Bluetooth: Can't allocate HCI device
[ 1413.361073][T27221]  ? fault_create_debugfs_attr+0x180/0x180
[ 1413.361090][T27221]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1413.361112][T27221]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.384213][T27221]  ? debug_smp_processor_id+0x3c/0x214
[ 1413.389702][T27221]  ? ___might_sleep+0x163/0x280
[ 1413.394570][T27221]  __should_failslab+0x121/0x190
[ 1413.399614][T27221]  should_failslab+0x9/0x14
[ 1413.404218][T27221]  __kmalloc+0x2e0/0x770
[ 1413.408477][T27221]  ? mark_held_locks+0xf0/0xf0
[ 1413.413268][T27221]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1413.419139][T27221]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
19:56:46 executing program 1 (fault-call:2 fault-nth:4):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1413.425410][T27221]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.431674][T27221]  ? tomoyo_realpath_from_path+0xcd/0x7b0
[ 1413.437423][T27221]  tomoyo_realpath_from_path+0xcd/0x7b0
[ 1413.443092][T27221]  ? tomoyo_path2_perm+0x21b/0x670
[ 1413.449081][T27221]  tomoyo_path2_perm+0x27b/0x670
[ 1413.454848][T27221]  ? tomoyo_path2_perm+0x21b/0x670
[ 1413.460248][T27221]  ? __kasan_check_read+0x11/0x20
[ 1413.465274][T27221]  ? tomoyo_mkdev_perm+0x4b0/0x4b0
[ 1413.465290][T27221]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.465302][T27221]  ? debug_smp_processor_id+0x3c/0x214
[ 1413.465319][T27221]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1413.465337][T27221]  ? __d_lookup+0x61d/0x760
[ 1413.465358][T27221]  ? __kasan_check_read+0x11/0x20
[ 1413.465376][T27221]  ? do_raw_spin_unlock+0x57/0x270
[ 1413.488411][T27221]  tomoyo_path_rename+0xee/0x150
[ 1413.503320][T27221]  ? tomoyo_sb_pivotroot+0x30/0x30
[ 1413.503339][T27221]  ? d_lookup+0x19e/0x260
[ 1413.503365][T27221]  security_path_rename+0x20c/0x300
[ 1413.503387][T27221]  do_renameat2+0x7b8/0xc40
[ 1413.528116][T27221]  ? user_path_create+0x50/0x50
[ 1413.533082][T27221]  ? fput_many+0x12c/0x1a0
[ 1413.537690][T27221]  ? fput+0x1b/0x20
[ 1413.537713][T27221]  ? __kasan_check_write+0x14/0x20
[ 1413.546696][T27221]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[ 1413.546716][T27221]  __x64_sys_renameat2+0xbe/0x150
[ 1413.546736][T27221]  do_syscall_64+0xfa/0x760
[ 1413.546751][T27221]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1413.546761][T27221] RIP: 0033:0x459829
19:56:46 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x5451, 0x0)

[ 1413.546774][T27221] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1413.546787][T27221] RSP: 002b:00007f3180abdc78 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[ 1413.559987][T27236] FAULT_INJECTION: forcing a failure.
[ 1413.559987][T27236] name failslab, interval 1, probability 0, space 0, times 0
[ 1413.562530][T27221] RAX: ffffffffffffffda RBX: 00007f3180abdc90 RCX: 0000000000459829
[ 1413.562539][T27221] RDX: 0000000000000003 RSI: 00000000200002c0 RDI: 0000000000000003
[ 1413.562548][T27221] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[ 1413.562556][T27221] R10: 0000000020000080 R11: 0000000000000246 R12: 00007f3180abe6d4
[ 1413.562564][T27221] R13: 00000000004c6d98 R14: 00000000004dc110 R15: 0000000000000004
[ 1413.585880][T27221] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1413.607947][T27236] CPU: 1 PID: 27236 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1413.671138][T27236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1413.681200][T27236] Call Trace:
[ 1413.684504][T27236]  dump_stack+0x172/0x1f0
[ 1413.688838][T27236]  should_fail.cold+0xa/0x15
[ 1413.693411][T27236]  ? fault_create_debugfs_attr+0x180/0x180
[ 1413.699201][T27236]  ? page_to_nid.part.0+0x20/0x20
[ 1413.704210][T27236]  ? ___might_sleep+0x163/0x280
[ 1413.709045][T27236]  __should_failslab+0x121/0x190
[ 1413.713968][T27236]  should_failslab+0x9/0x14
[ 1413.718454][T27236]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1413.723898][T27236]  ? pm_runtime_init+0x311/0x3b0
[ 1413.728827][T27236]  ? device_initialize+0x1bd/0x460
[ 1413.733927][T27236]  ll_open+0x46/0x380
[ 1413.737893][T27236]  hci_uart_tty_ioctl+0x748/0xc00
[ 1413.742906][T27236]  tty_ioctl+0xaf9/0x14f0
[ 1413.747218][T27236]  ? hci_uart_init_work+0x180/0x180
[ 1413.752396][T27236]  ? do_tty_hangup+0x30/0x30
[ 1413.756965][T27236]  ? tomoyo_path_number_perm+0x459/0x520
[ 1413.762605][T27236]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1413.768837][T27236]  ? tomoyo_path_number_perm+0x263/0x520
[ 1413.774460][T27236]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1413.780252][T27236]  ? __kasan_check_read+0x11/0x20
[ 1413.785263][T27236]  ? do_tty_hangup+0x30/0x30
[ 1413.789842][T27236]  do_vfs_ioctl+0xdb6/0x13e0
[ 1413.794415][T27236]  ? ioctl_preallocate+0x210/0x210
[ 1413.799508][T27236]  ? __fget+0x384/0x560
[ 1413.803658][T27236]  ? ksys_dup3+0x3e0/0x3e0
[ 1413.808059][T27236]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1413.814279][T27236]  ? fput_many+0x12c/0x1a0
[ 1413.818679][T27236]  ? tomoyo_file_ioctl+0x23/0x30
[ 1413.823772][T27236]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1413.829994][T27236]  ? security_file_ioctl+0x8d/0xc0
[ 1413.835113][T27236]  ksys_ioctl+0xab/0xd0
[ 1413.839253][T27236]  __x64_sys_ioctl+0x73/0xb0
[ 1413.844115][T27236]  do_syscall_64+0xfa/0x760
[ 1413.848605][T27236]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1413.854574][T27236] RIP: 0033:0x459829
[ 1413.858454][T27236] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
19:56:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000005430000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1413.878208][T27236] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1413.886613][T27236] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1413.894577][T27236] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1413.902530][T27236] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1413.910484][T27236] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1413.919289][T27236] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:56:47 executing program 1 (fault-call:2 fault-nth:5):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:47 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x0)

19:56:47 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

19:56:47 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:56:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000600000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:56:47 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x5452, 0x0)

19:56:47 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

19:56:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000e800000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1414.244285][T27260] FAULT_INJECTION: forcing a failure.
[ 1414.244285][T27260] name failslab, interval 1, probability 0, space 0, times 0
19:56:47 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x7, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:56:47 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:47 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x5460, 0x0)

[ 1414.323609][T27260] CPU: 1 PID: 27260 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1414.332762][T27260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1414.342824][T27260] Call Trace:
[ 1414.346130][T27260]  dump_stack+0x172/0x1f0
[ 1414.350517][T27260]  should_fail.cold+0xa/0x15
[ 1414.359519][T27260]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1414.369371][T27260]  ? fault_create_debugfs_attr+0x180/0x180
[ 1414.375343][T27260]  ? page_to_nid.part.0+0x20/0x20
[ 1414.380456][T27260]  ? ___might_sleep+0x163/0x280
[ 1414.385316][T27260]  __should_failslab+0x121/0x190
[ 1414.390333][T27260]  should_failslab+0x9/0x14
[ 1414.394834][T27260]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1414.400196][T27260]  ? kasan_kmalloc+0x9/0x10
[ 1414.404687][T27260]  ? __kmalloc+0x351/0x770
[ 1414.409116][T27260]  alloc_workqueue_attrs+0x3d/0xc0
[ 1414.414452][T27260]  alloc_workqueue+0x18b/0xf40
[ 1414.419223][T27260]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1414.425383][T27260]  ? scnprintf+0x140/0x140
[ 1414.429792][T27260]  ? kasan_kmalloc+0x9/0x10
[ 1414.434287][T27260]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1414.440062][T27260]  hci_register_dev+0x1b8/0x8f0
[ 1414.444904][T27260]  ? __raw_spin_lock_init+0x2d/0x100
[ 1414.450197][T27260]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1414.455239][T27260]  tty_ioctl+0xaf9/0x14f0
[ 1414.459553][T27260]  ? hci_uart_init_work+0x180/0x180
[ 1414.464752][T27260]  ? do_tty_hangup+0x30/0x30
[ 1414.469355][T27260]  ? tomoyo_path_number_perm+0x459/0x520
[ 1414.474992][T27260]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1414.481233][T27260]  ? tomoyo_path_number_perm+0x263/0x520
[ 1414.486979][T27260]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1414.492800][T27260]  ? trace_hardirqs_on+0x67/0x240
[ 1414.497812][T27260]  ? __kasan_check_read+0x11/0x20
[ 1414.502822][T27260]  ? do_tty_hangup+0x30/0x30
[ 1414.507422][T27260]  do_vfs_ioctl+0xdb6/0x13e0
[ 1414.512037][T27260]  ? ioctl_preallocate+0x210/0x210
[ 1414.517129][T27260]  ? __fget+0x384/0x560
[ 1414.521267][T27260]  ? ksys_dup3+0x3e0/0x3e0
[ 1414.525670][T27260]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1414.531901][T27260]  ? fput_many+0x12c/0x1a0
[ 1414.536309][T27260]  ? tomoyo_file_ioctl+0x23/0x30
[ 1414.541477][T27260]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1414.547734][T27260]  ? security_file_ioctl+0x8d/0xc0
[ 1414.553005][T27260]  ksys_ioctl+0xab/0xd0
[ 1414.557292][T27260]  __x64_sys_ioctl+0x73/0xb0
[ 1414.561882][T27260]  do_syscall_64+0xfa/0x760
[ 1414.567645][T27260]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1414.573705][T27260] RIP: 0033:0x459829
[ 1414.577592][T27260] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1414.598180][T27260] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1414.606803][T27260] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1414.615151][T27260] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1414.623292][T27260] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1414.631821][T27260] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1414.640116][T27260] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1414.650596][T27260] Bluetooth: Can't register HCI device
19:56:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000035800000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:56:47 executing program 1 (fault-call:2 fault-nth:6):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1414.775274][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1414.881510][T27292] FAULT_INJECTION: forcing a failure.
[ 1414.881510][T27292] name failslab, interval 1, probability 0, space 0, times 0
[ 1414.895104][T27292] CPU: 1 PID: 27292 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1414.904319][T27292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1414.914871][T27292] Call Trace:
[ 1414.918265][T27292]  dump_stack+0x172/0x1f0
[ 1414.922795][T27292]  should_fail.cold+0xa/0x15
[ 1414.927418][T27292]  ? fault_create_debugfs_attr+0x180/0x180
[ 1414.933222][T27292]  ? page_to_nid.part.0+0x20/0x20
[ 1414.938318][T27292]  ? ___might_sleep+0x163/0x280
[ 1414.943173][T27292]  __should_failslab+0x121/0x190
[ 1414.948794][T27292]  should_failslab+0x9/0x14
[ 1414.953423][T27292]  __kmalloc+0x2e0/0x770
[ 1414.957655][T27292]  ? alloc_workqueue+0x166/0xf40
[ 1414.962588][T27292]  alloc_workqueue+0x166/0xf40
[ 1414.967343][T27292]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1414.973060][T27292]  ? scnprintf+0x140/0x140
[ 1414.978236][T27292]  ? kasan_kmalloc+0x9/0x10
[ 1414.982753][T27292]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1414.988302][T27292]  hci_register_dev+0x1b8/0x8f0
[ 1414.993136][T27292]  ? __raw_spin_lock_init+0x2d/0x100
[ 1414.998551][T27292]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1415.003594][T27292]  tty_ioctl+0xaf9/0x14f0
[ 1415.008239][T27292]  ? hci_uart_init_work+0x180/0x180
[ 1415.013449][T27292]  ? do_tty_hangup+0x30/0x30
[ 1415.018039][T27292]  ? tomoyo_path_number_perm+0x459/0x520
[ 1415.023678][T27292]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1415.029931][T27292]  ? tomoyo_path_number_perm+0x263/0x520
[ 1415.035546][T27292]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1415.041360][T27292]  ? __kasan_check_read+0x11/0x20
[ 1415.046403][T27292]  ? do_tty_hangup+0x30/0x30
[ 1415.050974][T27292]  do_vfs_ioctl+0xdb6/0x13e0
[ 1415.055667][T27292]  ? ioctl_preallocate+0x210/0x210
[ 1415.060830][T27292]  ? __fget+0x384/0x560
[ 1415.064971][T27292]  ? ksys_dup3+0x3e0/0x3e0
[ 1415.069397][T27292]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1415.075619][T27292]  ? fput_many+0x12c/0x1a0
[ 1415.080017][T27292]  ? tomoyo_file_ioctl+0x23/0x30
[ 1415.084935][T27292]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1415.091356][T27292]  ? security_file_ioctl+0x8d/0xc0
[ 1415.096474][T27292]  ksys_ioctl+0xab/0xd0
[ 1415.100615][T27292]  __x64_sys_ioctl+0x73/0xb0
[ 1415.105196][T27292]  do_syscall_64+0xfa/0x760
[ 1415.109697][T27292]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1415.116287][T27292] RIP: 0033:0x459829
[ 1415.120889][T27292] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1415.140844][T27292] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1415.149497][T27292] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1415.157465][T27292] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1415.165895][T27292] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1415.173850][T27292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
19:56:48 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2)

19:56:48 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x6364, 0x0)

19:56:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x8, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:56:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000810000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1415.181920][T27292] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1415.206160][T27292] Bluetooth: Can't register HCI device
19:56:48 executing program 1 (fault-call:2 fault-nth:7):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:48 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x8912, 0x0)

19:56:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000ffffdd860000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1415.346676][T27308] FAULT_INJECTION: forcing a failure.
[ 1415.346676][T27308] name failslab, interval 1, probability 0, space 0, times 0
[ 1415.361578][T27308] CPU: 1 PID: 27308 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1415.370721][T27308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1415.380786][T27308] Call Trace:
[ 1415.384069][T27308]  dump_stack+0x172/0x1f0
[ 1415.388388][T27308]  should_fail.cold+0xa/0x15
[ 1415.393159][T27308]  ? fault_create_debugfs_attr+0x180/0x180
[ 1415.399881][T27308]  ? page_to_nid.part.0+0x20/0x20
[ 1415.404981][T27308]  ? ___might_sleep+0x163/0x280
[ 1415.409824][T27308]  __should_failslab+0x121/0x190
[ 1415.414879][T27308]  should_failslab+0x9/0x14
[ 1415.419624][T27308]  __kmalloc_track_caller+0x2dc/0x760
[ 1415.426251][T27308]  ? pointer+0x750/0x750
[ 1415.430762][T27308]  ? widen_string+0x2e0/0x2e0
[ 1415.435695][T27308]  ? kasprintf+0xbb/0xf0
[ 1415.439929][T27308]  kvasprintf+0xc8/0x170
[ 1415.444165][T27308]  ? bust_spinlocks+0xe0/0xe0
[ 1415.449725][T27308]  ? page_to_nid.part.0+0x20/0x20
[ 1415.455005][T27308]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1415.462771][T27308]  ? find_next_bit+0x107/0x130
[ 1415.469109][T27308]  kasprintf+0xbb/0xf0
[ 1415.473166][T27308]  ? kvasprintf_const+0x190/0x190
[ 1415.478183][T27308]  ? is_module_percpu_address+0xb/0x10
[ 1415.483652][T27308]  alloc_workqueue+0x46c/0xf40
[ 1415.488403][T27308]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1415.494351][T27308]  ? kasan_kmalloc+0x9/0x10
[ 1415.498924][T27308]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1415.504894][T27308]  hci_register_dev+0x1b8/0x8f0
[ 1415.509730][T27308]  ? __raw_spin_lock_init+0x2d/0x100
[ 1415.515757][T27308]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1415.520952][T27308]  tty_ioctl+0xaf9/0x14f0
[ 1415.525371][T27308]  ? hci_uart_init_work+0x180/0x180
[ 1415.531097][T27308]  ? do_tty_hangup+0x30/0x30
[ 1415.535684][T27308]  ? tomoyo_path_number_perm+0x459/0x520
[ 1415.542096][T27308]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1415.548408][T27308]  ? tomoyo_path_number_perm+0x263/0x520
[ 1415.554020][T27308]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1415.559825][T27308]  ? __kasan_check_read+0x11/0x20
[ 1415.565242][T27308]  ? do_tty_hangup+0x30/0x30
[ 1415.569932][T27308]  do_vfs_ioctl+0xdb6/0x13e0
[ 1415.576285][T27308]  ? ioctl_preallocate+0x210/0x210
[ 1415.581435][T27308]  ? __fget+0x384/0x560
[ 1415.586928][T27308]  ? ksys_dup3+0x3e0/0x3e0
[ 1415.591516][T27308]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1415.597938][T27308]  ? fput_many+0x12c/0x1a0
[ 1415.602362][T27308]  ? tomoyo_file_ioctl+0x23/0x30
[ 1415.607285][T27308]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1415.613527][T27308]  ? security_file_ioctl+0x8d/0xc0
[ 1415.618625][T27308]  ksys_ioctl+0xab/0xd0
[ 1415.622935][T27308]  __x64_sys_ioctl+0x73/0xb0
[ 1415.627605][T27308]  do_syscall_64+0xfa/0x760
[ 1415.632092][T27308]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1415.637966][T27308] RIP: 0033:0x459829
[ 1415.641853][T27308] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1415.661458][T27308] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1415.670001][T27308] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1415.678049][T27308] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1415.686996][T27308] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
19:56:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x9, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1415.695573][T27308] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1415.704303][T27308] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1416.833684][ T9958] Bluetooth: hci0: command 0x1003 tx timeout
[ 1416.839979][T11408] Bluetooth: hci0: sending frame failed (-49)
[ 1417.784820][ T9958] Bluetooth: hci1: command 0x1003 tx timeout
[ 1417.791596][T11408] Bluetooth: hci1: sending frame failed (-49)
[ 1418.903758][ T9958] Bluetooth: hci0: command 0x1001 tx timeout
[ 1418.911666][T11408] Bluetooth: hci0: sending frame failed (-49)
[ 1419.863840][T25754] Bluetooth: hci1: command 0x1001 tx timeout
[ 1419.869999][T11408] Bluetooth: hci1: sending frame failed (-49)
[ 1420.983764][T25754] Bluetooth: hci0: command 0x1009 tx timeout
[ 1421.943924][ T9958] Bluetooth: hci1: command 0x1009 tx timeout
19:56:58 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000047880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:56:58 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x8914, 0x0)

19:56:58 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xa, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:56:58 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3)

19:56:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000048880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:56:58 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x8933, 0x0)

19:56:58 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:59 executing program 1 (fault-call:2 fault-nth:8):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab02, 0x0)

19:56:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000064880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:56:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:56:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:59 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x4)

19:56:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:56:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab03, 0x0)

19:56:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000ffffa8880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1426.461494][T27371] FAULT_INJECTION: forcing a failure.
[ 1426.461494][T27371] name failslab, interval 1, probability 0, space 0, times 0
[ 1426.481627][T27371] CPU: 0 PID: 27371 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1426.490766][T27371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1426.490773][T27371] Call Trace:
[ 1426.490799][T27371]  dump_stack+0x172/0x1f0
[ 1426.490821][T27371]  should_fail.cold+0xa/0x15
[ 1426.490838][T27371]  ? fault_create_debugfs_attr+0x180/0x180
[ 1426.490853][T27371]  ? page_to_nid.part.0+0x20/0x20
[ 1426.490874][T27371]  ? ___might_sleep+0x163/0x280
[ 1426.528735][T27371]  __should_failslab+0x121/0x190
[ 1426.533676][T27371]  should_failslab+0x9/0x14
[ 1426.538522][T27371]  __kmalloc_track_caller+0x2dc/0x760
[ 1426.543882][T27371]  ? pointer+0x750/0x750
[ 1426.548122][T27371]  ? widen_string+0x2e0/0x2e0
[ 1426.552792][T27371]  ? kasprintf+0xbb/0xf0
[ 1426.557119][T27371]  kvasprintf+0xc8/0x170
[ 1426.562144][T27371]  ? bust_spinlocks+0xe0/0xe0
[ 1426.566826][T27371]  ? page_to_nid.part.0+0x20/0x20
[ 1426.571852][T27371]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1426.577590][T27371]  ? find_next_bit+0x107/0x130
[ 1426.582473][T27371]  kasprintf+0xbb/0xf0
[ 1426.586668][T27371]  ? kvasprintf_const+0x190/0x190
[ 1426.591766][T27371]  ? is_module_percpu_address+0xb/0x10
[ 1426.597250][T27371]  alloc_workqueue+0x46c/0xf40
[ 1426.602017][T27371]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1426.607813][T27371]  ? kasan_kmalloc+0x9/0x10
[ 1426.612315][T27371]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1426.617860][T27371]  hci_register_dev+0x1b8/0x8f0
[ 1426.622888][T27371]  ? __raw_spin_lock_init+0x2d/0x100
[ 1426.628160][T27371]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1426.633168][T27371]  tty_ioctl+0xaf9/0x14f0
[ 1426.637477][T27371]  ? hci_uart_init_work+0x180/0x180
[ 1426.642707][T27371]  ? do_tty_hangup+0x30/0x30
[ 1426.647363][T27371]  ? tomoyo_path_number_perm+0x459/0x520
[ 1426.652989][T27371]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1426.659229][T27371]  ? tomoyo_path_number_perm+0x263/0x520
[ 1426.664931][T27371]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1426.671788][T27371]  ? __kasan_check_read+0x11/0x20
[ 1426.678793][T27371]  ? do_tty_hangup+0x30/0x30
[ 1426.683365][T27371]  do_vfs_ioctl+0xdb6/0x13e0
[ 1426.687947][T27371]  ? ioctl_preallocate+0x210/0x210
[ 1426.693126][T27371]  ? __fget+0x384/0x560
[ 1426.697458][T27371]  ? ksys_dup3+0x3e0/0x3e0
[ 1426.701943][T27371]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1426.708796][T27371]  ? fput_many+0x12c/0x1a0
[ 1426.713457][T27371]  ? tomoyo_file_ioctl+0x23/0x30
[ 1426.718373][T27371]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1426.724598][T27371]  ? security_file_ioctl+0x8d/0xc0
[ 1426.729893][T27371]  ksys_ioctl+0xab/0xd0
[ 1426.734036][T27371]  __x64_sys_ioctl+0x73/0xb0
[ 1426.738611][T27371]  do_syscall_64+0xfa/0x760
[ 1426.743204][T27371]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1426.749083][T27371] RIP: 0033:0x459829
[ 1426.752960][T27371] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1426.772549][T27371] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1426.780940][T27371] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1426.789041][T27371] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1426.797001][T27371] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1426.805238][T27371] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1426.813370][T27371] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1426.826372][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
19:57:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x11, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000ffffca880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1428.903772][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1428.909881][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1430.983799][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1430.989937][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1433.063764][   T22] Bluetooth: hci0: command 0x1009 tx timeout
19:57:10 executing program 1 (fault-call:2 fault-nth:9):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:10 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab04, 0x0)

19:57:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000006890000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:10 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x48, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:10 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x5)

19:57:10 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1437.318405][T27414] FAULT_INJECTION: forcing a failure.
[ 1437.318405][T27414] name failslab, interval 1, probability 0, space 0, times 0
[ 1437.331874][T27414] CPU: 1 PID: 27414 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1437.341228][T27414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1437.351293][T27414] Call Trace:
[ 1437.354592][T27414]  dump_stack+0x172/0x1f0
[ 1437.358930][T27414]  should_fail.cold+0xa/0x15
[ 1437.363561][T27414]  ? fault_create_debugfs_attr+0x180/0x180
[ 1437.369377][T27414]  ? page_to_nid.part.0+0x20/0x20
[ 1437.374398][T27414]  ? ___might_sleep+0x163/0x280
[ 1437.379236][T27414]  __should_failslab+0x121/0x190
[ 1437.384208][T27414]  should_failslab+0x9/0x14
[ 1437.388717][T27414]  __kmalloc+0x2e0/0x770
[ 1437.393769][T27414]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1437.399386][T27414]  ? mark_held_locks+0xf0/0xf0
[ 1437.404221][T27414]  ? preempt_count_add+0x7a/0x160
[ 1437.409263][T27414]  ? apply_wqattrs_prepare+0xae/0x960
[ 1437.414635][T27414]  apply_wqattrs_prepare+0xae/0x960
[ 1437.419869][T27414]  ? lock_acquire+0x190/0x410
[ 1437.424547][T27414]  ? alloc_workqueue+0x8d8/0xf40
[ 1437.429499][T27414]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1437.435598][T27414]  alloc_workqueue+0x8f1/0xf40
[ 1437.440794][T27414]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1437.446745][T27414]  hci_register_dev+0x1b8/0x8f0
[ 1437.451590][T27414]  ? __raw_spin_lock_init+0x2d/0x100
[ 1437.456897][T27414]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1437.461939][T27414]  tty_ioctl+0xaf9/0x14f0
[ 1437.466622][T27414]  ? hci_uart_init_work+0x180/0x180
[ 1437.471840][T27414]  ? do_tty_hangup+0x30/0x30
[ 1437.476436][T27414]  ? tomoyo_path_number_perm+0x459/0x520
[ 1437.482068][T27414]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1437.488587][T27414]  ? tomoyo_path_number_perm+0x263/0x520
[ 1437.494218][T27414]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1437.500107][T27414]  ? __kasan_check_read+0x11/0x20
[ 1437.505543][T27414]  ? do_tty_hangup+0x30/0x30
[ 1437.510145][T27414]  do_vfs_ioctl+0xdb6/0x13e0
[ 1437.514720][T27414]  ? ioctl_preallocate+0x210/0x210
[ 1437.519829][T27414]  ? __fget+0x384/0x560
[ 1437.523993][T27414]  ? ksys_dup3+0x3e0/0x3e0
[ 1437.528390][T27414]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1437.534753][T27414]  ? fput_many+0x12c/0x1a0
[ 1437.539178][T27414]  ? tomoyo_file_ioctl+0x23/0x30
[ 1437.544123][T27414]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1437.550351][T27414]  ? security_file_ioctl+0x8d/0xc0
[ 1437.555447][T27414]  ksys_ioctl+0xab/0xd0
[ 1437.559614][T27414]  __x64_sys_ioctl+0x73/0xb0
[ 1437.564205][T27414]  do_syscall_64+0xfa/0x760
[ 1437.569138][T27414]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1437.575033][T27414] RIP: 0033:0x459829
[ 1437.579071][T27414] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1437.598655][T27414] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1437.607175][T27414] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
19:57:10 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab05, 0x0)

19:57:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000ffffff890000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1437.615132][T27414] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1437.623083][T27414] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1437.631053][T27414] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1437.641787][T27414] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x6d, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1437.713968][T27414] Bluetooth: Can't register HCI device
19:57:10 executing program 1 (fault-call:2 fault-nth:10):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008000a00000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:10 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab06, 0x0)

19:57:10 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000001a00000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1437.898959][T27438] FAULT_INJECTION: forcing a failure.
[ 1437.898959][T27438] name failslab, interval 1, probability 0, space 0, times 0
[ 1437.981473][T27438] CPU: 1 PID: 27438 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1437.990643][T27438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1438.000778][T27438] Call Trace:
[ 1438.004157][T27438]  dump_stack+0x172/0x1f0
[ 1438.008476][T27438]  should_fail.cold+0xa/0x15
[ 1438.013051][T27438]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1438.019280][T27438]  ? fault_create_debugfs_attr+0x180/0x180
[ 1438.025069][T27438]  ? page_to_nid.part.0+0x20/0x20
[ 1438.030078][T27438]  ? ___might_sleep+0x163/0x280
[ 1438.035002][T27438]  __should_failslab+0x121/0x190
[ 1438.039924][T27438]  should_failslab+0x9/0x14
[ 1438.044431][T27438]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1438.049786][T27438]  ? kasan_kmalloc+0x9/0x10
[ 1438.054269][T27438]  ? __kmalloc+0x351/0x770
[ 1438.058667][T27438]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1438.064197][T27438]  ? mark_held_locks+0xf0/0xf0
[ 1438.068972][T27438]  alloc_workqueue_attrs+0x3d/0xc0
[ 1438.074070][T27438]  apply_wqattrs_prepare+0xb6/0x960
[ 1438.079275][T27438]  ? lock_acquire+0x190/0x410
[ 1438.083936][T27438]  ? alloc_workqueue+0x8d8/0xf40
[ 1438.088869][T27438]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1438.094658][T27438]  alloc_workqueue+0x8f1/0xf40
[ 1438.099417][T27438]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1438.105296][T27438]  ? kasan_kmalloc+0x9/0x10
[ 1438.109789][T27438]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1438.115318][T27438]  hci_register_dev+0x1b8/0x8f0
[ 1438.120149][T27438]  ? __raw_spin_lock_init+0x2d/0x100
[ 1438.125421][T27438]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1438.130442][T27438]  tty_ioctl+0xaf9/0x14f0
[ 1438.134754][T27438]  ? hci_uart_init_work+0x180/0x180
[ 1438.139944][T27438]  ? do_tty_hangup+0x30/0x30
[ 1438.144516][T27438]  ? tomoyo_path_number_perm+0x459/0x520
[ 1438.150396][T27438]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1438.156789][T27438]  ? tomoyo_path_number_perm+0x263/0x520
[ 1438.163100][T27438]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1438.168907][T27438]  ? __kasan_check_read+0x11/0x20
[ 1438.174799][T27438]  ? do_tty_hangup+0x30/0x30
[ 1438.179405][T27438]  do_vfs_ioctl+0xdb6/0x13e0
[ 1438.183997][T27438]  ? ioctl_preallocate+0x210/0x210
[ 1438.189088][T27438]  ? __fget+0x384/0x560
[ 1438.193241][T27438]  ? ksys_dup3+0x3e0/0x3e0
[ 1438.197656][T27438]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1438.203892][T27438]  ? fput_many+0x12c/0x1a0
[ 1438.208290][T27438]  ? tomoyo_file_ioctl+0x23/0x30
[ 1438.213207][T27438]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1438.219430][T27438]  ? security_file_ioctl+0x8d/0xc0
[ 1438.224521][T27438]  ksys_ioctl+0xab/0xd0
[ 1438.228679][T27438]  __x64_sys_ioctl+0x73/0xb0
[ 1438.233255][T27438]  do_syscall_64+0xfa/0x760
[ 1438.237758][T27438]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1438.243639][T27438] RIP: 0033:0x459829
[ 1438.247650][T27438] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1438.267359][T27438] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
19:57:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab07, 0x0)

19:57:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1438.275751][T27438] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1438.283704][T27438] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1438.291745][T27438] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1438.299721][T27438] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1438.307677][T27438] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:11 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x6)

19:57:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x158, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000ff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1438.394139][T27438] Bluetooth: Can't register HCI device
19:57:11 executing program 1 (fault-call:2 fault-nth:11):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab08, 0x0)

19:57:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000088a8ffff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1a0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab0a, 0x0)

19:57:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000088caffff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1438.714855][T27481] FAULT_INJECTION: forcing a failure.
[ 1438.714855][T27481] name failslab, interval 1, probability 0, space 0, times 0
[ 1438.738514][T27481] CPU: 1 PID: 27481 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1438.748001][T27481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1438.761319][T27481] Call Trace:
[ 1438.765235][T27481]  dump_stack+0x172/0x1f0
[ 1438.769572][T27481]  should_fail.cold+0xa/0x15
[ 1438.775198][T27481]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1438.782361][T27481]  ? fault_create_debugfs_attr+0x180/0x180
[ 1438.788157][T27481]  ? page_to_nid.part.0+0x20/0x20
[ 1438.793278][T27481]  ? ___might_sleep+0x163/0x280
[ 1438.800249][T27481]  __should_failslab+0x121/0x190
[ 1438.805375][T27481]  should_failslab+0x9/0x14
[ 1438.810419][T27481]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1438.815895][T27481]  ? kasan_kmalloc+0x9/0x10
[ 1438.820480][T27481]  ? __kmalloc+0x351/0x770
[ 1438.825128][T27481]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1438.830799][T27481]  alloc_workqueue_attrs+0x3d/0xc0
[ 1438.836248][T27481]  apply_wqattrs_prepare+0xbe/0x960
[ 1438.841464][T27481]  ? lock_acquire+0x190/0x410
[ 1438.846159][T27481]  ? alloc_workqueue+0x8d8/0xf40
[ 1438.851622][T27481]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1438.858772][T27481]  alloc_workqueue+0x8f1/0xf40
[ 1438.865229][T27481]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1438.871969][T27481]  ? kasan_kmalloc+0x9/0x10
[ 1438.876616][T27481]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1438.883214][T27481]  hci_register_dev+0x1b8/0x8f0
[ 1438.888181][T27481]  ? __raw_spin_lock_init+0x2d/0x100
[ 1438.893669][T27481]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1438.898735][T27481]  tty_ioctl+0xaf9/0x14f0
[ 1438.903178][T27481]  ? hci_uart_init_work+0x180/0x180
[ 1438.908772][T27481]  ? do_tty_hangup+0x30/0x30
[ 1438.913712][T27481]  ? tomoyo_path_number_perm+0x459/0x520
[ 1438.919873][T27481]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1438.926411][T27481]  ? tomoyo_path_number_perm+0x263/0x520
[ 1438.933068][T27481]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1438.939554][T27481]  ? __kasan_check_read+0x11/0x20
[ 1438.945312][T27481]  ? do_tty_hangup+0x30/0x30
[ 1438.949907][T27481]  do_vfs_ioctl+0xdb6/0x13e0
[ 1438.955316][T27481]  ? ioctl_preallocate+0x210/0x210
[ 1438.960574][T27481]  ? __fget+0x384/0x560
[ 1438.964778][T27481]  ? ksys_dup3+0x3e0/0x3e0
[ 1438.969234][T27481]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1438.975717][T27481]  ? fput_many+0x12c/0x1a0
[ 1438.980321][T27481]  ? tomoyo_file_ioctl+0x23/0x30
[ 1438.985717][T27481]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1438.991976][T27481]  ? security_file_ioctl+0x8d/0xc0
[ 1438.997488][T27481]  ksys_ioctl+0xab/0xd0
[ 1439.002262][T27481]  __x64_sys_ioctl+0x73/0xb0
[ 1439.007749][T27481]  do_syscall_64+0xfa/0x760
[ 1439.012613][T27481]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1439.018526][T27481] RIP: 0033:0x459829
[ 1439.022547][T27481] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1439.042520][T27481] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1439.051415][T27481] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1439.059453][T27481] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1439.068001][T27481] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1439.076469][T27481] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1439.084737][T27481] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1439.135014][T27481] Bluetooth: Can't register HCI device
19:57:12 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x7)

