user_pages+0x7b6/0x1a40
[ 1149.528564][ T2652]  ? follow_page_mask+0x19a0/0x19a0
[ 1149.533767][ T2652]  ? get_user_pages_remote+0x17d/0x440
[ 1149.539242][ T2652]  get_user_pages_remote+0x1a3/0x440
[ 1149.544541][ T2652]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1149.550205][ T2652]  ? alloc_vmap_area.cold+0x24/0x24
[ 1149.555421][ T2652]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1149.561748][ T2652]  ? _copy_from_user+0xdd/0x150
[ 1149.566603][ T2652]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1149.572326][ T2652]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1149.577803][ T2652]  process_vm_rw+0x21f/0x240
[ 1149.582402][ T2652]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1149.588215][ T2652]  ? __might_fault+0x12b/0x1e0
[ 1149.593010][ T2652]  ? kasan_check_read+0x11/0x20
[ 1149.597859][ T2652]  ? _copy_to_user+0xc9/0x120
[ 1149.602543][ T2652]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1149.608798][ T2652]  ? nsecs_to_jiffies+0x30/0x30
[ 1149.613664][ T2652]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1149.619133][ T2652]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1149.624601][ T2652]  ? do_syscall_64+0x26/0x610
[ 1149.629289][ T2652]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1149.634928][ T2652]  do_syscall_64+0x103/0x610
[ 1149.639530][ T2652]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1149.645423][ T2652] RIP: 0033:0x458209
[ 1149.649319][ T2652] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1149.668926][ T2652] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1149.677347][ T2652] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1149.685336][ T2652] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d3d
[ 1149.700083][ T2652] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1149.708070][ T2652] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
08:04:36 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000140))
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f00000000c0), &(0x7f0000000100)=0x4)

08:04:36 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f0000000000)=[{&(0x7f00000002c0)="81"}], 0x1)

[ 1149.716144][ T2652] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1149.724156][ T2683] CPU: 0 PID: 2683 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1149.733114][ T2683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1149.743185][ T2683] Call Trace:
[ 1149.746480][ T2683]  dump_stack+0x172/0x1f0
[ 1149.750817][ T2683]  handle_userfault.cold+0x41/0x5d
[ 1149.755933][ T2683]  ? __lock_acquire+0x548/0x3fb0
[ 1149.760891][ T2683]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1149.766209][ T2683]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1149.772212][ T2683]  ? find_held_lock+0x35/0x130
[ 1149.776986][ T2683]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1149.782979][ T2683]  ? kasan_check_write+0x14/0x20
[ 1149.787937][ T2683]  ? lock_downgrade+0x880/0x880
[ 1149.792831][ T2683]  ? kasan_check_read+0x11/0x20
[ 1149.798508][ T2683]  ? do_raw_spin_unlock+0x57/0x270
[ 1149.803635][ T2683]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1149.809447][ T2683]  ? kasan_check_read+0x11/0x20
[ 1149.814315][ T2683]  ? __thp_get_unmapped_area+0x190/0x190
[ 1149.819948][ T2683]  ? pmd_val+0x100/0x100
[ 1149.824215][ T2683]  ? __lock_acquire+0x548/0x3fb0
[ 1149.829160][ T2683]  ? __kernel_text_address+0xd/0x40
[ 1149.834394][ T2683]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1149.839518][ T2683]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1149.845067][ T2683]  ? find_held_lock+0x35/0x130
[ 1149.849838][ T2683]  ? handle_mm_fault+0x322/0xb30
[ 1149.854789][ T2683]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1149.854810][ T2683]  ? kasan_check_read+0x11/0x20
08:04:36 executing program 0:
r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xf5, 0x40)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_opts(r2, 0x29, 0x37, &(0x7f0000000140)=@dstopts, 0x8)
connect$inet6(r2, &(0x7f0000000340)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0)
setsockopt$inet6_opts(r2, 0x29, 0x39, &(0x7f0000000040)=@srh, 0x8)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={<r4=>0x0, 0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000040)='coredump_filter\x00', 0xffffffffffffffff}, 0x30)
fcntl$lock(r0, 0x27, &(0x7f00000000c0)={0x3, 0x7, 0x40, 0x7, r4})
r5 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r5, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1149.854830][ T2683]  handle_mm_fault+0x43f/0xb30
[ 1149.870671][ T2683]  __get_user_pages+0x7b6/0x1a40
[ 1149.875628][ T2683]  ? follow_page_mask+0x19a0/0x19a0
[ 1149.880838][ T2683]  ? get_user_pages_remote+0x17d/0x440
[ 1149.886313][ T2683]  get_user_pages_remote+0x1a3/0x440
[ 1149.891623][ T2683]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1149.891657][ T2683]  ? alloc_vmap_area.cold+0x24/0x24
[ 1149.891678][ T2683]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1149.891695][ T2683]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
08:04:37 executing program 2:
r0 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x8, 0x20000)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f00000000c0)={0x1ff, 0x36, 0x3ff, 0x9}, 0x10)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000100)=<r1=>0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000140)=<r2=>0x0)
kcmp(r1, r2, 0x7, r0, r0)
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_targets\x00')
preadv(r3, &(0x7f00000017c0), 0x199, 0x0)

[ 1149.891709][ T2683]  ? _copy_from_user+0xdd/0x150
[ 1149.891726][ T2683]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1149.891744][ T2683]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1149.891767][ T2683]  process_vm_rw+0x21f/0x240
[ 1149.935816][ T2683]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1149.941628][ T2683]  ? __might_fault+0x12b/0x1e0
[ 1149.946438][ T2683]  ? kasan_check_read+0x11/0x20
[ 1149.951293][ T2683]  ? _copy_to_user+0xc9/0x120
[ 1149.955978][ T2683]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1149.962240][ T2683]  ? put_timespec64+0xda/0x140
[ 1149.962256][ T2683]  ? nsecs_to_jiffies+0x30/0x30
[ 1149.962281][ T2683]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1149.962298][ T2683]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1149.962314][ T2683]  ? do_syscall_64+0x26/0x610
[ 1149.962334][ T2683]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1149.962362][ T2683]  do_syscall_64+0x103/0x610
[ 1149.972023][ T2683]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1149.972036][ T2683] RIP: 0033:0x458209
[ 1149.972050][ T2683] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1149.972058][ T2683] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1149.972072][ T2683] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1149.972081][ T2683] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013b8
[ 1149.972096][ T2683] RBP: 000000000073bfa0 R08: 0000000000000009 R09: 0000000000000000
[ 1150.059536][ T2683] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1150.067514][ T2683] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:37 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x25, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:37 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
socket$rds(0x15, 0x5, 0x0)
syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x80000001, 0x501400)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:37 executing program 3:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(0xffffffffffffffff, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:37 executing program 0:
ioctl$PPPIOCSFLAGS(0xffffffffffffffff, 0x40047459, &(0x7f00000000c0)=0x400000)
writev(0xffffffffffffffff, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:37 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x0, 0xfffdfffffffffff7}, 0x4)
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000000aaaaaaa2a83be24a00000014000020000000907800000000ffffffff00009094e0000001"], 0x0)

08:04:37 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$BLKSECDISCARD(r1, 0x127d, &(0x7f00000000c0)=0x101)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000000000)={0x1f, 0xfffffffffffffa7d, 0x28000000, 0x5, 0x2000000100000001})
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000240), &(0x7f00000002c0)=0x42)

08:04:37 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000040)="818b6e660daa7a92e95aaf626f424141f2742b22c82558d0c321c940cfc088015819fa1e5b0710fedd6bee63972ec72a60be46b9cc72cf89f8dacc648c228d600c441c34f7e878564997b3ac28660d7678c53011d45a3df0c9593e", 0x5b}], 0x1)
ioctl$VIDIOC_QUERYSTD(r0, 0x8008563f, &(0x7f0000000000))

[ 1150.250683][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 1150.256563][    C0] protocol 88fb is buggy, dev hsr_slave_1
08:04:37 executing program 3:
r0 = userfaultfd(0x0)
r1 = syz_open_dev$radio(&(0x7f0000000240)='/dev/radio#\x00', 0x2, 0x2)
ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000000300))
lstat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x9)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r4 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
ppoll(&(0x7f0000000140)=[{r2, 0x4000}, {r2, 0x2000}], 0x2, &(0x7f00000001c0), &(0x7f0000000200)={0x8}, 0x8)
process_vm_readv(r4, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:37 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x20580, 0x0)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000100)={&(0x7f0000ffd000/0x2000)=nil, 0x2000})
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1150.330709][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 1150.336571][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 1150.342443][    C0] protocol 88fb is buggy, dev hsr_slave_0
[ 1150.348228][    C0] protocol 88fb is buggy, dev hsr_slave_1
[ 1150.374334][ T3410] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1150.383792][ T3410] CPU: 1 PID: 3410 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1150.392736][ T3410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1150.402802][ T3410] Call Trace:
[ 1150.406106][ T3410]  dump_stack+0x172/0x1f0
[ 1150.410457][ T3410]  handle_userfault.cold+0x41/0x5d
[ 1150.415584][ T3410]  ? __lock_acquire+0x548/0x3fb0
[ 1150.420523][ T3410]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1150.425803][ T3410]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1150.431770][ T3410]  ? find_held_lock+0x35/0x130
[ 1150.436526][ T3410]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1150.442506][ T3410]  ? kasan_check_write+0x14/0x20
[ 1150.447434][ T3410]  ? lock_downgrade+0x880/0x880
[ 1150.452284][ T3410]  ? kasan_check_read+0x11/0x20
[ 1150.457131][ T3410]  ? do_raw_spin_unlock+0x57/0x270
[ 1150.462247][ T3410]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1150.468034][ T3410]  ? kasan_check_read+0x11/0x20
[ 1150.472869][ T3410]  ? __thp_get_unmapped_area+0x190/0x190
[ 1150.478482][ T3410]  ? pmd_val+0x100/0x100
[ 1150.482712][ T3410]  ? __lock_acquire+0x548/0x3fb0
[ 1150.487633][ T3410]  ? __kernel_text_address+0xd/0x40
[ 1150.492838][ T3410]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1150.493343][ T3448] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1150.497971][ T3410]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1150.497988][ T3410]  ? find_held_lock+0x35/0x130
[ 1150.498005][ T3410]  ? handle_mm_fault+0x322/0xb30
[ 1150.498038][ T3410]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1150.524690][ T3410]  ? kasan_check_read+0x11/0x20
[ 1150.529552][ T3410]  handle_mm_fault+0x43f/0xb30
[ 1150.534326][ T3410]  __get_user_pages+0x7b6/0x1a40
[ 1150.539281][ T3410]  ? follow_page_mask+0x19a0/0x19a0
[ 1150.544491][ T3410]  ? get_user_pages_remote+0x17d/0x440
[ 1150.549963][ T3410]  get_user_pages_remote+0x1a3/0x440
[ 1150.555263][ T3410]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1150.560916][ T3410]  ? alloc_vmap_area.cold+0x24/0x24
[ 1150.566124][ T3410]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1150.572105][ T3410]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1150.578344][ T3410]  ? _copy_from_user+0xdd/0x150
[ 1150.583207][ T3410]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1150.588931][ T3410]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1150.594405][ T3410]  process_vm_rw+0x21f/0x240
[ 1150.599002][ T3410]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1150.604810][ T3410]  ? __might_fault+0x12b/0x1e0
[ 1150.609601][ T3410]  ? kasan_check_read+0x11/0x20
[ 1150.614453][ T3410]  ? _copy_to_user+0xc9/0x120
[ 1150.619138][ T3410]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1150.625387][ T3410]  ? put_timespec64+0xda/0x140
[ 1150.630158][ T3410]  ? nsecs_to_jiffies+0x30/0x30
[ 1150.635034][ T3410]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1150.640498][ T3410]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1150.645958][ T3410]  ? do_syscall_64+0x26/0x610
[ 1150.650648][ T3410]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1150.656299][ T3410]  do_syscall_64+0x103/0x610
[ 1150.660901][ T3410]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1150.666791][ T3410] RIP: 0033:0x458209
[ 1150.670692][ T3410] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1150.690299][ T3410] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1150.698710][ T3410] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1150.706686][ T3410] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013bc
[ 1150.714658][ T3410] RBP: 000000000073bfa0 R08: 0000000000000025 R09: 0000000000000000
08:04:37 executing program 2:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
r0 = creat(&(0x7f00000001c0)='./file0/bus/file0\x00', 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
fcntl$lock(r0, 0x25, &(0x7f0000027000)={0x1})
write$P9_RWRITE(r0, &(0x7f0000000040)={0xb, 0x77, 0x1, 0x100000000}, 0xb)
setsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x7, 0x4)
ioctl$KVM_SET_BOOT_CPU_ID(r0, 0xae78, &(0x7f0000000080)=0x1)
r2 = socket(0x10, 0x3, 0x0)
fchmod(r0, 0xb8)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo/3\x00')
sendfile(r2, r3, 0x0, 0xedec)

[ 1150.722633][ T3410] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1150.730604][ T3410] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1150.738629][ T3448] CPU: 0 PID: 3448 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1150.747567][ T3448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1150.757962][ T3448] Call Trace:
[ 1150.757983][ T3448]  dump_stack+0x172/0x1f0
[ 1150.758006][ T3448]  handle_userfault.cold+0x41/0x5d
[ 1150.758020][ T3448]  ? __lock_acquire+0x548/0x3fb0
[ 1150.758046][ T3448]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1150.758065][ T3448]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1150.758084][ T3448]  ? find_held_lock+0x35/0x130
[ 1150.792034][ T3448]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1150.798064][ T3448]  ? kasan_check_write+0x14/0x20
[ 1150.803014][ T3448]  ? lock_downgrade+0x880/0x880
[ 1150.807878][ T3448]  ? kasan_check_read+0x11/0x20
[ 1150.812755][ T3448]  ? do_raw_spin_unlock+0x57/0x270
[ 1150.817912][ T3448]  do_huge_pmd_anonymous_page+0xc19/0x1730
08:04:37 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f0000000000), 0x0)

[ 1150.823733][ T3448]  ? kasan_check_read+0x11/0x20
[ 1150.828606][ T3448]  ? __thp_get_unmapped_area+0x190/0x190
[ 1150.834249][ T3448]  ? pmd_val+0x100/0x100
[ 1150.838506][ T3448]  ? __lock_acquire+0x548/0x3fb0
[ 1150.843454][ T3448]  ? __kernel_text_address+0xd/0x40
[ 1150.848668][ T3448]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1150.853798][ T3448]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1150.859353][ T3448]  ? find_held_lock+0x35/0x130
[ 1150.864127][ T3448]  ? handle_mm_fault+0x322/0xb30
[ 1150.869124][ T3448]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
08:04:38 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='cTred\xad\built\xfa\x02%g6M\x05\xf4\x83f\xf6\x8b\xb1\x89\x8d\x9d\x01\x00\x93\xaa\xf6|\xa2\xc3\x8c\xd0er\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000040))

[ 1150.875391][ T3448]  ? kasan_check_read+0x11/0x20
[ 1150.880265][ T3448]  handle_mm_fault+0x43f/0xb30
[ 1150.885050][ T3448]  __get_user_pages+0x7b6/0x1a40
[ 1150.890011][ T3448]  ? follow_page_mask+0x19a0/0x19a0
[ 1150.895229][ T3448]  ? get_user_pages_remote+0x17d/0x440
[ 1150.900715][ T3448]  get_user_pages_remote+0x1a3/0x440
[ 1150.906024][ T3448]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1150.911692][ T3448]  ? alloc_vmap_area.cold+0x24/0x24
[ 1150.916916][ T3448]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1150.923163][ T3448]  ? _copy_from_user+0xdd/0x150
[ 1150.928052][ T3448]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1150.933783][ T3448]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1150.939263][ T3448]  process_vm_rw+0x21f/0x240
[ 1150.943859][ T3448]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1150.949665][ T3448]  ? __might_fault+0x12b/0x1e0
[ 1150.949703][ T3448]  ? kasan_check_read+0x11/0x20
[ 1150.959283][ T3448]  ? _copy_to_user+0xc9/0x120
[ 1150.963974][ T3448]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1150.970231][ T3448]  ? nsecs_to_jiffies+0x30/0x30
[ 1150.975103][ T3448]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1150.980572][ T3448]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1150.986041][ T3448]  ? do_syscall_64+0x26/0x610
[ 1150.990735][ T3448]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1150.996390][ T3448]  do_syscall_64+0x103/0x610
[ 1151.001003][ T3448]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1151.006900][ T3448] RIP: 0033:0x458209
[ 1151.010800][ T3448] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1151.030428][ T3448] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1151.038886][ T3448] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1151.046868][ T3448] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d44
[ 1151.054840][ T3448] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1151.062821][ T3448] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1151.070785][ T3448] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:38 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x39, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:38 executing program 2:
r0 = socket(0x2, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="3c00000000000000000000000000000000000000000000000000000000000000000000003e703244a5a636c81c5a6ff552a15bfbef73cf54706ad5049845b39ccbe8b19286f264e39e720e591008eb8abe14b05d433a33d7d2b74b7aa2bb389818da2304d7574ff5d1adf4fd6f0ddfdd9328411c200004059fad49f8161759c832ea8fe2b9adf5e24ca1b8e0a1469b66722ee31c2e4e9bc2b647875e5b6232cfd37691d1cccc015bc5b5bf0d37da63c0c53fac76312c12b9571c7ee2bfdf75010b14e6e485012488c31ebb09b55db4d88dd70c24b99edaa5444702c0524d4fd3325ec5793e1ee6e45b63c99c144c55198b682d45a77c96d1ad205e7f1473973579c6526ea28e4e2d11009b68114f8400ea06d65642a60d135c022ac2ef0f62dfe1341ea0cdc74a2b6875a00a88b6967fe780d60caf88379415f13c806b0747274b1dc7205990ca4a0bfc2d15b345a8b935097f768f16f2bfab1ec50a8f0913f8000000000000000000"]})
getsockname$netrom(r0, &(0x7f0000000140)={{0x3, @netrom}, [@rose, @netrom, @netrom, @rose, @null, @null, @remote, @netrom]}, &(0x7f0000000040)=0x48)
connect$rds(r0, &(0x7f0000000000)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000100)=0x295)

08:04:38 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='coredump_filter\x00')
ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000040)={0x3, 0x5, 0x4, 0xb775, 0x3529})
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81"}], 0x1)

08:04:38 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f00000000c0)={0x0, 0x6, 0x0, 0x5})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, <r2=>0x0}, &(0x7f0000000380)=0xc)
ioctl$SIOCAX25DELUID(r1, 0x89e2, &(0x7f00000003c0)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, r2})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r1, 0xc08c5335, &(0x7f0000000200)={0x8, 0x1, 0x80000000, 'queue0\x00', 0x401})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f00000002c0)={{0xe335, 0x1}, 'port1\x00', 0x0, 0x802, 0x8, 0x5, 0xfffffffffffffff7, 0x3f, 0x4, 0x0, 0x5, 0x3})
setsockopt$CAIFSO_REQ_PARAM(r1, 0x116, 0x80, &(0x7f0000000100)="ccc51390c19b875abfb280a48f497046d01962dd8a391bcd930a2517e7c68f3fc91723cd933152c8a16613e232864df51d27cee853e0ec7dbcda092cff4a1f6287e055dfdd07124f53effc111964f7ba512e39a9c3d6ae1a91f61cf90eb3235d985ea32c2b43b9643572e84070e95d66f929b2495fa9e3ab593f975bf90915a1bb9a2c06c29ee90b8070e1765ab339f29ddda13b9f98c6128528608f15f90fed785833abc299a075c9f03058a19c9ffa2801f3084e45333b42b6655e1dfb0ab30c19a10c4f9bf3d5edf9c94f4eb6c6ee67e4aaa26437b9b3aa06832dc3", 0xdd)

08:04:38 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x3, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840)={0xffffffffffffffff})
ioctl$IOC_PR_PREEMPT_ABORT(r1, 0x401870cc, &(0x7f0000000000)={0x80, 0x2, 0x101, 0x10000})
ioctl$FIBMAP(r1, 0x1, &(0x7f00000000c0)=0x7)

08:04:38 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x40, 0x0)
ioctl$EVIOCGMTSLOTS(r3, 0x8040450a, &(0x7f0000000140)=""/36)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:38 executing program 0:
pipe(&(0x7f00000006c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf32(r1, &(0x7f0000000400)=ANY=[], 0xffffff84)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r1, 0x80045700, &(0x7f0000000300))
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x4031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_FPEXC(0xc, 0x110000)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000001c0), 0xfffffef3)
read(r2, &(0x7f0000000200)=""/250, 0x41776784)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000040)=""/7, 0x3f}, {&(0x7f0000001340)=""/217, 0x7c}, {&(0x7f0000003500)=""/4096, 0xffffffe2}], 0x3)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='coredump_filter\x00')
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x200000, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@fscache='fscache'}], [{@dont_hash='dont_hash'}, {@dont_measure='dont_measure'}, {@audit='audit'}, {@smackfshat={'smackfshat', 0x3d, '\'%'}}]}})
writev(r4, &(0x7f0000000900)=[{&(0x7f0000000380)="18590c97f25f51ed0315a1a84e6a5a9826806902f9f857519144946d615f1457aacbfdc032f578c26fb36d101adf16d3396c806c6560fa404526dc36d82b43deaa63fc3749736ec40052c4d16eaaa23b2430f481855a1314092892ba4d30519c26fdfe122cc8fcbeeb8363fc531df241ce8713107f8729f162a2a3a86558ca508976ff859c38234365c045deb618ae5f5de8f151c7c2f1a499326927020bcd0915214238423745f57b64fb919bdeb633db8c743e8a23ab95af366a212f7f042a292a8d8741b9ba01570b07e4731f98a3c6"}, {&(0x7f0000000480)="50624bf268b8b833bb0555c01af896902bafaf98d9ad013cab6a8b0dce1e28b72751781f559b27c0b346"}, {&(0x7f00000004c0)="9814ce3719d869090e54ec002b4848d82858e90228e3df6f1b84466e0b58bd2f55479462b83e111e04131e663c2b79e4cc595dcd7611acb9572bc359b192c2fc9f7af6e42b910b15a063cdff316a832dd3bb8c2ee4be413ca098ed79d443761b08309829740c90983026ad029b8e4c9e4c64a8b2c073f23a8d47efcd81c2fc6fb63432a3bf"}, {&(0x7f0000000580)="fe96a0dbf0fff3061522683fc45088939fd1f78cbf4dd637c953279ecdb6750b90be1bb090a8ed8e99c5b39460eb294153f5efdfe8d3129dd8c30a479b641889b757d2049b33dd72593789"}, {&(0x7f0000000600)="d0874ab804067722643a85ce53773a744fbb62eabdd779b795fad76881a71db69aa63a748aeb8b953e81fa658fa0ad86f83677cb03a0336b552b4f434c8626a00bc46dd6967f468644ea5ee56eeba62ff01fdf3ffcd3e7ab8ed964eba71b33fd37e39c230f446660cf0fb299fb747c896b928796467d4c12d2"}, {&(0x7f0000000700)="ca8d7e74175fa88794f7eb0282dd396aaeeb7fd2c157de49e757d36c6af6850b299180c69ed52c9e880c17f338179c0d979d2b82e3a6a79d61cee354fb68ef229a929d002b5c27346ecb1ecfaa57034d6cdcae8950db577140a22ffa72062b4ad982b1e1c09d9e4b0c4b022ccfeb8cabf27b901ed7ada550480cd129a299b1e84392718cc7bb2d5fbd2bcfebbd5372dfd4c229f0df90cc296f1cb4d6804d2cd7961568df0e812589ecc8a583cdb63d0faab8ed1231ff"}, {&(0x7f0000000680)="68a1bf71caf639f0b33a42362ea198fb"}, {&(0x7f00000007c0)="9580b8d785064028f717cc524ab617e94c89398936d0379897a9d813fb0129a7c68670f41656cacbd6e4e5d8cf7acf742eed386ac04cec9bdf06ba474a8d5807986b1cd6eee465e77d25b39587c03f34dbab35226dd6cf5f41dddb24b7f3"}, {&(0x7f0000000840)="bf3e196ee1d092e5a2e84b04c43891d70570fada0daed83c3bd26bf61361a6519be3e606c524a916cbc0f5339f35a2fc7d128f7b509aefc5f17344ea14e5a5167b36c4744e8e427af1c34c4da7da4fca1b4f355eb2ef835964f4941dcacfcd9958cde38b0277a7d7c551cd3bae2bc3f2d376db1f9812b2837f62c4b52f6a8a0e49a1537563ccdeea9e40413a7c719211667cf0a40ba4165485f491ab"}], 0x1cd)

08:04:38 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x3410c0, 0x0)
setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r1, 0x111, 0x2, 0x0, 0x4)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100))
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
pwritev(r0, &(0x7f0000000400)=[{&(0x7f00000001c0)="1d746f57ad78dada15d18195ba87a1f87ea6ded7eaeb664810c7827175f54aa8c2c88cb6f5983282cf4428e084e46abab0e69ed7f9ff1aac4cc9c6aa29d2cb4fe4bd98d73af0779f8beda67828e37a88043ccbec0c05d775b7", 0x59}, {&(0x7f0000000240)="a138e1d25d2224051a8a319dbcb16108fee2eec49ee4319d397019539a9e", 0x1e}, {&(0x7f0000000280)}, {&(0x7f00000002c0)="5ed4001c34987ccc0ed0ff60e08f7a8712b8119bf27f2a30bed0bf436c74bfb07a057a110eab50c4", 0x28}, {&(0x7f0000000300)}, {&(0x7f0000000340)="7cc4", 0x2}, {&(0x7f0000000380)="e6cd99f2bded79b3df8a8a4c7f8b1cdbb676871d700944e36dcd17699bbb3fe3182eb860d98b122bbdc2", 0x2a}, {&(0x7f00000003c0)="5a4e8d2d65c35313a10bf8d0c733be7813d6ac09e1e473c4b1e9fbdbc81449390f0ac2e4b4bb1eef4df787a909dacfa4f27c17", 0x33}], 0x8, 0x0)

08:04:38 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@getqdisc={0x24, 0x26, 0x30b}, 0x24}}, 0x0)
recvmmsg(r0, &(0x7f0000009e80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002280)=[{&(0x7f0000000000)=""/69, 0x45}, {&(0x7f0000000e00)=""/242, 0xf2}, {&(0x7f0000000f40)=""/4096, 0x1000}, {&(0x7f0000001f40)=""/95, 0x5f}, {&(0x7f0000001fc0)=""/216, 0xd8}, {&(0x7f00000020c0)=""/88, 0x58}, {&(0x7f0000002140)=""/249, 0xf9}], 0x7}}], 0x2, 0x0, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000080)=0x19, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000100)=0x5, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="2400000026001703000000000000000000000000", @ANYRES32=0x0, @ANYBLOB="000010000000000000000000"], 0x24}}, 0x0)

[ 1151.384257][ T4158] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1151.389743][ T4158] CPU: 0 PID: 4158 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1151.398690][ T4158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1151.408754][ T4158] Call Trace:
[ 1151.412063][ T4158]  dump_stack+0x172/0x1f0
[ 1151.416417][ T4158]  handle_userfault.cold+0x41/0x5d
[ 1151.421557][ T4158]  ? __lock_acquire+0x548/0x3fb0
[ 1151.426876][ T4158]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1151.432194][ T4158]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1151.438202][ T4158]  ? find_held_lock+0x35/0x130
[ 1151.442982][ T4158]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1151.448980][ T4158]  ? kasan_check_write+0x14/0x20
[ 1151.453930][ T4158]  ? lock_downgrade+0x880/0x880
[ 1151.458799][ T4158]  ? kasan_check_read+0x11/0x20
[ 1151.463655][ T4158]  ? do_raw_spin_unlock+0x57/0x270
[ 1151.468786][ T4158]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1151.469461][ T4225] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1151.474600][ T4158]  ? kasan_check_read+0x11/0x20
[ 1151.474624][ T4158]  ? __thp_get_unmapped_area+0x190/0x190
[ 1151.474637][ T4158]  ? pmd_val+0x100/0x100
[ 1151.474653][ T4158]  ? __lock_acquire+0x548/0x3fb0
[ 1151.474667][ T4158]  ? __kernel_text_address+0xd/0x40
[ 1151.474685][ T4158]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1151.474706][ T4158]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1151.474726][ T4158]  ? find_held_lock+0x35/0x130
[ 1151.520105][ T4158]  ? handle_mm_fault+0x322/0xb30
[ 1151.525066][ T4158]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1151.531322][ T4158]  ? kasan_check_read+0x11/0x20
[ 1151.536206][ T4158]  handle_mm_fault+0x43f/0xb30
[ 1151.540988][ T4158]  __get_user_pages+0x7b6/0x1a40
[ 1151.545944][ T4158]  ? follow_page_mask+0x19a0/0x19a0
[ 1151.551176][ T4158]  ? get_user_pages_remote+0x17d/0x440
[ 1151.556660][ T4158]  get_user_pages_remote+0x1a3/0x440
[ 1151.561980][ T4158]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1151.567638][ T4158]  ? alloc_vmap_area.cold+0x24/0x24
[ 1151.572851][ T4158]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1151.578845][ T4158]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
08:04:38 executing program 2:
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x80000000, 0x2000)
pipe2(&(0x7f0000000100)={<r0=>0xffffffffffffffff}, 0x4800)
write$P9_ROPEN(r0, 0x0, 0xffffffffffffff24)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20)
r1 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
fremovexattr(r1, &(0x7f0000000140)=@random={'btrfs.', 'selfvmnet1trustedposix_acl_access(\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno'}})
chroot(&(0x7f0000000080)='./file0\x00')

08:04:38 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x5, &(0x7f00000000c0)="89bec2ed53158f12769609")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000140)={{{@in6=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@dev}}, &(0x7f0000000240)=0xe8)
getresuid(&(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x4000, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, r2}}, {@cache_mmap='cache=mmap'}, {@dfltuid={'dfltuid', 0x3d, r3}}, {@access_client='access=client'}, {@afid={'afid', 0x3d, 0x3ff}}, {@access_user='access=user'}, {@aname={'aname', 0x3d, 'md5sumIkeyringeth1-'}}, {@aname={'aname', 0x3d, '/dev/cec#\x00'}}], [{@subj_user={'subj_user', 0x3d, '\x87'}}]}})
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:38 executing program 0:
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
r1 = getpgrp(0x0)
r2 = geteuid()
getgroups(0x3, &(0x7f0000000000)=[0xffffffffffffffff, 0xee00, <r3=>0xee01])
setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={r1, r2, r3}, 0xc)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='coredump_filter\x00')
writev(r4, &(0x7f00000001c0)=[{&(0x7f0000000200)="81", 0x1}], 0x1)
ioctl$VIDIOC_QBUF(r4, 0xc058560f, &(0x7f0000000100)={0x7fffffff, 0xc, 0x4, 0x0, {0x0, 0x2710}, {0x5, 0xf, 0xffff, 0x8, 0x100000001, 0x6ece, "c3d118e8"}, 0x6, 0x7, @planes=&(0x7f00000000c0)={0x0, 0x1ff, @fd=r4, 0x44d}, 0x4})

[ 1151.585095][ T4158]  ? _copy_from_user+0xdd/0x150
[ 1151.589984][ T4158]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1151.595712][ T4158]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1151.601204][ T4158]  process_vm_rw+0x21f/0x240
[ 1151.605808][ T4158]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1151.611618][ T4158]  ? __might_fault+0x12b/0x1e0
[ 1151.616412][ T4158]  ? kasan_check_read+0x11/0x20
[ 1151.621273][ T4158]  ? _copy_to_user+0xc9/0x120
[ 1151.625966][ T4158]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1151.632224][ T4158]  ? put_timespec64+0xda/0x140
[ 1151.637000][ T4158]  ? nsecs_to_jiffies+0x30/0x30
[ 1151.641877][ T4158]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1151.647350][ T4158]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1151.652820][ T4158]  ? do_syscall_64+0x26/0x610
[ 1151.657516][ T4158]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1151.663184][ T4158]  do_syscall_64+0x103/0x610
[ 1151.667799][ T4158]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1151.673694][ T4158] RIP: 0033:0x458209
[ 1151.677598][ T4158] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1151.702542][ T4158] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1151.710965][ T4158] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1151.719046][ T4158] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013c0
[ 1151.727031][ T4158] RBP: 000000000073bfa0 R08: 0000000000000039 R09: 0000000000000000
[ 1151.735012][ T4158] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1151.742991][ T4158] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1151.755579][ T4225] CPU: 1 PID: 4225 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1151.764538][ T4225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1151.774598][ T4225] Call Trace:
[ 1151.777901][ T4225]  dump_stack+0x172/0x1f0
[ 1151.782256][ T4225]  handle_userfault.cold+0x41/0x5d
[ 1151.787376][ T4225]  ? __lock_acquire+0x548/0x3fb0
[ 1151.792331][ T4225]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1151.798639][ T4225]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1151.804625][ T4225]  ? find_held_lock+0x35/0x130
[ 1151.809400][ T4225]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1151.815396][ T4225]  ? kasan_check_write+0x14/0x20
[ 1151.820348][ T4225]  ? lock_downgrade+0x880/0x880
[ 1151.825213][ T4225]  ? kasan_check_read+0x11/0x20
[ 1151.830056][ T4225]  ? do_raw_spin_unlock+0x57/0x270
[ 1151.835154][ T4225]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1151.840983][ T4225]  ? kasan_check_read+0x11/0x20
[ 1151.845818][ T4225]  ? __thp_get_unmapped_area+0x190/0x190
[ 1151.851436][ T4225]  ? pmd_val+0x100/0x100
[ 1151.855665][ T4225]  ? __lock_acquire+0x548/0x3fb0
[ 1151.860597][ T4225]  ? __kernel_text_address+0xd/0x40
[ 1151.865797][ T4225]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1151.870905][ T4225]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1151.876478][ T4225]  ? find_held_lock+0x35/0x130
[ 1151.881264][ T4225]  ? handle_mm_fault+0x322/0xb30
[ 1151.886208][ T4225]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1151.892441][ T4225]  ? kasan_check_read+0x11/0x20
[ 1151.897290][ T4225]  handle_mm_fault+0x43f/0xb30
[ 1151.902060][ T4225]  __get_user_pages+0x7b6/0x1a40
[ 1151.906998][ T4225]  ? follow_page_mask+0x19a0/0x19a0
[ 1151.912202][ T4225]  ? get_user_pages_remote+0x17d/0x440
[ 1151.917647][ T4225]  get_user_pages_remote+0x1a3/0x440
[ 1151.922936][ T4225]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1151.928558][ T4225]  ? alloc_vmap_area.cold+0x24/0x24
[ 1151.933753][ T4225]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1151.939988][ T4225]  ? _copy_from_user+0xdd/0x150
[ 1151.944829][ T4225]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1151.950541][ T4225]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1151.956040][ T4225]  process_vm_rw+0x21f/0x240
[ 1151.960650][ T4225]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1151.966442][ T4225]  ? __might_fault+0x12b/0x1e0
[ 1151.971226][ T4225]  ? kasan_check_read+0x11/0x20
[ 1151.976053][ T4225]  ? _copy_to_user+0xc9/0x120
[ 1151.980716][ T4225]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1151.986957][ T4225]  ? nsecs_to_jiffies+0x30/0x30
[ 1151.991829][ T4225]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1151.997287][ T4225]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1152.002726][ T4225]  ? do_syscall_64+0x26/0x610
[ 1152.007385][ T4225]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1152.013000][ T4225]  do_syscall_64+0x103/0x610
[ 1152.017592][ T4225]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1152.023474][ T4225] RIP: 0033:0x458209
[ 1152.027352][ T4225] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1152.046936][ T4225] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1152.055327][ T4225] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1152.063279][ T4225] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d49
[ 1152.071241][ T4225] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1152.079211][ T4225] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1152.087164][ T4225] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:39 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x62, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:39 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x3, &(0x7f0000000040)="0adc1f123c12a41d88b070")
fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, <r1=>0x0})
ptrace$setsig(0x4203, r1, 0x1, &(0x7f0000000100)={0x26, 0x1})
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:39 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000000)=0x4a, 0x4)

08:04:39 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000380)='/dev/sequencer\x00', 0x640000, 0x0)
bind$netrom(r0, &(0x7f00000003c0)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast]}, 0x48)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xfffffffffffffffe, 0x2000)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000002c0)={<r3=>0xffffffffffffffff}, 0x13f}}, 0x20)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000480)=<r4=>0x0)
ptrace(0x10, r4)
write$P9_RREADLINK(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="5283fa709cddc79c24fecd63c9fbab83b82f7134a64fde574cab813a54e86d392191c6aa2ef99c75dcf4698e9012ac1cc630178f1dbd60521940dd399c3901639a1529d012fc83e9aa9fbd09129709160fb380b611f195efcbdc9a9f225f9c49fb6e72844576a298da3948cb2213e9f7c8ee7faf79997e12a889d5e5b58f707568eb3e7e9ae30b0079aa4c47808cdbc72498e49bda941eaaf123b8f1b33f6998001042aa6d743d163b9bcf9f0e4a7e5dd552ebf156f5091fad"], 0x10)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r2, &(0x7f0000000340)={0x5, 0x10, 0xfa00, {&(0x7f00000000c0), r3, 0x3}}, 0x18)
r5 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r5, 0xc0386106, &(0x7f0000000840))

08:04:39 executing program 2:
creat(&(0x7f0000000000)='./file0\x00', 0x0)
fanotify_init(0x1, 0x9400)

08:04:39 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000300)={{&(0x7f0000430000/0x4000)=nil, 0x4000}, 0x1})
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r2, 0x300, 0x70bd2c, 0x25dfdbfb, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x0, 0x0, 0x7, 0x3}}}, [""]}, 0x30}}, 0x8000)
r3 = gettid()
read(r0, &(0x7f0000000340)=""/125, 0xfd)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:39 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000000)={0x6, 0x0, 0x2, {0x4, 0x3ef, 0x7}})
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f00000049c0)=""/4096)
writev(r0, &(0x7f0000001840)=[{&(0x7f0000000180)="437b56af091373efcd408bdb8d2eecbf346f9d3d7c89773e47012bb7930d59c2c67445ac9e69573518d9204666c5dbf5c13cff6db6ec5b5995725fde54f5d9f45fb95af27620260b1ba5414abda0c92f4092d96cb861bb53da152b547d63b55856984a"}, {&(0x7f0000000200)="21c7f24e4d4f1e0fdab4f5422687facf00f2931091f67218d76102f48163710dfb6cf869c5a77066196f812e9bd2196ec3f42e5fcefc79532d"}, {&(0x7f0000001900)="51bce754011fdab74c8a4058c8fe08c9656abf7d3fd437f3678c735ccdd370215bb782dfb98ef4076d49bc361cf1bdd30a9aef"}, {&(0x7f0000001400)="89f2cb2f75464c1eed2417baa5dd0440206f5998a6a26ba51f516e473af248babffcd0220aecf1cf52a54fa09cc458a58862141a76c966ede4cf92ba7bf79ae78c63f60dac7ce52e9d66eeafecbd59499709daa8dc6665e6c337b9cb0099fced208d92dfe804b4ce92f64964dfc845cb1df0816dd47e49a1ffcc8c3fc4cdf2e4f2999ef07ea54f328c55164a17a35e0668a85bae73b7f45866699e0ad88556f9bf91ed8cbb1fb9c0e996222efd7b96f782fd369997fcb744cf598b9bce35df14553c8ef955c9"}, {&(0x7f0000001500)="0668d6dad8c118e04e01877bae3bee019655ad038b8e5dbc99399c26dcde2854fede9281660d8b2d9c8e7af3db85b4a6fb562ee183e10ff2f526387f45b18467e6d6ad9def9f305fe36fa1496a662fd6ba467a477fcea7a705993629e037e67b4697fbc2c3dc9447fca512a0a9fe5f3b86cecb65969b95430484f36884fb3780d8e771da7545de87f8e669e2f04a7033a5884d5068289937a4a134722d0f53882c870dd37a1d7c4cb0851854c8b24f791b3d88c8f3a5aea3840a0246c0e18c1c557c965338bcbf247e752c1e6a6584a12a9293d38fe2a508945fefbbcc7abbcdac153d"}, {&(0x7f0000001300)="6ed2e0d8535196147bfce904d81a58d52b6ae1dc8b8e70f116fd294c02bbf440fbba97864c991ef8f959bc722038962b9b2d0ca27fea300791874cf0bae6245281ab09e858ac0191d36b7b85d8628258a09cbf930192cb3c88a8275ec73cddf0da79b79d969f99b532b202b9ef1c61e3cd902edfe8f477f0016227772dce499fa85ff490da8ef1df3fb0e0b0567902981488af88196e6e7d6f81973e51ab1f258f9cb14e412a8476b90b8b72d6164b3bcfd053285baf2f0f3895"}, {&(0x7f0000000280)="2b55a94908903d48d7ded22ea5f773c1001b35dc791dd29005459704f4c9bcda4d21992d11b89e81ccacadc65b"}, {&(0x7f0000001600)="8eee2049231a8b22a8049902eb90d97f512dd879aee23c3c5521b23df2877716d6701edafb64bfc1570665a671454de4a15f24f31ceb4fb009d811f0e38a6911d0add83395588705f2e951854f700789c4969c944389bb1536de896dfb2556c9403d1d12129995a47765c17b6a8da98354f87ada9ed2582afe490f0be134c22cfc1bf1451607b1f25f586099381ad993c7dd79c41b92b55b973066f198b8d57ab85da65b419991b7b66d1a343d8e7232bc868dc6b117297bf4f422236ad7c520d58c2e1784c2e9ce86db09dea0e23910c6b57c9bb240f472c6165ee5f3dbc4a7adf9fc514fa2c667290ec54d753cf33684ddb07dd91f3073"}, {&(0x7f0000001700)="d38ac3942170e8b6dd3295ac0706c8e42e9e4221eb6dd4cca84109836e12f375cca773dd2ae879c60f1e5017af6965753b6979944b90f4ed6b8b817d13890955dec2afce16d8460ec77727ee9571eb642e465f20bd498c6dfdb10a84a56f576ef2afe103db19a63ba528a37877e2b199571a1163cbf9faabeff2eaece73b8be1be646f66c3dc2924e4bc7b5ee79aef600d352e367d213d17abdc9d544a115852b955ab3b12"}, {&(0x7f00000017c0)="a6d1be11a08b9ec2ed3d8872bc9f0bde52642af13db8484186afc367d4b4152729854418bb46307ccb4ac89e01fdc567a8cf225889673c0ebbe159d25671aa830cc99228e9e9b617c00d6a0892f04ca25c46df7d5559094d752d26936c381df1382c61389fe1b673266ac9143f409677528e80d6d68c7c81ef"}], 0x100000000000008a)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)={0xd000, 0x8000})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f0000001940))
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in=@initdev, @in6=@empty}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000003c0)=0xe8)
ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000040)={0xf9, 0x0, [0x80000001, 0x8, 0x7, 0x9]})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)

[ 1152.333688][ T4864] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1152.343347][ T4864] CPU: 1 PID: 4864 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1152.352325][ T4864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1152.362406][ T4864] Call Trace:
[ 1152.365715][ T4864]  dump_stack+0x172/0x1f0
[ 1152.370067][ T4864]  handle_userfault.cold+0x41/0x5d
[ 1152.375204][ T4864]  ? __lock_acquire+0x548/0x3fb0
[ 1152.380183][ T4864]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1152.385479][ T4864]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1152.391478][ T4864]  ? find_held_lock+0x35/0x130
[ 1152.396232][ T4864]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1152.402224][ T4864]  ? kasan_check_write+0x14/0x20
[ 1152.407188][ T4864]  ? lock_downgrade+0x880/0x880
[ 1152.412058][ T4864]  ? kasan_check_read+0x11/0x20
[ 1152.416915][ T4864]  ? do_raw_spin_unlock+0x57/0x270
[ 1152.418993][ T5001] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1152.422039][ T4864]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1152.422057][ T4864]  ? kasan_check_read+0x11/0x20
[ 1152.422079][ T4864]  ? __thp_get_unmapped_area+0x190/0x190
[ 1152.422094][ T4864]  ? pmd_val+0x100/0x100
[ 1152.422115][ T4864]  ? __lock_acquire+0x548/0x3fb0
[ 1152.452709][ T4864]  ? __kernel_text_address+0xd/0x40
[ 1152.457917][ T4864]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1152.463040][ T4864]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1152.468594][ T4864]  ? find_held_lock+0x35/0x130
[ 1152.473371][ T4864]  ? handle_mm_fault+0x322/0xb30
[ 1152.478323][ T4864]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1152.484573][ T4864]  ? kasan_check_read+0x11/0x20
[ 1152.489432][ T4864]  handle_mm_fault+0x43f/0xb30
[ 1152.494214][ T4864]  __get_user_pages+0x7b6/0x1a40
[ 1152.499184][ T4864]  ? follow_page_mask+0x19a0/0x19a0
[ 1152.504398][ T4864]  ? get_user_pages_remote+0x17d/0x440
[ 1152.509869][ T4864]  get_user_pages_remote+0x1a3/0x440
[ 1152.515183][ T4864]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1152.520841][ T4864]  ? alloc_vmap_area.cold+0x24/0x24
[ 1152.526055][ T4864]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1152.532039][ T4864]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1152.538283][ T4864]  ? _copy_from_user+0xdd/0x150
[ 1152.543149][ T4864]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1152.548883][ T4864]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1152.554358][ T4864]  process_vm_rw+0x21f/0x240
[ 1152.558961][ T4864]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1152.564765][ T4864]  ? __might_fault+0x12b/0x1e0
[ 1152.569554][ T4864]  ? kasan_check_read+0x11/0x20
[ 1152.574410][ T4864]  ? _copy_to_user+0xc9/0x120
[ 1152.579094][ T4864]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1152.585334][ T4864]  ? put_timespec64+0xda/0x140
[ 1152.590099][ T4864]  ? nsecs_to_jiffies+0x30/0x30
[ 1152.594963][ T4864]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1152.600426][ T4864]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1152.605887][ T4864]  ? do_syscall_64+0x26/0x610
[ 1152.610579][ T4864]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1152.616226][ T4864]  do_syscall_64+0x103/0x610
[ 1152.620825][ T4864]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1152.626714][ T4864] RIP: 0033:0x458209
[ 1152.630609][ T4864] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1152.650217][ T4864] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1152.658636][ T4864] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1152.666608][ T4864] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013c4
[ 1152.674609][ T4864] RBP: 000000000073bfa0 R08: 0000000000000062 R09: 0000000000000000
08:04:39 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000000)={<r1=>0x0, @in6={{0xa, 0x4e21, 0x7, @ipv4={[], [], @broadcast}, 0x4}}, [0x9, 0xa6c, 0x6, 0x2000000000000, 0x8, 0xfffffffffffffffc, 0x2, 0x80000000, 0x6, 0x7, 0x1ff, 0x9, 0x3, 0x0, 0x200]}, &(0x7f0000000140)=0x100)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000180)={r1, @in6={{0xa, 0x4e22, 0x7fffffff, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x6}}}, 0x84)
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1152.682581][ T4864] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1152.690553][ T4864] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1152.698570][ T5001] CPU: 0 PID: 5001 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1152.707511][ T5001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1152.717561][ T5001] Call Trace:
[ 1152.720852][ T5001]  dump_stack+0x172/0x1f0
[ 1152.720875][ T5001]  handle_userfault.cold+0x41/0x5d
[ 1152.720891][ T5001]  ? __lock_acquire+0x548/0x3fb0
08:04:39 executing program 1:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000001140)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r0, 0x4008af13, &(0x7f0000001180)={0x3, 0x9})
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x101200, 0x0)
write$vhci(r1, &(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, "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"}, 0x1001)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
ptrace$setregset(0x4205, r1, 0x4, &(0x7f0000000240)={&(0x7f00000001c0)="82e93db217a7651c8fb714c7610a7a1faf4d519fce2403c0b08935576ed2e08f7aa86734f1beaee5baf8a03910ecd9ce458644276f68781cd8822d01c9bc19e97e89da2f03629e8652702ea7", 0x4c})
r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000640)='/dev/dlm-monitor\x00', 0x20000, 0x0)
write$P9_RSTATFS(r2, &(0x7f0000000680)={0x43, 0x9, 0x2, {0x1, 0x7f, 0xfffffffffffffff9, 0x3, 0x0, 0x81, 0x1, 0x0, 0x8}}, 0x43)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x48f, &(0x7f0000000040)={0x84, @local, 0x0, 0x0, 'wrr\x00'}, 0x2c)
r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2)
syz_read_part_table(0xc000000000000, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000280)="62b863b649776f8d61b1350f76726d98e7e6dc7025d7dc365d2afbbb39dc4691e749973a8413f22f81de3e062bb9ac5608df4db9e3e12bdd919015b297b97839a7b31808c3c5e8b2d1d524e6c85e3b88543fb9aa7d80934baf6924118c8025577be01de9e94ed9e0bdbd333dd4dd1ce1f3189e9c5737dd533a98325ba0527913a6b36471", 0x84, 0x2f}, {&(0x7f0000000340)="cf482bdc6ad134470246eee197da7a3282afad43dad5dce8bb9b456aba4a7fb4816aac79e693b5cefee8d34f25c72c3e81c8c2ded82fc835ee9e318429786653f7c7ddcf2530fdcd678cfd8eeaede5c9373fc3f4276d55834a66d3e2bd5b0c84ab2ae539780f855b3d828372d89b782b7fdce3bb97e508ab227ba863a7ff6d47c3b65692637e193085ab0050795bd07b1235fb0de18ebf0324467407568ebf025252fdede71326d8eaec7726b520ac22a7ddff9bdfdf1d13bcaf8c8819fd", 0xbe, 0xffffffff}, {&(0x7f0000000400)="2034a7b72900d696476b5f3edfc34008c39521b3910def27ca465b4935178a8b98d1cdf7cc769919b6cc1f82f18e159b6dd100d1559fdbd34871cbe78432e058adbf6c98f6d746e48a81d11942f89924b693164601a29f5ab483bad5c48f2aede0453df468d06d33ab19ecd6dc40e789ec152525037f032a96ee4799f231645b43d1284c77acddbff7e9544b2e2d6183bb85b40ee7cb9d048c2f53ce7a08efce60fd6a1621335c2930886bdb6f6fcf7e583cccfc2bd90d8c37da6596dc5bd1f5f485f1c02ea8cf6fd6c0df8ed8c06447d6496f2a8a2a", 0xd6, 0xfffa}, {&(0x7f0000000500)="e3c56dec7a958ee9bb99add2783479792d974c5a794b95e910989323ad82e048334a3cfb697bce94cf62d274cee7324e90c209685f104c08b5044724bc3465e09fcb7fdd8dc8280310d74392cd510f9e8b004fd60b7cc4d2632327613e48f87c99af91626a52738dc0ab739a9d3ba31d96713d6e1bbd0e42c60a2659fba217a449dec6b0", 0x84, 0x5}])
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={<r4=>0x0, 0x7ff}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000100)={r4, 0x7}, 0x8)

[ 1152.720920][ T5001]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1152.740539][ T5001]  ? __handle_mm_fault+0x360c/0x3ec0
[ 1152.745864][ T5001]  ? find_held_lock+0x35/0x130
[ 1152.750640][ T5001]  ? __handle_mm_fault+0x360c/0x3ec0
[ 1152.755940][ T5001]  ? kasan_check_write+0x14/0x20
[ 1152.760887][ T5001]  ? lock_downgrade+0x880/0x880
[ 1152.765755][ T5001]  ? kasan_check_read+0x11/0x20
[ 1152.770619][ T5001]  ? do_raw_spin_unlock+0x57/0x270
[ 1152.775747][ T5001]  __handle_mm_fault+0x361d/0x3ec0
[ 1152.780877][ T5001]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1152.786438][ T5001]  ? find_held_lock+0x35/0x130
[ 1152.791222][ T5001]  ? handle_mm_fault+0x322/0xb30
[ 1152.796194][ T5001]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1152.802452][ T5001]  ? kasan_check_read+0x11/0x20
[ 1152.807407][ T5001]  handle_mm_fault+0x43f/0xb30
[ 1152.812204][ T5001]  __get_user_pages+0x7b6/0x1a40
[ 1152.817187][ T5001]  ? follow_page_mask+0x19a0/0x19a0
[ 1152.822398][ T5001]  ? get_user_pages_remote+0x17d/0x440
[ 1152.827870][ T5001]  get_user_pages_remote+0x1a3/0x440
[ 1152.833184][ T5001]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1152.838843][ T5001]  ? alloc_vmap_area.cold+0x24/0x24
[ 1152.844050][ T5001]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1152.850288][ T5001]  ? _copy_from_user+0xdd/0x150
[ 1152.855145][ T5001]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1152.860885][ T5001]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1152.866378][ T5001]  process_vm_rw+0x21f/0x240
[ 1152.870998][ T5001]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1152.876800][ T5001]  ? __might_fault+0x12b/0x1e0
[ 1152.881599][ T5001]  ? kasan_check_read+0x11/0x20
[ 1152.886451][ T5001]  ? _copy_to_user+0xc9/0x120
[ 1152.891133][ T5001]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1152.897388][ T5001]  ? nsecs_to_jiffies+0x30/0x30
[ 1152.902265][ T5001]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1152.907728][ T5001]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1152.913200][ T5001]  ? do_syscall_64+0x26/0x610
[ 1152.917884][ T5001]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1152.923526][ T5001]  do_syscall_64+0x103/0x610
[ 1152.928122][ T5001]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1152.934010][ T5001] RIP: 0033:0x458209
[ 1152.937917][ T5001] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1152.957534][ T5001] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1152.965958][ T5001] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1152.973957][ T5001] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d4e
08:04:40 executing program 0:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={<r0=>0x0}, &(0x7f0000000180)=0xc)
r1 = syz_open_procfs(r0, &(0x7f0000000100)='coredump_fi%\xa3\xba\xc8\x00')
memfd_create(&(0x7f00000001c0)='\x00', 0x7)
writev(r1, &(0x7f0000000000)=[{&(0x7f00000002c0)="81", 0x2df}], 0x1)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000040)={0x0, 0x1, {0x1, 0x0, 0x81, 0x2, 0x3}})

[ 1152.981931][ T5001] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1152.989915][ T5001] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1152.997900][ T5001] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:40 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1f, &(0x7f0000000240)="54d1f0bfbee5caa3400adc1fb96193ee123c12a600800000")
getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000000), &(0x7f00000000c0)=0x8)
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getpeername$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000200)=0x1c)
setsockopt$inet_tcp_int(r1, 0x6, 0x18, &(0x7f0000000140)=0x8, 0x4)
syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x7, 0x48a080)
openat$cgroup_procs(r1, &(0x7f0000001280)='cgroup.procs\x00', 0x2, 0x0)
ioctl(r0, 0x7, &(0x7f0000000280)="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")
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000040)=0x80, 0x4)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f00000001c0)={0x1000fff, 0x80000002, 0x5, 0x7f87})
socket$inet_udplite(0x2, 0x2, 0x88)

08:04:40 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x63, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:40 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000100), &(0x7f0000000140)=0x40)
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(0x0, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:40 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x100000001, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000200), &(0x7f0000000240)=0x4)
write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="2321206ae23a39292a79e05adad965677f2e2f66696c653020766d6e657430202f6465762f6365632300202f6465762f64737000207670c917ff2540949b626f786e657431203a5c24776c616e30202f6465762f64737000202f6465762f6365632300202fdaca"], 0x67)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x2, 0x0)
write$FUSE_LSEEK(r2, &(0x7f00000001c0)={0x18, 0x0, 0x6, {0xc8}}, 0x18)
ioctl$CAPI_NCCI_GETUNIT(r2, 0x80044327, &(0x7f0000000340)=0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0xffff, 0x0)
ioctl$DRM_IOCTL_RM_MAP(r3, 0x4028641b, &(0x7f0000000180)={0x0, 0x1ff, 0x0, 0x10, &(0x7f0000ffc000/0x4000)=nil, 0xfffffffffffffffc})

08:04:40 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0xc7a, 0x100)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="832c384ea6e46bb061a803b5f9196c26d0765f4bada5ac10dbd8e109f48438271b7a1c23e6f112ac415ac509076663718c378a16d8349ae81a04cb261034802bf211cd168ead91405db11f795edd3ce538eb9e83cdcee90c0fe6144f7b04faec4e6b750d641af068e76911245e0fcf24a59c32e6af33177d1e6d01b59ac0513c7aa449938a71c00ee806d9c5e1", 0x8d}], 0x1)

08:04:40 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000300)={{&(0x7f0000430000/0x4000)=nil, 0x4000}, 0x1})
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r2, 0x300, 0x70bd2c, 0x25dfdbfb, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x0, 0x0, 0x7, 0x3}}}, [""]}, 0x30}}, 0x8000)
r3 = gettid()
read(r0, &(0x7f0000000340)=""/125, 0xfd)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:40 executing program 0:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x2, 0x0)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000040)=[0xa9, 0x7])
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={<r1=>0x0}, &(0x7f0000000240)=0xc)
r2 = syz_open_procfs(r1, &(0x7f00000001c0)='coredump_filter\x00')
writev(r2, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f00000000c0)=0x8, 0x4)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000080)=0x1, 0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={r2, 0x3, 0x1, 0x100000001, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20)

[ 1153.392099][ T5634] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1153.397388][ T5634] CPU: 0 PID: 5634 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1153.406333][ T5634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1153.416402][ T5634] Call Trace:
[ 1153.419710][ T5634]  dump_stack+0x172/0x1f0
[ 1153.424055][ T5634]  handle_userfault.cold+0x41/0x5d
[ 1153.429187][ T5634]  ? __lock_acquire+0x548/0x3fb0
[ 1153.434149][ T5634]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1153.439458][ T5634]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1153.445432][ T5634]  ? find_held_lock+0x35/0x130
[ 1153.450226][ T5634]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1153.456244][ T5634]  ? kasan_check_write+0x14/0x20
[ 1153.461216][ T5634]  ? lock_downgrade+0x880/0x880
[ 1153.466091][ T5634]  ? kasan_check_read+0x11/0x20
[ 1153.470964][ T5634]  ? do_raw_spin_unlock+0x57/0x270
[ 1153.476095][ T5634]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1153.481914][ T5634]  ? kasan_check_read+0x11/0x20
[ 1153.486785][ T5634]  ? __thp_get_unmapped_area+0x190/0x190
[ 1153.492428][ T5634]  ? pmd_val+0x100/0x100
[ 1153.496681][ T5634]  ? __lock_acquire+0x548/0x3fb0
[ 1153.501627][ T5634]  ? __kernel_text_address+0xd/0x40
[ 1153.506845][ T5634]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1153.511978][ T5634]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1153.517540][ T5634]  ? find_held_lock+0x35/0x130
[ 1153.522318][ T5634]  ? handle_mm_fault+0x322/0xb30
[ 1153.527271][ T5634]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1153.533528][ T5634]  ? kasan_check_read+0x11/0x20
08:04:40 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
r1 = fcntl$getown(r0, 0x9)
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x7, 0x1f, 0xff, 0x8, 0x0, 0x9, 0x20004, 0x4, 0x9, 0xb2, 0x11, 0xf578, 0x7, 0x0, 0x3, 0x8, 0x8001, 0x7, 0x10000000000000, 0x66, 0x1, 0x8, 0x8000, 0x100000000, 0x200, 0xfffffffffffffffe, 0xfffffffffffffff9, 0x8, 0x2, 0x240000000, 0x4, 0xff, 0x82b, 0x5612, 0xfc, 0xfe, 0x0, 0x5, 0x0, @perf_config_ext={0x2, 0xffffffffffffff00}, 0x10000, 0xcf, 0x2, 0x0, 0x6, 0x6, 0x1}, r1, 0xd, 0xffffffffffffff9c, 0x8)