19:57:12 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000086ddffff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:12 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab0b, 0x0)

19:57:12 executing program 1 (fault-call:2 fault-nth:12):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:12 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

19:57:12 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1f4, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:12 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

[ 1439.411407][T27512] FAULT_INJECTION: forcing a failure.
[ 1439.411407][T27512] name failslab, interval 1, probability 0, space 0, times 0
[ 1439.438735][T27512] CPU: 0 PID: 27512 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1439.448339][T27512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1439.458859][T27512] Call Trace:
[ 1439.458894][T27512]  dump_stack+0x172/0x1f0
[ 1439.458912][T27512]  should_fail.cold+0xa/0x15
[ 1439.458926][T27512]  ? fault_create_debugfs_attr+0x180/0x180
[ 1439.458939][T27512]  ? page_to_nid.part.0+0x20/0x20
[ 1439.458950][T27512]  ? ___might_sleep+0x163/0x280
[ 1439.458978][T27512]  __should_failslab+0x121/0x190
[ 1439.492832][T27512]  should_failslab+0x9/0x14
[ 1439.497608][T27512]  kmem_cache_alloc_node+0x268/0x740
[ 1439.503317][T27512]  alloc_unbound_pwq+0x4c5/0xcb0
[ 1439.508309][T27512]  apply_wqattrs_prepare+0x354/0x960
[ 1439.513631][T27512]  ? alloc_workqueue+0x8d8/0xf40
[ 1439.518748][T27512]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1439.524728][T27512]  alloc_workqueue+0x8f1/0xf40
[ 1439.529514][T27512]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1439.535435][T27512]  ? kasan_kmalloc+0x9/0x10
[ 1439.540040][T27512]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1439.545848][T27512]  hci_register_dev+0x1b8/0x8f0
[ 1439.550689][T27512]  ? __raw_spin_lock_init+0x2d/0x100
[ 1439.556660][T27512]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1439.561704][T27512]  tty_ioctl+0xaf9/0x14f0
[ 1439.566054][T27512]  ? hci_uart_init_work+0x180/0x180
[ 1439.571260][T27512]  ? do_tty_hangup+0x30/0x30
[ 1439.576086][T27512]  ? tomoyo_path_number_perm+0x459/0x520
[ 1439.581740][T27512]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1439.587964][T27512]  ? tomoyo_path_number_perm+0x263/0x520
[ 1439.593581][T27512]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1439.600862][T27512]  ? __kasan_check_read+0x11/0x20
[ 1439.606220][T27512]  ? do_tty_hangup+0x30/0x30
[ 1439.610830][T27512]  do_vfs_ioctl+0xdb6/0x13e0
[ 1439.615404][T27512]  ? ioctl_preallocate+0x210/0x210
[ 1439.620496][T27512]  ? __fget+0x384/0x560
[ 1439.624637][T27512]  ? ksys_dup3+0x3e0/0x3e0
[ 1439.629033][T27512]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1439.635255][T27512]  ? fput_many+0x12c/0x1a0
[ 1439.639753][T27512]  ? tomoyo_file_ioctl+0x23/0x30
[ 1439.644678][T27512]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1439.650919][T27512]  ? security_file_ioctl+0x8d/0xc0
[ 1439.656628][T27512]  ksys_ioctl+0xab/0xd0
[ 1439.660764][T27512]  __x64_sys_ioctl+0x73/0xb0
[ 1439.665425][T27512]  do_syscall_64+0xfa/0x760
[ 1439.669918][T27512]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1439.676234][T27512] RIP: 0033:0x459829
[ 1439.680207][T27512] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1439.702131][T27512] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
19:57:12 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab0c, 0x0)

19:57:12 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000f0ffff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1439.712257][T27512] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1439.720673][T27512] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1439.728626][T27512] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1439.736583][T27512] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1439.744735][T27512] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:12 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x4)

19:57:12 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000089ffffff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:13 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab0d, 0x0)

[ 1439.914338][T27512] Bluetooth: Can't register HCI device
19:57:13 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x8)

19:57:13 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x218, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:13 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

19:57:13 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab0e, 0x0)

19:57:13 executing program 1 (fault-call:2 fault-nth:13):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:13 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000ffffffffa001000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1440.628797][T27552] FAULT_INJECTION: forcing a failure.
[ 1440.628797][T27552] name failslab, interval 1, probability 0, space 0, times 0
19:57:13 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab10, 0x0)

[ 1440.706002][T27552] CPU: 0 PID: 27552 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1440.715359][T27552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1440.725514][T27552] Call Trace:
[ 1440.728867][T27552]  dump_stack+0x172/0x1f0
[ 1440.733757][T27552]  should_fail.cold+0xa/0x15
[ 1440.738464][T27552]  ? lock_downgrade+0x920/0x920
[ 1440.743338][T27552]  ? fault_create_debugfs_attr+0x180/0x180
[ 1440.749386][T27552]  ? page_to_nid.part.0+0x20/0x20
[ 1440.754444][T27552]  ? ___might_sleep+0x163/0x280
[ 1440.759351][T27552]  __should_failslab+0x121/0x190
[ 1440.764334][T27552]  should_failslab+0x9/0x14
[ 1440.768853][T27552]  __kmalloc+0x2e0/0x770
[ 1440.768869][T27552]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1440.768891][T27552]  ? pwq_adjust_max_active+0x3b6/0x5c0
[ 1440.778826][T27552]  ? alloc_workqueue+0x166/0xf40
[ 1440.778844][T27552]  alloc_workqueue+0x166/0xf40
[ 1440.778865][T27552]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1440.778886][T27552]  ? kasan_kmalloc+0x9/0x10
[ 1440.778900][T27552]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1440.778919][T27552]  hci_register_dev+0x209/0x8f0
[ 1440.778944][T27552]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1440.819978][T27552]  tty_ioctl+0xaf9/0x14f0
[ 1440.824330][T27552]  ? hci_uart_init_work+0x180/0x180
[ 1440.829547][T27552]  ? do_tty_hangup+0x30/0x30
[ 1440.834186][T27552]  ? tomoyo_path_number_perm+0x459/0x520
[ 1440.839837][T27552]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1440.846092][T27552]  ? tomoyo_path_number_perm+0x263/0x520
[ 1440.851809][T27552]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1440.857714][T27552]  ? __kasan_check_read+0x11/0x20
[ 1440.862755][T27552]  ? do_tty_hangup+0x30/0x30
[ 1440.867430][T27552]  do_vfs_ioctl+0xdb6/0x13e0
[ 1440.872005][T27552]  ? ioctl_preallocate+0x210/0x210
[ 1440.877096][T27552]  ? __fget+0x384/0x560
[ 1440.881238][T27552]  ? ksys_dup3+0x3e0/0x3e0
[ 1440.885650][T27552]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1440.891874][T27552]  ? fput_many+0x12c/0x1a0
[ 1440.896275][T27552]  ? tomoyo_file_ioctl+0x23/0x30
[ 1440.901224][T27552]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1440.907444][T27552]  ? security_file_ioctl+0x8d/0xc0
[ 1440.912537][T27552]  ksys_ioctl+0xab/0xd0
[ 1440.916677][T27552]  __x64_sys_ioctl+0x73/0xb0
[ 1440.921250][T27552]  do_syscall_64+0xfa/0x760
[ 1440.925737][T27552]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1440.931608][T27552] RIP: 0033:0x459829
[ 1440.935491][T27552] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
19:57:13 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x240, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:13 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000ffffffffa000800000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1440.955082][T27552] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1440.963477][T27552] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1440.971429][T27552] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1440.979382][T27552] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1440.987333][T27552] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1440.995298][T27552] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:14 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000fffffffffffff00000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:14 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab11, 0x0)

[ 1441.032656][T27552] Bluetooth: Can't register HCI device
19:57:14 executing program 1 (fault-call:2 fault-nth:14):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1441.197342][T27585] FAULT_INJECTION: forcing a failure.
[ 1441.197342][T27585] name failslab, interval 1, probability 0, space 0, times 0
[ 1441.217909][T27585] CPU: 0 PID: 27585 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1441.227520][T27585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1441.237763][T27585] Call Trace:
[ 1441.237792][T27585]  dump_stack+0x172/0x1f0
[ 1441.237813][T27585]  should_fail.cold+0xa/0x15
[ 1441.237835][T27585]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1441.245790][T27585]  ? fault_create_debugfs_attr+0x180/0x180
[ 1441.245810][T27585]  ? page_to_nid.part.0+0x20/0x20
[ 1441.268267][T27585]  ? ___might_sleep+0x163/0x280
[ 1441.273313][T27585]  __should_failslab+0x121/0x190
[ 1441.278272][T27585]  should_failslab+0x9/0x14
[ 1441.283054][T27585]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1441.288429][T27585]  ? kasan_kmalloc+0x9/0x10
[ 1441.292919][T27585]  ? __kmalloc+0x351/0x770
[ 1441.297320][T27585]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1441.303040][T27585]  alloc_workqueue_attrs+0x3d/0xc0
[ 1441.308149][T27585]  alloc_workqueue+0x18b/0xf40
[ 1441.313014][T27585]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1441.320099][T27585]  ? kasan_kmalloc+0x9/0x10
[ 1441.325127][T27585]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1441.330685][T27585]  hci_register_dev+0x209/0x8f0
[ 1441.335900][T27585]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1441.341262][T27585]  tty_ioctl+0xaf9/0x14f0
[ 1441.345779][T27585]  ? hci_uart_init_work+0x180/0x180
[ 1441.351176][T27585]  ? do_tty_hangup+0x30/0x30
[ 1441.355757][T27585]  ? tomoyo_path_number_perm+0x459/0x520
[ 1441.361392][T27585]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1441.367626][T27585]  ? tomoyo_path_number_perm+0x263/0x520
[ 1441.373889][T27585]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1441.379822][T27585]  ? __kasan_check_read+0x11/0x20
[ 1441.384838][T27585]  ? do_tty_hangup+0x30/0x30
[ 1441.389495][T27585]  do_vfs_ioctl+0xdb6/0x13e0
[ 1441.394094][T27585]  ? ioctl_preallocate+0x210/0x210
[ 1441.399203][T27585]  ? __fget+0x384/0x560
[ 1441.403533][T27585]  ? ksys_dup3+0x3e0/0x3e0
[ 1441.407963][T27585]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1441.414189][T27585]  ? fput_many+0x12c/0x1a0
[ 1441.418608][T27585]  ? tomoyo_file_ioctl+0x23/0x30
[ 1441.423543][T27585]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1441.429957][T27585]  ? security_file_ioctl+0x8d/0xc0
[ 1441.435058][T27585]  ksys_ioctl+0xab/0xd0
[ 1441.439230][T27585]  __x64_sys_ioctl+0x73/0xb0
[ 1441.443810][T27585]  do_syscall_64+0xfa/0x760
[ 1441.448468][T27585]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1441.454354][T27585] RIP: 0033:0x459829
[ 1441.458233][T27585] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1441.477824][T27585] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1441.486428][T27585] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
19:57:14 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc)

19:57:14 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x300, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1441.495816][T27585] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1441.503923][T27585] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1441.511900][T27585] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1441.519892][T27585] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1441.530182][T27585] Bluetooth: Can't register HCI device
[ 1442.753847][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1442.760797][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1444.823749][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1444.829907][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1446.903876][T25540] Bluetooth: hci0: command 0x1009 tx timeout
19:57:24 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

19:57:24 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab12, 0x0)

19:57:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000100ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:24 executing program 1 (fault-call:2 fault-nth:15):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:24 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x3e8, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:24 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x10)

19:57:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000200ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1451.401003][T27606] FAULT_INJECTION: forcing a failure.
[ 1451.401003][T27606] name failslab, interval 1, probability 0, space 0, times 0
[ 1451.426595][T27606] CPU: 0 PID: 27606 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1451.436441][T27606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1451.436447][T27606] Call Trace:
[ 1451.436474][T27606]  dump_stack+0x172/0x1f0
[ 1451.436493][T27606]  should_fail.cold+0xa/0x15
[ 1451.436509][T27606]  ? fault_create_debugfs_attr+0x180/0x180
[ 1451.436522][T27606]  ? page_to_nid.part.0+0x20/0x20
[ 1451.436539][T27606]  ? ___might_sleep+0x163/0x280
[ 1451.436557][T27606]  __should_failslab+0x121/0x190
[ 1451.436574][T27606]  should_failslab+0x9/0x14
[ 1451.436585][T27606]  __kmalloc_track_caller+0x2dc/0x760
[ 1451.436602][T27606]  ? pointer+0x750/0x750
[ 1451.456553][T27606]  ? widen_string+0x2e0/0x2e0
19:57:24 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x700, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:24 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xabcd, 0x0)

[ 1451.456571][T27606]  ? kasprintf+0xbb/0xf0
[ 1451.456585][T27606]  kvasprintf+0xc8/0x170
[ 1451.456599][T27606]  ? bust_spinlocks+0xe0/0xe0
[ 1451.456617][T27606]  ? page_to_nid.part.0+0x20/0x20
[ 1451.456631][T27606]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1451.456644][T27606]  ? find_next_bit+0x107/0x130
[ 1451.456659][T27606]  kasprintf+0xbb/0xf0
[ 1451.456673][T27606]  ? kvasprintf_const+0x190/0x190
[ 1451.456693][T27606]  ? is_module_percpu_address+0xb/0x10
[ 1451.456719][T27606]  alloc_workqueue+0x46c/0xf40
[ 1451.467104][T27606]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1451.467128][T27606]  ? kasan_kmalloc+0x9/0x10
[ 1451.467141][T27606]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1451.467158][T27606]  hci_register_dev+0x209/0x8f0
[ 1451.467179][T27606]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1451.467197][T27606]  tty_ioctl+0xaf9/0x14f0
[ 1451.467220][T27606]  ? hci_uart_init_work+0x180/0x180
[ 1451.477078][T27606]  ? do_tty_hangup+0x30/0x30
[ 1451.477092][T27606]  ? tomoyo_path_number_perm+0x459/0x520
[ 1451.477112][T27606]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1451.477124][T27606]  ? tomoyo_path_number_perm+0x263/0x520
[ 1451.477140][T27606]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1451.477161][T27606]  ? __kasan_check_read+0x11/0x20
[ 1451.477178][T27606]  ? do_tty_hangup+0x30/0x30
[ 1451.477192][T27606]  do_vfs_ioctl+0xdb6/0x13e0
[ 1451.477209][T27606]  ? ioctl_preallocate+0x210/0x210
[ 1451.477222][T27606]  ? __fget+0x384/0x560
[ 1451.477244][T27606]  ? ksys_dup3+0x3e0/0x3e0
[ 1451.486750][T27606]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
19:57:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000300ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1451.486767][T27606]  ? fput_many+0x12c/0x1a0
[ 1451.486786][T27606]  ? tomoyo_file_ioctl+0x23/0x30
[ 1451.486801][T27606]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1451.486816][T27606]  ? security_file_ioctl+0x8d/0xc0
[ 1451.486830][T27606]  ksys_ioctl+0xab/0xd0
[ 1451.486846][T27606]  __x64_sys_ioctl+0x73/0xb0
[ 1451.486862][T27606]  do_syscall_64+0xfa/0x760
[ 1451.486882][T27606]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1451.496719][T27606] RIP: 0033:0x459829
[ 1451.496733][T27606] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1451.496740][T27606] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1451.496752][T27606] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1451.496759][T27606] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1451.496767][T27606] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
19:57:24 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xae01, 0x0)

19:57:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000211b0300ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1451.496775][T27606] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1451.496782][T27606] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1453.623712][   T22] Bluetooth: hci1: command 0x1003 tx timeout
[ 1453.629921][T11408] Bluetooth: hci1: sending frame failed (-49)
[ 1453.783709][   T22] Bluetooth: hci0: command 0x1003 tx timeout
[ 1453.789832][T11408] Bluetooth: hci0: sending frame failed (-49)
[ 1455.703787][   T22] Bluetooth: hci1: command 0x1001 tx timeout
[ 1455.712820][T11408] Bluetooth: hci1: sending frame failed (-49)
[ 1455.863767][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1455.870122][T11408] Bluetooth: hci0: sending frame failed (-49)
[ 1457.783814][T25540] Bluetooth: hci1: command 0x1009 tx timeout
[ 1457.943809][   T22] Bluetooth: hci0: command 0x1009 tx timeout
19:57:34 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

19:57:34 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000400ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:34 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x900, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1461.608361][  T172] Bluetooth: hci1: Frame reassembly failed (-84)
19:57:35 executing program 1 (fault-call:2 fault-nth:16):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:35 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xae41, 0x0)

19:57:35 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x12)

19:57:35 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000500ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:35 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xa00, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:35 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xae80, 0x0)

19:57:35 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000600ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1462.255548][T27666] FAULT_INJECTION: forcing a failure.
[ 1462.255548][T27666] name failslab, interval 1, probability 0, space 0, times 0
[ 1462.270655][T27666] CPU: 1 PID: 27666 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1462.280791][T27666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1462.292029][T27666] Call Trace:
[ 1462.295713][T27666]  dump_stack+0x172/0x1f0
[ 1462.300073][T27666]  should_fail.cold+0xa/0x15
[ 1462.304732][T27666]  ? fault_create_debugfs_attr+0x180/0x180
[ 1462.310934][T27666]  ? page_to_nid.part.0+0x20/0x20
[ 1462.316127][T27666]  ? ___might_sleep+0x163/0x280
[ 1462.321139][T27666]  __should_failslab+0x121/0x190
[ 1462.326204][T27666]  should_failslab+0x9/0x14
[ 1462.330814][T27666]  __kmalloc+0x2e0/0x770
[ 1462.335258][T27666]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1462.340819][T27666]  ? mark_held_locks+0xf0/0xf0
[ 1462.346034][T27666]  ? preempt_count_add+0x7a/0x160
[ 1462.351298][T27666]  ? apply_wqattrs_prepare+0xae/0x960
[ 1462.356999][T27666]  apply_wqattrs_prepare+0xae/0x960
[ 1462.362524][T27666]  ? lock_acquire+0x190/0x410
[ 1462.367617][T27666]  ? alloc_workqueue+0x8d8/0xf40
[ 1462.372640][T27666]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1462.379080][T27666]  alloc_workqueue+0x8f1/0xf40
[ 1462.385547][T27666]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1462.391309][T27666]  ? kasan_kmalloc+0x9/0x10
[ 1462.395975][T27666]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1462.401683][T27666]  hci_register_dev+0x209/0x8f0
[ 1462.407521][T27666]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1462.412571][T27666]  tty_ioctl+0xaf9/0x14f0
[ 1462.417009][T27666]  ? hci_uart_init_work+0x180/0x180
[ 1462.422231][T27666]  ? do_tty_hangup+0x30/0x30
[ 1462.426813][T27666]  ? tomoyo_path_number_perm+0x459/0x520
[ 1462.432551][T27666]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1462.439075][T27666]  ? tomoyo_path_number_perm+0x263/0x520
[ 1462.444923][T27666]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1462.450905][T27666]  ? __kasan_check_read+0x11/0x20
[ 1462.456529][T27666]  ? do_tty_hangup+0x30/0x30
[ 1462.461459][T27666]  do_vfs_ioctl+0xdb6/0x13e0
[ 1462.466040][T27666]  ? ioctl_preallocate+0x210/0x210
[ 1462.471235][T27666]  ? __fget+0x384/0x560
[ 1462.475541][T27666]  ? ksys_dup3+0x3e0/0x3e0
[ 1462.479977][T27666]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1462.487316][T27666]  ? fput_many+0x12c/0x1a0
[ 1462.492180][T27666]  ? tomoyo_file_ioctl+0x23/0x30
[ 1462.497125][T27666]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1462.503553][T27666]  ? security_file_ioctl+0x8d/0xc0
[ 1462.508668][T27666]  ksys_ioctl+0xab/0xd0
[ 1462.512820][T27666]  __x64_sys_ioctl+0x73/0xb0
[ 1462.517428][T27666]  do_syscall_64+0xfa/0x760
[ 1462.521941][T27666]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1462.527985][T27666] RIP: 0033:0x459829
[ 1462.532195][T27666] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1462.553793][T27666] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1462.564202][T27666] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1462.573375][T27666] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1462.583712][T27666] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1462.594029][T27666] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
19:57:35 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe00, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1462.603374][T27666] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:35 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x40045431, 0x0)

[ 1462.663708][T27666] Bluetooth: Can't register HCI device
[ 1463.623752][   T22] Bluetooth: hci1: command 0x1003 tx timeout
[ 1463.629884][T18861] Bluetooth: hci1: sending frame failed (-49)
[ 1465.703791][T25540] Bluetooth: hci1: command 0x1001 tx timeout
[ 1465.709903][T18861] Bluetooth: hci1: sending frame failed (-49)
[ 1467.783804][   T22] Bluetooth: hci1: command 0x1009 tx timeout
19:57:44 executing program 1 (fault-call:2 fault-nth:17):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:44 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:44 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x400454ca, 0x0)

19:57:44 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1100, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:44 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x14)

19:57:44 executing program 0:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
ioctl$VIDIOC_DBG_G_CHIP_INFO(r0, 0xc0c85666, &(0x7f0000000040)={{}, "d1e43a7052cc4050681ee281533d4e201c0ebaba7693a8ddecc87a5f60ad43e4"})

19:57:44 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x40049409, 0x0)

19:57:45 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = open(&(0x7f0000074000)='./file0\x00', 0x141046, 0x0)
setxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='security.capability\x00', &(0x7f0000000200), 0xc, 0x0)
ftruncate(r1, 0x0)

[ 1471.879948][T27704] FAULT_INJECTION: forcing a failure.
[ 1471.879948][T27704] name failslab, interval 1, probability 0, space 0, times 0
[ 1471.899395][T27704] CPU: 1 PID: 27704 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1471.908888][T27704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1471.919172][T27704] Call Trace:
[ 1471.922475][T27704]  dump_stack+0x172/0x1f0
[ 1471.927744][T27704]  should_fail.cold+0xa/0x15
[ 1471.932475][T27704]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1471.939005][T27704]  ? fault_create_debugfs_attr+0x180/0x180
[ 1471.944995][T27704]  ? page_to_nid.part.0+0x20/0x20
[ 1471.950022][T27704]  ? ___might_sleep+0x163/0x280
[ 1471.954882][T27704]  __should_failslab+0x121/0x190
[ 1471.960750][T27704]  should_failslab+0x9/0x14
[ 1471.965375][T27704]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1471.970899][T27704]  ? kasan_kmalloc+0x9/0x10
[ 1471.975503][T27704]  ? __kmalloc+0x351/0x770
[ 1471.980039][T27704]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1471.985668][T27704]  ? mark_held_locks+0xf0/0xf0
[ 1471.990434][T27704]  alloc_workqueue_attrs+0x3d/0xc0
[ 1471.995662][T27704]  apply_wqattrs_prepare+0xb6/0x960
[ 1472.000858][T27704]  ? lock_acquire+0x190/0x410
[ 1472.005719][T27704]  ? alloc_workqueue+0x8d8/0xf40
[ 1472.010689][T27704]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1472.016581][T27704]  alloc_workqueue+0x8f1/0xf40
[ 1472.021818][T27704]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1472.027578][T27704]  ? kasan_kmalloc+0x9/0x10
[ 1472.032077][T27704]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1472.037620][T27704]  hci_register_dev+0x209/0x8f0
[ 1472.042477][T27704]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1472.047766][T27704]  tty_ioctl+0xaf9/0x14f0
[ 1472.052611][T27704]  ? hci_uart_init_work+0x180/0x180
[ 1472.058146][T27704]  ? do_tty_hangup+0x30/0x30
[ 1472.063000][T27704]  ? tomoyo_path_number_perm+0x459/0x520
[ 1472.068651][T27704]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1472.074929][T27704]  ? tomoyo_path_number_perm+0x263/0x520
[ 1472.080569][T27704]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1472.086436][T27704]  ? __kasan_check_read+0x11/0x20
[ 1472.091552][T27704]  ? do_tty_hangup+0x30/0x30
[ 1472.096143][T27704]  do_vfs_ioctl+0xdb6/0x13e0
[ 1472.100872][T27704]  ? ioctl_preallocate+0x210/0x210
[ 1472.105977][T27704]  ? __fget+0x384/0x560
[ 1472.110152][T27704]  ? ksys_dup3+0x3e0/0x3e0
[ 1472.114569][T27704]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1472.120813][T27704]  ? fput_many+0x12c/0x1a0
[ 1472.125228][T27704]  ? tomoyo_file_ioctl+0x23/0x30
[ 1472.130216][T27704]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1472.136454][T27704]  ? security_file_ioctl+0x8d/0xc0
[ 1472.141563][T27704]  ksys_ioctl+0xab/0xd0
[ 1472.145750][T27704]  __x64_sys_ioctl+0x73/0xb0
[ 1472.150339][T27704]  do_syscall_64+0xfa/0x760
[ 1472.155344][T27704]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1472.161232][T27704] RIP: 0033:0x459829
[ 1472.165634][T27704] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1472.185243][T27704] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1472.194400][T27704] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1472.202769][T27704] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1472.211045][T27704] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1472.219122][T27704] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
19:57:45 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000060800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1472.227207][T27704] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1472.286771][T27704] Bluetooth: Can't register HCI device
19:57:45 executing program 1 (fault-call:2 fault-nth:18):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:45 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000d00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:45 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1802, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:45 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x4008ae89, 0x0)

19:57:45 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)

19:57:45 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x4008ae90, 0x0)

[ 1472.482101][T27727] FAULT_INJECTION: forcing a failure.
[ 1472.482101][T27727] name failslab, interval 1, probability 0, space 0, times 0
[ 1472.502155][T27727] CPU: 1 PID: 27727 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1472.511523][T27727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1472.521925][T27727] Call Trace:
[ 1472.525234][T27727]  dump_stack+0x172/0x1f0
[ 1472.529589][T27727]  should_fail.cold+0xa/0x15
[ 1472.534192][T27727]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1472.540534][T27727]  ? fault_create_debugfs_attr+0x180/0x180
[ 1472.547590][T27727]  ? page_to_nid.part.0+0x20/0x20
[ 1472.554140][T27727]  ? ___might_sleep+0x163/0x280
[ 1472.560473][T27727]  __should_failslab+0x121/0x190
[ 1472.565770][T27727]  should_failslab+0x9/0x14
[ 1472.570282][T27727]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1472.576160][T27727]  ? kasan_kmalloc+0x9/0x10
[ 1472.581008][T27727]  ? __kmalloc+0x351/0x770
[ 1472.585798][T27727]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1472.592454][T27727]  ? mark_held_locks+0xf0/0xf0
[ 1472.598016][T27727]  alloc_workqueue_attrs+0x3d/0xc0
[ 1472.603444][T27727]  apply_wqattrs_prepare+0xb6/0x960
[ 1472.608642][T27727]  ? lock_acquire+0x190/0x410
[ 1472.613311][T27727]  ? alloc_workqueue+0x8d8/0xf40
[ 1472.618327][T27727]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1472.624128][T27727]  alloc_workqueue+0x8f1/0xf40
[ 1472.628887][T27727]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1472.634616][T27727]  ? kasan_kmalloc+0x9/0x10
[ 1472.639138][T27727]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1472.644700][T27727]  hci_register_dev+0x209/0x8f0
[ 1472.649560][T27727]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1472.654805][T27727]  tty_ioctl+0xaf9/0x14f0
[ 1472.659126][T27727]  ? hci_uart_init_work+0x180/0x180
[ 1472.664326][T27727]  ? do_tty_hangup+0x30/0x30
[ 1472.668924][T27727]  ? tomoyo_path_number_perm+0x459/0x520
[ 1472.674560][T27727]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1472.680836][T27727]  ? tomoyo_path_number_perm+0x263/0x520
[ 1472.686549][T27727]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1472.692360][T27727]  ? __kasan_check_read+0x11/0x20
[ 1472.697501][T27727]  ? do_tty_hangup+0x30/0x30
[ 1472.702083][T27727]  do_vfs_ioctl+0xdb6/0x13e0
[ 1472.706664][T27727]  ? ioctl_preallocate+0x210/0x210
[ 1472.711768][T27727]  ? __fget+0x384/0x560
[ 1472.715963][T27727]  ? ksys_dup3+0x3e0/0x3e0
[ 1472.720371][T27727]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1472.726649][T27727]  ? fput_many+0x12c/0x1a0
[ 1472.731108][T27727]  ? tomoyo_file_ioctl+0x23/0x30
[ 1472.736217][T27727]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1472.742511][T27727]  ? security_file_ioctl+0x8d/0xc0
[ 1472.747940][T27727]  ksys_ioctl+0xab/0xd0
[ 1472.752089][T27727]  __x64_sys_ioctl+0x73/0xb0
[ 1472.756681][T27727]  do_syscall_64+0xfa/0x760
[ 1472.761178][T27727]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1472.767146][T27727] RIP: 0033:0x459829
[ 1472.771078][T27727] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1472.790720][T27727] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1472.799124][T27727] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1472.807088][T27727] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1472.815077][T27727] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1472.823137][T27727] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
19:57:45 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2f)

[ 1472.831310][T27727] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:46 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000002800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1472.903803][T27727] Bluetooth: Can't register HCI device
19:57:46 executing program 0:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000001c0))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

19:57:46 executing program 1 (fault-call:2 fault-nth:19):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:46 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x4020940d, 0x0)

19:57:46 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000002900ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:46 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:46 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000002b00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:46 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x4020ae46, 0x0)

[ 1473.244204][T27768] FAULT_INJECTION: forcing a failure.
[ 1473.244204][T27768] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1473.257845][T27768] CPU: 0 PID: 27768 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1473.267339][T27768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1473.277420][T27768] Call Trace:
[ 1473.280933][T27768]  dump_stack+0x172/0x1f0
[ 1473.285480][T27768]  should_fail.cold+0xa/0x15
19:57:46 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000002c00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:46 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x4090ae82, 0x0)

[ 1473.291402][T27768]  ? fault_create_debugfs_attr+0x180/0x180
[ 1473.297401][T27768]  ? kmem_cache_alloc_trace+0x158/0x790
[ 1473.303074][T27768]  ? alloc_workqueue_attrs+0x3d/0xc0
[ 1473.308576][T27768]  ? apply_wqattrs_prepare+0xbe/0x960
[ 1473.314048][T27768]  ? apply_workqueue_attrs_locked+0xcf/0x120
[ 1473.320149][T27768]  ? alloc_workqueue+0x8f1/0xf40
[ 1473.325099][T27768]  ? hci_register_dev+0x209/0x8f0
[ 1473.330299][T27768]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1473.336658][T27768]  should_fail_alloc_page+0x50/0x60
[ 1473.336670][T27768]  __alloc_pages_nodemask+0x1a1/0x900
[ 1473.336686][T27768]  ? __alloc_pages_slowpath+0x2520/0x2520
[ 1473.336696][T27768]  ? fs_reclaim_acquire.part.0+0x30/0x30
[ 1473.336714][T27768]  ? __kasan_check_read+0x11/0x20
[ 1473.364044][T27768]  ? fault_create_debugfs_attr+0x180/0x180
[ 1473.369872][T27768]  cache_grow_begin+0x90/0xd20
[ 1473.374651][T27768]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1473.380998][T27768]  kmem_cache_alloc_node+0x676/0x740
[ 1473.386309][T27768]  alloc_unbound_pwq+0x4c5/0xcb0
19:57:46 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x4138ae84, 0x0)