08:04:40 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000300)={{&(0x7f0000430000/0x4000)=nil, 0x4000}, 0x1})
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r2, 0x300, 0x70bd2c, 0x25dfdbfb, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x0, 0x0, 0x7, 0x3}}}, [""]}, 0x30}}, 0x8000)
r3 = gettid()
read(r0, &(0x7f0000000340)=""/125, 0xfd)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1153.538388][ T5634]  handle_mm_fault+0x43f/0xb30
[ 1153.543186][ T5634]  __get_user_pages+0x7b6/0x1a40
[ 1153.548146][ T5634]  ? follow_page_mask+0x19a0/0x19a0
[ 1153.553381][ T5634]  ? get_user_pages_remote+0x17d/0x440
[ 1153.558859][ T5634]  get_user_pages_remote+0x1a3/0x440
[ 1153.564164][ T5634]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1153.569840][ T5634]  ? alloc_vmap_area.cold+0x24/0x24
[ 1153.575052][ T5634]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1153.581041][ T5634]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1153.587310][ T5634]  ? _copy_from_user+0xdd/0x150
[ 1153.592195][ T5634]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1153.597925][ T5634]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1153.603406][ T5634]  process_vm_rw+0x21f/0x240
[ 1153.608014][ T5634]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1153.613826][ T5634]  ? __might_fault+0x12b/0x1e0
[ 1153.618622][ T5634]  ? kasan_check_read+0x11/0x20
[ 1153.623486][ T5634]  ? _copy_to_user+0xc9/0x120
[ 1153.628163][ T5634]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1153.634410][ T5634]  ? put_timespec64+0xda/0x140
[ 1153.634426][ T5634]  ? nsecs_to_jiffies+0x30/0x30
[ 1153.634452][ T5634]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1153.634474][ T5634]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1153.644070][ T5634]  ? do_syscall_64+0x26/0x610
[ 1153.644092][ T5634]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1153.644114][ T5634]  do_syscall_64+0x103/0x610
[ 1153.644138][ T5634]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1153.644151][ T5634] RIP: 0033:0x458209
[ 1153.644178][ T5634] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1153.644192][ T5634] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1153.644206][ T5634] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1153.644215][ T5634] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013c8
[ 1153.644223][ T5634] RBP: 000000000073bfa0 R08: 0000000000000063 R09: 0000000000000000
[ 1153.644231][ T5634] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1153.644240][ T5634] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:40 executing program 0:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000080)=']\x00', 0xffffffffffffffff}, 0x30)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000140)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000180)='ca+j-um\xe4v\xd2\x88\xbckp_fiL\xd0er\x00I\xc6\xcbi\xcf\xe7\xf3\xb7\xfb\x92k\xc6\xd9\xd5K=\xed\xfb\x9a\xac\xe8\xe7C<\x02f\xcc\x88b\xb9\r4N\x01\"G\f_\x88}\xde\v\xfa\a\xbc\xb1\x10\x84p\xa2\xcb\xcb\xc9Y\xc0zS7\x17\xfd\x9c\xf99\xc4~\xcc+\x0f9n\x11\xacO%\xd0RnI \x95\xf2|+\x1eO\x97\xb4\x16\xd8\x9f\x83\x89\xf6\x00\x02\x00\x00\x9f\xa0\x03)\xed\t\xd5\rK\xfb\x86\xff}\xbe\xc12\xbbzg\xbc\x97\xc4V,\x84u\x92\xc3\xa0\x8dF\x17\x87\x96\xef\xc2e\xf9\xd7$\nz\x01}\xff\x0f\x00\x00\x00\x00\x00\x1a\x96\x01\xc4xb\xd4\xc0\xc8\x01k\xbd\x97\xde\xdd\xae/\xb5\xd7\x1eC\x86\xd5B\xabX\xbe\xdd\xf3\x16n0\xc9\x90\x94xt\xec\x00\"\x13\xb6\x06')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:40 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x65, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:40 executing program 2:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000300)={{&(0x7f0000430000/0x4000)=nil, 0x4000}, 0x1})
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r2, 0x300, 0x70bd2c, 0x25dfdbfb, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x0, 0x0, 0x7, 0x3}}}, [""]}, 0x30}}, 0x8000)
r3 = gettid()
read(r0, &(0x7f0000000340)=""/125, 0xfd)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:41 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000000))
write$vhci(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0xa3)

08:04:41 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x4002801, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
write$binfmt_misc(r1, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000000c0)=0x72, 0x0)
r2 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$LOOP_SET_DIRECT_IO(r2, 0x4c08, 0x3f)
socket$inet_udplite(0x2, 0x2, 0x88)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)=""/114, 0x193, 0x72}, 0x20)
ioctl(r0, 0x100000890f, &(0x7f00000008c0)="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")
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
syz_init_net_socket$llc(0x1a, 0x1, 0x0)

[ 1153.962015][ T6119] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1153.991944][ T6119] CPU: 1 PID: 6119 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1154.000935][ T6119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1154.010996][ T6119] Call Trace:
[ 1154.014303][ T6119]  dump_stack+0x172/0x1f0
[ 1154.018656][ T6119]  handle_userfault.cold+0x41/0x5d
[ 1154.023786][ T6119]  ? __lock_acquire+0x548/0x3fb0
[ 1154.028749][ T6119]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1154.034048][ T6119]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1154.040048][ T6119]  ? find_held_lock+0x35/0x130
[ 1154.044828][ T6119]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1154.050826][ T6119]  ? kasan_check_write+0x14/0x20
[ 1154.055778][ T6119]  ? lock_downgrade+0x880/0x880
[ 1154.060643][ T6119]  ? kasan_check_read+0x11/0x20
[ 1154.065508][ T6119]  ? do_raw_spin_unlock+0x57/0x270
[ 1154.070624][ T6119]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1154.070642][ T6119]  ? kasan_check_read+0x11/0x20
[ 1154.070663][ T6119]  ? __thp_get_unmapped_area+0x190/0x190
[ 1154.070690][ T6119]  ? pmd_val+0x100/0x100
[ 1154.091193][ T6119]  ? __lock_acquire+0x548/0x3fb0
[ 1154.096402][ T6119]  ? __kernel_text_address+0xd/0x40
[ 1154.101610][ T6119]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1154.106753][ T6119]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1154.112293][ T6119]  ? find_held_lock+0x35/0x130
[ 1154.117054][ T6119]  ? handle_mm_fault+0x322/0xb30
[ 1154.122013][ T6119]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1154.128270][ T6119]  ? kasan_check_read+0x11/0x20
[ 1154.133140][ T6119]  handle_mm_fault+0x43f/0xb30
[ 1154.137932][ T6119]  __get_user_pages+0x7b6/0x1a40
[ 1154.142895][ T6119]  ? follow_page_mask+0x19a0/0x19a0
[ 1154.148095][ T6119]  ? get_user_pages_remote+0x17d/0x440
[ 1154.153556][ T6119]  get_user_pages_remote+0x1a3/0x440
[ 1154.158841][ T6119]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1154.164464][ T6119]  ? alloc_vmap_area.cold+0x24/0x24
[ 1154.169672][ T6119]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1154.175697][ T6119]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1154.181929][ T6119]  ? _copy_from_user+0xdd/0x150
[ 1154.186767][ T6119]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1154.192487][ T6119]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1154.197937][ T6119]  process_vm_rw+0x21f/0x240
[ 1154.202512][ T6119]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1154.208300][ T6119]  ? __might_fault+0x12b/0x1e0
[ 1154.213078][ T6119]  ? kasan_check_read+0x11/0x20
[ 1154.218003][ T6119]  ? _copy_to_user+0xc9/0x120
[ 1154.222666][ T6119]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1154.228897][ T6119]  ? put_timespec64+0xda/0x140
[ 1154.233645][ T6119]  ? nsecs_to_jiffies+0x30/0x30
[ 1154.238503][ T6119]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1154.243944][ T6119]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1154.249387][ T6119]  ? do_syscall_64+0x26/0x610
[ 1154.254058][ T6119]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1154.259864][ T6119]  do_syscall_64+0x103/0x610
[ 1154.264460][ T6119]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1154.270379][ T6119] RIP: 0033:0x458209
[ 1154.274253][ T6119] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1154.293861][ T6119] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1154.302266][ T6119] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1154.310235][ T6119] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013cc
[ 1154.318192][ T6119] RBP: 000000000073bfa0 R08: 0000000000000065 R09: 0000000000000000
[ 1154.326163][ T6119] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1154.334145][ T6119] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:41 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
openat$vfio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vfio/vfio\x00', 0x6a2200, 0x0)
r3 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0xffffffffaf5ae5d7, 0x100)
ioctl$TCSBRKP(r3, 0x5425, 0x80)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:41 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x1, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r1, 0xc040564a, &(0x7f0000000080)={0x5, 0x0, 0x300d, 0x5, 0x80000001, 0x0, 0xeff4cfa})

08:04:41 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)="eae29eb8923d5803b67d273cdc0ce06c31db5c464b64777439ce8beebe22c9b7926a133e3f3c0aa2dc116731ba8f0a90157026d91bc64572c359650f", 0xfffffec7}], 0x3a4b990e6922692)

08:04:41 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r0, &(0x7f0000000200)={0x9, @null='               \x00'}, 0x12)
r1 = accept$inet(0xffffffffffffff9c, &(0x7f0000000000)={0x2, 0x0, @multicast2}, &(0x7f0000000040)=0x10)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000100)=ANY=[@ANYBLOB="fe90b4fba00925dbaee4fad7c3914a26f435f2e818b8fa911382c32f8c5f3eb01228b37b388a2714d3d5"], &(0x7f00000000c0)=0xc)

08:04:41 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x68, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:41 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000040)={r1, 0x1})
setsockopt$CAIFSO_LINK_SELECT(r0, 0x116, 0x7f, &(0x7f0000000080)=0x1, 0x4)

08:04:41 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video2\x00', 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r1, 0xc040564b, &(0x7f00000000c0)={0x9, 0x0, 0x3005, 0x101, 0x0, {0x3, 0x1}})
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x3, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x7, 0x0, [{0xaab}, {0xb84, 0x0, 0x80000001}, {0xbff, 0x0, 0x7}, {0xf10, 0x0, 0x1}, {0xbed, 0x0, 0xea7d}, {0x892, 0x0, 0x1}, {0x3bc, 0x0, 0xfffffffffffffeff}]})
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:41 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000300)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000500))
read(r0, &(0x7f0000000280)=""/125, 0x7d)
pipe2(&(0x7f0000000100)={<r4=>0xffffffffffffffff}, 0x4800)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000340)=ANY=[@ANYRES32=<r5=>0x0, @ANYBLOB="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"], &(0x7f0000000140)=0x47)
syz_open_dev$admmidi(&(0x7f00000004c0)='/dev/admmidi#\x00', 0x1ff, 0x501000)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000240)={r5, 0x1f, 0x0, 0x6}, 0x10)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f00000001c0)={0x400, 0x1, 0x8, 0x8, <r6=>0x0}, &(0x7f0000000200)=0x10)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000480)={r6, 0x80000001, 0x3, 0x100}, 0x10)

08:04:41 executing program 2:
fcntl$getown(0xffffffffffffffff, 0x9)
socket$nl_route(0x10, 0x3, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000600)='/dev/sequencer2\x00', 0x200000, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000006c0))
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, <r1=>0xffffffffffffff9c, 0x0, 0xe, &(0x7f0000000040)='net/dev_mcast\x00'}, 0x30)
semget(0x0, 0x2, 0x100)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0), &(0x7f0000000200)=0xc)
r2 = msgget(0x3, 0x40c)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000480)=""/44)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f00000007c0)='trusted.overlay.opaque\x00', &(0x7f0000000800)='y\x00', 0x2, 0x1)
getgid()
stat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300))
r3 = syz_open_dev$vbi(&(0x7f00000004c0)='/dev/vbi#\x00', 0x0, 0x2)
setsockopt$inet_MCAST_LEAVE_GROUP(r3, 0x0, 0x2d, &(0x7f0000000500)={0xfffffffffffffffa, {{0x2, 0x4e24, @empty}}}, 0x88)
clock_gettime(0x5, &(0x7f0000000840))
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000100)=<r4=>0x0)
getsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000280), &(0x7f0000000240)=0x4)
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x103, 0x0)
ioctl$PPPIOCSDEBUG(r5, 0x40047440, &(0x7f0000000180)=0x1)
r6 = syz_open_procfs(r4, &(0x7f00000000c0)='net\xffdev_mcast\x00')
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r6, 0x84, 0x76, &(0x7f0000000140)={<r7=>0x0, 0x7}, &(0x7f00000005c0)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r5, 0x84, 0x66, &(0x7f0000000640)={r7}, &(0x7f0000000680)=0x8)
lseek(r6, 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r5, 0x800448d3, &(0x7f0000000700)={{0x8, 0x3, 0x3f, 0xff, 0x5, 0x1ff}, 0x5181e84b, 0x0, 0x0, 0x7fff, 0x9, "8e981c51d98bb0136793dd97db9f1acfe87f9029eebdccdbd504e43e6b6a6fb164d5d04c22208c0872cce921a82539944e9fb9d4838577f5e1bf55ebd3f7bf48d386334927e829c13beed568089afd5393c7a068a3586f8f23b824686bad4c1c78e9c0bd26a704e3cda46fbc7dad51792adaf0f86b9112dd21568a0b1a4b1b45"})
inotify_init1(0x80800)

[ 1154.688784][ T6674] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1154.706045][ T6674] CPU: 1 PID: 6674 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1154.715029][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1154.725109][ T6674] Call Trace:
[ 1154.728417][ T6674]  dump_stack+0x172/0x1f0
[ 1154.732773][ T6674]  handle_userfault.cold+0x41/0x5d
[ 1154.737901][ T6674]  ? __lock_acquire+0x548/0x3fb0
[ 1154.742864][ T6674]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1154.748164][ T6674]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1154.754176][ T6674]  ? find_held_lock+0x35/0x130
[ 1154.758954][ T6674]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1154.764949][ T6674]  ? kasan_check_write+0x14/0x20
[ 1154.769903][ T6674]  ? lock_downgrade+0x880/0x880
[ 1154.774795][ T6674]  ? kasan_check_read+0x11/0x20
[ 1154.779662][ T6674]  ? do_raw_spin_unlock+0x57/0x270
[ 1154.784879][ T6674]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1154.790700][ T6674]  ? kasan_check_read+0x11/0x20
[ 1154.795571][ T6674]  ? __thp_get_unmapped_area+0x190/0x190
[ 1154.801719][ T6674]  ? pmd_val+0x100/0x100
[ 1154.805976][ T6674]  ? __lock_acquire+0x548/0x3fb0
[ 1154.810946][ T6674]  ? __kernel_text_address+0xd/0x40
[ 1154.816191][ T6674]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1154.821321][ T6674]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1154.826873][ T6674]  ? find_held_lock+0x35/0x130
[ 1154.831650][ T6674]  ? handle_mm_fault+0x322/0xb30
08:04:41 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)="81", 0xfffffe85}], 0x1)
socket$bt_hidp(0x1f, 0x3, 0x6)

[ 1154.836612][ T6674]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1154.842872][ T6674]  ? kasan_check_read+0x11/0x20
[ 1154.847744][ T6674]  handle_mm_fault+0x43f/0xb30
[ 1154.852517][ T6674]  __get_user_pages+0x7b6/0x1a40
[ 1154.857476][ T6674]  ? follow_page_mask+0x19a0/0x19a0
[ 1154.862695][ T6674]  ? get_user_pages_remote+0x17d/0x440
[ 1154.868193][ T6674]  get_user_pages_remote+0x1a3/0x440
[ 1154.873504][ T6674]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1154.879139][ T6674]  ? alloc_vmap_area.cold+0x24/0x24
[ 1154.884346][ T6674]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1154.890330][ T6674]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1154.896579][ T6674]  ? _copy_from_user+0xdd/0x150
[ 1154.901444][ T6674]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1154.907182][ T6674]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1154.912668][ T6674]  process_vm_rw+0x21f/0x240
[ 1154.917276][ T6674]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1154.923093][ T6674]  ? __might_fault+0x12b/0x1e0
[ 1154.927885][ T6674]  ? kasan_check_read+0x11/0x20
[ 1154.932748][ T6674]  ? _copy_to_user+0xc9/0x120
[ 1154.937437][ T6674]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1154.943695][ T6674]  ? put_timespec64+0xda/0x140
[ 1154.948472][ T6674]  ? nsecs_to_jiffies+0x30/0x30
[ 1154.953344][ T6674]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1154.958808][ T6674]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1154.964290][ T6674]  ? do_syscall_64+0x26/0x610
[ 1154.969010][ T6674]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1154.974667][ T6674]  do_syscall_64+0x103/0x610
[ 1154.979288][ T6674]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1154.985195][ T6674] RIP: 0033:0x458209
08:04:42 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={<r1=>r0})
ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r1, 0x800443d2, &(0x7f0000000140)={0x4, &(0x7f00000000c0)=[{}, {}, {}, {}]})
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))

[ 1154.989110][ T6674] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1155.008720][ T6674] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1155.017139][ T6674] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1155.017156][ T6674] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013d0
08:04:42 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
fcntl$getown(r0, 0x9)
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)="004ef49ec40af961ac643aa3ca244255e7861e077e2eb573260b0f3a03136be58e861062e99399ef8f0ba2bdf765b270ad359675a8aac420425249c1ee403af0886ebb333532c55fbe3dcba1e9f09227fcccab0d6b154bd26d7702510b05f04cbd3914f88030cf06978a", 0x6a}], 0x1)

08:04:42 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:42 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305\x00'}, 0xbd9955c6637b7ae)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="b7f2288a911993f0265df5cf1cdd8b55", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[@ANYPTR=&(0x7f0000000040)=ANY=[@ANYPTR64=&(0x7f0000000140)=ANY=[@ANYRES16=r1, @ANYBLOB="7c319f423ddcf11d998c37186ae18c36effda296eb844d92d6eeeb11ea43a415dc1b169dd3ca36edacd247b98a29d938382a1f2292ba5860e47d30d6bd181ac574086d8fce6d18ed75030086266d3196255c9f1d8c0597e099eb7d9c8c81e8bf87e0c4bc2171daa01a98863f7fee59ac7b4c017b3e21d96dfcaead0a583c7f7c105fe90d2aa2b0272d97238b7b81106350bcecce59a54360e9598b6335e3b1e7f5b78d4b3c388dd53888d36139f62ea4ae1e6356f94cb2dcb83421fc859ec1381e3b", @ANYPTR, @ANYRESOCT=r0], @ANYRESHEX, @ANYRESHEX=r0, @ANYRESOCT=r1, @ANYBLOB="79799b0921a1d660aada51cbe459bab71614bb3b1ccd03df04beafa347a661bfd8bc7c420e919514e72d2179b541ee526482050000008630f72aa9614905fc2d6d8b5efc259c0cb10279e84c92"]], 0x8)
recvmmsg(r0, &(0x7f0000000240), 0x2, 0x0, 0x0)

[ 1155.033114][ T6674] RBP: 000000000073bfa0 R08: 0000000000000068 R09: 0000000000000000
[ 1155.041088][ T6674] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1155.049062][ T6674] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:42 executing program 3:
r0 = userfaultfd(0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000300)={0x30c, r2, 0x7, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x60, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffffffa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}]}]}, @TIPC_NLA_NET={0x40, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfffffffffffffffa}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xb7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x80}]}, @TIPC_NLA_BEARER={0x180, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x9b, @ipv4={[], [], @multicast1}, 0xff}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x0, @mcast2, 0x8001}}}}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffff7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x92}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x798}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x6, @loopback, 0x101}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x3ff, @mcast1}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @rand_addr=0xaf}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x8}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x8000, @mcast2, 0x1}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x173, @dev={0xfe, 0x80, [], 0x22}, 0xfffffffffffffffb}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffffffffffff}]}]}, @TIPC_NLA_BEARER={0xd8, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x2, @mcast2, 0x458}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x523, @ipv4={[], [], @multicast2}, 0x2}}}}, @TIPC_NLA_BEARER_PROP={0x54, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc378}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffff52c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}]}]}, 0x30c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x60000, 0x0)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r3, 0x84, 0x20, &(0x7f0000000240), &(0x7f0000000640)=0x4)

08:04:42 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x0, 0x2)
ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000001140)={0x4, 0x60, &(0x7f0000000140)="efe57a7887c437dcb75eba43d9a434f94cc44d77e4a17a69c0f41f9499704a93e6c93ad8489690df996d64f54d157b2f454a7a4d2deb31bb22c9af0d90031531ae38e48b065f2a0d4be152745aefe04ff1a7f63bc6585d3205da164dd9f1b581cc9077b641dace96a4d5e8d4ecb4dcf692e6c9ed0b951331d9790fcd6301a08212adeba33f315dcd4c70e8f27e867b66a02f1cd95daf7df9bc1eb499e23d4c17a975b475d306533b3cf961f0147931942af2bd633e91d045f15396896b01a96a4f45a9ff08cb46048c60dfa39cd7d1e5e339549c9f994ffaa0e9daf10a4fe0f1d56ee2b10d52649b8c075680d9b1351ebd3c2e1802a2ccdcb840282c5046f21a3cb30394b92184b60ac7a107371453e89b174494403f689d07fd9553fa8a6f63f2f61339a3e716882887c06b53c17d54b29a2088d56830180ef0205369c80873cc23bb814dd4376bca2dd741f20049d98e6ebfc040945a8e88fbc9cbb29407509fd2e244372817a34383c5e7c352a1074fbf738b4801d368522e443f7a77a1fe4f6e9d6131c18a1abc7bef6820a56b49e673e2f4343186e7e7aaf8b9f7b6c1b32426bfc9e7b52223297cd45f6fede499462b038e66c0ff42d78fd1118e17563dba09d48401ffc983428d9c38f1da3d6436929e23b9f6e302e587179578e5c6958b973b1204adb1f67e16bd20d96c5c771782b4addb14faeb92b87f6dc2816311f559894201e226ff379ef8a0e474b9c5a47fef84c8f7775d4f9a9a2c52354b4f8b1d736a4bdcddf158785b04540db0f0dc08c626b79575c2465dd2e465ade247e625d0e0a1cc46c77255bbd66662dec92000371f05b297e5591182404b2fa338be09e64784777011ec423ea270e68e5414ed49c7e6b191d79763185f580de688d08998bb21d8e16dd6b6239255f6a6e649cabccb4c637cade46b88806c36d61a81cbfee8535f3fd1c9391f52a9d806b25a1a62862245e728fe3fc9ad50246eb12abee244693556a418c064bec66b0ee92383f7df1a1531a2fc525b003a915c50122135de5416c32f73cd79951bf44b66c4a87199c182a66e1433af9f5d258305edccf788b42e4f36e5f4a893e6f4168e04b3bcc8d4d2271752ce2864a28edf080a4e7ff74f0efc03be2e3e3603231b2f88e0ba12049bd77dda336a665334fe865fbebad4781c3102c99ddeab959acc9f84153ed3826da9fe089b810b1c587c1a7c2395f1418968a1adfa19b9549f183f4f039d2787ed15780f8296382ce04a814a2826edaefd3aba5f57ce6b20d5629822f1116d2352f1ef5df60a8d5a5e69730a044b0aa084cf47dbbbac7b81b50f6588418b3f7daeedc8cc9205d1e6b028a6843d5f9aae39e82aacc4268d00f22cbd719d4a2a453d9ea9d25dffde35676a5d57c1e529a0a52fed1eecbb7ca5a5db42c3f4156a10dbfeabda6b87714cdda76f8d8471594ee4a6cfebe9921e8c42bfca31f05a5e48b37127c6b70537ab3d31d098d838bec89d566aa5ee06193ee0f2159aa97138ee3311e18bd6c4b71bcab9a6c6c3f2bfc0b5915693985343d3afac1608136c95e87307c4ba480aa02cf9acc1f90e5740b5a96ce19d003c6680d61d219a6ba85de8b8e7b73c47276cefa0eea45cc26de90464de6ef16b86eb46ddd1268a114fde8324bf8017313b3419021d49bef3d2b33a6a19634418cc71ef39278a74422450bc376928595dfbf8aa24edce6e6f8910b6eebfda0b0b3575b775043d93ce04464c3f10808dc4237e9be67afc4709596b0326aa7460f6f055d4dc4eb327148c328c1d521459a66c27b27cbf5c0ec2dd69c950adc8e5f9bd304a538f028aef0a939e350ca40fb496e343fbf3e9881334c4939e5889e72a75cba3ba26555490b752d3f94052bd01ee41ab9a300437d088c64fb26384ae056ce0ab67307d4e385cb3416624a6894237b16956b599e2ff9b20c338aaecb863dcf0954388b074b5d62b13ddc0bfafc564def45fdf286f1962f76ce4bca6e67b7e2b8f0ad0768416d57184dbe2b9a15cd1da1f456330e444e5c8fab427881ef5dcd1cee5a2a15efcc65520e36921ffc624e9c96c53a4ae093365da25d9162373175097c2633cd10c9610fdcc67cf5ca243625502f74f66babcb34386f96fd75c304453fd7e9cee58777cbdf416086a6a834bb33e4f59b7721e2cb65c652dcf0621eedcc2e1489e9a015a17b6197a5aeacba4e173f9143fea89b9cd8760b968354297d56fb96486d23e7a0231482ae6e709aa330d177e1639b958f803e75e3f787d94e786ddf4f94d3a99a24e5d3df03676b8bd52d7bd02c091aa98e7360f901c61c3f32821e7893d5ee4d4346071a3be9a882ec7132188ad749ec8694866aeb5dfa2bee7747ad2e152502b7ec6477cab329af549b1973a77d6952716327551f59fa48acb5b6c4451d9ce3b0279e1d1289609cb7aa69bafb53d7cfe8dc406213b2ca4c0e78eed0f56671c1ec1dc155e4adf07f18567c0ff3ff59a75db3b593ae28d8a4026288160b5993fd7030711a11390494770463c8fc00cb1e7d7585b2037db7384dbc8c39bdcc3da631f84be8bcbfecc12ca904fb727aab848d79024858f60831ae5b08de24331d5f8dd07ee7d8cb3dd7d506c006edf3e41a1aca6a820d63cdd8681c03f92a26c46754a174004ac9f3010a7e3ebb6d6b603e94f164237ae66c10c4d5561ac0c542fe0a58c45c426ffa4bee712a9fbbe02f1832cbd479b198a3e42551c68b140ff489808bb05679df78a3defecac4a5aa8a2038e02754ce88cdd0125c600cf962b17fb4cbdbbb888a709fb40653e6ce0719d06e6ef3244ae192b4c542b1b5185e15059be4d74cb861a21039f10fe07724ed301da68c391dc756f12c1fcebd7d4b17a765794ddb50cbdacd0a3570dc5467d93f4fe8c25077de55f2ee911a43956152c9550f857214521a5dfd77f76cdcf419dff3c36a732a21b968f7606615c4e37a785b0a6edc6c9f2b685113517479ff7755cf24ddf4aaed007dafcec5a59e55cfc35b7b51112a321f01cd6da78b2b0ce22a3da77e747269a7cf2f2ef8185b830ceba02ca712d035248340661954c36c521b7405ef57a07bed514784b987c39380423cb56a42fa4c4bd4b5ad332a26b99f74b8067fb7ee431de111ae3e5f984f34af060ccf3abc3a14a30d8e2c9c06041c3ff325c4dd81a4c9b311c27ee7ccac446d1665793f0df3647f26076b4c8c624aab9a225fb2aab28d9087819e2df59c37951c722e46fc3766ab8c3593662ad69d991a8cde6d254b047782c109b5e9f14b9956ee05e4d9d87b1dad585c15a76d213ba5a561a934de9e18c6ec58fcc34eb5f5fdc5294f211aa0d1bf63606a151e9ac83c009e1d0535432dcad9296cce0dece786403eef2dbf7187821397c1b659643d38e12d648ee16a5cce4997654758b3242279903b245f2ad468341a7a8307179a64b2750018d866d2ee59344d97d0cbeffbe2edc812ee43b258078b978ba7ad9b1c973777a6c824b3f0c9966d50eb20e4263c16ba71e154286f4069abbb088dd9a06a304a11285ad97863a8fd5159021688c772174d8be0b8244c622ad7ebb47728faef2ac7a1d799c0fc827f5c80ebcb375a78c98213566c8f524633c88fbc607543c6eccfca178907fc328cd8ec565254f64866f795eac87dd6a7c7bd03c1b9f85a0250c66c9d40505f1d7463bc62cd207ce22a0ae6fed809d6ccc021b08ec3ac7a0e3716781bccf18e20ddb52cc5f03189dbeed8d0024d634ba58dc4974d3cd05890a6cd83a26028ac572d230922c94cce5341b6a94f67d4c5a674596138a6e78cfcba5cedb81244de59df5dfd8f6294d38ed19f3430b7e63fcdbe3d0f268b14c9d798a5236bf3712dbd19fd5b6b09166da861a9c5c9e2119854c17a43055e9ba4a0892429a083475768c52ec7e42e06478d007f45ab9b3f91b86c69b374762c781f22832add383cedc435ce682df13c933dd97703868d470426a938ec0593d1a702671c9004780acda1ee830d2ec27d348e8326d46d151734884890f51c597819c3ca0bb148fc9aecce74640160e81f618900443aebc347bb9b99d6be67fcff702f8cdc98778669a7f4c25c5945ab45cab0fa6e8d23a7f284f44bb442b5e08d0fe70139ed57950e6cf18f8f0030a41ae63d7a8f38914fb884b20e9a5444c87eae67982044b216442db279b30f67266c10dc2dd4fdbf7785b5486efdf8b5bb6332e09416e2520b911f9c9bcc29e6bccb43b9054826aafe0718ef63736198a3ea43c237531412983bb90dac1a2d6727c83bdfd4e85efe18b761d1ebcc365258e07b4795e8e61889f473df404d25a360690a403210c6ed354fc8855fdd6c034a88740ad491abb77756dd61779459d03bdfe861744860c863b864695ce710d6df2cad8e9fab71ade578b031e9a1a31ba510fa211145fc697d390d17a650288889d30e9c40b21bd4accfda3ae82ab2899f576839b1a032f506d8bfdbbd4218c9caef1cb780b476063b943511cd280aa50ad6c576dea714b5c57bb624be9350ba28fe1d3703e72c78f19ec5f925cafd21654550d8727f1f2ccbed10edd42a41d303a06a47e295e0caa105a692fd8bc3e8f7454f21c964292fb54736ad51331956c7056bfa7688fa86d39a6e36127c962ad5624d8578e0928bf75de22d570d42d45ea4c4e63cb2a06132f711312fe94ba8f72c6f5ce6ca199dfeb9c2320c4f73a0b83a3092e5558cca5e52fce272ab487519a830d5a4aa6b9dc91fab9eebba99a87bd0806185ade8f40fcb21399814db3edd16b9adfdd5471ced77212c9bad1629382d202cb44c2324a65b0d32d60e8e19b51d00e8034438a91bb0e68363c430565b4659cf5651a4ab0fc47a9e6eba70db370f7d9fde55219b2d602c8db2c244642d24aa9f729fe01140b23a2a98cff438d98a772d8b3ed2efc0bd3a6fdfd422fa10e574eda51af6958663d1e34a3d7fed28de6164b66fc998bd35f9f2474031b476073c506ba6bbbe2e2248c62c6163cd71bd42d689bf1a3a3f584c6cc066c15e9973d9e5a5cda2a8c015106be0667479306f80e2bb3a7217f6e83f703f28af071c2a1cf373c92c252f1e465e0e3636207c0be335eb1c007ac167426055d433fc5f5d6a7838c8cd03c9721d47b90921c170a7a05549d49c01ab619d0cf5de77241f586e4f86d3fdd10161467169b1408682426d624d7b2958646ed05d104201c8a23917e589bf0bb00fe9126e17bda46c3633a7de17b71a1863743dd7857f914007d48e0d3b50030713dd92163f55ddf9752755cbd56f095d5a5dd9d07ac1488e1bd816c7efa7037fbf9ae8228a925dc241892f268dd81ffd7e364f8f2553073adc3585e2293c75f52cf247c72a51e54c8b3b7e1af7706c8129e44707598d1b8ccb9ef446cda6381bd905417227cd8826a3fa5c5c54b4ea6e85e0f2f48622497829aaa76388abf5232d9d8b2d0c0301964c5b5bd6679cf8d16c65bba781178cfd35d7f669bed592d4052fad54ecebff096eace2d358cb44b451abaf64550bdd7076358ddd17ea45def8cca2ccf641777e408ea54509a071fc8ad39352b0dd5208b0b2e552b7ca3587ab6141430858b71b60e30ecc8fe54cd4cfab880e18a166103cb6953d7bf0ab19d384adc5fc50be7e66b1828be2826cf07e450a2db3557f1616a5440a07f893afb86780afef08eb0dab2cb02a1c18401f30961e5be6caf8b908ab48757832831fc1f8d4ae49a62e4e3a49d564374ac79355598ffa896eb6127135caf0aad791bd33640eefc75db5f50742bc7f75909608c90375215", {0x32, 0x95, 0x41415270, 0x6, 0x5, 0x9, 0x7, 0x3}})
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$EXT4_IOC_MIGRATE(r2, 0x6609)
setsockopt$TIPC_CONN_TIMEOUT(r2, 0x10f, 0x82, &(0x7f00000000c0)=0x1, 0x4)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1155.309474][ T7337] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1155.315392][ T7337] CPU: 0 PID: 7337 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1155.324335][ T7337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1155.334395][ T7337] Call Trace:
[ 1155.337696][ T7337]  dump_stack+0x172/0x1f0
[ 1155.342057][ T7337]  handle_userfault.cold+0x41/0x5d
[ 1155.347193][ T7337]  ? __lock_acquire+0x548/0x3fb0
[ 1155.352158][ T7337]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1155.357477][ T7337]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1155.363468][ T7337]  ? find_held_lock+0x35/0x130
[ 1155.368255][ T7337]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1155.374249][ T7337]  ? kasan_check_write+0x14/0x20
[ 1155.379213][ T7337]  ? lock_downgrade+0x880/0x880
[ 1155.384142][ T7337]  ? kasan_check_read+0x11/0x20
[ 1155.389013][ T7337]  ? do_raw_spin_unlock+0x57/0x270
[ 1155.394136][ T7337]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1155.399970][ T7337]  ? kasan_check_read+0x11/0x20
[ 1155.404835][ T7337]  ? __thp_get_unmapped_area+0x190/0x190
[ 1155.410473][ T7337]  ? pmd_val+0x100/0x100
[ 1155.414726][ T7337]  ? __lock_acquire+0x548/0x3fb0
[ 1155.419676][ T7337]  ? __kernel_text_address+0xd/0x40
[ 1155.424888][ T7337]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1155.430011][ T7337]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1155.435571][ T7337]  ? find_held_lock+0x35/0x130
[ 1155.440346][ T7337]  ? handle_mm_fault+0x322/0xb30
[ 1155.445302][ T7337]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1155.451550][ T7337]  ? kasan_check_read+0x11/0x20
[ 1155.456439][ T7337]  handle_mm_fault+0x43f/0xb30
[ 1155.461224][ T7337]  __get_user_pages+0x7b6/0x1a40
[ 1155.466196][ T7337]  ? follow_page_mask+0x19a0/0x19a0
[ 1155.471410][ T7337]  ? get_user_pages_remote+0x17d/0x440
[ 1155.476908][ T7337]  get_user_pages_remote+0x1a3/0x440
[ 1155.482226][ T7337]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1155.487885][ T7337]  ? alloc_vmap_area.cold+0x24/0x24
[ 1155.493098][ T7337]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1155.499341][ T7337]  ? _copy_from_user+0xdd/0x150
[ 1155.504216][ T7337]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1155.509980][ T7337]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1155.515483][ T7337]  process_vm_rw+0x21f/0x240
[ 1155.520104][ T7337]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1155.525914][ T7337]  ? __might_fault+0x12b/0x1e0
[ 1155.530708][ T7337]  ? kasan_check_read+0x11/0x20
[ 1155.535565][ T7337]  ? _copy_to_user+0xc9/0x120
[ 1155.540257][ T7337]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1155.546505][ T7337]  ? nsecs_to_jiffies+0x30/0x30
[ 1155.551377][ T7337]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1155.556844][ T7337]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1155.562310][ T7337]  ? do_syscall_64+0x26/0x610
[ 1155.566999][ T7337]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1155.572654][ T7337]  do_syscall_64+0x103/0x610
[ 1155.577259][ T7337]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1155.583156][ T7337] RIP: 0033:0x458209
[ 1155.587079][ T7337] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1155.606710][ T7337] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1155.615127][ T7337] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1155.623135][ T7337] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d5d
[ 1155.631125][ T7337] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1155.639111][ T7337] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1155.647412][ T7337] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:44 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0xca, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:44 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x10000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@mcast2, 0x81})
sched_setaffinity(0x0, 0x5, &(0x7f0000000580)=0x6)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x10000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0x35, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0}, 0x48)
r2 = dup2(r1, r0)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000380)={0x0, 0x1f}, &(0x7f0000000900)=0x8)
ioctl(r1, 0x10001, &(0x7f0000000100)="153f6234488dd25d766070")
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket(0xa, 0x3, 0x8)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f00000004c0)={0xf000, &(0x7f0000000240), 0x4, r2})
r6 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x70000)
ioctl$TIOCGSID(r6, 0x5429, &(0x7f0000000800)=<r7=>0x0)
ioctl$sock_FIOSETOWN(r4, 0x8901, &(0x7f0000000440)=r7)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x89a2, &(0x7f0000000200)={'bridge0\x00\x00\x01\x00', 0x4})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, &(0x7f00000001c0), 0x3be)
ioctl$RTC_WKALM_RD(r6, 0x80287010, &(0x7f00000002c0))
setsockopt$IP_VS_SO_SET_DELDEST(r5, 0x0, 0x488, &(0x7f0000000080)={{0x69, @remote, 0x4e24, 0x200000000, 'lblcr\x00', 0x1e, 0x0, 0x13}, {@remote, 0x4e21, 0x7, 0xffff, 0x7f, 0x2}}, 0x44)
r8 = memfd_create(&(0x7f0000000940)='+\x8b\x8a\x16\x11O\xa0=y} P\xad\xf0\xd5>oJ\x02\x05\x00\x00\x00\xac', 0x4000000000000)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000840)=ANY=[@ANYBLOB="6d6177676c6500000000000000000000002a00c887c3ef98f91534d2cae600000000000000000000000000000002000000000000000000000075f66ca1e1ffffffffffffff00000000000000000000002dc9003ae3bf04d5843c74fcde34591d9936607fe6ad42bbda5784f6d0f424ca43a1d67f7800f3a59f24753be8dbff3fdfd1340a96d81f57929700000000"], 0x1)
close(0xffffffffffffffff)
r9 = dup3(r3, r8, 0x0)
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000b80)='TIPCv2\x00')
sendmsg$TIPC_NL_SOCK_GET(r9, &(0x7f00000007c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000780)={&(0x7f0000000980)={0x118, r10, 0x400, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x2c, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xb180}]}, @TIPC_NLA_BEARER={0x4c, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8000}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x7ff, @mcast1, 0x3}}, {0x14, 0x2, @in={0x2, 0x4e24, @remote}}}}]}, @TIPC_NLA_NET={0x1c, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfc8}]}, @TIPC_NLA_NODE={0x40, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000001}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x401}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfff}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x30, 0x5, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}]}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x3bd, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=@ipv4_newrule={0x2c, 0x20, 0xf29, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FRA_GENERIC_POLICY=@FRA_UID_RANGE={0xc}]}, 0x2c}}, 0x0)
sendmsg$key(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="000000000000000000000000f2ffffff"], 0x10}}, 0x0)

08:04:44 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x3, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:44 executing program 0:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000000)='coredump_filter\x00'}, 0x30)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={<r0=>0x0}, &(0x7f0000000200)=0xc)
r1 = syz_open_procfs(r0, &(0x7f0000000180)='attr/prev\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
ioctl$KDMKTONE(r1, 0x4b30, 0x4)

08:04:44 executing program 3:
r0 = userfaultfd(0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:44 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x10000, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00')
sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xe8, r2, 0x702, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x44, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x51}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x101}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x80000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_BEARER={0x7c, 0x1, [@TIPC_NLA_BEARER_PROP={0x44, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffff2f9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}]}, @TIPC_NLA_NODE={0x14, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x800}, 0x4001)
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x0, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000840)={0xffffffff, 0x43f, 0x0, 0xfffffffffffffffa})
write$input_event(r3, &(0x7f0000000000)={{0x0, 0x7530}, 0x13, 0x1, 0x52}, 0x18)
getsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000300), &(0x7f0000000340)=0x8)

08:04:44 executing program 0:
getpgid(0xffffffffffffffff)
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={<r0=>0x0}, &(0x7f0000000080)=0xc)
r1 = syz_open_procfs(r0, &(0x7f0000000100)='coredump_filter\x00')
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1157.616781][ T7456] bridge0: port 3(gretap0) entered blocking state
[ 1157.638271][ T7456] bridge0: port 3(gretap0) entered disabled state
[ 1157.672080][ T7523] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1157.679015][ T7523] CPU: 0 PID: 7523 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1157.687968][ T7523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1157.690801][ T7456] device gretap0 entered promiscuous mode
[ 1157.702631][ T7523] Call Trace:
[ 1157.702657][ T7523]  dump_stack+0x172/0x1f0
[ 1157.702684][ T7523]  handle_userfault.cold+0x41/0x5d
[ 1157.702702][ T7523]  ? __lock_acquire+0x548/0x3fb0
[ 1157.702732][ T7523]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1157.702753][ T7523]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1157.702779][ T7523]  ? find_held_lock+0x35/0x130
[ 1157.712816][ T7456] bridge0: port 3(gretap0) entered blocking state
[ 1157.716091][ T7523]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1157.716113][ T7523]  ? kasan_check_write+0x14/0x20
[ 1157.716132][ T7523]  ? lock_downgrade+0x880/0x880
[ 1157.716158][ T7523]  ? kasan_check_read+0x11/0x20
[ 1157.721615][ T7456] bridge0: port 3(gretap0) entered forwarding state
[ 1157.726203][ T7523]  ? do_raw_spin_unlock+0x57/0x270
[ 1157.726232][ T7523]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1157.742220][ T7523]  ? kasan_check_read+0x11/0x20
[ 1157.742243][ T7523]  ? __thp_get_unmapped_area+0x190/0x190
[ 1157.742257][ T7523]  ? pmd_val+0x100/0x100
[ 1157.742271][ T7523]  ? __lock_acquire+0x548/0x3fb0
[ 1157.742286][ T7523]  ? __kernel_text_address+0xd/0x40
[ 1157.742313][ T7523]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1157.754699][ T7523]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1157.754714][ T7523]  ? find_held_lock+0x35/0x130
[ 1157.754728][ T7523]  ? handle_mm_fault+0x322/0xb30
[ 1157.754756][ T7523]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1157.754776][ T7523]  ? kasan_check_read+0x11/0x20
[ 1157.754805][ T7523]  handle_mm_fault+0x43f/0xb30
[ 1157.849338][ T7523]  __get_user_pages+0x7b6/0x1a40
[ 1157.854296][ T7523]  ? follow_page_mask+0x19a0/0x19a0
[ 1157.859515][ T7523]  ? get_user_pages_remote+0x17d/0x440
[ 1157.864991][ T7523]  get_user_pages_remote+0x1a3/0x440
08:04:44 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x12000)
ioctl$SCSI_IOCTL_SYNC(r0, 0x4)
ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000040)=r0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x7fff, 0x200)
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1157.870299][ T7523]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1157.875959][ T7523]  ? alloc_vmap_area.cold+0x24/0x24
[ 1157.881192][ T7523]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1157.887446][ T7523]  ? _copy_from_user+0xdd/0x150
[ 1157.892322][ T7523]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1157.898038][ T7523]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1157.903501][ T7523]  process_vm_rw+0x21f/0x240
[ 1157.908106][ T7523]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1157.913916][ T7523]  ? __might_fault+0x12b/0x1e0
[ 1157.918705][ T7523]  ? kasan_check_read+0x11/0x20
08:04:45 executing program 0:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x200080, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000040)={0x9, <r1=>0x0, 0x10001, 0x400})
openat$userio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/userio\x00', 0x101800, 0x0)
syz_open_dev$dmmidi(&(0x7f0000000200)='/dev/dmmidi#\x00', 0x100, 0x800)
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000080)={0xe3, r1})
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x8001, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r2, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

[ 1157.923561][ T7523]  ? _copy_to_user+0xc9/0x120
[ 1157.928251][ T7523]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1157.934499][ T7523]  ? nsecs_to_jiffies+0x30/0x30
[ 1157.939371][ T7523]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1157.944838][ T7523]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1157.950304][ T7523]  ? do_syscall_64+0x26/0x610
[ 1157.954992][ T7523]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1157.960641][ T7523]  do_syscall_64+0x103/0x610
[ 1157.965251][ T7523]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1157.971137][ T7523] RIP: 0033:0x458209
[ 1157.975019][ T7523] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1157.994624][ T7523] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1158.003040][ T7523] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1158.011018][ T7523] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d62
08:04:45 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
writev(r0, &(0x7f0000000000), 0x1000000000000029)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=<r1=>0x0)
syz_open_procfs(r1, &(0x7f0000000040)='net/hci\x00')

08:04:45 executing program 2:
setsockopt$netlink_NETLINK_CAP_ACK(0xffffffffffffffff, 0x10e, 0xa, 0x0, 0x0)
r0 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x101000)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000180))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r1 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c)
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
umount2(0x0, 0x1)
r2 = epoll_create1(0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000001540)=ANY=[@ANYPTR64, @ANYRES64=r1, @ANYRESOCT, @ANYRES64=r2, @ANYPTR], 0x37)
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
getsockopt$bt_hci(r1, 0x0, 0x3, &(0x7f00000001c0)=""/233, &(0x7f00000002c0)=0xe9)
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f0000000100)={r4})
prlimit64(0x0, 0x9, &(0x7f0000000040), 0x0)
io_setup(0x100000330, &(0x7f0000000000))
socket$inet6(0xa, 0x1, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x5, &(0x7f0000000040))
r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000340)=""/4096, &(0x7f0000000080)=0x1000)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)

08:04:45 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ubi_ctrl\x00', 0x100, 0x0)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = accept(r0, 0x0, &(0x7f00000000c0))
r3 = geteuid()
ioctl$SIOCAX25GETUID(r2, 0x89e0, &(0x7f0000000180)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r4, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
getsockopt$inet_dccp_buf(r2, 0x21, 0xf, &(0x7f00000001c0)=""/81, &(0x7f0000000240)=0x51)
getsockopt$sock_timeval(r4, 0x1, 0xfffffffffffffffe, &(0x7f0000000140), &(0x7f0000000100)=0x2be)

[ 1158.018987][ T7523] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1158.026959][ T7523] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1158.034933][ T7523] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1158.097307][ T8131] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1158.114795][ T8131] CPU: 0 PID: 8131 Comm: syz-executor.4 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1158.123745][ T8131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1158.133805][ T8131] Call Trace:
[ 1158.137113][ T8131]  dump_stack+0x172/0x1f0
[ 1158.141468][ T8131]  handle_userfault.cold+0x41/0x5d
[ 1158.146597][ T8131]  ? __lock_acquire+0x548/0x3fb0
[ 1158.151558][ T8131]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1158.156853][ T8131]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1158.162842][ T8131]  ? find_held_lock+0x35/0x130
[ 1158.167615][ T8131]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1158.173610][ T8131]  ? kasan_check_write+0x14/0x20
[ 1158.178560][ T8131]  ? lock_downgrade+0x880/0x880
[ 1158.183429][ T8131]  ? kasan_check_read+0x11/0x20
[ 1158.188289][ T8131]  ? do_raw_spin_unlock+0x57/0x270
[ 1158.193408][ T8131]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1158.199212][ T8131]  ? kasan_check_read+0x11/0x20
[ 1158.204046][ T8131]  ? __thp_get_unmapped_area+0x190/0x190
[ 1158.209675][ T8131]  ? pmd_val+0x100/0x100
[ 1158.213906][ T8131]  ? __lock_acquire+0x548/0x3fb0
[ 1158.218823][ T8131]  ? __kernel_text_address+0xd/0x40
[ 1158.224011][ T8131]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1158.229119][ T8131]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1158.234654][ T8131]  ? find_held_lock+0x35/0x130
[ 1158.239432][ T8131]  ? handle_mm_fault+0x322/0xb30
[ 1158.244361][ T8131]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1158.250593][ T8131]  ? kasan_check_read+0x11/0x20
[ 1158.255435][ T8131]  handle_mm_fault+0x43f/0xb30
[ 1158.260203][ T8131]  __get_user_pages+0x7b6/0x1a40
[ 1158.265146][ T8131]  ? follow_page_mask+0x19a0/0x19a0
[ 1158.270361][ T8131]  ? get_user_pages_remote+0x17d/0x440
[ 1158.275804][ T8131]  get_user_pages_remote+0x1a3/0x440
[ 1158.281090][ T8131]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1158.286729][ T8131]  ? alloc_vmap_area.cold+0x24/0x24
[ 1158.291934][ T8131]  ? copy_user_enhanced_fast_string+0xe/0x20
[ 1158.297912][ T8131]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1158.304130][ T8131]  ? _copy_from_user+0xdd/0x150
[ 1158.308962][ T8131]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1158.314664][ T8131]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1158.320118][ T8131]  process_vm_rw+0x21f/0x240
[ 1158.324693][ T8131]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1158.330521][ T8131]  ? __might_fault+0x12b/0x1e0
[ 1158.335292][ T8131]  ? kasan_check_read+0x11/0x20
[ 1158.340131][ T8131]  ? _copy_to_user+0xc9/0x120
[ 1158.344811][ T8131]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1158.351030][ T8131]  ? put_timespec64+0xda/0x140
[ 1158.355785][ T8131]  ? nsecs_to_jiffies+0x30/0x30
[ 1158.360638][ T8131]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1158.366075][ T8131]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1158.371523][ T8131]  ? do_syscall_64+0x26/0x610
[ 1158.376197][ T8131]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1158.381829][ T8131]  do_syscall_64+0x103/0x610
[ 1158.386437][ T8131]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1158.392337][ T8131] RIP: 0033:0x458209
[ 1158.396244][ T8131] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1158.415850][ T8131] RSP: 002b:00007fb90609fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1158.424269][ T8131] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1158.432241][ T8131] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 00000000000013d4
[ 1158.432250][ T8131] RBP: 000000000073bfa0 R08: 00000000000000ca R09: 0000000000000000
[ 1158.432260][ T8131] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007fb9060a06d4
[ 1158.432270][ T8131] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:45 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x377, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:45 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0xbe1, 0x800, 0x5})
writev(r0, &(0x7f00000013c0)=[{&(0x7f0000000000)='l', 0x1}], 0x1)

08:04:45 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c12a41d88b0701852150f81e88c490f1e0c19d36c31239d917c8400852f436198b272eecb089603c925ae6940fc05a2deaf62612b85710b44a41eb70f76fbf5067683b39c6f1a05fa434fc0b1d4479a11fdbd1dd2e0a9c16891045a3a1260fb3b41d19223b3f75d97758c8b711f6f9903930dba7dc6d389a495761a4a0deba14528a32b32b83a337e9a4850b5abc95652471a09daecf8c2660f4e8e78dd3c43b53d4e")
r1 = syz_open_dev$sndpcmc(&(0x7f0000000140)='/dev/snd/pcmC#D#c\x00', 0x2, 0x80)
r2 = msgget$private(0x0, 0x480)
msgctl$MSG_INFO(r2, 0xc, &(0x7f0000000240)=""/4096)
setsockopt$inet_tcp_int(r1, 0x6, 0x3f, &(0x7f00000000c0)=0xffffffffffff65a7, 0x4)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video1\x00', 0x2, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:45 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=<r3=>0x0)
sched_setscheduler(r3, 0x3, &(0x7f0000000280)=0x1f)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x60})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f0000068000/0x800000)=nil, 0x800000}})
r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm_plock\x00', 0x4000, 0x0)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000340)={0x2, &(0x7f0000000300)=[{}, {<r5=>0x0}]})
ioctl$DRM_IOCTL_SWITCH_CTX(r4, 0x40086424, &(0x7f0000000380)={r5, 0x2})
r6 = gettid()
read(r1, &(0x7f0000000100)=""/125, 0x76ba46585908cc7e)
process_vm_readv(r6, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:45 executing program 5:
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x2, 0x620000)
getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f00000000c0)=0x8000, &(0x7f0000000100)=0x4)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
sync_file_range(r0, 0x4, 0x2, 0x0)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:04:45 executing program 3:
r0 = userfaultfd(0x80000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r4 = fcntl$getown(r1, 0x9)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000002bc0)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}, 0x1})
r5 = openat(r0, &(0x7f0000000680)='./file0\x00', 0x79cce4785883e200, 0x111)
sendmsg$rds(r5, &(0x7f0000002b80)={&(0x7f00000006c0)={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f0000002a00)=[{&(0x7f0000000700)=""/20, 0x14}, {&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/227, 0xe3}, {&(0x7f0000002840)=""/158, 0x9e}, {&(0x7f0000002900)=""/28, 0x1c}, {&(0x7f0000002940)=""/90, 0x5a}, {&(0x7f00000029c0)=""/53, 0x35}], 0x8, &(0x7f0000002b00)=[@cswp={0x58, 0x114, 0x7, {{0x2, 0xffff}, &(0x7f0000002a80), &(0x7f0000002ac0)=0x5, 0x5, 0xfffffffffffffff9, 0xea4, 0x640b, 0x40, 0x7}}], 0x58, 0x4}, 0x40)
sched_getaffinity(r4, 0x8, &(0x7f0000000100))
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
preadv(r0, &(0x7f0000000600)=[{&(0x7f00000001c0)=""/87, 0x57}, {&(0x7f0000000300)=""/127, 0x7f}, {&(0x7f0000000140)=""/7, 0x7}, {&(0x7f0000000380)=""/79, 0x4f}, {&(0x7f0000000400)=""/186, 0xba}, {&(0x7f0000000240)=""/28, 0x1c}, {&(0x7f00000004c0)=""/82, 0x52}, {&(0x7f0000000540)=""/158, 0x9e}], 0x8, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:45 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000000c0)={{0x100000, 0x3, 0x0, 0x9, 0x4, 0xfffffffffffffbff, 0x1, 0x2, 0x2, 0xc7e, 0x10001, 0x100}, {0x1f000, 0x58be5e52245caccd, 0xf, 0xfffffffffffffff9, 0x1, 0xb8, 0x3f, 0x200, 0x2983, 0xfff, 0x70000, 0x1}, {0xd000, 0x10000, 0xe, 0x1, 0x0, 0xc7, 0x1, 0xfffffffffffffffc, 0x7, 0x0, 0x1, 0x7}, {0x2000, 0x0, 0x0, 0x240000, 0x4, 0x3, 0x6, 0xe6c, 0x7, 0x1, 0x7, 0x5e5c7ae1}, {0x4000, 0x5000, 0x1f, 0x1ff, 0x3f, 0x3e4, 0x1f, 0x5b8, 0x401, 0x4, 0x40a, 0x2}, {0x5000, 0x100004, 0xf, 0xffffffff, 0x0, 0xab, 0x9f1, 0x0, 0x7f, 0x0, 0x2, 0x2}, {0x0, 0x5000, 0xf, 0x4, 0x5, 0x4, 0x3ff, 0x7, 0x0, 0x401, 0xfffffffffffff800, 0x80000000}, {0xd000, 0x7000, 0xa, 0x100, 0x5, 0x4, 0x7, 0x1, 0x3, 0xf460, 0x2, 0xc8}, {0x2000, 0x10000}, {0x2005}, 0x0, 0x0, 0x0, 0x420400, 0xb, 0x1100, 0x6000, [0x8001, 0x8000, 0x9, 0x8]})
setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000200), 0x4)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:45 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='coredump_filter\x00')
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000000)="3f3bb454e30bf834befed189e7ebb552bda9bcb5393b18396aa6a9fa1a01a134a640f360c9ade9af1072a8611bc72b1ebf706c90ed80ff4600ebb18b05a55705f567265150376f038cf8d06a889fc2aa370b31661606561928ae24c6cd61475f0205cd9345b9225922fabe4dd910b7c9e984ce9d2f3f4b8723e6b0943c69494598df97ab5121a4a8f52f3e830457db3ee6fd4a3cfe9443132e07d6b5b8f5219be8d233810b1fa45717c1d34f6d5700848996f36e57fb088cc56509f4bb234e4b886e28ed3ede284b", 0xffffffffffffff19}], 0x1)

08:04:45 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
sendto$inet6(r0, &(0x7f0000000000)="8b57aad6de5b84ecec31b5ebc13ef22f4c7a8753181cb183f9bbadb02ae154fc43ac00a3c3bc5cd4a44c49399adc2af707cd7c72170f19cabde4ee06c46e0fd26ce689429e04d5a31100eb630bc4231df7a05fada14071885cf210946dff19e2aab9597b9d2eb54b5b7ced29753017165c0f1c309a105112c3748ca90d5b3daf75d19c1df1bf441d07a6887dbf0669a955cbd5f542a867071b", 0x99, 0x810, &(0x7f00000000c0)={0xa, 0x4e21, 0x5, @ipv4={[], [], @broadcast}, 0x9}, 0x1c)
writev(r0, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.metacopy\x00', &(0x7f00000001c0)=""/227, 0xe3)

08:04:46 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000002b80)={'vcan0\x00', <r2=>0x0})
connect$packet(r1, &(0x7f0000002bc0)={0x11, 0xff, r2}, 0x14)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1158.923572][ T8620] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1158.937845][ T8620] CPU: 1 PID: 8620 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1158.946797][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1158.956857][ T8620] Call Trace:
[ 1158.960163][ T8620]  dump_stack+0x172/0x1f0
[ 1158.964531][ T8620]  handle_userfault.cold+0x41/0x5d
[ 1158.969661][ T8620]  ? __lock_acquire+0x548/0x3fb0
[ 1158.974630][ T8620]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1158.979932][ T8620]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1158.985919][ T8620]  ? find_held_lock+0x35/0x130
[ 1158.990701][ T8620]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1158.996698][ T8620]  ? kasan_check_write+0x14/0x20
[ 1159.001652][ T8620]  ? lock_downgrade+0x880/0x880
[ 1159.006519][ T8620]  ? kasan_check_read+0x11/0x20
[ 1159.011386][ T8620]  ? do_raw_spin_unlock+0x57/0x270
[ 1159.016511][ T8620]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1159.022322][ T8620]  ? kasan_check_read+0x11/0x20
[ 1159.027193][ T8620]  ? __thp_get_unmapped_area+0x190/0x190
[ 1159.032863][ T8620]  ? pmd_val+0x100/0x100
[ 1159.037110][ T8620]  ? __lock_acquire+0x548/0x3fb0
[ 1159.042056][ T8620]  ? __kernel_text_address+0xd/0x40
[ 1159.047261][ T8620]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1159.052409][ T8620]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1159.057960][ T8620]  ? find_held_lock+0x35/0x130
[ 1159.062734][ T8620]  ? handle_mm_fault+0x322/0xb30
[ 1159.067702][ T8620]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1159.073958][ T8620]  ? kasan_check_read+0x11/0x20
[ 1159.078824][ T8620]  handle_mm_fault+0x43f/0xb30
[ 1159.083659][ T8620]  __get_user_pages+0x7b6/0x1a40
[ 1159.088694][ T8620]  ? follow_page_mask+0x19a0/0x19a0
[ 1159.093886][ T8620]  ? get_user_pages_remote+0x17d/0x440
[ 1159.099342][ T8620]  get_user_pages_remote+0x1a3/0x440
[ 1159.104616][ T8620]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1159.110238][ T8620]  ? alloc_vmap_area.cold+0x24/0x24
[ 1159.115421][ T8620]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1159.121652][ T8620]  ? _copy_from_user+0xdd/0x150
[ 1159.126498][ T8620]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1159.132217][ T8620]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1159.137673][ T8620]  process_vm_rw+0x21f/0x240
[ 1159.142268][ T8620]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1159.148091][ T8620]  ? __might_fault+0x12b/0x1e0
[ 1159.152872][ T8620]  ? kasan_check_read+0x11/0x20
[ 1159.157718][ T8620]  ? _copy_to_user+0xc9/0x120
[ 1159.162393][ T8620]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1159.168627][ T8620]  ? nsecs_to_jiffies+0x30/0x30
[ 1159.173481][ T8620]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1159.178931][ T8620]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1159.184371][ T8620]  ? do_syscall_64+0x26/0x610
[ 1159.189051][ T8620]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1159.194703][ T8620]  do_syscall_64+0x103/0x610
[ 1159.199284][ T8620]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1159.205155][ T8620] RIP: 0033:0x458209
[ 1159.209055][ T8620] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1159.228660][ T8620] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1159.237081][ T8620] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1159.245036][ T8620] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d6a
[ 1159.253000][ T8620] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1159.260976][ T8620] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
08:04:46 executing program 2:
alarm(0x8000)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="bf1600000000000040610000000000000000010000009500000000000000bf100000000000000f200000000000009500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x101000, 0x0)

08:04:46 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x4})

[ 1159.268951][ T8620] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:46 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x383, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:46 executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuacct.usage_all\x00', 0x0, 0x0)
ioctl$CAPI_GET_ERRCODE(r0, 0x80024321, &(0x7f0000000080))
r1 = socket$inet6(0x10, 0x80000000003, 0x0)
sendmsg(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)="5500000020007fafb72d13b2a4a280930200000003034302c5b6317b9848a3c328f1c46b7b31afdc1338d509000000000000005ae583de448daa7227c43ab8220000bf0cec6bab91d4168a91641e1d1e0000000000", 0x55}], 0x1}, 0x0)

08:04:46 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x2e02, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')
ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1, 0x0)
writev(r1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="81", 0x1}], 0x1)

08:04:46 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x200000100400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:46 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f00000000c0)={<r2=>0x0})
getpeername$packet(r1, &(0x7f0000001780)={0x11, 0x0, <r3=>0x0}, &(0x7f00000017c0)=0x14)
ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000001800)={@rand_addr="14ab933415a61755a91359ffc5b00232", @local, @loopback, 0x10000, 0x2, 0x5, 0x100, 0xfffffffffffffffd, 0x4, r3})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000100)={<r4=>0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000002c0)={0x7c, 0x0, &(0x7f00000001c0)=[@request_death={0x400c630e, 0x3, 0x1}, @increfs_done={0x40106308, r2, 0x2}, @acquire_done={0x40106309, r4}, @transaction={0x40406300, {0x3, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, &(0x7f0000000140), &(0x7f0000000180)=[0x0, 0x0, 0x40, 0x38]}}], 0x41, 0x0, &(0x7f0000000240)="3f7f8bea444f86c9c7f3434ce32421f2edbd26be08fe964fe7527959475370e921e834e79a1325d3419dca686824cc4508ef33de0cb326a9ef074a50494fe0bb02"})

08:04:46 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)

[ 1159.518347][ T9113] netlink: 57 bytes leftover after parsing attributes in process `syz-executor.2'.
08:04:46 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)={&(0x7f0000000000)='./file0\x00'}, 0x10)
read(r0, &(0x7f00000000c0)=""/124, 0x7c)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
pipe(&(0x7f0000000180))
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

[ 1159.646559][ T9320] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1159.659209][ T9320] CPU: 0 PID: 9320 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1159.668156][ T9320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1159.678229][ T9320] Call Trace:
[ 1159.681535][ T9320]  dump_stack+0x172/0x1f0
[ 1159.685890][ T9320]  handle_userfault.cold+0x41/0x5d
[ 1159.691522][ T9320]  ? __lock_acquire+0x548/0x3fb0
08:04:46 executing program 2:
setresuid(0x0, 0xee01, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000000100)={0x16, 0x98, 0xfa00, {&(0x7f00000000c0), 0x1, r1, 0x1c, 0x0, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, 0xa0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
umount2(0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8)
ioprio_set$uid(0x3, r2, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(0xffffffffffffffff, 0xc0305616, 0x0)
getsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = openat$snapshot(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000300)={0x7, 0x8, 0xfa00, {r1, 0x53}}, 0x10)
write$FUSE_INIT(r3, &(0x7f0000000240)={0x50, 0x0, 0x6, {0x7, 0x1d, 0x9, 0x241034, 0xc0000000000000, 0x0, 0x8, 0x5}}, 0x50)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc)
openat$null(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/null\x00', 0x10000, 0x0)

08:04:46 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x20000, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000100)={<r3=>0x0, 0x4}, &(0x7f0000000140)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000001200)=ANY=[@ANYRES32=r3, @ANYBLOB="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"], &(0x7f00000011c0)=0x1008)

[ 1159.696483][ T9320]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1159.701784][ T9320]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1159.712727][ T9320]  ? find_held_lock+0x35/0x130
[ 1159.717503][ T9320]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1159.723494][ T9320]  ? kasan_check_write+0x14/0x20
[ 1159.723516][ T9320]  ? lock_downgrade+0x880/0x880
[ 1159.723538][ T9320]  ? kasan_check_read+0x11/0x20
[ 1159.723554][ T9320]  ? do_raw_spin_unlock+0x57/0x270
[ 1159.723574][ T9320]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1159.723590][ T9320]  ? kasan_check_read+0x11/0x20
[ 1159.723611][ T9320]  ? __thp_get_unmapped_area+0x190/0x190
[ 1159.723624][ T9320]  ? pmd_val+0x100/0x100
[ 1159.723644][ T9320]  ? __lock_acquire+0x548/0x3fb0
[ 1159.733424][ T9320]  ? __kernel_text_address+0xd/0x40
[ 1159.733451][ T9320]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1159.733474][ T9320]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1159.733489][ T9320]  ? find_held_lock+0x35/0x130
[ 1159.733504][ T9320]  ? handle_mm_fault+0x322/0xb30
[ 1159.733529][ T9320]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1159.733550][ T9320]  ? kasan_check_read+0x11/0x20
[ 1159.806309][ T9320]  handle_mm_fault+0x43f/0xb30
[ 1159.811089][ T9320]  __get_user_pages+0x7b6/0x1a40
[ 1159.816054][ T9320]  ? follow_page_mask+0x19a0/0x19a0
[ 1159.821264][ T9320]  ? get_user_pages_remote+0x17d/0x440
[ 1159.826738][ T9320]  get_user_pages_remote+0x1a3/0x440
[ 1159.832041][ T9320]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1159.837692][ T9320]  ? alloc_vmap_area.cold+0x24/0x24
08:04:46 executing program 2:
fremovexattr(0xffffffffffffffff, 0x0)
inotify_init()
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x80000001, 0x101)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x800000c004500a, &(0x7f0000000300))
readv(r0, &(0x7f0000395000)=[{&(0x7f00004d2000)=""/4096, 0x1000}], 0x1)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f3188b070")

08:04:46 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x3ff, &(0x7f00000000c0))
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1159.842906][ T9320]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1159.849156][ T9320]  ? _copy_from_user+0xdd/0x150
[ 1159.854057][ T9320]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1159.859784][ T9320]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1159.865253][ T9320]  process_vm_rw+0x21f/0x240
[ 1159.865273][ T9320]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1159.865286][ T9320]  ? __might_fault+0x12b/0x1e0
[ 1159.865322][ T9320]  ? kasan_check_read+0x11/0x20
[ 1159.885290][ T9320]  ? _copy_to_user+0xc9/0x120
[ 1159.889994][ T9320]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1159.896248][ T9320]  ? nsecs_to_jiffies+0x30/0x30
[ 1159.901123][ T9320]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1159.906593][ T9320]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1159.912064][ T9320]  ? do_syscall_64+0x26/0x610
[ 1159.916753][ T9320]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1159.922404][ T9320]  do_syscall_64+0x103/0x610
[ 1159.927010][ T9320]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1159.932897][ T9320] RIP: 0033:0x458209
[ 1159.936790][ T9320] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1159.956398][ T9320] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1159.964804][ T9320] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1159.972782][ T9320] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d6f
[ 1159.980764][ T9320] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1159.988746][ T9320] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
08:04:47 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000100)='coredump_filter\x00')

[ 1159.996725][ T9320] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:47 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x386, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:47 executing program 2:
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
mkdir(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$SIOCX25GSUBSCRIP(r0, 0x89e0, &(0x7f0000000040)={'ipddp0\x00', 0x0, 0x101})
renameat2(r1, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2)

08:04:47 executing program 0:
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000140)={0x0, 0x0, {0x22, 0x2d, 0xf, 0x19, 0x6, 0x4, 0x8, 0x139, 0xffffffffffffffff}})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="0a5c1f023c126285719070")
r2 = socket(0x400000000010, 0x3, 0x0)
write(r2, &(0x7f0000000000)="2400000021002551075c0165ff0ffc020200000000100f0307e1000c0800180000000000bc0000008f3943793a5ea67658cb22d90000000000000059b97dc8f8b550e66a2bff77c4931da84157f7a733686a22fd8169f6b6b4f464e0c05df670d851f785ea2b85d32b3583d87124da3bb0b9e2cc000000dcce1fb4ac2cbd48c8378a3ad82a5b83c01295723da595c4831f65123819e204853d48a5a6bd525801d5cae983cf4544a9c4c396f36e85787a8efc32e0015c85ead2b748bc6a5fefc4e53543f9f65e3da31a110af1acb78ce510c7a70723741b34981d1b182deb7904", 0xe0)

08:04:47 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$vcsn(&(0x7f00000002c0)='/dev/vcs#\x00', 0x3, 0x10000)
accept$nfc_llcp(r1, &(0x7f0000000300), &(0x7f0000000380)=0x60)
r2 = accept4$inet(r0, &(0x7f00000001c0), &(0x7f0000000200)=0x10, 0x80000)
ioctl(r2, 0x1000008910, &(0x7f0000000140)="0a070012a4bd907715c0c7af612bc057bea0d613c3f9000000001000000231ab05a4db6d783d35c848e06140bc50e7f3ec8e287577da31741252af3488b7870000000000000000000000000000000033e8e3ef7c84365413dd6da1ba17336af3e3884b675102c4149fa62188")
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000280)={0xaa, 0x2})
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000040))
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f00000000c0)={<r4=>0x0, 0x1d, "21228c8dacc515ea82feb21cf9528c5129aa84fbc86b1afb2202fb8476"}, &(0x7f0000000100)=0x25)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000240)={r4, 0x8, 0x7f}, 0x8)

08:04:47 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f0000000200)={0x5c, ""/92})
ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000100))
r3 = syz_open_dev$dmmidi(&(0x7f0000000140)='/dev/dmmidi#\x00', 0x1, 0x28040)
sync()
ioctl$PPPIOCATTACH(r3, 0x4004743d, &(0x7f00000001c0)=0x4)
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:47 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xcc, 0xe4, 0x4, {"c7ece01bba45c7040f56fe6e65d1bfaebb4f14fc793e56c13930e095e7ed510675846aa45870a451c516fede8d929912eb0c768df0dfab60ebccba6379c7f9ed70b9227796d4ef70dc725edd3032e048d45e41c3cb7ddac5e44e36efed161bff63a29e1a1eada9cc75467f38e6874653fb675aebbbd3bb7b235a18466a0655de5cc29b35e76009326e94c46ff3430042b27a09ca1ab17702f109ceb63b4ac98047dda73ec1e3db601b866b7aeb0f2619f886c476eb5bc51e2a453a55b9cd0128a35f8dfbecf507f4ad"}}}, &(0x7f0000000100)=""/13, 0xe6, 0xd, 0x1}, 0x20)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:47 executing program 0:
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="6e6f616c69676e2c707126dd756f74612c7377696474683d307830303030303030303830303030303031"])
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))

08:04:47 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
eventfd2(0x61f, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000000)=0x2)

08:04:47 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev}, 0x2d)
listen(r0, 0x3)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46}, 0xb)
clock_gettime(0x0, &(0x7f0000000200)={0x0, <r2=>0x0})
recvmmsg(r1, &(0x7f0000004300)=[{{&(0x7f00000002c0)=@in, 0x80, &(0x7f00000027c0), 0x1, &(0x7f0000000080)=""/210, 0xfffffd94}}], 0x684, 0x2, &(0x7f0000004480)={0x0, r2+30000000})
ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000000)={0x7, 0x1ff})

08:04:47 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
semget$private(0x0, 0x6, 0x80)

[ 1160.732776][T10296] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1160.750416][T10296] CPU: 1 PID: 10296 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1160.759549][T10296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1160.769621][T10296] Call Trace:
[ 1160.772931][T10296]  dump_stack+0x172/0x1f0
[ 1160.777290][T10296]  handle_userfault.cold+0x41/0x5d
[ 1160.782415][T10296]  ? __lock_acquire+0x548/0x3fb0
[ 1160.787380][T10296]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1160.793112][T10296]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1160.799104][T10296]  ? find_held_lock+0x35/0x130
[ 1160.803879][T10296]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1160.809874][T10296]  ? kasan_check_write+0x14/0x20
[ 1160.814828][T10296]  ? lock_downgrade+0x880/0x880
[ 1160.819699][T10296]  ? kasan_check_read+0x11/0x20
[ 1160.824561][T10296]  ? do_raw_spin_unlock+0x57/0x270
[ 1160.829695][T10296]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1160.835517][T10296]  ? kasan_check_read+0x11/0x20
[ 1160.840384][T10296]  ? __thp_get_unmapped_area+0x190/0x190
[ 1160.846024][T10296]  ? pmd_val+0x100/0x100
[ 1160.850276][T10296]  ? __lock_acquire+0x548/0x3fb0
[ 1160.855221][T10296]  ? __kernel_text_address+0xd/0x40
[ 1160.860434][T10296]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1160.865562][T10296]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1160.871117][T10296]  ? find_held_lock+0x35/0x130
[ 1160.875891][T10296]  ? handle_mm_fault+0x322/0xb30
[ 1160.880844][T10296]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1160.887095][T10296]  ? kasan_check_read+0x11/0x20
[ 1160.891963][T10296]  handle_mm_fault+0x43f/0xb30
[ 1160.896744][T10296]  __get_user_pages+0x7b6/0x1a40
[ 1160.901789][T10296]  ? follow_page_mask+0x19a0/0x19a0
[ 1160.906997][T10296]  ? get_user_pages_remote+0x17d/0x440
[ 1160.912470][T10296]  get_user_pages_remote+0x1a3/0x440
[ 1160.917771][T10296]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1160.923429][T10296]  ? alloc_vmap_area.cold+0x24/0x24
[ 1160.928648][T10296]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1160.934901][T10296]  ? _copy_from_user+0xdd/0x150
[ 1160.939764][T10296]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1160.945491][T10296]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1160.950965][T10296]  process_vm_rw+0x21f/0x240
[ 1160.955571][T10296]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1160.961381][T10296]  ? __might_fault+0x12b/0x1e0
[ 1160.966182][T10296]  ? kasan_check_read+0x11/0x20
[ 1160.971045][T10296]  ? _copy_to_user+0xc9/0x120
[ 1160.975733][T10296]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1160.981981][T10296]  ? nsecs_to_jiffies+0x30/0x30
[ 1160.986849][T10296]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1160.992313][T10296]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1160.997780][T10296]  ? do_syscall_64+0x26/0x610
[ 1161.002474][T10296]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1161.008127][T10296]  do_syscall_64+0x103/0x610
[ 1161.012738][T10296]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1161.018630][T10296] RIP: 0033:0x458209
[ 1161.022529][T10296] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1161.042136][T10296] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1161.050560][T10296] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1161.058533][T10296] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d75
[ 1161.066509][T10296] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1161.074483][T10296] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
08:04:47 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x7fff)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x2, 0x0)
ioctl$RTC_VL_CLR(r1, 0x7014)
fcntl$notify(r0, 0x402, 0xe)
r2 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0xd, 0x401)
io_setup(0xb, &(0x7f0000000100)=<r3=>0x0)
io_cancel(r3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x7, 0x8, r2, &(0x7f0000000140)="05f1a19b9d6d1af3533e88c3a2de5e7072c29a73b31857de856b3235101e6761ca70650228a694004a0f36b77e7c81933af40e972723a368b758f82cfa93fbc7f5c861df2d837b22332a65ac73602a716a25dd6306b783ee58b5e5e55553147fc4a2ba62652fa2e32c0b353a06b2400530645202a84761667b613ff5b8e321b755a2f5a6bcbe54ca14313e569958da4b", 0x90, 0x6, 0x0, 0x0, 0xffffffffffffff9c}, &(0x7f0000000240))
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$FS_IOC_FSGETXATTR(r2, 0xc0185500, &(0x7f00000000c0)={0x4001080323})

08:04:47 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

[ 1161.082458][T10296] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1161.131414][T10452] vhci_hcd: invalid port number 0
08:04:48 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x39e, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:48 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffa000/0x1000)=nil)
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000440)=""/19)
r2 = socket$inet(0x2, 0x3, 0x2)
syz_open_dev$adsp(0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5387, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000980)={'vcan0\x00'})
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, 0x0, 0x0)
setsockopt$inet_int(r2, 0x0, 0xcd, &(0x7f0000000000), 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
openat$cgroup_int(r1, 0x0, 0x2, 0x0)
stat(0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200001)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000002c0)={<r3=>0x0, 0x80}, &(0x7f0000000300)=0x8)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x2200, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000140)={0x0, 0x7f, 0x7f, 0x64a, 0xfffffffffffffff8, 0x3, 0x9, 0x0, {<r4=>r3, @in6={{0xa, 0x4e22, 0x7fff, @mcast1, 0x9}}, 0x2, 0x7ff, 0x400, 0x0, 0x2}}, &(0x7f0000000340)=0xb0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000000c0)={r4, 0x2}, &(0x7f0000000200)=0x8)
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0xc0386106, &(0x7f0000000000)={0x1ff, 0x0, 0x2, 0x4})
r5 = semget(0x2, 0x0, 0x1)
semtimedop(r5, &(0x7f0000000240)=[{0x3, 0x7, 0x1800}, {0x2, 0x5, 0x1800}, {0x5, 0x5, 0x800}, {0x1, 0x6, 0x1000}, {0x2, 0x100}, {0x0, 0xe, 0x800}, {0x2, 0x6, 0x1800}], 0x7, &(0x7f0000000280))
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-vsock\x00', 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000380)={r3, @in={{0x2, 0x4e23, @multicast1}}}, 0x84)

08:04:48 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f00000001c0)={0x7, 0xafb, 0x5, 0x0, 0x0, [{r0, 0x0, 0x2}, {r1, 0x0, 0x3}, {r0, 0x0, 0x2}, {r0}, {r2}]})
r3 = gettid()
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:48 executing program 0:
add_key$keyring(&(0x7f00000002c0)='keyring\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/loop-control\x00', 0x20000, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)

08:04:48 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000181000/0x4000)=nil, 0x4000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net\x00')
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040))
io_setup(0x1, &(0x7f0000000700)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f0000000000)={0x4000, 0x0, 0x7, 0xf0ffffff0f0000, 0x0, r0, &(0x7f0000000200), 0xfffffdcc}])

[ 1161.477766][T10717] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1161.503517][T10717] CPU: 1 PID: 10717 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1161.512577][T10717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1161.512584][T10717] Call Trace:
[ 1161.512609][T10717]  dump_stack+0x172/0x1f0
[ 1161.512639][T10717]  handle_userfault.cold+0x41/0x5d
[ 1161.512658][T10717]  ? __lock_acquire+0x548/0x3fb0
[ 1161.512697][T10717]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1161.512724][T10717]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1161.512741][T10717]  ? find_held_lock+0x35/0x130
[ 1161.512764][T10717]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1161.551973][T10717]  ? kasan_check_write+0x14/0x20
[ 1161.551993][T10717]  ? lock_downgrade+0x880/0x880
[ 1161.552015][T10717]  ? kasan_check_read+0x11/0x20
[ 1161.552031][T10717]  ? do_raw_spin_unlock+0x57/0x270
[ 1161.552054][T10717]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1161.588264][T10717]  ? kasan_check_read+0x11/0x20
[ 1161.588289][T10717]  ? __thp_get_unmapped_area+0x190/0x190
[ 1161.588302][T10717]  ? pmd_val+0x100/0x100
[ 1161.588319][T10717]  ? __lock_acquire+0x548/0x3fb0
[ 1161.588333][T10717]  ? __kernel_text_address+0xd/0x40
[ 1161.588354][T10717]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1161.588375][T10717]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1161.588395][T10717]  ? find_held_lock+0x35/0x130
[ 1161.603081][T10717]  ? handle_mm_fault+0x322/0xb30
[ 1161.603108][T10717]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1161.603127][T10717]  ? kasan_check_read+0x11/0x20
[ 1161.603147][T10717]  handle_mm_fault+0x43f/0xb30
[ 1161.613266][T10717]  __get_user_pages+0x7b6/0x1a40
[ 1161.613292][T10717]  ? follow_page_mask+0x19a0/0x19a0
[ 1161.613311][T10717]  ? get_user_pages_remote+0x17d/0x440
[ 1161.613335][T10717]  get_user_pages_remote+0x1a3/0x440
[ 1161.613361][T10717]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1161.624005][T10717]  ? alloc_vmap_area.cold+0x24/0x24
[ 1161.624027][T10717]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1161.624042][T10717]  ? _copy_from_user+0xdd/0x150
[ 1161.624060][T10717]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
08:04:48 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
rt_sigreturn()
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

[ 1161.624078][T10717]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1161.624104][T10717]  process_vm_rw+0x21f/0x240
[ 1161.624120][T10717]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1161.624132][T10717]  ? __might_fault+0x12b/0x1e0
[ 1161.634020][T10717]  ? kasan_check_read+0x11/0x20
[ 1161.634034][T10717]  ? _copy_to_user+0xc9/0x120
[ 1161.634053][T10717]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1161.634070][T10717]  ? nsecs_to_jiffies+0x30/0x30
[ 1161.634097][T10717]  ? trace_hardirqs_on_thunk+0x1a/0x1c
08:04:48 executing program 3:
r0 = userfaultfd(0x82800)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1161.634113][T10717]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1161.634134][T10717]  ? do_syscall_64+0x26/0x610
[ 1161.645204][T10717]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1161.645227][T10717]  do_syscall_64+0x103/0x610
[ 1161.645250][T10717]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1161.645263][T10717] RIP: 0033:0x458209
[ 1161.645283][T10717] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1161.645291][T10717] RSP: 002b:00007f09b4415c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1161.645306][T10717] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1161.645327][T10717] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d79
[ 1161.654990][T10717] RBP: 000000000073bf00 R08: 0000000000000001 R09: 0000000000000000
[ 1161.655000][T10717] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b44166d4
[ 1161.655008][T10717] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:48 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x6, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
accept(r1, 0x0, &(0x7f00000000c0))

08:04:49 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffa000/0x1000)=nil)
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000440)=""/19)
r2 = socket$inet(0x2, 0x3, 0x2)
syz_open_dev$adsp(0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5387, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000980)={'vcan0\x00'})
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, 0x0, 0x0)
setsockopt$inet_int(r2, 0x0, 0xcd, &(0x7f0000000000), 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
openat$cgroup_int(r1, 0x0, 0x2, 0x0)
stat(0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200001)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000002c0)={<r3=>0x0, 0x80}, &(0x7f0000000300)=0x8)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x2200, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000140)={0x0, 0x7f, 0x7f, 0x64a, 0xfffffffffffffff8, 0x3, 0x9, 0x0, {<r4=>r3, @in6={{0xa, 0x4e22, 0x7fff, @mcast1, 0x9}}, 0x2, 0x7ff, 0x400, 0x0, 0x2}}, &(0x7f0000000340)=0xb0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000000c0)={r4, 0x2}, &(0x7f0000000200)=0x8)
ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0xc0386106, &(0x7f0000000000)={0x1ff, 0x0, 0x2, 0x4})
r5 = semget(0x2, 0x0, 0x1)
semtimedop(r5, &(0x7f0000000240)=[{0x3, 0x7, 0x1800}, {0x2, 0x5, 0x1800}, {0x5, 0x5, 0x800}, {0x1, 0x6, 0x1000}, {0x2, 0x100}, {0x0, 0xe, 0x800}, {0x2, 0x6, 0x1800}], 0x7, &(0x7f0000000280))
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-vsock\x00', 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000380)={r3, @in={{0x2, 0x4e23, @multicast1}}}, 0x84)

08:04:49 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$sock_SIOCOUTQ(r1, 0x5411, &(0x7f0000000100))
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840)={0x0, 0xfffffffffffffffd, 0x412})
ioctl$DRM_IOCTL_CONTROL(r1, 0x40086414, &(0x7f0000000000)={0x2, 0xb37})
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f00000000c0)={0x0, 0x8}, 0x8)

08:04:49 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
ioctl$IMCLEAR_L2(r0, 0x80044946, &(0x7f0000000280)=0xfff)
setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f0000000100)=ANY=[@ANYBLOB="62726f7574650000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000", @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYBLOB="00000001000000000000000000000000"], @ANYBLOB="0000000000000000000000d01db4bf936af8c72100e000000000000000001400000000000000000000080000000000000000000000000000"], 0xa8)
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f00000002c0)={<r2=>0x0, 0x6}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000340)={r2, 0xb6ba, 0x5ad0, 0x10000}, 0x10)
getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f00000001c0)={<r3=>0x0, 0xfffffffffffffff7, 0x27, 0x2}, &(0x7f0000000200)=0x10)
setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000240)={r3, 0x25cb, 0xfff, 0x9b2b}, 0x10)

08:04:49 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x24002, 0x0)
openat$vfio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vfio/vfio\x00', 0x800, 0x0)
perf_event_open(&(0x7f0000000100)={0x3, 0x70, 0xfb, 0x100, 0x5, 0x6, 0x0, 0x1f, 0x4, 0x8, 0x3, 0x7, 0x6, 0x5c07fa77, 0x2, 0x7, 0x200, 0x0, 0x7bbf, 0x3, 0x0, 0x1000, 0x3, 0x7, 0x5, 0x1, 0x1, 0x6, 0x100, 0x5, 0x2659, 0x3, 0xf866, 0x8, 0x6bd2, 0xa7aa, 0x9, 0x4, 0x0, 0x4, 0x0, @perf_config_ext={0xffffffffffffffc0, 0x480000000}, 0x8404, 0xcd9a, 0x3, 0xf, 0x200, 0x3, 0x8}, r2, 0xd, r3, 0x3)

[ 1162.264584][T11256] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1162.270054][T11256] CPU: 0 PID: 11256 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1162.279098][T11256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1162.289160][T11256] Call Trace:
[ 1162.292462][T11256]  dump_stack+0x172/0x1f0
[ 1162.296780][T11256]  handle_userfault.cold+0x41/0x5d
[ 1162.301889][T11256]  ? __lock_acquire+0x548/0x3fb0
[ 1162.306847][T11256]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1162.312127][T11256]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1162.318087][T11256]  ? find_held_lock+0x35/0x130
[ 1162.322847][T11256]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1162.328824][T11256]  ? kasan_check_write+0x14/0x20
[ 1162.333764][T11256]  ? lock_downgrade+0x880/0x880
[ 1162.338601][T11256]  ? kasan_check_read+0x11/0x20
[ 1162.343446][T11256]  ? do_raw_spin_unlock+0x57/0x270
[ 1162.348583][T11256]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1162.354407][T11256]  ? kasan_check_read+0x11/0x20
[ 1162.359246][T11256]  ? __thp_get_unmapped_area+0x190/0x190
[ 1162.364866][T11256]  ? pmd_val+0x100/0x100
[ 1162.369105][T11256]  ? __lock_acquire+0x548/0x3fb0
[ 1162.374025][T11256]  ? __kernel_text_address+0xd/0x40
[ 1162.379219][T11256]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1162.384332][T11256]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1162.389870][T11256]  ? find_held_lock+0x35/0x130
[ 1162.394612][T11256]  ? handle_mm_fault+0x322/0xb30
[ 1162.399542][T11256]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1162.405781][T11256]  ? kasan_check_read+0x11/0x20
[ 1162.410640][T11256]  handle_mm_fault+0x43f/0xb30
[ 1162.415413][T11256]  __get_user_pages+0x7b6/0x1a40
[ 1162.420352][T11256]  ? follow_page_mask+0x19a0/0x19a0
[ 1162.425573][T11256]  ? get_user_pages_remote+0x17d/0x440
[ 1162.431033][T11256]  get_user_pages_remote+0x1a3/0x440
[ 1162.436307][T11256]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1162.442033][T11256]  ? alloc_vmap_area.cold+0x24/0x24
[ 1162.447243][T11256]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1162.453473][T11256]  ? _copy_from_user+0xdd/0x150
[ 1162.458307][T11256]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1162.464019][T11256]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1162.469477][T11256]  process_vm_rw+0x21f/0x240
[ 1162.474236][T11256]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1162.480038][T11256]  ? __might_fault+0x12b/0x1e0
[ 1162.484859][T11256]  ? kasan_check_read+0x11/0x20
[ 1162.489725][T11256]  ? _copy_to_user+0xc9/0x120
[ 1162.494392][T11256]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1162.500626][T11256]  ? nsecs_to_jiffies+0x30/0x30
[ 1162.505499][T11256]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1162.510953][T11256]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1162.516420][T11256]  ? do_syscall_64+0x26/0x610
[ 1162.521099][T11256]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1162.526745][T11256]  do_syscall_64+0x103/0x610
[ 1162.531335][T11256]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1162.537210][T11256] RIP: 0033:0x458209
[ 1162.541096][T11256] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1162.560715][T11256] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1162.569129][T11256] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1162.577090][T11256] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d80
[ 1162.585070][T11256] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1162.593036][T11256] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1162.600992][T11256] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:49 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3aa, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:49 executing program 0:
add_key$keyring(&(0x7f00000002c0)='keyring\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/loop-control\x00', 0x20000, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)

08:04:49 executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0xe, &(0x7f0000000140)=ANY=[@ANYBLOB="b700000000000100bfa30000000000001703000028feffff7a0af0fff8ffffff79a4f0ff00000000b7060000000000013d400300000000006506000001ed00001c040000000000006f460000000000006a0a00fe00000000850000002e000000b7000000000000009500000000000000"], &(0x7f0000000100)='P\\\x88\x1c'}, 0x48)
connect$vsock_dgram(r0, &(0x7f0000000080)={0x28, 0x0, 0xffffffff, @hyper}, 0x10)

08:04:49 executing program 1:
r0 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x1, 0x80000)
r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video37\x00', 0x2, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0xac, 0x4, 0x5, 0x2, 0x70bd2a, 0x25dfdbfc, {0xc, 0x0, 0x5}, [@nested={0x7c, 0x12, [@generic="30f50af0a70682a9526584df5b4291e5cd45d1a4b12327b2d00b3500b1709d22ee1fffbe26586635ff0e77f0b474fee35a57370217f8336b716ada0093f510a9f4c79151ac1d4d31b9c481259c9ed0099e41a3eaed2ed25f1010da8ca45144727465022d5b1ce34fab16c21e347a4cd17e6cee3d8266c2"]}, @typed={0x8, 0x17, @fd=r1}, @typed={0x8, 0x45, @u32=0x401}, @typed={0xc, 0x8b, @u64=0x5}]}, 0xac}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r3, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:49 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000000)={'raw\x00'}, &(0x7f0000000080)=0x54)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001d80)={'tunl0\x00', <r2=>0x0})
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x1ea)
ioctl$EVIOCGSND(r3, 0x8040451a, &(0x7f0000000100)=""/4096)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, r2}, 0x58)
clock_gettime(0x0, &(0x7f0000002900)={0x0, <r4=>0x0})
recvmmsg(r0, &(0x7f00000027c0), 0x40004c3, 0x1ba, &(0x7f0000002940)={0x0, r4+10000000})

08:04:49 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000000100)={&(0x7f0000574000/0x1000)=nil, 0x1000})

08:04:49 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f00000000c0))

08:04:50 executing program 1:
mq_open(&(0x7f00000003c0)='+\'em1\x02\'GPL{%selinux\xe1]\x00', 0x0, 0x1, &(0x7f0000000400)={0x6, 0x1, 0x1ff, 0x9, 0x0, 0x9, 0x81, 0xb93})
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x80000, 0x0)
r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cachefiles\x00', 0x109000, 0x0)
renameat(r0, &(0x7f0000000100)='./file0\x00', r1, &(0x7f0000000180)='./file0\x00')
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$VIDIOC_S_INPUT(r1, 0xc0045627, &(0x7f0000000380))
ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200)='TIPCv2\x00')
sendmsg$TIPC_NL_LINK_SET(r1, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x840040}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x8c, r3, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_LINK={0x30, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_LINK={0x44, 0x4, [@TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffffffffffe1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0x4}]}, 0x8c}, 0x1, 0x0, 0x0, 0x8000}, 0x20040011)
r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r4, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4})

08:04:50 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000480)=@broute={'broute\x00', 0x20, 0x4, 0x3d0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000a40], 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"]}, 0x448)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={<r2=>0x0, 0x1000, 0x10, 0x1, 0x80000000}, &(0x7f0000000080)=0x18)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value={r2}, 0x8)

08:04:50 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840)={0x1, 0x0, 0x2})

08:04:50 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x5, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0585609, &(0x7f0000000180)={0x0, 0x9, "2a8f5865af49c7250671f832f1ce9782bf915349fd6618fbaf11b15f24f44d12", 0x0, 0x0, 0x0, 0x70effc, 0x100000001})

08:04:50 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xe, 0x20000000004, 0x4, 0x8}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r1, &(0x7f0000000040), 0x0}, 0x20)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x1, 0x80000)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f0000000100)={0x8001, 0x2, 0x7f, 0x2, <r3=>0x0}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f00000001c0)={r3, 0x48, "36db1906885add6fe99c010952881fb8c29d62ac06ca3b15273cac4fe6ce36726d7a90e8038b27f1ecd6b97e1b8eac59ab2ee581de86de035eade7b28b20b28108e63393ffe38006"}, &(0x7f0000000240)=0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r1, &(0x7f0000000040), 0x0}, 0x18)

08:04:50 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3ad, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:50 executing program 0:
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000000), 0x0}, 0x20)
r0 = accept(0xffffffffffffff9c, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000080)=0x8000, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x8adb, 0xd9c1, 0x40, 0x8, 0xffffffffffffffff, 0x3ba}, 0x2c)

08:04:50 executing program 2:
r0 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x20, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, 0x0, 0x0)
mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x40010, r0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000880)={0x8, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB, @ANYPTR], 0x0, 0x0, 0x0})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000340)={<r1=>0x0, @in6={{0xa, 0x4e23, 0x7, @dev={0xfe, 0x80, [], 0x1c}, 0x7}}, [0x6b1f, 0x0, 0xffffffff00000000, 0x8, 0x0, 0x8, 0x2, 0x5, 0x3817, 0x0, 0x1f, 0xd, 0x9, 0x5, 0x60]}, 0x0)
r2 = perf_event_open(&(0x7f00000008c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f00000006c0), 0x0, 0x100002, 0x0, 0x0, 0x0)
ioctl$sock_ax25_SIOCADDRT(r0, 0x890b, &(0x7f00000009c0)={@null, @null, 0x6, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast]})
readv(r2, &(0x7f0000000740)=[{&(0x7f0000000240)=""/196, 0xc4}, {&(0x7f0000000440)=""/214, 0xd6}, {&(0x7f0000000180)=""/117, 0x75}, {&(0x7f0000000040)=""/17, 0x11}, {&(0x7f0000000100)=""/16, 0x10}, {&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000000540)=""/89, 0x59}, {&(0x7f00000005c0)=""/168, 0xa8}], 0x8)
openat$dir(0xffffffffffffff9c, 0x0, 0x200000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vcan0\x00', <r3=>0x0})
bind$can_raw(0xffffffffffffffff, &(0x7f0000000140)={0x1d, r3}, 0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x9, r1}, 0x0)
setsockopt(0xffffffffffffffff, 0x65, 0x1, &(0x7f0000000080), 0x1d0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, 0x0, 0x0)
ioctl$VHOST_SET_VRING_CALL(r0, 0x4008af21, &(0x7f00000000c0)={0x3, r0})
r4 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/capi/capi20ncci\x00', 0x40500, 0x0)
sendmmsg$nfc_llcp(r4, &(0x7f0000001b80)=[{&(0x7f0000000a80)={0x27, 0x0, 0x1, 0x0, 0x0, 0x2, "1ddc37787121faccc97cc16d89ea3349ddb1882abc4761f38bc41e881d0b3f2213adefd7dccb3508d318002f25dd536138a77dbfd649633be43e9de500a940", 0x1f}, 0x60, 0x0, 0x0, 0x0, 0x0, 0x1}], 0x1, 0xc800)
close(0xffffffffffffffff)
unshare(0x40000400)

08:04:50 executing program 1:
socket$l2tp(0x18, 0x1, 0x1)
memfd_create(&(0x7f0000000380)='i\xc3;`\xbep+\x10', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
fchdir(r0)
setxattr$trusted_overlay_opaque(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080)='trusted.overlay.opaque\x00', &(0x7f00000000c0)='y\x00', 0x2, 0x1)
quotactl(0x2080000201, &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000380)='-')

08:04:50 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x3)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:50 executing program 0:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x10000, 0x0)
ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000080)=""/7)
socket$inet6(0xa, 0x2, 0x0)
ftruncate(0xffffffffffffffff, 0x9)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x800000000, 0xffffffffffffffff)
fcntl$notify(r2, 0x402, 0x10)
ioctl$KVM_ASSIGN_DEV_IRQ(r2, 0x4040ae70, &(0x7f0000000040)={0x5, 0x6, 0x8, 0x201})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000680), 0x0, 0x8)
getsockopt$inet_mreqn(r1, 0x0, 0x0, &(0x7f00000002c0)={@initdev, @empty, <r3=>0x0}, &(0x7f0000000300)=0xc)
setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f0000000340)={@empty, r3}, 0x14)
dup(0xffffffffffffffff)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000180)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x1, 0x1, [@multicast1]}, 0x14)
syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x1000000000, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="000000000000000000000000000000000000000000000000e0e51532000000000200880126000100000064000000000127008e030c00650000006400000000030d00f0043100c90000006400000000043200052020002d010000d306000055aa", 0x60, 0x1a0}])

08:04:50 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000002380)={{{@in6=@dev, @in6=@dev}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in6=@remote}}, &(0x7f0000002480)=0xe8)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f00000024c0)={{{@in6=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in6}, 0x0, @in6=@local}}, &(0x7f00000025c0)=0xe8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bri_slave_1\x00', <r2=>r1})
ioctl$KVM_GET_NESTED_STATE(r0, 0xc080aebe, &(0x7f0000000300)={0x0, 0x0, 0x2080})
sendmsg$nl_route(r0, &(0x7f00000002c0)={&(0x7f0000000200), 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="280000001d000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000a03000000000000004c0000"], 0x28}}, 0x0)

[ 1163.864744][T11794] IPVS: ftp: loaded support on port[0] = 21
[ 1163.874547][T12012] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1163.879862][T12012] CPU: 1 PID: 12012 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1163.888891][T12012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1163.898958][T12012] Call Trace:
[ 1163.902278][T12012]  dump_stack+0x172/0x1f0
[ 1163.906636][T12012]  handle_userfault.cold+0x41/0x5d
[ 1163.911774][T12012]  ? __lock_acquire+0x548/0x3fb0
[ 1163.916750][T12012]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1163.922057][T12012]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1163.928049][T12012]  ? find_held_lock+0x35/0x130
[ 1163.932823][T12012]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1163.938819][T12012]  ? kasan_check_write+0x14/0x20
[ 1163.943769][T12012]  ? lock_downgrade+0x880/0x880
[ 1163.948642][T12012]  ? kasan_check_read+0x11/0x20
[ 1163.953509][T12012]  ? do_raw_spin_unlock+0x57/0x270
[ 1163.958633][T12012]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1163.964452][T12012]  ? kasan_check_read+0x11/0x20
[ 1163.969324][T12012]  ? __thp_get_unmapped_area+0x190/0x190
[ 1163.974959][T12012]  ? pmd_val+0x100/0x100
[ 1163.979223][T12012]  ? __lock_acquire+0x548/0x3fb0
[ 1163.984180][T12012]  ? __kernel_text_address+0xd/0x40
[ 1163.989398][T12012]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1163.994527][T12012]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1164.000089][T12012]  ? find_held_lock+0x35/0x130
[ 1164.004860][T12012]  ? handle_mm_fault+0x322/0xb30
[ 1164.009819][T12012]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1164.016074][T12012]  ? kasan_check_read+0x11/0x20
[ 1164.020958][T12012]  handle_mm_fault+0x43f/0xb30
[ 1164.025731][T12012]  __get_user_pages+0x7b6/0x1a40
[ 1164.030695][T12012]  ? follow_page_mask+0x19a0/0x19a0
[ 1164.035914][T12012]  ? get_user_pages_remote+0x17d/0x440
[ 1164.041384][T12012]  get_user_pages_remote+0x1a3/0x440
[ 1164.046694][T12012]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1164.052358][T12012]  ? alloc_vmap_area.cold+0x24/0x24
[ 1164.057567][T12012]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1164.063814][T12012]  ? _copy_from_user+0xdd/0x150
[ 1164.068673][T12012]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1164.074412][T12012]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1164.079888][T12012]  process_vm_rw+0x21f/0x240
[ 1164.084494][T12012]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1164.090309][T12012]  ? __might_fault+0x12b/0x1e0
[ 1164.095103][T12012]  ? kasan_check_read+0x11/0x20
[ 1164.099959][T12012]  ? _copy_to_user+0xc9/0x120
[ 1164.104644][T12012]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1164.110897][T12012]  ? nsecs_to_jiffies+0x30/0x30
[ 1164.115770][T12012]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1164.121242][T12012]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1164.126720][T12012]  ? do_syscall_64+0x26/0x610
[ 1164.131412][T12012]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1164.137058][T12012]  do_syscall_64+0x103/0x610
[ 1164.141665][T12012]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1164.147566][T12012] RIP: 0033:0x458209
[ 1164.151482][T12012] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1164.171092][T12012] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1164.179505][T12012] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1164.187484][T12012] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d8a
[ 1164.195459][T12012] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1164.203436][T12012] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
08:04:51 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x2, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x0, 0x2)

08:04:51 executing program 1:
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x0, 0x0, 0x2}}, 0x10)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x0, 0x2}}}, 0x10)
bind$tipc(r0, 0x0, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000040)=0x8000, 0x4)

[ 1164.211443][T12012] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:51 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x400000, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x0, 0x1})
add_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'\x02\x00'}, &(0x7f0000000100), 0xfffff, 0xfffffffffffffffb)

08:04:51 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
r2 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x3, 0x2)
getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000300)={'filter\x00'}, &(0x7f0000000140)=0x78)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0xc058534b, &(0x7f00000001c0)={0x3, 0x40, 0x8, 0x0, 0x1})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
write$tun(r2, &(0x7f0000000380)={@val, @val={0x1, 0x5, 0x236e, 0xf05, 0xffffffff, 0x1}, @mpls={[{0x1ff, 0x7, 0x4, 0x7fff}, {0x2, 0xff, 0x9400000000000000, 0x20}, {0x5, 0x75, 0x7d68, 0x3}, {0xbb06, 0x7ff, 0x975, 0x7}, {0x0, 0x5, 0x17d, 0xfffffffffffffffe}, {0x5, 0xffffffff, 0x8000, 0x3ff}], @ipv4={{0x21, 0x4, 0x8, 0x3ff, 0x2e6, 0x65, 0x100, 0x4, 0x4, 0x0, @broadcast, @loopback, {[@cipso={0x86, 0x4e, 0xd7e, [{0x7, 0x2}, {0x7, 0xc, "7d84296aa0022f313b94"}, {0x0, 0x7, "4c1152b7c3"}, {0x7, 0xf, "46ae83ae36d42d3974107d0006"}, {0x7, 0xa, "f7917d4b63af92c4"}, {0x5, 0xf, "52182080db701558a27aba018a"}, {0x7, 0xb, "f707617bc1589359ab"}]}, @cipso={0x86, 0x15, 0x4, [{0x0, 0xf, "0ae473775157c60b062af97c8e"}]}, @noop, @lsrr={0x83, 0xb, 0x6, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1]}]}}, @gre={{0x0, 0x0, 0x1, 0xa7e9, 0x0, 0x81, 0x0, 0x1, 0x880b, 0xae, 0x3, [], "f8e75a5f3d7cbc0cf8e3245b95e703b952f739071ec9a5294f6cae3a8085c6c3e8ba9c6ca20e7479563a619fe26e458bfa5cebb5b526958f2e03a3447413e03804e69dd1114bf0cce243e157193576d9f3167b614406710d1c8e03c92066db700626866e47379d193720f1835d4907e613f854c7493b4f976f3a611f26a4d5a8d13029fb4ae393e3887064615dbf90865b861d0cad80bbf0024a7cce46d8fa7f87c405db8534bf84d13cc3ebfdc8"}, {0x7f, 0x0, 0x8, 0x800, 0x0, 0x0, 0x800, [], "1c2ef0b80940105a0af6507329f394ae6e652c3977afec9c9d54dcf6e98e2bda1692a2dcbb51c68bdc57df9bf94cd77ffb296d580e3286f78f6eb354a3b18bcca3801eb9965b505d96b22a6b43fff229dff9766672f9f993dde0a76399d4b6fb84b97d9a3c121f06475a6c96e046dad8d830eb7a36e4927ba5ebe3fd429358fa7b52948c4a0a02e51462a17772de763235072855f7b5bc7e5884"}, {0x7, 0x0, 0x1, 0x7, 0x0, 0x0, 0x86dd, [0x9, 0x47c], "60a4a6fed242ba99e8296d68bf6e23ffef1b6dfa7c32245917803ffc4903785f69609b6dfbc0b1a9167e8aa9d4e59e97048f5180be819ee966120dc18167d9887c90b44d60b947146768e56609071ceed965a0636af2f98186b12663496f8f15119586bfddb82d25a06267a52c6f6cbc1ceb022824490474ff235ad2880e"}, {0x8, 0x88be, 0x0, {{0x3, 0x1, 0x0, 0xfffffffffffffffc, 0xf9, 0xe61d, 0x7ff, 0x9}, 0x1, 0x39140acf}}, {0x8, 0x22eb, 0x0, {{0xfffffffffffffffb, 0x2, 0x80000001, 0x158, 0x1b, 0x8, 0x4, 0x10001}, 0x2, 0x7fffffff, 0x0, 0x68b, 0x6, 0x1a, 0xa24, 0x8, 0x100, 0x81}}, {0x8, 0x6558, 0x3, "742449957f49709ec1a6383a4f85269a1b14c4503643df4e53d9e71fef72a124362aa40812abdf8387a104c4d7193347efaf112596c8d43fe317911c4e7cdebbd050583e70d5dbc489189d562f82578d45b972a8"}}}}}, 0x30c)
ioctl$UFFDIO_ZEROPAGE(r2, 0xc020aa04, &(0x7f0000000000)={{&(0x7f0000b94000/0x1000)=nil, 0x1000}, 0x1})
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000), 0x0, &(0x7f0000000240)=[{&(0x7f0000309fb2)=""/145, 0x91}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1164.316765][T12324] Failed to remove local publication {0,2,2}/4063921870
08:04:51 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, <r1=>0x0})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000080)='}\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0x0, 0x0, 0x3}, 0x2c)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x127)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, <r3=>0x0})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000500), 0x4)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000040)={0x8, 0x0, &(0x7f0000000000)=[@release], 0x68, 0x0, &(0x7f00000000c0)="ff073e8b45bb2f1562a208d17397443254bf6feea0ef6a467823ef1c48583e6293bd3751d1e3fbafff3a175d284a4b85744570ce39e4c7e292dabbefe55b20db766b617c86e83145ee3b05732e4936a1853915fa26816bdb79d6597715bae43f7664f6444c5599b5"})
openat$cgroup_type(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.type\x00', 0x2, 0x0)
openat$vsock(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
close(0xffffffffffffffff)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0x10, &(0x7f00000002c0)={&(0x7f00000001c0)=""/212, 0xd4}}, 0x10)
clock_gettime(0x0, &(0x7f00000004c0)={<r4=>0x0})
io_getevents(0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)={r4})
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = openat$cgroup(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$NBD_DISCONNECT(r5, 0xab08)
openat$cgroup_ro(r6, 0x0, 0x0, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, 0x0, 0x0)

08:04:51 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3b0, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:51 executing program 1:
syslog(0x2, &(0x7f0000001600)=""/4096, 0x1000)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-vsock\x00', 0x2, 0x0)
r1 = syz_open_dev$dspn(&(0x7f0000000200)='/dev/dsp#\x00', 0x0, 0x440)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000002c0)={<r2=>0x0, 0x1000, "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"}, &(0x7f0000001300)=0x1008)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000001340)={r2, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1c}}}, 0x81, 0x401, 0x0, 0x15}, &(0x7f0000001400)=0x98)
read(r0, &(0x7f0000000140)=""/124, 0x7c)
ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x0)
r3 = semget$private(0x0, 0x0, 0x0)
semop(r3, &(0x7f00000001c0)=[{0x0, 0x8}, {0x0, 0xffffffffffffffc1, 0x800}, {0x0, 0x4, 0x1800}], 0x3)
waitid(0x0, 0x0, 0x0, 0x0, 0x0)
symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00')
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r4, 0x89e1, &(0x7f00000000c0)={0x2})

08:04:52 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = fcntl$dupfd(r0, 0x406, r0)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)=@deltaction={0xc8, 0x31, 0x23, 0x70bd2d, 0x25dfdbff, {}, [@TCA_ACT_TAB={0xb4, 0x1, [{0x10, 0x12, @TCA_ACT_INDEX={0x8, 0x3, 0x100000000}}, {0x10, 0x2, @TCA_ACT_INDEX={0x8, 0x3, 0x106}}, {0x10, 0x4, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x19, @TCA_ACT_INDEX={0x8, 0x3, 0x7fffffff}}, {0x18, 0x1, @TCA_ACT_KIND={0x10, 0x1, 'tunnel_key\x00'}}, {0x14, 0x6, @TCA_ACT_KIND={0xc, 0x1, 'skbmod\x00'}}, {0x10, 0x8, @TCA_ACT_INDEX={0x8, 0x3, 0x7}}, {0x10, 0x9, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0x10, 0x7, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0x14, 0x1e, @TCA_ACT_KIND={0xc, 0x1, 'sample\x00'}}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x80}, 0x80)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
syz_mount_image$gfs2(&(0x7f0000000100)='gfs2\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0xff0f, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="6e6f6c6f63636f6f6b6965dce02509bc69c2993266bb9ef1ab00"])

08:04:52 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = add_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="6e0023e5e028295963532aab30a925240cd624915480259840f63d6e4fbe39c068f22797dcf6c2f42c4062535bb103c892ce4996f5d816a16058abcd62f4a44035a4adaee09f150c53dac586b891c27264d2efe40e99a881b05262bf88ae18890b2f8aa29582b9be8d9a303bcd2848a1a7575f74289e", 0x76, 0xffffffffffffffff)
keyctl$revoke(0x3, r1)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f00000009c0)="2e0000001d008107e00f80ecdb4cb9d905631912080003003b000000120001000300000040d819a9060015000000", 0x2e}], 0x1}, 0x0)

08:04:52 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000700)='/dev/uhid\x00', 0x400000002, 0x0)
r2 = syz_open_dev$usb(&(0x7f0000000140)='/dev/bus/usb/00#/00#\x00', 0x1ff, 0x20000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000100)='selinux[\x00', r2}, 0x10)
setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.origin\x00', &(0x7f00000000c0)='^keyring\x00', 0x9, 0x2)
write$UHID_CREATE(r1, &(0x7f0000001080)={0x0, 'syz1\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000000)=""/11, 0xb}, 0x120)

08:04:52 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)
setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0xc4, 0x4)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
getpgrp(0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000200)={@mcast2})
setsockopt$RDS_CONG_MONITOR(0xffffffffffffffff, 0x114, 0x6, &(0x7f0000000280), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu/syz1\x00', 0x1ff)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000040)={<r2=>0x0, @in6={{0xa, 0x4e20, 0x5, @empty, 0x81}}, 0x80, 0x8000}, &(0x7f0000000180)=0x90)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000300)={r2, @in={{0x2, 0x4e24, @broadcast}}}, 0x84)
fstat(r0, &(0x7f0000000100))
unshare(0x40000000)

08:04:52 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x80000000, 0x2, 0xff, 0xe, 0x4, 0x10001}, 0x20)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000100)={{0xa, 0x4e21, 0x81, @dev={0xfe, 0x80, [], 0x10}, 0xa5d}, {0xa, 0x4e22, 0x352ddbdb, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x1000}, 0x5, [0x5, 0x0, 0x7, 0x1000, 0x47be, 0x7be, 0x8, 0x104d2678]}, 0x5c)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))

[ 1165.110872][T12850] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[ 1165.235438][T12853] IPVS: ftp: loaded support on port[0] = 21
08:04:52 executing program 3:
r0 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x3f, 0x40)
r1 = userfaultfd(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000140)={0x7ff, 0x7, 0x1000})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
read(r1, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:52 executing program 0:
mmap(&(0x7f0000000000/0x709000)=nil, 0x709000, 0x0, 0x44031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x5, 0x200000)
getdents64(r0, &(0x7f0000000100)=""/180, 0xb4)
r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x2080, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000040)={{0x20000000000000, 0xfffffffffffffff7}, {0xb1ba, 0xfffffffffffffffa}, 0x4b0fa44e, 0x6, 0x86f})

08:04:52 executing program 2:
r0 = syz_open_dev$video(&(0x7f0000000100)='/dev/video#\x00', 0x8, 0x800)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000140)={0x10d, 0x0, 0x2025, 0x1, 0x9, 0xbb9, 0xf92})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001d80)={'veth1\x00', <r2=>0x0})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, r2}, 0x9)
setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f00000000c0)={@loopback, r2}, 0x14)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x4000, 0x0)
r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000280)='fou\x00')
sendmsg$FOU_CMD_GET(r3, &(0x7f0000000340)={&(0x7f0000000200), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, r4, 0x800, 0x70bd27, 0x25dfdbfc, {}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0xae}, @FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_TYPE={0x8, 0x4, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4048880}, 0x20004880)
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000040)={'IDLETIMER\x00'}, &(0x7f0000000180)=0x1e)
r5 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vfio/vfio\x00', 0x40000, 0x0)
ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8936, &(0x7f0000000080)={@dev={0xfe, 0x80, [], 0x1b}, 0x7a, r2})

[ 1165.559696][T13123] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1165.580336][T13123] CPU: 0 PID: 13123 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1165.589374][T13123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1165.589381][T13123] Call Trace:
[ 1165.589404][T13123]  dump_stack+0x172/0x1f0
[ 1165.589430][T13123]  handle_userfault.cold+0x41/0x5d
[ 1165.589447][T13123]  ? __lock_acquire+0x548/0x3fb0
[ 1165.589473][T13123]  ? mark_held_locks+0xa4/0xf0
[ 1165.602808][T13123]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
08:04:52 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x1, 0xa, 0x100000001, 0x8000000001}, 0x2c)
r0 = bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x10000, 0x0, 0x820005, 0x0}, 0xffffffffffffffda)
bpf$MAP_CREATE(0x4, &(0x7f0000000040)={0x3, 0x0, 0x740000, 0x0, 0x20820000, r0}, 0x2c)