[ 1473.392840][T27768]  apply_wqattrs_prepare+0x354/0x960
[ 1473.398150][T27768]  ? alloc_workqueue+0x8d8/0xf40
[ 1473.403292][T27768]  apply_workqueue_attrs_locked+0xcf/0x120
[ 1473.409215][T27768]  alloc_workqueue+0x8f1/0xf40
[ 1473.414087][T27768]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 1473.419855][T27768]  ? kasan_kmalloc+0x9/0x10
[ 1473.424370][T27768]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1473.430029][T27768]  hci_register_dev+0x209/0x8f0
[ 1473.435246][T27768]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1473.440312][T27768]  tty_ioctl+0xaf9/0x14f0
[ 1473.440330][T27768]  ? hci_uart_init_work+0x180/0x180
[ 1473.440346][T27768]  ? do_tty_hangup+0x30/0x30
[ 1473.451517][T27768]  ? tomoyo_path_number_perm+0x459/0x520
[ 1473.451539][T27768]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1473.451549][T27768]  ? tomoyo_path_number_perm+0x263/0x520
[ 1473.451562][T27768]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1473.451583][T27768]  ? __kasan_check_read+0x11/0x20
[ 1473.451602][T27768]  ? do_tty_hangup+0x30/0x30
[ 1473.451616][T27768]  do_vfs_ioctl+0xdb6/0x13e0
[ 1473.451634][T27768]  ? ioctl_preallocate+0x210/0x210
[ 1473.474668][T27768]  ? __fget+0x384/0x560
[ 1473.474689][T27768]  ? ksys_dup3+0x3e0/0x3e0
[ 1473.501253][T27768]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1473.501271][T27768]  ? fput_many+0x12c/0x1a0
[ 1473.501288][T27768]  ? tomoyo_file_ioctl+0x23/0x30
[ 1473.501301][T27768]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1473.501314][T27768]  ? security_file_ioctl+0x8d/0xc0
[ 1473.501330][T27768]  ksys_ioctl+0xab/0xd0
[ 1473.501344][T27768]  __x64_sys_ioctl+0x73/0xb0
[ 1473.501359][T27768]  do_syscall_64+0xfa/0x760
[ 1473.501380][T27768]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1473.556926][T27768] RIP: 0033:0x459829
[ 1473.560916][T27768] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1473.583863][T27768] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1473.583875][T27768] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1473.583882][T27768] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1473.583889][T27768] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1473.583904][T27768] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1473.602753][T27768] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1473.647808][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1473.656355][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
19:57:46 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3e)

19:57:46 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x80044324, 0x0)

19:57:46 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4002, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1475.703967][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1475.710196][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1477.783990][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1477.790100][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1479.864074][   T22] Bluetooth: hci0: command 0x1009 tx timeout
19:57:57 executing program 1 (fault-call:2 fault-nth:20):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:57:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000002f00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:57 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00', 0x1801})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'})

19:57:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x80045430, 0x0)

19:57:57 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4800, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:57:57 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc0)

19:57:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x800454d2, 0x0)

[ 1484.061336][T27824] FAULT_INJECTION: forcing a failure.
[ 1484.061336][T27824] name failslab, interval 1, probability 0, space 0, times 0
[ 1484.090950][T27824] CPU: 1 PID: 27824 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1484.100098][T27824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1484.110155][T27824] Call Trace:
[ 1484.114068][T27824]  dump_stack+0x172/0x1f0
[ 1484.118492][T27824]  should_fail.cold+0xa/0x15
[ 1484.123088][T27824]  ? fault_create_debugfs_attr+0x180/0x180
[ 1484.128907][T27824]  ? page_to_nid.part.0+0x20/0x20
[ 1484.134196][T27824]  ? ___might_sleep+0x163/0x280
[ 1484.139056][T27824]  __should_failslab+0x121/0x190
[ 1484.143994][T27824]  should_failslab+0x9/0x14
[ 1484.148498][T27824]  kmem_cache_alloc+0x2aa/0x710
[ 1484.153721][T27824]  __d_alloc+0x2e/0x8c0
19:57:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000211d3b00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:57 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x5801, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1484.157897][T27824]  d_alloc+0x4d/0x280
[ 1484.162151][T27824]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1484.168590][T27824]  d_alloc_parallel+0xf4/0x1c30
[ 1484.175608][T27824]  ? save_stack+0x5c/0x90
[ 1484.180023][T27824]  ? mark_held_locks+0xf0/0xf0
[ 1484.185304][T27824]  ? __d_lookup_rcu+0x6c0/0x6c0
[ 1484.190161][T27824]  ? lockdep_init_map+0x1be/0x6d0
[ 1484.195165][T27824]  ? lockdep_init_map+0x1be/0x6d0
[ 1484.200267][T27824]  __lookup_slow+0x1ab/0x500
[ 1484.204854][T27824]  ? vfs_unlink+0x620/0x620
[ 1484.209371][T27824]  ? lookup_dcache+0x23/0x140
[ 1484.214346][T27824]  ? d_lookup+0x19e/0x260
[ 1484.218843][T27824]  lookup_one_len+0x16d/0x1a0
[ 1484.223532][T27824]  ? lookup_one_len_unlocked+0x100/0x100
[ 1484.229147][T27824]  ? do_raw_spin_unlock+0x57/0x270
[ 1484.234261][T27824]  ? mntput+0x74/0xa0
[ 1484.238319][T27824]  start_creating+0xc5/0x1d0
[ 1484.242892][T27824]  debugfs_create_dir+0x26/0x380
[ 1484.247809][T27824]  hci_register_dev+0x299/0x8f0
[ 1484.252664][T27824]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1484.257690][T27824]  tty_ioctl+0xaf9/0x14f0
[ 1484.262002][T27824]  ? hci_uart_init_work+0x180/0x180
[ 1484.267370][T27824]  ? do_tty_hangup+0x30/0x30
[ 1484.272052][T27824]  ? tomoyo_path_number_perm+0x459/0x520
[ 1484.277671][T27824]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1484.283927][T27824]  ? tomoyo_path_number_perm+0x263/0x520
[ 1484.289635][T27824]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1484.295425][T27824]  ? __kasan_check_read+0x11/0x20
[ 1484.300436][T27824]  ? do_tty_hangup+0x30/0x30
[ 1484.305008][T27824]  do_vfs_ioctl+0xdb6/0x13e0
[ 1484.309581][T27824]  ? ioctl_preallocate+0x210/0x210
[ 1484.314672][T27824]  ? __fget+0x384/0x560
[ 1484.318930][T27824]  ? ksys_dup3+0x3e0/0x3e0
[ 1484.323451][T27824]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1484.329691][T27824]  ? fput_many+0x12c/0x1a0
[ 1484.334087][T27824]  ? tomoyo_file_ioctl+0x23/0x30
[ 1484.339497][T27824]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1484.351468][T27824]  ? security_file_ioctl+0x8d/0xc0
[ 1484.356567][T27824]  ksys_ioctl+0xab/0xd0
[ 1484.360705][T27824]  __x64_sys_ioctl+0x73/0xb0
[ 1484.365298][T27824]  do_syscall_64+0xfa/0x760
[ 1484.369807][T27824]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1484.375688][T27824] RIP: 0033:0x459829
[ 1484.379566][T27824] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1484.399148][T27824] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1484.407549][T27824] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1484.415498][T27824] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1484.425050][T27824] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1484.433006][T27824] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1484.441632][T27824] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:57:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000003c00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:57:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x80086301, 0x0)

19:57:57 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00', 0x1801})
socket$inet_tcp(0x2, 0x1, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, 0x0, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
ppoll(0x0, 0x334, &(0x7f00000003c0)={0x77359400}, &(0x7f0000000300)={0x8000}, 0x2bb)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, 0x0)
write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0xe803, 0x20000001, &(0x7f0000000040)={0xa, 0x2}, 0x1c)
ioctl$PPPIOCSCOMPRESS(0xffffffffffffffff, 0x4010744d)
splice(r2, 0x0, r1, 0x0, 0x1000000000007530, 0x0)
inotify_init1(0x0)
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, 0x0, 0x0)
getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
fstat(0xffffffffffffffff, 0x0)
ioctl$RNDGETENTCNT(0xffffffffffffffff, 0x80045200, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x0)
sendto$packet(r2, &(0x7f0000000340), 0xfffffffffffffd4d, 0x57, 0x0, 0x0)

[ 1486.503925][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1486.510034][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1488.583789][   T22] Bluetooth: hci0: command 0x1001 tx timeout
[ 1488.589947][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1490.663933][T25540] Bluetooth: hci0: command 0x1009 tx timeout
19:58:07 executing program 1 (fault-call:2 fault-nth:21):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:07 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x81204101, 0x0)

19:58:07 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000004000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:07 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x6d00, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:07 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x0, 0x8001)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000040)="d5f8d2aed418502b3dd687165dfdd95f1f72a0e27485a5b2bc11c6db024f034e969dc3ec513e83befeb949bfbedb067faf9fae74f4041cb9aecd3612835892014fb74b88179e8331a97ed2510b242d9f6a2ab0173bcaa61b33602a0148")
migrate_pages(0x0, 0x81, &(0x7f0000000180), &(0x7f0000000240)=0x2)

19:58:07 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1a0)

19:58:08 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0x8138ae83, 0x0)

19:58:08 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000054300ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1494.920391][T27873] FAULT_INJECTION: forcing a failure.
[ 1494.920391][T27873] name failslab, interval 1, probability 0, space 0, times 0
[ 1494.938678][T27873] CPU: 0 PID: 27873 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1494.947964][T27873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1494.958027][T27873] Call Trace:
[ 1494.961332][T27873]  dump_stack+0x172/0x1f0
[ 1494.965770][T27873]  should_fail.cold+0xa/0x15
[ 1494.970383][T27873]  ? fault_create_debugfs_attr+0x180/0x180
[ 1494.976186][T27873]  ? page_to_nid.part.0+0x20/0x20
[ 1494.981210][T27873]  ? ___might_sleep+0x163/0x280
[ 1494.986056][T27873]  __should_failslab+0x121/0x190
[ 1494.991070][T27873]  should_failslab+0x9/0x14
[ 1494.995554][T27873]  kmem_cache_alloc+0x2aa/0x710
[ 1495.000399][T27873]  ? lookup_one_len+0x10e/0x1a0
[ 1495.005232][T27873]  ? lookup_one_len_unlocked+0x100/0x100
[ 1495.010942][T27873]  alloc_inode+0x16f/0x1e0
[ 1495.015339][T27873]  new_inode_pseudo+0x19/0xf0
[ 1495.020357][T27873]  new_inode+0x1f/0x40
[ 1495.024669][T27873]  debugfs_get_inode+0x1a/0x130
[ 1495.029511][T27873]  debugfs_create_dir+0x7a/0x380
[ 1495.034607][T27873]  hci_register_dev+0x299/0x8f0
[ 1495.039459][T27873]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1495.044564][T27873]  tty_ioctl+0xaf9/0x14f0
[ 1495.048970][T27873]  ? hci_uart_init_work+0x180/0x180
[ 1495.054333][T27873]  ? do_tty_hangup+0x30/0x30
[ 1495.059966][T27873]  ? tomoyo_path_number_perm+0x459/0x520
[ 1495.065584][T27873]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1495.071998][T27873]  ? tomoyo_path_number_perm+0x263/0x520
[ 1495.077611][T27873]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1495.083755][T27873]  ? __kasan_check_read+0x11/0x20
[ 1495.093327][T27873]  ? do_tty_hangup+0x30/0x30
[ 1495.097985][T27873]  do_vfs_ioctl+0xdb6/0x13e0
[ 1495.102556][T27873]  ? ioctl_preallocate+0x210/0x210
[ 1495.107916][T27873]  ? __fget+0x384/0x560
[ 1495.112053][T27873]  ? ksys_dup3+0x3e0/0x3e0
[ 1495.116448][T27873]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1495.122666][T27873]  ? fput_many+0x12c/0x1a0
[ 1495.127069][T27873]  ? tomoyo_file_ioctl+0x23/0x30
[ 1495.131985][T27873]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1495.138218][T27873]  ? security_file_ioctl+0x8d/0xc0
[ 1495.143398][T27873]  ksys_ioctl+0xab/0xd0
[ 1495.147536][T27873]  __x64_sys_ioctl+0x73/0xb0
[ 1495.152192][T27873]  do_syscall_64+0xfa/0x760
[ 1495.156680][T27873]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1495.162548][T27873] RIP: 0033:0x459829
[ 1495.166692][T27873] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1495.186492][T27873] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1495.195059][T27873] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1495.203196][T27873] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1495.211242][T27873] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
19:58:08 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff8000/0x4000)=nil)
ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @dev, [], {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @broadcast, @dev, @broadcast}}}}, 0x0)

[ 1495.219283][T27873] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1495.227711][T27873] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:58:08 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000006000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:08 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xc0045878, 0x0)

[ 1495.297210][T27873] debugfs: out of free dentries, can not create directory 'hci0'
19:58:08 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe803, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1495.340739][T20533] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1497.383724][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1497.389872][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1499.463747][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1499.469837][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1501.543765][T25754] Bluetooth: hci0: command 0x1009 tx timeout
19:58:18 executing program 1 (fault-call:2 fault-nth:22):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:18 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000008000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:18 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xc0045878, 0x0)

19:58:18 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff8000/0x4000)=nil)
ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @dev, [], {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @broadcast, @dev, @broadcast}}}}, 0x0)

19:58:18 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xf401, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:18 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x300)

19:58:18 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xc008561c, 0x0)

19:58:18 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000200)={'veth1_to_bridge\x00'})

19:58:18 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000000e8000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1505.826325][T27921] FAULT_INJECTION: forcing a failure.
[ 1505.826325][T27921] name failslab, interval 1, probability 0, space 0, times 0
[ 1505.843772][T27921] CPU: 0 PID: 27921 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1505.853356][T27921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1505.863759][T27921] Call Trace:
[ 1505.867060][T27921]  dump_stack+0x172/0x1f0
[ 1505.871442][T27921]  should_fail.cold+0xa/0x15
[ 1505.876025][T27921]  ? fault_create_debugfs_attr+0x180/0x180
[ 1505.881839][T27921]  ? page_to_nid.part.0+0x20/0x20
[ 1505.886871][T27921]  ? ___might_sleep+0x163/0x280
[ 1505.891733][T27921]  __should_failslab+0x121/0x190
[ 1505.896659][T27921]  should_failslab+0x9/0x14
[ 1505.901430][T27921]  kmem_cache_alloc+0x2aa/0x710
[ 1505.906377][T27921]  ? lookup_one_len+0x10e/0x1a0
[ 1505.911210][T27921]  ? lookup_one_len_unlocked+0x100/0x100
[ 1505.916825][T27921]  alloc_inode+0x16f/0x1e0
[ 1505.921616][T27921]  new_inode_pseudo+0x19/0xf0
[ 1505.926557][T27921]  new_inode+0x1f/0x40
[ 1505.930607][T27921]  debugfs_get_inode+0x1a/0x130
[ 1505.935438][T27921]  debugfs_create_dir+0x7a/0x380
[ 1505.940372][T27921]  hci_register_dev+0x299/0x8f0
[ 1505.945210][T27921]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1505.950307][T27921]  tty_ioctl+0xaf9/0x14f0
[ 1505.954617][T27921]  ? hci_uart_init_work+0x180/0x180
[ 1505.959794][T27921]  ? do_tty_hangup+0x30/0x30
[ 1505.964364][T27921]  ? tomoyo_path_number_perm+0x459/0x520
[ 1505.969980][T27921]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1505.976200][T27921]  ? tomoyo_path_number_perm+0x263/0x520
[ 1505.981823][T27921]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1505.987622][T27921]  ? __kasan_check_read+0x11/0x20
[ 1505.992652][T27921]  ? do_tty_hangup+0x30/0x30
[ 1505.997413][T27921]  do_vfs_ioctl+0xdb6/0x13e0
[ 1506.001990][T27921]  ? ioctl_preallocate+0x210/0x210
[ 1506.007259][T27921]  ? __fget+0x384/0x560
[ 1506.011413][T27921]  ? ksys_dup3+0x3e0/0x3e0
[ 1506.015825][T27921]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1506.022047][T27921]  ? fput_many+0x12c/0x1a0
[ 1506.026537][T27921]  ? tomoyo_file_ioctl+0x23/0x30
[ 1506.031472][T27921]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1506.037883][T27921]  ? security_file_ioctl+0x8d/0xc0
[ 1506.042996][T27921]  ksys_ioctl+0xab/0xd0
[ 1506.047230][T27921]  __x64_sys_ioctl+0x73/0xb0
[ 1506.052497][T27921]  do_syscall_64+0xfa/0x760
[ 1506.057253][T27921]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1506.063313][T27921] RIP: 0033:0x459829
[ 1506.067193][T27921] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1506.087666][T27921] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1506.096058][T27921] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1506.104009][T27921] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1506.111958][T27921] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1506.119912][T27921] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1506.127868][T27921] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1506.164207][T27921] debugfs: out of free dentries, can not create directory 'hci0'
19:58:19 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x210b0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1506.193352][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
19:58:19 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xc008ae05, 0x0)

19:58:19 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x41395527)
syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x40000fffffd, 0x200000000000042)
syz_emit_ethernet(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000080)={0xfc, 0x40}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

[ 1508.273684][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1508.279802][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1510.343944][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1510.358754][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1512.423750][   T22] Bluetooth: hci0: command 0x1009 tx timeout
19:58:29 executing program 1 (fault-call:2 fault-nth:23):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:29 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000358000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:29 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xc0189436, 0x0)

19:58:29 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x210d0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:29 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x500)

19:58:29 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:29 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:29 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000008100ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:29 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xc020660b, 0x0)

[ 1516.693438][T27969] FAULT_INJECTION: forcing a failure.
[ 1516.693438][T27969] name failslab, interval 1, probability 0, space 0, times 0
[ 1516.706413][T27969] CPU: 1 PID: 27969 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1516.715536][T27969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1516.725597][T27969] Call Trace:
[ 1516.728907][T27969]  dump_stack+0x172/0x1f0
[ 1516.733251][T27969]  should_fail.cold+0xa/0x15
[ 1516.737842][T27969]  ? fault_create_debugfs_attr+0x180/0x180
[ 1516.743647][T27969]  ? page_to_nid.part.0+0x20/0x20
[ 1516.748680][T27969]  ? ___might_sleep+0x163/0x280
[ 1516.754071][T27969]  __should_failslab+0x121/0x190
[ 1516.759094][T27969]  should_failslab+0x9/0x14
[ 1516.764259][T27969]  __kmalloc_track_caller+0x2dc/0x760
[ 1516.771619][T27969]  ? __d_instantiate+0x383/0x470
[ 1516.776907][T27969]  ? kstrdup_const+0x66/0x80
[ 1516.781916][T27969]  kstrdup+0x3a/0x70
[ 1516.785811][T27969]  kstrdup_const+0x66/0x80
[ 1516.790310][T27969]  kvasprintf_const+0x10e/0x190
[ 1516.795846][T27969]  kobject_set_name_vargs+0x5b/0x150
[ 1516.801125][T27969]  dev_set_name+0xbb/0xf0
[ 1516.805456][T27969]  ? device_initialize+0x460/0x460
[ 1516.810561][T27969]  ? __kasan_check_write+0x14/0x20
[ 1516.815663][T27969]  ? up_write+0x9d/0x280
[ 1516.819908][T27969]  hci_register_dev+0x2e0/0x8f0
[ 1516.824742][T27969]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1516.829878][T27969]  tty_ioctl+0xaf9/0x14f0
[ 1516.834218][T27969]  ? hci_uart_init_work+0x180/0x180
[ 1516.839531][T27969]  ? do_tty_hangup+0x30/0x30
[ 1516.844159][T27969]  ? tomoyo_path_number_perm+0x459/0x520
[ 1516.849789][T27969]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1516.857704][T27969]  ? tomoyo_path_number_perm+0x263/0x520
[ 1516.863329][T27969]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1516.869123][T27969]  ? __kasan_check_read+0x11/0x20
[ 1516.874199][T27969]  ? do_tty_hangup+0x30/0x30
[ 1516.878793][T27969]  do_vfs_ioctl+0xdb6/0x13e0
[ 1516.883378][T27969]  ? ioctl_preallocate+0x210/0x210
[ 1516.888751][T27969]  ? __fget+0x384/0x560
[ 1516.892928][T27969]  ? ksys_dup3+0x3e0/0x3e0
[ 1516.897327][T27969]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1516.903542][T27969]  ? fput_many+0x12c/0x1a0
[ 1516.907953][T27969]  ? tomoyo_file_ioctl+0x23/0x30
[ 1516.913246][T27969]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1516.919769][T27969]  ? security_file_ioctl+0x8d/0xc0
[ 1516.924879][T27969]  ksys_ioctl+0xab/0xd0
[ 1516.929022][T27969]  __x64_sys_ioctl+0x73/0xb0
[ 1516.933611][T27969]  do_syscall_64+0xfa/0x760
[ 1516.938132][T27969]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1516.944005][T27969] RIP: 0033:0x459829
[ 1516.947897][T27969] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1516.967652][T27969] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1516.977512][T27969] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1516.985472][T27969] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
19:58:30 executing program 1 (fault-call:2 fault-nth:24):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1516.993632][T27969] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1517.001779][T27969] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1517.009761][T27969] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1517.020168][T27969] Bluetooth: Can't register HCI device
19:58:30 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x230d0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:30 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:30 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ffffdd8600ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:30 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x2)

[ 1517.207374][T27987] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1517.217740][T27987] FAULT_INJECTION: forcing a failure.
[ 1517.217740][T27987] name failslab, interval 1, probability 0, space 0, times 0
[ 1517.230799][T27987] CPU: 1 PID: 27987 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1517.239921][T27987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1517.239927][T27987] Call Trace:
[ 1517.239954][T27987]  dump_stack+0x172/0x1f0
[ 1517.239976][T27987]  should_fail.cold+0xa/0x15
[ 1517.239997][T27987]  ? fault_create_debugfs_attr+0x180/0x180
[ 1517.268943][T27987]  ? stack_trace_save+0xac/0xe0
[ 1517.273795][T27987]  __should_failslab+0x121/0x190
[ 1517.278833][T27987]  should_failslab+0x9/0x14
[ 1517.283314][T27987]  kmem_cache_alloc+0x47/0x710
[ 1517.288068][T27987]  ? save_stack+0x5c/0x90
[ 1517.292373][T27987]  ? save_stack+0x23/0x90
[ 1517.296693][T27987]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 1517.302500][T27987]  ? kasan_slab_alloc+0xf/0x20
[ 1517.307601][T27987]  radix_tree_node_alloc.constprop.0+0x1eb/0x340
[ 1517.314290][T27987]  idr_get_free+0x48e/0x8c0
[ 1517.319060][T27987]  idr_alloc_u32+0x19e/0x330
[ 1517.324079][T27987]  ? __fprop_inc_percpu_max+0x230/0x230
[ 1517.329620][T27987]  ? mark_held_locks+0xf0/0xf0
[ 1517.334629][T27987]  ? page_to_nid.part.0+0x20/0x20
[ 1517.339633][T27987]  idr_alloc_cyclic+0x132/0x270
[ 1517.344905][T27987]  ? idr_alloc+0x150/0x150
[ 1517.349398][T27987]  __kernfs_new_node+0x172/0x6c0
[ 1517.354406][T27987]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1517.359849][T27987]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1517.366071][T27987]  ? irq_work_claim+0x98/0xc0
[ 1517.371043][T27987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1517.377265][T27987]  ? irq_work_queue+0x30/0x90
[ 1517.382640][T27987]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1517.389866][T27987]  ? wake_up_klogd+0x99/0xd0
[ 1517.394452][T27987]  kernfs_new_node+0x96/0x120
[ 1517.399122][T27987]  kernfs_create_dir_ns+0x52/0x160
[ 1517.404221][T27987]  sysfs_create_dir_ns+0x136/0x290
[ 1517.409310][T27987]  ? sysfs_create_mount_point+0xa0/0xa0
[ 1517.414846][T27987]  ? kobject_add_internal+0x177/0x380
[ 1517.420203][T27987]  kobject_add_internal.cold+0x116/0x662
[ 1517.425992][T27987]  kobject_add+0x150/0x1c0
[ 1517.430573][T27987]  ? kset_create_and_add+0x1a0/0x1a0
[ 1517.436984][T27987]  ? kasan_kmalloc+0x9/0x10
[ 1517.441482][T27987]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1517.447022][T27987]  get_device_parent.isra.0+0x413/0x560
[ 1517.452549][T27987]  device_add+0x2df/0x17a0
[ 1517.456959][T27987]  ? uevent_show+0x370/0x370
[ 1517.461540][T27987]  ? start_creating+0x116/0x1d0
[ 1517.466376][T27987]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1517.472795][T27987]  hci_register_dev+0x2e8/0x8f0
[ 1517.477894][T27987]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1517.483178][T27987]  tty_ioctl+0xaf9/0x14f0
[ 1517.487488][T27987]  ? hci_uart_init_work+0x180/0x180
[ 1517.492751][T27987]  ? do_tty_hangup+0x30/0x30
[ 1517.498274][T27987]  ? tomoyo_path_number_perm+0x459/0x520
[ 1517.503889][T27987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1517.510108][T27987]  ? tomoyo_path_number_perm+0x263/0x520
[ 1517.515730][T27987]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1517.521869][T27987]  ? __kasan_check_read+0x11/0x20
[ 1517.526891][T27987]  ? do_tty_hangup+0x30/0x30
[ 1517.531460][T27987]  do_vfs_ioctl+0xdb6/0x13e0
[ 1517.536141][T27987]  ? ioctl_preallocate+0x210/0x210
[ 1517.541329][T27987]  ? __fget+0x384/0x560
[ 1517.545480][T27987]  ? ksys_dup3+0x3e0/0x3e0
[ 1517.549884][T27987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1517.556767][T27987]  ? fput_many+0x12c/0x1a0
[ 1517.561513][T27987]  ? tomoyo_file_ioctl+0x23/0x30
[ 1517.566439][T27987]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1517.572658][T27987]  ? security_file_ioctl+0x8d/0xc0
[ 1517.578815][T27987]  ksys_ioctl+0xab/0xd0
[ 1517.583409][T27987]  __x64_sys_ioctl+0x73/0xb0
[ 1517.588088][T27987]  do_syscall_64+0xfa/0x760
[ 1517.592576][T27987]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1517.598450][T27987] RIP: 0033:0x459829
[ 1517.602327][T27987] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1517.622195][T27987] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1517.630597][T27987] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1517.638549][T27987] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1517.646506][T27987] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1517.654984][T27987] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1517.663022][T27987] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1517.675778][   T38] Bluetooth: hci0: Frame reassembly failed (-84)
19:58:30 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:30 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000478800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:30 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x600)

19:58:30 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x3)

19:58:31 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x800000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:31 executing program 0:
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:31 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x4)

[ 1519.703924][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1519.710576][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1521.783935][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1521.790616][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1523.864001][   T22] Bluetooth: hci0: command 0x1009 tx timeout
19:58:41 executing program 1 (fault-call:2 fault-nth:25):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:41 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000488800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:41 executing program 0:
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:41 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x5)

19:58:41 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x8000a0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:41 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x700)

19:58:41 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x6)

19:58:41 executing program 0:
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:41 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000648800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1528.204285][T28048] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1528.226305][T28048] FAULT_INJECTION: forcing a failure.
[ 1528.226305][T28048] name failslab, interval 1, probability 0, space 0, times 0
[ 1528.239138][T28048] CPU: 0 PID: 28048 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1528.248336][T28048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1528.248341][T28048] Call Trace:
[ 1528.248368][T28048]  dump_stack+0x172/0x1f0
[ 1528.248389][T28048]  should_fail.cold+0xa/0x15
[ 1528.248409][T28048]  ? fault_create_debugfs_attr+0x180/0x180
[ 1528.248428][T28048]  ? stack_trace_save+0xac/0xe0
[ 1528.282112][T28048]  __should_failslab+0x121/0x190
[ 1528.287068][T28048]  should_failslab+0x9/0x14
[ 1528.291578][T28048]  kmem_cache_alloc+0x47/0x710
[ 1528.296349][T28048]  ? save_stack+0x5c/0x90
[ 1528.300688][T28048]  ? save_stack+0x23/0x90
19:58:41 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x7)

[ 1528.305027][T28048]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 1528.310835][T28048]  radix_tree_node_alloc.constprop.0+0x1eb/0x340
[ 1528.310854][T28048]  idr_get_free+0x48e/0x8c0
[ 1528.310874][T28048]  idr_alloc_u32+0x19e/0x330
[ 1528.326254][T28048]  ? __fprop_inc_percpu_max+0x230/0x230
[ 1528.331809][T28048]  ? mark_held_locks+0xf0/0xf0
[ 1528.336573][T28048]  ? page_to_nid.part.0+0x20/0x20
[ 1528.341601][T28048]  idr_alloc_cyclic+0x132/0x270
[ 1528.341618][T28048]  ? idr_alloc+0x150/0x150
[ 1528.341641][T28048]  __kernfs_new_node+0x172/0x6c0
[ 1528.341659][T28048]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1528.341678][T28048]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1528.341694][T28048]  ? irq_work_claim+0x98/0xc0
[ 1528.368085][T28048]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1528.368098][T28048]  ? irq_work_queue+0x30/0x90
[ 1528.368117][T28048]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1528.390283][T28048]  ? wake_up_klogd+0x99/0xd0
[ 1528.390306][T28048]  kernfs_new_node+0x96/0x120
[ 1528.399744][T28048]  kernfs_create_dir_ns+0x52/0x160
19:58:41 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x8)

[ 1528.404856][T28048]  sysfs_create_dir_ns+0x136/0x290
[ 1528.404871][T28048]  ? sysfs_create_mount_point+0xa0/0xa0
[ 1528.404885][T28048]  ? kobject_add_internal+0x177/0x380
[ 1528.404906][T28048]  kobject_add_internal.cold+0x116/0x662
[ 1528.426755][T28048]  kobject_add+0x150/0x1c0
[ 1528.431273][T28048]  ? kset_create_and_add+0x1a0/0x1a0
[ 1528.436670][T28048]  ? kasan_kmalloc+0x9/0x10
[ 1528.441619][T28048]  ? kmem_cache_alloc_trace+0x346/0x790
[ 1528.447274][T28048]  get_device_parent.isra.0+0x413/0x560
19:58:41 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1528.452925][T28048]  device_add+0x2df/0x17a0
[ 1528.457367][T28048]  ? uevent_show+0x370/0x370
[ 1528.462334][T28048]  ? start_creating+0x116/0x1d0
[ 1528.468402][T28048]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1528.475420][T28048]  hci_register_dev+0x2e8/0x8f0
[ 1528.480298][T28048]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1528.485346][T28048]  tty_ioctl+0xaf9/0x14f0
[ 1528.489727][T28048]  ? hci_uart_init_work+0x180/0x180
[ 1528.494954][T28048]  ? do_tty_hangup+0x30/0x30
[ 1528.499564][T28048]  ? tomoyo_path_number_perm+0x459/0x520
[ 1528.505249][T28048]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1528.511510][T28048]  ? tomoyo_path_number_perm+0x263/0x520
[ 1528.517254][T28048]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1528.523099][T28048]  ? __kasan_check_read+0x11/0x20
[ 1528.528366][T28048]  ? do_tty_hangup+0x30/0x30
[ 1528.532985][T28048]  do_vfs_ioctl+0xdb6/0x13e0
[ 1528.537589][T28048]  ? ioctl_preallocate+0x210/0x210
[ 1528.542714][T28048]  ? __fget+0x384/0x560
[ 1528.546888][T28048]  ? ksys_dup3+0x3e0/0x3e0
[ 1528.552326][T28048]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1528.558582][T28048]  ? fput_many+0x12c/0x1a0
[ 1528.563097][T28048]  ? tomoyo_file_ioctl+0x23/0x30
[ 1528.568032][T28048]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1528.574366][T28048]  ? security_file_ioctl+0x8d/0xc0
[ 1528.579471][T28048]  ksys_ioctl+0xab/0xd0
[ 1528.583789][T28048]  __x64_sys_ioctl+0x73/0xb0
[ 1528.588373][T28048]  do_syscall_64+0xfa/0x760
[ 1528.592874][T28048]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1528.598744][T28048] RIP: 0033:0x459829
[ 1528.602622][T28048] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1528.622384][T28048] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1528.630884][T28048] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1528.638938][T28048] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1528.646893][T28048] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1528.654932][T28048] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1528.662890][T28048] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1528.694187][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1530.743822][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1530.750119][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1532.823838][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1532.830178][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1534.903782][T25540] Bluetooth: hci0: command 0x1009 tx timeout
19:58:52 executing program 1 (fault-call:2 fault-nth:26):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ffffa88800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:52 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x1a0)

19:58:52 executing program 0:
r0 = syz_open_dev$loop(0x0, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:52 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x2000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:52 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc00)

19:58:52 executing program 0:
r0 = syz_open_dev$loop(0x0, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:52 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x300)