[ 1165.602828][T13123]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1165.602843][T13123]  ? find_held_lock+0x35/0x130
[ 1165.602864][T13123]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1165.617223][T13123]  ? kasan_check_write+0x14/0x20
[ 1165.617243][T13123]  ? lock_downgrade+0x880/0x880
[ 1165.617264][T13123]  ? kasan_check_read+0x11/0x20
[ 1165.627308][T13123]  ? do_raw_spin_unlock+0x57/0x270
[ 1165.627330][T13123]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1165.627351][T13123]  ? kasan_check_read+0x11/0x20
[ 1165.638075][T13123]  ? __thp_get_unmapped_area+0x190/0x190
[ 1165.638089][T13123]  ? pmd_val+0x100/0x100
[ 1165.638104][T13123]  ? __lock_acquire+0x548/0x3fb0
[ 1165.638118][T13123]  ? __kernel_text_address+0xd/0x40
[ 1165.638138][T13123]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1165.638160][T13123]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1165.638196][T13123]  ? find_held_lock+0x35/0x130
[ 1165.654132][T13123]  ? handle_mm_fault+0x322/0xb30
[ 1165.654159][T13123]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1165.654195][T13123]  ? kasan_check_read+0x11/0x20
[ 1165.654220][T13123]  handle_mm_fault+0x43f/0xb30
[ 1165.663900][T13123]  __get_user_pages+0x7b6/0x1a40
[ 1165.663927][T13123]  ? follow_page_mask+0x19a0/0x19a0
[ 1165.663944][T13123]  ? get_user_pages_remote+0x17d/0x440
[ 1165.663969][T13123]  get_user_pages_remote+0x1a3/0x440
[ 1165.663996][T13123]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1165.664037][T13123]  ? alloc_vmap_area.cold+0x24/0x24
[ 1165.690122][T13123]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1165.690138][T13123]  ? _copy_from_user+0xdd/0x150
[ 1165.690157][T13123]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1165.690192][T13123]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1165.690218][T13123]  process_vm_rw+0x21f/0x240
[ 1165.700330][T13123]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1165.700344][T13123]  ? __might_fault+0x12b/0x1e0
[ 1165.700385][T13123]  ? kasan_check_read+0x11/0x20
[ 1165.700406][T13123]  ? _copy_to_user+0xc9/0x120
[ 1165.731752][T13123]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1165.731772][T13123]  ? nsecs_to_jiffies+0x30/0x30
[ 1165.731798][T13123]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1165.731819][T13123]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1165.741492][T13123]  ? do_syscall_64+0x26/0x610
[ 1165.741514][T13123]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1165.741534][T13123]  do_syscall_64+0x103/0x610
[ 1165.741557][T13123]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1165.741570][T13123] RIP: 0033:0x458209
08:04:52 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3b2, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:52 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x341000, 0x0)
ioctl$KVM_SET_NESTED_STATE(r0, 0x4080aebf, &(0x7f00000001c0)={0x1, 0x0, 0x2080, {0x7002, 0x5000, 0x2}, [], "c6035d949de71908cd6d68b885fa2f5937306a05a4303239f7a069652fa5dc4543de396e364d35598e53ad8ce01118a5d09a6eb19e34cc1d1aff8cf46bc1723ba8de4052ebae060e1e5d61c01dbf4429fe903bdf908a18fce378809cbb681e3e2b13a64647aba7b76c887aef8d1d5eaa9699aa27cf9b439e0fa45bceb5116a3d063d89a451d1fff529af99f639f25bdbb9bc13224eaaeca3afae96ccc20de3d64ce170cc72c0f3783c4d24e8fbe524d80850ed3d8d3f636a5e802ce69115f4b4b681016c10e09f0eccada84dfe8fbe3db0b3286c23f32cddcccc31e1e4cc1f4ae3b5ee85029b82f933d27eba89e909e85c3256c8827593f9d67567a064ca10e9696851afd6783b8113508ed2d9858384d669a2b7af173f78a73c254ba77efcf6632d9493c7ee2f8ec1619d1278a5f6f247f482981ea856d2938fcec4ef4e4ba1453c82389b4d4e125176ee63f4de8e1b7917c1f259da92fcfd73780c8980bb491a5b717377cdb6ccd5430b87eb0872e6acc65ccec6eb05c6d465b92ba331093f978f36549bd46264300890571c1bc338b34588008aa48988933fed277d61a8fcffb4c42117791d07eff51ca8190a1b380e65ae3dc935fc77c981d836d27f585d3afad09defb1fe6501bbe8910bb2bb56b010812534f014c9ddd822900f818a88691984b0254993e0cec6d719720e2524da8a1df20fb83e9db65f2e718286dedc84968288b476292ec87e186b3201a7994e9ba422b6e33fc7f474e051abe86d98f34ef85807eed67745400807f77302d06aadfce6c91e9e0a313850ba5edd1bba37952e1e4fcd80f1fc840f75b3596bbc89c50846c07d300051442b906cf67c551ed6ac5ed972e36069662bfe06b8daf379856016a3a907ad6c3fa93a2dc84db6c4e535931bfb45931a82f19a3dbbd7dada0640d58967f17d64bcfcfb188f576b17f49774af91b3a8e6f4ff0ae6c18ba78c3a9354ac2f76007f6f92d8103849464cb4acf6e870ed680043716654302aeff7e4219f3933500d0a5d8a9da376efc19439b4d2f733e53e7877ce5c826b5c43457c3bd25b12ec438f6493992756e572054a5790b302317aeadb472a57a75fe62d72d40fc718e087aff464a98126b55d1b5008b50355f20c759cc1dfe16a251d4c1cbb1b4c33cba2447621ecd317bde6865832ff814c18d1ddaff2d9a368c677ed8e5db194e3c7576664247440c343d525db75dfbffcfe4451df170415ef7b52bec18e5c7618eb8a9d8fb1d37d03af3e200e182804d338c90e0a5122df23ba94ab477d533b71cdd822e846e0e9885c1d175c3edc23d77a43f45220f1daa7aad183d8e7f14f428db01c5e00898ba20aa602fdae0b2262fb4b448af67de0831ef50da88272e1ee37c1cdb96e14975d70c17e2e39bc749b9780169ab4a6b966aea3071c3a3f7781bc787d659e4bbe2b675bf7099e524c7819dc38ab0cada4428ef3d8b48820c6af7afafbc3111aa9b00599e1fe0fc3c1c57de2429886705c3c7d656e9d753da6171ecfe4972dd1606bf28e37d0cce164df1499681b9094fbf93b9771a44b41b8c0eacf310c21756081454a0e70161227be1190d57fcf5775e75d9170cafd2cc3ffc3f2b83231c2ec83876ea1b71a954a4d9030caa597a84680d419eb1df4e246a3de69015fc4af00fadef22ada66cd21bc62ca5d325ef9395444e5e320a3ff5954d8cb871fe38ce757fcc8a82f37c06332a3f716475d07426695842b631351b52a10688aeec523462d3ae3db423b9e6d27815143be54accf6f384ac7bf03c2246619fb3d1395cd3511d1c6989f90e9d12a29a26d7d70850d49d3f4968b5e4a82c279994bcb831de5ed89dba884aa7191b3187b3e6d29654ad39ffc7d039e48f711d3873fcc3629e64bfd119f22706c718b569747b2f4b03cbdaf370b72a328f35122a3fefcb5b7ebe06b41e2c834fe44e93ad4aa7936791cc06872bce380dd2a0846c0843a29507e2b4579e1797f0181b50b398f7a12132c12a1d48a5dd266c916efd4a7ec926bc003675a721d1d762e5f75bb19f3396818c672cc80888bfbb0e913c92e82a69ebd7c2969c058ff62fb58982aab9f23f97b62a9bb89368caed94fbc4086c81ada0af1a4b693448b1825edf31f72dc10a44701c2e52b5996770f3b00a43a8a9f3d342b8c4fa7069b279a9fa90d4e5d047075e0e2559e7f90df2b5fdb45016d06fc2718f0d6f1449681ac7e0ebe24424964a003e396842bf68c5fc875e534ad81c1c3ba941e2bb7c012e48e92ea22f373ef9095ee052eda62e7ed2e04d4fce5feb2dba419a741a9c5efa10d2d5b4f0aa959f97ad443f56be9faaebfe43598bb93df2921594970cca741a3a8ea88580baa858dfb91b31657b62518a085efd1bc4b727f1fa1d8a4573e3745ddaf58f037818d64fb9bd8febd5fd537182ea6c73b699aea5d10803c969bb3b9c179e949fed91c861a0e9a33be84c261bf4b515cdd62107c03d04b72a4ccd7fb698086e51d70605adf0b8fd38726d2bb0457f47e368c109f26f3edbf9127b83372065ed69883d99178116f6f4b05f57b736a312d31eaebc771a88b84d63ff412ce56f28d5f744862bd9d1b3905964cabbce699ace9668f92dae6bed9c0c964b4e11ab8a488595130fb055cde2e79e478fd89cffdb7c1a901625b87a4bfc3331217d171516d6a0cfcaf98af32a0f348b21ba67926d3288e4683557cc8a0dc7aadc63a22a3c221deb2c91ed74d0e149e53773029558e3591d18b0d30d686c327b16f37cca2c56c88302e57ac4b477f31896881ae54a5ef6c6ed03c7ea132bca3bf71edd920fdb4865a52d0cd64bc74c6bbff82fe24724f5747cb94f013b3bf06786df9dacb6ef08f231ed75ba8450a95edea3e277378883164c2397dacf0fe543130bf71e8b79fa4d612f374754b8cd7a2473c35e07d374056bbe2d2c86fad014d149d16d0502b654e712c32c111841943ce0fddbaa83a7f3a0673305fc51ebc399edb5975bc8eae9054c011186f37d9a0b585544244c68d7dbd4bad627a551484210bd82c01283689e3b7fa06359fef93ed5cd2df586a9224ec858af4c921a0c6c1d9cabc6f37c891291ad9a8bf2d3b4322ac6fcf2483e49947e7498f0d21f92ce561521dc97ec527bf903b0a396eb155b64334b2a077482d49d598551137213eb6c4d1b9fdfee9e6421432e98a2d6b63a4a78695b4dddea8b49c40990bfd186ea688db0acef8dc53d87faa47c9d9d8a6fd5cca9717e16faec4f67cb2e77c50739d432e5ff405ed2c009a383b0cc6356d60d787ac52518901e7932f0a10fe46991c308533ba9abd5b645616904d310fc09965f9f33261a7691fbc9ed68de87f82c355f5fb2b09955e459646b88597d9c09192599001cc2ed5844280a33f286a4ba6135cedc61d58068e2cbbf8676fd187ee52380916edefa8326f3cd04629b1bee9dfea3253a1cc50c107bf8f8b15cc5cad5b86b422ffcaa378e8f3997124e11c5edb51f82875b4e09ea3c57808f299f7b6b45e0adf737f27834735face6c80c8262895a21dad73f7c5f908384959ea3ce530eba4e18b456c3bbfdcd2c505db329dc64a48b6938fa7c78ce94faea9518f9fd0de693f60c967600955310bf18a47dec9ff8f03a0119e067042c4321805b8f54b97d44e6074be697e3c6bf8af85a75b3af88561d8abdbd2b5f7ec7fd6ba461b1a54f78212e289ef5569ca5053a97cb9733168e3c284c5417a65e3e023d66ac1ebc86d845c6d5797c34337b7dac90a80027b112fa6a340c8f8b7cb3017cab187dbf4da24077313e960f42aa568bde525052389347c3b61d464304d555f6c7fcec79a926cd2dbd3c3f16784ae474f6a3806d04242d1901f638a0163d04ac496a2b21e95beb6f2712c4b0640ce1d76bb028ee1603316fc63de7d4d6a99beff6e25f907ed0cafd15f7d4fedd25ae920ac16afec5adca91d6f8715679b000149fdde0c966ecc9b2cd78f111bf670a7d636f1f1eea7e8048789f89c148e9fbd46408b127ca0064ccd5a749fc653fc5357bc7dc60495d23747b7d29b68c79863132a4ee1cfac6240816077124e02ea974560cef72523ef5f66ba099a9d33a328faa7d9830a4949537049bcbe2d4c60309673adef4abc7371886ef1d0ff4ffded482ae207afcd62b8a88ad3f803c8c976b0e6e20d0faf74e262d86a00f1415cb529564a1ef856ebdce65a1e723bbe36d5e230d5c3c2c59b013021690aaaed1c8707e0fd9296d20f71a61461e32e408b3b966ba9fe9fe4b216bd819de7446daf9fa4650e3b98f84d22be2fd21a4e93934b7de94e102b5a8fd80093673cdf78e72646cd079c640f59a64d96587aaed9bfe11ea7d93004bfe4807ccb7a558924e80a9f8ceb50fccd1b672c0ad02d97e2fb20856d6820b4994d7a4393537cd810ade6903cec686be52118a48276af6e2dcc7395b0f09829853ff2e748ec6162fdac3b27e431ad606483b9c7c7c45ecca8242d70d871d9130ee95af177b9fe82606565e98bbf45c4991de730f2ed2d3bf8ff8394a364da8d11a50e947a40cbe4829f83bdcc01360492c1566b522dd3ca41950632e3ca7c86dc186fa227d483561ce20c3fa31b9d3046210958c8e5ac4261c7e69288e278a3c679b3b16f0c19ae5e5855ed1e479ed8c4ec262aa6e29212ead66d84c96a32c5cc75898492940368a3f300cb4bb0e8a2982d6bacc485cec18dc037917ed3d8dfa6e0eac5b02159de7f238478c15af8c5c375d7f2a817809557415ec5a21accb02fe417cb0a881d9831a1fb8eab67700dc0491fd9c0e3414e32f9cd93a6ecd9c2488f3e872b98de4b6e2f167174bd8607f5216cc977590757d3a5827118d61f5449690b42c063d8ed6b666b6efbebed791a5ab7b5661680527eb3bd226652c3da96d1649e028d55f4d45b12ade2843386f051266e0c8d8ecdce19e4e48bc3265af4f1281174edca076d6a90ad0c67d5c5d02f89b85ee602d0b64d797fed93655aa3b8aa784a99e4fb3f4e0f1174909245067e213d856710e178d5083ccf2b564d4da64efe94a6d3d46f9f00c4cfe86388b0a95be3a205cfc29e79d530a00e73ae3e995e8c16ce2fbbde15c8178e106aabee1787fe27944f9a6abbbaef22c0fadd78da325890905bee45f7e6c4d4deb2c5fe52a2479d25d7b12b7c1ee5dcbb93cb9d9949b241fdc3ba36583f9a9a4250e81ceedcd5dfa646b70b504ebe4ba4c245ec769d3744cce32b40dd440e5c68d3ed6fb0951612edfabbe98cecd9d71ba086c6949e4a08e2ee90ff6544fa0ecebda9fbaf75e715b2fc83c148f1c29e7badb9c6e3396f5b6def8c790940c91638248adeaeb9efd5d3b9732b9bdb691ee57ae4ae2a2100725d6862361c36043e3257ff778be89c6577d4dcfbc3e2b3764e1da3eb15139c7d504b9280fc92d53d0630e80fa312a12c6870156a75d2e38e4b6f3fa1204b83b8265ceba4aab8784c3d3fbad048f22772c3119083c5a850fa07b43024a2c9f70b4043aef2bfa8d836c099bec99e04d93b22a345c5b27caf2e06a37f3a87d635dba08d7ba42c476a96c55e2bf808460d3810bf517a6de9bd6e7222f7c906b48df73985c6db8fc80f19436a85bbc468454fc5613b6c9fa3e629291802d1877ba09f30852c5de51a9740472961cfe56e5f2e4931218acdf8eae6e79105393a36a17ff4fd6ab2d8ba65802483a3da32acb0c862c4c232fc7b59a0358d6df4e9f07953aec125d99709d6540c5e943e66df8717f3b0e716f33e9d57020ceed0db29eb2aba6ca9380d70c537a9d50ef412841f290c1d19", "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"})
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x400240, 0x100)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_emit_ethernet(0x4a, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa0901359b1dfc00aafe80000000000000000000000000dc886400aa00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], 0x0)

[ 1165.741585][T13123] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1165.741594][T13123] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1165.741609][T13123] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1165.741618][T13123] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d93
[ 1165.741627][T13123] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1165.741643][T13123] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1165.763148][T13123] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:53 executing program 0:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x10000, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x10001)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000040)={0x10001, 0x209, 0x10001, 0x0, <r1=>0x0}, &(0x7f0000000080)=0x10)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)={r1, 0x8001, 0x7, [0x3f, 0x3ad03b7a, 0x7fffffff, 0x30, 0x4, 0x81, 0x5]}, 0x16)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000100)={r1, 0x6}, &(0x7f0000000140)=0x8)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000180)="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")
write$P9_RAUTH(r0, &(0x7f0000000280)={0x14, 0x67, 0x1, {0x80, 0x1, 0x5}}, 0x14)
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f00000002c0)={'netdevsim0\x00', {0x2, 0x4e23, @local}})
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000300)=0x6)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000340)={0x41, 0x1, 0x3}, 0x10)
r2 = geteuid()
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000380)={@loopback, @empty, 0x0, 0x3, [@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @multicast1]}, 0x1c)
r3 = syz_open_dev$vcsa(&(0x7f00000003c0)='/dev/vcsa#\x00', 0x3, 0x401)
r4 = accept4$ax25(r0, &(0x7f0000000400)={{0x3, @null}, [@bcast, @null, @remote, @remote, @remote, @default, @bcast]}, &(0x7f0000000480)=0x48, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
socket$bt_hidp(0x1f, 0x3, 0x6)
write$cgroup_subtree(r0, &(0x7f00000004c0)={[{0x2b, 'rdma'}, {0x2f, 'cpu'}]}, 0xb)
removexattr(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)=@known='trusted.overlay.metacopy\x00')
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000580)=0xffffffffffff5f6f)
ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f00000005c0)={0x17, 0x80000000, 0x400, 0xffff})
connect$vsock_dgram(r0, &(0x7f0000000600)={0x28, 0x0, 0x2710, @my=0x0}, 0x10)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000640)='/dev/rtc0\x00', 0x80041, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)='trusted.overlay.origin\x00', &(0x7f0000000700)='y\x00', 0x2, 0x3)
getsockopt(r4, 0x80000001, 0x1, &(0x7f0000000740)=""/72, &(0x7f00000007c0)=0x48)
bind$netrom(r0, &(0x7f0000000800)={{0x3, @bcast, 0x6}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
getresgid(&(0x7f0000000880), &(0x7f00000008c0)=<r5=>0x0, &(0x7f0000000900))
write$FUSE_ENTRY(r3, &(0x7f0000000940)={0x90, 0xfffffffffffffff5, 0x1, {0x0, 0x2, 0x0, 0x1f, 0x20, 0x20000000, {0x0, 0x4, 0x8, 0xfffffffffffff783, 0x8, 0xfa, 0x3, 0x20, 0x20, 0x5bbcdf7c, 0x9, r2, r5, 0xfffffffffffffffc, 0x2}}}, 0x90)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000a00)={0x8, 0x6, 0x8209, 0x2, 0x10000, 0x521, 0xfffffffffffffc01, 0x1, r1}, &(0x7f0000000a40)=0x20)

08:04:53 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x0, 0x0)
ioctl$RTC_VL_READ(r3, 0x80047013, &(0x7f0000000180))
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:53 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x84)
r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x82e5, 0x101000)
ioctl$VT_RELDISP(r1, 0x5605)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0xc100)
ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0x3)
write$binfmt_aout(r0, &(0x7f0000000b00)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x8dffd802}}, 0xfdef)

08:04:53 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x1, 0x2)
openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x40000, 0x0)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:04:53 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070")
unshare(0x4000400)
r1 = socket(0x22, 0x2, 0x2)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000180)={0xbe1a, 0xf9f9, 0x5, 0x0, 0x0, [{r0, 0x0, 0xfffffffffffffffc}, {r1, 0x0, 0x6}, {r0, 0x0, 0x29318000000}, {r1, 0x0, 0x7a8}, {r1, 0x0, 0x1}]})
getrusage(0xffffffffffffffff, &(0x7f0000000080))
ioctl$IMGETDEVINFO(r1, 0x80044942, &(0x7f0000000000))
keyctl$set_reqkey_keyring(0xe, 0x0)

08:04:53 executing program 0:
openat$cachefiles(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x7)
ioctl$KDSETLED(r0, 0x8925, 0x70a000)
syz_genetlink_get_family_id$fou(0x0)

08:04:53 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fc)
creat(&(0x7f0000000300)='./file0\x00', 0x2)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000340)={{&(0x7f0000119000/0x4000)=nil, 0x4000}, 0x1})
r2 = gettid()
ptrace$peek(0x1, r2, &(0x7f0000000100))
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x10000, 0x0)
ioctl$TIOCGLCKTRMIOS(r3, 0x5456, &(0x7f00000001c0)={0x9, 0x7, 0x40, 0x1, 0x12, 0x13, 0x10000, 0x8000, 0x80, 0x6, 0x4, 0x5})
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240)='TIPC\x00')
sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)={0x68, r4, 0x110, 0x70bd2b, 0x25dfdbfc, {{}, 0x0, 0x4107, 0x0, {0x4c, 0x18, {0x8, @link='broadcast-link\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x1)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1166.260236][T13777] sp0: Synchronizing with TNC
08:04:53 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x7}, 0x1c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f00000024c0)=[{&(0x7f0000000440)="6ad5c1067a01607d87e431545784fee394da9ee8ea37987c3cbfde9a622b52bd4b4e420184d2ff6e", 0x28}], 0x1)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @remote, 0x1267}, 0x1c)

08:04:53 executing program 1:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x20001, 0x0)
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x100)
ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000100)=r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000002a000100000000007b91641801000000"], 0x14}}, 0x0)
close(r2)

08:04:53 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x24c, 0x22000)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [{0x340, 0x0, 0x8000}, {0xaf4, 0x0, 0x4}, {0x8f4, 0x0, 0x2}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0x12, 0x6, 0x4, 0x80000000014e, 0x1}, 0x394)
r2 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xffffffffffffbb80, 0x482002)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r2, 0x118, 0x1, &(0x7f0000000040)=0xed, 0x4)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f0000000240)={0x2, 0x7, 0x8, 0x0, 0x0, [], [], [], 0xff, 0x8})
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000100)={r1, &(0x7f0000000000), 0x0}, 0x18)

08:04:53 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3b9, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:53 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x7}, 0x1c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f00000024c0)=[{&(0x7f0000000440)="6ad5c1067a01607d87e431545784fee394da9ee8ea37987c3cbfde9a622b52bd4b4e420184d2ff6e", 0x28}], 0x1)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @remote, 0x1267}, 0x1c)

08:04:53 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x0, 0x2)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000140)={<r3=>0x0, 0xad, "24e86c0c1da04eeb601d13b796f991e29d5cdcc18a695fd17ee90e50f930402b6bb576ef6b2d184ba5c11f2eaf6436fcf80c86a77e3241dd74eac47cea418016aa8c4b6ec0a76693f193e3c8e635b45106f4913aa9db43622443dd907b6833c82d6190a86313f441c8519b2527925e60eb87e0694b0a2c57c6cbef85a056f5b122bb086f7fbde36c6eaad11b4a8237b362f85a5f7a5c47beb0e8d2e36283b1306e77a9937c3935241a9f815fa6"}, &(0x7f00000000c0)=0xb5)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000240)={r3, 0x3}, 0x8)
close(r0)
socket$rxrpc(0x21, 0x2, 0xa)
io_setup(0x8, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000600)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x0, r0, 0x0}])

08:04:53 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$audion(&(0x7f00000018c0)='/dev/audio#\x00', 0x4, 0x402801)
bind$bt_l2cap(r2, &(0x7f0000001900)={0x1f, 0x0, {0x6, 0x0, 0x53, 0xa000000, 0xbc, 0x100000001}, 0x9, 0x9}, 0xe)
sendmsg$nl_route(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x4c, 0x10, 0xf758d37fc4173455, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x18, 0x2, [@IFLA_GRE_REMOTE={0x14, 0x7, @local}]}}}]}, 0x4c}}, 0x0)

08:04:54 executing program 1:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x1012, r0, 0x0)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r1, 0x28, 0x2, 0x0, 0x0)
write$P9_RWALK(r0, &(0x7f0000000080)=ANY=[], 0x44)
perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap$binder(&(0x7f0000005000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x5, 0x1, 0x7})
clock_gettime(0x0, &(0x7f0000000080)={<r2=>0x0, <r3=>0x0})
ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f00000000c0)={0x3, 0x0, 0x4, 0x100000, {r2, r3/1000+10000}, {0x3, 0xc, 0x7, 0x9, 0x2, 0x100000001, "bdbe292c"}, 0x1, 0x4, @userptr=0x10001, 0x4})

08:04:54 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x8000, &(0x7f0000000180)="0adc1f123c12a41d88b07056c057bfe2e5d0f3a8795ffff1562500000000163175240688640900000000000000a3dfbc7b75fd1e4648566514486a5fb4e0657f26fb01a15dd04fdc52d1367ab22d60470c552b3a9f48e722a8b6cea1accaf142464fe5774307d6e32e84a5246943ac18cf7054f5710101d435ab049ac395ef4c07")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
sendto$llc(r1, &(0x7f0000000000)="41c4c174ca3324ce5d3ac0e6a3b565419346be489aea1985d733d6ca89436780b51f7648be71fabfcea5525ac681d76d69b748a6bf88d17852d46b92aed80b096b", 0x41, 0x1, &(0x7f00000000c0)={0x1a, 0x101, 0x8, 0x9, 0x2, 0xb8, @link_local}, 0x10)

08:04:54 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0x75, &(0x7f0000000100)={0x3f00}, 0x8)
close(0xffffffffffffffff)
openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x40000, 0x0)

08:04:54 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0)
sysinfo(&(0x7f00000007c0)=""/154)
ioctl$BLKPG(r0, 0x1269, &(0x7f00000006c0)={0x1, 0x0, 0x0, &(0x7f0000000800)})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, 0x0, 0x0)
ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000000))
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x10800, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r2, 0x40bc5311, &(0x7f0000000240)={0x6, 0x1, 'client0\x00', 0x6, "ed4663e95e38be80", "7084a999092e11425b23d448c8eaa2887ea1154164307e0971d4abc52fe053b7", 0x57, 0x7})
mmap(&(0x7f000098f000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
request_key(0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000140)='encrypted\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r0, 0x80045301, &(0x7f0000000040))
openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x102, 0x0)

08:04:54 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:54 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup\x00', 0x200002, 0x0)
fchdir(r0)
mkdir(&(0x7f0000000140)='./file0\x00', 0xfffffffffffffffe)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f0000000400)='./file0\x00')
fstat(r2, &(0x7f0000000180))
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000040)='trusted.overlay.opaque\x00', &(0x7f00000000c0)='y\x00', 0x2, 0x2)
write$cgroup_pid(r2, 0x0, 0x0)

08:04:54 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x2}, 0xffffffffffffffb8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @remote, 0xb}, 0x1c)
syz_emit_ethernet(0x140, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6050a09c00081100fe8000000000000000000000000000bbfe8000000000000000000000000000aa4e234e200008907843115da90db8e5339beb4a70702bc9461501ac5e20ab5239bd012cf717986a35cecdd52373554fd51287f80c9905a4cfcf6a3324e319cc696b3bec0945e13718840f26588bef4320de0648cf60c1f772c938c40ae193218a5da1aa4610c4902eaa58fd402b7eda5bb6167eca9f3a06c1ca9514c1d3cef081c0f90b7ab2e132dccd34719fd804aab800000000000000000000000000000000"], 0x0)

08:04:54 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000001980)=""/171, &(0x7f0000001a40)=0xab)
recvmsg(r0, &(0x7f00000007c0)={&(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000001880)=[{&(0x7f0000000880)=""/4096, 0x1000}, {&(0x7f0000000140)=""/252, 0xfc}, {&(0x7f0000000000)=""/2, 0x2}, {&(0x7f0000000240)=""/139, 0x8b}, {&(0x7f0000000300)=""/173, 0xad}, {&(0x7f00000003c0)=""/249, 0xf9}, {&(0x7f00000004c0)=""/216, 0xd8}, {&(0x7f00000005c0)=""/142, 0x8e}, {&(0x7f0000000680)=""/240, 0xf0}, {&(0x7f0000000780)=""/40, 0x28}], 0xa}, 0x2040)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000800)={'ipvs\x00'}, &(0x7f0000001940)=0x1e)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x3})

[ 1167.439723][T14692] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1167.450067][T14692] CPU: 1 PID: 14692 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1167.459100][T14692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1167.469156][T14692] Call Trace:
[ 1167.472482][T14692]  dump_stack+0x172/0x1f0
[ 1167.476843][T14692]  handle_userfault.cold+0x41/0x5d
[ 1167.481982][T14692]  ? __lockdep_free_key_range+0x120/0x120
[ 1167.487737][T14692]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1167.493041][T14692]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1167.499029][T14692]  ? find_held_lock+0x35/0x130
[ 1167.503809][T14692]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1167.509814][T14692]  ? kasan_check_write+0x14/0x20
[ 1167.514800][T14692]  ? lock_downgrade+0x880/0x880
[ 1167.519667][T14692]  ? kasan_check_read+0x11/0x20
[ 1167.524530][T14692]  ? do_raw_spin_unlock+0x57/0x270
[ 1167.529656][T14692]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1167.535493][T14692]  ? kasan_check_read+0x11/0x20
[ 1167.540364][T14692]  ? __thp_get_unmapped_area+0x190/0x190
[ 1167.546007][T14692]  ? pmd_val+0x100/0x100
[ 1167.550263][T14692]  ? perf_trace_lock+0xeb/0x510
[ 1167.555133][T14692]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1167.560268][T14692]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1167.565822][T14692]  ? find_held_lock+0x35/0x130
[ 1167.570595][T14692]  ? handle_mm_fault+0x322/0xb30
[ 1167.575561][T14692]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1167.581820][T14692]  ? kasan_check_read+0x11/0x20
[ 1167.586677][T14692]  handle_mm_fault+0x43f/0xb30
[ 1167.591453][T14692]  __get_user_pages+0x7b6/0x1a40
[ 1167.596402][T14692]  ? follow_page_mask+0x19a0/0x19a0
[ 1167.601603][T14692]  ? get_user_pages_remote+0x17d/0x440
[ 1167.607074][T14692]  get_user_pages_remote+0x1a3/0x440
[ 1167.612386][T14692]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1167.618044][T14692]  ? alloc_vmap_area.cold+0x24/0x24
[ 1167.623252][T14692]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1167.629489][T14692]  ? _copy_from_user+0xdd/0x150
[ 1167.634343][T14692]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1167.640062][T14692]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1167.645525][T14692]  ? __lockdep_free_key_range+0x120/0x120
[ 1167.651271][T14692]  process_vm_rw+0x21f/0x240
[ 1167.655868][T14692]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1167.661669][T14692]  ? __might_fault+0x12b/0x1e0
[ 1167.666471][T14692]  ? kasan_check_read+0x11/0x20
[ 1167.671321][T14692]  ? _copy_to_user+0xc9/0x120
[ 1167.676001][T14692]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1167.682243][T14692]  ? nsecs_to_jiffies+0x30/0x30
[ 1167.687109][T14692]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1167.693144][T14692]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1167.698610][T14692]  ? do_syscall_64+0x26/0x610
[ 1167.703296][T14692]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1167.711750][T14692]  do_syscall_64+0x103/0x610
[ 1167.716359][T14692]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1167.722250][T14692] RIP: 0033:0x458209
[ 1167.726142][T14692] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1167.745840][T14692] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1167.754257][T14692] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1167.762243][T14692] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001d9f
[ 1167.770219][T14692] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1167.778200][T14692] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1167.786193][T14692] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:55 executing program 0:
socketpair$unix(0x1, 0xfffffffffffffffd, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf6\x17s\'C\xe3\x97\xb8\x9f&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, 0xfffffffffffffffc}, 0xa)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x12, r1, 0x0)
ioctl$FS_IOC_GETFLAGS(r1, 0xc020660b, &(0x7f0000000000))

08:04:55 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x3d0, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:55 executing program 1:
r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x8100, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000040)={0x2, '4s'}, 0x3)
ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000080)={0x0, 0x0, [0x8, 0x2, 0x6, 0x80]})
clone(0x3ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0)
socket$inet_udp(0x2, 0x2, 0x0)

08:04:55 executing program 5:
getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={<r0=>0x0}, &(0x7f00000000c0)=0xc)
ptrace$setregset(0x4205, r0, 0x5, &(0x7f0000000140)={&(0x7f0000000100)="be22ced266f4a343ced439e249ae4f4be0c6ea32c748974a629e30ec53e3ce9fbc1f798e2ca29c7686cb74c87cab8dacf0f0a2b79572b3e82c8306", 0x3b})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000180)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000340)='/dev/cec#\x00', 0x1, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))

08:04:55 executing program 2:
r0 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00')
sendmsg$TIPC_NL_SOCK_GET(r0, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r1, @ANYBLOB="040726bd7000fbdbdf270225060000000c000900080002006a0700002400090008000100ff0300000800020000000000080002000600000008000200020000001c0007000c000400ffffff7f000000000c00030001000000000000001400010008000300b86fffff08000300040000000400060024000600080001000080000008000100ff7f000004000200040002000400020004000200"], 0x9c}, 0x1, 0x0, 0x0, 0x7d}, 0x40000)
sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="6500000023b2ad2adf18862ac0620d7204a937c8451ab4a19d5860873b22d057862e601275e4e96a7a33536306f281ebdac63626", @ANYRES16=r1, @ANYBLOB="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"], 0x358}}, 0x8800)
r2 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
close(r0)
prctl$PR_GET_DUMPABLE(0x3)
seccomp(0x1, 0xa, &(0x7f0000000300)={0x1, &(0x7f0000000080)=[{0x10200000006, 0xfff, 0xfffffffffffffffe}]})
ioctl$TUNSETOFFLOAD(r2, 0x80082102, 0x400000)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000180)={r0, 0x0, 0x0, 0x9, 0x1})

08:04:55 executing program 0:
openat$ion(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ion\x00', 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={<r0=>0x0, 0xffffffffffffff9c, 0x0, 0x9, &(0x7f0000000040)='/md5sum#\x00'}, 0x30)
r1 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x800000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2)
ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5)
sched_getaffinity(r0, 0xfffffff9, &(0x7f0000000240))
r3 = accept4$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000000c0)=0x14, 0x80800)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000001c0)={@ipv4={[], [], @rand_addr=0x200}, 0x7fffffff, r4})
r5 = getpid()
ioctl$TCXONC(r3, 0x540a, 0x2)
rt_tgsigqueueinfo(r5, r5, 0x16, &(0x7f0000000100)={0x26, 0x0, 0x300000000000000})
ptrace(0xffffffffffffffff, r5)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000200)=0x9, 0x4)
socket$bt_hidp(0x1f, 0x3, 0x6)
setsockopt$sock_void(r1, 0x1, 0x24, 0x0, 0x0)
setpriority(0x1, 0x0, 0x0)

[ 1168.228761][T15101] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1168.262342][T15101] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
08:04:55 executing program 1:
socketpair$unix(0x1, 0x810000000002, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0)
write$P9_RXATTRWALK(r1, &(0x7f00000000c0)={0xf, 0x1f, 0x1, 0x9}, 0xf)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0xfffffffffffffffe, 0xffffffffffffffff)
sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000180007041dfffd946f6105000a0a00001f00000000320800080016000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0)

08:04:55 executing program 2:
r0 = syz_open_dev$vcsn(&(0x7f0000004b00)='/dev/vcs#\x00', 0xff, 0x800)
mmap$perf(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x9113, r0, 0x0)
ioctl$VIDIOC_G_DV_TIMINGS(r0, 0xc0845658, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000900)={'gre0\x00', <r1=>0x0})
setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000940)={@multicast1, @remote, r1}, 0xc)
accept4$nfc_llcp(r0, 0x0, &(0x7f0000004c80), 0x80000)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000004b40)={'filter\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x15)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00')
r5 = dup2(r2, r2)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000004c40)={0x30, 0x5, 0x0, {0x0, 0x1, 0x2, 0xfffffffffffffc00}}, 0x30)
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000004bc0)=0x7, 0x4)
sendmmsg$nfc_llcp(r5, &(0x7f0000004900)=[{&(0x7f0000000180)={0x27, 0x0, 0x0, 0x2, 0x0, 0x9, "2123be86fa5bbdbf4798c7649b540ea7798a5f7d40c6c9378a788faf28ab0e02242eefa602dffde9c4a1817be1043b708d41d787150dca77a05df9ec8c4d0b", 0x4}, 0x60, &(0x7f0000000080)=[{&(0x7f0000000200)="0078dd5137a42e5f238517794116e975accd2b5a62515a817175ee26a34ea60886ea7199906a585b5ad15d806d88dc3ea6b82c21846d96da1265a98d55da3ec5eb8364b0fec109693916fb38c3f3c965e3f2ddf650baf5aa4ef7b7e2c26018e191a440bf2bbe", 0x66}, {&(0x7f0000000280)="f4931af6c966561c59d57e2b6156d85017ac30d4ec4b818ec8797cf07c1627b6444867d5768c793fdaae4bdc41c2ffbb18d593a95cefab201be9b8b122299b0d983e3c92c4e7fe74331d567542ee487cbe8d1ab4aa9d4552af20bbf4b2a88271846f32b76dd56404e2e8aa46b24ced243389945957af54724355ebd44f03f4c72974df4b45f442cd0ec077010b17a344f8c337fa4096feb93e6b61fbb7a3", 0x9e}], 0x2, &(0x7f0000000340)={0xc0, 0x88, 0x7fff, "11092a28fedfa7f1d3c30cd88ce727b08300a8336c63cf09d2ad8afce07db962877bcb2f4e7d7ab82e838076c0c178d534fbc66a16e3837d73ab5b07b0280757c58e63aace64e89b26c969b59b08038f0ee6a2a526889c1f16dd1f9a9b0d41fffa4216d6b358b0928c32280a72616aede4f6c06f5377fd047c44f7e7257966dfc4e50e34e33a9d2e3477a91d5472f054c45f98bdaf67dfe7e0d05fefce47c16ef7db00df457f7bec6b23319d70"}, 0xc0, 0x8000}, {&(0x7f0000000400)={0x27, 0x0, 0x0, 0x4, 0x2a9c, 0x1, "80357d28490e163f99237e3ba86dd26e49b45d1e43d35f4655dddf3ff40dbf7c0fe45ead0ffa38da8c06472b631b64851a2f1dda62e0f328577a5709c8f4ee", 0x4}, 0x60, &(0x7f0000000600)=[{&(0x7f0000000480)="3b9c88b49235b2a82f98d96f43ccf3974f0c78c182f5d214bca2b7638b4430cfe079624c0f84c4c286e873ae7dccf419115c7f8d7a3efbf3ed872fe5dd2ab2103e1582c76366e16967141b15ae3f6dbde6a6850ca6d269539d71a710d8", 0x5d}, {&(0x7f0000000500)="71cec29e82ee5a7bd1d3d5fd0453deba09e36a892a64a0ce4f474bde726121fddc8d0f3168400eba0ae7b46649a147f9b1f0930f06ec2dbb369fd4d99971b6d2794df745c4d04d455b458014b55216a4fef9bfcf80a16bd2b1fc7f65145144c4802b28b32996c1f8", 0x68}, {&(0x7f0000000580)="e4a9e8f612295cc3568a1f6cdef82cdc119cd81ac4deb4272b15f251d2a62ace88538e36a38c7e133b1f79cdd7a04be75025dfc54fbb0eaadc997c54a179b7bd2fd3ffc8d8b1aee0dd9f6685b69df6c14e4e8f12e8da1c1a38398300eab8009b7a", 0x61}], 0x3, 0x0, 0x0, 0x10}, {&(0x7f0000000640)={0x27, 0x1, 0x0, 0x7, 0x7, 0x4, "77e767899cd477eb1f81ecf8b9c6243e6f2d4d3482ecee21c907a19bdf31903b74b6e921e6e8b7597b78fe3ac1ba0c72e0eff204781dac347a982a8bb27896", 0x3b}, 0x60, &(0x7f00000008c0)=[{&(0x7f00000006c0)="4cfdd50e012e4392e9f7846c26a4dfdcebae6233a9c60db5afbc7e1931960e8b237326ae4487790795361d9348c9eee1d49e1807edf55ab52c4b41cb89b85501f8a384c582fb6cbd3eab57fe08fc4b624ffbcb170575463b0eae4bb2ad0ca29ae281c329db031212bdf9621d5ee6b19dc0ec645dcef97ceb87cefdc9f67d04801e804e2654c4a3f9705607a32b6e52dce7dc96", 0x93}, {&(0x7f0000000780)="aef9b3387506a1cdb12ae9fd3de8dd2917cafc72dd65e4e347be9d5372b59117daafc22b0c49000e295b70808fdf2a8f96217543bbb812183b043188a63442420ad7394f7a66f9d78114427e9fc0387970095996342670921097414786b0dbe3e08ca803895e2ca969a13540fa7aa2e08ec57c461e8ff31c650d1859a3a77754ccb539f9d0a2878f15ad9f8931508e2598e18aacc1d2f7eca0f1f6ac9d8a4f13d6c15273a97eb546a67bf106075916a80041699294e312826a469507a970f23e310c921744c9b5da76995a94c09b654ad08bbc23649ec9510a9c5ab1016494aeb5", 0xe1}, {&(0x7f0000000880)="0db4622266ddc67315fb1ec776604d6b77e6c009a76044740b6e9332bccfd582f3e0", 0x22}], 0x3, &(0x7f0000004cc0)=ANY=[@ANYBLOB="10100000000000000600000008000000d8c83c8c043d455a2f3d251db7b5b5c963b14c98bd2a339e55697aecef093390926cf2fe0b12d9bfd73b4e20f664e02c8ce2c4914acafbf3581e6ac12a342cfa0a73b4ea00ecc0a51acd102caafd9f95efbe6700c064663a75d4548312f801ffccf380db3a4ceb91349edeb7e1e12b7d623d6765a07cebd62c3157c9d1f5acd7b8a35bc3d843236e473ddbfde83aaf0b8098e3283ad032ad5bfd688d8c7d538bf46d86ee42a940f91e1204c77e80c70831b0b918f3627916b7436a16ab9f36d01a0416836b6d94b76248bcc8696273ff7f473a3c9634d7dd2e0f806046eb0eb54a46b0b6567d50043b7bdf7b03f1787ca2ab8e36019f150b9f03c83a8d69fff0fb7b2d80fbdc09529c02d029f7fedf2b978714ee3910e0df3db0014ef8bbc8c8865c136af6a4dcd15f41ced7bbe9851e18606abbf589165ade588a7574ba08da9de3e967bdb81dd8da34b5b1de0ce326ad43e9bb8ccd9deb8f180af80ad4146991629ccce4a3ab24d7c84709142ad3b0c2f7ffc9dc49764602b52dbee270774df3a6f81f78b9b8ef07b4d88b0b13008310071ec1bdafc438b0c5dd9b3661abb96516cc0a98cce1c9eea3841969705ddf34f8f7e51aeb12e12e5e0c7e695f0f8d8477cf490b10c8862f11e7128eff6beb0914d4b90bfa834256ec790c568efa548a2c090c3482d5c9d4dbac0aaf59c2cf08beef2e6c9c23ccf542833891abf1b9e5353f724984095ba0a7ad392ccc9a0b8212bff636d653a2ac31c26b8f41ce6be7baebb2b88b1b7c39efb266e3a771d85ba969c7cc180ab997d357c9f5825fe56b84d8507bfe30779f5364f808a777d8b01fd6ca25ad0624dcec263e4bce94bbeee9cfedf9d128cd29b535c2aec09d771bddfa5af71842018d52b4361247bb661db5f60bdbb6094e8250d52422c39d0430b73742ea74ac100e717503c0370d0af7c5f21eae7d55df05c0f28899d6f69a78cc178c6efe07579e432696126a702ad2b4d33232057c47800d16ed5f95dc72caecdd6fc5f7e6f4b886dab9073ad7238f64d8adfc2e68ca7f32ea6247069a7aec6e5443dd672f30c73d683987511dd2cc863ce73f8c6ca64203e5b63c8fad31d7ad9542def90901b959b4226a9e4d33d5c29ac19f0abd58d8629cb50f99952b64ca8db6ea68f92cce02414eb222f781e78f69498bba4ff951f15cbc1e0b60bf451d1d4635764e5aba6efe0291fabbd9ef9109cf7b678df26107977253dd9fd1a72e00a226ac161d3c2afa2c4202d809fed9b0667e2a042e7e778923d32e48f0fed3e9a1435c296f1f9866d3c78870eb94f211e7a70cc549df2b9e3ae71a1ff4fb074c8645c323540fa35ebb4ee0807eec4c69e5f710b9fd5cad4087fd1599fb301923de1fe54c3ac0e51b3222d27db07ba94c7ffcaecbf95ed7e2d018c20c55287ee7eea99112e6cc07bee72bad26955dc16619905cce20c3f2bf0091b978ed0fbe311ed34b57d1a9e5e319ae3474c71cea8fc4a1eb787361c9e6399939e859439e49c9d3871c4c58444da5cae453a125e70ce4a2647550bbc957cb7bbc2e2c03bc593d2438c4ff5313c0647b0d3acc5c68ea1288b8afe006ac28e438d06d055df9eda97728a1b9befc131a8513d4d5a8fad1add3e918c25f0b95e2e62eb490941955ea553090e7d5ef4fe4cd3cf61509098d80749a251ff27f7ed2589fd8eceac569b03a0b04cef056034e59bde444a2012b28736c016f23a45f4ca51ecd7a4f1419929a2dd368bef9245b65f76f9114721bb031d41b5f827b4c39e718dd596684f7ced0d1d2eebdfbdb12885005f6cad58ff5601f94d31dda12b5ad1ecbd512b3a16cda83e567f6ba8d38cda846e6eb1616cf61fae1693b1a0fb6ce8266a7cd99310fd2b7d8d8083d3cb02677a9ae502a930250ae4023872f67dd0aa29250cf8db28c168dc6bd5656444439d0ff0c9433ed207a8c724c0338cafdf3283f127af2aac90c92ba6839bbce9283850442c7f8bb8cb33581791c5ab223b41b3e38a035b0bc15cd16e7a8a05a4804deaf9b20fd63e1a4a52ae2d931ab6eef2dfc3b322650c2f6c3f5e08df0810fcc1378c87ef495e417c8fd66d588c9562cf98f8b73a2a352d489893e9a1dd0a24e7e27cc54007b98bd9f5b51e0471df789aee86e64fd145e0d5a443af7e84f13c15804724b776c9fda961ab1195b35c32ca74500fd165bd4b88473a4777b9660962e9cb7217c98997c9480411436428b4d67a476000ef535b4ad35a24f574c31884b32e15019182dbd9db137afeb0e547332cdd12c37183c9362940d2b4517938a3137ef1136a743e9e4ae8ab01656d5fdb2bd0ecbc551c16bd15e1c31e652783168ef5cfc09b64bb484051b3220f568cc6bdf48e111c18e14d081dabe6aff7c0807bc6320ad1a53218b1dd1b0006bd504330bb3587a3b871969a57df69a96267c29fa58a41d39d87ba6a3fb8db5d4b9e03a18d6c26b9d0c0db981bb63e9a34e6901cf3886454f773bed2fe94a2f00b7d0030fbce6aaebd0c84e863140302bea3480c3f277f17e88f8327936b976bba7b29945ee37b427a6aadf640b081daa8f8111ece701293ece41baf39748d6c83b7f64a8eccc3b0e33c64ffc3f3b3891a782bcf8b8e91cbf260acf0db71e9b90344a66a5986647e8e9ff8f8c6e328bfe96a5782897a6bb2d795b2836b1e73efbc4b156064aa3b3a281c6ce4ba4443e4e237e4399a825e194b2bb4d3b9a36419d21fa980fbdf52e1888038d5c0e596ed11bdf751930727414113c54f4080a25470a1e9b578bf1d23930e0e8497328f444a5a6043fa0e7459ab6148cb6a8b6c0978a4fbb3b744b4ee6456b350eddb75b48573fe47de0ce7df851418e339e16150d5769a8396f6e3601654451d4d889a4780496809e2fba498b9075f3316063ec9e1b1731bcf619c7b4754cee1306263b8588bb2b62c3e2cc993f6fa8463a93d174d788119c5f89a57b1358cbf98db4197817b9a730fced47d3ccd222a1dd8658301b566b2a5db6fe7acc804e0a05a06dae518c4ed8f010d2e6c37f1a41a6ca684e2b3eea7926ad0290e5fdcfccad2d7d9f91f34d0e28c63c4c1f15471060db86c99b8a23ba99b71a164960f0ef8bf18272256d2c7a5fd60e5bd626b4c40cf967c3444dad4745688bb0a774d1611f4e21b8d23b568a69c2981622158e72fa8a7eca415763130a653807058772a8e88f0939c9f23e17387d01999bc9705041fdacc414c31f2c5ef2900c0c21c369f1081691165f250b5a1c888a22f1612384d8f47a7d38a133f7a9f5d1a5fa1b7027faf9131b44118a601352a02f1befe9a0bcfbf465c2d402242f80d8a6f8f064a9243720ddd8574922a4d91db60187b443bdb5d0491ac86316a6d8189c1a5953e20db243659c195da24e348773fffa84c37b5b1561ebd23d0fa4387991a2e32549c374f7cf3c2ad27b4fecd1d1a0f1661484f6b91ef59b3adb63d570126f12864b996d2e4c5883dca4b6764020186da80d2681b7bc8b12c5e0a7bef75b66b323f697f7fe68bd7544ee0195040ccfaa82495e4ae66a2842a12e1c651adcf16133b638d9a24885f00b38ebfaebc253c30cde292c2a336102fb0d66968a9d28267ea9afcec7a48adc4f9fd206a2496115cb73164f20b0b1b7b1fc2d56b96b0a3ad54b791c9a208277411b3c44abe531b0c326e8918462d68086d5aefa970b652acca1fc0453344a3fb5d0a127d21a352b8f7abe318e898512c7b759a63e6108d55f3de736ba67c9b9f81d5f32688e8f4cb9b6cfabcd5b97590f776903a9d3611201abfe01e4d08c4d9520db3d78e839e91db91b374c80e0d88a5c21ca00299c997e1b2dfd0d73c52698272337a2433510ef0ca4ca8984b783e092a23043c16f2372497bd5d3440b6302d6b38e817775a759ed5fe5233c53369bf2f1927b02dc9c57b0c7fddbd9b8376a686a69842f2301c10f3d02752d6c408ac35202444bb3424efd619c529760dc61d21cc26cb151ed32781172131451d122b72b83ae161ac3351a95cf225c073c2073954379cffa7d3460ca435ef1839582a753434a3358da98532f215b77a1eeb903d74895617bb56bc94dc0191653779ea761ae34f3dd9e1c97905047eeaf916ce43fe4c92fc32c5a383262b4f208fdb0a21230d862a90074b3b0e2c7126d21b922c90933c4c24bb3bda7f367a6a58e71c5a0b4e370d99d9242f03c1524d829fb2f353e8101b051dd3cd1fe46273c283c3fff3bd3bd9c89f3fcbfe72f259e15262fc629a442bbf3e6eea59136be164873a60e2c20245b9af11d6256b55f6625b1ebdec2641bf343b0dca6801cd175f212ce3dda7cf442a94d5a7c6c4ecdb048e4403993235cb95c50757f1858dea926bd0991141dd36474e4ca700fdbd08a96c0244c30907ec09d0c93647b3a4b9fa86a3dd8af1f6a302e346d396d8ce4e28fcd6ea23e069df664b8c27f5a55bd799dfc1f9a62e5be88fa5f1b981465a3f3a31670ae03f79609a91133e7b000f8a5608d9a3bf94fd36a9877d354cc82366a4a18ede6be160a126c275c4535459d93f3f7681c611598ef8eecafc2fa28b1e65a5f13ec73ce199c681751737fc59b369fe054d5749f8ad6108ec4728b650fe035469c7267c96309563fc2a88c42c67ead8c8f3270fc0655bd9ee5ef8962c30bac684ee48615590d79540d55aed69538f181d2b6deeb01b5725fded9b3f4e1f70d193506df1db10531b6f12506f0055191da87717c5592802ca6cc4a525c6342abfc7097138b927abd6243b0934c2f072588b1b6c7326c1a184ed4913f55f2820a10d4a65ddf436cf23d716fae9af8256d522070e68abadf4562195ed2f1b699db7018e2071337abbb72718eab29b775155a41f45d1912593fc3a603090d0734c6d423ddb4c84a509ff84216b3be06cbecf26b3131f16ee4abbf577ea1ace78c4cf7ceb1b2c3914e5a583a70db117c288402c0c12167acb7b9ffa8a1bb6d742ca38420389ea463b63048c127267d6e0d91d858cd4aca72637d0af0a46f9fafe838cf55996635be51087a46d9563007517c710902c8f7eef7a0bb44496ad3aebf3320b71138df9b5292ae30dd1fdb300a344d1971da9cba3af82e76d8542c8e1b77c0a1b115be1186661a4b5d811072acb5520b9db738e62d6cdbc49a65f2b354b91166731ae326b0cbf5f454ad11cae494d84eaf235121edb94dbaddbd7b4b400aad8cb49443431630bae232b7b09bdc56e5012cffda78ac8f85e281697bb34d353aa77184dcdaaf66d227223d54acb09f03acd3fd1ff878840c31afa298a195995b94aa37cee8d39c6e3fb1d45e2684886c913096704b8bae75f04ed57e041f3ef4b0c4b9b77055c9ede659a2b412d5ba3ebf1988720efb2e049d8da95de7b9257ebe17e354dddf8ad94f26ea0d32a2dfa0ecb7afff244d3eb73c4002081661b1905d7cd1e193570ff12ec40f060a4e9f88f52bb1c3b6ace057a6bb422fbc6550d0bf813a3da6107abad6021a1bab3ca707f311ad1b13ce244c0ad5bf441b1e15043791b2114660817a307371fb2ba4d68cc7445e1b99980faacea8498e09d8fecadf2ecdd45653a4aa72c0cec3cddc1b911f080926c36fbcfd05358e1bf347d9c77d15b89255360ed33676cd9883d9d5e6f06fa4f1f6f3fd3a6367782fd6b6c074aa09b2408bebb6f67ce04a9abd0ee8b9cc7a35f2ae2d36b6cc12a38bf801f4a14e9944ce1b06fe1f049b778df31a7a80e90edecb11af1870f1f066aae9d9a9de1b74e1d2c3aef4701a504caf28d4ab91aff0085238899fe158f0d2d19a7e99ae529e7b404d7ea6782818527e30a8e875b24ea6f5b280bf1ab7c83743b94eb342a491dab8de3c57f81d5681424ae19d31343a93f31676c560b591f7483f10b45d9fc89e0869e08b62d897cb46ea04d57568b91e1d2171f2d015ee5f730e75f5cfc24e49d5a82e57bf103d7ffea49f2abc15cffa794c634ebe4e857ebb5972aedec8fa40d7e1a401bd0578a22efe955214ac15aa4c7539c8cfdf45a895cf7b7ef104ce7fc0ca1574c520e40f239cf82ec1fe427972efb07789415b1835fa61e7285714e66e956f440b9538dfe866b45db6207f6aa902d98afa2c25"], 0x1010, 0xc840}, {&(0x7f0000001940)={0x27, 0x0, 0x1, 0x7, 0x647, 0x6, "266105c696988f1e07ff88a109e61bc6c39b461fba5fc48e9d0024fa6d2c473f87ed8479993d26173bb9cb870f4f811a82c7ed5ddf459dbc4234c71bac2a8a", 0x1d}, 0x60, &(0x7f0000001b40)=[{&(0x7f00000019c0)="c0c211d36d9b6980ed3cea3c5a0b53caa1c2e8f28f117943146b8f0e23cd5bd42e453870d43a5c95dbc7bc746d60be7809dee819e883c23e684ee6f6ce4e74bc7aab8ce0a16d172ada295421f16deab87b788240932f44135a88dc56b11993da4b47ba2620bde9ed45c230403ce7bef026d5f7df932d4ff85623ea2bdee80ec6cbfcf496c7fe97569d6f8f15350b3754d2623a3d10359e4459edec92d94a06", 0x9f}, {&(0x7f0000001a80)="eb912f28a5206a61ccfdc0815e288c2cfd6a914a54d36ce384f8b550586abaacd485ab28691b284728ed9bd8e01cf818d84a8ad2a1516e5ae8baba4ec3daa64e8468fbca1d40dfea0ee59976f77198890a581c9de29899864c90cdf050dbe9d17695de1acb6120dcadd076174693ff423c4147de979425c4c9b281b827ec63b16cb69ad89f821b12366e3cf0a2b227d2efaa31a3fe2972f659db7d778781e8c6dcee4e769fb68541", 0xa8}], 0x2, &(0x7f0000001b80)={0x68, 0x1, 0x3, "6e069b03b00f4490965fe1ac78b2e6a80b5e1bc91afc8760635a1fc5013e36066a58a6fc2e7bfcbb71da6c1e5d8bc3f136b847fa4bc439c523b72acdc91cf8323f8b8a7017ef782313d74804ebd22c2e77df871d03cb08"}, 0x68, 0x20000800}, {&(0x7f0000001c00)={0x27, 0x1, 0x1, 0x7, 0x2, 0x280000000, "e96024fc9efea799b68cb97a6d7f55796a4fd06b34bc56d4ff411aaa4f89633dc19bf003b0347b598d1d93acefe4239994b2f5699fbe67e67ba583eeea145c", 0x30}, 0x60, &(0x7f0000003080)=[{&(0x7f0000001c80)="d0feb94f7a1b0800dd8efe51f3ea5266b2a5b39518abf1f3a41e5239bf422a72280778b101a9ec72721e00dd6e10b29b10459234ab73ce36759478665e1f267b985926a18c035cec5ec0eff4d8eeec6950e36001a3956b42f7214e738758292055bb388864fd7212716200336db8a3e95c79e9e34b07767347b3742096e141938739df31d659aabd664a6a66b4c539e1e50dcc52c0862c655b728a390ffa597c2199956811472b39c3cc6a1e9025562f63abb9fb", 0xb4}, {&(0x7f0000001d40)="a182aa5d71113d3170bfa6", 0xb}, {&(0x7f0000001d80)="ddf7ecfb3554440845a1ee85a4d428dca58de0a0d201b0c2ebd3f4f4556873e5ac2d1f2b5654e6bb5a1a542d4d0db0c5911d86b4f392d3ca009e383e437f1769ccb8e8c55fff09a9229e978cb11bb168526593d37edf6dabdca50cb5758059e39d14ecbec25f3223cd27c3e81f78103b0b02080f55b79a63bba1808b60217c062208ad5141f598430cf09c92dfed26e3c845a4cbf55414b8a1a06e2277d0c4b2104c", 0xa2}, {&(0x7f0000001e40)="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", 0x1000}, {&(0x7f0000002e40)="5a1abbc312c9b064ce1a17de759d21ccc632866419e4e7125cde191c003697ba98dad409651664b5a537a7be0e213231a892f4dee1e615378ad601f7bd939855f3979e381217e0c8f52941bc36cb11baf0ff09a737a9386a612ca9a914cd9773176e0da4fa6007605c8046870ab4abb0cd4a732f79a18b926f89182b6489a64f58a85cac48faa29933968a667c3b9bbd5512e3c2d4da7b63c0876250d2e0f8e8421ce966c0fbe71e43323a0e707828501a3d5b8f", 0xb4}, {&(0x7f0000002f00)="eff2f12d22c19b9626e4f39cef45434240eb383d82ae47a10604928074edc07da4b1d6ee3eb17ef2d40a53cb1016442b8693ca99f68d0ab36577d966fcfd3aa72b2163ed28bce8c8df719dc559d88d9b10e03875e2096e87dc2d0d4abed51dfeb9c9478401b241e730fdeca6441279be5ad166e94bf2a29933b28163cf3b81e3bc", 0x81}, {&(0x7f0000002fc0)="3d47af5a48a1f7cef8b3066c54b2b4de1959cd357985b5253d00aba03d9cc97e2eb71a98365bd90173f826528ed8679a7b60d79e0eff9cd188a1f1a662082513567a2b1b4bce527ea2eaae523a11f13f6114b364d81c6b4ea7168ed3034b82abb2d2437834d4359320339bd7b584b191166ea6d0b3649d44bdaa5680d5bc391654cf", 0x82}], 0x7, &(0x7f0000003100)={0x10, 0xff, 0x6}, 0x10, 0x20000000}, {&(0x7f0000003140)={0x27, 0x0, 0x2, 0x1, 0x9, 0x7f, "f2359ee599aac87fec31dd6f479c935189672539fcd982c15b2406198b4be9c36e9ba5f3b373a848e002cf63a0e9dcf0b1ff3cd8280f567002f1e53ab3e393", 0x1}, 0x60, &(0x7f00000032c0)=[{&(0x7f00000031c0)="8337d61694ba178c9e0126b17aadbcb77d9da62901067adcaade316f6f520e20c4f88d638cdf818f9440783706b00f6e58b3a8f3cbd8e75f68e23e1b57df38af6cf1839bb2f79137e9d3a5369e06a64c99b0e42278ad5dc4ddc2315f8800e6dc1112e8fcf4ac09586fbaa361bff656c82c8d3fe27de4fd6933deddcbc96c0638e12e5aa6e30519e82272413f1eb1b6dd5502c121097a60a0f703bf52593678a2ef656ff912640004791781d4b5989abe82734a80e55e197bc3f9ac7425ea8825f13231f7d6ea1d", 0xc7}], 0x1, &(0x7f0000003300)={0x18, 0x111, 0x7e, "c9b1b740"}, 0x18, 0x884}, {&(0x7f0000003340)={0x27, 0x1, 0x2, 0x7, 0x80, 0xa0, "10a1214554fbe49be5547f883265d80b921d2e6421481f8f6505fd23ec21d8de1b6ac56311cae6ec7a6f380afd0a63ee5839db97d213bbae9ddeff4e55056a", 0x20}, 0x60, &(0x7f0000004740)=[{&(0x7f00000033c0)="27509416390915553d753e4b2a43b9", 0xf}, {&(0x7f0000003400)="b881c2b3bb1bed2cd1d2f6febcacbbe465f5549991f02c41ca2a268e0d94f8a30c6034f392abbbf7fd161a59423551d5f11cfbdf9f7ca9ba7d82131884f3fae330c413be0268593c4c25c62ef276a6a901ab718a932fc783ac763c1c6fc8bf9763889be6412d251cc35e93edb15619e010fca00dd68348a09da69e827d4640badffba80c5ab8d67bb49c5e47d04f0f14866443613c9f412b5b09d57d5e720b58ef160f2b9ea0882ee75e031c2b0bf4f26996eb65773597147bf2e07d46add46bba0fd520a8256eb7cc47811b69e8c65948f33b6329052e33ffb7bd995f22b8190c", 0xe1}, {&(0x7f0000003500)="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", 0x1000}, {&(0x7f0000004500)="8ee3e1036ec65e9b34074ec4d0e89aa2716a70c6f2f2788ae71730cc3124e33bda3cc5a4a43a094032aaf1ebbe0faa475d", 0x31}, {&(0x7f0000004540)="cb3ac7e2444db096992b8f122adfdcd4107cd893ef9c9a120102ecb6756d79a3f3eadcd1986d9293f27cc9061776a245fddc56c9e5d8f030178597e7e0de5f89c941b22aa00ee6aef0e4999c4270", 0x4e}, {&(0x7f00000045c0)="e65d9c2863cdb6e1413352d847ef5281d091095b4f6f9719ee909d542c5296c5c8542b637c3e7c8d2070388da9915bd0306551ebbb1f2cb5c5917eca3ad0a1585b38abc0cd162daff7cce4cc04ef28ded43f49514238ca84d8a349b0d352aadd72204e7de7bfc0cb2820414aac05092f26ae657391f761a2360b81af3219dfd5d21cbe13c87d5a0be9c6f24794289ff456e2afaef5c23cac1ea4cb0ccdaa1a22d7a920c41461559ce5baa976cdf30280102d7458e3b62edfa6ebccfdfecdd82b1f9dc0b14204d82205d39a483d649d0cfb47d5885661ba9a1150cc2b89457ef13d3234e1ca499d652c8074ddad085449b1186862", 0xf4}, {&(0x7f00000046c0)="580a20f66e348fcc778f9e9c616c673c5bfc45a03d632e0952e1255a724ed487707162f5f0e08131944250c98f2198cbf95ff5cfbcb3f59d1c8d15bbe56efbb0f3ec35727130db5a44670900a255c768bd6f9871657cc9bbe6f9f2a9baa7abe63995dd01250341b51ace3d37e390f70e71bbe63d835c2217c0b17cd1e637b400", 0x80}], 0x7, &(0x7f00000047c0)={0x108, 0x103, 0x10, "623ef0bb6a3e792fd12060fd6192c7da7b5e2ceffba85c89bae8409d7e33700539f909ef1139b22b64eb90ffcf1ae3ff2ce4cba9cd94fa2d3ba8799ba76caa89d2a402038fdac4bc1d2a8244be85bfc44c68b2e81936627e2a41d3636b977bdcd61b31a335b3c2379c50377169c7194c11967bc149685bb0a351ad8f53f24a1253cd668f03517df1f0835b073e71e3ea12030168ea0f6f8019383e862a7415f60d61d6895d27d8626984751c7113e83622b48a47c3650c455ef9f2797256fb94d69f13368bd41651d1baa59bf691a90f8904b84c570bdbe2ab0abea244951a0c885e8c286de8b6491556c285acd8988652"}, 0x108, 0x4800}], 0x7, 0x4)
setsockopt$inet6_mtu(r5, 0x29, 0x17, &(0x7f0000004c00), 0x4)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0x5, &(0x7f0000004ac0)=0x80000001, 0x4)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x6c, r4, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @mcast1}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast1}}}}]}]}, 0x6c}}, 0x0)