19:58:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ffffca8800ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1539.067030][T28092] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1539.077364][T28092] FAULT_INJECTION: forcing a failure.
[ 1539.077364][T28092] name failslab, interval 1, probability 0, space 0, times 0
[ 1539.095581][T28092] CPU: 0 PID: 28092 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1539.104704][T28092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1539.104711][T28092] Call Trace:
[ 1539.104739][T28092]  dump_stack+0x172/0x1f0
[ 1539.104755][T28092]  should_fail.cold+0xa/0x15
[ 1539.104772][T28092]  ? string_nocheck+0x1ce/0x240
[ 1539.123674][T28092]  ? fault_create_debugfs_attr+0x180/0x180
[ 1539.123690][T28092]  ? page_to_nid.part.0+0x20/0x20
[ 1539.123708][T28092]  ? ___might_sleep+0x163/0x280
[ 1539.123730][T28092]  __should_failslab+0x121/0x190
[ 1539.149556][T28092]  should_failslab+0x9/0x14
[ 1539.149575][T28092]  __kmalloc_track_caller+0x2dc/0x760
19:58:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000068900ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1539.164741][T28092]  ? console_unlock+0x6bb/0xf10
[ 1539.169830][T28092]  ? __kasan_check_read+0x11/0x20
[ 1539.175022][T28092]  ? kstrdup_const+0x66/0x80
[ 1539.179695][T28092]  kstrdup+0x3a/0x70
[ 1539.179714][T28092]  kstrdup_const+0x66/0x80
[ 1539.188128][T28092]  __kernfs_new_node+0xb1/0x6c0
[ 1539.192986][T28092]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1539.198958][T28092]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1539.205436][T28092]  ? irq_work_claim+0x98/0xc0
[ 1539.210121][T28092]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1539.216353][T28092]  ? irq_work_queue+0x30/0x90
[ 1539.221112][T28092]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1539.227455][T28092]  ? wake_up_klogd+0x99/0xd0
[ 1539.232161][T28092]  kernfs_new_node+0x96/0x120
[ 1539.236895][T28092]  kernfs_create_dir_ns+0x52/0x160
[ 1539.242225][T28092]  sysfs_create_dir_ns+0x136/0x290
[ 1539.247892][T28092]  ? sysfs_create_mount_point+0xa0/0xa0
[ 1539.253640][T28092]  ? kobject_add_internal+0x177/0x380
[ 1539.259110][T28092]  ? class_dir_child_ns_type+0xd/0x60
[ 1539.264705][T28092]  kobject_add_internal.cold+0x116/0x662
[ 1539.271198][T28092]  kobject_add+0x150/0x1c0
[ 1539.276943][T28092]  ? kset_create_and_add+0x1a0/0x1a0
[ 1539.282250][T28092]  ? mutex_unlock+0xd/0x10
[ 1539.286659][T28092]  device_add+0x3b7/0x17a0
[ 1539.291085][T28092]  ? uevent_show+0x370/0x370
[ 1539.295833][T28092]  ? start_creating+0x116/0x1d0
[ 1539.301019][T28092]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1539.307357][T28092]  hci_register_dev+0x2e8/0x8f0
[ 1539.312212][T28092]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1539.317341][T28092]  tty_ioctl+0xaf9/0x14f0
[ 1539.321926][T28092]  ? hci_uart_init_work+0x180/0x180
[ 1539.327563][T28092]  ? do_tty_hangup+0x30/0x30
[ 1539.332213][T28092]  ? tomoyo_path_number_perm+0x459/0x520
[ 1539.337873][T28092]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1539.344171][T28092]  ? tomoyo_path_number_perm+0x263/0x520
[ 1539.349934][T28092]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1539.355879][T28092]  ? __kasan_check_read+0x11/0x20
[ 1539.361671][T28092]  ? do_tty_hangup+0x30/0x30
[ 1539.366295][T28092]  do_vfs_ioctl+0xdb6/0x13e0
[ 1539.370907][T28092]  ? ioctl_preallocate+0x210/0x210
[ 1539.376228][T28092]  ? __fget+0x384/0x560
[ 1539.380382][T28092]  ? ksys_dup3+0x3e0/0x3e0
[ 1539.384787][T28092]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1539.391020][T28092]  ? fput_many+0x12c/0x1a0
[ 1539.395449][T28092]  ? tomoyo_file_ioctl+0x23/0x30
[ 1539.400378][T28092]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1539.406609][T28092]  ? security_file_ioctl+0x8d/0xc0
[ 1539.411703][T28092]  ksys_ioctl+0xab/0xd0
[ 1539.415844][T28092]  __x64_sys_ioctl+0x73/0xb0
[ 1539.420506][T28092]  do_syscall_64+0xfa/0x760
[ 1539.424995][T28092]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1539.430871][T28092] RIP: 0033:0x459829
[ 1539.434958][T28092] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1539.455073][T28092] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1539.463656][T28092] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1539.471735][T28092] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1539.479794][T28092] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1539.487863][T28092] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1539.495841][T28092] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:58:52 executing program 1 (fault-call:2 fault-nth:27):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

[ 1539.514853][T28092] kobject_add_internal failed for hci0 (error: -12 parent: bluetooth)
[ 1539.528116][T28092] Bluetooth: Can't register HCI device
19:58:52 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x500)

19:58:52 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x3000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:52 executing program 0:
r0 = syz_open_dev$loop(0x0, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ffffff8900ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:52 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x600)

[ 1539.672292][T28113] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1539.700083][T28113] FAULT_INJECTION: forcing a failure.
[ 1539.700083][T28113] name failslab, interval 1, probability 0, space 0, times 0
[ 1539.720929][T28113] CPU: 1 PID: 28113 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1539.730346][T28113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1539.730361][T28113] Call Trace:
[ 1539.743972][T28113]  dump_stack+0x172/0x1f0
[ 1539.748327][T28113]  should_fail.cold+0xa/0x15
[ 1539.752960][T28113]  ? fault_create_debugfs_attr+0x180/0x180
[ 1539.758783][T28113]  ? page_to_nid.part.0+0x20/0x20
[ 1539.764140][T28113]  ? ___might_sleep+0x163/0x280
[ 1539.769017][T28113]  __should_failslab+0x121/0x190
[ 1539.773992][T28113]  should_failslab+0x9/0x14
[ 1539.778514][T28113]  kmem_cache_alloc+0x2aa/0x710
[ 1539.784256][T28113]  ? __mutex_lock+0x45d/0x13c0
[ 1539.789410][T28113]  __kernfs_new_node+0xf0/0x6c0
[ 1539.794362][T28113]  ? kernfs_find_and_get_ns+0x26/0x70
[ 1539.799748][T28113]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1539.805217][T28113]  ? kernfs_find_and_get_ns+0x5a/0x70
[ 1539.810850][T28113]  ? __kasan_check_read+0x11/0x20
[ 1539.816194][T28113]  ? __mutex_lock+0x45d/0x13c0
[ 1539.820960][T28113]  ? lock_downgrade+0x920/0x920
[ 1539.826084][T28113]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1539.831870][T28113]  ? kernfs_activate+0x192/0x1f0
[ 1539.836852][T28113]  kernfs_new_node+0x96/0x120
[ 1539.841623][T28113]  __kernfs_create_file+0x51/0x33b
[ 1539.846737][T28113]  sysfs_add_file_mode_ns+0x222/0x560
[ 1539.852216][T28113]  sysfs_merge_group+0x1a0/0x340
[ 1539.857153][T28113]  ? sysfs_init_fs_context+0x380/0x380
[ 1539.862600][T28113]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1539.868833][T28113]  ? kernfs_create_link+0x1cc/0x250
[ 1539.874018][T28113]  dpm_sysfs_add+0x21e/0x270
[ 1539.878589][T28113]  device_add+0x9df/0x17a0
[ 1539.882988][T28113]  ? uevent_show+0x370/0x370
[ 1539.887559][T28113]  ? start_creating+0x116/0x1d0
[ 1539.892403][T28113]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1539.898724][T28113]  hci_register_dev+0x2e8/0x8f0
[ 1539.903696][T28113]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1539.908704][T28113]  tty_ioctl+0xaf9/0x14f0
[ 1539.913014][T28113]  ? hci_uart_init_work+0x180/0x180
[ 1539.918191][T28113]  ? do_tty_hangup+0x30/0x30
[ 1539.922773][T28113]  ? tomoyo_path_number_perm+0x459/0x520
[ 1539.928714][T28113]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1539.935196][T28113]  ? tomoyo_path_number_perm+0x263/0x520
[ 1539.941246][T28113]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1539.947226][T28113]  ? __kasan_check_read+0x11/0x20
[ 1539.952408][T28113]  ? do_tty_hangup+0x30/0x30
[ 1539.956989][T28113]  do_vfs_ioctl+0xdb6/0x13e0
[ 1539.961649][T28113]  ? ioctl_preallocate+0x210/0x210
[ 1539.966738][T28113]  ? __fget+0x384/0x560
[ 1539.970878][T28113]  ? ksys_dup3+0x3e0/0x3e0
[ 1539.975274][T28113]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1539.981495][T28113]  ? fput_many+0x12c/0x1a0
[ 1539.986089][T28113]  ? tomoyo_file_ioctl+0x23/0x30
[ 1539.991007][T28113]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1539.997243][T28113]  ? security_file_ioctl+0x8d/0xc0
[ 1540.002333][T28113]  ksys_ioctl+0xab/0xd0
[ 1540.006470][T28113]  __x64_sys_ioctl+0x73/0xb0
[ 1540.011041][T28113]  do_syscall_64+0xfa/0x760
[ 1540.015622][T28113]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1540.021594][T28113] RIP: 0033:0x459829
[ 1540.025472][T28113] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1540.045177][T28113] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1540.053682][T28113] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1540.061721][T28113] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
19:58:53 executing program 0:
syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

[ 1540.069675][T28113] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1540.077949][T28113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1540.086013][T28113] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1540.099462][T28113] Bluetooth: Can't register HCI device
19:58:53 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xd26)

19:58:53 executing program 1 (fault-call:2 fault-nth:28):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000000ff00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:53 executing program 0:
syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

19:58:53 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x700)

[ 1540.328241][T28139] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
19:58:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ffffffff00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:53 executing program 0:
syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c05, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "66821220275eee678afb50622f632c972901b18e8140060e4ddd5d350e99eb4c7eca6e9f0dcddb1418a3056c302cd35630f079811b5f2855bdcfcc49819f16d9", "ab13fede93410a1f2fc7b89e7a7d619abfcde097b08c3d6c5d00a7cd51b55edcb63d4bd33dc01b7325b3b92ce16ef7e2171ce5376814d9e15edbaecfe7480ae7", "d9b023b1e59db5e0e3bb36eac7f2dd3f3ef296677f38ba3dbc97d16742aca1fc"})

[ 1540.409274][T28139] FAULT_INJECTION: forcing a failure.
[ 1540.409274][T28139] name failslab, interval 1, probability 0, space 0, times 0
[ 1540.447075][T28139] CPU: 0 PID: 28139 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
19:58:53 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x4000)

[ 1540.456342][T28139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1540.466413][T28139] Call Trace:
[ 1540.470005][T28139]  dump_stack+0x172/0x1f0
[ 1540.474353][T28139]  should_fail.cold+0xa/0x15
[ 1540.474372][T28139]  ? fault_create_debugfs_attr+0x180/0x180
[ 1540.474389][T28139]  ? page_to_nid.part.0+0x20/0x20
[ 1540.474405][T28139]  ? ___might_sleep+0x163/0x280
[ 1540.474428][T28139]  __should_failslab+0x121/0x190
[ 1540.474446][T28139]  should_failslab+0x9/0x14
[ 1540.474464][T28139]  kmem_cache_alloc+0x2aa/0x710
[ 1540.509158][T28139]  ? __kasan_check_write+0x14/0x20
[ 1540.514290][T28139]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1540.519943][T28139]  __kernfs_new_node+0xf0/0x6c0
[ 1540.524822][T28139]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1540.531082][T28139]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1540.536557][T28139]  ? mutex_unlock+0xd/0x10
[ 1540.541076][T28139]  ? debug_smp_processor_id+0x3c/0x214
[ 1540.546553][T28139]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1540.552197][T28139]  ? kernfs_add_one+0x131/0x4d0
[ 1540.557078][T28139]  kernfs_new_node+0x96/0x120
[ 1540.561909][T28139]  __kernfs_create_file+0x51/0x33b
[ 1540.567158][T28139]  sysfs_add_file_mode_ns+0x222/0x560
[ 1540.574930][T28139]  sysfs_create_file_ns+0x141/0x1d0
[ 1540.580841][T28139]  ? acpi_unbind_one+0x4a0/0x4a0
[ 1540.585887][T28139]  ? sysfs_add_file_mode_ns+0x560/0x560
[ 1540.591714][T28139]  ? kset_create_and_add+0x1a0/0x1a0
[ 1540.597056][T28139]  ? dev_fwnode+0xd/0x40
[ 1540.601315][T28139]  device_create_file+0xf6/0x1e0
19:58:53 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, 0x0)

[ 1540.606598][T28139]  device_add+0x5a3/0x17a0
[ 1540.611110][T28139]  ? uevent_show+0x370/0x370
[ 1540.615709][T28139]  ? start_creating+0x116/0x1d0
[ 1540.620576][T28139]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1540.626833][T28139]  hci_register_dev+0x2e8/0x8f0
[ 1540.631682][T28139]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1540.636724][T28139]  tty_ioctl+0xaf9/0x14f0
[ 1540.641037][T28139]  ? hci_uart_init_work+0x180/0x180
[ 1540.646225][T28139]  ? do_tty_hangup+0x30/0x30
[ 1540.650813][T28139]  ? tomoyo_path_number_perm+0x459/0x520
[ 1540.656457][T28139]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1540.662763][T28139]  ? tomoyo_path_number_perm+0x263/0x520
[ 1540.668465][T28139]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1540.674385][T28139]  ? __kasan_check_read+0x11/0x20
[ 1540.679403][T28139]  ? do_tty_hangup+0x30/0x30
[ 1540.683985][T28139]  do_vfs_ioctl+0xdb6/0x13e0
[ 1540.688559][T28139]  ? ioctl_preallocate+0x210/0x210
[ 1540.693769][T28139]  ? __fget+0x384/0x560
[ 1540.699653][T28139]  ? ksys_dup3+0x3e0/0x3e0
[ 1540.704052][T28139]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1540.710384][T28139]  ? fput_many+0x12c/0x1a0
[ 1540.714873][T28139]  ? tomoyo_file_ioctl+0x23/0x30
[ 1540.719807][T28139]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1540.726038][T28139]  ? security_file_ioctl+0x8d/0xc0
[ 1540.731132][T28139]  ksys_ioctl+0xab/0xd0
[ 1540.735268][T28139]  __x64_sys_ioctl+0x73/0xb0
[ 1540.739867][T28139]  do_syscall_64+0xfa/0x760
[ 1540.744360][T28139]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1540.750260][T28139] RIP: 0033:0x459829
[ 1540.754575][T28139] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1540.774339][T28139] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1540.782773][T28139] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1540.790743][T28139] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1540.798707][T28139] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
19:58:53 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xff00)

19:58:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x7000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1540.806747][T28139] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1540.814707][T28139] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1540.895694][T28139] Bluetooth: Can't register HCI device
19:58:54 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1200)

19:58:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008000a0ffffffff00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:54 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, 0x0)

19:58:54 executing program 1 (fault-call:2 fault-nth:29):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x8000a0)

19:58:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x8000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x1000000)

19:58:54 executing program 0:
r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c05, 0x0)

19:58:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000001a0ffffffff00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1541.266612][T28193] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1541.300663][T28193] FAULT_INJECTION: forcing a failure.
[ 1541.300663][T28193] name failslab, interval 1, probability 0, space 0, times 0
[ 1541.364198][T28193] CPU: 1 PID: 28193 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1541.373358][T28193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1541.384341][T28193] Call Trace:
[ 1541.387674][T28193]  dump_stack+0x172/0x1f0
[ 1541.392035][T28193]  should_fail.cold+0xa/0x15
[ 1541.396679][T28193]  ? fault_create_debugfs_attr+0x180/0x180
[ 1541.402501][T28193]  ? page_to_nid.part.0+0x20/0x20
[ 1541.407542][T28193]  ? ___might_sleep+0x163/0x280
19:58:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000f0ffffffffffff00ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x9000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1541.412405][T28193]  __should_failslab+0x121/0x190
[ 1541.417360][T28193]  should_failslab+0x9/0x14
[ 1541.421877][T28193]  kmem_cache_alloc+0x2aa/0x710
[ 1541.426734][T28193]  ? mutex_unlock+0xd/0x10
[ 1541.431169][T28193]  __kernfs_new_node+0xf0/0x6c0
[ 1541.436033][T28193]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1541.442297][T28193]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1541.447789][T28193]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1541.453374][T28193]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1541.460197][T28193]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1541.466367][T28193]  ? __kasan_check_read+0x11/0x20
[ 1541.472272][T28193]  ? __kasan_check_write+0x14/0x20
[ 1541.477640][T28193]  kernfs_new_node+0x96/0x120
[ 1541.482328][T28193]  kernfs_create_link+0xd7/0x250
[ 1541.487290][T28193]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1541.493264][T28193]  sysfs_create_link+0x65/0xc0
[ 1541.498039][T28193]  device_add+0x635/0x17a0
[ 1541.502442][T28193]  ? uevent_show+0x370/0x370
[ 1541.507033][T28193]  ? start_creating+0x116/0x1d0
[ 1541.511873][T28193]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1541.518108][T28193]  hci_register_dev+0x2e8/0x8f0
[ 1541.523054][T28193]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1541.528557][T28193]  tty_ioctl+0xaf9/0x14f0
[ 1541.532897][T28193]  ? hci_uart_init_work+0x180/0x180
[ 1541.538187][T28193]  ? do_tty_hangup+0x30/0x30
[ 1541.542785][T28193]  ? tomoyo_path_number_perm+0x459/0x520
[ 1541.548428][T28193]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1541.554657][T28193]  ? tomoyo_path_number_perm+0x263/0x520
[ 1541.560276][T28193]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1541.566758][T28193]  ? __kasan_check_read+0x11/0x20
[ 1541.572397][T28193]  ? do_tty_hangup+0x30/0x30
[ 1541.576977][T28193]  do_vfs_ioctl+0xdb6/0x13e0
[ 1541.581561][T28193]  ? ioctl_preallocate+0x210/0x210
[ 1541.586795][T28193]  ? __fget+0x384/0x560
[ 1541.590938][T28193]  ? ksys_dup3+0x3e0/0x3e0
[ 1541.595374][T28193]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1541.602120][T28193]  ? fput_many+0x12c/0x1a0
[ 1541.606546][T28193]  ? tomoyo_file_ioctl+0x23/0x30
[ 1541.611473][T28193]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1541.617705][T28193]  ? security_file_ioctl+0x8d/0xc0
[ 1541.622822][T28193]  ksys_ioctl+0xab/0xd0
[ 1541.626993][T28193]  __x64_sys_ioctl+0x73/0xb0
[ 1541.631568][T28193]  do_syscall_64+0xfa/0x760
[ 1541.636054][T28193]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1541.642039][T28193] RIP: 0033:0x459829
[ 1541.645941][T28193] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1541.665615][T28193] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1541.674864][T28193] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1541.683126][T28193] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1541.691218][T28193] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1541.699358][T28193] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1541.707354][T28193] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:58:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x2000000)

[ 1541.722718][T28193] Bluetooth: Can't register HCI device
19:58:55 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1400)

19:58:55 executing program 1 (fault-call:2 fault-nth:30):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:55 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, 0x0, &(0x7f0000000100)=0xffffffffffffff15)

19:58:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000200000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:55 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x3000000)

19:58:55 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xa000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:55 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x0)
close(r0)

[ 1542.168241][T28230] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
19:58:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000300000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1542.221592][T28230] FAULT_INJECTION: forcing a failure.
[ 1542.221592][T28230] name failslab, interval 1, probability 0, space 0, times 0
[ 1542.241114][T28230] CPU: 0 PID: 28230 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1542.250553][T28230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1542.261004][T28230] Call Trace:
[ 1542.264759][T28230]  dump_stack+0x172/0x1f0
[ 1542.269110][T28230]  should_fail.cold+0xa/0x15
[ 1542.273732][T28230]  ? page_to_nid.part.0+0x20/0x20
[ 1542.278824][T28230]  ? fault_create_debugfs_attr+0x180/0x180
[ 1542.284822][T28230]  ? page_to_nid.part.0+0x20/0x20
[ 1542.289981][T28230]  ? ___might_sleep+0x163/0x280
[ 1542.294830][T28230]  __should_failslab+0x121/0x190
[ 1542.294846][T28230]  should_failslab+0x9/0x14
[ 1542.294863][T28230]  kmem_cache_alloc+0x2aa/0x710
[ 1542.309148][T28230]  ? memcpy+0x46/0x50
[ 1542.313154][T28230]  ? kstrdup+0x5a/0x70
[ 1542.317707][T28230]  __kernfs_new_node+0xf0/0x6c0
[ 1542.322574][T28230]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1542.328917][T28230]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1542.334398][T28230]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1542.334422][T28230]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1542.334435][T28230]  ? __kasan_check_read+0x11/0x20
[ 1542.334450][T28230]  ? __kasan_check_write+0x14/0x20
[ 1542.334466][T28230]  kernfs_new_node+0x96/0x120
[ 1542.350429][T28230]  kernfs_create_link+0xd7/0x250
[ 1542.350448][T28230]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1542.350465][T28230]  sysfs_create_link+0x65/0xc0
[ 1542.362721][T28230]  device_add+0x75c/0x17a0
[ 1542.362738][T28230]  ? uevent_show+0x370/0x370
[ 1542.362750][T28230]  ? start_creating+0x116/0x1d0
[ 1542.362774][T28230]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1542.362789][T28230]  hci_register_dev+0x2e8/0x8f0
[ 1542.362807][T28230]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1542.362825][T28230]  tty_ioctl+0xaf9/0x14f0
19:58:55 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x4000000)

19:58:55 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x5000000)

[ 1542.362837][T28230]  ? hci_uart_init_work+0x180/0x180
[ 1542.362848][T28230]  ? do_tty_hangup+0x30/0x30
[ 1542.362858][T28230]  ? tomoyo_path_number_perm+0x459/0x520
[ 1542.362878][T28230]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1542.440063][T28230]  ? tomoyo_path_number_perm+0x263/0x520
[ 1542.445892][T28230]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1542.451734][T28230]  ? __kasan_check_read+0x11/0x20
[ 1542.457287][T28230]  ? do_tty_hangup+0x30/0x30
[ 1542.461936][T28230]  do_vfs_ioctl+0xdb6/0x13e0
[ 1542.466557][T28230]  ? ioctl_preallocate+0x210/0x210
19:58:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000400000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1542.471685][T28230]  ? __fget+0x384/0x560
[ 1542.475865][T28230]  ? ksys_dup3+0x3e0/0x3e0
[ 1542.480301][T28230]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1542.486637][T28230]  ? fput_many+0x12c/0x1a0
[ 1542.486654][T28230]  ? tomoyo_file_ioctl+0x23/0x30
[ 1542.486668][T28230]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1542.486686][T28230]  ? security_file_ioctl+0x8d/0xc0
[ 1542.507695][T28230]  ksys_ioctl+0xab/0xd0
[ 1542.511866][T28230]  __x64_sys_ioctl+0x73/0xb0
[ 1542.516575][T28230]  do_syscall_64+0xfa/0x760
[ 1542.521094][T28230]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1542.527080][T28230] RIP: 0033:0x459829
[ 1542.530988][T28230] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1542.551902][T28230] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1542.560563][T28230] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1542.560570][T28230] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1542.560576][T28230] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1542.560582][T28230] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1542.560589][T28230] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:58:55 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x6000000)

[ 1542.632724][T28230] Bluetooth: Can't register HCI device
19:58:56 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1926)

19:58:56 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000500000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:56 executing program 1 (fault-call:2 fault-nth:31):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:56 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:56 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x7000000)

19:58:56 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000001c0)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback={0xfc}}, {0xa, 0x0, 0x0, @local={0xfe, 0x80, [0x0, 0x100000000000000]}}}}, 0x48)

19:58:56 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000600000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:56 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x8000000)

19:58:56 executing program 0:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000000780), 0x1000)
stat(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, 0x1, {0x7, 0x4}}, 0x50)

[ 1543.127857][T28284] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1543.197606][T28284] FAULT_INJECTION: forcing a failure.
[ 1543.197606][T28284] name failslab, interval 1, probability 0, space 0, times 0
19:58:56 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x11000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1543.287528][T28284] CPU: 0 PID: 28284 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1543.296692][T28284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1543.306755][T28284] Call Trace:
[ 1543.310067][T28284]  dump_stack+0x172/0x1f0
[ 1543.314419][T28284]  should_fail.cold+0xa/0x15
[ 1543.319033][T28284]  ? fault_create_debugfs_attr+0x180/0x180
[ 1543.324866][T28284]  ? page_to_nid.part.0+0x20/0x20
[ 1543.329908][T28284]  ? ___might_sleep+0x163/0x280
[ 1543.334863][T28284]  __should_failslab+0x121/0x190
[ 1543.339840][T28284]  should_failslab+0x9/0x14
[ 1543.344353][T28284]  __kmalloc_track_caller+0x2dc/0x760
[ 1543.349912][T28284]  ? __kasan_check_read+0x11/0x20
[ 1543.352692][T28301] fuse: Bad value for 'subtype'
[ 1543.355030][T28284]  ? __mutex_lock+0x45d/0x13c0
[ 1543.355045][T28284]  ? kstrdup_const+0x66/0x80
[ 1543.355059][T28284]  kstrdup+0x3a/0x70
[ 1543.355072][T28284]  kstrdup_const+0x66/0x80
[ 1543.355086][T28284]  __kernfs_new_node+0xb1/0x6c0
[ 1543.355107][T28284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1543.372979][T28303] fuse: Bad value for 'subtype'
[ 1543.374327][T28284]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1543.374342][T28284]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1543.374361][T28284]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1543.374375][T28284]  ? __kasan_check_read+0x11/0x20
[ 1543.374389][T28284]  ? __kasan_check_write+0x14/0x20
[ 1543.374408][T28284]  kernfs_new_node+0x96/0x120
[ 1543.430369][T28284]  kernfs_create_link+0xd7/0x250
[ 1543.435309][T28284]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1543.441748][T28284]  sysfs_create_link+0x65/0xc0
[ 1543.446604][T28284]  device_add+0x75c/0x17a0
[ 1543.451149][T28284]  ? uevent_show+0x370/0x370
[ 1543.455732][T28284]  ? start_creating+0x116/0x1d0
[ 1543.460582][T28284]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1543.467070][T28284]  hci_register_dev+0x2e8/0x8f0
[ 1543.472217][T28284]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1543.477226][T28284]  tty_ioctl+0xaf9/0x14f0
[ 1543.481536][T28284]  ? hci_uart_init_work+0x180/0x180
[ 1543.486926][T28284]  ? do_tty_hangup+0x30/0x30
[ 1543.491496][T28284]  ? tomoyo_path_number_perm+0x459/0x520
[ 1543.497112][T28284]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1543.503603][T28284]  ? tomoyo_path_number_perm+0x263/0x520
[ 1543.511067][T28284]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1543.517055][T28284]  ? __kasan_check_read+0x11/0x20
[ 1543.522064][T28284]  ? do_tty_hangup+0x30/0x30
[ 1543.527927][T28284]  do_vfs_ioctl+0xdb6/0x13e0
[ 1543.532807][T28284]  ? ioctl_preallocate+0x210/0x210
[ 1543.538246][T28284]  ? __fget+0x384/0x560
[ 1543.543141][T28284]  ? ksys_dup3+0x3e0/0x3e0
[ 1543.547736][T28284]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1543.554305][T28284]  ? fput_many+0x12c/0x1a0
[ 1543.561670][T28284]  ? tomoyo_file_ioctl+0x23/0x30
[ 1543.566598][T28284]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1543.574315][T28284]  ? security_file_ioctl+0x8d/0xc0
[ 1543.579843][T28284]  ksys_ioctl+0xab/0xd0
[ 1543.584083][T28284]  __x64_sys_ioctl+0x73/0xb0
[ 1543.591619][T28284]  do_syscall_64+0xfa/0x760
[ 1543.596728][T28284]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1543.603727][T28284] RIP: 0033:0x459829
[ 1543.609166][T28284] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1543.628760][T28284] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
19:58:56 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x40000000)

19:58:56 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000800000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1543.637154][T28284] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1543.645118][T28284] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1543.654022][T28284] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1543.662250][T28284] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1543.671949][T28284] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1543.691011][T28284] Bluetooth: Can't register HCI device
19:58:57 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1a26)

19:58:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

19:58:57 executing program 1 (fault-call:2 fault-nth:32):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:57 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x18020000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000d00000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xa0008000)

19:58:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000002800000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1544.039704][T28324] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1544.058893][T28324] FAULT_INJECTION: forcing a failure.
[ 1544.058893][T28324] name failslab, interval 1, probability 0, space 0, times 0
[ 1544.091484][T28324] CPU: 0 PID: 28324 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1544.100718][T28324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1544.110861][T28324] Call Trace:
[ 1544.114160][T28324]  dump_stack+0x172/0x1f0
[ 1544.114182][T28324]  should_fail.cold+0xa/0x15
[ 1544.114199][T28324]  ? fault_create_debugfs_attr+0x180/0x180
[ 1544.114214][T28324]  ? page_to_nid.part.0+0x20/0x20
[ 1544.114229][T28324]  ? ___might_sleep+0x163/0x280
[ 1544.114253][T28324]  __should_failslab+0x121/0x190
[ 1544.123236][T28324]  should_failslab+0x9/0x14
[ 1544.123250][T28324]  kmem_cache_alloc+0x2aa/0x710
[ 1544.123266][T28324]  ? __mutex_lock+0x45d/0x13c0
[ 1544.158981][T28324]  __kernfs_new_node+0xf0/0x6c0
[ 1544.163816][T28324]  ? kernfs_find_and_get_ns+0x26/0x70
[ 1544.169345][T28324]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1544.174801][T28324]  ? kernfs_find_and_get_ns+0x5a/0x70
[ 1544.180153][T28324]  ? __kasan_check_read+0x11/0x20
[ 1544.185160][T28324]  ? __mutex_lock+0x45d/0x13c0
[ 1544.189905][T28324]  ? lock_downgrade+0x920/0x920
[ 1544.194738][T28324]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1544.200264][T28324]  ? kernfs_activate+0x192/0x1f0
[ 1544.207975][T28324]  kernfs_new_node+0x96/0x120
[ 1544.212902][T28324]  __kernfs_create_file+0x51/0x33b
[ 1544.218085][T28324]  sysfs_add_file_mode_ns+0x222/0x560
[ 1544.225102][T28324]  sysfs_merge_group+0x1a0/0x340
[ 1544.230021][T28324]  ? sysfs_init_fs_context+0x380/0x380
[ 1544.235642][T28324]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1544.242122][T28324]  ? kernfs_create_link+0x1cc/0x250
[ 1544.248015][T28324]  dpm_sysfs_add+0x21e/0x270
[ 1544.252780][T28324]  device_add+0x9df/0x17a0
[ 1544.257199][T28324]  ? uevent_show+0x370/0x370
[ 1544.261863][T28324]  ? start_creating+0x116/0x1d0
[ 1544.266793][T28324]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1544.273189][T28324]  hci_register_dev+0x2e8/0x8f0
[ 1544.278028][T28324]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1544.283056][T28324]  tty_ioctl+0xaf9/0x14f0
[ 1544.287368][T28324]  ? hci_uart_init_work+0x180/0x180
[ 1544.292548][T28324]  ? do_tty_hangup+0x30/0x30
[ 1544.297119][T28324]  ? tomoyo_path_number_perm+0x459/0x520
[ 1544.302759][T28324]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1544.308980][T28324]  ? tomoyo_path_number_perm+0x263/0x520
[ 1544.314600][T28324]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1544.320403][T28324]  ? __kasan_check_read+0x11/0x20
[ 1544.325436][T28324]  ? do_tty_hangup+0x30/0x30
[ 1544.330010][T28324]  do_vfs_ioctl+0xdb6/0x13e0
[ 1544.334761][T28324]  ? ioctl_preallocate+0x210/0x210
[ 1544.339857][T28324]  ? __fget+0x384/0x560
[ 1544.344005][T28324]  ? ksys_dup3+0x3e0/0x3e0
[ 1544.348424][T28324]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1544.354647][T28324]  ? fput_many+0x12c/0x1a0
[ 1544.359049][T28324]  ? tomoyo_file_ioctl+0x23/0x30
[ 1544.363978][T28324]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1544.370216][T28324]  ? security_file_ioctl+0x8d/0xc0
[ 1544.375309][T28324]  ksys_ioctl+0xab/0xd0
[ 1544.379890][T28324]  __x64_sys_ioctl+0x73/0xb0
[ 1544.384983][T28324]  do_syscall_64+0xfa/0x760
[ 1544.389470][T28324]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1544.395873][T28324] RIP: 0033:0x459829
[ 1544.399766][T28324] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1544.419349][T28324] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1544.427739][T28324] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
19:58:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xa0010000)

[ 1544.435799][T28324] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1544.443773][T28324] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1544.453203][T28324] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1544.461156][T28324] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1544.484502][T28324] Bluetooth: Can't register HCI device
19:58:57 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x40000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000002900000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:57 executing program 1 (fault-call:2 fault-nth:33):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xff000000)