08:04:55 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
fadvise64(r1, 0xbe, 0xfffffffffffffffb, 0x3)
r4 = accept(r1, 0x0, &(0x7f0000000200))
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r4, 0x84, 0x65, &(0x7f0000000240), 0x0)
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
r5 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x0, 0x200)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000140)='/dev/snd/pcmC#D#p\x00', 0x1000, 0x100)
ioctl$FUSE_DEV_IOC_CLONE(r5, 0x8004e500, &(0x7f00000001c0)=r6)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:55 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
set_mempolicy(0x8003, &(0x7f0000000100)=0x3, 0x9)
clone(0x3ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0xa000, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8)

08:04:55 executing program 0:
rseq(0xfffffffffffffffe, 0x0, 0x0, 0x0)
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x40000, 0x0)
r1 = inotify_add_watch(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x6)
inotify_rm_watch(r0, r1)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000080)={{0x73, @broadcast, 0x4e24, 0x2, 'ovf\x00', 0x10, 0xfff, 0x67}, {@dev={0xac, 0x14, 0x14, 0x1c}, 0x4e22, 0x1481e007c8401a27, 0x7fff, 0x8, 0x2}}, 0x44)
ioctl$TIOCNOTTY(r0, 0x5422)

08:04:55 executing program 2:
r0 = socket$inet(0x2, 0x3, 0x2)
r1 = syz_open_dev$vcsn(0x0, 0x3, 0x80000)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, 0x0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x22040, 0x0)
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r0, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c)
getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
setsockopt$inet_int(r1, 0x1f00000000000000, 0x8, 0x0, 0xfffffffffffffe9e)
getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=<r4=>0x0, &(0x7f0000000140)=0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000180)={r4, 0x8000, 0x1, 0x100000000}, &(0x7f00000001c0)=0x10)
lstat(&(0x7f0000000280)='\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = getuid()
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@ipv4={[], [], @local}, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@remote}}, &(0x7f0000000440)=0xe8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000480)={{{@in=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@remote}, 0x0, @in6=@mcast2}}, &(0x7f0000000580)=0xe8)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000005c0)={0x0, 0x0, <r9=>0x0}, &(0x7f0000000600)=0xc)
lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
fstat(r1, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
r12 = getgid()
setxattr$system_posix_acl(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='system.posix_acl_access\x00', &(0x7f0000000780)={{}, {0x1, 0x2}, [{0x2, 0x1, r5}, {0x2, 0x2, r6}, {0x2, 0x6, r7}, {0x2, 0x5, r8}], {0x4, 0x1}, [{0x8, 0x3, r9}, {0x8, 0x6, r10}, {0x8, 0x4, r11}, {0x8, 0x1, r12}], {0x10, 0x3}, {0x20, 0x4}}, 0x64, 0x2)

08:04:56 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x7ffffff2, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:56 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa, 0x10})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:56 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)=<r2=>0x0)
ptrace$getregs(0xffffffffffffffff, r2, 0x9, &(0x7f00000000c0)=""/66)

08:04:56 executing program 1:
syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x6, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x800448d4, &(0x7f00000001c0)="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")

08:04:56 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x101100, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x3, 0x2)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x3, &(0x7f0000000200)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x1d}}, &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0xc3, &(0x7f0000000300)=""/195, 0x0, 0x0, [0x42]}, 0x48)

08:04:56 executing program 2:
socketpair$unix(0x1, 0x8, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x801)
r2 = socket$caif_stream(0x25, 0x1, 0x3)
io_setup(0x1ff, &(0x7f0000000480)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000240)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r1, 0x0, 0x2}])
r4 = dup2(r2, r0)
ioctl$DRM_IOCTL_SET_VERSION(r4, 0xc0106407, &(0x7f0000000080)={0x100, 0x3, 0x6, 0x19})

[ 1169.110939][T15810] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1169.117792][T15810] CPU: 0 PID: 15810 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1169.126832][T15810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1169.136923][T15810] Call Trace:
[ 1169.140239][T15810]  dump_stack+0x172/0x1f0
[ 1169.144595][T15810]  handle_userfault.cold+0x41/0x5d
[ 1169.149715][T15810]  ? __lock_acquire+0x548/0x3fb0
[ 1169.154669][T15810]  ? kmem_cache_alloc+0x55a/0x6f0
[ 1169.159714][T15810]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1169.165009][T15810]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1169.171000][T15810]  ? find_held_lock+0x35/0x130
[ 1169.175781][T15810]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1169.181773][T15810]  ? kasan_check_write+0x14/0x20
[ 1169.186727][T15810]  ? lock_downgrade+0x880/0x880
[ 1169.191591][T15810]  ? kasan_check_read+0x11/0x20
[ 1169.196452][T15810]  ? do_raw_spin_unlock+0x57/0x270
[ 1169.201582][T15810]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1169.207431][T15810]  ? kasan_check_read+0x11/0x20
[ 1169.212292][T15810]  ? __thp_get_unmapped_area+0x190/0x190
[ 1169.217931][T15810]  ? pmd_val+0x100/0x100
[ 1169.222198][T15810]  ? __lock_acquire+0x548/0x3fb0
[ 1169.227142][T15810]  ? __kernel_text_address+0xd/0x40
[ 1169.232370][T15810]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1169.237490][T15810]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1169.243040][T15810]  ? find_held_lock+0x35/0x130
[ 1169.247807][T15810]  ? handle_mm_fault+0x322/0xb30
[ 1169.252756][T15810]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1169.259012][T15810]  ? kasan_check_read+0x11/0x20
[ 1169.263874][T15810]  handle_mm_fault+0x43f/0xb30
[ 1169.268648][T15810]  __get_user_pages+0x7b6/0x1a40
[ 1169.273608][T15810]  ? follow_page_mask+0x19a0/0x19a0
[ 1169.278817][T15810]  ? get_user_pages_remote+0x17d/0x440
[ 1169.284291][T15810]  get_user_pages_remote+0x1a3/0x440
[ 1169.289599][T15810]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1169.295256][T15810]  ? alloc_vmap_area.cold+0x24/0x24
[ 1169.300467][T15810]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1169.306719][T15810]  ? _copy_from_user+0xdd/0x150
[ 1169.311578][T15810]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1169.317308][T15810]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1169.322811][T15810]  process_vm_rw+0x21f/0x240
[ 1169.327414][T15810]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1169.333226][T15810]  ? __might_fault+0x12b/0x1e0
[ 1169.338012][T15810]  ? kasan_check_read+0x11/0x20
[ 1169.342862][T15810]  ? _copy_to_user+0xc9/0x120
[ 1169.347542][T15810]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1169.353805][T15810]  ? nsecs_to_jiffies+0x30/0x30
[ 1169.358673][T15810]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1169.364137][T15810]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1169.369612][T15810]  ? do_syscall_64+0x26/0x610
[ 1169.374294][T15810]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1169.379935][T15810]  do_syscall_64+0x103/0x610
[ 1169.384538][T15810]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1169.390431][T15810] RIP: 0033:0x458209
[ 1169.394328][T15810] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1169.413934][T15810] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1169.422353][T15810] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1169.430323][T15810] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001da6
[ 1169.438294][T15810] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1169.446268][T15810] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1169.454241][T15810] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:56 executing program 1:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = inotify_init1(0x0)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x6, 0x800)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r1, 0xc040563d, &(0x7f0000000040)={0x1, 0x0, 0x2, 0x7, {0x10000, 0x3, 0x20, 0x7}})
inotify_add_watch(r0, &(0x7f0000ac5000)='./file0\x00', 0xa400295c)
rmdir(&(0x7f0000000200)='./file0\x00')

08:04:56 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1100008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
r1 = socket$kcm(0x10, 0x3, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='map_files\x00')
ioctl$VIDIOC_SUBDEV_S_SELECTION(r2, 0xc040563e, &(0x7f0000000140)={0x0, 0x0, 0x100, 0x4, {0x8, 0x2, 0xffffffffffffffff, 0x6}})
syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x800, 0x400000)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="23000000420081aee405e9a4000000000000c6ff07d800400300000000000000000000", 0x23}], 0x1}, 0x0)
recvmsg$kcm(r1, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000000180)=""/101, 0x65}, {&(0x7f0000000200)=""/86, 0x56}, {&(0x7f0000000280)=""/91, 0x5b}, {0x0}, {0x0, 0x1a000}, {&(0x7f0000001500)=""/252, 0xfc}, {&(0x7f0000001600)=""/120, 0x78}], 0x7}, 0x0)

08:04:56 executing program 2:
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_THP_DISABLE(0x29, 0x10000000000001)
r0 = accept4(0xffffffffffffff9c, &(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000080)=0x80, 0x800)
sendmsg(r0, &(0x7f00000001c0)={&(0x7f00000000c0)=@tipc=@id={0x1e, 0x3, 0x3, {0x4e22, 0x1}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)="35fd1e9f98940f54320e3d1a3b505828f814abf922536414b9283f03c1f3c86490480971d7e1a02fb92e77fca1eb4b844d1b4541ca7c", 0x36}, {&(0x7f00000003c0)="4f9763077f9541aed275ab72828de1f47593b2d84116ea962426e82964af5e82a8b65c681a72f4c0a8197f7d527376191faacc55e566aeffdd83149697a2562af67508eab8ad3239d10fc37fbd09d59e9d17346c595166e4d1754af83b0eb868794d84706d18f515bb27ccec80520402c4606ac08d5a48917b43d8e1e83628788730239901f0ad2a04bb927f2c591419e000e975ef04d126fd83f855efee76a86a14c4168248cb6213648244043c5e1dd9eb15c7d25d17b39ae50a5ef3a7e8a7b70e5c831843e11f4ba24ec33f", 0xcd}], 0x2, &(0x7f00000004c0)=[{0x1010, 0x11, 0x9, "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"}, {0x110, 0x19d, 0x6, "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"}, {0x110, 0x0, 0x400, "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"}, {0x40, 0x1, 0x6, "15eb78bf663ef2598f8ef62529b81f0beb025ea46ed00833fb2d0b394ada147c4a2311edf9d65f15c8173cd2d5a0"}], 0x1270}, 0x20048814)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x0)
mincore(&(0x7f0000ffe000/0x2000)=nil, 0x2, &(0x7f00000002c0)=""/229)

08:04:56 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
syz_open_procfs(0x0, &(0x7f0000000380)='net/rt_acct\x00')
r1 = syz_open_dev$swradio(&(0x7f00000003c0)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x204e)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vsock\x00', 0x2, 0x0)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000300)=0x9, &(0x7f0000000340)=0x2)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000082f000/0x1000)=nil, 0x1000})
r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20\x00', 0x440, 0x0)
getsockopt$inet6_opts(r4, 0x29, 0x3b, &(0x7f00000001c0)=""/92, &(0x7f0000000140)=0x5c)

08:04:56 executing program 1:
r0 = syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000080)={0x0, 0x1003, 0x3011, 0x2000000000000})

08:04:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000})
ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000180)=ANY=[@ANYBLOB="9d2eb8ff29b8efd39342d9b80198e5f1d5d1bb3018f3be9c1b9cf0341c95be7c7d9ff4e718d9c560f6ad72ebacb4d4b69aa26b212215ce77229a20735d11c7721057e06ee2f13a85a05cd082c0900d734e05322ae54693800000000000000000000000000000000000000000000000000000"])
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)

08:04:57 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x7ffffff8, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:57 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000000c0)={<r2=>0x0, @in={{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, &(0x7f0000000000)=0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000180)={r2, @in6={{0xa, 0x4e21, 0x400, @local, 0x80}}, 0x46, 0x3, 0x2, 0x4, 0x40}, &(0x7f0000000240)=0x98)

08:04:57 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000200)='tls\x00', 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000100), 0x28)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x0, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000040)=""/50)
recvmmsg(r0, &(0x7f0000002fc0)=[{{0x0, 0x0, &(0x7f0000002a80)=[{&(0x7f0000000280)=""/124, 0x7c}], 0x1}}], 0x1, 0x0, 0x0)

[ 1170.085635][T16388] tls_set_device_offload_rx: netdev sit0 with no TLS offload
08:04:57 executing program 0:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
recvmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000a00)=""/226, 0xe2}, {&(0x7f0000000b00)=""/225, 0xe1}, {&(0x7f0000000900)=""/19, 0x13}, {&(0x7f0000000c00)=""/200, 0xc8}, {&(0x7f0000000940)=""/94, 0x5e}, {&(0x7f0000000d00)=""/138, 0x8a}], 0x6}, 0xfffffffffffffc00}, {{&(0x7f0000000e40)=@rc, 0x80, &(0x7f0000002440)=[{&(0x7f0000000ec0)=""/81, 0x51}, {&(0x7f0000000f40)=""/120, 0x78}, {&(0x7f0000000fc0)=""/180, 0xb4}, {&(0x7f0000001080)=""/252, 0xfc}, {&(0x7f0000001180)=""/251, 0xfb}, {&(0x7f0000001280)=""/77, 0x4d}, {&(0x7f0000001300)=""/126, 0x7e}, {&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/112, 0x70}, {&(0x7f0000002400)=""/56, 0x38}], 0xa, &(0x7f0000002500)=""/84, 0x54}, 0x7}, {{&(0x7f0000002580)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000002b40)=[{&(0x7f0000002600)=""/96, 0x60}, {&(0x7f0000002680)=""/35, 0x23}, {&(0x7f00000026c0)=""/212, 0xd4}, {&(0x7f00000027c0)=""/213, 0xd5}, {&(0x7f00000028c0)=""/201, 0xc9}, {&(0x7f00000029c0)=""/168, 0xa8}, {&(0x7f0000002a80)=""/129, 0x81}], 0x7}, 0x3}, {{&(0x7f0000002bc0)=@alg, 0x80, &(0x7f0000002f40)=[{&(0x7f0000002c40)=""/193, 0xc1}, {&(0x7f0000002d40)=""/64, 0x40}, {&(0x7f0000002d80)=""/146, 0x92}, {&(0x7f0000002e40)=""/165, 0xa5}, {&(0x7f0000002f00)=""/34, 0x22}], 0x5, &(0x7f0000002fc0)=""/68, 0x44}, 0xb1}, {{&(0x7f0000003040)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000003400)=[{&(0x7f00000030c0)=""/190, 0xbe}, {&(0x7f0000003180)=""/4, 0x4}, {&(0x7f00000031c0)=""/15, 0xf}, {&(0x7f0000003200)=""/52, 0x34}, {&(0x7f0000003240)=""/174, 0xae}, {&(0x7f0000003300)=""/245, 0xf5}], 0x6, &(0x7f0000003480)=""/208, 0xd0}, 0x10000}, {{&(0x7f0000003580)=@caif=@util, 0x80, &(0x7f0000003940)=[{&(0x7f0000003600)=""/22, 0x16}, {&(0x7f0000003640)=""/124, 0x7c}, {&(0x7f00000036c0)=""/84, 0x54}, {&(0x7f0000003740)=""/86, 0x56}, {&(0x7f00000037c0)=""/150, 0x96}, {&(0x7f0000003880)=""/140, 0x8c}], 0x6}, 0x200}, {{&(0x7f00000039c0)=@can, 0x80, &(0x7f0000005d40)=[{&(0x7f0000003a40)=""/93, 0x5d}, {&(0x7f0000003ac0)=""/162, 0xa2}, {&(0x7f0000003b80)=""/25, 0x19}, {&(0x7f0000003bc0)=""/10, 0xa}, {&(0x7f0000003c00)=""/4096, 0x1000}, {&(0x7f0000004c00)=""/35, 0x23}, {&(0x7f0000004c40)=""/4096, 0x1000}, {&(0x7f0000005c40)=""/250, 0xfa}], 0x8, &(0x7f0000005dc0)=""/4096, 0x1000}, 0xb59}, {{0x0, 0x0, &(0x7f0000008280)=[{&(0x7f0000006dc0)=""/98, 0x62}, {&(0x7f0000006e40)}, {&(0x7f0000006e80)=""/110, 0x6e}, {&(0x7f0000006f00)=""/208, 0xd0}, {&(0x7f0000007000)=""/126, 0x7e}, {&(0x7f0000007080)=""/118, 0x76}, {&(0x7f0000007100)=""/186, 0xba}, {&(0x7f00000071c0)=""/4096, 0x1000}, {&(0x7f00000081c0)=""/142, 0x8e}], 0x9, &(0x7f0000008340)=""/209, 0xd1}}], 0x8, 0x2, &(0x7f0000008640)={0x77359400})
r1 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x81, 0x1)
ioctl$IMCTRLREQ(r1, 0x80044945, &(0x7f00000008c0)={0x0, 0x2, 0x9, 0x37})
connect$inet6(r0, &(0x7f00000009c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
getsockname$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4}, &(0x7f0000000180)=0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000040)={0x1}, 0x8)
r2 = accept(r0, &(0x7f0000000080)=@nfc, &(0x7f0000000000)=0x80)
sendmsg$kcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="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", 0x505}], 0x1}, 0x4000000)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
modify_ldt$read(0x0, &(0x7f0000000800)=""/144, 0x90)

08:04:57 executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000000500000057000000000000009500ff6b000000000000f34f073ad9ae151ea714bbd9d0afb3d1010001"], &(0x7f0000000000)='GPL\x00', 0x1, 0x99, &(0x7f0000000180)=""/153}, 0x48)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x0, 0x0)
ioctl$VIDIOC_S_AUDOUT(r1, 0x40345632, &(0x7f0000000100)={0xdf4, "ed8ad78306ccb1cf73638831fde9ffb7ffac28378337785219e84cafab87fcbf", 0x3, 0x1})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="93c3801132b81119e322e7e5dd16", 0x0, 0xf000}, 0x28)

08:04:57 executing program 1:
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x208000, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@empty}, 0x0, @in6=@remote}}, &(0x7f0000000300)=0xe8)
r2 = openat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x82200, 0x90)
bind$xdp(r0, &(0x7f0000000380)={0x2c, 0x2, r1, 0x16, r2}, 0x10)
setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f0000000400)={@xdp={0x2c, 0x1, r1, 0x3}, {&(0x7f0000000140)=""/149, 0x95}, &(0x7f00000003c0), 0x4}, 0xa0)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000040)={0x0, 0x4, 0x7, 'queue1\x00', 0x6})

08:04:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:04:57 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = dup(r0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f0000000000)=@sack_info={<r2=>0x0, 0x4000000, 0xffff}, &(0x7f0000000040)=0xc)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000080)={0x200000, 0x9, 0x5, 0x401, 0x3ff, 0x1, 0xffff, 0xfffffffffffffffc, r2}, 0x20)
write(r0, &(0x7f0000000140)="22000000200007070cbe0000090007010a0000d801003c0100ff040405000c008000", 0x22)

08:04:57 executing program 0:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x200, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f00000001c0)=0x80, 0x4)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/psched\x00')
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000002c0)={<r2=>0x0, 0xfffffffffffffffd, 0x9}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000340)={0x0, 0x8000, 0x21df, 0x7, r2}, 0x10)
r3 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x0, 0x0)
ioctl$sock_x25_SIOCDELRT(r1, 0x890c, &(0x7f0000000480)={@remote={[], 0x3}, 0xa, 'ip6erspan0\x00'})
socket$packet(0x11, 0x5, 0x300)
sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9)
r4 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x2000000000000005}, 0x1c)
ioctl$EVIOCGSND(r3, 0x8040451a, &(0x7f0000000140)=""/58)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmmsg(r4, &(0x7f00000092c0), 0x400000000000064, 0x0)

08:04:57 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x111, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_REJECT(r3, &(0x7f0000000300)={0x9, 0x108, 0xfa00, {r4, 0xe7, "f8a118", "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"}}, 0x110)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000000240)={0x1, 0x10, 0xfa00, {&(0x7f0000000200), r4}}, 0x18)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:57 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x6, &(0x7f0000001000)=ANY=[@ANYBLOB="bfa100000000000007010000ffffff1f07010000ffffff1fb40000000000000073010000000000009500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r0, 0x8008ae9d, &(0x7f0000000140)=""/82)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r1, 0xae44, 0x9)

08:04:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1170.843665][T17177] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1170.851843][T17177] CPU: 1 PID: 17177 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1170.860877][T17177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1170.870936][T17177] Call Trace:
[ 1170.874237][T17177]  dump_stack+0x172/0x1f0
[ 1170.878587][T17177]  handle_userfault.cold+0x41/0x5d
[ 1170.883719][T17177]  ? __lock_acquire+0x548/0x3fb0
[ 1170.888689][T17177]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1170.893989][T17177]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1170.899970][T17177]  ? find_held_lock+0x35/0x130
[ 1170.904737][T17177]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1170.910734][T17177]  ? kasan_check_write+0x14/0x20
[ 1170.915676][T17177]  ? lock_downgrade+0x880/0x880
[ 1170.920563][T17177]  ? kasan_check_read+0x11/0x20
[ 1170.925423][T17177]  ? do_raw_spin_unlock+0x57/0x270
[ 1170.930533][T17177]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1170.936342][T17177]  ? kasan_check_read+0x11/0x20
[ 1170.941203][T17177]  ? __thp_get_unmapped_area+0x190/0x190
[ 1170.946830][T17177]  ? pmd_val+0x100/0x100
[ 1170.951068][T17177]  ? __lock_acquire+0x548/0x3fb0
[ 1170.956001][T17177]  ? __kernel_text_address+0xd/0x40
[ 1170.961204][T17177]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1170.966318][T17177]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1170.971866][T17177]  ? find_held_lock+0x35/0x130
[ 1170.976630][T17177]  ? handle_mm_fault+0x322/0xb30
[ 1170.981576][T17177]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1170.987815][T17177]  ? kasan_check_read+0x11/0x20
[ 1170.992664][T17177]  handle_mm_fault+0x43f/0xb30
[ 1170.997433][T17177]  __get_user_pages+0x7b6/0x1a40
[ 1171.002377][T17177]  ? follow_page_mask+0x19a0/0x19a0
[ 1171.007585][T17177]  ? get_user_pages_remote+0x17d/0x440
[ 1171.013056][T17177]  get_user_pages_remote+0x1a3/0x440
[ 1171.018346][T17177]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1171.023992][T17177]  ? alloc_vmap_area.cold+0x24/0x24
[ 1171.029198][T17177]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1171.035519][T17177]  ? _copy_from_user+0xdd/0x150
[ 1171.040371][T17177]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1171.046088][T17177]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1171.051552][T17177]  process_vm_rw+0x21f/0x240
[ 1171.056142][T17177]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1171.061962][T17177]  ? __might_fault+0x12b/0x1e0
[ 1171.066746][T17177]  ? kasan_check_read+0x11/0x20
[ 1171.071588][T17177]  ? _copy_to_user+0xc9/0x120
[ 1171.076265][T17177]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1171.082503][T17177]  ? nsecs_to_jiffies+0x30/0x30
[ 1171.087357][T17177]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1171.092810][T17177]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1171.098263][T17177]  ? do_syscall_64+0x26/0x610
[ 1171.102941][T17177]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1171.108577][T17177]  do_syscall_64+0x103/0x610
[ 1171.113182][T17177]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1171.119065][T17177] RIP: 0033:0x458209
[ 1171.122958][T17177] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1171.142554][T17177] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1171.150978][T17177] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1171.158941][T17177] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001db0
[ 1171.166904][T17177] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1171.174869][T17177] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1171.183018][T17177] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:58 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x7ffffff9, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:58 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:04:58 executing program 1:
syz_open_dev$vbi(&(0x7f0000000280)='/dev/vbi#\x00', 0x0, 0x2)
r0 = syz_open_dev$video(&(0x7f0000000480)='/dev/video#\x00', 0x1400000003, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x800, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r2, 0xc0505350, &(0x7f0000000180)={{0x8}, {0x7, 0x10000}, 0x1, 0x2, 0x80000000000000})
setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0xa, &(0x7f00000000c0), 0x4)
ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000000)={0x0, "5fbf783023ef65da83687ea97ab139943ea997a6bb9d8a1e14c956bcb96f28fe", 0x0, 0x800})
r3 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x9557, 0x400)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r2, 0xc04c5349, &(0x7f0000000200)={0x0, 0x60, 0x7f})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)

08:04:58 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x40000, 0x0)
ioctl$DRM_IOCTL_AUTH_MAGIC(r1, 0x40046411, &(0x7f00000000c0)=0xbef8)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))

08:04:58 executing program 1:
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f00000004c0)=[0x0])
setgroups(0x40000000000001f1, &(0x7f0000000000))

08:04:58 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r1, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:58 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:04:58 executing program 0:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x200, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f00000001c0)=0x80, 0x4)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/psched\x00')
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000002c0)={<r2=>0x0, 0xfffffffffffffffd, 0x9}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000340)={0x0, 0x8000, 0x21df, 0x7, r2}, 0x10)
r3 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x0, 0x0)
ioctl$sock_x25_SIOCDELRT(r1, 0x890c, &(0x7f0000000480)={@remote={[], 0x3}, 0xa, 'ip6erspan0\x00'})
socket$packet(0x11, 0x5, 0x300)
sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9)
r4 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x2000000000000005}, 0x1c)
ioctl$EVIOCGSND(r3, 0x8040451a, &(0x7f0000000140)=""/58)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmmsg(r4, &(0x7f00000092c0), 0x400000000000064, 0x0)

08:04:58 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
setitimer(0x1, &(0x7f00000000c0)={{}, {0x0, 0x2710}}, 0x0)
setitimer(0x1, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, &(0x7f0000000080))
ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000040)="4d1e57d9367f1ce91b868a03cf2d3b26efe18ae75fb623b0855b4515e4770d15450557e6662fe04d0de7f631bb901cee37b2e2")

08:04:58 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1171.571939][T17404] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1171.581459][T17404] CPU: 0 PID: 17404 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1171.590511][T17404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1171.600581][T17404] Call Trace:
[ 1171.603896][T17404]  dump_stack+0x172/0x1f0
[ 1171.608250][T17404]  handle_userfault.cold+0x41/0x5d
[ 1171.613372][T17404]  ? __lock_acquire+0x548/0x3fb0
08:04:58 executing program 1:
clone(0x20040200, 0x0, 0x0, 0x0, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x1040, 0x0)
execve(&(0x7f00000005c0)='./file0\x00', 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='clear_refs\x00\xb0Ix\xe6\fK\xa3/\xd7\xb9IqK\xcb\xe8\fW\xafYt|a\xa3\x16\x19\xcb\xaf\xea\x03O[k\xb1S2\x86\v\x9f\x14\xc6T\xd1\x01$\x84\xf5\xc9\xd8\xed\xca\xd2\xf0s\xe0\xcaPx\xfcd\xd3\x8d\x1e){\x9df\xa7\x14R\xb9,\xaegV\x96!n\b\xf2\x1e\x87\xb8\xb5M\xa0\xd1\xb5\xf3\xb4\xd6\xf8\xca\xf3J\x15\xed+,\x98\xfc\xbfX\x12\x97\xb3\x1b\xea\xfa\xff\xb7gx\xa1\x96\xad\x93\xaa=-z\x06r\b\'')
r2 = syz_open_procfs(0x0, &(0x7f0000000440)='syscall\x00')
sendfile(r1, r2, 0x0, 0x1)
ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000080)={0x5, &(0x7f0000000000)=[{}, {}, {}, {}, {}]})
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r0, 0x1000000000015)
open$dir(&(0x7f0000000200)='./file0\x00', 0x27e, 0x0)

08:04:58 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1171.618336][T17404]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1171.623643][T17404]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1171.629634][T17404]  ? find_held_lock+0x35/0x130
[ 1171.634404][T17404]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1171.640397][T17404]  ? kasan_check_write+0x14/0x20
[ 1171.645345][T17404]  ? lock_downgrade+0x880/0x880
[ 1171.650228][T17404]  ? kasan_check_read+0x11/0x20
[ 1171.655091][T17404]  ? do_raw_spin_unlock+0x57/0x270
[ 1171.660234][T17404]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1171.666055][T17404]  ? kasan_check_read+0x11/0x20
[ 1171.670918][T17404]  ? __thp_get_unmapped_area+0x190/0x190
[ 1171.676557][T17404]  ? pmd_val+0x100/0x100
[ 1171.680902][T17404]  ? __lock_acquire+0x548/0x3fb0
[ 1171.685852][T17404]  ? __kernel_text_address+0xd/0x40
[ 1171.692537][T17404]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1171.702801][T17404]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1171.708356][T17404]  ? find_held_lock+0x35/0x130
[ 1171.713130][T17404]  ? handle_mm_fault+0x322/0xb30
[ 1171.718099][T17404]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1171.724353][T17404]  ? kasan_check_read+0x11/0x20
[ 1171.729226][T17404]  handle_mm_fault+0x43f/0xb30
[ 1171.734001][T17404]  __get_user_pages+0x7b6/0x1a40
[ 1171.738954][T17404]  ? follow_page_mask+0x19a0/0x19a0
[ 1171.744182][T17404]  ? get_user_pages_remote+0x17d/0x440
[ 1171.749652][T17404]  get_user_pages_remote+0x1a3/0x440
[ 1171.754927][T17404]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1171.760556][T17404]  ? alloc_vmap_area.cold+0x24/0x24
[ 1171.765764][T17404]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1171.771993][T17404]  ? _copy_from_user+0xdd/0x150
[ 1171.776829][T17404]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1171.782554][T17404]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1171.788060][T17404]  process_vm_rw+0x21f/0x240
[ 1171.792655][T17404]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1171.799337][T17404]  ? __might_fault+0x12b/0x1e0
[ 1171.804125][T17404]  ? kasan_check_read+0x11/0x20
[ 1171.808981][T17404]  ? _copy_to_user+0xc9/0x120
[ 1171.813669][T17404]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1171.819918][T17404]  ? nsecs_to_jiffies+0x30/0x30
[ 1171.824793][T17404]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1171.830265][T17404]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1171.835733][T17404]  ? do_syscall_64+0x26/0x610
[ 1171.840419][T17404]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1171.846062][T17404]  do_syscall_64+0x103/0x610
[ 1171.850666][T17404]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1171.856569][T17404] RIP: 0033:0x458209
[ 1171.860462][T17404] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1171.880046][T17404] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1171.888438][T17404] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1171.896398][T17404] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001db5
[ 1171.904372][T17404] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1171.912429][T17404] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1171.920405][T17404] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:04:59 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x7ffffffa, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:59 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = accept(r0, 0x0, &(0x7f0000000080))
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20800100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="000328bd70dbdf250400000008000600822022642c6871000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:04:59 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = gettid()
setsockopt$inet6_opts(r1, 0x29, 0x2000000040, 0x0, 0x100)
ptrace$setopts(0x4206, r4, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r2, 0xc05c5340, &(0x7f00000000c0)={0x5, 0x3ff, 0x7, {}, 0x1f, 0x6})
tkill(r4, 0xa)
fcntl$setstatus(r2, 0x4, 0x42803)

08:04:59 executing program 5:
r0 = add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)="4760719ba11ed37773a102ec56e61df1181f473f5ecce01873ed3c4cb4e71962b44989e3f116b1213e1ac942ccfef8af3ace2691ef414164eaaa0ee25c2f237b9cb5f9f35140f098b033a149ce31c4b30c2621addab19cf247cf8227492e33b6c4923d58e896398797e3e3716a8f5981963ec8475022840255e6b1eefd55e5906a754c207d1cfcdab7e300808456280381f34b46bad690bdf95c208456bae64b8f889b6b8c9bca149548b48903f22bc1629d3a9e3c85e5", 0xb7, 0xfffffffffffffff9)
r1 = add_key(&(0x7f0000000240)='id_legacy\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f00000002c0)="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", 0xfe, 0xfffffffffffffffe)
keyctl$reject(0x13, r0, 0x5, 0x7fffffff, r1)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r2, 0x29, 0x45, &(0x7f00000003c0)={'ipvs\x00'}, &(0x7f0000000400)=0x1e)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r4, 0xc0386106, &(0x7f0000000840))
bind$netlink(r4, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfd, 0x1100}, 0xfffffffffffffea3)
mkdir(&(0x7f0000000000)='./file0\x00', 0x40)
ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000580)=<r5=>0x0)
wait4(r5, &(0x7f00000005c0), 0x8, &(0x7f0000000600))
r6 = syz_open_dev$swradio(&(0x7f0000000440)='/dev/swradio#\x00', 0x1, 0x2)
getsockname$llc(r6, &(0x7f0000000480)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f00000004c0)=0x10)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r2, 0x29, 0x41, &(0x7f0000000500)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78)
ioctl$NBD_CLEAR_SOCK(r6, 0xab04)

08:04:59 executing program 0:
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='oom_score\x00')
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000100)={0x0, 0x7})
setregid(0x0, r0)
rmdir(&(0x7f0000000240)='./file0//ile0\x00')
mkdir(&(0x7f0000000000)='./file0//ile0\x00', 0x1)

08:04:59 executing program 3:
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cachefiles\x00', 0x200000, 0x0)
ioctl$VIDIOC_SUBDEV_G_FMT(r0, 0xc0585604, &(0x7f00000001c0)={0x1, 0x0, {0x5bc, 0x7ff, 0x201e, 0x4, 0x9, 0x3, 0x1, 0x5}})
r1 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
read(r1, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:04:59 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
accept(r0, 0x0, &(0x7f0000000080))
syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:04:59 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
accept(r0, 0x0, &(0x7f0000000080))
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:04:59 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x100, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dsp\x00', 0x105400, 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ubi_ctrl\x00', 0x484080, 0x0)
ioctl$KVM_GET_FPU(r1, 0x81a0ae8c, &(0x7f00000003c0))
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x280000, 0x0)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000333f88)={0x2, 0x1, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_spirange={0x2}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f0000000080)=@sack_info={<r3=>0x0, 0x8, 0x8}, &(0x7f00000000c0)=0xc)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={r3, 0xffffffff}, &(0x7f0000000140)=0x8)

[ 1172.566546][T17741] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1172.575649][T17741] CPU: 1 PID: 17741 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1172.584692][T17741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1172.594740][T17741] Call Trace:
[ 1172.598034][T17741]  dump_stack+0x172/0x1f0
[ 1172.602374][T17741]  handle_userfault.cold+0x41/0x5d
[ 1172.607483][T17741]  ? __lock_acquire+0x548/0x3fb0
[ 1172.612431][T17741]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1172.617743][T17741]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1172.623725][T17741]  ? find_held_lock+0x35/0x130
[ 1172.628487][T17741]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1172.634468][T17741]  ? kasan_check_write+0x14/0x20
[ 1172.639406][T17741]  ? lock_downgrade+0x880/0x880
[ 1172.644256][T17741]  ? kasan_check_read+0x11/0x20
[ 1172.649104][T17741]  ? do_raw_spin_unlock+0x57/0x270
[ 1172.654220][T17741]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1172.660024][T17741]  ? kasan_check_read+0x11/0x20
[ 1172.664876][T17741]  ? __thp_get_unmapped_area+0x190/0x190
[ 1172.670501][T17741]  ? pmd_val+0x100/0x100
[ 1172.674762][T17741]  ? __lock_acquire+0x548/0x3fb0
[ 1172.679702][T17741]  ? __kernel_text_address+0xd/0x40
[ 1172.684903][T17741]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1172.690014][T17741]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1172.695556][T17741]  ? find_held_lock+0x35/0x130
[ 1172.700317][T17741]  ? handle_mm_fault+0x322/0xb30
[ 1172.705261][T17741]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1172.711501][T17741]  ? kasan_check_read+0x11/0x20
[ 1172.716351][T17741]  handle_mm_fault+0x43f/0xb30
[ 1172.721115][T17741]  __get_user_pages+0x7b6/0x1a40
[ 1172.726056][T17741]  ? follow_page_mask+0x19a0/0x19a0
[ 1172.731254][T17741]  ? get_user_pages_remote+0x17d/0x440
[ 1172.736715][T17741]  get_user_pages_remote+0x1a3/0x440
[ 1172.742004][T17741]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1172.747661][T17741]  ? alloc_vmap_area.cold+0x24/0x24
[ 1172.752864][T17741]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1172.759103][T17741]  ? _copy_from_user+0xdd/0x150
[ 1172.763956][T17741]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1172.769677][T17741]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1172.775151][T17741]  process_vm_rw+0x21f/0x240
[ 1172.779749][T17741]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1172.785547][T17741]  ? __might_fault+0x12b/0x1e0
[ 1172.790331][T17741]  ? kasan_check_read+0x11/0x20
[ 1172.795190][T17741]  ? _copy_to_user+0xc9/0x120
[ 1172.799886][T17741]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1172.806126][T17741]  ? nsecs_to_jiffies+0x30/0x30
[ 1172.810982][T17741]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1172.816437][T17741]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1172.821897][T17741]  ? do_syscall_64+0x26/0x610
[ 1172.826577][T17741]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1172.832219][T17741]  do_syscall_64+0x103/0x610
[ 1172.836810][T17741]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1172.842697][T17741] RIP: 0033:0x458209
[ 1172.846586][T17741] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1172.866190][T17741] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1172.874597][T17741] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1172.882562][T17741] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001dba
[ 1172.890525][T17741] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1172.898488][T17741] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1172.906453][T17741] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:00 executing program 1:
r0 = socket(0x2, 0x1, 0x0)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000080)={'lo\x00'})
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000040)={'lo\x00', 0x6a})
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000000c0)="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")

08:05:00 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x2)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:00 executing program 1:
r0 = socket$inet6(0xa, 0x20800a2, 0x0)
fcntl$setsig(r0, 0xa, 0x1a)
ioctl(r0, 0x5d, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgrou\xd9\xb6\xa3\x00\x00\x00\x80\x00\x00\x00\x00', 0x1ff)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x284800, 0x0)
r1 = syz_open_dev$dspn(0x0, 0x4, 0x10000)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000740)={0xfffffffffffffffd, 0x7fff})
io_setup(0x9, &(0x7f0000000380))
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r2, 0x20000000008912, &(0x7f00000001c0)="0a5c2d0240316285717070")
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=ANY=[@ANYBLOB="1800000032010173502954916f4fa4cd6384436418080000000005000000040001007d87b84286ba0cfa5fa0ed14797ca4781639a5891340935b885fc39703991338e0579fb766e2dd24e6c87e05a7c590fdf3639453af843259a9e24e8e72a858e5e125a4378d781808a0cc2f549dd3c1a9b3861f52531b36818080dbb3bdf8ee67b729ea7101881d7482fb6758aa6104d3155a9b91ce5f07c41d56eacbae1d79e38244a9da131198efb8d299b12df32624e64238ef290555e0731a53afa08519f69dcec13daf2de3c03978f919cb5aecd63a813f"], 0x1}}, 0x0)
socket$inet6(0xa, 0x803, 0x3)
r5 = socket$inet6(0xa, 0x5, 0x10000)
accept$packet(0xffffffffffffff9c, &(0x7f0000000500), &(0x7f00000001c0)=0x14)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000580)={'ip6erspan0\x00', {0x2, 0x4e24, @multicast2}})
clock_gettime(0x0, &(0x7f0000000400)={<r6=>0x0, <r7=>0x0})
pselect6(0x40, &(0x7f0000000200)={0x8, 0x1, 0x6, 0x2, 0x7, 0x10001, 0x0, 0x8000}, &(0x7f0000000380)={0xe2, 0x6, 0x5, 0x3ff, 0x2, 0xfffffffffffffffa, 0xfffffffffffffb93, 0x1000}, &(0x7f00000003c0)={0x7ff, 0x0, 0x57b9171d, 0x0, 0x0, 0x5, 0x4, 0x3}, &(0x7f0000000440)={r6, r7+30000000}, &(0x7f00000004c0)={&(0x7f0000000480)={0x3}, 0x8})
accept4$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @loopback}, &(0x7f0000000540)=0x10, 0x80800)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000240)={'filter\x00', 0x4}, 0x68)
setsockopt$inet6_int(r5, 0x29, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$inet6_MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, &(0x7f0000000040)={{0xa, 0x4e23, 0xfffffffffffffc1b, @mcast2, 0x1}, {0xa, 0x4e22, 0xff, @mcast1, 0x2}, 0x0, [0x8001, 0x0, 0x3ff, 0x1ff, 0x80002dc, 0x1, 0xffffffff, 0x5]}, 0x5c)
close(r5)

08:05:00 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'gre0\x00', <r1=>0x0})
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x40, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0xffffffffffffffff)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140), 0x4)
openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x200, 0x0)
sendmmsg(r0, &(0x7f0000008a80)=[{{&(0x7f0000000180)=@ll={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x80, 0x0}}], 0x1, 0x0)
ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000080)={@local, @remote, @mcast1, 0x7, 0x4, 0x5, 0x100, 0x5, 0x40, r1})
ioctl$VIDIOC_DBG_G_REGISTER(r2, 0xc0385650, &(0x7f0000000200)={{0x0, @name="c2bc2a2a609c107dc6a7f46cb97bb12d0ff52bcc5a43dea14f94cf9bd29b2eea"}, 0x8, 0x7, 0x9})

08:05:00 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000240)="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")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:00 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:00 executing program 1:
setresuid(0x0, 0xee01, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000000)={0x2c, @empty, 0x4e21, 0x2, 'ovf\x00', 0x2e, 0xffff, 0x1}, 0x347)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ubi_ctrl\x00', 0x200, 0x0)
ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000040)=r0)
setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f0000005600)={@nl=@kern={0x10, 0x0, 0x0, 0x20}, {&(0x7f0000005540)=""/114, 0x72}, &(0x7f00000055c0), 0x15}, 0xa0)

08:05:00 executing program 2:
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:00 executing program 0:
r0 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f0000000400)={'syz'}, &(0x7f00000002c0)="de0f4f947d210ec2bc7e1e689bb5fd58f435274a01", 0x15, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r0, r1, r1}, &(0x7f00000000c0)=""/83, 0xfe72, 0x0)
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x0, 0x0)
ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000000140)={0xe, 0x16, 0x9, 0x3, 0x3, 0x124f, 0x0, 0x14e, 0xffffffffffffffff})
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x2, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffff9c, 0x4c82)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, r4)

08:05:00 executing program 2:
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:00 executing program 2:
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:01 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x3)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:01 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x0, 0x0)
ioctl$VIDIOC_DECODER_CMD(r1, 0xc0485660, &(0x7f0000000040)={0x1, 0x1, @raw_data=[0x7, 0x29bd, 0x8, 0x1, 0x8, 0x929, 0x3, 0x4, 0xfff, 0x0, 0x81, 0x10001, 0x3f, 0x5, 0x0, 0x1ff]})
ioctl$VIDIOC_G_MODULATOR(r1, 0xc0445636, &(0x7f00000000c0)={0x5, "38c38ac246958266641d588a20afed064fb44d70da04ceb7e2d2e2e7c5b461fb", 0x800, 0x1, 0x4, 0x1a, 0x5})
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=@newlink={0x3c, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0xc, 0x2, [@IFLA_BOND_UPDELAY={0x8, 0xc002}]}}}]}, 0x3c}}, 0x0)
openat$userio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/userio\x00', 0x80, 0x0)

08:05:01 executing program 2:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:01 executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x10, 0xb, 0xebe, 0x7df, 0x10, 0x1}, 0x2c)
r1 = socket(0xb, 0x4, 0x379)
ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000000))
bpf$MAP_CREATE(0x2, &(0x7f00000000c0)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x2c)
r2 = dup3(r0, r1, 0x80000)
ioctl$TIOCSSOFTCAR(r2, 0x541a, &(0x7f0000000040)=0x400000000)

08:05:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000000000000000e3ffffffffffffff0000008de5888a00000000897fd65fd9ae9a"])
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

[ 1174.169107][T18317] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0)
08:05:01 executing program 2:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:01 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
lstat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0))
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:01 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x10800, 0x0)
ioctl$TCSETS(r0, 0x40096101, &(0x7f00000004c0)={0x0, 0x0, 0xd191, 0x0, 0x10, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x2})

08:05:01 executing program 2:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:01 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
r1 = socket$inet_sctp(0x2, 0x8, 0x84)
setsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000002c0)=@int=0x1f, 0xfffffffffffffdad)

08:05:01 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1174.455539][T18636] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1174.473806][T18636] CPU: 0 PID: 18636 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1174.482870][T18636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1174.492926][T18636] Call Trace:
[ 1174.496234][T18636]  dump_stack+0x172/0x1f0
[ 1174.500585][T18636]  handle_userfault.cold+0x41/0x5d
[ 1174.506071][T18636]  ? __lock_acquire+0x548/0x3fb0
[ 1174.511046][T18636]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1174.516346][T18636]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1174.522338][T18636]  ? find_held_lock+0x35/0x130
[ 1174.527114][T18636]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1174.533103][T18636]  ? kasan_check_write+0x14/0x20
[ 1174.538050][T18636]  ? lock_downgrade+0x880/0x880
[ 1174.542998][T18636]  ? kasan_check_read+0x11/0x20
[ 1174.547846][T18636]  ? do_raw_spin_unlock+0x57/0x270
[ 1174.552977][T18636]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1174.558790][T18636]  ? kasan_check_read+0x11/0x20
[ 1174.563655][T18636]  ? __thp_get_unmapped_area+0x190/0x190
[ 1174.569298][T18636]  ? pmd_val+0x100/0x100
[ 1174.573546][T18636]  ? __lock_acquire+0x548/0x3fb0
[ 1174.578492][T18636]  ? __kernel_text_address+0xd/0x40
[ 1174.583700][T18636]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1174.588821][T18636]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1174.594374][T18636]  ? find_held_lock+0x35/0x130
[ 1174.599140][T18636]  ? handle_mm_fault+0x322/0xb30
[ 1174.604112][T18636]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1174.610358][T18636]  ? kasan_check_read+0x11/0x20
[ 1174.615226][T18636]  handle_mm_fault+0x43f/0xb30
[ 1174.619998][T18636]  __get_user_pages+0x7b6/0x1a40
[ 1174.624957][T18636]  ? follow_page_mask+0x19a0/0x19a0
[ 1174.630160][T18636]  ? get_user_pages_remote+0x17d/0x440
[ 1174.635652][T18636]  get_user_pages_remote+0x1a3/0x440
[ 1174.640962][T18636]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1174.646619][T18636]  ? alloc_vmap_area.cold+0x24/0x24
[ 1174.651930][T18636]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1174.658183][T18636]  ? _copy_from_user+0xdd/0x150
[ 1174.663056][T18636]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1174.668783][T18636]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1174.674292][T18636]  process_vm_rw+0x21f/0x240
[ 1174.678886][T18636]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1174.684687][T18636]  ? __might_fault+0x12b/0x1e0
[ 1174.689470][T18636]  ? kasan_check_read+0x11/0x20
[ 1174.694337][T18636]  ? _copy_to_user+0xc9/0x120
[ 1174.699017][T18636]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1174.705258][T18636]  ? nsecs_to_jiffies+0x30/0x30
[ 1174.710111][T18636]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1174.715565][T18636]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1174.721019][T18636]  ? do_syscall_64+0x26/0x610
[ 1174.725695][T18636]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1174.731331][T18636]  do_syscall_64+0x103/0x610
[ 1174.735921][T18636]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1174.741807][T18636] RIP: 0033:0x458209
[ 1174.745696][T18636] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1174.765303][T18636] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1174.773719][T18636] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1174.781710][T18636] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001dc4
[ 1174.789683][T18636] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1174.797654][T18636] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
08:05:01 executing program 0:
syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x0, 0x2)
ioctl$TCGETA(0xffffffffffffffff, 0x5405, 0x0)
syz_open_dev$mice(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x3, @thr={&(0x7f0000000040), 0x0}}, 0x0)
sync_file_range(0xffffffffffffffff, 0x1, 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x20000000)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, &(0x7f00004d4000)=@nl=@proc, &(0x7f0000000000)=0x80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet(0x2b, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000540)={'ip6tnl0\x00', &(0x7f0000000500)=@ethtool_sset_info={0x37, 0x0, 0xfffffffffffffffc}})
setsockopt$inet6_int(r2, 0x29, 0x33, &(0x7f0000000040)=0x100000000001f, 0x87)
sendmmsg(r2, &(0x7f0000003d40)=[{{&(0x7f0000001b00)=@l2, 0x80, &(0x7f0000001d00), 0x0, &(0x7f0000001d40)}}, {{&(0x7f0000002300)=@nl, 0x80, &(0x7f0000003740), 0x0, &(0x7f00000037c0)}}], 0x4000000000001eb, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffff9c, 0x0, 0x0}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
fcntl$setownex(0xffffffffffffffff, 0xf, 0x0)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, 0x0, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm-monitor\x00', 0x10300, 0x0)
write$FUSE_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})

[ 1174.806130][T18636] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:02 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x4)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:02 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x400, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="08010000", @ANYRES16=r3, @ANYBLOB="000127bd7000fddbdf25030000000800050097f4ffff58ee00000800060072720000080002002c0000001400030000000000000000000000000000000000080001000a0000000800000008000800000001006000010008000800a3000000080004004e24000014000300ff020000000000000000000000000000080001000a0000000c000700060000002000000008000200ff00000008000900440000000c000700200000000000000008000b00736970003c00020008000500ae98d54908000400ff03000008000b000a0000000800060002000000080006007f0000000800060001010000080008000000000008000500050000007a42b8dcf7dad39080c7cd6057054197b775cff469cef002bc5b43120f567d4b5a988ef12c184434212e439edbccbc75a46b4b3f06703ec431790a3b29fbaf8366eea6acc07e54dec78079f191f2118ceea19884352fda1a5523e36b000000000000000000000000"], 0x108}, 0x1, 0x0, 0x0, 0x80}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000240)=<r4=>0x0)
syz_open_procfs$namespace(r4, &(0x7f00000007c0)='ns/uts\x00')
setsockopt$inet6_group_source_req(r0, 0x29, 0x46, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40001008}, 0xc, &(0x7f00000001c0)={&(0x7f0000000680)={0x13c, r5, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x20, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x20}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffc000000000000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5a}]}, @TIPC_NLA_NET={0x18, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xfff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}, @TIPC_NLA_LINK={0xf0, 0x4, [@TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x856}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7d38}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x288}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffffffffffab}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x77}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffff0b97}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000300)={{{@in=@multicast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000400)=0xe8)
setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f00000004c0)=0x275, 0x2)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000440)={@ipv4={[], [], @broadcast}, @dev={0xfe, 0x80, [], 0x26}, @rand_addr="661488e916a5dc88b9c0da75232ec158", 0x9, 0x3ff, 0x8, 0x500, 0xffff, 0x200, r6})
write$binfmt_misc(r0, 0x0, 0x0)

08:05:02 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:02 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r1, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:02 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
ioctl$KDSETKEYCODE(r1, 0x4b4d, &(0x7f0000000000)={0x100000000, 0x5})

08:05:02 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:02 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:02 executing program 0:
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000000c0)={<r0=>0x0, @in6={{0xa, 0x0, 0x0, @local}}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb]}, 0x0)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000200)='/proc/capi/capi20ncci\x00', 0x185040, 0x0)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=<r2=>r0, &(0x7f0000000280)=0x4)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYBLOB="08000000000000000000000047050000050000000000000006000000810000007f0000000000000000000000000000001f0000c0070000000100000002000000010100000100003900000000000000000000000000000000461c518414e76bfff20c2419000080ff01000004000042f300050000000080ffffff0f00006200000000000000000000000000000000008007000000000000001f000000010000800500000009000000000000000000000000000000010000400000000005000000c41800003973000009000000810000000000000000000000000000000700000002000000040000000002000009000000ffff0000010000000000000000000000000000000600000024000000020000007f00000002000000ddeafe1c0300000000000000000b5a3b7fe098950d0000c0010000000600000003000000ff0000000900000008000000"])
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000002c0)={r2, 0x92a, 0x30}, 0xc)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="5fb88c750196077aa3214bebc13f7d74ad4d9320611cf5a33f2a3f09e1c926359dcfe20001c781cb67f79cb0c6f5f4bf8ed60dce2176c22a20b22b9b24172b5569ec67906e7df93b05b19ba5360f2eab62812070fc181a2483366595113b240804d882a7dcd7ac4ba53e06d02558968b978122716d1823dcc7d40155c1bc1e8433f5ba15f5ee48c0ca941fce872e497d1377e2a5bde956f003caaf58c7520f82d7346c266e8ea70dab3bb7af6d78602a31ab8d232b07f6e3ef524b552ed88a1b1c02bc89f4f671855d40a2c1c173d4bb121bc86270c32d39c4c0d09a29b8983169914d8df86417a802b772bb638f72ccdcbb46267b5751816c77b6739f484292d5ca5e1bc4efee06f4e07e6a795faee2af27a8f21298055806494ee0e961cd5bd077bd7756f9e39dd3abdbe5c598cc5cbd44c5c319af923fbc4731545ff134749c2f42ee8454bf33ef309a6323dc847676d5be2fcb9abc717fc1e29396943ec0e264a80d64ca66ef2c42a57112a8a146097d9f4256ef6e6fd73be26e9a5f79b21dae42066d9cf4441021d64a2d6fd61c7ea709948d4be380e0fa4b76dff6aeef45", 0x1a1, 0x0, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_ifreq(r3, 0x89f3, &(0x7f00000001c0)={'tunl0\x00', @ifru_data=&(0x7f0000000180)="d61a072afa6a2e6e9105a65cf0b08be4d57565e1a85eff283ee23d954743a2e3"})

[ 1175.259914][T18908] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1175.266829][T18908] CPU: 1 PID: 18908 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1175.275868][T18908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1175.285931][T18908] Call Trace:
[ 1175.289239][T18908]  dump_stack+0x172/0x1f0
[ 1175.293593][T18908]  handle_userfault.cold+0x41/0x5d
[ 1175.298725][T18908]  ? __lock_acquire+0x548/0x3fb0
[ 1175.303699][T18908]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1175.309002][T18908]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1175.314986][T18908]  ? find_held_lock+0x35/0x130
[ 1175.319760][T18908]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1175.325746][T18908]  ? kasan_check_write+0x14/0x20
[ 1175.330694][T18908]  ? lock_downgrade+0x880/0x880
[ 1175.335559][T18908]  ? kasan_check_read+0x11/0x20
[ 1175.340411][T18908]  ? do_raw_spin_unlock+0x57/0x270
[ 1175.345521][T18908]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1175.351332][T18908]  ? kasan_check_read+0x11/0x20
[ 1175.356209][T18908]  ? __thp_get_unmapped_area+0x190/0x190
[ 1175.361851][T18908]  ? pmd_val+0x100/0x100
[ 1175.366106][T18908]  ? __lock_acquire+0x548/0x3fb0
[ 1175.371056][T18908]  ? __kernel_text_address+0xd/0x40
[ 1175.376274][T18908]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1175.381399][T18908]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1175.386953][T18908]  ? find_held_lock+0x35/0x130
[ 1175.391731][T18908]  ? handle_mm_fault+0x322/0xb30
[ 1175.396693][T18908]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1175.402945][T18908]  ? kasan_check_read+0x11/0x20
[ 1175.407805][T18908]  handle_mm_fault+0x43f/0xb30
[ 1175.412581][T18908]  __get_user_pages+0x7b6/0x1a40
[ 1175.417544][T18908]  ? follow_page_mask+0x19a0/0x19a0
[ 1175.422751][T18908]  ? get_user_pages_remote+0x17d/0x440
[ 1175.428211][T18908]  get_user_pages_remote+0x1a3/0x440
[ 1175.433513][T18908]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1175.439181][T18908]  ? alloc_vmap_area.cold+0x24/0x24
[ 1175.444395][T18908]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1175.450637][T18908]  ? _copy_from_user+0xdd/0x150
08:05:02 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x0, 0xfffffffffffffff8}, 0x4)
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb080045000014000020000000907800000000ffffffff0000010000000000"], 0x0)