[ 1544.681412][T28352] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1544.724458][T28352] FAULT_INJECTION: forcing a failure.
[ 1544.724458][T28352] name failslab, interval 1, probability 0, space 0, times 0
[ 1544.738568][T28352] CPU: 1 PID: 28352 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1544.747741][T28352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1544.757918][T28352] Call Trace:
[ 1544.761235][T28352]  dump_stack+0x172/0x1f0
[ 1544.765670][T28352]  should_fail.cold+0xa/0x15
[ 1544.770285][T28352]  ? fault_create_debugfs_attr+0x180/0x180
[ 1544.776382][T28352]  ? page_to_nid.part.0+0x20/0x20
[ 1544.781430][T28352]  ? ___might_sleep+0x163/0x280
[ 1544.786302][T28352]  __should_failslab+0x121/0x190
[ 1544.791262][T28352]  should_failslab+0x9/0x14
[ 1544.795786][T28352]  kmem_cache_alloc+0x2aa/0x710
[ 1544.800741][T28352]  ? __mutex_lock+0x45d/0x13c0
[ 1544.805501][T28352]  __kernfs_new_node+0xf0/0x6c0
[ 1544.810429][T28352]  ? kernfs_find_and_get_ns+0x26/0x70
[ 1544.816098][T28352]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1544.821673][T28352]  ? kernfs_find_and_get_ns+0x5a/0x70
[ 1544.827041][T28352]  ? __kasan_check_read+0x11/0x20
[ 1544.832055][T28352]  ? __mutex_lock+0x45d/0x13c0
[ 1544.836803][T28352]  ? lock_downgrade+0x920/0x920
[ 1544.841661][T28352]  ? mutex_lock_io_nested+0x1260/0x1260
[ 1544.847219][T28352]  ? kernfs_activate+0x192/0x1f0
[ 1544.852163][T28352]  kernfs_new_node+0x96/0x120
[ 1544.857147][T28352]  __kernfs_create_file+0x51/0x33b
[ 1544.862245][T28352]  sysfs_add_file_mode_ns+0x222/0x560
[ 1544.867622][T28352]  sysfs_merge_group+0x1a0/0x340
[ 1544.872564][T28352]  ? sysfs_init_fs_context+0x380/0x380
[ 1544.878020][T28352]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1544.884249][T28352]  ? kernfs_create_link+0x1cc/0x250
[ 1544.889453][T28352]  dpm_sysfs_add+0x21e/0x270
[ 1544.894031][T28352]  device_add+0x9df/0x17a0
[ 1544.898469][T28352]  ? uevent_show+0x370/0x370
[ 1544.903045][T28352]  ? start_creating+0x116/0x1d0
[ 1544.907879][T28352]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1544.914113][T28352]  hci_register_dev+0x2e8/0x8f0
[ 1544.918960][T28352]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1544.924000][T28352]  tty_ioctl+0xaf9/0x14f0
[ 1544.928511][T28352]  ? hci_uart_init_work+0x180/0x180
[ 1544.933707][T28352]  ? do_tty_hangup+0x30/0x30
[ 1544.938277][T28352]  ? tomoyo_path_number_perm+0x459/0x520
[ 1544.943891][T28352]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1544.950111][T28352]  ? tomoyo_path_number_perm+0x263/0x520
[ 1544.956179][T28352]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1544.962120][T28352]  ? __kasan_check_read+0x11/0x20
[ 1544.967378][T28352]  ? do_tty_hangup+0x30/0x30
[ 1544.971957][T28352]  do_vfs_ioctl+0xdb6/0x13e0
[ 1544.976545][T28352]  ? ioctl_preallocate+0x210/0x210
[ 1544.981648][T28352]  ? __fget+0x384/0x560
[ 1544.985809][T28352]  ? ksys_dup3+0x3e0/0x3e0
[ 1544.990217][T28352]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1544.996906][T28352]  ? fput_many+0x12c/0x1a0
[ 1545.001359][T28352]  ? tomoyo_file_ioctl+0x23/0x30
[ 1545.006624][T28352]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1545.017676][T28352]  ? security_file_ioctl+0x8d/0xc0
[ 1545.022790][T28352]  ksys_ioctl+0xab/0xd0
[ 1545.026928][T28352]  __x64_sys_ioctl+0x73/0xb0
[ 1545.031500][T28352]  do_syscall_64+0xfa/0x760
[ 1545.036011][T28352]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1545.042267][T28352] RIP: 0033:0x459829
[ 1545.046144][T28352] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1545.065975][T28352] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1545.074372][T28352] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1545.082323][T28352] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1545.090496][T28352] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1545.098552][T28352] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1545.106506][T28352] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:58:58 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2000)

19:58:58 executing program 0:
gettid()
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @mcast1, 0x100000000004}, 0x1c)
connect(r0, &(0x7f00000001c0)=@in={0x2, 0x4e20, @local}, 0x80)
sendmmsg(r0, &(0x7f00000002c0), 0x4000000000000d7, 0x0)
ioctl$sock_inet_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000000))

19:58:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000002b00000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:58 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x40020000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:58 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x1a0ffffffff)

[ 1545.121804][T28352] Bluetooth: Can't register HCI device
19:58:58 executing program 1 (fault-call:2 fault-nth:34):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000002c00000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:58 executing program 0:
socket$inet_sctp(0x2, 0x0, 0x84)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r0, &(0x7f00000000c0)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x0, 0x0, @loopback}}, 0x24)
listen(r0, 0x9)
syz_open_dev$media(0x0, 0x0, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

19:58:58 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x7ffffffff000)

[ 1545.378804][T28384] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
19:58:58 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x48000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1545.430145][T28384] FAULT_INJECTION: forcing a failure.
[ 1545.430145][T28384] name failslab, interval 1, probability 0, space 0, times 0
[ 1545.474178][T28384] CPU: 1 PID: 28384 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1545.483634][T28384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1545.493699][T28384] Call Trace:
[ 1545.497015][T28384]  dump_stack+0x172/0x1f0
[ 1545.501370][T28384]  should_fail.cold+0xa/0x15
[ 1545.505981][T28384]  ? fault_create_debugfs_attr+0x180/0x180
[ 1545.512002][T28384]  ? page_to_nid.part.0+0x20/0x20
[ 1545.517411][T28384]  ? ___might_sleep+0x163/0x280
19:58:58 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
close(r0)
timerfd_create(0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1545.522311][T28384]  __should_failslab+0x121/0x190
[ 1545.527275][T28384]  should_failslab+0x9/0x14
[ 1545.531794][T28384]  kmem_cache_alloc+0x2aa/0x710
[ 1545.536651][T28384]  ? __mutex_lock+0x45d/0x13c0
[ 1545.541443][T28384]  __kernfs_new_node+0xf0/0x6c0
[ 1545.546403][T28384]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1545.552158][T28384]  ? wait_for_completion+0x440/0x440
[ 1545.557455][T28384]  ? mutex_unlock+0xd/0x10
[ 1545.561856][T28384]  ? kernfs_activate+0x192/0x1f0
[ 1545.567794][T28384]  kernfs_new_node+0x96/0x120
[ 1545.572477][T28384]  __kernfs_create_file+0x51/0x33b
[ 1545.577609][T28384]  sysfs_add_file_mode_ns+0x222/0x560
[ 1545.583005][T28384]  sysfs_merge_group+0x1a0/0x340
[ 1545.590029][T28384]  ? sysfs_init_fs_context+0x380/0x380
[ 1545.595867][T28384]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1545.602737][T28384]  ? kernfs_create_link+0x1cc/0x250
[ 1545.607941][T28384]  dpm_sysfs_add+0x21e/0x270
[ 1545.612565][T28384]  device_add+0x9df/0x17a0
[ 1545.616980][T28384]  ? uevent_show+0x370/0x370
[ 1545.621547][T28384]  ? start_creating+0x116/0x1d0
[ 1545.626384][T28384]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1545.632845][T28384]  hci_register_dev+0x2e8/0x8f0
[ 1545.637826][T28384]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1545.643210][T28384]  tty_ioctl+0xaf9/0x14f0
[ 1545.647736][T28384]  ? hci_uart_init_work+0x180/0x180
[ 1545.652932][T28384]  ? do_tty_hangup+0x30/0x30
[ 1545.657511][T28384]  ? tomoyo_path_number_perm+0x459/0x520
[ 1545.663371][T28384]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1545.671092][T28384]  ? tomoyo_path_number_perm+0x263/0x520
[ 1545.677586][T28384]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1545.686728][T28384]  ? __kasan_check_read+0x11/0x20
[ 1545.692402][T28384]  ? do_tty_hangup+0x30/0x30
[ 1545.697713][T28384]  do_vfs_ioctl+0xdb6/0x13e0
[ 1545.702322][T28384]  ? ioctl_preallocate+0x210/0x210
[ 1545.709508][T28384]  ? __fget+0x384/0x560
[ 1545.713786][T28384]  ? ksys_dup3+0x3e0/0x3e0
[ 1545.718205][T28384]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1545.724434][T28384]  ? fput_many+0x12c/0x1a0
[ 1545.728858][T28384]  ? tomoyo_file_ioctl+0x23/0x30
[ 1545.733806][T28384]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1545.740035][T28384]  ? security_file_ioctl+0x8d/0xc0
[ 1545.745144][T28384]  ksys_ioctl+0xab/0xd0
[ 1545.749287][T28384]  __x64_sys_ioctl+0x73/0xb0
[ 1545.753860][T28384]  do_syscall_64+0xfa/0x760
[ 1545.758353][T28384]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1545.765157][T28384] RIP: 0033:0x459829
[ 1545.769070][T28384] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1545.789653][T28384] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1545.798048][T28384] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1545.807800][T28384] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1545.815757][T28384] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
19:58:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000002f00000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1545.823717][T28384] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1545.831689][T28384] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1545.842655][T28384] Bluetooth: Can't register HCI device
19:58:59 executing program 1 (fault-call:2 fault-nth:35):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x8000a0ffffffff)

19:58:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000003c00000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x58010000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:59 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x260d)

19:58:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:58:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000006000000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1546.143131][T28427] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1546.177309][T28427] FAULT_INJECTION: forcing a failure.
[ 1546.177309][T28427] name failslab, interval 1, probability 0, space 0, times 0
[ 1546.221944][T28427] CPU: 0 PID: 28427 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1546.231182][T28427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1546.241254][T28427] Call Trace:
[ 1546.244562][T28427]  dump_stack+0x172/0x1f0
[ 1546.249008][T28427]  should_fail.cold+0xa/0x15
[ 1546.254243][T28427]  ? fault_create_debugfs_attr+0x180/0x180
[ 1546.260061][T28427]  ? page_to_nid.part.0+0x20/0x20
[ 1546.265102][T28427]  ? ___might_sleep+0x163/0x280
[ 1546.270056][T28427]  __should_failslab+0x121/0x190
[ 1546.274986][T28427]  should_failslab+0x9/0x14
[ 1546.274998][T28427]  kmem_cache_alloc+0x2aa/0x710
[ 1546.275009][T28427]  ? __mutex_lock+0x45d/0x13c0
[ 1546.275028][T28427]  __kernfs_new_node+0xf0/0x6c0
[ 1546.275044][T28427]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1546.275056][T28427]  ? wait_for_completion+0x440/0x440
[ 1546.275073][T28427]  ? mutex_unlock+0xd/0x10
[ 1546.275084][T28427]  ? kernfs_activate+0x192/0x1f0
[ 1546.275097][T28427]  kernfs_new_node+0x96/0x120
[ 1546.275112][T28427]  __kernfs_create_file+0x51/0x33b
[ 1546.275125][T28427]  sysfs_add_file_mode_ns+0x222/0x560
[ 1546.275145][T28427]  sysfs_merge_group+0x1a0/0x340
[ 1546.335669][T28427]  ? sysfs_init_fs_context+0x380/0x380
[ 1546.335684][T28427]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1546.335696][T28427]  ? kernfs_create_link+0x1cc/0x250
[ 1546.335715][T28427]  dpm_sysfs_add+0x21e/0x270
[ 1546.335730][T28427]  device_add+0x9df/0x17a0
19:58:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xf0ffffff7f0000)

19:58:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

[ 1546.335747][T28427]  ? uevent_show+0x370/0x370
[ 1546.335758][T28427]  ? start_creating+0x116/0x1d0
[ 1546.335777][T28427]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1546.384406][T28427]  hci_register_dev+0x2e8/0x8f0
[ 1546.389298][T28427]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1546.394436][T28427]  tty_ioctl+0xaf9/0x14f0
[ 1546.398785][T28427]  ? hci_uart_init_work+0x180/0x180
[ 1546.404002][T28427]  ? do_tty_hangup+0x30/0x30
[ 1546.408866][T28427]  ? tomoyo_path_number_perm+0x459/0x520
[ 1546.414515][T28427]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1546.420741][T28427]  ? tomoyo_path_number_perm+0x263/0x520
[ 1546.426431][T28427]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1546.432242][T28427]  ? __kasan_check_read+0x11/0x20
[ 1546.437367][T28427]  ? do_tty_hangup+0x30/0x30
[ 1546.442029][T28427]  do_vfs_ioctl+0xdb6/0x13e0
[ 1546.446625][T28427]  ? ioctl_preallocate+0x210/0x210
[ 1546.451815][T28427]  ? __fget+0x384/0x560
[ 1546.455955][T28427]  ? ksys_dup3+0x3e0/0x3e0
[ 1546.460371][T28427]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1546.466609][T28427]  ? fput_many+0x12c/0x1a0
[ 1546.471010][T28427]  ? tomoyo_file_ioctl+0x23/0x30
[ 1546.476391][T28427]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1546.482966][T28427]  ? security_file_ioctl+0x8d/0xc0
[ 1546.488084][T28427]  ksys_ioctl+0xab/0xd0
[ 1546.492234][T28427]  __x64_sys_ioctl+0x73/0xb0
[ 1546.496833][T28427]  do_syscall_64+0xfa/0x760
[ 1546.501321][T28427]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1546.507205][T28427] RIP: 0033:0x459829
[ 1546.511086][T28427] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1546.530679][T28427] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1546.539070][T28427] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1546.547206][T28427] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1546.556028][T28427] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1546.563989][T28427] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
19:58:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x6d000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:58:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x100000000000000)

[ 1546.571952][T28427] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1546.607019][T28427] Bluetooth: Can't register HCI device
19:58:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000f000000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:58:59 executing program 1 (fault-call:2 fault-nth:36):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:58:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:58:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x200000000000000)

19:58:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000a001000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1546.896149][T28467] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1546.946040][T28467] FAULT_INJECTION: forcing a failure.
[ 1546.946040][T28467] name failslab, interval 1, probability 0, space 0, times 0
[ 1546.959064][T28467] CPU: 0 PID: 28467 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1546.968227][T28467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1546.978284][T28467] Call Trace:
[ 1546.981605][T28467]  dump_stack+0x172/0x1f0
[ 1546.985973][T28467]  should_fail.cold+0xa/0x15
[ 1546.990579][T28467]  ? fault_create_debugfs_attr+0x180/0x180
[ 1546.996496][T28467]  ? page_to_nid.part.0+0x20/0x20
[ 1547.001517][T28467]  ? ___might_sleep+0x163/0x280
[ 1547.006388][T28467]  __should_failslab+0x121/0x190
[ 1547.011519][T28467]  should_failslab+0x9/0x14
[ 1547.016028][T28467]  kmem_cache_alloc+0x2aa/0x710
[ 1547.020889][T28467]  ? __mutex_lock+0x45d/0x13c0
[ 1547.025673][T28467]  __kernfs_new_node+0xf0/0x6c0
[ 1547.030549][T28467]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1547.036019][T28467]  ? wait_for_completion+0x440/0x440
[ 1547.041320][T28467]  ? mutex_unlock+0xd/0x10
[ 1547.045781][T28467]  ? kernfs_activate+0x192/0x1f0
[ 1547.050730][T28467]  kernfs_new_node+0x96/0x120
[ 1547.055416][T28467]  __kernfs_create_file+0x51/0x33b
[ 1547.060544][T28467]  sysfs_add_file_mode_ns+0x222/0x560
[ 1547.065915][T28467]  sysfs_merge_group+0x1a0/0x340
[ 1547.071162][T28467]  ? sysfs_init_fs_context+0x380/0x380
[ 1547.077054][T28467]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1547.083658][T28467]  ? kernfs_create_link+0x1cc/0x250
[ 1547.088981][T28467]  dpm_sysfs_add+0x21e/0x270
[ 1547.093555][T28467]  device_add+0x9df/0x17a0
[ 1547.098134][T28467]  ? uevent_show+0x370/0x370
[ 1547.102833][T28467]  ? start_creating+0x116/0x1d0
[ 1547.107673][T28467]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1547.113995][T28467]  hci_register_dev+0x2e8/0x8f0
[ 1547.119102][T28467]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1547.124989][T28467]  tty_ioctl+0xaf9/0x14f0
[ 1547.129375][T28467]  ? hci_uart_init_work+0x180/0x180
[ 1547.136276][T28467]  ? do_tty_hangup+0x30/0x30
[ 1547.141673][T28467]  ? tomoyo_path_number_perm+0x459/0x520
[ 1547.147685][T28467]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1547.154806][T28467]  ? tomoyo_path_number_perm+0x263/0x520
[ 1547.164332][T28467]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1547.170346][T28467]  ? __kasan_check_read+0x11/0x20
[ 1547.175398][T28467]  ? do_tty_hangup+0x30/0x30
[ 1547.180009][T28467]  do_vfs_ioctl+0xdb6/0x13e0
[ 1547.184934][T28467]  ? ioctl_preallocate+0x210/0x210
[ 1547.190028][T28467]  ? __fget+0x384/0x560
[ 1547.194185][T28467]  ? ksys_dup3+0x3e0/0x3e0
[ 1547.198611][T28467]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1547.204864][T28467]  ? fput_many+0x12c/0x1a0
[ 1547.209280][T28467]  ? tomoyo_file_ioctl+0x23/0x30
[ 1547.214696][T28467]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1547.221665][T28467]  ? security_file_ioctl+0x8d/0xc0
[ 1547.227170][T28467]  ksys_ioctl+0xab/0xd0
[ 1547.231313][T28467]  __x64_sys_ioctl+0x73/0xb0
[ 1547.235942][T28467]  do_syscall_64+0xfa/0x760
[ 1547.240709][T28467]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1547.246611][T28467] RIP: 0033:0x459829
[ 1547.250490][T28467] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1547.270078][T28467] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1547.278486][T28467] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
19:59:00 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2619)

19:59:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x300000000000000)

19:59:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xa0008000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000003000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1547.288504][T28467] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1547.304186][T28467] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1547.312320][T28467] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1547.320582][T28467] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1547.330170][T28467] Bluetooth: Can't register HCI device
19:59:00 executing program 1 (fault-call:2 fault-nth:37):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:59:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000005000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x400000000000000)

19:59:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xa0010000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1547.530379][T28490] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
19:59:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x500000000000000)

[ 1547.623533][T28490] FAULT_INJECTION: forcing a failure.
[ 1547.623533][T28490] name failslab, interval 1, probability 0, space 0, times 0
[ 1547.644363][T28490] CPU: 1 PID: 28490 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1547.653505][T28490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1547.663550][T28490] Call Trace:
[ 1547.666837][T28490]  dump_stack+0x172/0x1f0
[ 1547.671165][T28490]  should_fail.cold+0xa/0x15
[ 1547.675744][T28490]  ? fault_create_debugfs_attr+0x180/0x180
[ 1547.681989][T28490]  ? page_to_nid.part.0+0x20/0x20
[ 1547.687023][T28490]  ? ___might_sleep+0x163/0x280
[ 1547.691947][T28490]  __should_failslab+0x121/0x190
[ 1547.696905][T28490]  should_failslab+0x9/0x14
[ 1547.701502][T28490]  kmem_cache_alloc_trace+0x2d3/0x790
[ 1547.707054][T28490]  ? __kasan_check_write+0x14/0x20
[ 1547.712243][T28490]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1547.717784][T28490]  ? device_pm_check_callbacks+0x23/0x3f0
[ 1547.723501][T28490]  kobject_uevent_env+0x387/0x1023
[ 1547.728616][T28490]  kobject_uevent+0x20/0x26
[ 1547.733143][T28490]  device_add+0xad8/0x17a0
[ 1547.737823][T28490]  ? uevent_show+0x370/0x370
[ 1547.742418][T28490]  ? start_creating+0x116/0x1d0
[ 1547.747276][T28490]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1547.753774][T28490]  hci_register_dev+0x2e8/0x8f0
[ 1547.758616][T28490]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1547.763646][T28490]  tty_ioctl+0xaf9/0x14f0
[ 1547.767964][T28490]  ? hci_uart_init_work+0x180/0x180
[ 1547.773169][T28490]  ? do_tty_hangup+0x30/0x30
[ 1547.778738][T28490]  ? tomoyo_path_number_perm+0x459/0x520
[ 1547.784404][T28490]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1547.790639][T28490]  ? tomoyo_path_number_perm+0x263/0x520
[ 1547.796489][T28490]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1547.802300][T28490]  ? __kasan_check_read+0x11/0x20
[ 1547.807665][T28490]  ? do_tty_hangup+0x30/0x30
[ 1547.812242][T28490]  do_vfs_ioctl+0xdb6/0x13e0
[ 1547.816903][T28490]  ? ioctl_preallocate+0x210/0x210
[ 1547.821995][T28490]  ? __fget+0x384/0x560
[ 1547.826404][T28490]  ? ksys_dup3+0x3e0/0x3e0
[ 1547.830804][T28490]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1547.837054][T28490]  ? fput_many+0x12c/0x1a0
[ 1547.842009][T28490]  ? tomoyo_file_ioctl+0x23/0x30
[ 1547.846944][T28490]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1547.853187][T28490]  ? security_file_ioctl+0x8d/0xc0
[ 1547.858310][T28490]  ksys_ioctl+0xab/0xd0
[ 1547.862469][T28490]  __x64_sys_ioctl+0x73/0xb0
[ 1547.867047][T28490]  do_syscall_64+0xfa/0x760
[ 1547.871557][T28490]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1547.877430][T28490] RIP: 0033:0x459829
[ 1547.881308][T28490] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1547.900910][T28490] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1547.909411][T28490] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1547.917366][T28490] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1547.925329][T28490] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1547.933283][T28490] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1547.941252][T28490] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1547.967900][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
19:59:01 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x261a)

19:59:01 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000004305000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:01 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xb0100200, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:01 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:01 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x600000000000000)

[ 1550.023754][T19893] Bluetooth: hci0: command 0x1003 tx timeout
[ 1550.029870][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1552.103769][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1552.109904][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1554.183789][T19893] Bluetooth: hci0: command 0x1009 tx timeout
19:59:11 executing program 1 (fault-call:2 fault-nth:38):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:59:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x700000000000000)

19:59:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000006000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:11 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000))

19:59:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xc2ffffff, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:11 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2f00)

19:59:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000806000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:11 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000))

19:59:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x800000000000000)

[ 1558.296355][T28553] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
19:59:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xd01001ff, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008906000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:11 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000))

[ 1558.358782][T28553] FAULT_INJECTION: forcing a failure.
[ 1558.358782][T28553] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1558.373678][T28553] CPU: 1 PID: 28553 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1558.382963][T28553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1558.393117][T28553] Call Trace:
[ 1558.396428][T28553]  dump_stack+0x172/0x1f0
[ 1558.400778][T28553]  should_fail.cold+0xa/0x15
[ 1558.405493][T28553]  ? rwlock_bug.part.0+0x90/0x90
[ 1558.410526][T28553]  ? fault_create_debugfs_attr+0x180/0x180
[ 1558.416316][T28553]  ? trace_hardirqs_on+0x67/0x240
[ 1558.421325][T28553]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1558.428835][T28553]  should_fail_alloc_page+0x50/0x60
[ 1558.434044][T28553]  __alloc_pages_nodemask+0x1a1/0x900
[ 1558.439704][T28553]  ? __alloc_pages_slowpath+0x2520/0x2520
[ 1558.445419][T28553]  ? fs_reclaim_acquire.part.0+0x30/0x30
[ 1558.451052][T28553]  ? __kasan_check_read+0x11/0x20
[ 1558.456505][T28553]  ? fault_create_debugfs_attr+0x180/0x180
[ 1558.462336][T28553]  cache_grow_begin+0x90/0xd20
[ 1558.467139][T28553]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1558.473889][T28553]  kmem_cache_alloc_trace+0x6b3/0x790
[ 1558.479260][T28553]  ? __kasan_check_write+0x14/0x20
[ 1558.484372][T28553]  kobject_uevent_env+0x387/0x1023
[ 1558.489488][T28553]  kobject_uevent+0x20/0x26
[ 1558.493978][T28553]  device_add+0xad8/0x17a0
[ 1558.498378][T28553]  ? uevent_show+0x370/0x370
[ 1558.503183][T28553]  ? start_creating+0x116/0x1d0
[ 1558.508031][T28553]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1558.514390][T28553]  hci_register_dev+0x2e8/0x8f0
[ 1558.519254][T28553]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1558.526875][T28553]  tty_ioctl+0xaf9/0x14f0
[ 1558.535871][T28553]  ? hci_uart_init_work+0x180/0x180
[ 1558.541470][T28553]  ? do_tty_hangup+0x30/0x30
[ 1558.546213][T28553]  ? tomoyo_path_number_perm+0x459/0x520
[ 1558.551837][T28553]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1558.558071][T28553]  ? tomoyo_path_number_perm+0x263/0x520
[ 1558.563692][T28553]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1558.569753][T28553]  ? __kasan_check_read+0x11/0x20
[ 1558.574781][T28553]  ? do_tty_hangup+0x30/0x30
[ 1558.579373][T28553]  do_vfs_ioctl+0xdb6/0x13e0
[ 1558.584633][T28553]  ? ioctl_preallocate+0x210/0x210
[ 1558.593949][T28553]  ? __fget+0x384/0x560
[ 1558.602155][T28553]  ? ksys_dup3+0x3e0/0x3e0
[ 1558.608598][T28553]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1558.614890][T28553]  ? fput_many+0x12c/0x1a0
[ 1558.619321][T28553]  ? tomoyo_file_ioctl+0x23/0x30
[ 1558.624265][T28553]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1558.630494][T28553]  ? security_file_ioctl+0x8d/0xc0
[ 1558.635588][T28553]  ksys_ioctl+0xab/0xd0
[ 1558.639741][T28553]  __x64_sys_ioctl+0x73/0xb0
[ 1558.644675][T28553]  do_syscall_64+0xfa/0x760
[ 1558.649398][T28553]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1558.658501][T28553] RIP: 0033:0x459829
[ 1558.666272][T28553] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1558.685868][T28553] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1558.695248][T28553] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1558.703224][T28553] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1558.711186][T28553] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1558.719163][T28553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1558.727312][T28553] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1560.743695][ T9958] Bluetooth: hci0: command 0x1003 tx timeout
[ 1560.750958][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1562.823836][ T9958] Bluetooth: hci0: command 0x1001 tx timeout
[ 1562.834295][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1564.903892][T19893] Bluetooth: hci0: command 0x1009 tx timeout
19:59:22 executing program 1 (fault-call:2 fault-nth:39):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:59:22 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x4000000000000000)

19:59:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:22 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000608000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:22 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xd0100200, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:22 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3e00)

19:59:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:22 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xff00000000000000)

19:59:22 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000d000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1569.183180][T28596] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1569.214966][T28596] FAULT_INJECTION: forcing a failure.
[ 1569.214966][T28596] name fail_page_alloc, interval 1, probability 0, space 0, times 0
19:59:22 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xd0300200, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1569.228308][T28596] CPU: 1 PID: 28596 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1569.237515][T28596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1569.249558][T28596] Call Trace:
[ 1569.252954][T28596]  dump_stack+0x172/0x1f0
[ 1569.257842][T28596]  should_fail.cold+0xa/0x15
[ 1569.265977][T28596]  ? rwlock_bug.part.0+0x90/0x90
[ 1569.273121][T28596]  ? fault_create_debugfs_attr+0x180/0x180
[ 1569.279059][T28596]  ? trace_hardirqs_on+0x67/0x240
[ 1569.284749][T28596]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1569.291130][T28596]  should_fail_alloc_page+0x50/0x60
[ 1569.296535][T28596]  __alloc_pages_nodemask+0x1a1/0x900
[ 1569.301928][T28596]  ? __alloc_pages_slowpath+0x2520/0x2520
[ 1569.307659][T28596]  ? fs_reclaim_acquire.part.0+0x30/0x30
[ 1569.313739][T28596]  ? __kasan_check_read+0x11/0x20
[ 1569.318789][T28596]  ? fault_create_debugfs_attr+0x180/0x180
[ 1569.324608][T28596]  cache_grow_begin+0x90/0xd20
[ 1569.329447][T28596]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1569.343704][T28596]  kmem_cache_alloc_trace+0x6b3/0x790
[ 1569.349243][T28596]  ? __kasan_check_write+0x14/0x20
[ 1569.354435][T28596]  kobject_uevent_env+0x387/0x1023
[ 1569.359672][T28596]  kobject_uevent+0x20/0x26
[ 1569.364198][T28596]  device_add+0xad8/0x17a0
[ 1569.368882][T28596]  ? uevent_show+0x370/0x370
[ 1569.373550][T28596]  ? start_creating+0x116/0x1d0
[ 1569.378419][T28596]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1569.384728][T28596]  hci_register_dev+0x2e8/0x8f0
[ 1569.389600][T28596]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1569.394620][T28596]  tty_ioctl+0xaf9/0x14f0
[ 1569.399009][T28596]  ? hci_uart_init_work+0x180/0x180
[ 1569.404352][T28596]  ? do_tty_hangup+0x30/0x30
[ 1569.409051][T28596]  ? tomoyo_path_number_perm+0x459/0x520
[ 1569.414784][T28596]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1569.421136][T28596]  ? tomoyo_path_number_perm+0x263/0x520
[ 1569.427261][T28596]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1569.433720][T28596]  ? __kasan_check_read+0x11/0x20
[ 1569.438761][T28596]  ? do_tty_hangup+0x30/0x30
[ 1569.443658][T28596]  do_vfs_ioctl+0xdb6/0x13e0
[ 1569.449159][T28596]  ? ioctl_preallocate+0x210/0x210
[ 1569.455667][T28596]  ? __fget+0x384/0x560
[ 1569.459881][T28596]  ? ksys_dup3+0x3e0/0x3e0
[ 1569.464403][T28596]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1569.470962][T28596]  ? fput_many+0x12c/0x1a0
[ 1569.475380][T28596]  ? tomoyo_file_ioctl+0x23/0x30
[ 1569.480324][T28596]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1569.487226][T28596]  ? security_file_ioctl+0x8d/0xc0
[ 1569.492895][T28596]  ksys_ioctl+0xab/0xd0
[ 1569.497061][T28596]  __x64_sys_ioctl+0x73/0xb0
[ 1569.501659][T28596]  do_syscall_64+0xfa/0x760
[ 1569.506146][T28596]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1569.512129][T28596] RIP: 0033:0x459829
[ 1569.516121][T28596] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1569.535880][T28596] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1569.544457][T28596] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1569.552586][T28596] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1569.560696][T28596] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1569.569465][T28596] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1569.577544][T28596] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:59:22 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xffffffffa0008000)

[ 1569.597676][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
19:59:22 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

[ 1571.633974][ T9958] Bluetooth: hci0: command 0x1003 tx timeout
[ 1571.640655][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1573.703770][ T9958] Bluetooth: hci0: command 0x1001 tx timeout
[ 1573.710272][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1575.783794][T25754] Bluetooth: hci0: command 0x1009 tx timeout
19:59:33 executing program 1 (fault-call:2 fault-nth:40):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:59:33 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000800e000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:33 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:33 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xffffffffa0010000)

19:59:33 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe8030000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:33 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3f00)

19:59:33 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xffffffffffffffff)

19:59:33 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:33 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000028000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1580.056984][T28640] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1580.073105][T28640] FAULT_INJECTION: forcing a failure.
[ 1580.073105][T28640] name failslab, interval 1, probability 0, space 0, times 0
[ 1580.090218][T28640] CPU: 0 PID: 28640 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1580.099688][T28640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1580.110744][T28640] Call Trace:
[ 1580.114159][T28640]  dump_stack+0x172/0x1f0
[ 1580.118510][T28640]  should_fail.cold+0xa/0x15
[ 1580.123087][T28640]  ? fault_create_debugfs_attr+0x180/0x180
[ 1580.129031][T28640]  ? page_to_nid.part.0+0x20/0x20
[ 1580.134420][T28640]  ? ___might_sleep+0x163/0x280
[ 1580.139719][T28640]  __should_failslab+0x121/0x190
[ 1580.144642][T28640]  should_failslab+0x9/0x14
[ 1580.149575][T28640]  __kmalloc+0x2e0/0x770
[ 1580.153806][T28640]  ? kasan_kmalloc+0x9/0x10
[ 1580.158640][T28640]  ? kobject_get_path+0xc4/0x1b0
[ 1580.163791][T28640]  kobject_get_path+0xc4/0x1b0
[ 1580.169453][T28640]  kobject_uevent_env+0x3ab/0x1023
[ 1580.175443][T28640]  kobject_uevent+0x20/0x26
[ 1580.180049][T28640]  device_add+0xad8/0x17a0
[ 1580.184953][T28640]  ? uevent_show+0x370/0x370
[ 1580.190070][T28640]  ? start_creating+0x116/0x1d0
[ 1580.195258][T28640]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1580.201486][T28640]  hci_register_dev+0x2e8/0x8f0
[ 1580.206427][T28640]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1580.211612][T28640]  tty_ioctl+0xaf9/0x14f0
[ 1580.216110][T28640]  ? hci_uart_init_work+0x180/0x180
[ 1580.222174][T28640]  ? do_tty_hangup+0x30/0x30
[ 1580.226770][T28640]  ? tomoyo_path_number_perm+0x459/0x520
[ 1580.232474][T28640]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1580.238701][T28640]  ? tomoyo_path_number_perm+0x263/0x520
[ 1580.244314][T28640]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1580.250121][T28640]  ? __kasan_check_read+0x11/0x20
[ 1580.255143][T28640]  ? do_tty_hangup+0x30/0x30
[ 1580.259715][T28640]  do_vfs_ioctl+0xdb6/0x13e0
[ 1580.264309][T28640]  ? ioctl_preallocate+0x210/0x210
[ 1580.269401][T28640]  ? __fget+0x384/0x560
[ 1580.273592][T28640]  ? ksys_dup3+0x3e0/0x3e0
[ 1580.278090][T28640]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1580.284330][T28640]  ? fput_many+0x12c/0x1a0
[ 1580.288731][T28640]  ? tomoyo_file_ioctl+0x23/0x30
[ 1580.293649][T28640]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1580.299873][T28640]  ? security_file_ioctl+0x8d/0xc0
[ 1580.305306][T28640]  ksys_ioctl+0xab/0xd0
[ 1580.309452][T28640]  __x64_sys_ioctl+0x73/0xb0
[ 1580.314033][T28640]  do_syscall_64+0xfa/0x760
[ 1580.318529][T28640]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1580.324401][T28640] RIP: 0033:0x459829
[ 1580.328367][T28640] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1580.356203][T28640] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1580.365174][T28640] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1580.373457][T28640] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1580.381417][T28640] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1580.389469][T28640] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1580.397518][T28640] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:59:33 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xf4010000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:33 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000029000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:33 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