08:05:02 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1175.455483][T18908]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1175.461203][T18908]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1175.466681][T18908]  process_vm_rw+0x21f/0x240
[ 1175.471273][T18908]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1175.477070][T18908]  ? __might_fault+0x12b/0x1e0
[ 1175.481848][T18908]  ? kasan_check_read+0x11/0x20
[ 1175.486702][T18908]  ? _copy_to_user+0xc9/0x120
[ 1175.491368][T18908]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1175.497603][T18908]  ? nsecs_to_jiffies+0x30/0x30
[ 1175.502455][T18908]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1175.507905][T18908]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1175.513359][T18908]  ? do_syscall_64+0x26/0x610
[ 1175.518032][T18908]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1175.523682][T18908]  do_syscall_64+0x103/0x610
[ 1175.528295][T18908]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1175.534198][T18908] RIP: 0033:0x458209
[ 1175.538122][T18908] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1175.557735][T18908] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1175.566154][T18908] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1175.574135][T18908] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001dc8
[ 1175.582087][T18908] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1175.590040][T18908] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1175.598014][T18908] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:02 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:02 executing program 1:
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
symlink(&(0x7f0000000500)='./file0/f.le.\x00', &(0x7f0000000140)='.//ile0\x00')
mount$9p_rdma(&(0x7f0000000040)='127.0.0.1\x00', 0x0, &(0x7f0000000180)='9p\x00', 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mknod(&(0x7f0000000080)='./file2\x00', 0x1000, 0x0)
mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="75007065726469723d2e2f66696c72490100000000001b00652e2f66696c653100000000000000"])
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x280000, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={<r1=>0x0, 0xffffffffffffff9c, 0x0, 0x3, &(0x7f0000000340)='9p\x00', 0xffffffffffffffff}, 0x30)
lstat(&(0x7f0000000480)='./file3\x00', &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = accept4$x25(0xffffffffffffff9c, &(0x7f00000019c0)={0x9, @remote}, &(0x7f0000001a00)=0x12, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001c80)={{{@in=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@initdev}}, &(0x7f0000001d80)=0xe8)
fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000001dc0)={0x0, <r5=>0x0})
r6 = syz_open_dev$sndtimer(&(0x7f0000001e00)='/dev/snd/timer\x00', 0x0, 0x10000)
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000001e40)=<r7=>0x0)
r8 = openat$null(0xffffffffffffff9c, &(0x7f00000025c0)='/dev/null\x00', 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002600)={0x0, <r9=>0x0}, &(0x7f0000002640)=0xc)
getresuid(&(0x7f0000002780)=<r10=>0x0, &(0x7f00000027c0), &(0x7f0000002800))
r11 = open(&(0x7f0000002840)='./file0\x00', 0x20000, 0x52)
r12 = openat$autofs(0xffffffffffffff9c, &(0x7f0000002880)='/dev/autofs\x00', 0x10000, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000028c0)=<r13=>0x0)
r14 = getpgid(0xffffffffffffffff)
r15 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000002c00), &(0x7f0000002c40)=0xe, 0x80000)
r16 = fcntl$getown(0xffffffffffffffff, 0x9)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000002d80)={{{@in6=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r17=>0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000002e80)=0xe8)
fstat(0xffffffffffffff9c, &(0x7f0000002ec0)={0x0, 0x0, 0x0, 0x0, 0x0, <r18=>0x0})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002f40)={<r19=>0xffffffffffffffff})
r20 = socket$inet6_udplite(0xa, 0x2, 0x88)
r21 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$netlink(r0, &(0x7f0000002fc0)={&(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfd, 0x2}, 0xc, &(0x7f0000002cc0)=[{&(0x7f0000000540)={0x13cc, 0x20, 0x0, 0x70bd2d, 0x25dfdbfd, "", [@generic="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", @generic="400b7ab28945df4b4e09f011721e62da0252001bf862be2ab521f6b4815d9f6455554bd75700ab522c89867c2fc7ecfcfcd1da61590b5ce8e49120d03bd917e8fd16754b7972c52f2dbc20459f2f8e1864ee93e94fed68981ade1106ee72af90bdbf21d7ea9472ae2ba97bd06885d662137c8a9b4b8423f427a17159fa13c8526619843aa7883d8e90d3d29e0f62f3630d0fa15e019bccdd0c59898de23fa3fd699b1c2e", @generic="3b34cffd1c3b383e6c673c454a9abfbba23292f7688ae8a458242c16d69975da02d8e9b50c0a67ff73a497a7f7c37d278bc08d066d6ed14475b496965e1ca154b5129c858ab4ec5c1c99fdfb505e08c7a4ca3d0516a4c7d4d4d51d03896258a49415282068195d7a819a9cc2287cfd2a82d8a7d8add149119db87a77c69b8899bfeb4c9dd6798925aee061a9da11307a99db80893c78ac6b8fc960af02651474791d027de482c33490e3a7821ba6db53af0f149c0ea01df98d145701a05ef15a9f5c177865108dadb69dd2", @generic="26100867bd1a607a67e56138703a5e7079d18ec1d979a1cc7417580d2a92be705235dd8c5dad35baa2d9027670d68b", @nested={0x100c, 0x83, [@typed={0x8, 0x41, @ipv4=@loopback}, @generic="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"]}, @nested={0xbc, 0x5e, [@typed={0x8, 0x81, @u32=0x9}, @typed={0x14, 0x3e, @ipv6=@rand_addr="695e89171f7e25797e99860636881c46"}, @generic="53e728a96e7260cbe0679c1b313aa239e44b13bc6122f5e68e42f03e8ce3d541028c2e563cef9b94544b64ff2e0879d6d3bd393c5fcbb94bf78ba1e9aca25e0eff9e9fe13271aeb44358f50e9cb1e1109e123edcd3b7e970965b761c74310d153d2b2e2a35dfc62acbbbd08f39b6c46ee038d0711c291453431ed69ce5d3c5e1c31d2c118d26a630afcec4e499abf8c829bdacab24f0321bd9"]}, @typed={0xc, 0x72, @u64=0x549}, @generic="dfbf06f30e9a5ccc75a7e83cc1d8c86b01da54b356bc48d0fc1496cdc8388491f1d2a507b2ae2728520cd219edde7641acc29cf1e3875ed920a9873aa622a4c8933c5c6742db684e008ef2da"]}, 0x13cc}, {&(0x7f00000004c0)={0x20, 0x31, 0x20, 0x70bd29, 0x25dfdbff, "", [@typed={0x8, 0x2d, @pid=r1}, @typed={0x8, 0xf, @uid=r2}]}, 0x20}, {&(0x7f0000001a40)={0x88, 0x36, 0x8, 0x70bd2c, 0x25dfdbfe, "", [@typed={0x8, 0x55, @u32=0x7}, @nested={0x70, 0x7b, [@typed={0x8, 0xc, @str=',\\\x00'}, @generic="71a1ff6c64a0396ffba2c01fbaff8c90f8", @typed={0x8, 0x18, @fd=r3}, @generic="22279f14114972582929e31651dd7dc97c26c989afa1dbb5706234d3da3da77dfe7d7e1fb0c157e395afeef475c2b3c438632234f037a39e8865bce6339571f949664574530757e25d38"]}]}, 0x88}, {&(0x7f0000001b00)={0x18, 0x15, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@typed={0x8, 0x20, @ipv4=@remote}]}, 0x18}, {&(0x7f0000001b40)={0x110, 0x27, 0x100, 0x70bd2b, 0x25dfdbfb, "", [@typed={0x8, 0x50, @ipv4=@rand_addr=0x7ff}, @typed={0x20, 0x49, @binary="fbb5f0dfc6a3cd3f83ea19aa6a243a0c72ad0f6e36de1b876d93"}, @generic="0f9e72abc9ad2f30f1ead0e1174f9644a2a1a0c84fc1fb871ea8c10358b59a7726835bb0a9f99d128bab0ec2ae390e9a84f29168b3d0e8ee65fbe4fa31f0c1d69105d0903ea35754abd94284f0b0793f755706663edc0443e862e0a88432154d3b984fdeddf3c0b2525636f9b49e5ad38f8ca42550608f1bc72f5ae7bc9f7f606f5c535550c92885682262c7c44214604963575a12d718a4c11c3e08ab7dede128e43b89bcc4efbd88a5a4408da0f35a9713ab876dcbb83291ba171b47e1571a7a9f53eb388024db2de077b97798054d623568ab1cfc9e71"]}, 0x110}, {&(0x7f0000001e80)={0x720, 0x42, 0x900, 0x70bd2c, 0x25dfdbfb, "", [@nested={0x284, 0x6b, [@generic="38a246a446ca08d0c316e36f59343677ae108072bb193b457374fb1e299f47916c53b52b19b7921388b24459e78123397afcd484f1b4da3496d4c06f4d92d33b305580a4f743fe2547e9ef7d7e55b541b6af8e8d06fbdef0a112731761fb7efc72e4c285c21c39dd31f651ef4f94bf1eb6f66f68af411bf2498b30b549b7ef4ee050ac965454b178162a61502d588c96defdd515d58c3688e97769a3853042cda53290e628476907f26eea2a9779601fbd787f7e341df2d715335c49c4af4de27faf8cddfba68f7e9dd44422db1eac41e9c6ab4fe9914eb4a8aabbb373dffca943fc98f5c673613f86fc0838d0ef1fa4360aa84583de", @generic="b37f243b0b025b5b96f2e1f7ff0296118ac21fea7266f1bfccb3ed188856e94139f0dd18f4578f751df63b11f48c667b14", @typed={0x8, 0x33, @uid=r4}, @generic="14400982cfdd8371efc39de8029acf529d97f3b39dacaf479f1197c6de234b9d809169613512e91926bd763c77203a42bd38e2a04b8c621f6b2d78a5a9774ac50d83b23f009d371ceb32db829d572ae6b649a76904a8810366d962ed858f14028e8f50b645a8c918a5ae4eb7c2fb76820256d04cddea49ccb655b72c1dd907ad7f7c3a84bcd9e0777d3d676b2c5c5b15ecd2f2240e4a6086cea3b18bee634adbb10c02bd92cb18a019e84ca816e3a79b467a10b8cc278d78c44877974839de75953fb8204adc6e9cbd7376ddd3381279a2eafdc24243c69f", @generic="444bf266eb8b51ec56ec7b8922b844dacfb65fff2e8e848c926d973eb10d7d9f13cc43f1d1edef1f1dd34f23f526af2b02be5d449c1835b1597417f47aa99109412fcca39f16b37b620cd1e226f5b0910a81f75f9011f48d878bd45a7b857972a2562eb24eca6f7d3b88ccb09c9a6801fd965d517e5ce24421"]}, @nested={0x34, 0x6d, [@generic="a03924e75a5dc2ba1568f0f4806d05a3a10267184026c58b8a70d47adf3553b4f9a8bf9c72aa6883adc520dc5e"]}, @typed={0x8, 0xa, @pid=r5}, @generic="33435166d7f764cc78c6607a9ad2c52975a642c20ee546", @typed={0x8, 0x96, @ipv4=@loopback}, @generic="4687ac363dc8f5cc662bb58bc99b01e4fa2a511b6dff53d97ac89016762e209e61f007890c15c82ddd411a93350ca0c9cb783366b5ddcf962ac13eb48a8dc5635db7e3e81725e497aac58402a16e43", @nested={0x3e0, 0x3a, [@generic="a2f7d044e77ee63a7545f65ab8238ce050a3587a0029719c12a6cd1c7583c50c25fad072940e13809f023315b00db57c4ed7b27435f1a215974fee2cf23665be666413ff10046037e929b51a4933f3e82053d6d096a1fcd451db46143f1eee960d03377a01594d8201c6e8f4b422f28c9699f34cfe911595fc526e972624017ea849ad8d0590b36133508755ea66c51dd38037ebd36a3ed0c7bafe56757d296115dfba4e0bdbb49494033c2e47e0", @typed={0x8, 0x1, @fd=r6}, @generic="71a78e83d82bb0348fb462099a3c6affe7bfab3b97032c77b8f22696f29f6ce16c911cb35df4b33dc507b9c4425aedf0d67b2c60af6e1d761f5bc3bbc1b920c87a10f2c69b75440c3702c5ab6439140a87c450b3b990e9c0a4afdecda690d40423e1b676e25d2d1ba3114a99b86867b1461c9120b3ce770682fba59b6baa02972a1852409a0e4c708e4e9b6fbfd82bf48baef2412b5882bde94aa763835fa8b2bd96ad665b5d3d73cf30e323958e0cd47ddfc6f5a41d16a703ed6209d221c0fd9b2c7d97f9", @typed={0x8, 0x50, @pid=r7}, @generic="ab3a946556f768924996245338b7ae7fc47a20ca647df8fb75d0673e04687e1b639b9548ad1d9cb4d00296ebc70d4644c3ce09b5dfb61acca3f4c875788098acbf08bbcb964ceca342f64c8b2402f87ec74a7e1c9c3c35627ac7b3dd95e52e5200ec53bc1dff92a1", @typed={0x4, 0x24}, @generic="a6b34a19967df21a74ef0d9c4e78f3cb029a041211d0667ce76e2adb37e4ea6d705c4c388a9694467887ef59589bd75e1bc61f942e33b7044b793d8b849c13dfc48955167bd5f44c94ccac4b3cf0924003c0a9dbc52437378611a54ac99a4bbbfe5fd22459a9533378d2c039dc55ddf308221be8fe7ec929b9ce245d7f3b39bc4757b19fb0c3cd8626db014e63e748d6cae7465fb0c61dcbcd129c9f22b4b82dc7ff33466a762f7ecbee9eb2102ecd9cf8fa54c2536905ed5d333d5527", @generic="699b46e598923e35a46d69c44db2fe8c441f5c5656fcc500d5831384258f4cce38c00d81c6134522586efbf1ab93fc578b403d2e5c47e1d114753350f0b0bc60252bb4b39ff922d92450e7f35d7172b7986b24f2a719561dcba87fc1ff571330360182c3be4c6869a95f261d02ced78ad952c9dd553df489f9b64df6131dde314b0c9c9bc18ee32522c198994e405ecdff8c04650941706991a003ae10e855cc", @generic="6d2b79dec82146b554289740dc900383b4dbd08bb1619376d283750d465bb968377a1e3198a1c0501f021ba6e4bede82c9f1f05edbd2966a50e9d3a72101be72f551f1f2764e8a", @generic="863818d67abdcaf3d0d28cbb3ebdce9634c35ca8cc773489490d220305362ab731ff0461673672632f8c27018d12eaa9107dd5ce4399394a6bae8f6881bea7ea7c86b4608157"]}]}, 0x720}, {&(0x7f0000002680)={0xf8, 0x22, 0x300, 0x70bd26, 0x25dfdbfc, "", [@nested={0x4, 0x84}, @typed={0x8, 0x58, @fd=r8}, @generic="79f8ce4ee24e61e870a9a4399e0b0dec541a7cbbea2322dbfaa2a0b2301d70d2c0a9a954b5e45ff96bec43beadfd048049a59be3fb5ce4599e3d522704b358675821583e92f5c6364b22ed391205b038dc3b0d4b7016043850edcf6e5ad3290c7a4e976b31237d11de4bd5bc16fa6b6d13f5fe9ee53df2a87ee2a7407c13aae1ab99381989297887f4d4c58192413678a89f167347044a5f7c789a237327cb7ec4b575b25272c6f02862b665f1ed465c1206e73630b5b30203db75d2f1e647bc15a2490067377ca20520e15ca3a94eb393c7c2", @typed={0x8, 0x4c, @uid=r9}]}, 0xf8}, {&(0x7f0000002900)={0x2d4, 0x31, 0x8, 0x70bd2d, 0x25dfdbfb, "", [@nested={0xd0, 0x90, [@typed={0xc, 0x69, @u64=0x9}, @typed={0x4, 0x1a}, @generic="37980f4a93506f91429b877449a3778f08afe05f4ab430649570a53b4db43918278dd9603daa3b34ea5ae91cdfa4a7fb9e255c6824bb119ddf0302ba904a3ff90fba854600ed4c8c1f35a8150f254e56453eaa779a151ae3faf87279fe400f4fcf92ac2df28f964868b92919c5b1f8514abf3c48fd5dc26ed239fb5d7ae6fef865ddd64ffb0f31ba8285e7fb2f94e4ea1387414765d10cd5ac24dfdcf8d8940c88496d53c5487912e8052f0af43af3dd85079eec676794bb80c9705e"]}, @nested={0xc, 0x6c, [@typed={0x8, 0x1c, @str='\x00'}]}, @typed={0x78, 0xac, @binary="557d207d98ae4519dc2298bc88f03184f954518ec45e1814cfbead88a7c3b8ff1d644a2947975fceefd674fbaaaea9d8e3311ec9a638c9d213b0aae0adf0cfd10887dbbde7d1d092a36d4e29e3b23e15eed34e3b086352b86bc2f308e30fce01a1c3c61f89331d7e767b6d62d50a5c25f931"}, @nested={0x170, 0x41, [@generic="b12bed3647131f63439e0d5cfa9cf3a96ed0fe55f643eeafc1da825757a7be8795e22982106373a7ae7509a8eafd0231b5cba6bd56e35bc6fdd37e6660b761fcf2d216037bcc7743c01add7bdd1586b5", @typed={0x8, 0x8e, @uid=r10}, @generic="a9ca34296887d10297c5f0b64d3a32d954d964198bdc8e9e20e1857a757fbb76573adbb3a513046fab1e07a1145d454764673aad518f1a4359145f8e1112e09dfda0425825dabdd33c446be792b249a7105318ee59c4dc6124828ed57ce1ce5e7056be01138fb1f04d56b6349d3b74b051466ac763867cd08dbe9cc0c116dfc8372bfce95e119bffc799d8c770223ad7b95d6db2b693431238a4fbe455ef7669c24c58e65529f5e154135e301176a266aca88f087febc29513c48083cf0da8902b2d4899ddba27ff5345e3e4fe06e594ad4276a9690653e8e40cbdb7fccb930ae303916f13e3a4b5b7fda0a66a6c2c1e5fc66fb639191d8a2d", @typed={0x8, 0x2, @fd=r11}, @typed={0x8, 0x10, @fd=r12}, @typed={0x8, 0x7f, @pid=r13}]}]}, 0x2d4}, {&(0x7f0000002c80)={0x20, 0x2d, 0x300, 0x70bd2c, 0x25dfdbff, "", [@typed={0x8, 0x88, @pid=r14}, @typed={0x8, 0x18, @fd=r15}]}, 0x20}], 0x9, &(0x7f0000002f80)=[@cred={0x20, 0x1, 0x2, r16, r17, r18}, @rights={0x20, 0x1, 0x1, [r19, r20, r21]}], 0x40, 0x10}, 0x4000000)
getpeername$netrom(0xffffffffffffffff, &(0x7f0000000400)={{0x3, @rose}, [@null, @remote, @default, @default, @netrom, @bcast, @bcast]}, 0x0)
r22 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
renameat(r22, &(0x7f0000000240)='.//ile0\x00', r22, &(0x7f00000003c0)='./file0/f.le.\x00')

[ 1175.606314][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 1175.612145][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 1175.617982][    C1] protocol 88fb is buggy, dev hsr_slave_0
[ 1175.623810][    C1] protocol 88fb is buggy, dev hsr_slave_1
[ 1175.685694][T19294] overlayfs: unrecognized mount option "u" or missing value
08:05:03 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x5)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:03 executing program 0:
socketpair(0x15, 0xf79b5f2f63748bc1, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f0000000180)="46c4112de5fa4d4ea2bda8fc2e78a8731a13c1bd13a3853d4bcc0e4f89e3c06a4a"}, 0x20)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f3, &(0x7f0000000300)='gre0\x00')
getsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=""/6, &(0x7f0000000040)=0x6)

08:05:03 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:03 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
r3 = syz_open_dev$vbi(&(0x7f0000000200)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_ENUMINPUT(r3, 0xc050561a, &(0x7f0000000300)={0x2, "b89f90bf81d0937171b70a2c734c41d3e8b992e3f634c7fd44b43db2f46e19d2"})
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
userfaultfd(0x80000)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:03 executing program 1:
r0 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x9c0, [0x0, 0x0, 0x0, 0x7a000000, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000000000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e670000000000000000000000000000000000000000000000000000002008000000000000140400000c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b336759328df82c14bb91700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000000000000000000000000000000000000000000000000000000000000001000000fcffffff00000000"]}, 0xa35)
r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video37\x00', 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x0, 0xb, 0x3})

08:05:03 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000000c0)=0x18)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:03 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:03 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r3 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000140)={'team0\x00'})
preadv(r1, &(0x7f0000000500)=[{&(0x7f0000000140)}, {&(0x7f00000001c0)=""/139, 0x8b}, {&(0x7f0000000300)=""/130, 0x82}, {&(0x7f00000003c0)=""/227, 0xe3}, {&(0x7f00000004c0)=""/38, 0x26}], 0x5, 0x0)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mISDNtimer\x00', 0x2, 0x0)
r4 = syz_open_dev$midi(&(0x7f00000005c0)='/dev/midi#\x00', 0x6, 0x40000)
ioctl$RNDGETENTCNT(r4, 0x80045200, &(0x7f0000000600))
process_vm_readv(r3, &(0x7f0000000580)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0x91}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:03 executing program 0:
r0 = inotify_init1(0x800)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x1, 0x84)
fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, <r1=>0x0})
ptrace$setopts(0x4206, r1, 0x0, 0x0)
ptrace(0x4207, r1)
prctl$PR_SET_SECCOMP(0x16, 0x8545765b6956009b, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x0, 0x2, 0x3, 0x4}, {0x7, 0xad7, 0x1, 0x100}, {0xffffffff, 0x100000001, 0x4747, 0x400}, {0x2, 0x3, 0x74b2, 0x65c0}, {0xffffffffffff0001, 0x4, 0x1, 0x319}]})
ptrace(0x4208, r1)

08:05:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x600, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@can_newroute={0x2c, 0x18, 0x1, 0x0, 0x0, {}, [@CGW_MOD_XOR={0x18, 0x3, {{{}, 0x0, 0x0, 0x0, 0x0, "669155da1bff0990"}, 0x1}}]}, 0x2c}}, 0x0)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000280)={0x0, 0x3}, 0x8)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000000140)={{{@in=@empty, @in6=@mcast2}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in6=@dev}}, &(0x7f0000000240)=0xe8)
pkey_alloc(0x0, 0x3)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [0x12, 0xfffffffffffffffd]})

08:05:03 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:03 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(0x0, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:04 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x6)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:04 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f00000001c0)=""/125, 0x2e)
openat$cgroup_ro(r1, &(0x7f0000000100)='cpuacct.stat\x00', 0x0, 0x0)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
flistxattr(r1, &(0x7f0000000140), 0x0)

08:05:04 executing program 0:
r0 = openat$snapshot(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unlink(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x309)
ioctl$BLKIOMIN(r0, 0x1278, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x201a7f1b, 0x85ffffff, 0x201a7fd7, 0xa, 0x7a, 0xff00}]}, &(0x7f0000000000)='\x1dNL\xc0\x00', 0x20000, 0x436, &(0x7f00001a7f05)=""/251}, 0x48)

08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(0x0, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:04 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x6}, &(0x7f0000000080)=0x8)

08:05:04 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))
ustat(0xff, &(0x7f0000000000))

08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(0x0, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1177.110685][T19942] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1177.116662][T19942] CPU: 0 PID: 19942 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1177.125699][T19942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1177.135779][T19942] Call Trace:
[ 1177.139100][T19942]  dump_stack+0x172/0x1f0
[ 1177.143451][T19942]  handle_userfault.cold+0x41/0x5d
[ 1177.148576][T19942]  ? __lock_acquire+0x548/0x3fb0
[ 1177.153546][T19942]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1177.159310][T19942]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1177.165301][T19942]  ? find_held_lock+0x35/0x130
[ 1177.170077][T19942]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1177.176073][T19942]  ? kasan_check_write+0x14/0x20
[ 1177.181027][T19942]  ? lock_downgrade+0x880/0x880
[ 1177.185889][T19942]  ? kasan_check_read+0x11/0x20
[ 1177.190748][T19942]  ? do_raw_spin_unlock+0x57/0x270
[ 1177.195872][T19942]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1177.201685][T19942]  ? kasan_check_read+0x11/0x20
08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

[ 1177.206581][T19942]  ? __thp_get_unmapped_area+0x190/0x190
[ 1177.212239][T19942]  ? pmd_val+0x100/0x100
[ 1177.216492][T19942]  ? __lock_acquire+0x548/0x3fb0
[ 1177.221439][T19942]  ? __kernel_text_address+0xd/0x40
[ 1177.226647][T19942]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1177.231772][T19942]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1177.237367][T19942]  ? find_held_lock+0x35/0x130
[ 1177.242142][T19942]  ? handle_mm_fault+0x322/0xb30
[ 1177.247113][T19942]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1177.253362][T19942]  ? kasan_check_read+0x11/0x20
08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

[ 1177.258237][T19942]  handle_mm_fault+0x43f/0xb30
[ 1177.263017][T19942]  __get_user_pages+0x7b6/0x1a40
[ 1177.267974][T19942]  ? follow_page_mask+0x19a0/0x19a0
[ 1177.273202][T19942]  ? get_user_pages_remote+0x17d/0x440
[ 1177.278679][T19942]  get_user_pages_remote+0x1a3/0x440
[ 1177.283988][T19942]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1177.289647][T19942]  ? alloc_vmap_area.cold+0x24/0x24
[ 1177.294862][T19942]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1177.301105][T19942]  ? _copy_from_user+0xdd/0x150
[ 1177.305964][T19942]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1177.311697][T19942]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1177.317183][T19942]  process_vm_rw+0x21f/0x240
[ 1177.321795][T19942]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1177.327601][T19942]  ? __might_fault+0x12b/0x1e0
[ 1177.332400][T19942]  ? kasan_check_read+0x11/0x20
[ 1177.337262][T19942]  ? _copy_to_user+0xc9/0x120
[ 1177.341950][T19942]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1177.348210][T19942]  ? nsecs_to_jiffies+0x30/0x30
[ 1177.353084][T19942]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1177.358545][T19942]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1177.364016][T19942]  ? do_syscall_64+0x26/0x610
[ 1177.368704][T19942]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1177.374352][T19942]  do_syscall_64+0x103/0x610
[ 1177.378946][T19942]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1177.384826][T19942] RIP: 0033:0x458209
[ 1177.388723][T19942] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1177.408320][T19942] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1177.416722][T19942] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1177.424697][T19942] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001dd2
[ 1177.432675][T19942] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1177.440648][T19942] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1177.448629][T19942] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:04 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x7)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:04 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

08:05:04 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20-simd\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
readv(r1, &(0x7f00000007c0)=[{&(0x7f00000001c0)=""/104, 0x421}], 0x1)
r2 = syz_open_dev$amidi(0x0, 0x0, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0)
recvfrom$unix(r2, &(0x7f0000000640)=""/210, 0xd2, 0x40000020, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r4 = open$dir(&(0x7f0000000600)='./file0\x00', 0x4000, 0x0)
write(r3, &(0x7f0000000400)="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", 0x200)
syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x2d, 0x10100)
getpid()
sendfile(r3, r4, 0x0, 0x16300)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
r6 = dup3(r5, r5, 0x80000)
getsockopt$inet_mtu(r6, 0x0, 0xa, &(0x7f0000000140), &(0x7f0000000200)=0x4)
sendmmsg(r5, &(0x7f0000000fc0)=[{{&(0x7f0000000180)=@in6={0xa, 0x4e20, 0x0, @local}, 0x80, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x130}}], 0x1, 0x0)
getegid()

08:05:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000})
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000000540)=ANY=[@ANYBLOB="a08287183cb28f86e273796ee1651f8949b944be46c57c18ed2599e539421726b045485ad5b2e5df1beb41eee9f2ebce08cfe26dc6569e22961d90e780cf3ae2ab68525aef695834b38d509fdcaa1b1eb17592f353cd8b914d36154860581cba403ac2d80b0ca60051c473360c3f5f4d24d49bbce53baabd1810309bccb1eae7e6c37b18d3b7e684d23a804b34e5dd6f7363b712cdb353409cebb1bcc90891bf7dd4ca19b6749f482e581f21efef3db8d40c64994e0fb48ee922ac9e29852a3a92f47daf3b97a32e9cbd2389e05138c8187793c52cfde458"])
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = accept$inet6(0xffffffffffffff9c, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={[], [], @loopback}}, &(0x7f00000000c0)=0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r3, 0x29, 0x1, &(0x7f0000000180), 0x4)
getsockopt$inet6_buf(r3, 0x29, 0x2dbba3ffbfa23042, &(0x7f00000001c0)=""/202, &(0x7f0000000300)=0xca)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:04 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x400040, 0x10)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x40000, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000001c0)={r1, r4})
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:04 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x5, &(0x7f00000000c0)="0adc1f8c16a74a5f123c05a41d88b070650385e9acf13d4a3175f8a6f2df8ae45d1c803815bd0340e8a9a0a9ab271fb690d4bc30defae81ae5a2790f427ddf84293905b3c9e0be75f2c7483641020000000000000027193da40a90aa77e9353061faa99bb006f7000bec18ef0f9d9fb0c9c0d9251a37e29e3f513bcc546cc60000")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:05 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x0, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1177.953439][   T27] audit: type=1800 audit(1553328305.032:4660): pid=20103 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=16746 res=0
[ 1177.984035][   T27] audit: type=1804 audit(1553328305.032:4661): pid=20103 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir332680773/syzkaller.hhEAJP/2143/file0" dev="sda1" ino=16746 res=1
[ 1178.016046][   T27] audit: type=1800 audit(1553328305.032:4662): pid=20103 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=16746 res=0
[ 1178.036994][T20105] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1178.056245][T20105] CPU: 0 PID: 20105 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1178.065303][T20105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1178.075379][T20105] Call Trace:
[ 1178.078698][T20105]  dump_stack+0x172/0x1f0
[ 1178.083057][T20105]  handle_userfault.cold+0x41/0x5d
[ 1178.088208][T20105]  ? __lock_acquire+0x548/0x3fb0
[ 1178.093230][T20105]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1178.098537][T20105]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1178.104532][T20105]  ? find_held_lock+0x35/0x130
[ 1178.109403][T20105]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1178.115400][T20105]  ? kasan_check_write+0x14/0x20
[ 1178.120353][T20105]  ? lock_downgrade+0x880/0x880
[ 1178.125243][T20105]  ? kasan_check_read+0x11/0x20
[ 1178.130107][T20105]  ? do_raw_spin_unlock+0x57/0x270
[ 1178.135230][T20105]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1178.141048][T20105]  ? kasan_check_read+0x11/0x20
[ 1178.145915][T20105]  ? __thp_get_unmapped_area+0x190/0x190
[ 1178.151548][T20105]  ? pmd_val+0x100/0x100
[ 1178.155794][T20105]  ? __lock_acquire+0x548/0x3fb0
[ 1178.160735][T20105]  ? __kernel_text_address+0xd/0x40
[ 1178.165941][T20105]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1178.171068][T20105]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1178.176615][T20105]  ? find_held_lock+0x35/0x130
[ 1178.181384][T20105]  ? handle_mm_fault+0x322/0xb30
[ 1178.186342][T20105]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1178.192593][T20105]  ? kasan_check_read+0x11/0x20
[ 1178.197455][T20105]  handle_mm_fault+0x43f/0xb30
[ 1178.202233][T20105]  __get_user_pages+0x7b6/0x1a40
08:05:05 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
r1 = fcntl$getown(r0, 0x9)
fcntl$setown(r0, 0x8, r1)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
fcntl$dupfd(r0, 0x406, r0)
ioctl$VIDIOC_DBG_G_CHIP_INFO(r0, 0xc0c85666, &(0x7f0000000180)={{0x2, @addr=0x100000001}, "0cf83aba3d3c1c902d81fb7f28fcf440a9dc15acde1b1c7c35d0b41171c5545b", 0x1})
recvmmsg(0xffffffffffffffff, &(0x7f0000002900)=[{{&(0x7f0000000100)=@sco, 0x80, 0x0}}], 0x1, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f00000017c0), 0x11b, 0x7fffef80)

[ 1178.207196][T20105]  ? follow_page_mask+0x19a0/0x19a0
[ 1178.212403][T20105]  ? get_user_pages_remote+0x17d/0x440
[ 1178.217877][T20105]  get_user_pages_remote+0x1a3/0x440
[ 1178.223190][T20105]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1178.228931][T20105]  ? alloc_vmap_area.cold+0x24/0x24
[ 1178.234138][T20105]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1178.240405][T20105]  ? _copy_from_user+0xdd/0x150
[ 1178.245268][T20105]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1178.251003][T20105]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1178.256482][T20105]  process_vm_rw+0x21f/0x240
[ 1178.261087][T20105]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1178.266905][T20105]  ? __might_fault+0x12b/0x1e0
[ 1178.271703][T20105]  ? kasan_check_read+0x11/0x20
[ 1178.271719][T20105]  ? _copy_to_user+0xc9/0x120
[ 1178.271740][T20105]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1178.271758][T20105]  ? nsecs_to_jiffies+0x30/0x30
[ 1178.271783][T20105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1178.281287][T20105]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1178.281304][T20105]  ? do_syscall_64+0x26/0x610
[ 1178.281326][T20105]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1178.281348][T20105]  do_syscall_64+0x103/0x610
[ 1178.281370][T20105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1178.281381][T20105] RIP: 0033:0x458209
[ 1178.281396][T20105] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1178.281412][T20105] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
08:05:05 executing program 0:
ioctl$EVIOCGBITKEY(0xffffffffffffffff, 0x80404521, &(0x7f0000000200)=""/161)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000dddfc8)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c00000005060501ff0080fffdffff2e0a0000000c000100060000007d0a00010c000200000022ff02f10000"], 0x2c}}, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00')
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xc0000040}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r2, 0x4, 0x70bd28, 0x25dfdbfb, {{}, 0x0, 0x410c, 0x0, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x10)
ioctl$BLKFLSBUF(r1, 0x1261, &(0x7f0000000000))

[ 1178.328491][T20105] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1178.328501][T20105] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001dd7
[ 1178.328510][T20105] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1178.328520][T20105] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1178.328529][T20105] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:05 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
r3 = creat(&(0x7f0000000100)='./file0\x00', 0x50)
ioctl$KDGKBDIACR(r3, 0x4b4a, &(0x7f0000000300)=""/243)

[ 1178.436420][T20403] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
08:05:05 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x0, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:05 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x400000, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000080)={<r2=>0x0, 0x6, 0x800}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={r2}, &(0x7f0000000140)=0x8)
setsockopt$sock_int(r0, 0x1, 0x33, &(0x7f0000000000), 0x4)
ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f00000000c0))

[ 1178.612797][T20637] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1178.618379][T20637] CPU: 1 PID: 20637 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1178.627409][T20637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1178.637468][T20637] Call Trace:
[ 1178.640774][T20637]  dump_stack+0x172/0x1f0
[ 1178.645148][T20637]  handle_userfault.cold+0x41/0x5d
[ 1178.650280][T20637]  ? __lock_acquire+0x548/0x3fb0
[ 1178.655242][T20637]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1178.660536][T20637]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1178.666522][T20637]  ? find_held_lock+0x35/0x130
[ 1178.671294][T20637]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1178.677292][T20637]  ? kasan_check_write+0x14/0x20
[ 1178.682242][T20637]  ? lock_downgrade+0x880/0x880
[ 1178.687110][T20637]  ? kasan_check_read+0x11/0x20
[ 1178.691967][T20637]  ? do_raw_spin_unlock+0x57/0x270
[ 1178.697093][T20637]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1178.703193][T20637]  ? kasan_check_read+0x11/0x20
[ 1178.708062][T20637]  ? __thp_get_unmapped_area+0x190/0x190
[ 1178.713704][T20637]  ? pmd_val+0x100/0x100
[ 1178.717951][T20637]  ? __lock_acquire+0x548/0x3fb0
[ 1178.722895][T20637]  ? __kernel_text_address+0xd/0x40
[ 1178.728109][T20637]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1178.733237][T20637]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1178.738785][T20637]  ? find_held_lock+0x35/0x130
[ 1178.743554][T20637]  ? handle_mm_fault+0x322/0xb30
[ 1178.748508][T20637]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1178.754756][T20637]  ? kasan_check_read+0x11/0x20
[ 1178.759615][T20637]  handle_mm_fault+0x43f/0xb30
[ 1178.764391][T20637]  __get_user_pages+0x7b6/0x1a40
[ 1178.769349][T20637]  ? follow_page_mask+0x19a0/0x19a0
[ 1178.774644][T20637]  ? get_user_pages_remote+0x17d/0x440
[ 1178.780118][T20637]  get_user_pages_remote+0x1a3/0x440
[ 1178.785428][T20637]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1178.791079][T20637]  ? alloc_vmap_area.cold+0x24/0x24
[ 1178.796751][T20637]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1178.802997][T20637]  ? _copy_from_user+0xdd/0x150
[ 1178.807857][T20637]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1178.813581][T20637]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1178.819051][T20637]  process_vm_rw+0x21f/0x240
[ 1178.823637][T20637]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1178.829420][T20637]  ? __might_fault+0x12b/0x1e0
[ 1178.834209][T20637]  ? kasan_check_read+0x11/0x20
[ 1178.839056][T20637]  ? _copy_to_user+0xc9/0x120
[ 1178.843714][T20637]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1178.849933][T20637]  ? nsecs_to_jiffies+0x30/0x30
[ 1178.854783][T20637]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1178.860236][T20637]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1178.865675][T20637]  ? do_syscall_64+0x26/0x610
[ 1178.870350][T20637]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1178.875969][T20637]  do_syscall_64+0x103/0x610
[ 1178.880543][T20637]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1178.886416][T20637] RIP: 0033:0x458209
[ 1178.890288][T20637] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1178.909882][T20637] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1178.918276][T20637] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1178.926239][T20637] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001ddb
[ 1178.934210][T20637] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1178.942177][T20637] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1178.950129][T20637] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:06 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x9)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:06 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x0, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:06 executing program 0:
socket$inet6_dccp(0xa, 0x6, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x1, 0x0, 0x1000000, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xb, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x30000, &(0x7f0000000100)={&(0x7f0000000000)={0x2c, 0x35, 0x829, 0x0, 0x0, {0x2801, 0x1000000, 0xf0}, [@nested={0x18, 0x0, [@typed={0x14, 0x1, @ipv6=@loopback={0xffff000068000000}}]}]}, 0x2c}}, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x2, 0x2)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)

08:05:06 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
prctl$PR_SVE_SET_VL(0x32, 0x22baf)
getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0x14, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000000)=0x2)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r2 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0xfffffffffffffbff, 0x200)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x1ac, r3, 0x0, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_MON={0xc, 0x9, [@TIPC_NLA_MON_REF={0x8}]}, @TIPC_NLA_BEARER={0x50, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x490}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}]}, @TIPC_NLA_SOCK={0x8, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x118, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffff73e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x38000000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4b8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffffffffffe0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffe}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffff9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc90}]}]}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040)

08:05:06 executing program 5:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r0=>0x0)
r1 = getpgrp(0x0)
r2 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x80000001, 0x100)
r3 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
r4 = accept4$unix(0xffffffffffffff9c, 0x0, &(0x7f0000000100), 0x800)
kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000140)={r3, r4, 0xe4})
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r5, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r6 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r6, 0xc0386106, &(0x7f0000000840))

08:05:06 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})
r3 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x1680000000000000, 0x8000)
setsockopt$inet_tcp_int(r3, 0x6, 0x10, &(0x7f0000000140)=0x31, 0x4)

[ 1179.064433][T20759] sctp: [Deprecated]: syz-executor.1 (pid 20759) Use of int in max_burst socket option.
[ 1179.064433][T20759] Use struct sctp_assoc_value instead
[ 1179.066952][T20758] netlink: set zone limit has 4 unknown bytes
08:05:06 executing program 1:
r0 = socket(0x10, 0x80002, 0x9)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ne\xf4\x0fudp\x00')
ioctl$UI_SET_PHYS(r1, 0x4008556c, &(0x7f0000000040)='syz1\x00')
sendmmsg$alg(r0, &(0x7f0000000140), 0x492492492492805, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00', 0x0, 0x10}, 0x10)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r1, 0x80045400, &(0x7f0000000080))

08:05:06 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x0, 0x8, 0x2}, 0x2f)

08:05:06 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x0, 0x8, 0x2}, 0x2f)

08:05:06 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
r2 = socket(0x200000000000011, 0x803, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'yam0\x00', <r4=>r3})
bind$packet(r2, &(0x7f0000000200)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @dev}, 0x14)
io_setup(0x40, &(0x7f00000000c0)=<r5=>0x0)
readlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000240)=""/169, 0xa9)
io_submit(r5, 0x1, &(0x7f0000000080)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r0, 0x0, 0x61, 0x0, 0x0, 0x0, 0xffffffffffffff9c}])

[ 1179.255452][T20863] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1179.268767][T20863] CPU: 1 PID: 20863 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1179.277818][T20863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1179.287878][T20863] Call Trace:
[ 1179.291200][T20863]  dump_stack+0x172/0x1f0
[ 1179.295554][T20863]  handle_userfault.cold+0x41/0x5d
[ 1179.300694][T20863]  ? __lock_acquire+0x548/0x3fb0
[ 1179.305661][T20863]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1179.310969][T20863]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1179.317224][T20863]  ? find_held_lock+0x35/0x130
[ 1179.322002][T20863]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1179.327995][T20863]  ? kasan_check_write+0x14/0x20
[ 1179.332949][T20863]  ? lock_downgrade+0x880/0x880
[ 1179.337810][T20863]  ? kasan_check_read+0x11/0x20
[ 1179.342670][T20863]  ? do_raw_spin_unlock+0x57/0x270
[ 1179.347809][T20863]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1179.353630][T20863]  ? kasan_check_read+0x11/0x20
[ 1179.358496][T20863]  ? __thp_get_unmapped_area+0x190/0x190
[ 1179.364142][T20863]  ? pmd_val+0x100/0x100
[ 1179.368404][T20863]  ? __lock_acquire+0x548/0x3fb0
[ 1179.373352][T20863]  ? __kernel_text_address+0xd/0x40
[ 1179.378567][T20863]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1179.383709][T20863]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1179.389293][T20863]  ? find_held_lock+0x35/0x130
[ 1179.394070][T20863]  ? handle_mm_fault+0x322/0xb30
[ 1179.399021][T20863]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
08:05:06 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x0, 0x8, 0x2}, 0x2f)

08:05:06 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x0, 0x2}, 0x2f)

[ 1179.405448][T20863]  ? kasan_check_read+0x11/0x20
[ 1179.410323][T20863]  handle_mm_fault+0x43f/0xb30
[ 1179.415105][T20863]  __get_user_pages+0x7b6/0x1a40
[ 1179.420061][T20863]  ? follow_page_mask+0x19a0/0x19a0
[ 1179.425278][T20863]  ? get_user_pages_remote+0x17d/0x440
[ 1179.430761][T20863]  get_user_pages_remote+0x1a3/0x440
[ 1179.436061][T20863]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1179.441725][T20863]  ? alloc_vmap_area.cold+0x24/0x24
[ 1179.446936][T20863]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1179.453192][T20863]  ? _copy_from_user+0xdd/0x150
[ 1179.458083][T20863]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1179.463800][T20863]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1179.469282][T20863]  process_vm_rw+0x21f/0x240
[ 1179.473884][T20863]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1179.479706][T20863]  ? __might_fault+0x12b/0x1e0
[ 1179.484503][T20863]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1179.489982][T20863]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1179.495543][T20863]  ? lockdep_hardirqs_on+0x418/0x5d0
[ 1179.500841][T20863]  ? retint_kernel+0x2d/0x2d
[ 1179.505438][T20863]  ? trace_hardirqs_on_caller+0x6a/0x220
[ 1179.511083][T20863]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1179.516646][T20863]  ? retint_kernel+0x2d/0x2d
[ 1179.521257][T20863]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1179.526729][T20863]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1179.532201][T20863]  ? do_syscall_64+0x26/0x610
[ 1179.536910][T20863]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1179.542586][T20863]  do_syscall_64+0x103/0x610
[ 1179.547209][T20863]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1179.553124][T20863] RIP: 0033:0x458209
[ 1179.557037][T20863] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1179.576641][T20863] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1179.585040][T20863] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1179.593022][T20863] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001de0
[ 1179.600985][T20863] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1179.608946][T20863] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1179.616896][T20863] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:07 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0xa)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:07 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x0, 0x2}, 0x2f)

08:05:07 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
close(r0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3c)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000140)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
socket$inet_sctp(0x2, 0x1, 0x84)
fcntl$setown(r0, 0x8, r1)
tkill(r1, 0x14)

08:05:07 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f00000001c0)='/dev/dlm_plock\x00', &(0x7f0000000200))
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x42000, 0x0)
setsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f0000000140)=0xffff, 0x1)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f00002a8000/0x2000)=nil, 0x2000})

08:05:07 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/ip_vs\x00')
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000280))
socketpair$unix(0x1, 0x100000000005, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff})
r2 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000001840)={{{@in6=@empty, @in=@multicast2}}, {{@in6=@mcast1}, 0x0, @in=@loopback}}, &(0x7f0000000480)=0xe8)
geteuid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000640)='./file1\x00', 0x2000, 0x4)
chdir(&(0x7f0000000240)='./file0\x00')
symlink(&(0x7f0000000380)='./file0\x00', &(0x7f0000000340)='./file0\x00')
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x3c, &(0x7f0000000500)=[@in6={0xa, 0x4e20, 0x5, @rand_addr="afecca20f3988bb009bc5a1ae5c71a8c", 0xecd9e8a}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x28}}, @in={0x2, 0x4e20, @empty}]}, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000003c0), 0xffffffffffffffff)
umount2(&(0x7f00000002c0)='./file0\x00', 0x2)
ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000700)=ANY=[@ANYPTR=&(0x7f00000007c0)=ANY=[@ANYBLOB="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", @ANYRES64=r0, @ANYRESHEX=r1, @ANYRESHEX=r2, @ANYPTR=&(0x7f0000000780)=ANY=[@ANYPTR], @ANYRESHEX=r2], @ANYPTR, @ANYRES64=r2])
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, 0x0, 0x0)
ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f0000000000))
mount$9p_tcp(&(0x7f0000000180)='127.0.0.1\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x8000, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"])
fcntl$notify(r1, 0x402, 0x33)

08:05:07 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x6, &(0x7f00000001c0)="0adc1f023c12a41d88b0707f3fd1855eac81d6d86033cba496f4c856a5d5c422b3ea82dc836372d9b580f8593d1609bb640a9fb3a8e3910000bd9dbcc4c7bc8c5938639c42fa4446c06ba893854f5290c211eb40")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:07 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x0, 0x2}, 0x2f)

08:05:07 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8}, 0x2f)

08:05:07 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8}, 0x2f)

08:05:07 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
r1 = socket$inet6(0xa, 0x6, 0x0)
listen(r1, 0x0)
r2 = socket$inet(0x10, 0x80803, 0x4000000000000004)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f00000001c0)="4c0000001300ff09fffd956fa283b700008c0e07000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b07988100", 0x4c}], 0x1}, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000040)={<r3=>0x0, @in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, &(0x7f0000000100)=0x84)
setsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000140)={r3, 0xea, 0x5, 0x10001}, 0x10)
ioctl$KVM_S390_UCAS_UNMAP(r0, 0x4018ae51, &(0x7f0000000240)={0x6b, 0x3, 0x10001})

08:05:07 executing program 1:
sched_setattr(0x0, &(0x7f00000000c0)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.current\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
setsockopt$packet_buf(r0, 0x107, 0x0, &(0x7f0000000200)="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", 0x1000)
write$binfmt_aout(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1013686a1fcd618673f9c69471d0f84f614989c68429e089e720f133a5543bf57002c48d527c4cf06c0e4d13bb7b1e69461bfe2f74025772dd0544b208ca60be391f"], 0x42)
fallocate(r1, 0x0, 0x0, 0x2000002)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r0, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x0, 0x8})

08:05:07 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8}, 0x2f)

08:05:07 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x10)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:07 executing program 2 (fault-call:3 fault-nth:0):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:07 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00')
setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f00000000c0), 0x1d4)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x74, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sendto$inet(r1, 0x0, 0x223, 0x200007fd, &(0x7f0000000680)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000400)='bbr\x00', 0xb4)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x1406, r1)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xfffffffffffffe2c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000480)={0xb800, 0x18, 0xfa00, {0x0, &(0x7f0000000440), 0x0, 0x0, [0x9c00]}}, 0xfef5)

08:05:07 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f00000000c0)={'filter\x00', 0x7, 0x4, 0x470, 0x0, 0x248, 0x0, 0x388, 0x388, 0x388, 0x4, &(0x7f0000000000), {[{{@arp={@local, @dev={0xac, 0x14, 0x14, 0xe}, 0xffffff00, 0xffffffff, @empty, {[0xff, 0x0, 0x6611da95e96b6188, 0xff, 0xff, 0xff]}, @empty, {[0x0, 0xff, 0xff, 0x0, 0xff, 0xff]}, 0x8, 0x1, 0xa1a, 0x4, 0x9, 0x709, 'bcsf0\x00', 'veth0_to_bridge\x00', {0xff}, {0xff}, 0x0, 0x120}, 0xf0, 0x118}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@arp={@loopback, @dev={0xac, 0x14, 0x14, 0xe}, 0xffffff00, 0x0, @empty, {[0x0, 0x0, 0xff, 0xff, 0xff, 0xff]}, @empty, {[0x0, 0xff, 0x0, 0xff, 0xff, 0xff]}, 0xfffffffffffffff7, 0x401, 0x7, 0x3, 0x7, 0x6000, 'dummy0\x00', 'teql0\x00', {0xff}, {0xff}}, 0xf0, 0x130}, @unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "a9f5c39cf08880da998e8c7a4a6d10d4c36f0ae839bdb0b7fe1faf119bef"}}, {{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @dev={0xac, 0x14, 0x14, 0x18}, @multicast1, 0xf, 0xffffffff}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4c0)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:07 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000400)=""/125, 0x49c9f1c0044bc7bd)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r3, 0xc0a85322, &(0x7f00000001c0))
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1181.038257][T21452] FAULT_INJECTION: forcing a failure.
[ 1181.038257][T21452] name failslab, interval 1, probability 0, space 0, times 0
[ 1181.108456][T21436] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1181.124667][T21436] CPU: 1 PID: 21436 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1181.133713][T21436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1181.143768][T21436] Call Trace:
[ 1181.147070][T21436]  dump_stack+0x172/0x1f0
[ 1181.151418][T21436]  handle_userfault.cold+0x41/0x5d
[ 1181.156543][T21436]  ? __lock_acquire+0x548/0x3fb0
[ 1181.161507][T21436]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1181.166806][T21436]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1181.172794][T21436]  ? find_held_lock+0x35/0x130
[ 1181.177570][T21436]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1181.183560][T21436]  ? kasan_check_write+0x14/0x20
[ 1181.188509][T21436]  ? lock_downgrade+0x880/0x880
[ 1181.193371][T21436]  ? kasan_check_read+0x11/0x20
[ 1181.198227][T21436]  ? do_raw_spin_unlock+0x57/0x270
[ 1181.203347][T21436]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1181.209161][T21436]  ? kasan_check_read+0x11/0x20
[ 1181.214041][T21436]  ? __thp_get_unmapped_area+0x190/0x190
[ 1181.219673][T21436]  ? pmd_val+0x100/0x100
[ 1181.223921][T21436]  ? __lock_acquire+0x548/0x3fb0
[ 1181.228855][T21436]  ? __kernel_text_address+0xd/0x40
[ 1181.234060][T21436]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1181.239185][T21436]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1181.244728][T21436]  ? find_held_lock+0x35/0x130
[ 1181.249489][T21436]  ? handle_mm_fault+0x322/0xb30
[ 1181.254442][T21436]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1181.260694][T21436]  ? kasan_check_read+0x11/0x20
[ 1181.265549][T21436]  handle_mm_fault+0x43f/0xb30
[ 1181.270313][T21436]  __get_user_pages+0x7b6/0x1a40
[ 1181.275258][T21436]  ? follow_page_mask+0x19a0/0x19a0
[ 1181.280460][T21436]  ? get_user_pages_remote+0x17d/0x440
[ 1181.285930][T21436]  get_user_pages_remote+0x1a3/0x440
[ 1181.291244][T21436]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1181.296900][T21436]  ? alloc_vmap_area.cold+0x24/0x24
[ 1181.302106][T21436]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1181.308350][T21436]  ? _copy_from_user+0xdd/0x150
[ 1181.313211][T21436]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1181.318934][T21436]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1181.324491][T21436]  process_vm_rw+0x21f/0x240
[ 1181.329088][T21436]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1181.334892][T21436]  ? __might_fault+0x12b/0x1e0
[ 1181.339682][T21436]  ? kasan_check_read+0x11/0x20
[ 1181.344574][T21436]  ? _copy_to_user+0xc9/0x120
[ 1181.349259][T21436]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1181.355505][T21436]  ? nsecs_to_jiffies+0x30/0x30
[ 1181.360371][T21436]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1181.365832][T21436]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1181.371296][T21436]  ? do_syscall_64+0x26/0x610
[ 1181.375979][T21436]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1181.381624][T21436]  do_syscall_64+0x103/0x610
[ 1181.386229][T21436]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1181.392117][T21436] RIP: 0033:0x458209
[ 1181.396023][T21436] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1181.415626][T21436] RSP: 002b:00007f09b4415c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1181.424049][T21436] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1181.432022][T21436] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001de9
[ 1181.439992][T21436] RBP: 000000000073bf00 R08: 0000000000000001 R09: 0000000000000000
[ 1181.447961][T21436] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b44166d4
[ 1181.455931][T21436] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1181.463927][T21452] CPU: 0 PID: 21452 Comm: syz-executor.2 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1181.472956][T21452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1181.483010][T21452] Call Trace:
[ 1181.486312][T21452]  dump_stack+0x172/0x1f0
[ 1181.490659][T21452]  should_fail.cold+0xa/0x15
[ 1181.495266][T21452]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1181.501089][T21452]  ? ___might_sleep+0x163/0x280
[ 1181.505951][T21452]  __should_failslab+0x121/0x190
[ 1181.510893][T21452]  should_failslab+0x9/0x14
[ 1181.515406][T21452]  kmem_cache_alloc_trace+0x2d1/0x760
[ 1181.520804][T21452]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1181.527045][T21452]  ? ns_capable_common+0x93/0x100
[ 1181.532164][T21452]  bpf_map_offload_map_alloc+0x12b/0x460
[ 1181.537816][T21452]  ? htab_map_alloc_check+0x2ed/0x420
[ 1181.543212][T21452]  ? bpf_prog_offload_info_fill+0x4f0/0x4f0
[ 1181.549112][T21452]  __do_sys_bpf+0x946/0x3e50
[ 1181.553708][T21452]  ? bpf_prog_load+0x14a0/0x14a0
08:05:08 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
mq_notify(r0, &(0x7f0000000140)={0x0, 0x35, 0x1, @thr={&(0x7f00000001c0)="df765561c2334c9999f87e39f5e1c3d19ba76b4e474a7580a2d2f68a98dcbb19ed2c5b453460223dab94215bcb31790d4b28a1ac4ec04305369c97017efe8e9aeaab5134c262c725cae99fd7b9bcc36c1af88440f56bd2379a3d40e088f20898892620a38c8d5ca5b5bd95a63e0f9ab71b7ffaa9d3d7d98c9ec671e9c9402dd4bc9c5f4d", &(0x7f0000000100)="7b2580689eeeba111e2eaa914545efa7"}})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r2 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:08 executing program 0:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee6c, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
write(r0, &(0x7f0000000600)="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", 0xa96)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x1ffe0)

08:05:08 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x72, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000001c0)={0x0, 0x0, 0x1, 0x0, [], [{0x1, 0x5, 0x9, 0x0, 0x429, 0xffffffffffffff5e}, {0xffffffff9d5c8a3c, 0x8, 0x3959, 0x3ff, 0x807}], [[]]})
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
shmget(0x0, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil)
sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000004c0)="5d71f27e79ae18a9307d3ad987bde5f943e8ad91f720cfe21e05ed8b721e0ef4c45a65b156b13090e4e14239017021314f912f2b3015486cda955f5a3122ea923ca8d9a814a3a856c40199034a818c08e0ffabccebf4833b5d8ef14652d5036a99b4739144a86ad9dd49d944855696e16418860989b336e75e7ec57cfe4c1d4133138141764b0803495363c723da79eb5589650b51a885db7b430abbadafb126e512e7", 0xa3)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={<r2=>0x0, <r3=>0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
chown(&(0x7f00000001c0)='./file0\x00', r3, r4)
lsetxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='system.posix_acl_access\x00', &(0x7f0000000940)={{}, {}, [{0x2, 0x0, r3}], {0x4, 0x7}, [{0x8, 0x2, r4}, {0x8, 0x0, r4}, {0x8, 0x2}], {0x10, 0x2}}, 0x44, 0x0)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000009c0)={0x0, {{0x2, 0x4e23, @multicast2}}, 0x0, 0x6, [{{0x2, 0x4e22, @empty}}, {{0x2, 0x4e22, @multicast1}}, {{0x2, 0x0, @local}}, {{0x2, 0x0, @broadcast}}, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @rand_addr=0x40}}]}, 0x390)
chdir(&(0x7f0000000340)='./file0\x00')
symlink(&(0x7f0000000800)='./file0/file0\x00', &(0x7f00000007c0)='./file0\x00')
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x14, 0x0, 0x0, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='eql\x00', 0x10)
clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f00000005c0), 0xffffffffffffffff)
lstat(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000680))
sched_setaffinity(r2, 0x8, &(0x7f00000000c0)=0x6)

[ 1181.558645][T21452]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1181.564197][T21452]  ? wait_for_completion+0x440/0x440
[ 1181.569500][T21452]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1181.575750][T21452]  ? fput_many+0x12c/0x1a0
[ 1181.580182][T21452]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1181.585655][T21452]  ? do_syscall_64+0x26/0x610
[ 1181.590371][T21452]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1181.596449][T21452]  ? do_syscall_64+0x26/0x610
[ 1181.601139][T21452]  __x64_sys_bpf+0x73/0xb0
[ 1181.605552][T21452]  do_syscall_64+0x103/0x610
[ 1181.610130][T21452]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1181.616000][T21452] RIP: 0033:0x458209
[ 1181.619885][T21452] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1181.639486][T21452] RSP: 002b:00007f14cf418c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1181.647886][T21452] RAX: ffffffffffffffda RBX: 00007f14cf418c90 RCX: 0000000000458209
08:05:08 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000180)="2e0000002e008183ad5de0713c444d000700000010000340140000000000000037113e370000000000000000d1bd", 0x2e}], 0x1}, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x5, 0x2100)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r0, r1})