[ 1580.514422][T20533] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1582.583714][ T9958] Bluetooth: hci0: command 0x1003 tx timeout
[ 1582.589844][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1584.663775][ T9958] Bluetooth: hci0: command 0x1001 tx timeout
[ 1584.669936][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1586.743799][T19893] Bluetooth: hci0: command 0x1009 tx timeout
19:59:43 executing program 1 (fault-call:2 fault-nth:41):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:59:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x6, 0x9, 0x3f, 0x5, 0x0, 0x3, 0x200, 0x8, 0xfffffffffffff2c9, 0x8000, 0xffffffff, 0x6, 0x89, 0x5, 0x301, 0x8, 0x9, 0xfc, 0x6, 0x0, 0x6c12, 0x9, 0x7f, 0x40, 0x9, 0x8, 0x3, 0x200, 0x1, 0x7ff, 0x3f, 0x6982e15f, 0xfffffffffffffffa, 0x80000000, 0x4, 0x2, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000000), 0x2}, 0x1, 0x655, 0x1, 0x9, 0x2, 0x3, 0x4}, 0x0, 0x4, r0, 0xb)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x10000000})
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000140)='ppp1nodevsystem\\bdevvmnet1system\x00', &(0x7f0000000180)='/dev/dri/card#\x00', 0x0)

19:59:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000002b000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:43 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:43 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xff0110d0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:43 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x4000)

19:59:44 executing program 3:
r0 = creat(&(0x7f0000000140)='./file0\x00', 0x40)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000180)=[@in6={0xa, 0x4e24, 0x8, @ipv4, 0xf220}, @in6={0xa, 0x4e21, 0x6, @mcast1, 0xc3}, @in6={0xa, 0x4e24, 0xcf, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x30}, @in={0x2, 0x4e24, @multicast1}], 0x64)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000200)={0x2cf, 0x0, [], {0x0, @reserved}})
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000100)={0x91, 0x10, &(0x7f0000000000)="563931f42f7a62098d8c8b3ee1f695126d648138fa4a6af53b96cef5cf88616ae8db347927e15eaa9f8001a5a84b97b3dd49e8074a64647f91e7b2240b45be6637ceca4e24a066a75d68cea057cdf635408f51003f1b04f142f4ec81264c5881a383b572f0d5f417e9442a731af9a0fb5cf8844bbfabbc6630d884ef9d52dedcb2e41620cff7ea8640d175ce7e16839f0f5e25477695dbd1a108998f7b02741e4cd4f199dce10eeb90ec3d6d989c478b2677223118350a7fbd61f41e2af30cb33a53bffcb51142f609b6cc085862ee0e", {0x31377ff1, 0x6, 0x3a3b7d5f, 0x3, 0xffff, 0x3, 0xf}})
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000300)=0x4000, 0x4)
connect$vsock_dgram(r1, &(0x7f0000000340)={0x28, 0x0, 0xffffffff, @hyper}, 0x10)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x4000000000)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000380)={0x0, @remote, @empty}, &(0x7f00000003c0)=0xc)
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f00000002c0)=""/63)

19:59:44 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:44 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000002c000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1590.941311][T28685] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1590.966740][T28685] FAULT_INJECTION: forcing a failure.
[ 1590.966740][T28685] name failslab, interval 1, probability 0, space 0, times 0
[ 1591.007739][T28685] CPU: 1 PID: 28685 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1591.016892][T28685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1591.027588][T28685] Call Trace:
[ 1591.030922][T28685]  dump_stack+0x172/0x1f0
[ 1591.035279][T28685]  should_fail.cold+0xa/0x15
[ 1591.039909][T28685]  ? fault_create_debugfs_attr+0x180/0x180
[ 1591.045729][T28685]  ? page_to_nid.part.0+0x20/0x20
[ 1591.050765][T28685]  ? ___might_sleep+0x163/0x280
19:59:44 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffff7f, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1591.055731][T28685]  __should_failslab+0x121/0x190
[ 1591.060676][T28685]  should_failslab+0x9/0x14
[ 1591.065183][T28685]  kmem_cache_alloc_node+0x268/0x740
[ 1591.070475][T28685]  ? netlink_has_listeners+0x23b/0x3f0
[ 1591.075970][T28685]  ? __kasan_check_read+0x11/0x20
[ 1591.081140][T28685]  __alloc_skb+0xd5/0x5e0
[ 1591.085474][T28685]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1591.090574][T28685]  ? netlink_has_listeners+0x6e/0x3f0
[ 1591.096159][T28685]  alloc_uevent_skb+0x83/0x1e2
[ 1591.100911][T28685]  kobject_uevent_env+0xaa3/0x1023
[ 1591.106015][T28685]  kobject_uevent+0x20/0x26
[ 1591.110853][T28685]  device_add+0xad8/0x17a0
[ 1591.115541][T28685]  ? uevent_show+0x370/0x370
[ 1591.120118][T28685]  ? start_creating+0x116/0x1d0
[ 1591.125517][T28685]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1591.132987][T28685]  hci_register_dev+0x2e8/0x8f0
[ 1591.137990][T28685]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1591.143777][T28685]  tty_ioctl+0xaf9/0x14f0
[ 1591.148104][T28685]  ? hci_uart_init_work+0x180/0x180
[ 1591.153496][T28685]  ? do_tty_hangup+0x30/0x30
[ 1591.158090][T28685]  ? tomoyo_path_number_perm+0x459/0x520
[ 1591.165130][T28685]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1591.171356][T28685]  ? tomoyo_path_number_perm+0x263/0x520
[ 1591.177183][T28685]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1591.183005][T28685]  ? __kasan_check_read+0x11/0x20
[ 1591.192848][T28685]  ? do_tty_hangup+0x30/0x30
[ 1591.198266][T28685]  do_vfs_ioctl+0xdb6/0x13e0
[ 1591.202840][T28685]  ? ioctl_preallocate+0x210/0x210
[ 1591.210088][T28685]  ? __fget+0x384/0x560
[ 1591.214532][T28685]  ? ksys_dup3+0x3e0/0x3e0
[ 1591.219056][T28685]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1591.225403][T28685]  ? fput_many+0x12c/0x1a0
[ 1591.229833][T28685]  ? tomoyo_file_ioctl+0x23/0x30
[ 1591.234763][T28685]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1591.240986][T28685]  ? security_file_ioctl+0x8d/0xc0
[ 1591.246097][T28685]  ksys_ioctl+0xab/0xd0
[ 1591.250244][T28685]  __x64_sys_ioctl+0x73/0xb0
[ 1591.255054][T28685]  do_syscall_64+0xfa/0x760
[ 1591.260119][T28685]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1591.266177][T28685] RIP: 0033:0x459829
[ 1591.270410][T28685] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1591.290224][T28685] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1591.299118][T28685] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
19:59:44 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x400, 0x0)
write$P9_RLERROR(r1, &(0x7f0000000040)={0x18, 0x7, 0x1, {0xf, '/dev/dri/card#\x00'}}, 0x18)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

[ 1591.308593][T28685] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1591.316617][T28685] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1591.327777][T28685] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1591.336804][T28685] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
19:59:44 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000002f000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1591.374688][   T38] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1593.383709][ T9958] Bluetooth: hci0: command 0x1003 tx timeout
[ 1593.389804][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1595.463732][ T9958] Bluetooth: hci0: command 0x1001 tx timeout
[ 1595.469972][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1597.543754][   T22] Bluetooth: hci0: command 0x1009 tx timeout
19:59:54 executing program 1 (fault-call:2 fault-nth:42):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

19:59:54 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008035000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x400, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x40, 0x0)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000000180)={0x1, r2})
ioctl$KDSIGACCEPT(r1, 0x4b4e, 0xd)
r3 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x4e21, 0x0, @mcast2, 0xfff}}, 0x0, 0x5, 0x0, "3f191bdb0527af0aab07b088e742ba34e78d3c1fe7bebbe442895debce7842c01b48c387fb42489f98201444a74f67510e908f724b34f521ecc192befe5788588076ba5ab51e3666c55082d99e928f78"}, 0xd8)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f00000001c0)='cgroup@\x00', &(0x7f0000000200)='/dev/dri/card#\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r3, 0xc0a85352, &(0x7f0000000000)={{0x80000001}, 'port1\x00', 0x16, 0x60024, 0x1ff, 0x8, 0x400, 0x0, 0x100000000, 0x0, 0x4, 0xa2e})
ioctl$NBD_SET_TIMEOUT(r3, 0xab09, 0x0)

19:59:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffffc2, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

19:59:54 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc000)

19:59:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000003c000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

19:59:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0xfffffffffffffffc)
r1 = fcntl$dupfd(r0, 0x0, r0)
getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000000)={<r2=>0x0, 0x6, 0xff, 0x6}, &(0x7f0000000040)=0x10)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000080)={r2, 0x7}, 0x8)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1601.819726][T28731] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1601.839674][T28731] FAULT_INJECTION: forcing a failure.
[ 1601.839674][T28731] name failslab, interval 1, probability 0, space 0, times 0
[ 1601.870388][T28731] CPU: 0 PID: 28731 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1601.879539][T28731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1601.889610][T28731] Call Trace:
[ 1601.892905][T28731]  dump_stack+0x172/0x1f0
[ 1601.897243][T28731]  should_fail.cold+0xa/0x15
[ 1601.901849][T28731]  ? fault_create_debugfs_attr+0x180/0x180
[ 1601.907717][T28731]  ? page_to_nid.part.0+0x20/0x20
[ 1601.912762][T28731]  ? ___might_sleep+0x163/0x280
19:59:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

[ 1601.917639][T28731]  __should_failslab+0x121/0x190
[ 1601.922600][T28731]  should_failslab+0x9/0x14
[ 1601.927118][T28731]  kmem_cache_alloc+0x2aa/0x710
[ 1601.932169][T28731]  ? refcount_dec_and_mutex_lock+0x90/0x90
[ 1601.937987][T28731]  ? netlink_broadcast_filtered+0x78/0xb90
[ 1601.943820][T28731]  ? __kmalloc_node_track_caller+0x4e/0x70
[ 1601.949768][T28731]  skb_clone+0x154/0x3d0
[ 1601.954114][T28731]  netlink_broadcast_filtered+0x8da/0xb90
[ 1601.959884][T28731]  netlink_broadcast+0x3a/0x50
[ 1601.964665][T28731]  kobject_uevent_env+0xad4/0x1023
19:59:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

19:59:55 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000040), &(0x7f0000000080)=0x4)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r2, 0x800040000000015)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x8, 0x40000)

[ 1601.969811][T28731]  kobject_uevent+0x20/0x26
[ 1601.974605][T28731]  device_add+0xad8/0x17a0
[ 1601.979324][T28731]  ? uevent_show+0x370/0x370
[ 1601.983935][T28731]  ? start_creating+0x116/0x1d0
[ 1601.988835][T28731]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1601.995093][T28731]  hci_register_dev+0x2e8/0x8f0
[ 1601.999967][T28731]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1602.005019][T28731]  tty_ioctl+0xaf9/0x14f0
[ 1602.009492][T28731]  ? hci_uart_init_work+0x180/0x180
[ 1602.014716][T28731]  ? do_tty_hangup+0x30/0x30
19:59:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000))

[ 1602.019498][T28731]  ? tomoyo_path_number_perm+0x459/0x520
[ 1602.025144][T28731]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1602.031446][T28731]  ? tomoyo_path_number_perm+0x263/0x520
[ 1602.037096][T28731]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1602.043017][T28731]  ? __kasan_check_read+0x11/0x20
[ 1602.048068][T28731]  ? do_tty_hangup+0x30/0x30
[ 1602.052757][T28731]  do_vfs_ioctl+0xdb6/0x13e0
[ 1602.057384][T28731]  ? ioctl_preallocate+0x210/0x210
[ 1602.062552][T28731]  ? __fget+0x384/0x560
[ 1602.066733][T28731]  ? ksys_dup3+0x3e0/0x3e0
[ 1602.071235][T28731]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1602.077656][T28731]  ? fput_many+0x12c/0x1a0
[ 1602.082172][T28731]  ? tomoyo_file_ioctl+0x23/0x30
[ 1602.087119][T28731]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1602.093376][T28731]  ? security_file_ioctl+0x8d/0xc0
[ 1602.098515][T28731]  ksys_ioctl+0xab/0xd0
[ 1602.102732][T28731]  __x64_sys_ioctl+0x73/0xb0
[ 1602.107592][T28731]  do_syscall_64+0xfa/0x760
[ 1602.112137][T28731]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1602.118119][T28731] RIP: 0033:0x459829
[ 1602.122014][T28731] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1602.141968][T28731] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1602.150485][T28731] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1602.158534][T28731] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1602.166500][T28731] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1602.174461][T28731] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1602.188246][T28731] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1604.263656][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1604.271323][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1606.343647][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1606.349946][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1608.423651][   T22] Bluetooth: hci0: command 0x1009 tx timeout
20:00:05 executing program 1 (fault-call:2 fault-nth:43):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:00:05 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000))

20:00:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000040000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1a0ffffffff, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:05 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xff00)

20:00:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x2000, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:00:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$sock_inet6_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000000))
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:00:05 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000))

20:00:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000543000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1612.699381][T28767] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1612.709052][T28767] FAULT_INJECTION: forcing a failure.
[ 1612.709052][T28767] name failslab, interval 1, probability 0, space 0, times 0
[ 1612.728673][T28767] CPU: 0 PID: 28767 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1612.737844][T28767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1612.747946][T28767] Call Trace:
[ 1612.751764][T28767]  dump_stack+0x172/0x1f0
[ 1612.756128][T28767]  should_fail.cold+0xa/0x15
[ 1612.760737][T28767]  ? fault_create_debugfs_attr+0x180/0x180
[ 1612.766559][T28767]  ? page_to_nid.part.0+0x20/0x20
[ 1612.771594][T28767]  ? ___might_sleep+0x163/0x280
[ 1612.776553][T28767]  __should_failslab+0x121/0x190
[ 1612.781512][T28767]  should_failslab+0x9/0x14
[ 1612.786199][T28767]  kmem_cache_alloc+0x2aa/0x710
[ 1612.791063][T28767]  ? refcount_dec_and_mutex_lock+0x90/0x90
20:00:05 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000))

20:00:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008847000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612)

[ 1612.796883][T28767]  ? netlink_broadcast_filtered+0x78/0xb90
[ 1612.802706][T28767]  ? __kmalloc_node_track_caller+0x4e/0x70
[ 1612.808534][T28767]  skb_clone+0x154/0x3d0
[ 1612.812794][T28767]  netlink_broadcast_filtered+0x8da/0xb90
[ 1612.818543][T28767]  netlink_broadcast+0x3a/0x50
[ 1612.823503][T28767]  kobject_uevent_env+0xad4/0x1023
[ 1612.828649][T28767]  kobject_uevent+0x20/0x26
[ 1612.833170][T28767]  device_add+0xad8/0x17a0
[ 1612.837612][T28767]  ? uevent_show+0x370/0x370
[ 1612.842227][T28767]  ? start_creating+0x116/0x1d0
[ 1612.847108][T28767]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1612.853383][T28767]  hci_register_dev+0x2e8/0x8f0
[ 1612.858255][T28767]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1612.863392][T28767]  tty_ioctl+0xaf9/0x14f0
[ 1612.867745][T28767]  ? hci_uart_init_work+0x180/0x180
[ 1612.873104][T28767]  ? do_tty_hangup+0x30/0x30
[ 1612.877718][T28767]  ? tomoyo_path_number_perm+0x459/0x520
[ 1612.883462][T28767]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1612.889723][T28767]  ? tomoyo_path_number_perm+0x263/0x520
[ 1612.895375][T28767]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1612.901312][T28767]  ? __kasan_check_read+0x11/0x20
[ 1612.906488][T28767]  ? do_tty_hangup+0x30/0x30
[ 1612.911105][T28767]  do_vfs_ioctl+0xdb6/0x13e0
[ 1612.915727][T28767]  ? ioctl_preallocate+0x210/0x210
[ 1612.921031][T28767]  ? __fget+0x384/0x560
[ 1612.925214][T28767]  ? ksys_dup3+0x3e0/0x3e0
[ 1612.929653][T28767]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1612.935946][T28767]  ? fput_many+0x12c/0x1a0
[ 1612.940384][T28767]  ? tomoyo_file_ioctl+0x23/0x30
[ 1612.945652][T28767]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1612.951903][T28767]  ? security_file_ioctl+0x8d/0xc0
[ 1612.957016][T28767]  ksys_ioctl+0xab/0xd0
[ 1612.961171][T28767]  __x64_sys_ioctl+0x73/0xb0
[ 1612.966088][T28767]  do_syscall_64+0xfa/0x760
[ 1612.970640][T28767]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1612.976935][T28767] RIP: 0033:0x459829
[ 1612.980824][T28767] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1613.000756][T28767] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1613.009171][T28767] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1613.017386][T28767] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1613.028002][T28767] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1613.035989][T28767] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1613.044065][T28767] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1613.058018][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1615.063699][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1615.069980][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1617.143653][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1617.149751][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1619.223710][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:00:16 executing program 1 (fault-call:2 fault-nth:44):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:00:16 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

20:00:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008848000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:16 executing program 3:
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x240000, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={r0, 0x15, 0x1, 0x8, &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x3}, 0x20)
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_netfilter(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000060f0000002b001301f34f1beedda7193e00e8c06eaffec6f22dad2d1423fbe7034a65198720354d9273b07879673e6f0cee771205abfe3a48b25d1d2ae00e402ef088da984c2d994c81bca5e02fc920a4db07e45917842a1675bc3fc1236b424dece66d7553603af5aedd42f043d445", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x240088c0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x4000000)

20:00:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x80000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:16 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xff0f)

20:00:16 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x1a1001)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:00:16 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

20:00:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000060000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1623.622498][T28800] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:00:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x8000a0ffffffff, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:16 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

[ 1623.667552][T28800] FAULT_INJECTION: forcing a failure.
[ 1623.667552][T28800] name failslab, interval 1, probability 0, space 0, times 0
[ 1623.692383][T28800] CPU: 0 PID: 28800 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1623.701546][T28800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1623.711628][T28800] Call Trace:
[ 1623.714956][T28800]  dump_stack+0x172/0x1f0
[ 1623.719326][T28800]  should_fail.cold+0xa/0x15
[ 1623.723948][T28800]  ? fault_create_debugfs_attr+0x180/0x180
[ 1623.729828][T28800]  ? page_to_nid.part.0+0x20/0x20
[ 1623.729844][T28800]  ? ___might_sleep+0x163/0x280
[ 1623.729865][T28800]  __should_failslab+0x121/0x190
[ 1623.744754][T28800]  should_failslab+0x9/0x14
[ 1623.749454][T28800]  kmem_cache_alloc_node_trace+0x274/0x750
[ 1623.755277][T28800]  ? vsnprintf+0x32a/0x19a0
[ 1623.760144][T28800]  __kmalloc_node_track_caller+0x3d/0x70
[ 1623.760162][T28800]  devm_kmalloc+0x92/0x1a0
[ 1623.760178][T28800]  devm_kvasprintf+0xcd/0x140
[ 1623.760190][T28800]  ? devm_kmemdup+0x60/0x60
[ 1623.760204][T28800]  ? __kasan_check_write+0x14/0x20
[ 1623.760218][T28800]  ? lock_downgrade+0x920/0x920
[ 1623.760234][T28800]  devm_kasprintf+0xbb/0xf0
[ 1623.760246][T28800]  ? devm_kvasprintf+0x140/0x140
[ 1623.760263][T28800]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1623.760281][T28800]  ? devres_add+0x40/0x50
[ 1623.781816][T28800]  hci_leds_init+0xb3/0x1c0
[ 1623.781835][T28800]  hci_register_dev+0x30c/0x8f0
[ 1623.792585][T28800]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1623.792607][T28800]  tty_ioctl+0xaf9/0x14f0
[ 1623.792619][T28800]  ? hci_uart_init_work+0x180/0x180
[ 1623.792635][T28800]  ? do_tty_hangup+0x30/0x30
[ 1623.851637][T28800]  ? tomoyo_path_number_perm+0x459/0x520
[ 1623.857275][T28800]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1623.863547][T28800]  ? tomoyo_path_number_perm+0x263/0x520
[ 1623.869218][T28800]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1623.875077][T28800]  ? __kasan_check_read+0x11/0x20
[ 1623.880108][T28800]  ? do_tty_hangup+0x30/0x30
[ 1623.884896][T28800]  do_vfs_ioctl+0xdb6/0x13e0
[ 1623.890095][T28800]  ? ioctl_preallocate+0x210/0x210
[ 1623.895195][T28800]  ? __fget+0x384/0x560
[ 1623.899427][T28800]  ? ksys_dup3+0x3e0/0x3e0
[ 1623.903835][T28800]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1623.910065][T28800]  ? fput_many+0x12c/0x1a0
[ 1623.914476][T28800]  ? tomoyo_file_ioctl+0x23/0x30
[ 1623.919400][T28800]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1623.925688][T28800]  ? security_file_ioctl+0x8d/0xc0
[ 1623.930811][T28800]  ksys_ioctl+0xab/0xd0
[ 1623.934971][T28800]  __x64_sys_ioctl+0x73/0xb0
[ 1623.939555][T28800]  do_syscall_64+0xfa/0x760
[ 1623.944066][T28800]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1623.950040][T28800] RIP: 0033:0x459829
20:00:17 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x280000000)
eventfd2(0x20000000007, 0x1)
sendto$rxrpc(r1, &(0x7f0000000000)="d2f0f8072b61a01c2fdcbb53e92ba8fa51b2c53cb22429e3e48b9797b4d07d2c49aa0ba073285cfee5644b3af7d96c2549be5bceaac0809691d752e3c7cc90a079c743d1f48d6f37923c3bf0f6daf4d018c39f6ccc4aeed076bfa7fdc5", 0x5d, 0x4004, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={<r2=>0x0, 0x3c, &(0x7f0000000080)=[@in={0x2, 0x4e24, @local}, @in6={0xa, 0x4e20, 0x5, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x400}, @in={0x2, 0x4e22, @loopback}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000180)={r2, 0xbc}, 0x8)

[ 1623.954103][T28800] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1623.974305][T28800] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1623.982718][T28800] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1623.990994][T28800] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1623.999179][T28800] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1624.007843][T28800] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1624.016884][T28800] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1626.113674][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1626.119865][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1628.183696][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1628.189810][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1630.263705][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:00:27 executing program 1 (fault-call:2 fault-nth:45):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:00:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000008864000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:27 executing program 0:
socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r0, &(0x7f00000000c0)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x0, 0x0, @loopback}}, 0x24)
listen(r0, 0x9)

20:00:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000200)={&(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000140)="98ffb90adf34ee0e79a3d82b95a6814545a56477767024a8b529aebfadea06b815157d7069e0636d75194e4351697326b8613baa0720f5150013d4eb23ddab4e734ed3fca685489a0e617610d8d367c68bd79520d073b74120fcefab822f9816d1333b19455052ebb7e2a14db6d5e57b3e69b2cfa7dd3d01ffed9e0f3df1521264caee05c3d8c1231053137d6c404a7438a0d557d3598fe0e903d733c91affad09e9aff71e3c2ef953c9fd7158b492022bc1", 0xb2, r0}, 0x68)
r1 = fcntl$dupfd(r0, 0x406, r0)
write$vhci(r1, &(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, "7903fd10f6adca9337330c37c006cd2a3f8f81edc6eb392ec97595d692d069be2f57876465a9067fda3547640cf789f51c6d6e5f1f4aec7c39a99bd133c83fa64adf589db3b2a635d1cb085308fc43454241304cbd704cb0dba0d0adf4cee0ca6421fda4ad13e158d549e7e96a7de3ad306bb73aaccc3880986d56f1058224a93408f7d0c32f5a19152886cd16697fa0273154fe109d6e9108500c6da926"}, 0x9f)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000000)={r0, 0x0, 0x2, 0x9a28, 0x6})
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280)='/dev/hwrng\x00', 0x94c00, 0x0)

20:00:27 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x100000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:27 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x40000)

20:00:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000e80000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x40e, r0)
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)="d10f6cd4c53688549e165deddfdf90c7e26d06f2daf44a1698c2c65c78af3a513c78e39028816a2b140602eb7578fb795a80bb0d6016f639147f6df84af243776027272b576a42311082ca149a6b27a4e754ce1249577fdde2", 0x59}, {&(0x7f0000000140)="d4ebcc9224d21b74b158e08e097e87b19ead5d3f1d881242d31bdef7d02cdf38be39e669dd0d7a2e26f637ff061c657e5b79e6d002a70d29e75a41d20c4bc619b4b1999f9ac003eaa14369dfc6f4c768d10d295ae1441e61465b114f115dbdf3df72c28487ad48dad3a57c85398d4576e6b346adc971e2479ff172afb7434016f5c55b437f1bf4c21abadd02d5a69dcc26365d85fb5e1ebe4faadf8a3c3f01e488453a3654785dda9ee5a5ff2bea2306f1fa4e3850daab", 0xb7}, {&(0x7f0000000200)="a849d6fcf41703dfa8b23782b203de40457d148d472258b19ad882ba91e642c0812436f43af1faee1cd4a5ef273d53a5bb5bb18aef91a1ff1cf2360e122ee46c80bfa279622d810f8575e739be423801b8bb88ead6c2ccd4fea17d48b0c7c324a7b38bb003cf4bad0ed350f55c79095ef37317a09f9679de36d61460", 0x7c}, {&(0x7f0000000280)="f82973194c6cb869135b881db97cf2a526c3f4a2b329031bb39e37aed7b155fd050d57e58acc898ce1603dd74d8568d67ffbe6a6e5b64dd4c9759ab850c84888dd8f2b7c", 0x44}], 0x4, 0x7)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x2)
signalfd(r1, &(0x7f0000000000)={0xb4}, 0x8)

20:00:27 executing program 0:
r0 = socket$inet6(0xa, 0x80001, 0x0)
getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000000)={'security\x00'}, &(0x7f0000000080)=0x24)

[ 1634.437622][T28836] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1634.452113][T28836] FAULT_INJECTION: forcing a failure.
[ 1634.452113][T28836] name failslab, interval 1, probability 0, space 0, times 0
[ 1634.476521][T28836] CPU: 0 PID: 28836 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1634.488227][T28836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1634.488233][T28836] Call Trace:
[ 1634.488261][T28836]  dump_stack+0x172/0x1f0
[ 1634.488282][T28836]  should_fail.cold+0xa/0x15
[ 1634.488300][T28836]  ? fault_create_debugfs_attr+0x180/0x180
[ 1634.488316][T28836]  ? page_to_nid.part.0+0x20/0x20
[ 1634.488330][T28836]  ? ___might_sleep+0x163/0x280
[ 1634.488353][T28836]  __should_failslab+0x121/0x190
[ 1634.518265][T28836]  should_failslab+0x9/0x14
[ 1634.518279][T28836]  kmem_cache_alloc_node_trace+0x274/0x750
[ 1634.518298][T28836]  ? vsnprintf+0x32a/0x19a0
[ 1634.530350][T28836]  __kmalloc_node_track_caller+0x3d/0x70
[ 1634.530370][T28836]  devm_kmalloc+0x92/0x1a0
[ 1634.530389][T28836]  devm_kvasprintf+0xcd/0x140
[ 1634.539995][T28836]  ? devm_kmemdup+0x60/0x60
[ 1634.540014][T28836]  ? __kasan_check_write+0x14/0x20
[ 1634.540031][T28836]  ? lock_downgrade+0x920/0x920
[ 1634.540049][T28836]  devm_kasprintf+0xbb/0xf0
[ 1634.585400][T28836]  ? devm_kvasprintf+0x140/0x140
[ 1634.591224][T28836]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1634.597110][T28836]  ? devres_add+0x40/0x50
[ 1634.601448][T28836]  hci_leds_init+0xb3/0x1c0
[ 1634.605963][T28836]  hci_register_dev+0x30c/0x8f0
[ 1634.610820][T28836]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1634.616368][T28836]  tty_ioctl+0xaf9/0x14f0
[ 1634.620697][T28836]  ? hci_uart_init_work+0x180/0x180
[ 1634.625943][T28836]  ? do_tty_hangup+0x30/0x30
[ 1634.630638][T28836]  ? tomoyo_path_number_perm+0x459/0x520
[ 1634.636387][T28836]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1634.642645][T28836]  ? tomoyo_path_number_perm+0x263/0x520
[ 1634.648306][T28836]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1634.654341][T28836]  ? __kasan_check_read+0x11/0x20
[ 1634.659394][T28836]  ? do_tty_hangup+0x30/0x30
[ 1634.664009][T28836]  do_vfs_ioctl+0xdb6/0x13e0
[ 1634.668608][T28836]  ? ioctl_preallocate+0x210/0x210
[ 1634.673750][T28836]  ? __fget+0x384/0x560
[ 1634.677921][T28836]  ? ksys_dup3+0x3e0/0x3e0
[ 1634.682342][T28836]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1634.688784][T28836]  ? fput_many+0x12c/0x1a0
[ 1634.693295][T28836]  ? tomoyo_file_ioctl+0x23/0x30
[ 1634.698244][T28836]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1634.704503][T28836]  ? security_file_ioctl+0x8d/0xc0
[ 1634.709633][T28836]  ksys_ioctl+0xab/0xd0
[ 1634.714244][T28836]  __x64_sys_ioctl+0x73/0xb0
[ 1634.719275][T28836]  do_syscall_64+0xfa/0x760
[ 1634.723786][T28836]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1634.730036][T28836] RIP: 0033:0x459829
[ 1634.733940][T28836] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1634.753730][T28836] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1634.762267][T28836] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1634.770371][T28836] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1634.778372][T28836] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1634.786441][T28836] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1634.794587][T28836] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:00:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000003580000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:00:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x10000, 0x0)
connect$pptp(r1, &(0x7f0000000040)={0x18, 0x2, {0x3, @multicast1}}, 0x1e)
openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x284000, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0xffffffffffffffff, 0x2000)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

[ 1634.834564][   T38] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1636.903710][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1636.909887][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1638.983690][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1638.989779][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1641.063715][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:00:38 executing program 1 (fault-call:2 fault-nth:46):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:00:38 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x200000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000081000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:38 executing program 3:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x60000, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f00000001c0)={0x0, 0x400, 0x2, [], &(0x7f0000000180)={0x9b0908, 0xdda0, [], @ptr=0x3}})
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$NBD_SET_TIMEOUT(0xffffffffffffffff, 0xab09, 0x0)
ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000200)={0x0, 0x7ff, 0x3, {0xf, @sliced={0xffff, [0x2, 0x9, 0xffff, 0x0, 0x3, 0x1000, 0x2cdca3, 0x9, 0x100000001, 0x0, 0x4, 0xda, 0x0, 0x8, 0x2, 0x1000, 0x10000, 0x0, 0x20, 0x98, 0xfffffffffffffe01, 0xd2c2, 0x101, 0x1ff, 0x900000000000, 0x100000000, 0x3f, 0x4, 0xd9, 0x8, 0x9, 0xffffffffe4eb9dd0, 0xab50, 0x0, 0xffffffff, 0x8, 0x4, 0x1, 0xa, 0x8000000, 0x5, 0x4, 0x3f, 0x5, 0x2, 0x5, 0x2, 0x7], 0x9}}})

20:00:38 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x100000)

20:00:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:00:38 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0xfffffffffffffff7})

[ 1645.328852][T28875] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1645.347521][T28875] FAULT_INJECTION: forcing a failure.
[ 1645.347521][T28875] name failslab, interval 1, probability 0, space 0, times 0
[ 1645.367408][T28875] CPU: 0 PID: 28875 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1645.378349][T28875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1645.388497][T28875] Call Trace:
[ 1645.391814][T28875]  dump_stack+0x172/0x1f0
[ 1645.397028][T28875]  should_fail.cold+0xa/0x15
[ 1645.401619][T28875]  ? devres_add+0x40/0x50
[ 1645.405954][T28875]  ? fault_create_debugfs_attr+0x180/0x180
[ 1645.411773][T28875]  ? page_to_nid.part.0+0x20/0x20
[ 1645.416811][T28875]  ? ___might_sleep+0x163/0x280
[ 1645.421669][T28875]  __should_failslab+0x121/0x190
20:00:38 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x300000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1645.426614][T28875]  should_failslab+0x9/0x14
[ 1645.431115][T28875]  __kmalloc+0x2e0/0x770
[ 1645.435366][T28875]  ? _raw_spin_unlock_irqrestore+0xa4/0xe0
[ 1645.441190][T28875]  ? devres_add+0x40/0x50
[ 1645.445548][T28875]  ? rfkill_alloc+0xaa/0x290
[ 1645.450154][T28875]  rfkill_alloc+0xaa/0x290
[ 1645.454593][T28875]  ? hci_leds_init+0x104/0x1c0
[ 1645.459384][T28875]  hci_register_dev+0x326/0x8f0
[ 1645.464250][T28875]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1645.469279][T28875]  tty_ioctl+0xaf9/0x14f0
[ 1645.473601][T28875]  ? hci_uart_init_work+0x180/0x180
[ 1645.478808][T28875]  ? do_tty_hangup+0x30/0x30
[ 1645.483489][T28875]  ? tomoyo_path_number_perm+0x459/0x520
[ 1645.489214][T28875]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1645.489230][T28875]  ? tomoyo_path_number_perm+0x263/0x520
[ 1645.489247][T28875]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1645.501193][T28875]  ? __kasan_check_read+0x11/0x20
[ 1645.501215][T28875]  ? do_tty_hangup+0x30/0x30
[ 1645.501229][T28875]  do_vfs_ioctl+0xdb6/0x13e0
[ 1645.501244][T28875]  ? ioctl_preallocate+0x210/0x210
[ 1645.501257][T28875]  ? __fget+0x384/0x560
[ 1645.501273][T28875]  ? ksys_dup3+0x3e0/0x3e0
[ 1645.501288][T28875]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1645.501307][T28875]  ? fput_many+0x12c/0x1a0
[ 1645.546974][T28875]  ? tomoyo_file_ioctl+0x23/0x30
[ 1645.551892][T28875]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1645.558111][T28875]  ? security_file_ioctl+0x8d/0xc0
[ 1645.563375][T28875]  ksys_ioctl+0xab/0xd0
[ 1645.567512][T28875]  __x64_sys_ioctl+0x73/0xb0
[ 1645.572082][T28875]  do_syscall_64+0xfa/0x760
[ 1645.576572][T28875]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1645.582527][T28875] RIP: 0033:0x459829
[ 1645.586664][T28875] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1645.606428][T28875] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1645.614817][T28875] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
20:00:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000004788000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1645.622768][T28875] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1645.630720][T28875] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1645.638673][T28875] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1645.646625][T28875] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:00:38 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000000)=0x8, 0x4)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1645.674848][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
20:00:38 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x400000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000004888000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1647.703694][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1647.711122][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1649.783662][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1649.789755][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1651.863668][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:00:49 executing program 1 (fault-call:2 fault-nth:47):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:00:49 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x200000000000000)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:00:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000006488000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x700000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:00:49 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x200000)

20:00:49 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:00:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000689000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:49 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$RTC_AIE_OFF(r1, 0x7002)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1656.222555][T28911] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1656.244230][T28911] FAULT_INJECTION: forcing a failure.
[ 1656.244230][T28911] name failslab, interval 1, probability 0, space 0, times 0
20:00:49 executing program 3:
r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)
r1 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x2, 0x2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000180)={<r2=>0x0, 0x74, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0x4, @rand_addr="e6cbbb22cf8d25d7ecfc22dd9bedcdfb", 0x81}, @in={0x2, 0x4e21, @rand_addr=0x3}, @in6={0xa, 0x4e24, 0x7, @remote, 0x8}, @in={0x2, 0x4e24, @multicast2}, @in6={0xa, 0x4e22, 0x7fff, @loopback, 0xfffffffffffeffff}]}, &(0x7f00000001c0)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={r2, @in6={{0xa, 0x4e21, 0x400, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x1000}}, 0x1ff, 0x1}, 0x90)
shmat(r0, &(0x7f0000fff000/0x1000)=nil, 0x4000)
r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$NBD_SET_TIMEOUT(r3, 0xab09, 0xfffffffffffffffb)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000000040)={&(0x7f00000002c0)=[0x7, 0x3], 0x2, 0x7456, 0x7, 0x6, 0xa2bc, 0x100000000009, {0x3, 0x9, 0x10001, 0x8, 0x7ff, 0x7f, 0x1ddc, 0x100000000, 0x100000001, 0xde, 0xa61, 0x0, 0x1, 0x3, "df535edbd7d0a23df829a225e492db3cd7104bac635283ce3fae117d76def398"}})

[ 1656.323788][T28911] CPU: 0 PID: 28911 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1656.333397][T28911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1656.343543][T28911] Call Trace:
[ 1656.346839][T28911]  dump_stack+0x172/0x1f0
[ 1656.351156][T28911]  should_fail.cold+0xa/0x15
[ 1656.355926][T28911]  ? fault_create_debugfs_attr+0x180/0x180
[ 1656.361712][T28911]  ? page_to_nid.part.0+0x20/0x20
[ 1656.366729][T28911]  ? ___might_sleep+0x163/0x280
[ 1656.371564][T28911]  __should_failslab+0x121/0x190
[ 1656.376483][T28911]  should_failslab+0x9/0x14
[ 1656.380966][T28911]  __kmalloc_track_caller+0x2dc/0x760
[ 1656.386324][T28911]  ? pointer+0x750/0x750
[ 1656.390632][T28911]  ? rwlock_bug.part.0+0x90/0x90
[ 1656.395559][T28911]  ? kvasprintf_const+0x65/0x190
[ 1656.400490][T28911]  kvasprintf+0xc8/0x170
[ 1656.404717][T28911]  ? bust_spinlocks+0xe0/0xe0
[ 1656.409374][T28911]  ? __mutex_lock+0x45d/0x13c0
[ 1656.414126][T28911]  ? __kasan_check_read+0x11/0x20
[ 1656.419314][T28911]  kvasprintf_const+0x65/0x190
[ 1656.424146][T28911]  kobject_set_name_vargs+0x5b/0x150
[ 1656.429607][T28911]  dev_set_name+0xbb/0xf0
[ 1656.433918][T28911]  ? device_initialize+0x460/0x460
[ 1656.439094][T28911]  ? lockdep_init_map+0x1be/0x6d0
[ 1656.444197][T28911]  ? __init_waitqueue_head+0x36/0x90
[ 1656.449553][T28911]  rfkill_register+0xf0/0xb50
[ 1656.454386][T28911]  hci_register_dev+0x378/0x8f0
[ 1656.459308][T28911]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1656.464316][T28911]  tty_ioctl+0xaf9/0x14f0
[ 1656.468721][T28911]  ? hci_uart_init_work+0x180/0x180
[ 1656.473898][T28911]  ? do_tty_hangup+0x30/0x30
[ 1656.478464][T28911]  ? tomoyo_path_number_perm+0x459/0x520
[ 1656.484083][T28911]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1656.490388][T28911]  ? tomoyo_path_number_perm+0x263/0x520
[ 1656.496001][T28911]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1656.502065][T28911]  ? __kasan_check_read+0x11/0x20
[ 1656.507466][T28911]  ? do_tty_hangup+0x30/0x30
[ 1656.512039][T28911]  do_vfs_ioctl+0xdb6/0x13e0
[ 1656.516622][T28911]  ? ioctl_preallocate+0x210/0x210
[ 1656.521715][T28911]  ? __fget+0x384/0x560
[ 1656.525943][T28911]  ? ksys_dup3+0x3e0/0x3e0
[ 1656.530882][T28911]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1656.537110][T28911]  ? fput_many+0x12c/0x1a0
[ 1656.541508][T28911]  ? tomoyo_file_ioctl+0x23/0x30
[ 1656.546523][T28911]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1656.552829][T28911]  ? security_file_ioctl+0x8d/0xc0
[ 1656.557929][T28911]  ksys_ioctl+0xab/0xd0
[ 1656.562064][T28911]  __x64_sys_ioctl+0x73/0xb0
[ 1656.566639][T28911]  do_syscall_64+0xfa/0x760
[ 1656.571217][T28911]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1656.577263][T28911] RIP: 0033:0x459829
[ 1656.581587][T28911] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1656.601168][T28911] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1656.609647][T28911] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
20:00:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000f0000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:00:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x800000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1656.617687][T28911] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1656.631802][T28911] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1656.639761][T28911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1656.647717][T28911] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1656.724123][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
20:00:49 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x100)
fcntl$dupfd(r0, 0x4000100000, r0)

[ 1658.743716][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1658.749877][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1660.823686][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1660.829787][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1662.903705][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:01:00 executing program 1 (fault-call:2 fault-nth:48):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:01:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000ff000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x1002000)

20:01:00 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x8000a0)

20:01:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x900000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000031b210000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:01:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xa00000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1667.104316][T28950] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:01:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$EVIOCREVOKE(r1, 0x40044591, &(0x7f0000000000)=0x6)
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1667.163456][T28950] FAULT_INJECTION: forcing a failure.
[ 1667.163456][T28950] name failslab, interval 1, probability 0, space 0, times 0
[ 1667.187288][T28950] CPU: 1 PID: 28950 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1667.196960][T28950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1667.207029][T28950] Call Trace:
[ 1667.210336][T28950]  dump_stack+0x172/0x1f0
[ 1667.214691][T28950]  should_fail.cold+0xa/0x15
[ 1667.219287][T28950]  ? fault_create_debugfs_attr+0x180/0x180
[ 1667.225097][T28950]  ? page_to_nid.part.0+0x20/0x20
[ 1667.230123][T28950]  ? ___might_sleep+0x163/0x280
[ 1667.234980][T28950]  __should_failslab+0x121/0x190
[ 1667.240128][T28950]  should_failslab+0x9/0x14
[ 1667.244726][T28950]  __kmalloc_track_caller+0x2dc/0x760
[ 1667.250119][T28950]  ? pointer+0x750/0x750
[ 1667.254384][T28950]  ? rwlock_bug.part.0+0x90/0x90
[ 1667.259431][T28950]  ? kvasprintf_const+0x65/0x190
[ 1667.264380][T28950]  kvasprintf+0xc8/0x170
[ 1667.268632][T28950]  ? bust_spinlocks+0xe0/0xe0
[ 1667.273330][T28950]  ? __mutex_lock+0x45d/0x13c0
[ 1667.278190][T28950]  ? __kasan_check_read+0x11/0x20
[ 1667.283230][T28950]  kvasprintf_const+0x65/0x190
[ 1667.288002][T28950]  kobject_set_name_vargs+0x5b/0x150
[ 1667.293288][T28950]  dev_set_name+0xbb/0xf0
[ 1667.297759][T28950]  ? device_initialize+0x460/0x460
[ 1667.302894][T28950]  ? lockdep_init_map+0x1be/0x6d0
[ 1667.307926][T28950]  ? __init_waitqueue_head+0x36/0x90
[ 1667.313221][T28950]  rfkill_register+0xf0/0xb50
[ 1667.317908][T28950]  hci_register_dev+0x378/0x8f0
[ 1667.323042][T28950]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1667.334331][T28950]  tty_ioctl+0xaf9/0x14f0
[ 1667.338769][T28950]  ? hci_uart_init_work+0x180/0x180
[ 1667.343981][T28950]  ? do_tty_hangup+0x30/0x30
[ 1667.348743][T28950]  ? tomoyo_path_number_perm+0x459/0x520
[ 1667.355011][T28950]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1667.361252][T28950]  ? tomoyo_path_number_perm+0x263/0x520
[ 1667.366892][T28950]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1667.373537][T28950]  ? __kasan_check_read+0x11/0x20
[ 1667.378577][T28950]  ? do_tty_hangup+0x30/0x30
[ 1667.383170][T28950]  do_vfs_ioctl+0xdb6/0x13e0
[ 1667.387850][T28950]  ? ioctl_preallocate+0x210/0x210
[ 1667.392966][T28950]  ? __fget+0x384/0x560
[ 1667.397128][T28950]  ? ksys_dup3+0x3e0/0x3e0
[ 1667.401545][T28950]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1667.407788][T28950]  ? fput_many+0x12c/0x1a0
[ 1667.412265][T28950]  ? tomoyo_file_ioctl+0x23/0x30
[ 1667.417202][T28950]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1667.423443][T28950]  ? security_file_ioctl+0x8d/0xc0
[ 1667.428556][T28950]  ksys_ioctl+0xab/0xd0
[ 1667.432714][T28950]  __x64_sys_ioctl+0x73/0xb0
[ 1667.437393][T28950]  do_syscall_64+0xfa/0x760
[ 1667.441928][T28950]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1667.447819][T28950] RIP: 0033:0x459829
[ 1667.451714][T28950] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1667.471320][T28950] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1667.479739][T28950] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1667.487720][T28950] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1667.495696][T28950] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1667.503668][T28950] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1667.511637][T28950] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:01:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000003b1d210000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
io_setup(0xf3c, &(0x7f0000000000)=<r2=>0x0)
io_getevents(r2, 0x0, 0x9, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000040)={0x0, 0x989680})
setsockopt$RDS_GET_MR(r1, 0x114, 0x2, &(0x7f00000003c0)={{&(0x7f0000000280)=""/245, 0x3a39}, &(0x7f0000000400), 0x60}, 0x20)

[ 1667.628064][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1669.703644][T25754] Bluetooth: hci0: command 0x1003 tx timeout
[ 1669.711323][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1671.783673][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1671.789780][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1673.863693][T25754] Bluetooth: hci0: command 0x1009 tx timeout
20:01:10 executing program 1 (fault-call:2 fault-nth:49):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:01:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe00000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:10 executing program 3:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
ioctl$DRM_IOCTL_AGP_INFO(r0, 0x80386433, &(0x7f0000000040)=""/46)
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

20:01:10 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1000000)

20:01:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000a000800000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000fffff00000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1677.971731][T28987] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1677.992034][T28987] FAULT_INJECTION: forcing a failure.
[ 1677.992034][T28987] name failslab, interval 1, probability 0, space 0, times 0
[ 1678.025817][T28987] CPU: 0 PID: 28987 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1678.034966][T28987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1678.034972][T28987] Call Trace:
[ 1678.034999][T28987]  dump_stack+0x172/0x1f0
[ 1678.035020][T28987]  should_fail.cold+0xa/0x15
[ 1678.035033][T28987]  ? string_nocheck+0x1ce/0x240
[ 1678.035052][T28987]  ? fault_create_debugfs_attr+0x180/0x180
[ 1678.035068][T28987]  ? page_to_nid.part.0+0x20/0x20
[ 1678.035081][T28987]  ? ___might_sleep+0x163/0x280
[ 1678.035099][T28987]  __should_failslab+0x121/0x190
[ 1678.035115][T28987]  should_failslab+0x9/0x14
[ 1678.035127][T28987]  __kmalloc_track_caller+0x2dc/0x760
[ 1678.035143][T28987]  ? console_unlock+0x6bb/0xf10
[ 1678.035154][T28987]  ? __kasan_check_read+0x11/0x20
[ 1678.035168][T28987]  ? kstrdup_const+0x66/0x80
[ 1678.035184][T28987]  kstrdup+0x3a/0x70
[ 1678.035202][T28987]  kstrdup_const+0x66/0x80
[ 1678.062453][T28987]  __kernfs_new_node+0xb1/0x6c0
[ 1678.062473][T28987]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1678.126046][T28987]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1678.132265][T28987]  ? irq_work_claim+0x98/0xc0
[ 1678.137026][T28987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1678.143244][T28987]  ? irq_work_queue+0x30/0x90
[ 1678.147905][T28987]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1678.154151][T28987]  ? wake_up_klogd+0x99/0xd0
[ 1678.158741][T28987]  kernfs_new_node+0x96/0x120
[ 1678.163578][T28987]  kernfs_create_dir_ns+0x52/0x160
[ 1678.168690][T28987]  sysfs_create_dir_ns+0x136/0x290
[ 1678.173797][T28987]  ? sysfs_create_mount_point+0xa0/0xa0
[ 1678.179323][T28987]  ? kobject_add_internal+0x177/0x380
[ 1678.184709][T28987]  kobject_add_internal.cold+0x116/0x662
[ 1678.190424][T28987]  ? fault_create_debugfs_attr+0xb1/0x180
[ 1678.196213][T28987]  kobject_add+0x150/0x1c0
[ 1678.200608][T28987]  ? kset_create_and_add+0x1a0/0x1a0
[ 1678.205874][T28987]  ? lockdep_init_map+0x1be/0x6d0
[ 1678.210884][T28987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1678.217208][T28987]  device_add+0x3b7/0x17a0
[ 1678.221608][T28987]  ? uevent_show+0x370/0x370
[ 1678.226272][T28987]  rfkill_register+0x1bf/0xb50
[ 1678.231121][T28987]  hci_register_dev+0x378/0x8f0
[ 1678.236063][T28987]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1678.241069][T28987]  tty_ioctl+0xaf9/0x14f0
[ 1678.245380][T28987]  ? hci_uart_init_work+0x180/0x180
[ 1678.250560][T28987]  ? do_tty_hangup+0x30/0x30
[ 1678.255651][T28987]  ? tomoyo_path_number_perm+0x459/0x520
[ 1678.261353][T28987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1678.267573][T28987]  ? tomoyo_path_number_perm+0x263/0x520
[ 1678.273383][T28987]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1678.279190][T28987]  ? __kasan_check_read+0x11/0x20
[ 1678.284199][T28987]  ? do_tty_hangup+0x30/0x30
[ 1678.288793][T28987]  do_vfs_ioctl+0xdb6/0x13e0
[ 1678.293377][T28987]  ? ioctl_preallocate+0x210/0x210
[ 1678.298468][T28987]  ? __fget+0x384/0x560
[ 1678.302609][T28987]  ? ksys_dup3+0x3e0/0x3e0
[ 1678.307006][T28987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1678.313233][T28987]  ? fput_many+0x12c/0x1a0
[ 1678.318173][T28987]  ? tomoyo_file_ioctl+0x23/0x30
[ 1678.323090][T28987]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1678.329323][T28987]  ? security_file_ioctl+0x8d/0xc0
[ 1678.337021][T28987]  ksys_ioctl+0xab/0xd0
[ 1678.341163][T28987]  __x64_sys_ioctl+0x73/0xb0
[ 1678.345914][T28987]  do_syscall_64+0xfa/0x760
[ 1678.350422][T28987]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1678.356322][T28987] RIP: 0033:0x459829
[ 1678.360254][T28987] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1678.379935][T28987] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1678.388346][T28987] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1678.396300][T28987] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1678.404251][T28987] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1678.412202][T28987] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
20:01:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1100000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x800, 0x0)
write$P9_RREAD(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="7d00000075020072000000859289953050d7718d2a2454cf6c336be7caf863eea185afa5c86d9645753d9729f0508fd0dc0c823a101e25269f396e17d500d4184d1ab4c9d0627661e51d750cb90cd8aed441ab2ac0816bb2de74ae1841b970584babe90d57cecbdfb9647f89bf8d3adfada96f1b9319c17ac01eb48ba8"], 0x7d)
r2 = fcntl$dupfd(r0, 0x0, r0)
accept$netrom(r2, &(0x7f0000000140)={{0x3, @netrom}, [@remote, @default, @null, @bcast, @rose, @rose, @null, @default]}, &(0x7f00000000c0)=0x48)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

[ 1678.420166][T28987] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:01:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000100000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
mlock2(&(0x7f0000ff2000/0x1000)=nil, 0x1000, 0x3)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1678.534652][T28987] kobject_add_internal failed for rfkill85 (error: -12 parent: hci0)
[ 1678.560636][   T38] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1680.583734][T25754] Bluetooth: hci0: command 0x1003 tx timeout
[ 1680.589895][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1682.663727][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1682.669820][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1684.743684][T25754] Bluetooth: hci0: command 0x1009 tx timeout
20:01:21 executing program 1 (fault-call:2 fault-nth:50):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:01:21 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000006440)=[{{&(0x7f0000000180)=@alg, 0x80, &(0x7f0000000840)=[{&(0x7f0000000200)=""/147, 0x93}, {&(0x7f00000002c0)=""/33, 0x21}, {&(0x7f0000000300)=""/147, 0x93}, {&(0x7f00000003c0)=""/213, 0xd5}, {&(0x7f00000004c0)=""/190, 0xbe}, {&(0x7f0000000580)}, {&(0x7f00000005c0)=""/138, 0x8a}, {&(0x7f0000000680)=""/241, 0xf1}, {&(0x7f0000000780)=""/22, 0x16}, {&(0x7f00000007c0)=""/109, 0x6d}], 0xa, &(0x7f0000000900)=""/73, 0x49}, 0x7}, {{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000980)=""/100, 0x64}, {&(0x7f0000000a00)=""/31, 0x1f}, {&(0x7f0000000a40)=""/67, 0x43}], 0x3, &(0x7f0000000b00)=""/33, 0x21}, 0x44c3}, {{&(0x7f0000000b40)=@pppol2tpv3={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff}}, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000bc0)=""/218, 0xda}, {&(0x7f0000000cc0)=""/40, 0x28}], 0x2, &(0x7f0000000d40)=""/68, 0x44}, 0x6}, {{&(0x7f0000000dc0)=@nl, 0x80, &(0x7f0000002000)=[{&(0x7f0000000e40)=""/4096, 0x1000}, {&(0x7f0000001e40)=""/201, 0xc9}, {&(0x7f0000001f40)=""/57, 0x39}, {&(0x7f0000001f80)=""/109, 0x6d}], 0x4, &(0x7f0000002040)=""/4096, 0x1000}, 0x5}, {{&(0x7f0000003040)=@isdn, 0x80, &(0x7f00000037c0)=[{&(0x7f00000030c0)=""/124, 0x7c}, {&(0x7f0000003140)=""/142, 0x8e}, {&(0x7f0000003200)=""/44, 0x2c}, {&(0x7f0000003240)=""/156, 0x9c}, {&(0x7f0000003300)=""/93, 0x5d}, {&(0x7f0000003380)=""/223, 0xdf}, {&(0x7f0000003480)=""/179, 0xb3}, {&(0x7f0000003540)=""/115, 0x73}, {&(0x7f00000035c0)=""/211, 0xd3}, {&(0x7f00000036c0)=""/246, 0xf6}], 0xa, &(0x7f0000003880)}, 0xffffffffffff8001}, {{&(0x7f00000038c0)=@l2, 0x80, &(0x7f0000004dc0)=[{&(0x7f0000003940)=""/4096, 0x1000}, {&(0x7f0000004940)=""/121, 0x79}, {&(0x7f00000049c0)=""/232, 0xe8}, {&(0x7f0000004ac0)=""/70, 0x46}, {&(0x7f0000004b40)=""/128, 0x80}, {&(0x7f0000004bc0)=""/152, 0x98}, {&(0x7f0000004c80)=""/72, 0x48}, {&(0x7f0000004d00)=""/160, 0xa0}], 0x8}, 0x400}, {{&(0x7f0000004e40), 0x80, &(0x7f00000063c0)=[{&(0x7f0000004ec0)=""/50, 0x32}, {&(0x7f0000004f00)=""/205, 0xcd}, {&(0x7f0000005000)=""/181, 0xb5}, {&(0x7f00000050c0)=""/74, 0x4a}, {&(0x7f0000005140)=""/240, 0xf0}, {&(0x7f0000005240)=""/91, 0x5b}, {&(0x7f00000052c0)=""/4096, 0x1000}, {&(0x7f00000062c0)=""/230, 0xe6}], 0x8}, 0x3}], 0x7, 0x40000000, &(0x7f0000006600))
getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f0000006640)={'ipvs\x00'}, &(0x7f0000006680)=0x1e)
r2 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x1f, 0x480800)
r3 = mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x48, 0x0, &(0x7f0000000040)=[@register_looper, @release, @release={0x40046306, 0x2}, @acquire_done={0x40106309, 0x1}, @free_buffer={0x40086303, r3}, @increfs_done], 0x37, 0x0, &(0x7f00000000c0)="e0cda55970e094c2988f0792e4c0707ae7fdceec9beaf9f3f1e0b329592f9a657f6f698e5eaf76d7ff86c220bc1cb72d7b8bea96d5320d"})
r4 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r4, 0xab09, 0x0)

20:01:21 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x1802000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000200000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:21 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2000000)

20:01:21 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
fsetxattr(r0, &(0x7f0000000000)=@known='user.syz\x00', &(0x7f0000000040)='/dev/dri/card#\x00', 0xf, 0x1)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x100, 0x0)
ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f00000000c0)=0xbb)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

20:01:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000300000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1688.868790][T29022] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:01:22 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4000000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1688.923447][T29022] FAULT_INJECTION: forcing a failure.
[ 1688.923447][T29022] name failslab, interval 1, probability 0, space 0, times 0
[ 1688.962791][T29022] CPU: 1 PID: 29022 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1688.972374][T29022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1688.982527][T29022] Call Trace:
[ 1688.985852][T29022]  dump_stack+0x172/0x1f0
[ 1688.990199][T29022]  should_fail.cold+0xa/0x15
[ 1688.994787][T29022]  ? string_nocheck+0x1ce/0x240
[ 1688.999645][T29022]  ? fault_create_debugfs_attr+0x180/0x180
[ 1689.005452][T29022]  ? page_to_nid.part.0+0x20/0x20
[ 1689.010494][T29022]  ? ___might_sleep+0x163/0x280
[ 1689.015349][T29022]  __should_failslab+0x121/0x190
[ 1689.020287][T29022]  should_failslab+0x9/0x14
[ 1689.024790][T29022]  __kmalloc_track_caller+0x2dc/0x760
[ 1689.030165][T29022]  ? console_unlock+0x6bb/0xf10
[ 1689.035020][T29022]  ? __kasan_check_read+0x11/0x20
[ 1689.040056][T29022]  ? kstrdup_const+0x66/0x80
[ 1689.044656][T29022]  kstrdup+0x3a/0x70
[ 1689.048553][T29022]  kstrdup_const+0x66/0x80
[ 1689.053237][T29022]  __kernfs_new_node+0xb1/0x6c0
[ 1689.058267][T29022]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1689.063742][T29022]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1689.069983][T29022]  ? irq_work_claim+0x98/0xc0
[ 1689.074685][T29022]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1689.080922][T29022]  ? irq_work_queue+0x30/0x90
[ 1689.085617][T29022]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1689.092057][T29022]  ? wake_up_klogd+0x99/0xd0
[ 1689.096661][T29022]  kernfs_new_node+0x96/0x120
[ 1689.101607][T29022]  kernfs_create_dir_ns+0x52/0x160
[ 1689.106733][T29022]  sysfs_create_dir_ns+0x136/0x290
[ 1689.111849][T29022]  ? sysfs_create_mount_point+0xa0/0xa0
[ 1689.117491][T29022]  ? kobject_add_internal+0x177/0x380
[ 1689.122891][T29022]  kobject_add_internal.cold+0x116/0x662
[ 1689.128533][T29022]  ? fault_create_debugfs_attr+0xb1/0x180
[ 1689.134267][T29022]  kobject_add+0x150/0x1c0
[ 1689.138682][T29022]  ? kset_create_and_add+0x1a0/0x1a0
[ 1689.143972][T29022]  ? lockdep_init_map+0x1be/0x6d0
[ 1689.149004][T29022]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1689.155251][T29022]  device_add+0x3b7/0x17a0
[ 1689.159674][T29022]  ? uevent_show+0x370/0x370
[ 1689.164429][T29022]  rfkill_register+0x1bf/0xb50
[ 1689.169205][T29022]  hci_register_dev+0x378/0x8f0
[ 1689.174062][T29022]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1689.179090][T29022]  tty_ioctl+0xaf9/0x14f0
[ 1689.183422][T29022]  ? hci_uart_init_work+0x180/0x180
[ 1689.188628][T29022]  ? do_tty_hangup+0x30/0x30
[ 1689.193217][T29022]  ? tomoyo_path_number_perm+0x459/0x520
[ 1689.198856][T29022]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1689.205095][T29022]  ? tomoyo_path_number_perm+0x263/0x520
[ 1689.210732][T29022]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1689.216553][T29022]  ? __kasan_check_read+0x11/0x20
20:01:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:22 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000211b0300000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1689.221581][T29022]  ? do_tty_hangup+0x30/0x30
[ 1689.226174][T29022]  do_vfs_ioctl+0xdb6/0x13e0
[ 1689.230767][T29022]  ? ioctl_preallocate+0x210/0x210
[ 1689.235880][T29022]  ? __fget+0x384/0x560
[ 1689.240039][T29022]  ? ksys_dup3+0x3e0/0x3e0
[ 1689.244478][T29022]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1689.250726][T29022]  ? fput_many+0x12c/0x1a0
[ 1689.255154][T29022]  ? tomoyo_file_ioctl+0x23/0x30
[ 1689.260097][T29022]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1689.266348][T29022]  ? security_file_ioctl+0x8d/0xc0
[ 1689.271466][T29022]  ksys_ioctl+0xab/0xd0
[ 1689.275625][T29022]  __x64_sys_ioctl+0x73/0xb0
[ 1689.280218][T29022]  do_syscall_64+0xfa/0x760
[ 1689.284729][T29022]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1689.290617][T29022] RIP: 0033:0x459829
[ 1689.294518][T29022] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1689.314156][T29022] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:01:22 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x9, 0x40)

[ 1689.322582][T29022] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1689.330550][T29022] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1689.338608][T29022] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1689.346578][T29022] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1689.355134][T29022] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1689.374903][T29022] kobject_add_internal failed for rfkill86 (error: -12 parent: hci0)
[ 1689.389191][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1689.396959][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1691.463795][T25754] Bluetooth: hci0: command 0x1003 tx timeout
[ 1691.473396][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1693.543838][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1693.549928][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1695.623773][T25754] Bluetooth: hci0: command 0x1009 tx timeout
20:01:32 executing program 1 (fault-call:2 fault-nth:51):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:01:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000400000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:32 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:01:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4002000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:32 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3000000)

20:01:32 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0xa00, 0x4)

20:01:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000500000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1699.762888][T29058] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1699.777347][T29058] FAULT_INJECTION: forcing a failure.
[ 1699.777347][T29058] name failslab, interval 1, probability 0, space 0, times 0
20:01:32 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = socket(0xb, 0x4, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x300000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@getneightbl={0x14, 0x42, 0x301, 0x70bd25, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20004004}, 0x10)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

20:01:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x4800000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1699.855963][T29058] CPU: 1 PID: 29058 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1699.865118][T29058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1699.875175][T29058] Call Trace:
[ 1699.878478][T29058]  dump_stack+0x172/0x1f0
[ 1699.882829][T29058]  should_fail.cold+0xa/0x15
[ 1699.887434][T29058]  ? fault_create_debugfs_attr+0x180/0x180
[ 1699.893246][T29058]  ? page_to_nid.part.0+0x20/0x20
[ 1699.898277][T29058]  ? ___might_sleep+0x163/0x280
[ 1699.903138][T29058]  __should_failslab+0x121/0x190
[ 1699.908083][T29058]  should_failslab+0x9/0x14
[ 1699.912586][T29058]  kmem_cache_alloc+0x2aa/0x710
[ 1699.917441][T29058]  ? mutex_unlock+0xd/0x10
[ 1699.921860][T29058]  __kernfs_new_node+0xf0/0x6c0
[ 1699.926711][T29058]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1699.933015][T29058]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1699.938820][T29058]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1699.944366][T29058]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1699.950614][T29058]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1699.956798][T29058]  ? __kasan_check_read+0x11/0x20
[ 1699.961831][T29058]  ? __kasan_check_write+0x14/0x20
[ 1699.966946][T29058]  kernfs_new_node+0x96/0x120
[ 1699.971627][T29058]  kernfs_create_link+0xd7/0x250
[ 1699.976572][T29058]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1699.982552][T29058]  sysfs_create_link+0x65/0xc0
[ 1699.987314][T29058]  device_add+0x635/0x17a0
[ 1699.991742][T29058]  ? uevent_show+0x370/0x370
[ 1699.996340][T29058]  rfkill_register+0x1bf/0xb50
[ 1700.001105][T29058]  hci_register_dev+0x378/0x8f0
[ 1700.005966][T29058]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1700.010992][T29058]  tty_ioctl+0xaf9/0x14f0
[ 1700.015318][T29058]  ? hci_uart_init_work+0x180/0x180
[ 1700.020521][T29058]  ? do_tty_hangup+0x30/0x30
[ 1700.025109][T29058]  ? tomoyo_path_number_perm+0x459/0x520
[ 1700.030745][T29058]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1700.036984][T29058]  ? tomoyo_path_number_perm+0x263/0x520
[ 1700.042878][T29058]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1700.048792][T29058]  ? __kasan_check_read+0x11/0x20
[ 1700.053824][T29058]  ? do_tty_hangup+0x30/0x30
[ 1700.058425][T29058]  do_vfs_ioctl+0xdb6/0x13e0
[ 1700.063036][T29058]  ? ioctl_preallocate+0x210/0x210
[ 1700.068319][T29058]  ? __fget+0x384/0x560
[ 1700.072491][T29058]  ? ksys_dup3+0x3e0/0x3e0
[ 1700.076907][T29058]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1700.083235][T29058]  ? fput_many+0x12c/0x1a0
[ 1700.087656][T29058]  ? tomoyo_file_ioctl+0x23/0x30
[ 1700.092594][T29058]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1700.098838][T29058]  ? security_file_ioctl+0x8d/0xc0
[ 1700.103950][T29058]  ksys_ioctl+0xab/0xd0
[ 1700.108108][T29058]  __x64_sys_ioctl+0x73/0xb0
[ 1700.112747][T29058]  do_syscall_64+0xfa/0x760
[ 1700.117255][T29058]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1700.123241][T29058] RIP: 0033:0x459829
[ 1700.127471][T29058] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1700.148466][T29058] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:01:33 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000600000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1700.156890][T29058] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1700.164981][T29058] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1700.172954][T29058] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1700.180923][T29058] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1700.188902][T29058] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1700.205112][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1702.263707][T25754] Bluetooth: hci0: command 0x1003 tx timeout
[ 1702.269859][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1704.343671][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1704.350381][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1706.423679][T25754] Bluetooth: hci0: command 0x1009 tx timeout
20:01:43 executing program 1 (fault-call:2 fault-nth:52):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:01:43 executing program 3:
lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
r1 = openat$capi20(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/capi20\x00', 0x42000, 0x0)
fstat(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = getgid()
setresgid(r0, r2, r3)
r4 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$NBD_SET_TIMEOUT(r5, 0xab09, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000000000)=0x40000)

20:01:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:43 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x5801000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:43 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x4000000)

20:01:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000060800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1710.618581][T29091] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:01:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x100)