[ 1181.655866][T21452] RDX: 000000000000002f RSI: 0000000020000040 RDI: 0000000000000000
[ 1181.663842][T21452] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1181.671818][T21452] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14cf4196d4
[ 1181.679794][T21452] R13: 00000000004be40d R14: 00000000004cea68 R15: 0000000000000005
[ 1181.694880][T21653] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1181.723738][   T27] audit: type=1800 audit(1553328308.802:4663): pid=21750 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=17393 res=0
[ 1181.748357][T21653] CPU: 1 PID: 21653 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1181.757405][T21653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1181.762388][   T27] audit: type=1804 audit(1553328308.822:4664): pid=21750 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir954255084/syzkaller.0bETUz/1885/file0" dev="sda1" ino=17393 res=1
[ 1181.767455][T21653] Call Trace:
[ 1181.767482][T21653]  dump_stack+0x172/0x1f0
[ 1181.767511][T21653]  handle_userfault.cold+0x41/0x5d
[ 1181.767536][T21653]  ? __lock_acquire+0x548/0x3fb0
[ 1181.812355][T21653]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1181.812377][T21653]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1181.812395][T21653]  ? find_held_lock+0x35/0x130
[ 1181.812422][T21653]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1181.834422][T21653]  ? kasan_check_write+0x14/0x20
[ 1181.839379][T21653]  ? lock_downgrade+0x880/0x880
[ 1181.844257][T21653]  ? kasan_check_read+0x11/0x20
[ 1181.849120][T21653]  ? do_raw_spin_unlock+0x57/0x270
[ 1181.854249][T21653]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1181.860073][T21653]  ? kasan_check_read+0x11/0x20
[ 1181.864943][T21653]  ? __thp_get_unmapped_area+0x190/0x190
[ 1181.870583][T21653]  ? pmd_val+0x100/0x100
[ 1181.874837][T21653]  ? __lock_acquire+0x548/0x3fb0
[ 1181.879786][T21653]  ? __kernel_text_address+0xd/0x40
[ 1181.885002][T21653]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1181.890130][T21653]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1181.895679][T21653]  ? find_held_lock+0x35/0x130
[ 1181.900448][T21653]  ? handle_mm_fault+0x322/0xb30
[ 1181.905394][T21653]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1181.911637][T21653]  ? kasan_check_read+0x11/0x20
[ 1181.916494][T21653]  handle_mm_fault+0x43f/0xb30
[ 1181.921262][T21653]  __get_user_pages+0x7b6/0x1a40
[ 1181.926214][T21653]  ? follow_page_mask+0x19a0/0x19a0
[ 1181.931417][T21653]  ? get_user_pages_remote+0x17d/0x440
[ 1181.936881][T21653]  get_user_pages_remote+0x1a3/0x440
[ 1181.942191][T21653]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1181.947845][T21653]  ? alloc_vmap_area.cold+0x24/0x24
[ 1181.953047][T21653]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1181.959281][T21653]  ? _copy_from_user+0xdd/0x150
[ 1181.964133][T21653]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1181.969853][T21653]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1181.975321][T21653]  process_vm_rw+0x21f/0x240
[ 1181.979916][T21653]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1181.985720][T21653]  ? __might_fault+0x12b/0x1e0
[ 1181.990503][T21653]  ? kasan_check_read+0x11/0x20
[ 1181.995348][T21653]  ? _copy_to_user+0xc9/0x120
[ 1182.000024][T21653]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1182.006282][T21653]  ? nsecs_to_jiffies+0x30/0x30
[ 1182.011145][T21653]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1182.016609][T21653]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1182.022067][T21653]  ? do_syscall_64+0x26/0x610
[ 1182.026746][T21653]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1182.032383][T21653]  do_syscall_64+0x103/0x610
[ 1182.036977][T21653]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1182.042860][T21653] RIP: 0033:0x458209
[ 1182.046755][T21653] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1182.066355][T21653] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
08:05:09 executing program 2 (fault-call:3 fault-nth:1):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1182.074762][T21653] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1182.082729][T21653] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001ded
[ 1182.090705][T21653] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1182.098670][T21653] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1182.106634][T21653] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
08:05:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getsockopt$inet_opts(r1, 0x0, 0x9, &(0x7f0000000140)=""/6, &(0x7f0000000200)=0x6)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000180)={0xa0001})
ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f00000000c0))
r3 = syz_open_dev$usb(&(0x7f0000000240)='/dev/bus/usb/00#/00#\x00', 0x2, 0x101000)
setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000280)=0x70, 0x4)
ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f0000000040))

[ 1182.146199][T21959] FAULT_INJECTION: forcing a failure.
[ 1182.146199][T21959] name failslab, interval 1, probability 0, space 0, times 0
[ 1182.167613][T21959] CPU: 0 PID: 21959 Comm: syz-executor.2 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1182.176654][T21959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1182.186710][T21959] Call Trace:
[ 1182.190008][T21959]  dump_stack+0x172/0x1f0
[ 1182.194350][T21959]  should_fail.cold+0xa/0x15
[ 1182.198947][T21959]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1182.204760][T21959]  ? ___might_sleep+0x163/0x280
[ 1182.209617][T21959]  __should_failslab+0x121/0x190
[ 1182.214562][T21959]  should_failslab+0x9/0x14
[ 1182.219064][T21959]  kmem_cache_alloc_trace+0x2d1/0x760
[ 1182.224456][T21959]  ? lock_downgrade+0x880/0x880
[ 1182.229307][T21959]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1182.235617][T21959]  nsim_bpf+0x7ec/0x1040
[ 1182.239874][T21959]  bpf_map_offload_ndo+0x149/0x1f0
[ 1182.244992][T21959]  ? bpf_map_offload_info_fill_ns+0x230/0x230
[ 1182.251071][T21959]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1182.256794][T21959]  bpf_map_offload_map_alloc+0x253/0x460
[ 1182.262428][T21959]  ? htab_map_alloc_check+0x2ed/0x420
[ 1182.267806][T21959]  ? bpf_prog_offload_info_fill+0x4f0/0x4f0
[ 1182.273699][T21959]  __do_sys_bpf+0x946/0x3e50
[ 1182.278318][T21959]  ? bpf_prog_load+0x14a0/0x14a0
[ 1182.283273][T21959]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1182.288854][T21959]  ? wait_for_completion+0x440/0x440
[ 1182.294148][T21959]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1182.300399][T21959]  ? fput_many+0x12c/0x1a0
[ 1182.304830][T21959]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1182.310289][T21959]  ? do_syscall_64+0x26/0x610
[ 1182.314967][T21959]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1182.321031][T21959]  ? do_syscall_64+0x26/0x610
[ 1182.325713][T21959]  __x64_sys_bpf+0x73/0xb0
[ 1182.330156][T21959]  do_syscall_64+0x103/0x610
[ 1182.334776][T21959]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1182.340667][T21959] RIP: 0033:0x458209
[ 1182.344560][T21959] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1182.364158][T21959] RSP: 002b:00007f14cf418c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1182.372583][T21959] RAX: ffffffffffffffda RBX: 00007f14cf418c90 RCX: 0000000000458209
[ 1182.380552][T21959] RDX: 000000000000002f RSI: 0000000020000040 RDI: 0000000000000000
[ 1182.388524][T21959] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1182.396492][T21959] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14cf4196d4
[ 1182.404460][T21959] R13: 00000000004be40d R14: 00000000004cea68 R15: 0000000000000005
08:05:09 executing program 3:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x1000, 0x1)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000400)=""/69, &(0x7f0000000480)=0x45)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400202)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000300)=""/136)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f00000001c0)={0x0, @bt={0x3, 0x2, 0x1, 0x1, 0xfffffffffffffffa, 0x3, 0xb8, 0x0, 0x6, 0x9, 0x7ff, 0x3, 0x401, 0x80000001, 0x8, 0x1}})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000500)={{0xa, 0x6, 0x5, 0x80, 'syz0\x00', 0xa15000000000000}, 0x1, [0x0, 0x1f, 0x3, 0x8, 0x7, 0x100000001, 0x9, 0x100000001, 0xec000000, 0x101, 0x0, 0x3, 0x99, 0xc2e, 0xff, 0x10000, 0x7, 0x3ff, 0x6, 0x200, 0x8, 0x5, 0x7fd6, 0x2, 0x923, 0x26, 0x6, 0x9, 0x3ec, 0xe08f, 0x4, 0x8, 0x1, 0xfffffffffffffff8, 0x2, 0x7, 0xfffffffffffffff9, 0xe836, 0xff, 0xa0b, 0x3, 0x0, 0x1, 0x4, 0xfffffffffffffffb, 0x8, 0x10001, 0x9, 0xfffffffffffffff9, 0x1000, 0xffffffff, 0x0, 0x9, 0xff, 0x0, 0x4, 0x3, 0x9, 0x5, 0x8, 0x0, 0x1, 0x400, 0x2818, 0x80000001, 0x800, 0x3f, 0x1, 0x5, 0x6, 0x1000, 0x79cbb0ae, 0x8000, 0x94, 0x7fff, 0x1, 0x2, 0x200, 0x7, 0x1, 0x2, 0xfffffffffffffffc, 0x2, 0x8, 0x523, 0x8000, 0x1010000, 0x220, 0x5e, 0x3ff, 0x9, 0x3, 0x5f, 0x0, 0x897, 0x3, 0x100, 0xffffffffe3683902, 0x5, 0x4c, 0x1f, 0x100, 0x9, 0x5, 0x80000000, 0x26ee, 0x3, 0x6, 0x8, 0x0, 0x800, 0xbb32, 0xe3e, 0x3, 0xffffffffffffffd5, 0x10001, 0x4, 0x4, 0x2, 0x7, 0x9, 0x2, 0x3f, 0x4, 0x4, 0x7fff, 0x7, 0xa20d], {0x77359400}})
r2 = gettid()
read(0xffffffffffffffff, &(0x7f0000000280)=""/125, 0x7d)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@rand_addr="2877432d00e1bafcbd4fe958e376df13", 0x33e, 0x1, 0x0, 0x0, 0x8000, 0xfd2}, &(0x7f00000003c0)=0x20)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000a00)=0x7f, 0x4)
ioctl$SIOCX25SFACILITIES(r1, 0x89e3, &(0x7f00000004c0)={0x1, 0x8, 0x8, 0x4, 0x100000001})
process_vm_readv(r2, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:09 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x48)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:09 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xffffffffffffffff, 0x44240)
ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000180)={0x81, 0x4, 0x400, 0x1, 0x0, 0xfff})
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x80002, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f00000000c0)=0x6)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x600000, 0x0)
setsockopt$TIPC_MCAST_BROADCAST(r3, 0x10f, 0x85)
ioctl$EVIOCGNAME(r2, 0x80404506, &(0x7f00000001c0)=""/130)
r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r4, 0xc0386106, &(0x7f0000000280)={0x0, 0x100000000000000})

08:05:09 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0xc0189436, 0xfffffffffffffffe)
recvmsg(r0, &(0x7f0000001600)={&(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000001500)=[{&(0x7f0000000080)=""/242, 0xf2}, {&(0x7f0000000180)=""/241, 0xf1}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/208, 0xd0}, {&(0x7f0000001380)=""/135, 0x87}, {&(0x7f0000001440)=""/51, 0x33}, {&(0x7f0000001480)=""/65, 0x41}], 0x7, &(0x7f0000001580)=""/75, 0x4b}, 0x40002121)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000001640)={'filter\x00'}, &(0x7f00000016c0)=0x78)

08:05:09 executing program 2 (fault-call:3 fault-nth:2):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:09 executing program 3:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f0000000100)=0x6, 0x4)
r3 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r3, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1182.655698][T22178] FAULT_INJECTION: forcing a failure.
[ 1182.655698][T22178] name failslab, interval 1, probability 0, space 0, times 0
[ 1182.668630][T22178] CPU: 1 PID: 22178 Comm: syz-executor.2 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1182.677659][T22178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1182.687726][T22178] Call Trace:
[ 1182.691027][T22178]  dump_stack+0x172/0x1f0
[ 1182.691054][T22178]  should_fail.cold+0xa/0x15
[ 1182.691076][T22178]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1182.691101][T22178]  ? ___might_sleep+0x163/0x280
[ 1182.691124][T22178]  __should_failslab+0x121/0x190
[ 1182.691146][T22178]  should_failslab+0x9/0x14
[ 1182.700059][T22178]  kmem_cache_alloc+0x2b2/0x6f0
[ 1182.700076][T22178]  ? __alloc_fd+0x430/0x530
[ 1182.700092][T22178]  ? find_held_lock+0x35/0x130
[ 1182.700112][T22178]  __d_alloc+0x2e/0x8c0
[ 1182.725031][T22178]  d_alloc_pseudo+0x1e/0x30
[ 1182.734268][T22178]  alloc_file_pseudo+0xe2/0x280
[ 1182.734285][T22178]  ? alloc_file+0x4d0/0x4d0
[ 1182.734304][T22178]  ? _raw_spin_unlock+0x2d/0x50
[ 1182.734320][T22178]  ? __alloc_fd+0x430/0x530
[ 1182.734344][T22178]  anon_inode_getfile+0xda/0x200
[ 1182.734363][T22178]  anon_inode_getfd+0x54/0xb0
[ 1182.734381][T22178]  bpf_map_new_fd+0x5e/0x70
[ 1182.734396][T22178]  __do_sys_bpf+0x2e24/0x3e50
[ 1182.734415][T22178]  ? bpf_prog_load+0x14a0/0x14a0
[ 1182.785347][T22178]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1182.790889][T22178]  ? wait_for_completion+0x440/0x440
[ 1182.796162][T22178]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1182.802410][T22178]  ? fput_many+0x12c/0x1a0
[ 1182.807234][T22178]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1182.812726][T22178]  ? do_syscall_64+0x26/0x610
[ 1182.817400][T22178]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1182.823465][T22178]  ? do_syscall_64+0x26/0x610
[ 1182.828137][T22178]  __x64_sys_bpf+0x73/0xb0
[ 1182.832537][T22178]  do_syscall_64+0x103/0x610
[ 1182.837113][T22178]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1182.842996][T22178] RIP: 0033:0x458209
[ 1182.846890][T22178] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1182.866542][T22178] RSP: 002b:00007f14cf418c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1182.874943][T22178] RAX: ffffffffffffffda RBX: 00007f14cf418c90 RCX: 0000000000458209
[ 1182.882899][T22178] RDX: 000000000000002f RSI: 0000000020000040 RDI: 0000000000000000
[ 1182.890862][T22178] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1182.898819][T22178] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14cf4196d4
08:05:10 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$isdn_base(0x22, 0x3, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x2000000000000034}, 0x10}}, 0xfffffffffffffffe)
r1 = accept(r0, &(0x7f0000000040)=@hci, &(0x7f00000000c0)=0x80)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000100)={0x1, [0x2]}, 0x6)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000184000)=ANY=[@ANYBLOB="020100221000000000000600000000000800120000ffff00000000000000000006000000000000000000800000000000e00000010b00000000000000000035000000000000000000000000ff00000000030006000000000002000004000000bb000000000000000003000500000000000200423b000000000000004000000000"], 0x80}}, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r2, &(0x7f0000000180), 0x400000000000117, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)

08:05:10 executing program 0:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x208000, 0x0)
ioctl$VIDIOC_SUBDEV_S_CROP(r0, 0xc038563c, &(0x7f0000000180)={0x1, 0x0, {0x3f, 0x9, 0x1, 0xa0000}})
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000140)={0x0, 0x3, 0x303f, 0x1})
connect$netrom(r1, &(0x7f0000000000)={{0x6, @rose}, [@default, @null, @default, @netrom, @bcast, @rose, @rose, @netrom]}, 0x48)

08:05:10 executing program 2 (fault-call:3 fault-nth:3):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1182.907132][T22178] R13: 00000000004be40d R14: 00000000004cea68 R15: 0000000000000005
[ 1182.967927][T22180] FAULT_FLAG_ALLOW_RETRY missing a0
[ 1182.973389][T22180] CPU: 0 PID: 22180 Comm: syz-executor.3 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1182.982419][T22180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1182.985531][T22186] FAULT_INJECTION: forcing a failure.
[ 1182.985531][T22186] name failslab, interval 1, probability 0, space 0, times 0
[ 1182.992479][T22180] Call Trace:
[ 1182.992507][T22180]  dump_stack+0x172/0x1f0
[ 1182.992536][T22180]  handle_userfault.cold+0x41/0x5d
[ 1182.992565][T22180]  ? __lockdep_free_key_range+0x120/0x120
[ 1182.992587][T22180]  ? userfaultfd_ioctl+0x3aa0/0x3aa0
[ 1182.992611][T22180]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1182.992634][T22180]  ? find_held_lock+0x35/0x130
[ 1183.039605][T22180]  ? do_huge_pmd_anonymous_page+0xc0c/0x1730
[ 1183.045601][T22180]  ? kasan_check_write+0x14/0x20
[ 1183.050550][T22180]  ? lock_downgrade+0x880/0x880
[ 1183.055416][T22180]  ? kasan_check_read+0x11/0x20
[ 1183.060284][T22180]  ? do_raw_spin_unlock+0x57/0x270
[ 1183.065435][T22180]  do_huge_pmd_anonymous_page+0xc19/0x1730
[ 1183.071251][T22180]  ? kasan_check_read+0x11/0x20
[ 1183.076110][T22180]  ? __thp_get_unmapped_area+0x190/0x190
[ 1183.081758][T22180]  ? pmd_val+0x100/0x100
[ 1183.086008][T22180]  ? perf_trace_lock+0xeb/0x510
[ 1183.090877][T22180]  __handle_mm_fault+0x2d5e/0x3ec0
[ 1183.096003][T22180]  ? vmf_insert_mixed_mkwrite+0x40/0x40
[ 1183.101552][T22180]  ? find_held_lock+0x35/0x130
[ 1183.106320][T22180]  ? handle_mm_fault+0x322/0xb30
[ 1183.111273][T22180]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1183.117520][T22180]  ? kasan_check_read+0x11/0x20
[ 1183.122382][T22180]  handle_mm_fault+0x43f/0xb30
[ 1183.127160][T22180]  __get_user_pages+0x7b6/0x1a40
[ 1183.132132][T22180]  ? follow_page_mask+0x19a0/0x19a0
[ 1183.137354][T22180]  ? get_user_pages_remote+0x17d/0x440
[ 1183.142828][T22180]  get_user_pages_remote+0x1a3/0x440
[ 1183.148151][T22180]  process_vm_rw_core.isra.0+0x464/0xb10
[ 1183.153828][T22180]  ? alloc_vmap_area.cold+0x24/0x24
[ 1183.159042][T22180]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1183.165289][T22180]  ? _copy_from_user+0xdd/0x150
[ 1183.170148][T22180]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1183.175913][T22180]  ? rw_copy_check_uvector+0x2a6/0x330
[ 1183.181388][T22180]  process_vm_rw+0x21f/0x240
[ 1183.185993][T22180]  ? process_vm_rw_core.isra.0+0xb10/0xb10
[ 1183.191801][T22180]  ? __might_fault+0x12b/0x1e0
[ 1183.196613][T22180]  ? kasan_check_read+0x11/0x20
[ 1183.201490][T22180]  ? _copy_to_user+0xc9/0x120
[ 1183.206185][T22180]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1183.212449][T22180]  ? nsecs_to_jiffies+0x30/0x30
[ 1183.217317][T22180]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1183.222786][T22180]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1183.228250][T22180]  ? do_syscall_64+0x26/0x610
[ 1183.232935][T22180]  __x64_sys_process_vm_readv+0xe3/0x1a0
[ 1183.238581][T22180]  do_syscall_64+0x103/0x610
[ 1183.243205][T22180]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1183.249101][T22180] RIP: 0033:0x458209
[ 1183.253007][T22180] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1183.272617][T22180] RSP: 002b:00007f09b43f4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1183.281046][T22180] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000458209
[ 1183.289025][T22180] RDX: 0000000000000001 RSI: 0000000020fca000 RDI: 0000000000001df4
[ 1183.297007][T22180] RBP: 000000000073bfa0 R08: 0000000000000001 R09: 0000000000000000
[ 1183.304988][T22180] R10: 0000000020fcafa0 R11: 0000000000000246 R12: 00007f09b43f56d4
[ 1183.312964][T22180] R13: 00000000004c4c9f R14: 00000000004d85d8 R15: 00000000ffffffff
[ 1183.323851][T22186] CPU: 1 PID: 22186 Comm: syz-executor.2 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1183.332880][T22186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1183.342925][T22186] Call Trace:
[ 1183.346223][T22186]  dump_stack+0x172/0x1f0
[ 1183.350566][T22186]  should_fail.cold+0xa/0x15
[ 1183.355170][T22186]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1183.361006][T22186]  ? ___might_sleep+0x163/0x280
[ 1183.365865][T22186]  __should_failslab+0x121/0x190
[ 1183.370813][T22186]  should_failslab+0x9/0x14
[ 1183.375326][T22186]  kmem_cache_alloc+0x2b2/0x6f0
[ 1183.380212][T22186]  __alloc_file+0x27/0x300
[ 1183.384644][T22186]  alloc_empty_file+0x72/0x170
[ 1183.389421][T22186]  alloc_file+0x5e/0x4d0
[ 1183.393680][T22186]  alloc_file_pseudo+0x189/0x280
[ 1183.398634][T22186]  ? alloc_file+0x4d0/0x4d0
[ 1183.403160][T22186]  ? _raw_spin_unlock+0x2d/0x50
[ 1183.408038][T22186]  anon_inode_getfile+0xda/0x200
[ 1183.412981][T22186]  anon_inode_getfd+0x54/0xb0
[ 1183.413001][T22186]  bpf_map_new_fd+0x5e/0x70
[ 1183.413027][T22186]  __do_sys_bpf+0x2e24/0x3e50
[ 1183.413044][T22186]  ? bpf_prog_load+0x14a0/0x14a0
[ 1183.413061][T22186]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1183.437607][T22186]  ? wait_for_completion+0x440/0x440
[ 1183.442912][T22186]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1183.449161][T22186]  ? fput_many+0x12c/0x1a0
[ 1183.453621][T22186]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1183.459089][T22186]  ? do_syscall_64+0x26/0x610
[ 1183.463784][T22186]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1183.469858][T22186]  ? do_syscall_64+0x26/0x610
[ 1183.474560][T22186]  __x64_sys_bpf+0x73/0xb0
[ 1183.478988][T22186]  do_syscall_64+0x103/0x610
[ 1183.483590][T22186]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1183.489482][T22186] RIP: 0033:0x458209
[ 1183.493380][T22186] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:05:10 executing program 0:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000180)="2e0000003200812de45ae087185082cf0124b0eba06e004003000000005106000000000000000000081f401fe091", 0x2e}], 0x1}, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x80000000, 0x200200)
setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000080)=0x7, 0x4)

[ 1183.512989][T22186] RSP: 002b:00007f14cf418c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1183.521412][T22186] RAX: ffffffffffffffda RBX: 00007f14cf418c90 RCX: 0000000000458209
[ 1183.529379][T22186] RDX: 000000000000002f RSI: 0000000020000040 RDI: 0000000000000000
[ 1183.537332][T22186] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1183.545288][T22186] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14cf4196d4
[ 1183.553251][T22186] R13: 00000000004be40d R14: 00000000004cea68 R15: 0000000000000005
08:05:10 executing program 2 (fault-call:3 fault-nth:4):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:10 executing program 1:
r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x52100, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000100)={0x1, 0x3, 0xc})
ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000080)={0x0, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e21, @remote}, {0x2, 0x4e24, @broadcast}, 0xc0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)='veth0\x00', 0x7f, 0x7, 0xbc41})
ioctl$SCSI_IOCTL_SYNC(r0, 0x4)
socket(0x80000000000028, 0x3, 0x1f)

[ 1183.586883][T22393] netlink: 22 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1183.596489][T22393] openvswitch: netlink: Flow key attr not present in new flow.
[ 1183.607972][T22393] netlink: 22 bytes leftover after parsing attributes in process `syz-executor.0'.
08:05:10 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x8030, r0, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000240)='/dev/vbi#\x00', 0x3, 0x2)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000280)=ANY=[@ANYBLOB="20000000000000000a004e230000001f00000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000080000000a004e230000001ffe80000000000000000000000000000b07000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e23000000050000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e200000f08fff0200000000000000000000000000010100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003cd23e1d6c61238b108fd3f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e247ffffffffe8000000000000000000000000000bb01000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2300000001000000000000000000000000000000006e090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2000000004fe8000000000000000000000000000bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2000000001fe800000000000000000000000000018340000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2300000006fe8000000000000000000000000000aa0500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x490)
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={<r4=>0x0, <r5=>0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000100)='\x00', 0xffffffffffffffff}, 0x30)
write$cgroup_pid(r3, &(0x7f0000000180)=r4, 0xfffffffffffffdd1)
r6 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r6, 0xc0386106, &(0x7f0000000840))
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r6, 0xc0305616, &(0x7f0000000000)={0x0, {0x10000, 0x8000}})
poll(&(0x7f0000000740)=[{r0, 0x100}, {r5, 0x1101}, {r1, 0x2000}], 0x3, 0x165)
getsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f00000001c0), &(0x7f0000000200)=0x4)

08:05:10 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x4c)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:10 executing program 3:
sched_setaffinity(0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000000b80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r3 = dup3(r2, r0, 0x0)
write$cgroup_type(r3, &(0x7f00000000c0)='threaded\x00', 0x9)

[ 1183.630750][T22393] openvswitch: netlink: Flow key attr not present in new flow.
[ 1183.657213][T22401] FAULT_INJECTION: forcing a failure.
[ 1183.657213][T22401] name failslab, interval 1, probability 0, space 0, times 0
[ 1183.727626][T22401] CPU: 0 PID: 22401 Comm: syz-executor.2 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1183.736717][T22401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1183.746780][T22401] Call Trace:
[ 1183.750106][T22401]  dump_stack+0x172/0x1f0
[ 1183.754469][T22401]  should_fail.cold+0xa/0x15
[ 1183.759078][T22401]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1183.764904][T22401]  ? ___might_sleep+0x163/0x280
[ 1183.769768][T22401]  __should_failslab+0x121/0x190
08:05:10 executing program 0:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xcd, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 1183.774889][T22401]  should_failslab+0x9/0x14
[ 1183.779407][T22401]  kmem_cache_alloc+0x2b2/0x6f0
[ 1183.784271][T22401]  ? rcu_read_lock_sched_held+0x110/0x130
[ 1183.789999][T22401]  ? kmem_cache_alloc+0x32e/0x6f0
[ 1183.795039][T22401]  security_file_alloc+0x39/0x170
[ 1183.801070][T22401]  __alloc_file+0xac/0x300
[ 1183.805502][T22401]  alloc_empty_file+0x72/0x170
[ 1183.810281][T22401]  alloc_file+0x5e/0x4d0
[ 1183.814532][T22401]  alloc_file_pseudo+0x189/0x280
[ 1183.819477][T22401]  ? alloc_file+0x4d0/0x4d0
[ 1183.823989][T22401]  ? _raw_spin_unlock+0x2d/0x50
[ 1183.824016][T22401]  anon_inode_getfile+0xda/0x200
[ 1183.824038][T22401]  anon_inode_getfd+0x54/0xb0
[ 1183.833834][T22401]  bpf_map_new_fd+0x5e/0x70
[ 1183.833851][T22401]  __do_sys_bpf+0x2e24/0x3e50
[ 1183.833870][T22401]  ? bpf_prog_load+0x14a0/0x14a0
[ 1183.833885][T22401]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1183.833904][T22401]  ? wait_for_completion+0x440/0x440
[ 1183.833925][T22401]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1183.833937][T22401]  ? fput_many+0x12c/0x1a0
[ 1183.833964][T22401]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 1183.879545][T22401]  ? do_syscall_64+0x26/0x610
[ 1183.884227][T22401]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1183.890285][T22401]  ? do_syscall_64+0x26/0x610
[ 1183.894966][T22401]  __x64_sys_bpf+0x73/0xb0
[ 1183.899384][T22401]  do_syscall_64+0x103/0x610
[ 1183.903974][T22401]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1183.909854][T22401] RIP: 0033:0x458209
[ 1183.913746][T22401] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1183.933343][T22401] RSP: 002b:00007f14cf418c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1183.941746][T22401] RAX: ffffffffffffffda RBX: 00007f14cf418c90 RCX: 0000000000458209
[ 1183.949711][T22401] RDX: 000000000000002f RSI: 0000000020000040 RDI: 0000000000000000
[ 1183.957674][T22401] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1183.965639][T22401] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f14cf4196d4
[ 1183.973599][T22401] R13: 00000000004be40d R14: 00000000004cea68 R15: 0000000000000005
08:05:11 executing program 2 (fault-call:3 fault-nth:5):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:11 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:11 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bc070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000180)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x4, 0x0, "dd8fcd35cbca4f2d1777bbbc9323da9d634135c376793ea81ad2b3162337bae07101c0ba91dd369ed7ce6a29b97100c41ebccf0a4f00f0506650d47faf7f4b9d35bd4b70c85a291ee250fd15549f5187"}, 0xd8)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x200408d4, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)

08:05:11 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:11 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x2, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1184.165788][   T24] Bluetooth: hci0: Frame reassembly failed (-84)
08:05:11 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:11 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0x910, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000000)=0x4, 0x4)

08:05:11 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
ioctl(r0, 0x1, &(0x7f0000000100)="0796362d1b95d1e4f3b25b9b008ce8bd83840ff0238fd46cd60a7b2f90ac83ee4419cced247e687590d6fed769b05200f81803db30c00987f0b66cda04a2abdef427d5b94cbc1d6f9ba1877b8867f7cf4b69ede32d5f3c80f214e0ca661b384288cd25079020232a84")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000280)=0xc)
write$FUSE_CREATE_OPEN(r0, &(0x7f00000002c0)={0xa0, 0x0, 0x4, {{0x4, 0x0, 0x80, 0x30, 0x2, 0x1, {0x2, 0xe69, 0x5, 0xfffffffffffffffc, 0x9, 0x3, 0x1, 0xffffffffffff7c79, 0x80000001, 0x3, 0x10001, r2, r3, 0x8, 0xffff}}, {0x0, 0x3}}}, 0xa0)
getsockopt(r1, 0x5, 0x80000001, &(0x7f0000000000)=""/43, &(0x7f00000000c0)=0x2b)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:11 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x50)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:11 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x3, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:11 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:11 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='wchan\x00')
perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f0000000700)=[{&(0x7f0000000640)="3e0650d74942f20eb33bcad65b62688b561e882ba23bf77be4cbe60d9295227cba0b51df0f5a833ccaefa6b5bb15f22a02932531bb30351116ea0a60eaf04f746c43488bd21f06bc47b3468311eb7519e8b43020a0c4eda316f77d0c641bdeff005f1d35cb2f95d05420e8f25c44f5fe888e332dd59bb5b43e97535ee6cfd82372f6fb3839ae35a96d3d5e9d4102a262d8bebbdf0f5a38c073889d4353402c355654275c555ec98ad646b49d902dd5d38b4969a41b4936105a35d51471e7", 0xbe}], 0x1)

08:05:11 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:13 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:13 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x4, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:13 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:13 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000100)=0x400100000001, 0x10e)
connect$inet6(r0, &(0x7f0000000140), 0x1c)
r1 = dup2(r0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64)
connect$netlink(r1, &(0x7f0000000000)=@unspec, 0xc)
clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
connect$unix(r1, &(0x7f00000002c0)=@abs={0x1}, 0x3a)
sendmsg$netlink(r1, &(0x7f0000005800)={0x0, 0x0, 0x0}, 0x0)

08:05:13 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x800, 0x0)
ioctl$sock_netrom_SIOCDELRT(r1, 0x890c, &(0x7f00000000c0)={0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={'rose', 0x0}, 0x60d0, 'syz1\x00', @bcast, 0x3, 0x4, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840)={0xfffffffffffffffd, 0x0, 0x3})

08:05:13 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x60)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1186.171849][ T1175] Bluetooth: hci0: Entering manufacturer mode failed (-110)
[ 1186.172184][T23717] Bluetooth: hci0: command 0xfc11 tx timeout
08:05:13 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x5, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1186.311290][ T9129] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1186.318414][ T9129] Bluetooth: hci0: Frame reassembly failed (-84)
08:05:13 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000480)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(arc4)-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ad", 0x1)
recvfrom(r1, &(0x7f00000001c0)=""/124, 0x7c, 0x0, 0x0, 0x0)

08:05:13 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x6, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:13 executing program 1:
r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x9, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f00000000c0)={0x9, 0x100, 0x0, {0x0, 0x0, 0x0, 0x870}})

08:05:13 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x7, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:13 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
syz_emit_ethernet(0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa23b853f7aa0086dd6050a09c000b1100fe8000000000000000fe000000aa00000000000890780000000000000000000000"], 0x0)

08:05:15 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:15 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x8, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:15 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20010001, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c)
r1 = dup2(r0, r0)
r2 = gettid()
sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, 0x0, 0x0)
close(r1)
tkill(r2, 0x1000000000016)

08:05:15 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x2, 0x2)
ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000000)=0xcb)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00')
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x410000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r2, 0x1, 0x70bd2d, 0x25dfdbfd}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:15 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:15 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x68)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1188.330691][T23717] Bluetooth: hci0: command 0xfc11 tx timeout
[ 1188.331016][ T1175] Bluetooth: hci0: Entering manufacturer mode failed (-110)
08:05:15 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x9, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1188.440564][   T24] Bluetooth: hci0: Frame reassembly failed (-84)
08:05:15 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000040), 0xfb01cbdd028b9044)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f00000000c0)=@ethtool_ts_info={0x4e}})
close(r1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")

08:05:15 executing program 1:

08:05:15 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xa, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:15 executing program 1:

08:05:15 executing program 1:

08:05:17 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:17 executing program 1:

08:05:17 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xb, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:17 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:17 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070")
r1 = dup2(r0, r0)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r2, 0xc0386106, &(0x7f0000000840))
openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x200, 0x0)

08:05:17 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x6c)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1190.490660][T23717] Bluetooth: hci0: command 0xfc11 tx timeout
[ 1190.490764][ T1175] Bluetooth: hci0: Entering manufacturer mode failed (-110)
08:05:17 executing program 1:

08:05:17 executing program 1:

08:05:17 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xc, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:17 executing program 1:

[ 1190.622729][ T7899] Bluetooth: hci0: sending frame failed (-49)
08:05:17 executing program 1:

08:05:17 executing program 1:

08:05:19 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:19 executing program 1:

08:05:19 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xd, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:19 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:19 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f133c125670")
r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0xffffffffffffffff, 0x2)
ioctl$IOC_PR_PREEMPT(r1, 0xc0386106, &(0x7f0000000840))

08:05:19 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x74)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

[ 1192.650695][T23717] Bluetooth: hci0: command 0xfc11 tx timeout
[ 1192.651554][ T1175] Bluetooth: hci0: Entering manufacturer mode failed (-110)
08:05:19 executing program 1:

08:05:19 executing program 1:

08:05:19 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:19 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:19 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xe, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:19 executing program 1:

08:05:19 executing program 1:

08:05:19 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x9)

08:05:20 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000004c0)={0x1000000a, 0xfffbffffffffffff, 0x0, <r1=>0xffffffffffffffff})
mmap(&(0x7f0000bfe000/0x400000)=nil, 0x400000, 0x0, 0x811, r1, 0x0)

08:05:20 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:20 executing program 5:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f00000000c0)={'bond0\x00', @broadcast})
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000000)={r0})
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cgroup.controllers\x00', 0x0, 0x0)
r1 = getpid()
perf_event_open(0x0, r1, 0x0, 0xffffffffffffffff, 0x0)

08:05:20 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x9)

08:05:20 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xf, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:20 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x7a)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:20 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000004c0)={0x1000000a, 0xfffbffffffffffff, 0x0, <r1=>0xffffffffffffffff})
mmap(&(0x7f0000bfe000/0x400000)=nil, 0x400000, 0x0, 0x811, r1, 0x0)

[ 1193.580065][T25185] device bond0 entered promiscuous mode
[ 1193.589861][T25185] device bond_slave_0 entered promiscuous mode
[ 1193.607358][T25185] device bond_slave_1 entered promiscuous mode
08:05:20 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x9)

08:05:20 executing program 5:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f00000000c0)={'bond0\x00', @broadcast})
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000000)={r0})
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cgroup.controllers\x00', 0x0, 0x0)
r1 = getpid()
perf_event_open(0x0, r1, 0x0, 0xffffffffffffffff, 0x0)

08:05:20 executing program 1:
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(r0, 0x101, 0x19, &(0x7f0000000000)=@bpq0='bpq0\x00', 0x10)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f123c123f3188b070")
bind$ax25(r0, &(0x7f0000000380)={{0x3, @netrom}, [@rose, @default, @netrom, @bcast, @netrom, @rose, @rose, @null]}, 0x10)
connect$ax25(r0, &(0x7f00000000c0)={{0x3, @netrom, 0x2}, [@null, @rose, @default, @default, @default, @netrom]}, 0x48)

08:05:20 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x10, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1193.766934][T25303] ax25_connect(): syz-executor.1 uses autobind, please contact jreuter@yaina.de
08:05:20 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:20 executing program 5:
clone(0x200, 0x0, 0x0, 0x0, 0x0)
mknod(&(0x7f0000000300)='./file0\x00', 0x1040, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='personality\x00')
pread64(r0, 0x0, 0x0, 0x0)
lseek(r0, 0x0, 0x0)
open$dir(&(0x7f0000296ff8)='./file0\x00', 0x27e, 0x0)

08:05:21 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:21 executing program 1:
clone(0x4000003102041fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x2f)
write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="49abdb7aac5c6c77687519f7d01ca93f6000001abde821028edb49749505000000000000000800000802865a81e0c9765bc1e0e90000000cc8"], 0x39)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0))
ptrace$cont(0x7, r0, 0x0, 0x0)

08:05:21 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:21 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x11, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:21 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x300)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:21 executing program 5:
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000004, 0x110010, r0, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
write$P9_RLOPEN(r1, &(0x7f0000000040)={0x18, 0xd, 0x1, {{0x94, 0x4, 0x7}, 0x3}}, 0x18)
connect$rose(r0, &(0x7f0000000000)=@short={0x2, @remote, @remote, 0x1, @default}, 0x104)
ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f00000000c0)={0x8001, 0x7, 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000080)=0x106003)
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setuid(r2)

08:05:21 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:21 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x12, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:21 executing program 1:
perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x80807, 0x4)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0xc0000, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000980)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\x00\x00\xae\x98&@\xd0\xe6\xbbQ\xff\a\x00\x00\x00\x00\x00\x00\xaa1\x91\x98\xe9\x1f\nMCi|+\xcd\xf9N\xdc\xc5\xa2*\x13\x8f\xf3;\xd6d2\xeb\xe5\x14\x0e\x8b\xda\xb7\xfc9h(mf\'\xa19q\x93\"}G3\xc1E\xe6e6\xc6\xc2u\x11%`\xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xa8\x14Ts\xcb\xde\x84\x1d\xc7\xcc;\xb18')
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40001, 0x0)
sendfile(r0, r1, &(0x7f00000000c0), 0x5a)

08:05:21 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:21 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000cab5b3)='/dev/snd/seq\x00', 0x0, 0x0)
syz_extract_tcp_res(&(0x7f0000000000), 0x7f, 0x6)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85322, &(0x7f00000000c0)={{0x80}, 'port1\x00'})
r1 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0xa3, 0x400)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x15)

08:05:21 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x13, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:22 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:22 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vga_arbiter\x00', 0x240000, 0x0)
ioctl$RTC_PIE_ON(r0, 0x7005)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x80002, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000000c0)={<r2=>0x0, 0x8001, 0x30, 0x9, 0x2}, &(0x7f0000000100)=0x18)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000180)={0x8, 0x8208, 0x7, 0x1, r2}, 0x10)
syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x40000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$sock_buf(r3, 0x1, 0x1c, 0x0, &(0x7f0000000000))
ioctl$EVIOCGID(0xffffffffffffffff, 0x80084502, &(0x7f0000000200)=""/52)

08:05:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:22 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
r1 = dup(r0)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000040)={0x29, 0x4, 0x0, {0x4, 0x7, 0x1, 0x0, [0x0]}}, 0x29)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, 0x0, &(0x7f0000000100)=0x2f5)

08:05:22 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x500)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:22 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x14, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:22 executing program 5:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000280)='/proc/capi/capi20ncci\x00', 0x80, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>r0, 0x0, 0x4, &(0x7f00000002c0)=',[(\x00'}, 0x30)
perf_event_open(0x0, r1, 0x9, 0xffffffffffffffff, 0x4)
r3 = socket$inet(0x10, 0x5, 0xc)
r4 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x100000000, 0x101080)
r5 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00')
accept$packet(0xffffffffffffffff, &(0x7f0000004700)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000004740)=0x14)
accept$packet(r3, &(0x7f0000005cc0)={0x11, 0x0, <r7=>0x0}, &(0x7f0000005d00)=0x14)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000005e80)={{{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@empty}, 0x0, @in6=@empty}}, &(0x7f0000005f80)=0xe8)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000005fc0)={{{@in6=@empty, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in=@remote}, 0x0, @in6}}, &(0x7f00000060c0)=0xe8)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000006100)={'eql\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000007c00)={'nlmon0\x00', <r11=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000007c40)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in=@dev}, 0x0, @in=@dev}}, &(0x7f0000007d40)=0xe8)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000240)={0x4, &(0x7f0000000140), 0x8, r4, 0x2})
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000008480)={<r13=>0x0, @remote, @loopback}, &(0x7f00000084c0)=0xc)
fsetxattr$security_selinux(r2, &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000080)='system_u:object_r:mount_tmp_t:s0\x00', 0x21, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000008500)={{{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in=@remote}, 0x0, @in6=@local}}, &(0x7f0000008600)=0xe8)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000009c80)={&(0x7f0000008640)=@hci={0x1f, <r15=>0x0}, 0x80, &(0x7f0000008bc0)=[{&(0x7f00000086c0)=""/217, 0xd9}, {&(0x7f00000087c0)=""/89, 0x59}, {&(0x7f0000008840)=""/63, 0x3f}, {&(0x7f0000008880)=""/58, 0x3a}, {&(0x7f00000088c0)=""/239, 0xef}, {&(0x7f00000089c0)}, {&(0x7f0000008a00)=""/10, 0xa}, {&(0x7f0000008a40)=""/74, 0x4a}, {&(0x7f0000008ac0)=""/192, 0xc0}, {&(0x7f0000008b80)=""/19, 0x13}], 0xa, &(0x7f0000008c80)=""/4096, 0x1000}, 0x10000)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000009d00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000009cc0)={&(0x7f000000a000)={0x424, r5, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [{{0x8, 0x1, r6}, {0xec, 0x2, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r7}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x95ce}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x18a}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x1}}, {0x8}}}]}}, {{0x8, 0x1, r8}, {0x4}}, {{0x8, 0x1, r9}, {0x12c, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xd967}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x80}}}, {0x3a, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0xe6}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x9}}, {0x8}}}]}}, {{0x8, 0x1, r11}, {0x40, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r12}, {0xc8, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0x101, 0x3f, 0xfffffffffffffff8, 0x5}, {0x6, 0x8, 0x31, 0x10001}, {0x1, 0x9, 0x0, 0x200}]}}}]}}, {{0x8, 0x1, r13}, {0xbc, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x7f}}, {0x8, 0x6, r14}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x1e099575}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x100000001}}, {0x8, 0x6, r15}}}]}}]}, 0x424}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
sendmsg(r3, &(0x7f0000011fc8)={0x0, 0xff90, &(0x7f0000009ff0)=[{&(0x7f0000000180)="240000000a0a07031dfffd946fa2830020200a0009000102001d85680c1baba20400ff7e787b72f44a19ed32c4aa89fa36943b926957381202e10f112f00943c2256f7cbc032e6162412ce66e67150b272fead209d9c2a2a12f1fac1a6b4a48736ea1696785c44233e3c9c6a65e201d15770cf54315c693a60b02dd4abecc235d191a084261bdb7ce5cd2be6dad3b3b571187dc5268877cb2b32414081da9d9b80", 0x24}], 0x1}, 0x0)

08:05:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:22 executing program 1:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa)
keyctl$read(0xb, r0, &(0x7f0000000080)=""/4, 0x436)

08:05:22 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x8, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f0000000140)={0x0, 0x70, 0x80000000, 0x7, 0x1, 0xf2e, 0x0, 0x7, 0x1000, 0x4, 0x3, 0x5, 0x40, 0x8, 0x3, 0x81, 0x20, 0x8, 0x2, 0x20, 0x7, 0x0, 0x10001, 0x9, 0x81, 0x5, 0x2, 0x8, 0x2, 0x101, 0xad9, 0x7, 0x7fffffff, 0x1, 0x3f, 0x1f, 0x8, 0x2, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x10002, 0x490d82e7, 0x0, 0xab6210b40ec98153, 0x1000, 0xfd02, 0x1})
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast2}, 0x10)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f00000001c0)={0x2, {{0x2, 0x0, @empty}}}, 0x43)
setsockopt$inet_mreqn(r1, 0x0, 0x21, &(0x7f00000002c0)={@empty, @local}, 0xb)

08:05:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:22 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070")
flistxattr(r0, &(0x7f0000000080)=""/237, 0xed)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00000be000/0x3000)=nil, 0x3000, 0x2000000, 0x10013f, 0xffffffffffffffff, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r1, 0x28, 0x1000000000000, &(0x7f0000000000), 0x8)

08:05:23 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:23 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x15, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:23 executing program 1:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x10, 0x100800, 0x9)
lsetxattr$security_capability(&(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0), 0x100000000000028a, 0x0, 0xffffffffffffffba}, 0x0)

08:05:23 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:23 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x600)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:23 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000880)='TIPCv2\x00')
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7f)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x120000}, 0xc, &(0x7f0000000300)={&(0x7f0000000640)={0x220, r2, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x4}, @TIPC_NLA_BEARER={0x88, 0x1, [@TIPC_NLA_BEARER_PROP={0x44, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10040000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x16b3}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffe}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_MEDIA={0x50, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6d0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x35f}]}]}, @TIPC_NLA_MON={0x14, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x6f1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x46e}]}, @TIPC_NLA_LINK={0x78, 0x4, [@TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x13}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}]}]}, @TIPC_NLA_MEDIA={0x14, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK={0x10, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xa2}]}, @TIPC_NLA_MEDIA={0x64, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1fffc000000}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}]}, 0x220}, 0x1, 0x0, 0x0, 0xc0}, 0xbe27036bc4f81b76)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x200, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000580)={&(0x7f0000000540)='./file0\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9400000052000200000000800000df2500000000"], 0x1}}, 0x4)
clock_gettime(0x0, &(0x7f0000000900))
readlinkat(r0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)=""/105, 0x69)
r3 = accept$alg(r1, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000000c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
clock_gettime(0x0, &(0x7f0000000200))
write$binfmt_script(r3, &(0x7f0000000600)=ANY=[], 0xfec8)
r4 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0xffffffff, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(r4, 0x2288, &(0x7f0000000240))
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
recvmmsg(r3, &(0x7f0000007e00)=[{{&(0x7f0000001240)=@alg, 0x80, &(0x7f0000004700)=[{&(0x7f00000012c0)=""/167, 0xa7}, {0x0}, {&(0x7f0000003580)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(0xffffffffffffffff, 0x5386, &(0x7f0000000600))
ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, 0x0)
ioctl$SIOCAX25ADDFWD(r4, 0x89ea, &(0x7f0000000280)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}})
openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
clock_nanosleep(0x0, 0x0, 0x0, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x3, 0x1000}], 0x1, &(0x7f0000000100)={0x0, 0x989680})

08:05:23 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:23 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x18, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:23 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x1f)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x1c, 0x1e, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x10, @u32}]}, 0x1c}}, 0x0)

08:05:23 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000))
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:23 executing program 1:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r0=>0x0)
sched_setparam(r0, &(0x7f0000000040)=0xf63e)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000002c0)={<r2=>0xffffffffffffffff}, 0x106, 0x100b}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r1, &(0x7f0000000340)={0x5, 0x10, 0xfa00, {&(0x7f00000000c0), r2}}, 0x18)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000380)=0x2, 0x4)
ioctl$SIOCAX25NOUID(r1, 0x89e3, &(0x7f00000003c0))
fcntl$getflags(r1, 0x0)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000440)='TIPC\x00')
sendmsg$TIPC_CMD_GET_LINKS(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x1200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r3, 0x2, 0x70bd2a, 0x25dfdbfe, {{}, 0x0, 0x4, 0x0, {0x8, 0x11, 0x1}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x40)
ioprio_set$pid(0x1, r0, 0x7fff)
connect$inet6(r1, &(0x7f0000000540)={0xa, 0x4e23, 0x1, @mcast2, 0x2}, 0x1c)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000580)={<r4=>0x0, @local, @initdev}, &(0x7f00000005c0)=0xc)
lstat(&(0x7f0000000600)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0})
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000006c0)={{{@in=@loopback, @in=@multicast2, 0x4e22, 0x4, 0x4e20, 0x1, 0xa, 0x20, 0x20, 0x88, r4, r5}, {0x8, 0x98e, 0x10001, 0x0, 0x6, 0xfc, 0x0, 0x1000}, {0x4, 0x1c00, 0x9, 0x100}, 0x10000, 0x0, 0x2, 0x1, 0x1, 0x3}, {{@in6=@empty, 0x4d6, 0xff}, 0xa, @in=@loopback, 0x3504, 0x2, 0x3, 0x5, 0x0, 0x7, 0x8}}, 0xe8)
ioctl$TIOCGETD(r1, 0x5424, &(0x7f00000007c0))
connect$x25(r1, &(0x7f0000000800)={0x9, @remote={[], 0x2}}, 0x12)
r7 = syz_open_pts(r1, 0x2000)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r1, 0x800442d2, &(0x7f0000000900)={0x5, &(0x7f0000000840)=[{0x0, 0x0, 0x0, @broadcast}, {0x0, 0x0, 0x0, @random}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @random}, {}]})
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000940)='tls\x00', 0x4)
migrate_pages(r0, 0x7, &(0x7f0000000980)=0x3f, &(0x7f00000009c0)=0x10001)
lsetxattr$system_posix_acl(&(0x7f0000000a00)='./file0\x00', &(0x7f0000000a40)='system.posix_acl_access\x00', &(0x7f0000000a80)={{}, {0x1, 0x4}, [{0x2, 0x1, r5}], {0x4, 0x4}, [{0x8, 0x3, r6}, {0x8, 0x1, r6}, {0x8, 0x6, r6}, {0x8, 0x5, r6}, {0x8, 0x1, r6}, {0x8, 0x3, r6}], {0x10, 0x1}, {0x20, 0x4}}, 0x5c, 0x2)
ioctl$TCGETS(r7, 0x5401, &(0x7f0000000b00))
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r1, 0xc0bc5351, &(0x7f0000000b40)={0x0, 0xcffd520d545c284, 'client0\x00', 0x0, "6956d47f36bd4b53", "5834e64700a71f991cd1580137d95d5a5083b179da266f92456d608a374ff208", 0x1, 0x3ff})
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r1, &(0x7f0000000c00)={r1, r7, 0x4})
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000c40)={<r8=>0x0, @in6={{0xa, 0x4e24, 0x20, @mcast2, 0xc81}}}, &(0x7f0000000d00)=0x84)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000d40)={r8, @in6={{0xa, 0x4e24, 0x4, @mcast1, 0x8000}}}, 0x84)
connect$vsock_dgram(r1, &(0x7f0000000e00)={0x28, 0x0, 0x2711, @host}, 0x10)
r9 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000e40)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0)
recvfrom(r1, &(0x7f0000000e80)=""/113, 0x71, 0x0, &(0x7f0000000f00)=@pppol2tpv3={0x18, 0x1, {0x0, r9, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x1, 0x1, 0x3, 0x1}}, 0x80)

08:05:23 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000880)='TIPCv2\x00')
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7f)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x120000}, 0xc, &(0x7f0000000300)={&(0x7f0000000640)={0x220, r2, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x4}, @TIPC_NLA_BEARER={0x88, 0x1, [@TIPC_NLA_BEARER_PROP={0x44, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10040000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x16b3}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, '\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffe}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_MEDIA={0x50, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6d0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x35f}]}]}, @TIPC_NLA_MON={0x14, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x6f1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x46e}]}, @TIPC_NLA_LINK={0x78, 0x4, [@TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x13}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}]}]}, @TIPC_NLA_MEDIA={0x14, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK={0x10, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xa2}]}, @TIPC_NLA_MEDIA={0x64, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1fffc000000}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}]}]}, 0x220}, 0x1, 0x0, 0x0, 0xc0}, 0xbe27036bc4f81b76)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x200, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000580)={&(0x7f0000000540)='./file0\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9400000052000200000000800000df2500000000"], 0x1}}, 0x4)
clock_gettime(0x0, &(0x7f0000000900))
readlinkat(r0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)=""/105, 0x69)
r3 = accept$alg(r1, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000000c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
clock_gettime(0x0, &(0x7f0000000200))
write$binfmt_script(r3, &(0x7f0000000600)=ANY=[], 0xfec8)
r4 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0xffffffff, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(r4, 0x2288, &(0x7f0000000240))
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
recvmmsg(r3, &(0x7f0000007e00)=[{{&(0x7f0000001240)=@alg, 0x80, &(0x7f0000004700)=[{&(0x7f00000012c0)=""/167, 0xa7}, {0x0}, {&(0x7f0000003580)=""/4096, 0x1000}], 0x3}}], 0x1, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(0xffffffffffffffff, 0x5386, &(0x7f0000000600))
ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, 0x0)
ioctl$SIOCAX25ADDFWD(r4, 0x89ea, &(0x7f0000000280)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}})
openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
clock_nanosleep(0x0, 0x0, 0x0, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x3, 0x1000}], 0x1, &(0x7f0000000100)={0x0, 0x989680})

08:05:24 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:24 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x3b, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:24 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000))
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:24 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x3)
ioctl$TCFLSH(r1, 0x540b, 0x1)

08:05:24 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x700)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:24 executing program 5:
r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x11d}, 0x4)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r2 = fcntl$dupfd(r1, 0x0, r1)
getpeername$llc(r2, 0x0, 0x0)

08:05:24 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000))
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:24 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x300, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:24 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x3)
ioctl$TCFLSH(r1, 0x540b, 0x1)

08:05:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x3)
ioctl$TCFLSH(r1, 0x540b, 0x1)

08:05:24 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x9)

08:05:24 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x500, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:24 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

08:05:24 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket(0x3, 0x7, 0x94)
setsockopt$inet_tcp_buf(r1, 0x6, 0x1c, &(0x7f0000000000)="3a67ebf7764ffcd7f0ccecff155081a6a7f4b66a9c4fc4bfa246d7b3a413f86693b8d61b703d6f3ee8a6f51af24d17fefc3cf226a751a2e6f45b9f042acbeab0c4c52e1a9fec4d2c4cb145ff0850a48bb2925f88a0b5f40e065aec8c228fc0", 0x5f)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r2 = msgget$private(0x0, 0x20)
msgrcv(r2, &(0x7f0000000300)={0x0, ""/79}, 0x57, 0x0, 0x0)

08:05:24 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x9)

08:05:24 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f00000002c0)='\x12\xbf%\x92\xf2\x9aP\x0e\x88\x8c=P\xca\xc1z\t\x81\n\x04\xf2\xdf\x9a\xe1\x9c]J0\x90\xe0\x80\x16U.\xc0\x13\xdf\x9d\x1eO\x1c\xb3Q\xdb\xae\x96`ee,&\xa3\xf1\x9fZ\xa2P\xa1\xcd\x86\\\xa5V\xba\xd3}\xdbc\xa3\x10I\xa8\xdb\x13\xf1nVu\x14\x16\a\b\xf1\x92\xf2?,\xf9|\x1bj\xe0*\xb0vO\xea\x92s\x9eWJ\xc3\xba\a\x85\x94\xb5B\x92\xd7\xa5\xbe\x88\a\x97 Z\xc2\xe5A.\xda\xec\xfbA\x01\xec8\x19\x8d_\x96z\xe1\x7f\xe6\x8d^\xb6\xa9C-C#\xa2\xc0\xaa`\xa2\xff\xae6,2\b\xac_\xdd\xea`>\xd3\xe1\xd8+\x1c\x80\vQ\xe8\xa1\xb1\x06\x1c?\xcb\xf6\xba\xbdL\xca]\xbdJ\xce\xf1\x0e\xb1\f\xaf:_\xb7_\']\xda\xf8\x80f\xda\x00\b\x00\x00\xbe\xc5\x92\xe4f\xf5\x81\xaf\x9aFl\vSr\xc9\x1e\xd6\xe25&\xc9\x17-\xce BOof\xcf\xc3:\xe0\xc8\xd2\x1dY\xf0\x90\xf5\xc9\x05\xe9\x13`+b\xb1)\xd5\xbaU\xad\xeb\x04\xd3\x91\xeeB.~\xdb=\xec\x02\xb5\xe3U\x11\xd7\xaa[\xab\xcc\x96![\x90')

08:05:25 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x900)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:25 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x600, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:25 executing program 5:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="660100a080c503000000000000000000"], 0x10}}, 0x0)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

08:05:25 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x9)

08:05:25 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

08:05:25 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

08:05:25 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

08:05:25 executing program 5:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
execveat(r1, &(0x7f0000000040)='./bus\x00', &(0x7f0000000340)=[&(0x7f00000000c0)='\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)='\x00', &(0x7f00000001c0)='GPL%\x00', &(0x7f0000000280)='-\x00', &(0x7f00000002c0)='[trusted\x00', &(0x7f0000000300)='#.cpusetcgroup\x00'], &(0x7f00000004c0)=[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='posix_acl_access\x00', &(0x7f0000000400)='vboxnet1\x00', &(0x7f0000000440)='GPL\x00', &(0x7f0000000480)='posix_acl_access\x00'], 0x1000)
r2 = open(&(0x7f0000000500)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r0, r2, 0x0, 0x8000ffffffff)

08:05:25 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x700, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:25 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:25 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_dev$evdev(0x0, 0x1, 0x2100)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nbd(&(0x7f0000000340)='nbd\x00')
ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000300))
ioctl$VIDIOC_DBG_S_REGISTER(0xffffffffffffffff, 0x4038564f, &(0x7f0000000000)={{0x2, @name="254531ed3f2ea03f37aa09b769f8e6e0831eff12e61b92f9cfba8b3517ae619a"}, 0x8, 0x2, 0x5})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vfio/vfio\x00', 0x400000, 0x0)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000200)=0x1, 0x4)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x0, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0xf, &(0x7f000000e000/0x8000)=nil)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x10400, 0x0)
write$P9_RVERSION(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="5500000065ffffae00000008003950323030302e4c"], 0x15)
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000100)={0x9}, 0x1)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={<r6=>0x0}, &(0x7f00000002c0)=0xc)
ptrace$getenv(0x4201, r6, 0x3, &(0x7f00000003c0))
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000013c0), &(0x7f0000001400)=0x4)
ioctl$VIDIOC_DQBUF(r4, 0xc0585611, &(0x7f0000000240)={0x6, 0xf, 0x4, 0x20000000, {0x77359400}, {0x1, 0x0, 0x70c1, 0x1, 0x1000, 0x6cd, "a723d059"}, 0x6, 0x3, @planes=0x0, 0x4})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x10000000000, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x4000, 0x0)
connect$llc(r5, &(0x7f0000000380)={0x1a, 0x0, 0x0, 0x5, 0x0, 0x0, @link_local}, 0x10)

08:05:25 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x900, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1198.755216][T27696] llc_conn_state_process: llc_conn_service failed
[ 1198.816059][T27696] llc_conn_state_process: llc_conn_service failed
08:05:26 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:26 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0xa00)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:26 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xa00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:26 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_dev$evdev(0x0, 0x1, 0x2100)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nbd(&(0x7f0000000340)='nbd\x00')
ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000300))
ioctl$VIDIOC_DBG_S_REGISTER(0xffffffffffffffff, 0x4038564f, &(0x7f0000000000)={{0x2, @name="254531ed3f2ea03f37aa09b769f8e6e0831eff12e61b92f9cfba8b3517ae619a"}, 0x8, 0x2, 0x5})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r3 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vfio/vfio\x00', 0x400000, 0x0)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000200)=0x1, 0x4)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x0, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0xf, &(0x7f000000e000/0x8000)=nil)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x10400, 0x0)
write$P9_RVERSION(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="5500000065ffffae00000008003950323030302e4c"], 0x15)
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000100)={0x9}, 0x1)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={<r6=>0x0}, &(0x7f00000002c0)=0xc)
ptrace$getenv(0x4201, r6, 0x3, &(0x7f00000003c0))
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000013c0), &(0x7f0000001400)=0x4)
ioctl$VIDIOC_DQBUF(r4, 0xc0585611, &(0x7f0000000240)={0x6, 0xf, 0x4, 0x20000000, {0x77359400}, {0x1, 0x0, 0x70c1, 0x1, 0x1000, 0x6cd, "a723d059"}, 0x6, 0x3, @planes=0x0, 0x4})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x10000000000, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x4000, 0x0)
connect$llc(r5, &(0x7f0000000380)={0x1a, 0x0, 0x0, 0x5, 0x0, 0x0, @link_local}, 0x10)

08:05:26 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
setsockopt$sock_int(r0, 0x1, 0x2c, &(0x7f0000000100)=0x40000000000b6dc, 0x4)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000001480)=@broute={'broute\x00', 0x20, 0x7, 0x1320, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000140], 0x0, &(0x7f0000000000), &(0x7f0000000140)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x5, 0x20, 0x8a65, 'lapb0\x00', 'bpq0\x00', 'rose0\x00', 'veth0_to_team\x00', @dev={[], 0x27}, [0xff, 0x0, 0xff, 0xff, 0xff, 0xff], @broadcast, [0xff, 0x0, 0xff], 0xe0, 0xe0, 0x158, [@mark_m={'mark_m\x00', 0x18, {{0x3, 0x6, 0x2, 0x3}}}, @state={'state\x00', 0x8}]}}, @common=@nflog={'nflog\x00', 0x50, {{0x6, 0x3ff, 0x2, 0x0, 0x0, "e31ef0740c993121d9a7decd14c4ecd276397c6d4746ea8159f0cb08c9248dbd18efb42f29542963896b5c185a6358ec34e8e7d30811a79ca492f8e81c643f2c"}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffc, 0x2, [{{{0x9, 0xc, 0xf8, 'bond_slave_0\x00', 'nr0\x00', 'caif0\x00', 'lapb0\x00', @broadcast, [0x0, 0xff, 0xff, 0xff, 0xff], @random="055500ba3fd3", [0x0, 0x0, 0x0, 0xff, 0xff], 0x8a8, 0x958, 0x9d0, [@u32={'u32\x00', 0x7c0, {{[{[{0x9, 0x1}, {0x0, 0x3}, {0xba3, 0x3}, {0x9, 0x3}, {0xffffffff, 0x1}, {0xf8e, 0x2}, {0x9, 0x3}, {0x480000000000000}, {0x5, 0x3}, {0x73a, 0x3}, {0x5, 0x1}], [{0x7ff, 0x6}, {0x7, 0x5}, {0x3}, {0x1, 0x80000001}, {0x8}, {0x5, 0xc2}, {0x5, 0x1}, {0x401, 0xfffffffffffffff8}, {0x6, 0x9}, {0x1, 0x5}, {0x2, 0x9}], 0x0, 0xa}, {[{0x7, 0x2}, {0x4, 0x3}, {0x7fc757ea, 0x1}, {0x40}, {0x6}, {0x9, 0x3}, {0x9, 0x3}, {0xfffffffffffffffd}, {0x1, 0x1}, {0xfffffffffffffff8, 0x2}, {0x3, 0x2}], [{0xfff, 0x7}, {0x9, 0x100}, {0x0, 0x3}, {0x3, 0x4}, {0xffffffffffff3a7a}, {0x4, 0x1}, {0x0, 0x2}, {0x4f, 0x4}, {0x7f, 0x1}, {0x9f0, 0x80000000}, {0x80000001, 0x401}], 0xb, 0x7}, {[{0x9, 0x2}, {0x800, 0x1}, {0x3, 0x3}, {0xe44, 0x3}, {0x4, 0x1}, {}, {0x7, 0x3}, {0x7fffffff80000000, 0x3}, {0x63c0f98e, 0x3}, {0x4, 0x3}, {0x2, 0x3}], [{0x9}, {0xd0, 0x1}, {0x8, 0x7}, {0x8000, 0x7}, {0x1, 0x8001}, {0x400}, {0x2, 0x8}, {0xbc2, 0x3}, {0x1, 0x4}, {0x8, 0x1}, {0xfff, 0x1}], 0x6, 0xb}, {[{0xfffffffffffffffb}, {0x2, 0x2}, {0x20, 0x2}, {0x9, 0x3}, {0xff, 0x3}, {0x0, 0x3}, {0x1000000000, 0x1}, {0x1, 0x3}, {0x9, 0x1}, {0x1}, {0x2, 0x2}], [{0x3f, 0x9}, {0x4}, {0x400, 0x7f}, {0x1, 0xfff}, {0x6, 0x10}, {0x1f, 0x3}, {0x3, 0x7}, {0x101, 0x9}, {0xffffffff80000000, 0xfff}, {0x3}, {0x1, 0xffffffff80000001}], 0x5, 0x5}, {[{0x1}, {}, {0x100000000, 0x3}, {0x2e, 0x1}, {0x7f, 0x3}, {0x8, 0x1}, {0x4, 0x1}, {0x2}, {0x7ff, 0x3}, {0x5, 0x3}, {0x7, 0x3}], [{0x4, 0x7}, {0x1, 0xfff}, {0x3, 0x100000000}, {0x8, 0x3}, {0x4, 0x9}, {0x5, 0x100000000}, {0x8, 0x8001}, {0x1, 0x9}, {0xa77, 0x7ff}, {0x2, 0x3}, {0xb0ff, 0x2}], 0x6, 0x3}, {[{0xfffffffffffffffb, 0x1}, {0x4, 0x2}, {0x2}, {0x7, 0x3}, {0x3f, 0x3}, {0x2, 0xd561f1b680f0b0e4}, {0x1f, 0x1}, {0xfffffffffffffffa, 0x3}, {0xffffffffffffff81, 0x3}, {0x4d, 0x3}, {0xfffffffffffffffe, 0x2}], [{0x4, 0x5}, {0x5, 0xfff}, {0x6, 0x9}, {0x5, 0x9}, {0x2, 0x7}, {0x5, 0x8}, {0x4, 0x5}, {0x0, 0x9}, {0x6, 0x8000}, {0x4, 0x4}, {0x3, 0xffff}], 0x7, 0x2}, {[{0xd33b, 0x1}, {0x0, 0x3}, {0xffff, 0x3}, {0x101, 0x3}, {0x4, 0x1}, {0x0, 0x3}, {0x7, 0x1}, {0x3ff, 0x3}, {0x7, 0x3}, {0x5, 0x3}, {0x50b, 0x1}], [{0x8, 0x9}, {0xf971, 0x5}, {0x1}, {0xfffffffffffffff7, 0x80}, {0xfffffffffffff001, 0x4}, {0x5, 0x3e5}, {0x5, 0x10001}, {0xc15, 0x1858}, {0x2, 0x6}, {0x80, 0x9}, {0x400, 0x2}], 0x5, 0x5}, {[{}, {0x1}, {0x100000001, 0x2}, {0x5}, {0xc6}, {0x8000, 0x3}, {0x2f84, 0x2}, {0x5, 0x2}, {0x7, 0x3}, {0x1, 0x3}, {0x9, 0x3}], [{0xffffffff, 0x4}, {0x4, 0x21a776bc}, {0x6}, {0x4, 0x8}, {0x8, 0x5f}, {0x6d, 0x4e7}, {0x9, 0x80}, {0xb9ad, 0x1ff}, {0x3, 0x1f}, {0x5, 0x1ff}, {0xfaf, 0x3}], 0x8, 0xfffffffffffff8b2}, {[{0x5, 0x3}, {0x6, 0x3}, {0x3, 0x1}, {0x8, 0x3}, {0x8, 0x3}, {0xffffffffffffffae, 0x3}, {0x3, 0x3}, {0x6, 0x3}, {0x6, 0x3}, {0x88e9, 0x2}, {0x1, 0x2}], [{0x7, 0x400}, {0x7, 0x8}, {0x0, 0x6}, {0x5, 0x3}, {0x101, 0x100000000}, {0x8ea6, 0x778b5f04}, {0x4, 0x7ff}, {0x3, 0xffff}, {0x2, 0xf00000000000}, {0x9, 0xd}, {0x80, 0x6}], 0x8, 0xb}, {[{0x7, 0x1}, {0x5, 0x3}, {0xfffffffffffff800}, {0x0, 0x2}, {0x71b, 0x3}, {0x3, 0x2}, {0x800, 0x3}, {0x2000000, 0x3}, {0x401, 0x2}, {0x1, 0x3}, {0x0, 0x3}], [{0x400, 0x5}, {0x1, 0x5}, {0x1, 0x1f}, {0xb24}, {0x5, 0x9}, {0x6, 0x4f7}, {0x6}, {0x7fffffff, 0x80000000}, {0xff, 0x8}, {0x3, 0x20}, {0x3, 0x9}], 0x3, 0x7}, {[{0x100000000, 0x3}, {0x100000001, 0x3}, {0x800}, {0x0, 0x3}, {0xfff, 0x2}, {0x4}, {0x101, 0x1}, {}, {0xff}, {0xa0c5}, {0x9}], [{0x1, 0x8}, {0x0, 0x100000001}, {0x4, 0x9}, {0x4, 0x9}, {0xffff, 0x1}, {0x4480000000000, 0x3ff}, {0xdc7, 0x1}, {0x8001, 0xe3f}, {0x8, 0x4}, {0x25, 0x5}, {0x6a14, 0x26c}], 0x8, 0x8}], 0x1, 0x1}}}, @nfacct={'nfacct\x00', 0x28, {{'syz1\x00', 0x8}}}]}, [@common=@NFLOG={'NFLOG\x00', 0x50, {{0xfff, 0x7, 0x7, 0x0, 0x0, "527546b75937c3d6e46bf8bee81953ec5cce391b31665378388f003be8c3899fa80ebfff507bf03bfc8778db637c114d171fd55b09dc8fce14ff7c842d235d76"}}}, @common=@dnat={'dnat\x00', 0x10, {{@dev={[], 0x27}, 0xffffffffffffffff}}}]}, @common=@NFLOG={'NFLOG\x00', 0x50, {{0x62debd08, 0xffffffffffffffb2, 0x2, 0x0, 0x0, "6f3ef79119b57236ddf9de3c18a8000e97ed725a9624e8449712e44bf362b9b514bb216f29f9e809cb13758ee2202fccc870dc94d133442ea40092887c5c1318"}}}}, {{{0x11, 0x2, 0x0, 'sit0\x00', 'syzkaller0\x00', 'ip6tnl0\x00', 'ifb0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, [0xff, 0xff, 0xff, 0xff], @broadcast, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], 0x70, 0xa8, 0xd8}, [@common=@mark={'mark\x00', 0x10, {{0xfffffff0}}}]}, @common=@STANDARD={'\x00', 0x8, {0xffffffffffffffff}}}]}, {0x0, '\x00', 0x3, 0x6923291e8f7ce480, 0x2, [{{{0x0, 0x4, 0xaaff, 'bond_slave_1\x00', 'team_slave_0\x00', 'bond_slave_1\x00', 'ip6gre0\x00', @random="1c1c87df8871", [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @empty, [0xff, 0xff, 0xff, 0x0, 0xff, 0xff], 0x70, 0x1d8, 0x208}, [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x0, 'system_u:object_r:sulogin_exec_t:s0\x00'}}}, @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xfffffffffffffffe}}}]}, @common=@AUDIT={'AUDIT\x00', 0x8}}, {{{0x9, 0x22, 0x2af0, 'veth0_to_bond\x00', 'bridge0\x00', 'veth0\x00', 'veth0_to_team\x00', @local, [0xa406664dbd34beae, 0xff, 0xff, 0xff], @local, [0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x70, 0xa0, 0xf0}, [@common=@AUDIT={'AUDIT\x00', 0x8, {{0x2}}}]}, @common=@log={'log\x00', 0x28, {{0x7, "5cbec34a070793f1013c0706b845456f0688af76e5518d6f7b3f8778f3f6", 0x1}}}}]}, {0x0, '\x00', 0x5, 0xfffffffffffffffc, 0x2, [{{{0x15, 0x20, 0x0, 'nr0\x00', 'ip6gre0\x00', 'rose0\x00', 'vlan0\x00', @broadcast, [0xff, 0x0, 0xff, 0xff, 0x0, 0xff], @empty, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xd0, 0x178, 0x1f0, [@cpu={'cpu\x00', 0x8, {{0xffffffffffff8001, 0x1}}}, @state={'state\x00', 0x8, {{0x8}}}]}, [@common=@AUDIT={'AUDIT\x00', 0x8, {{0x2}}}, @common=@NFLOG={'NFLOG\x00', 0x50, {{0x4, 0x1, 0x8001, 0x0, 0x0, "85b26558cd40db8d414746ebe951a468aed1eab574649a72570ea2b5a71df3de08c3998e58919826341d085a463e3945321aebae721c5f68044ebc261adaaa18"}}}]}, @common=@nflog={'nflog\x00', 0x50, {{0x7f, 0x3, 0xaa9e, 0x0, 0x0, "6a37d45c62ded1d93afd74e96f99112bd2f86abbf2bfd55884a69daf2675146c20265105fdd735d02208b6d2fabd986d318f1c1bf0f85fd771b3b127e55cbc25"}}}}, {{{0x7, 0x30, 0x884f, 'yam0\x00', 'ip6erspan0\x00', 'vxcan1\x00', 'team_slave_0\x00', @local, [0xff, 0x0, 0xff, 0xff], @random="8122449c57cd", [0x0, 0xff, 0xff], 0xa0, 0x148, 0x178, [@m802_3={'802_3\x00', 0x8, {{0x0, 0xfffffffffffffc01, 0x2, 0x2}}}]}, [@common=@STANDARD={'\x00', 0x8, {0xffffffffffffffff}}, @common=@nflog={'nflog\x00', 0x50, {{0xb408, 0x911, 0xfaeb, 0x0, 0x0, "b636fa984a8770a1c4bd75de54134c808a7b0658dbf7e8afea26fd145f61c22c82527a290af87bb85baa226ec96f203a2e08636b682d172e02d6452d68e5f93b"}}}]}, @common=@STANDARD={'\x00', 0x8}}]}]}, 0x1398)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)

[ 1199.347361][T27812] llc_conn_state_process: llc_conn_service failed
[ 1200.570671][T23717] Bluetooth: hci0: command 0x1003 tx timeout
[ 1200.576843][ T7899] Bluetooth: hci0: sending frame failed (-49)
[ 1202.650692][T23717] Bluetooth: hci0: command 0x1001 tx timeout
[ 1202.657222][ T7899] Bluetooth: hci0: sending frame failed (-49)
[ 1204.730703][ T7734] Bluetooth: hci0: command 0x1009 tx timeout
08:05:35 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

08:05:35 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:35 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xb00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:35 executing program 1:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x400002, 0x0)
getdents64(r0, &(0x7f0000000200)=""/220, 0xdc)
r1 = getpid()
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0xff, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xd, r0, 0x0)
r2 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz'}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$unlink(0x9, r2, r2)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r3, 0xc0505350, &(0x7f0000000040)={{0x2, 0xcc8}, {0xb3, 0x7}, 0x1, 0x0, 0x400})
add_key$user(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz', 0x1}, &(0x7f00000003c0)="92ff973833c9c915dffabcb62523a70e2de0141d5e504ac4df334e12fc011e4d374271e277474efacb6701f1f9fd74d9db752ea7a813865fd4deb78cb28aaefd91052053853d1237e18caac7d6a4266d2bb0b64237815c937f73050ba4bb9b42a0e8b33349d2d8ab2f731ca204", 0x6d, r2)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r3, 0xc008551a, &(0x7f0000000300)={0x2, 0x28, [0x2, 0x17, 0x5f, 0x9, 0x200, 0x0, 0x7, 0x1, 0xb6, 0xb1]})

08:05:35 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="300000001900050ce3ffffff0000080000000000000014000500000000000000200000000000000000a3a635e1ccfa3d36f22cdc6bc5f0d4cd40fb7115928808540ac0e1b2c4da669b3989aee9fac5a0c0803d8f535ee4d62afc523db63facd19b49d6b596f1b5deea5234cac87b5e97a3fe7dd22a554f67738e7a"], 0x30}}, 0x0)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/btrfs-control\x00', 0x880, 0x0)
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4)

08:05:35 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x2000)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:36 executing program 5:
r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x0, 0x40)
sendto$inet(r0, &(0x7f0000000040)="0d3e925d781d79b2cfd91df250eda68d7c87a510be9731cddd8ab560183e48ab8860746ca92e95065384ce541fe1be6c87e81fec2b4b567b6c009d04b335f5b7422bd53bfe3f1e2505f9f7a3", 0x4c, 0x40, 0x0, 0x0)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x300000, 0x100000000, 0x9})
ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6)
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
syz_mount_image$iso9660(&(0x7f0000000100)='iso9660\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x0, &(0x7f0000000180), 0x2000000, &(0x7f0000000340)={[{@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@nojoliet='nojoliet'}, {@cruft='cruft'}, {@norock='norock'}], [{@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'user'}}, {@subj_user={'subj_user'}}, {@euid_lt={'euid<', r1}}, {@smackfshat={'smackfshat', 0x3d, '/dev/media#\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'posix_acl_access'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/media#\x00'}}, {@euid_eq={'euid', 0x3d, r2}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}]})
r3 = request_key(&(0x7f0000000440)='encrypted\x00', &(0x7f0000000480)={'syz', 0x3}, &(0x7f00000004c0)='nojoliet', 0xfffffffffffffffc)
r4 = add_key(&(0x7f0000000540)='encrypted\x00', &(0x7f0000000580)={'syz', 0x2}, 0x0, 0x0, 0x0)
keyctl$instantiate(0xc, r3, &(0x7f0000000500)=@encrypted_load={'load ', 'ecryptfs', 0x20, 'user:', 'iso9660\x00', 0x20, 0xffffffff, 0x20, [0x73, 0x31, 0x77, 0x64, 0x31, 0x75, 0x65]}, 0x39, r4)
connect$vsock_dgram(r0, &(0x7f00000005c0)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000600)={0x100000000, 0x2, 0x80000000, 'queue1\x00', 0xdb54})
fcntl$setstatus(r0, 0x4, 0x42800)
ioctl$SCSI_IOCTL_SYNC(r0, 0x4)
prctl$PR_SET_THP_DISABLE(0x29, 0x0)
write$FUSE_POLL(r0, &(0x7f00000006c0)={0x18, 0xffffffffffffffda, 0x8, {0xffffffffffff0000}}, 0x18)
syz_mount_image$nfs4(&(0x7f0000000700)='nfs4\x00', &(0x7f0000000740)='./file0\x00', 0x4941, 0x4, &(0x7f0000000ac0)=[{&(0x7f0000000780)="cc06fef4561b3d631830dfba0011f9d3565972ea71d6c839f27fcd78d152d800b89fb86f4ac896842e3c4f109ac20c43342daafda3bef8810b99380d9f1aa2743acc7c2e915c", 0x46, 0xe3}, {&(0x7f0000000800)="88744c4cea35297d75a6a00c4116fdba5b89e73177e9d7779ecf501476c0d050141a900ae3bbd824f46014e7b9b8c6e3c08b4e239ef6e347b8683ffb6020a5cbe74a4a41a7dcca455b7da01e9814b7b46d77941208b9e0a1e8c702bf2fcccd19b93ffcb9b9b9a5ec4a221b4fe00b8b68291d62e85d3d4a6c0afbb078754f53af5e04848708fa265aed406dab6cd974", 0x8f, 0x9}, {&(0x7f00000008c0)="da72d9fb5c67dba0af972a7b6d534711f3abe9bad0e2ea0754840cc0ba0a6f45d5d07939fc8a06ac22ca4471a242fc337541435c10d36e4fd632c7335ebcdb7df81fb9a8d1a693254218e3cb1224dfb9931b2af3595428e6753a805dce8e9d2b3a16f302ccb6232b71b9b0a233281427a6ddc153644f1ec1923ae56eb7981996e2160297f1a150a67eaa5227a165278f0b2c84b6ba157a4fb562d68a3767cd9e05f1915102ef11865fc0b4ca1ea6f7811078701a0cd5fd6055bb335d098317e79b303996236c469ed84fe6c0042cb5b48f3493652808e0c23de92cf1f86342773a77863470de45c8", 0xe8, 0x5}, {&(0x7f00000009c0)="6ad63d93df98890a8ea432d2a017fe9626b2208a75ac15b24061eb58c58de68e80c84c6ad94975701af305948058d1a97bbb7d43ebbf6c2a5da67fbef2b88b3c7c024c9563bffe2a69fde8bd6f017fefa451dc91fb79fba06f4053cff7dcaf65807969c6c06b330e80c75d11c969f581844fc91db8bf7fea406b4dd59ea1c70df2387275795542e3372db886b7a0277e306509f6f1331f4f2fba65913ee0a209ef5f1b0882646972a27e7f63f1e011b0ef258f5ac005caaf3c5cf8960434340a8b9786fc2a8a108f2b", 0xc9, 0x20}], 0x408, &(0x7f0000000b40)='\x00')
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000b80)={0x100000001, 0xf, 0x56fd8e60, 0x7fffffff, "1e1b9c2fd79b1b29970cac3c655b8a7b08adb28ea6d2daf9aab05a8b7d1de1be"})
ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000bc0))
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000c00)={<r5=>0x0, @in={{0x2, 0x4e23, @local}}, 0x4, 0x1, 0x5, 0x9000000, 0x6}, &(0x7f0000000cc0)=0x98)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000d00)={<r6=>r5, @in6={{0xa, 0x4e20, 0x1, @remote, 0xff}}, 0x10000, 0xffffffffffff0000, 0xfffffffffffffffe, 0x2, 0x2}, &(0x7f0000000dc0)=0x98)
sysfs$1(0x1, &(0x7f0000000e00)='ecryptfs')
r7 = msgget$private(0x0, 0x1)
msgctl$IPC_RMID(r7, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000e40)=0xfffffffffffffffc, 0x4)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000e80)={r6, 0x9}, 0x8)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f0000000ec0)=0xe0)
setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f0000000f80)={@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}, {&(0x7f0000000f00)}, &(0x7f0000000f40), 0x21}, 0xa0)
r8 = socket$inet6(0xa, 0x7, 0x3)
ioctl$EVIOCGPROP(r8, 0x80404509, &(0x7f0000001040)=""/36)

[ 1208.866448][T28026] Unknown ioctl -1068477616
[ 1208.885408][T28026] Unknown ioctl -1073195750
08:05:36 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

08:05:36 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xc00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:36 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xd00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:36 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

08:05:36 executing program 1:
r0 = socket$inet(0x2, 0x200000002, 0x0)
r1 = socket$l2tp(0x18, 0x1, 0x1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c12a41d88b070")
connect$l2tp(r1, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x3, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x2e)
getpeername(r1, 0x0, 0x0)

[ 1209.207013][T28216] ISOFS: Unable to identify CD-ROM format.
[ 1210.970822][T23717] Bluetooth: hci0: command 0x1003 tx timeout
[ 1210.977113][ T7899] Bluetooth: hci0: sending frame failed (-49)
[ 1213.050706][ T7727] Bluetooth: hci0: command 0x1001 tx timeout
[ 1213.056867][ T7899] Bluetooth: hci0: sending frame failed (-49)
[ 1215.130741][T23717] Bluetooth: hci0: command 0x1009 tx timeout
08:05:46 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

08:05:46 executing program 1:
r0 = syz_open_procfs(0x0, 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x6009, 0x1)
ioctl$TIOCSCTTY(r0, 0x540e, 0x3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='squashfs\x00', 0x0, 0x0)

08:05:46 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xe00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:46 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

08:05:46 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x3f00)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:46 executing program 5:
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4)
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x74, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sysfs$3(0x3)
sendto$inet(r0, 0x0, 0x223, 0x200007fd, &(0x7f0000000680)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000400)='bbr\x00', 0xb4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0xda9, 0x4)
r1 = fcntl$dupfd(r0, 0x0, r0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000480)={0xb80a, 0x18, 0xfa00, {0x7, &(0x7f0000000440), 0x0, 0x0, [0x9c00]}}, 0xfef5)

08:05:46 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[ 1219.163099][    T7] Bluetooth: hci0: Frame reassembly failed (-84)
08:05:46 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xf00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:46 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[ 1219.451762][ T2489] print_req_error: I/O error, dev loop3, sector 0 flags 0
[ 1219.472916][T28596] SQUASHFS error: squashfs_read_data failed to read block 0x0
[ 1219.484626][T28596] squashfs: SQUASHFS error: unable to read squashfs_super_block
08:05:46 executing program 3:
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xdc, "1bab226f7b08f1104c2d68a95059c8b4a6be3973f3a89eb8b39405bc8b8b8b8c03669667053f5251bf8bbdf1026f05108503c2d8c55fcec8d52cc989a8e25b43749a4d48253bffd3351f231403bffa94521eb34f6ef793f202581041a7374758cdbae6b7db9fac782fbe580c663fc1d0c946016900966d6e36dc91df3c1efad0c03dabd3fd8058e52510abbeda961110f9e4cf639f6c05f073a25aa3db246ec69ea0c05a9d9ea81b4e75ccc22c067f8f0ec23106554861618099c424389093e44593e8ad5fcf3585752b3c95ad85b6b8a7d188693aa47f0343fe43b5"}, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r1, 0xae80, 0x0)

08:05:46 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x8}, 0x37a)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@ipmr_getroute={0x1c, 0x1a, 0x525, 0x0, 0x0, {0x7000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00}}, 0x2a1}, 0x1, 0x0, 0x0, 0x3}, 0x0)

08:05:46 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x1100, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:46 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:46 executing program 1:
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001240)="2e0000002800813ee45ae087185082cf0124b0eba06ec40000230000000008000f0000000000000051894dd65b2f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001240)="2e0000002800813ee45ae087185082cf0200b0eba06ec4000023000500000800000000000000000051894dd65b2f", 0x2e}], 0x1}, 0x0)
r1 = syz_open_dev$dmmidi(&(0x7f0000003480)='/dev/dmmidi#\x00', 0x6, 0x7be6562499573b12)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f00000034c0))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000003300)={{{@in=@multicast2, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@loopback}, 0x0, @in6}}, &(0x7f0000001200)=0xe8)
syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f0000000080)='./file0\x00', 0x100000001, 0x5, &(0x7f0000003280)=[{&(0x7f0000000140)="8d940b4ceaf79d072a24541daa430189c5ae523b035522e3e94ad63427f6fc12a1794865c6fd51e65ebdc90811aad2eb2ddd5b6f901a34b24800181e0a3a881ea1c9954c1f821e00a65792a001332950969cf813f08f74ec83a969dcf0532b0b7a960e2b4b602790f24718484dea77fe6d1ed54f918961b9a620f806aefaaed8f818f33cfc", 0x85, 0x2}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001280)="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", 0x1000, 0x974}, {&(0x7f00000000c0)="11318dbea49679172df4b2131cae3b46b8a15a6f", 0x14, 0x5}, {&(0x7f0000002280)="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", 0x1000, 0xffffffff7fffffff}], 0x10, &(0x7f0000003400)={[{@data_writeback='data=writeback'}, {@norgrplvb='norgrplvb'}, {@nobarrier='nobarrier'}, {@nobarrier='nobarrier'}], [{@fowner_gt={'fowner>', r2}}, {@audit='audit'}, {@smackfsdef={'smackfsdef'}}, {@hash='hash'}, {@subj_type={'subj_type'}}, {@audit='audit'}, {@appraise='appraise'}]})

08:05:46 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x10000)
r1 = syz_open_dev$admmidi(&(0x7f0000000200)='/dev/admmidi#\x00', 0x5abc, 0x800)
write$P9_RCREATE(r1, &(0x7f0000000240)={0x18, 0x73, 0x2, {{0x84, 0x1}, 0x3}}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000080)={{0x20080}, 'port0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xda_\x00'})
r2 = accept4$nfc_llcp(0xffffffffffffff9c, 0x0, &(0x7f0000000000), 0x80000)
setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000040), 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x80000200, 0x2, {0x0, 0x3, 0xdd8b, 0x3, 0x8}})
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000ec6fb0)={{}, {0x80}, 0x0, 0xbf, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbf]})
r3 = open(&(0x7f0000000140)='./file0\x00', 0x42000, 0x80)
ioctl$VT_GETSTATE(r3, 0x5603, &(0x7f0000000180)={0x20, 0x86c, 0x7})

[ 1219.772845][T29033] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1219.788194][T29033] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1219.813862][T29033] netlink: 26 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1221.210663][ T7734] Bluetooth: hci0: command 0x1003 tx timeout
[ 1221.216800][ T7899] Bluetooth: hci0: sending frame failed (-49)
[ 1223.290712][T23717] Bluetooth: hci0: command 0x1001 tx timeout
[ 1223.296867][ T7899] Bluetooth: hci0: sending frame failed (-49)
[ 1225.370831][ T7734] Bluetooth: hci0: command 0x1009 tx timeout
08:05:56 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x1200, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:56 executing program 5:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd1dffd95c410f1c6)
ioctl$VIDIOC_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f0000000140)={0x0, @bt={0xfff, 0x9, 0x1, 0x2, 0x0, 0x5, 0x1, 0x81, 0x7, 0x143, 0x9, 0x101, 0x8d, 0x3f, 0x14, 0x22}})
setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x0, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001140)={0x7, 0x4, 0x10, 0x5}, 0x2c)
write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="117306f12f00000000000004f592ef302e"], 0x11)
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0xfffffffffffffda3)
getsockopt$rose(r0, 0x104, 0x0, &(0x7f0000000200), &(0x7f0000000240)=0x4)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={r1}, 0x10)

08:05:56 executing program 1:
r0 = socket$inet(0x2, 0x200000002, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
syz_emit_ethernet(0x36d, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000028004500034b000000000011907800000000e000000113004e2100089078"], 0x0)

08:05:56 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x4000)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:56 executing program 0 (fault-call:2 fault-nth:0):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:56 executing program 5:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_dev$binder(&(0x7f0000000200)='/dev/binder#\x00', 0x0, 0x802)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$inet6_udp_encap(r1, 0x11, 0x64, &(0x7f0000000040), 0x4)
dup3(r0, r0, 0x80000)
syz_open_dev$binder(&(0x7f0000000300)='/dev/binder#\x00', 0x0, 0x2)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$vnet(0xffffffffffffffff, 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000000)='asymmetric\x00', 0x0, &(0x7f00000000c0)="3058020af10cb8b56c96d27c44d58e94ea51a7dfc59e92e80d9482ca7839173a8f1143a711f5a939b4fd0072693a46c08df6616dd21be3453ecf73039a20f43acbc5376139a9070ae27dd847474d1e59b2697801e6ebd80f75ca", 0x5a, 0xfffffffffffffffd)

[ 1229.407081][T29211] FAULT_INJECTION: forcing a failure.
[ 1229.407081][T29211] name failslab, interval 1, probability 0, space 0, times 0
[ 1229.426105][T29211] CPU: 0 PID: 29211 Comm: syz-executor.0 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1229.435145][T29211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1229.445222][T29211] Call Trace:
[ 1229.448527][T29211]  dump_stack+0x172/0x1f0
[ 1229.452878][T29211]  should_fail.cold+0xa/0x15
08:05:56 executing program 1:
r0 = syz_open_dev$amidi(0x0, 0x3, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f0000000000))
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000013c0)={{{@in6=@remote, @in6=@ipv4}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5}}, 0xe8)
sendmmsg(r1, &(0x7f0000000240), 0x5c3, 0x0)

[ 1229.457485][T29211]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1229.463303][T29211]  ? ___might_sleep+0x163/0x280
[ 1229.468162][T29211]  __should_failslab+0x121/0x190
[ 1229.473125][T29211]  should_failslab+0x9/0x14
[ 1229.477646][T29211]  kmem_cache_alloc_trace+0x2d1/0x760
[ 1229.483031][T29211]  ? ___might_sleep+0x163/0x280
[ 1229.487981][T29211]  hci_alloc_dev+0x43/0x1d00
[ 1229.492646][T29211]  hci_uart_tty_ioctl+0x2d7/0xb00
[ 1229.497733][T29211]  tty_ioctl+0xac9/0x14d0
[ 1229.502071][T29211]  ? hci_uart_init_work+0x150/0x150
[ 1229.502124][T29211]  ? tty_register_device+0x40/0x40
[ 1229.502140][T29211]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1229.502162][T29211]  ? tomoyo_init_request_info+0x105/0x1d0
[ 1229.512500][T29211]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1229.512516][T29211]  ? tomoyo_path_number_perm+0x263/0x520
[ 1229.512531][T29211]  ? find_held_lock+0x35/0x130
[ 1229.512546][T29211]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1229.512572][T29211]  ? __fget+0x35a/0x550
[ 1229.512593][T29211]  ? tty_register_device+0x40/0x40
[ 1229.512610][T29211]  do_vfs_ioctl+0xd6e/0x1390
[ 1229.512630][T29211]  ? ioctl_preallocate+0x210/0x210
[ 1229.512650][T29211]  ? __fget+0x381/0x550
[ 1229.570078][T29211]  ? ksys_dup3+0x3e0/0x3e0
[ 1229.574508][T29211]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1229.580755][T29211]  ? fput_many+0x12c/0x1a0
[ 1229.585204][T29211]  ? tomoyo_file_ioctl+0x23/0x30
[ 1229.590154][T29211]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1229.596421][T29211]  ? security_file_ioctl+0x93/0xc0
[ 1229.601550][T29211]  ksys_ioctl+0xab/0xd0
[ 1229.605715][T29211]  __x64_sys_ioctl+0x73/0xb0
[ 1229.606415][T29385] PKCS8: Unsupported PKCS#8 version
[ 1229.610312][T29211]  do_syscall_64+0x103/0x610
[ 1229.610337][T29211]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1229.610349][T29211] RIP: 0033:0x458209
[ 1229.610366][T29211] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
08:05:56 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x1300, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:56 executing program 1:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x5, 0x20)
ioctl$VIDIOC_S_AUDOUT(r0, 0x40345632, &(0x7f0000000140)={0xfffffffffffffff9, "a8826879df8b2b28ba62eeeb670878ffc9f73cbdef03acf68958056860d20b5e"})
r1 = dup3(r0, r0, 0x0)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
ioctl$VIDIOC_G_CROP(r0, 0xc014563b, &(0x7f0000000040)={0x2, {0xfc, 0x0, 0x3b, 0xcfda}})

08:05:56 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000100)=0x3, 0x4)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f00000000c0)=0x7, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @dev}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000080), 0x4)

[ 1229.610373][T29211] RSP: 002b:00007fe4e02fcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1229.610388][T29211] RAX: ffffffffffffffda RBX: 00007fe4e02fcc90 RCX: 0000000000458209
[ 1229.610397][T29211] RDX: 0000000000000009 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1229.610406][T29211] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1229.610415][T29211] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4e02fd6d4
[ 1229.610423][T29211] R13: 00000000004c09f8 R14: 00000000004d2770 R15: 0000000000000004
[ 1229.661713][T29211] Bluetooth: Can't allocate HCI device
08:05:56 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x1400, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:56 executing program 0 (fault-call:2 fault-nth:1):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:56 executing program 5:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000140)={<r1=>0x0, 0x9, 0x0, 0x100000001}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r1, 0x7}, &(0x7f0000000200)=0x8)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x2)
fsetxattr$security_ima(r2, &(0x7f0000000100)='security.ima\x00', &(0x7f0000000400)=@ng={0x4, 0xc}, 0x2, 0x0)
r3 = open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000080)={r2})

[ 1229.868860][T29743] FAULT_INJECTION: forcing a failure.
[ 1229.868860][T29743] name failslab, interval 1, probability 0, space 0, times 0
[ 1229.881702][   T27] audit: type=1804 audit(1553328356.952:4665): pid=29757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir093005050/syzkaller.0aGsZ6/1705/bus" dev="sda1" ino=16871 res=1
[ 1229.907560][T29743] CPU: 1 PID: 29743 Comm: syz-executor.0 Not tainted 5.1.0-rc1-next-20190322 #9
08:05:57 executing program 1:
clock_adjtime(0x0, &(0x7f00000001c0)={0x27ff, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4385})

[ 1229.916601][T29743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1229.926662][T29743] Call Trace:
[ 1229.927988][   T27] audit: type=1804 audit(1553328356.962:4666): pid=29757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir093005050/syzkaller.0aGsZ6/1705/bus" dev="sda1" ino=16871 res=1
[ 1229.929964][T29743]  dump_stack+0x172/0x1f0
[ 1229.929991][T29743]  should_fail.cold+0xa/0x15
[ 1229.930012][T29743]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1229.930042][T29743]  ? ___might_sleep+0x163/0x280
[ 1229.960466][   T27] audit: type=1804 audit(1553328356.962:4667): pid=29757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir093005050/syzkaller.0aGsZ6/1705/bus" dev="sda1" ino=16871 res=1
[ 1229.963059][T29743]  __should_failslab+0x121/0x190
[ 1229.963079][T29743]  should_failslab+0x9/0x14
[ 1229.963097][T29743]  kmem_cache_alloc_trace+0x2d1/0x760
[ 1229.963205][T29743]  ? pm_runtime_init+0x311/0x3b0
[ 1229.963250][T29743]  ? device_initialize+0x1a1/0x440
[ 1230.023619][T29743]  ag6xx_open+0x46/0x160
[ 1230.027847][T29743]  hci_uart_tty_ioctl+0x709/0xb00
[ 1230.032867][T29743]  tty_ioctl+0xac9/0x14d0
[ 1230.037216][T29743]  ? hci_uart_init_work+0x150/0x150
[ 1230.042514][T29743]  ? tty_register_device+0x40/0x40
[ 1230.047605][T29743]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.053849][T29743]  ? tomoyo_init_request_info+0x105/0x1d0
[ 1230.059555][T29743]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.065797][T29743]  ? tomoyo_path_number_perm+0x263/0x520
[ 1230.071473][T29743]  ? find_held_lock+0x35/0x130
[ 1230.076233][T29743]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1230.082073][T29743]  ? __fget+0x35a/0x550
[ 1230.086245][T29743]  ? tty_register_device+0x40/0x40
[ 1230.091340][T29743]  do_vfs_ioctl+0xd6e/0x1390
[ 1230.095915][T29743]  ? ioctl_preallocate+0x210/0x210
[ 1230.101030][T29743]  ? __fget+0x381/0x550
[ 1230.105180][T29743]  ? ksys_dup3+0x3e0/0x3e0
[ 1230.109598][T29743]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.115831][T29743]  ? fput_many+0x12c/0x1a0
[ 1230.120231][T29743]  ? tomoyo_file_ioctl+0x23/0x30
[ 1230.125158][T29743]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.131394][T29743]  ? security_file_ioctl+0x93/0xc0
[ 1230.136508][T29743]  ksys_ioctl+0xab/0xd0
[ 1230.140658][T29743]  __x64_sys_ioctl+0x73/0xb0
[ 1230.145302][T29743]  do_syscall_64+0x103/0x610
[ 1230.149878][T29743]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1230.155757][T29743] RIP: 0033:0x458209
[ 1230.159651][T29743] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1230.179256][T29743] RSP: 002b:00007fe4e02fcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1230.187680][T29743] RAX: ffffffffffffffda RBX: 00007fe4e02fcc90 RCX: 0000000000458209
[ 1230.195654][T29743] RDX: 0000000000000009 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1230.195670][T29743] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1230.211597][T29743] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4e02fd6d4
[ 1230.211606][T29743] R13: 00000000004c09f8 R14: 00000000004d2770 R15: 0000000000000004
08:05:57 executing program 4:
r0 = userfaultfd(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000fcdfe8))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1})
r1 = gettid()
read(r0, &(0x7f0000000280)=""/125, 0x7d)
process_vm_readv(r1, &(0x7f0000fca000)=[{&(0x7f0000000000)=""/249, 0xf9}], 0x1, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0xfffffe9b}], 0x1, 0x4800)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000})

08:05:57 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070")
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='uppemdr=./file0,lowerdir=./file0,workdir=./fhle1\\\x00\x00'])
r1 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
fchdir(r1)
r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000002c0)={0x30}, 0x30)

08:05:57 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 'y\x14\bK\x16^\x9e\xc5/\x15\x95\x13)\xeb\xf0\x15\xf3{T\x1aWP\xac\xb2\xac\x95\xe9\xad9b\xaf5.S#\xb7y\x82\x1f\xa5^\xe1K\xf9'})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

08:05:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x1500, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:57 executing program 5:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x9000, 0x0, &(0x7f0000ff7000/0x9000)=nil)
r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x40800, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000080)={0x8, [0x0, 0x0, 0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000000c0)=0x24)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000100)=@assoc_value={r2, 0x200}, 0x8)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffa000/0x1000)=nil)
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000440)=""/19)
r3 = socket$inet(0x2, 0x3, 0x2)
syz_open_dev$adsp(0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5387, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000980)={'vcan0\x00'})
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, 0x0, 0x0)
setsockopt$inet_int(r3, 0x0, 0xcd, &(0x7f0000000000), 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380)
openat$cgroup_int(r0, 0x0, 0x2, 0x0)
stat(0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200001)

08:05:57 executing program 0 (fault-call:2 fault-nth:2):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

[ 1230.342756][T29851] overlayfs: unrecognized mount option "uppemdr=./file0" or missing value
[ 1230.361450][T29856] FAULT_INJECTION: forcing a failure.
[ 1230.361450][T29856] name failslab, interval 1, probability 0, space 0, times 0
[ 1230.384257][T29856] CPU: 0 PID: 29856 Comm: syz-executor.0 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1230.393298][T29856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1230.403351][T29856] Call Trace:
[ 1230.406652][T29856]  dump_stack+0x172/0x1f0
[ 1230.411009][T29856]  should_fail.cold+0xa/0x15
[ 1230.415617][T29856]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1230.421436][T29856]  ? ___might_sleep+0x163/0x280
[ 1230.426296][T29856]  __should_failslab+0x121/0x190
[ 1230.431246][T29856]  should_failslab+0x9/0x14
[ 1230.435757][T29856]  __kmalloc+0x2dc/0x740
[ 1230.440067][T29856]  ? alloc_workqueue+0x13e/0xf30
[ 1230.445024][T29856]  alloc_workqueue+0x13e/0xf30
[ 1230.449803][T29856]  ? workqueue_sysfs_register+0x3f0/0x3f0
[ 1230.455529][T29856]  ? scnprintf+0x140/0x140
[ 1230.459954][T29856]  ? kmem_cache_alloc_trace+0x354/0x760
[ 1230.465585][T29856]  hci_register_dev+0x1b8/0x860
[ 1230.470473][T29856]  ? __raw_spin_lock_init+0x2d/0x100
[ 1230.475770][T29856]  hci_uart_tty_ioctl+0x766/0xb00
[ 1230.475790][T29856]  tty_ioctl+0xac9/0x14d0
[ 1230.475805][T29856]  ? hci_uart_init_work+0x150/0x150
[ 1230.475820][T29856]  ? tty_register_device+0x40/0x40
[ 1230.475836][T29856]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.475852][T29856]  ? tomoyo_init_request_info+0x105/0x1d0
[ 1230.475873][T29856]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.513642][T29856]  ? tomoyo_path_number_perm+0x263/0x520
[ 1230.519280][T29856]  ? find_held_lock+0x35/0x130
[ 1230.524050][T29856]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1230.529867][T29856]  ? __fget+0x35a/0x550
[ 1230.534050][T29856]  ? tty_register_device+0x40/0x40
[ 1230.539168][T29856]  do_vfs_ioctl+0xd6e/0x1390
08:05:57 executing program 5:
r0 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x5, 0x4400)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'veth1_to_team\x00', 0x400})
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = shmget$private(0x0, 0x1000, 0x54000a40, &(0x7f0000ffc000/0x1000)=nil)
shmctl$SHM_LOCK(r1, 0xb)
mkdir(&(0x7f0000001340)='./file0\x00', 0x0)
utime(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040))

08:05:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x1800, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

[ 1230.543796][T29856]  ? ioctl_preallocate+0x210/0x210
[ 1230.548918][T29856]  ? __fget+0x381/0x550
[ 1230.553093][T29856]  ? ksys_dup3+0x3e0/0x3e0
[ 1230.557518][T29856]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.563769][T29856]  ? fput_many+0x12c/0x1a0
[ 1230.568211][T29856]  ? tomoyo_file_ioctl+0x23/0x30
[ 1230.573161][T29856]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.579414][T29856]  ? security_file_ioctl+0x93/0xc0
[ 1230.584538][T29856]  ksys_ioctl+0xab/0xd0
[ 1230.588712][T29856]  __x64_sys_ioctl+0x73/0xb0
[ 1230.593319][T29856]  do_syscall_64+0x103/0x610
[ 1230.597964][T29856]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1230.603880][T29856] RIP: 0033:0x458209
[ 1230.607780][T29856] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1230.627386][T29856] RSP: 002b:00007fe4e02fcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1230.635801][T29856] RAX: ffffffffffffffda RBX: 00007fe4e02fcc90 RCX: 0000000000458209
08:05:57 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x2, 0x2)
ioctl$VIDIOC_G_INPUT(r1, 0x80045626, &(0x7f0000000080))
getsockname$netrom(r1, &(0x7f0000000100)={{}, [@default, @remote, @remote, @netrom, @bcast, @remote, @netrom, @default]}, &(0x7f0000000180)=0x48)
sendto$inet6(r0, 0x0, 0x0, 0x8000, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
mknod(&(0x7f00000000c0)='./file0\x00', 0x8400, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0xfff4)
recvmmsg(r0, &(0x7f0000002cc0)=[{{&(0x7f0000001440)=@pppol2tp={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, 0x0, 0x0, 0x0, 0xf6}}, {{0x0, 0x0, &(0x7f0000000280)=[{0x0, 0xfffffffffffffeb1}, {&(0x7f0000001680)=""/4096, 0x1000}, {0x0}, {0x0, 0xffffff74}, {0x0}, {0x0, 0x53}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x2, 0x44000102, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f00000001c0)={0xffffffffffffff4c, 0x9, 0x80000000, 0x1, 0x20, 0x100000000, 0x919}, 0xc)

[ 1230.643778][T29856] RDX: 0000000000000009 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1230.651756][T29856] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1230.659730][T29856] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4e02fd6d4
[ 1230.667708][T29856] R13: 00000000004c09f8 R14: 00000000004d2770 R15: 0000000000000004
[ 1230.691026][T29856] Bluetooth: Can't register HCI device
08:05:57 executing program 0 (fault-call:2 fault-nth:3):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x80000000000000f)
ioctl$KDADDIO(r0, 0x400455c8, 0x9)

08:05:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000000000)={0x0, 0x183, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x3b00, &(0x7f0000000040)={0x1, 0xffffffff00000001, 0x8, 0x2}, 0x2f)

08:05:57 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'eql\x00', 0x805})
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x800, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f00000000c0)=0x9)
ioctl$sock_ifreq(r0, 0x400000000008923, &(0x7f0000000000)={'eql\x00\x00\x00\xa9[\x00', @ifru_names='eql\x00\x00\x00\xfd\xfd\xff\xff\x00'})

[ 1230.812393][T30284] FAULT_INJECTION: forcing a failure.
[ 1230.812393][T30284] name failslab, interval 1, probability 0, space 0, times 0
[ 1230.827126][T30284] CPU: 1 PID: 30284 Comm: syz-executor.0 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1230.836221][T30284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1230.836228][T30284] Call Trace:
[ 1230.836263][T30284]  dump_stack+0x172/0x1f0
[ 1230.836289][T30284]  should_fail.cold+0xa/0x15
[ 1230.836312][T30284]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[ 1230.836335][T30284]  ? ___might_sleep+0x163/0x280
[ 1230.836357][T30284]  __should_failslab+0x121/0x190
[ 1230.836377][T30284]  should_failslab+0x9/0x14
[ 1230.836395][T30284]  kmem_cache_alloc_trace+0x2d1/0x760
[ 1230.836411][T30284]  ? rcu_read_lock_sched_held+0x110/0x130
[ 1230.836427][T30284]  ? __kmalloc+0x5d5/0x740
[ 1230.836457][T30284]  alloc_workqueue_attrs+0x82/0x120
[ 1230.864490][T30284]  alloc_workqueue+0x17b/0xf30
[ 1230.864516][T30284]  ? workqueue_sysfs_register+0x3f0/0x3f0
[ 1230.864533][T30284]  ? scnprintf+0x140/0x140
[ 1230.864559][T30284]  ? kmem_cache_alloc_trace+0x354/0x760
[ 1230.864583][T30284]  hci_register_dev+0x1b8/0x860
[ 1230.864607][T30284]  ? __raw_spin_lock_init+0x2d/0x100
[ 1230.878856][T30284]  hci_uart_tty_ioctl+0x766/0xb00
[ 1230.878877][T30284]  tty_ioctl+0xac9/0x14d0
[ 1230.878893][T30284]  ? hci_uart_init_work+0x150/0x150
[ 1230.878910][T30284]  ? tty_register_device+0x40/0x40
[ 1230.878925][T30284]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.878941][T30284]  ? tomoyo_init_request_info+0x105/0x1d0
[ 1230.878962][T30284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.887523][T30300] kobject: 'queues' (000000009ea0f27f): kobject_add_internal: parent: 'eql', set: '<NULL>'
[ 1230.890028][T30284]  ? tomoyo_path_number_perm+0x263/0x520
[ 1230.890044][T30284]  ? find_held_lock+0x35/0x130
[ 1230.890061][T30284]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1230.890090][T30284]  ? __fget+0x35a/0x550
[ 1230.890112][T30284]  ? tty_register_device+0x40/0x40
[ 1230.890129][T30284]  do_vfs_ioctl+0xd6e/0x1390
[ 1230.890150][T30284]  ? ioctl_preallocate+0x210/0x210
[ 1230.900868][T30300] kobject: 'queues' (000000009ea0f27f): kobject_uevent_env
[ 1230.904485][T30284]  ? __fget+0x381/0x550
[ 1230.904508][T30284]  ? ksys_dup3+0x3e0/0x3e0
[ 1230.904524][T30284]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.904538][T30284]  ? fput_many+0x12c/0x1a0
[ 1230.904559][T30284]  ? tomoyo_file_ioctl+0x23/0x30
[ 1230.904574][T30284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.904597][T30284]  ? security_file_ioctl+0x93/0xc0
[ 1230.910523][T30300] kobject: 'queues' (000000009ea0f27f): kobject_uevent_env: filter function caused the event to drop!
[ 1230.914721][T30284]  ksys_ioctl+0xab/0xd0
[ 1230.914741][T30284]  __x64_sys_ioctl+0x73/0xb0
[ 1230.914761][T30284]  do_syscall_64+0x103/0x610
[ 1230.914785][T30284]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1230.914798][T30284] RIP: 0033:0x458209
[ 1230.914813][T30284] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1230.914828][T30284] RSP: 002b:00007fe4e02fcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1230.920632][T30300] kobject: 'rx-0' (00000000979e35a5): kobject_add_internal: parent: 'queues', set: 'queues'
[ 1230.925196][T30284] RAX: ffffffffffffffda RBX: 00007fe4e02fcc90 RCX: 0000000000458209
[ 1230.925205][T30284] RDX: 0000000000000009 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1230.925214][T30284] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1230.925223][T30284] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4e02fd6d4
[ 1230.925232][T30284] R13: 00000000004c09f8 R14: 00000000004d2770 R15: 0000000000000004
[ 1230.937602][T30284] WARNING: CPU: 1 PID: 30284 at kernel/locking/lockdep.c:4925 lockdep_unregister_key+0x1ef/0x4c0
[ 1230.941059][T30300] kobject: 'rx-0' (00000000979e35a5): kobject_uevent_env
[ 1230.945223][T30284] Kernel panic - not syncing: panic_on_warn set ...
[ 1230.945238][T30284] CPU: 1 PID: 30284 Comm: syz-executor.0 Not tainted 5.1.0-rc1-next-20190322 #9
[ 1230.945246][T30284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1230.945249][T30284] Call Trace:
[ 1230.945267][T30284]  dump_stack+0x172/0x1f0
[ 1230.945282][T30284]  ? lockdep_unregister_key+0x180/0x4c0
[ 1230.945298][T30284]  panic+0x2cb/0x65c
[ 1230.945312][T30284]  ? __warn_printk+0xf3/0xf3
[ 1230.945327][T30284]  ? lockdep_unregister_key+0x1ef/0x4c0
[ 1230.945348][T30284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.950721][T30300] kobject: 'rx-0' (00000000979e35a5): fill_kobj_path: path = '/devices/virtual/net/eql/queues/rx-0'
[ 1230.956665][T30284]  ? __warn.cold+0x5/0x45
[ 1230.956681][T30284]  ? lockdep_unregister_key+0x1ef/0x4c0
[ 1230.956695][T30284]  __warn.cold+0x20/0x45
[ 1230.956717][T30284]  ? lockdep_unregister_key+0x1ef/0x4c0
[ 1230.956731][T30284]  report_bug+0x263/0x2b0
[ 1230.956747][T30284]  do_error_trap+0x11b/0x200
[ 1230.956766][T30284]  do_invalid_op+0x37/0x50
[ 1230.962799][T30300] kobject: 'tx-0' (0000000055a9f4ac): kobject_add_internal: parent: 'queues', set: 'queues'
[ 1230.968686][T30284]  ? lockdep_unregister_key+0x1ef/0x4c0
[ 1230.968710][T30284]  invalid_op+0x14/0x20
[ 1230.968725][T30284] RIP: 0010:lockdep_unregister_key+0x1ef/0x4c0
[ 1230.968739][T30284] Code: 00 00 00 00 00 fc ff df 4c 89 c2 48 c1 ea 03 80 3c 02 00 0f 85 c9 02 00 00 48 b8 00 02 00 00 00 00 ad de 49 89 44 24 08 eb 02 <0f> 0b ba 01 00 00 00 4c 89 e6 4c 89 ff e8 8f de ff ff 4c 89 ff e8
[ 1230.968747][T30284] RSP: 0018:ffff888052f57950 EFLAGS: 00010046
[ 1230.968758][T30284] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffffffff12bd6ef
[ 1230.968766][T30284] RDX: 1ffffffff146924a RSI: 0000000000000000 RDI: ffffffff8a349250
[ 1230.968774][T30284] RBP: ffff888052f57980 R08: 1ffff1100a5eaf1e R09: ffffed100a5eaf1f
[ 1230.968790][T30284] R10: ffffed100a5eaf1e R11: 0000000000000003 R12: ffff8880938b18d8
[ 1230.979153][T30300] kobject: 'tx-0' (0000000055a9f4ac): kobject_uevent_env
[ 1230.984366][T30284] R13: dffffc0000000000 R14: 0000000000000282 R15: ffffffff8a0bd778
[ 1230.984394][T30284]  alloc_workqueue+0xc52/0xf30
[ 1230.984413][T30284]  ? workqueue_sysfs_register+0x3f0/0x3f0
[ 1230.984428][T30284]  ? scnprintf+0x140/0x140
[ 1230.984448][T30284]  ? kmem_cache_alloc_trace+0x354/0x760
[ 1230.984466][T30284]  hci_register_dev+0x1b8/0x860
[ 1230.984481][T30284]  ? __raw_spin_lock_init+0x2d/0x100
[ 1230.984501][T30284]  hci_uart_tty_ioctl+0x766/0xb00
[ 1230.990012][T30300] kobject: 'tx-0' (0000000055a9f4ac): fill_kobj_path: path = '/devices/virtual/net/eql/queues/tx-0'
[ 1230.995039][T30284]  tty_ioctl+0xac9/0x14d0
[ 1230.995054][T30284]  ? hci_uart_init_work+0x150/0x150
[ 1230.995068][T30284]  ? tty_register_device+0x40/0x40
[ 1230.995083][T30284]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1230.995099][T30284]  ? tomoyo_init_request_info+0x105/0x1d0
[ 1230.995115][T30284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1230.995127][T30284]  ? tomoyo_path_number_perm+0x263/0x520
[ 1230.995139][T30284]  ? find_held_lock+0x35/0x130
[ 1230.995152][T30284]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1230.995173][T30284]  ? __fget+0x35a/0x550
[ 1231.485513][T30284]  ? tty_register_device+0x40/0x40
[ 1231.490617][T30284]  do_vfs_ioctl+0xd6e/0x1390
[ 1231.495222][T30284]  ? ioctl_preallocate+0x210/0x210
[ 1231.500424][T30284]  ? __fget+0x381/0x550
[ 1231.504570][T30284]  ? ksys_dup3+0x3e0/0x3e0
[ 1231.508977][T30284]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1231.515210][T30284]  ? fput_many+0x12c/0x1a0
[ 1231.519622][T30284]  ? tomoyo_file_ioctl+0x23/0x30
[ 1231.524552][T30284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1231.530782][T30284]  ? security_file_ioctl+0x93/0xc0
[ 1231.535883][T30284]  ksys_ioctl+0xab/0xd0
[ 1231.540034][T30284]  __x64_sys_ioctl+0x73/0xb0
[ 1231.544617][T30284]  do_syscall_64+0x103/0x610
[ 1231.549215][T30284]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1231.555107][T30284] RIP: 0033:0x458209
[ 1231.558994][T30284] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1231.578584][T30284] RSP: 002b:00007fe4e02fcc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1231.586984][T30284] RAX: ffffffffffffffda RBX: 00007fe4e02fcc90 RCX: 0000000000458209
[ 1231.594945][T30284] RDX: 0000000000000009 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1231.602906][T30284] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000
[ 1231.610878][T30284] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4e02fd6d4
[ 1231.618859][T30284] R13: 00000000004c09f8 R14: 00000000004d2770 R15: 0000000000000004
[ 1232.788063][T30284] Shutting down cpus with NMI
[ 1232.793533][T30284] Kernel Offset: disabled
[ 1232.797852][T30284] Rebooting in 86400 seconds..