20:01:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:43 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x6d00000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1710.668632][T29091] FAULT_INJECTION: forcing a failure.
[ 1710.668632][T29091] name failslab, interval 1, probability 0, space 0, times 0
[ 1710.749645][T29091] CPU: 1 PID: 29091 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1710.758812][T29091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1710.768887][T29091] Call Trace:
[ 1710.772461][T29091]  dump_stack+0x172/0x1f0
[ 1710.777562][T29091]  should_fail.cold+0xa/0x15
[ 1710.782164][T29091]  ? fault_create_debugfs_attr+0x180/0x180
[ 1710.788173][T29091]  ? page_to_nid.part.0+0x20/0x20
[ 1710.793547][T29091]  ? ___might_sleep+0x163/0x280
[ 1710.798854][T29091]  __should_failslab+0x121/0x190
[ 1710.803794][T29091]  should_failslab+0x9/0x14
[ 1710.808299][T29091]  kmem_cache_alloc+0x2aa/0x710
[ 1710.813158][T29091]  ? __kasan_check_write+0x14/0x20
[ 1710.818270][T29091]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1710.823824][T29091]  __kernfs_new_node+0xf0/0x6c0
[ 1710.828765][T29091]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1710.835014][T29091]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1710.840471][T29091]  ? mutex_unlock+0xd/0x10
[ 1710.844899][T29091]  ? debug_smp_processor_id+0x3c/0x214
[ 1710.850359][T29091]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1710.855899][T29091]  ? kernfs_add_one+0x131/0x4d0
[ 1710.860758][T29091]  kernfs_new_node+0x96/0x120
[ 1710.865444][T29091]  __kernfs_create_file+0x51/0x33b
[ 1710.870566][T29091]  sysfs_add_file_mode_ns+0x222/0x560
[ 1710.875949][T29091]  sysfs_create_file_ns+0x141/0x1d0
[ 1710.881324][T29091]  ? acpi_unbind_one+0x4a0/0x4a0
[ 1710.886269][T29091]  ? sysfs_add_file_mode_ns+0x560/0x560
[ 1710.891929][T29091]  ? kset_create_and_add+0x1a0/0x1a0
[ 1710.897712][T29091]  ? dev_fwnode+0xd/0x40
[ 1710.902580][T29091]  device_create_file+0xf6/0x1e0
[ 1710.907555][T29091]  device_add+0x5a3/0x17a0
[ 1710.912004][T29091]  ? uevent_show+0x370/0x370
[ 1710.916602][T29091]  rfkill_register+0x1bf/0xb50
[ 1710.921373][T29091]  hci_register_dev+0x378/0x8f0
[ 1710.926232][T29091]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1710.931262][T29091]  tty_ioctl+0xaf9/0x14f0
[ 1710.935595][T29091]  ? hci_uart_init_work+0x180/0x180
[ 1710.940824][T29091]  ? do_tty_hangup+0x30/0x30
[ 1710.945425][T29091]  ? tomoyo_path_number_perm+0x459/0x520
[ 1710.951326][T29091]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1710.957575][T29091]  ? tomoyo_path_number_perm+0x263/0x520
[ 1710.963230][T29091]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1710.969056][T29091]  ? __kasan_check_read+0x11/0x20
[ 1710.974088][T29091]  ? do_tty_hangup+0x30/0x30
[ 1710.978690][T29091]  do_vfs_ioctl+0xdb6/0x13e0
[ 1710.983374][T29091]  ? ioctl_preallocate+0x210/0x210
[ 1710.988574][T29091]  ? __fget+0x384/0x560
[ 1710.992822][T29091]  ? ksys_dup3+0x3e0/0x3e0
[ 1710.997254][T29091]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1711.003497][T29091]  ? fput_many+0x12c/0x1a0
[ 1711.008115][T29091]  ? tomoyo_file_ioctl+0x23/0x30
[ 1711.013144][T29091]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1711.019751][T29091]  ? security_file_ioctl+0x8d/0xc0
[ 1711.024984][T29091]  ksys_ioctl+0xab/0xd0
[ 1711.029147][T29091]  __x64_sys_ioctl+0x73/0xb0
[ 1711.033743][T29091]  do_syscall_64+0xfa/0x760
[ 1711.038252][T29091]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1711.044171][T29091] RIP: 0033:0x459829
[ 1711.048078][T29091] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1711.067786][T29091] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1711.076198][T29091] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1711.084177][T29091] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1711.092144][T29091] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
20:01:44 executing program 3:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$NBD_SET_TIMEOUT(0xffffffffffffffff, 0xab09, 0x0)

20:01:44 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000d00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1711.100113][T29091] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1711.108085][T29091] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1711.128819][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1713.143711][T25754] Bluetooth: hci0: command 0x1003 tx timeout
[ 1713.149870][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1715.223639][T25754] Bluetooth: hci0: command 0x1001 tx timeout
[ 1715.229883][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1717.303664][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:01:54 executing program 1 (fault-call:2 fault-nth:53):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:01:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:01:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xb010020000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:01:54 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x5000000)

20:01:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002900000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:01:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:01:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000180)={0x4, 0x6, 0x1, 0x0, 0x0, [{r0, 0x0, 0x3}]})
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x0, 0x0)
epoll_wait(r1, &(0x7f0000000040)=[{}, {}], 0x2, 0x0)
r2 = fcntl$dupfd(r0, 0xfffffffffffffffc, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x13f, 0xe}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r2, &(0x7f0000000140)={0x4, 0x8, 0xfa00, {r3}}, 0x238)

20:01:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xc2ffffff00000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1721.519508][T29125] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1721.537124][T29125] FAULT_INJECTION: forcing a failure.
[ 1721.537124][T29125] name failslab, interval 1, probability 0, space 0, times 0
[ 1721.589090][T29125] CPU: 0 PID: 29125 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1721.599052][T29125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1721.611155][T29125] Call Trace:
[ 1721.614468][T29125]  dump_stack+0x172/0x1f0
[ 1721.618829][T29125]  should_fail.cold+0xa/0x15
[ 1721.623444][T29125]  ? mark_held_locks+0xf0/0xf0
[ 1721.628225][T29125]  ? fault_create_debugfs_attr+0x180/0x180
[ 1721.634213][T29125]  ? page_to_nid.part.0+0x20/0x20
[ 1721.639335][T29125]  ? ___might_sleep+0x163/0x280
[ 1721.644210][T29125]  __should_failslab+0x121/0x190
[ 1721.649799][T29125]  should_failslab+0x9/0x14
[ 1721.654405][T29125]  kmem_cache_alloc+0x2aa/0x710
[ 1721.659268][T29125]  ? kernfs_activate+0x34/0x1f0
[ 1721.664212][T29125]  ? __mutex_lock+0x45d/0x13c0
[ 1721.669109][T29125]  ? __kasan_check_read+0x11/0x20
[ 1721.674229][T29125]  __kernfs_new_node+0xf0/0x6c0
[ 1721.679783][T29125]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1721.686006][T29125]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1721.691445][T29125]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1721.696975][T29125]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1721.703631][T29125]  ? __kasan_check_read+0x11/0x20
[ 1721.708635][T29125]  ? __kasan_check_write+0x14/0x20
[ 1721.713730][T29125]  kernfs_new_node+0x96/0x120
[ 1721.718393][T29125]  kernfs_create_link+0xd7/0x250
[ 1721.723399][T29125]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1721.729444][T29125]  sysfs_create_link+0x65/0xc0
[ 1721.734290][T29125]  device_add+0x6bf/0x17a0
[ 1721.738873][T29125]  ? uevent_show+0x370/0x370
[ 1721.743450][T29125]  rfkill_register+0x1bf/0xb50
[ 1721.748200][T29125]  hci_register_dev+0x378/0x8f0
[ 1721.753035][T29125]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1721.758305][T29125]  tty_ioctl+0xaf9/0x14f0
[ 1721.762616][T29125]  ? hci_uart_init_work+0x180/0x180
[ 1721.767977][T29125]  ? do_tty_hangup+0x30/0x30
[ 1721.772730][T29125]  ? tomoyo_path_number_perm+0x459/0x520
[ 1721.778360][T29125]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1721.784589][T29125]  ? tomoyo_path_number_perm+0x263/0x520
[ 1721.790394][T29125]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1721.796359][T29125]  ? __kasan_check_read+0x11/0x20
[ 1721.801467][T29125]  ? do_tty_hangup+0x30/0x30
[ 1721.806329][T29125]  do_vfs_ioctl+0xdb6/0x13e0
[ 1721.811000][T29125]  ? ioctl_preallocate+0x210/0x210
[ 1721.816264][T29125]  ? __fget+0x384/0x560
[ 1721.820413][T29125]  ? ksys_dup3+0x3e0/0x3e0
[ 1721.824810][T29125]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1721.831048][T29125]  ? fput_many+0x12c/0x1a0
[ 1721.835450][T29125]  ? tomoyo_file_ioctl+0x23/0x30
[ 1721.840376][T29125]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1721.846601][T29125]  ? security_file_ioctl+0x8d/0xc0
[ 1721.851702][T29125]  ksys_ioctl+0xab/0xd0
[ 1721.856447][T29125]  __x64_sys_ioctl+0x73/0xb0
[ 1721.861724][T29125]  do_syscall_64+0xfa/0x760
[ 1721.866474][T29125]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1721.873087][T29125] RIP: 0033:0x459829
[ 1721.876964][T29125] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1721.898995][T29125] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1721.908439][T29125] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1721.916477][T29125] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1721.924436][T29125] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1721.932494][T29125] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
20:01:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002b00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1721.940443][T29125] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1721.965412][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1721.973336][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
20:01:55 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x80000003, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1724.023691][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1724.034642][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1726.103726][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1726.109824][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1728.183690][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:02:05 executing program 1 (fault-call:2 fault-nth:54):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:02:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:02:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0xffffffffffffffff)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:02:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002c00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xd01001ff00000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:05 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x6000000)

20:02:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002f00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000000), 0x4)

20:02:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1732.414688][T29161] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1732.449992][T29161] FAULT_INJECTION: forcing a failure.
[ 1732.449992][T29161] name failslab, interval 1, probability 0, space 0, times 0
[ 1732.501075][T29161] CPU: 0 PID: 29161 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1732.510324][T29161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1732.521198][T29161] Call Trace:
[ 1732.524485][T29161]  dump_stack+0x172/0x1f0
[ 1732.528875][T29161]  should_fail.cold+0xa/0x15
[ 1732.534460][T29161]  ? fault_create_debugfs_attr+0x180/0x180
[ 1732.540286][T29161]  ? page_to_nid.part.0+0x20/0x20
[ 1732.545295][T29161]  ? ___might_sleep+0x163/0x280
[ 1732.550131][T29161]  __should_failslab+0x121/0x190
[ 1732.555142][T29161]  should_failslab+0x9/0x14
[ 1732.559893][T29161]  __kmalloc_track_caller+0x2dc/0x760
[ 1732.565695][T29161]  ? __kasan_check_read+0x11/0x20
[ 1732.571135][T29161]  ? __mutex_lock+0x45d/0x13c0
[ 1732.576405][T29161]  ? kstrdup_const+0x66/0x80
[ 1732.580985][T29161]  kstrdup+0x3a/0x70
[ 1732.584880][T29161]  kstrdup_const+0x66/0x80
[ 1732.589289][T29161]  __kernfs_new_node+0xb1/0x6c0
[ 1732.594129][T29161]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1732.600462][T29161]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1732.606167][T29161]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1732.611709][T29161]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1732.618382][T29161]  ? __kasan_check_read+0x11/0x20
[ 1732.623620][T29161]  ? __kasan_check_write+0x14/0x20
[ 1732.629251][T29161]  kernfs_new_node+0x96/0x120
[ 1732.633912][T29161]  kernfs_create_link+0xd7/0x250
[ 1732.640136][T29161]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1732.646188][T29161]  sysfs_create_link+0x65/0xc0
[ 1732.650935][T29161]  device_add+0x75c/0x17a0
[ 1732.655755][T29161]  ? uevent_show+0x370/0x370
[ 1732.661377][T29161]  rfkill_register+0x1bf/0xb50
[ 1732.666126][T29161]  hci_register_dev+0x378/0x8f0
[ 1732.670965][T29161]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1732.676151][T29161]  tty_ioctl+0xaf9/0x14f0
[ 1732.680552][T29161]  ? hci_uart_init_work+0x180/0x180
[ 1732.685728][T29161]  ? do_tty_hangup+0x30/0x30
[ 1732.690309][T29161]  ? tomoyo_path_number_perm+0x459/0x520
[ 1732.696882][T29161]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1732.703191][T29161]  ? tomoyo_path_number_perm+0x263/0x520
[ 1732.709339][T29161]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1732.715131][T29161]  ? __kasan_check_read+0x11/0x20
[ 1732.720573][T29161]  ? do_tty_hangup+0x30/0x30
[ 1732.725636][T29161]  do_vfs_ioctl+0xdb6/0x13e0
[ 1732.730304][T29161]  ? ioctl_preallocate+0x210/0x210
[ 1732.735393][T29161]  ? __fget+0x384/0x560
[ 1732.739539][T29161]  ? ksys_dup3+0x3e0/0x3e0
[ 1732.744112][T29161]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1732.750433][T29161]  ? fput_many+0x12c/0x1a0
[ 1732.754840][T29161]  ? tomoyo_file_ioctl+0x23/0x30
[ 1732.759767][T29161]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1732.765995][T29161]  ? security_file_ioctl+0x8d/0xc0
[ 1732.771105][T29161]  ksys_ioctl+0xab/0xd0
[ 1732.775243][T29161]  __x64_sys_ioctl+0x73/0xb0
[ 1732.779816][T29161]  do_syscall_64+0xfa/0x760
[ 1732.784302][T29161]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1732.790170][T29161] RIP: 0033:0x459829
[ 1732.794049][T29161] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1732.813747][T29161] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1732.822224][T29161] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1732.830173][T29161] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1732.838128][T29161] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
20:02:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000211d3b00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xd010020000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000000)={0x3, <r1=>0x0, 0x2, 0x4})
ioctl$DRM_IOCTL_SG_ALLOC(r0, 0xc0106438, &(0x7f0000000040)={0x6, r1})
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

[ 1732.846092][T29161] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1732.854569][T29161] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1732.915810][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1732.927655][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1734.983704][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1734.989998][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1737.063693][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1737.074128][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1739.143694][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:02:16 executing program 1 (fault-call:2 fault-nth:55):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:02:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000003c00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20:02:16 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
connect$llc(r1, &(0x7f0000000000)={0x1a, 0x0, 0x7, 0x1, 0x6, 0x6}, 0x10)

20:02:16 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x7000000)

20:02:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xd030020000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:16 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x9b4)
write$9p(r1, &(0x7f0000000000)="bffbb562e1d18baa2dd0a63ee9c2d7da1dead2bd26fcc627c4996b286ee05e913b60cab3c86f76d69af3cca0eadb7fa8d0576ef8ace1f876a94127467bc2349b50ba8d8c75485dd64c07446ccb03b76c8e467e59d46c20702a450db26c5c5c122fbe411f2bb7113590f8646e32555bc6256372c6c9d787f9dfdf49978f401f054724b61328ac54fc4d363faa926013a792077b7b7f06eb86542d559877ae8047936c259de4898f6c235845247ac1d106c3b129b5f95b7da82e925767fff0157be49e1decc3a13ab9cad19667f3623cbd34bfa113a4cee047fa1c1c5098b133db10", 0xe1)

20:02:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000004000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1743.294264][T29196] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:02:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xe803000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1743.335224][T29196] FAULT_INJECTION: forcing a failure.
[ 1743.335224][T29196] name failslab, interval 1, probability 0, space 0, times 0
[ 1743.386528][T29196] CPU: 0 PID: 29196 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1743.395685][T29196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1743.405762][T29196] Call Trace:
[ 1743.409161][T29196]  dump_stack+0x172/0x1f0
[ 1743.413516][T29196]  should_fail.cold+0xa/0x15
[ 1743.418123][T29196]  ? fault_create_debugfs_attr+0x180/0x180
[ 1743.423935][T29196]  ? page_to_nid.part.0+0x20/0x20
[ 1743.429144][T29196]  ? ___might_sleep+0x163/0x280
[ 1743.434021][T29196]  __should_failslab+0x121/0x190
[ 1743.438978][T29196]  should_failslab+0x9/0x14
[ 1743.443516][T29196]  __kmalloc_track_caller+0x2dc/0x760
[ 1743.449085][T29196]  ? __kasan_check_read+0x11/0x20
[ 1743.454129][T29196]  ? __mutex_lock+0x45d/0x13c0
[ 1743.458985][T29196]  ? kstrdup_const+0x66/0x80
[ 1743.463618][T29196]  kstrdup+0x3a/0x70
[ 1743.467951][T29196]  kstrdup_const+0x66/0x80
[ 1743.472377][T29196]  __kernfs_new_node+0xb1/0x6c0
[ 1743.477236][T29196]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1743.483484][T29196]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1743.488944][T29196]  ? perf_trace_lock_acquire+0xf5/0x530
[ 1743.494500][T29196]  ? sysfs_do_create_link_sd.isra.0+0x82/0x130
[ 1743.500656][T29196]  ? __kasan_check_read+0x11/0x20
[ 1743.505683][T29196]  ? __kasan_check_write+0x14/0x20
[ 1743.510815][T29196]  kernfs_new_node+0x96/0x120
[ 1743.515676][T29196]  kernfs_create_link+0xd7/0x250
[ 1743.520620][T29196]  sysfs_do_create_link_sd.isra.0+0x90/0x130
[ 1743.526610][T29196]  sysfs_create_link+0x65/0xc0
[ 1743.531379][T29196]  device_add+0x75c/0x17a0
[ 1743.536858][T29196]  ? uevent_show+0x370/0x370
[ 1743.541465][T29196]  rfkill_register+0x1bf/0xb50
[ 1743.546237][T29196]  hci_register_dev+0x378/0x8f0
[ 1743.551098][T29196]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1743.556138][T29196]  tty_ioctl+0xaf9/0x14f0
[ 1743.560485][T29196]  ? hci_uart_init_work+0x180/0x180
[ 1743.565684][T29196]  ? do_tty_hangup+0x30/0x30
[ 1743.570533][T29196]  ? tomoyo_path_number_perm+0x459/0x520
[ 1743.576184][T29196]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1743.582433][T29196]  ? tomoyo_path_number_perm+0x263/0x520
[ 1743.588246][T29196]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1743.594093][T29196]  ? __kasan_check_read+0x11/0x20
[ 1743.599228][T29196]  ? do_tty_hangup+0x30/0x30
[ 1743.604091][T29196]  do_vfs_ioctl+0xdb6/0x13e0
[ 1743.608702][T29196]  ? ioctl_preallocate+0x210/0x210
[ 1743.613815][T29196]  ? __fget+0x384/0x560
[ 1743.618072][T29196]  ? ksys_dup3+0x3e0/0x3e0
[ 1743.622500][T29196]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1743.628840][T29196]  ? fput_many+0x12c/0x1a0
[ 1743.633359][T29196]  ? tomoyo_file_ioctl+0x23/0x30
[ 1743.638311][T29196]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1743.644991][T29196]  ? security_file_ioctl+0x8d/0xc0
[ 1743.650120][T29196]  ksys_ioctl+0xab/0xd0
[ 1743.654288][T29196]  __x64_sys_ioctl+0x73/0xb0
[ 1743.658884][T29196]  do_syscall_64+0xfa/0x760
[ 1743.663484][T29196]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1743.669385][T29196] RIP: 0033:0x459829
[ 1743.673280][T29196] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1743.692996][T29196] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1743.701676][T29196] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1743.709993][T29196] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1743.718060][T29196] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1743.726033][T29196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
20:02:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20:02:16 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x20404)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1743.734011][T29196] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:02:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000054300000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1743.781260][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1745.783653][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1745.791154][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1747.863697][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1747.869802][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1749.943689][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:02:27 executing program 1 (fault-call:2 fault-nth:56):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:02:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20:02:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
r2 = getpid()
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f00000000c0)={0x2, 0x9, r2, 0x0, r3, 0x0, 0xb34, 0x5})

20:02:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000006000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:27 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xf401000000000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:27 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x8000000)

20:02:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000040)=0x7b9, 0x2)
ioctl$DRM_IOCTL_ADD_BUFS(r0, 0xc0206416, &(0x7f00000000c0)={0x2, 0x7fff, 0x8, 0x6, 0x4})
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$sock_bt_hidp_HIDPCONNDEL(r1, 0x400448c9, &(0x7f0000000000)={{0x2, 0x101, 0x5, 0x9, 0xd034, 0x7}, 0xffffffff})

20:02:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000e8000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:27 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[ 1754.162344][T29230] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1754.206257][T29230] FAULT_INJECTION: forcing a failure.
[ 1754.206257][T29230] name failslab, interval 1, probability 0, space 0, times 0
[ 1754.222235][T29230] CPU: 0 PID: 29230 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1754.231390][T29230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1754.241467][T29230] Call Trace:
[ 1754.241493][T29230]  dump_stack+0x172/0x1f0
[ 1754.241517][T29230]  should_fail.cold+0xa/0x15
[ 1754.253694][T29230]  ? fault_create_debugfs_attr+0x180/0x180
[ 1754.259503][T29230]  ? page_to_nid.part.0+0x20/0x20
[ 1754.259523][T29230]  ? ___might_sleep+0x163/0x280
[ 1754.269379][T29230]  __should_failslab+0x121/0x190
[ 1754.274327][T29230]  should_failslab+0x9/0x14
[ 1754.278838][T29230]  kmem_cache_alloc+0x2aa/0x710
[ 1754.283708][T29230]  ? debug_smp_processor_id+0x3c/0x214
[ 1754.289186][T29230]  __kernfs_new_node+0xf0/0x6c0
[ 1754.289203][T29230]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1754.289219][T29230]  ? lock_acquire+0x190/0x410
[ 1754.289230][T29230]  ? kernfs_activate+0x34/0x1f0
[ 1754.289244][T29230]  ? kernfs_activate+0x192/0x1f0
[ 1754.289266][T29230]  ? __kasan_check_read+0x11/0x20
[ 1754.299539][T29230]  ? __mutex_lock+0x45d/0x13c0
[ 1754.299556][T29230]  kernfs_new_node+0x96/0x120
[ 1754.299571][T29230]  __kernfs_create_file+0x51/0x33b
[ 1754.299586][T29230]  sysfs_add_file_mode_ns+0x222/0x560
[ 1754.299606][T29230]  internal_create_group+0x359/0xc30
[ 1754.299625][T29230]  ? remove_files.isra.0+0x190/0x190
[ 1754.299646][T29230]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
20:02:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000358000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0xffffffffffffffff)
r1 = fcntl$dupfd(r0, 0x0, r0)
signalfd4(r1, &(0x7f0000000080)={0x5}, 0x8, 0x80000)
fremovexattr(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"])
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:02:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x2, 0x4000)

[ 1754.323984][T29230]  ? kernfs_create_link+0x1cc/0x250
[ 1754.324001][T29230]  internal_create_groups.part.0+0x90/0x140
[ 1754.324016][T29230]  sysfs_create_groups+0x2a/0x50
[ 1754.324030][T29230]  device_add+0x80f/0x17a0
[ 1754.324045][T29230]  ? uevent_show+0x370/0x370
[ 1754.324070][T29230]  rfkill_register+0x1bf/0xb50
[ 1754.333837][T29230]  hci_register_dev+0x378/0x8f0
[ 1754.333857][T29230]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1754.333875][T29230]  tty_ioctl+0xaf9/0x14f0
[ 1754.333888][T29230]  ? hci_uart_init_work+0x180/0x180
[ 1754.333906][T29230]  ? do_tty_hangup+0x30/0x30
[ 1754.412949][T29230]  ? tomoyo_path_number_perm+0x459/0x520
[ 1754.419746][T29230]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1754.426012][T29230]  ? tomoyo_path_number_perm+0x263/0x520
[ 1754.431673][T29230]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1754.437499][T29230]  ? __kasan_check_read+0x11/0x20
[ 1754.437520][T29230]  ? do_tty_hangup+0x30/0x30
[ 1754.437538][T29230]  do_vfs_ioctl+0xdb6/0x13e0
[ 1754.447139][T29230]  ? ioctl_preallocate+0x210/0x210
[ 1754.447154][T29230]  ? __fget+0x384/0x560
[ 1754.447172][T29230]  ? ksys_dup3+0x3e0/0x3e0
[ 1754.465523][T29230]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1754.471793][T29230]  ? fput_many+0x12c/0x1a0
[ 1754.476247][T29230]  ? tomoyo_file_ioctl+0x23/0x30
[ 1754.481221][T29230]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1754.487493][T29230]  ? security_file_ioctl+0x8d/0xc0
[ 1754.492633][T29230]  ksys_ioctl+0xab/0xd0
[ 1754.496803][T29230]  __x64_sys_ioctl+0x73/0xb0
[ 1754.501405][T29230]  do_syscall_64+0xfa/0x760
[ 1754.505925][T29230]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1754.511823][T29230] RIP: 0033:0x459829
[ 1754.515739][T29230] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1754.535444][T29230] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1754.543875][T29230] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1754.551883][T29230] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1754.551892][T29230] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1754.551901][T29230] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1754.551909][T29230] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1754.609837][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1756.663659][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1756.669827][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1758.743666][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1758.749794][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1760.823677][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:02:38 executing program 1 (fault-call:2 fault-nth:57):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:02:38 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffff7f00000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:38 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r1, 0xae80, 0x0)

20:02:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000008100000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:38 executing program 3:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x400, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000000c0)={0x7, 0x8, 0x6, 0x9, 0x9})
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, &(0x7f0000000040)=0x879)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x729, 0x81, 0x3, 0xb1e, 0x7f, 0x5})
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="180426bd7000fedbdf0b400000150c0007000800010008000000100007000c0004000000000000e40000280005002400020008000200eb000000480003008f08000800040025640000"], 0x58}, 0x1, 0x0, 0x0, 0x20000000}, 0x4005)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00')
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8002804}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x5c, r3, 0x820, 0x70bd2b, 0x25dfdbfe, {}, [@SEG6_ATTR_ALGID={0x8, 0x6, 0x8}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x2]}, @SEG6_ATTR_ALGID={0x8, 0x6, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10000}, @SEG6_ATTR_SECRETLEN={0x8}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xed}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x1}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x9}, @SEG6_ATTR_ALGID={0x8, 0x6, 0x80000000}]}, 0x5c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
r4 = fcntl$dupfd(r1, 0x0, r1)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000480)={r4, &(0x7f0000000440)="035ff45dd00b3151cc9e2736f95f145a8abd99def5ecbb30892520f7e77ee44cefc6e13cccf96b8cbb0c4ac70985aae5"}, 0x10)
ioctl$NBD_SET_TIMEOUT(r4, 0xab09, 0x0)

20:02:38 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc000000)

20:02:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000ffffdd8600000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:38 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r1, 0xae80, 0x0)

20:02:38 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x4)

[ 1765.045704][T29263] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1765.080506][T29263] FAULT_INJECTION: forcing a failure.
[ 1765.080506][T29263] name failslab, interval 1, probability 0, space 0, times 0
[ 1765.104132][T29263] CPU: 0 PID: 29263 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1765.113337][T29263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1765.123398][T29263] Call Trace:
[ 1765.126753][T29263]  dump_stack+0x172/0x1f0
[ 1765.131390][T29263]  should_fail.cold+0xa/0x15
[ 1765.136994][T29263]  ? fault_create_debugfs_attr+0x180/0x180
[ 1765.142944][T29263]  ? page_to_nid.part.0+0x20/0x20
[ 1765.147980][T29263]  ? ___might_sleep+0x163/0x280
20:02:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000478800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:38 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffffff00000000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1765.147999][T29263]  __should_failslab+0x121/0x190
[ 1765.148016][T29263]  should_failslab+0x9/0x14
[ 1765.148029][T29263]  kmem_cache_alloc+0x2aa/0x710
[ 1765.148049][T29263]  ? __mutex_lock+0x45d/0x13c0
[ 1765.157859][T29263]  __kernfs_new_node+0xf0/0x6c0
[ 1765.157879][T29263]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1765.182435][T29263]  ? wait_for_completion+0x440/0x440
[ 1765.187720][T29263]  ? mutex_unlock+0xd/0x10
[ 1765.187734][T29263]  ? kernfs_activate+0x192/0x1f0
[ 1765.187749][T29263]  kernfs_new_node+0x96/0x120
20:02:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 1765.187763][T29263]  __kernfs_create_file+0x51/0x33b
[ 1765.187778][T29263]  sysfs_add_file_mode_ns+0x222/0x560
[ 1765.187796][T29263]  internal_create_group+0x359/0xc30
[ 1765.187819][T29263]  ? remove_files.isra.0+0x190/0x190
[ 1765.212385][T29263]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1765.212400][T29263]  ? kernfs_create_link+0x1cc/0x250
[ 1765.212420][T29263]  internal_create_groups.part.0+0x90/0x140
[ 1765.241364][T29263]  sysfs_create_groups+0x2a/0x50
[ 1765.246324][T29263]  device_add+0x80f/0x17a0
[ 1765.251287][T29263]  ? uevent_show+0x370/0x370
[ 1765.255991][T29263]  rfkill_register+0x1bf/0xb50
[ 1765.260762][T29263]  hci_register_dev+0x378/0x8f0
[ 1765.260784][T29263]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1765.260808][T29263]  tty_ioctl+0xaf9/0x14f0
[ 1765.275880][T29263]  ? hci_uart_init_work+0x180/0x180
[ 1765.281332][T29263]  ? do_tty_hangup+0x30/0x30
[ 1765.285912][T29263]  ? tomoyo_path_number_perm+0x459/0x520
[ 1765.291549][T29263]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1765.298041][T29263]  ? tomoyo_path_number_perm+0x263/0x520
[ 1765.303658][T29263]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1765.309454][T29263]  ? __kasan_check_read+0x11/0x20
[ 1765.316499][T29263]  ? do_tty_hangup+0x30/0x30
[ 1765.323661][T29263]  do_vfs_ioctl+0xdb6/0x13e0
[ 1765.328333][T29263]  ? ioctl_preallocate+0x210/0x210
[ 1765.333444][T29263]  ? __fget+0x384/0x560
[ 1765.337590][T29263]  ? ksys_dup3+0x3e0/0x3e0
[ 1765.342611][T29263]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1765.349027][T29263]  ? fput_many+0x12c/0x1a0
[ 1765.353428][T29263]  ? tomoyo_file_ioctl+0x23/0x30
[ 1765.358349][T29263]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1765.364583][T29263]  ? security_file_ioctl+0x8d/0xc0
[ 1765.369677][T29263]  ksys_ioctl+0xab/0xd0
[ 1765.373826][T29263]  __x64_sys_ioctl+0x73/0xb0
[ 1765.378422][T29263]  do_syscall_64+0xfa/0x760
[ 1765.383109][T29263]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1765.388993][T29263] RIP: 0033:0x459829
[ 1765.392896][T29263] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1765.412494][T29263] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1765.420907][T29263] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1765.428862][T29263] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1765.436833][T29263] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1765.444883][T29263] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1765.455735][T29263] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1765.594520][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1767.623659][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1767.629838][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1769.703681][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1769.709789][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1771.783653][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:02:48 executing program 1 (fault-call:2 fault-nth:58):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:02:48 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x100fff)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x0, 0x8000)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000100)={'nat\x00'}, &(0x7f0000000180)=0x78)
getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r3=>0x0, 0xffff}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000000c0)={r3, 0xffffffffffff83c4}, &(0x7f00000001c0)=0x8)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

20:02:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000488800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffffffa0008000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:48 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xd260000)

20:02:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:02:48 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:02:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000648800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffffffa0010000, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1775.910469][T29300] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1775.927501][T29300] FAULT_INJECTION: forcing a failure.
[ 1775.927501][T29300] name failslab, interval 1, probability 0, space 0, times 0
[ 1775.989907][T29300] CPU: 0 PID: 29300 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1775.999331][T29300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1776.010331][T29300] Call Trace:
[ 1776.013675][T29300]  dump_stack+0x172/0x1f0
[ 1776.018345][T29300]  should_fail.cold+0xa/0x15
[ 1776.023141][T29300]  ? fault_create_debugfs_attr+0x180/0x180
[ 1776.029190][T29300]  ? page_to_nid.part.0+0x20/0x20
[ 1776.034652][T29300]  ? ___might_sleep+0x163/0x280
[ 1776.039704][T29300]  __should_failslab+0x121/0x190
[ 1776.044670][T29300]  should_failslab+0x9/0x14
[ 1776.049557][T29300]  kmem_cache_alloc+0x2aa/0x710
[ 1776.054530][T29300]  ? __mutex_lock+0x45d/0x13c0
[ 1776.059422][T29300]  __kernfs_new_node+0xf0/0x6c0
[ 1776.064492][T29300]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1776.069952][T29300]  ? wait_for_completion+0x440/0x440
[ 1776.075240][T29300]  ? mutex_unlock+0xd/0x10
[ 1776.079649][T29300]  ? kernfs_activate+0x192/0x1f0
[ 1776.084574][T29300]  kernfs_new_node+0x96/0x120
[ 1776.089331][T29300]  __kernfs_create_file+0x51/0x33b
[ 1776.094609][T29300]  sysfs_add_file_mode_ns+0x222/0x560
[ 1776.099973][T29300]  internal_create_group+0x359/0xc30
[ 1776.105806][T29300]  ? remove_files.isra.0+0x190/0x190
[ 1776.111087][T29300]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1776.117489][T29300]  ? kernfs_create_link+0x1cc/0x250
[ 1776.122803][T29300]  internal_create_groups.part.0+0x90/0x140
[ 1776.129470][T29300]  sysfs_create_groups+0x2a/0x50
[ 1776.134533][T29300]  device_add+0x80f/0x17a0
[ 1776.139115][T29300]  ? uevent_show+0x370/0x370
[ 1776.144050][T29300]  rfkill_register+0x1bf/0xb50
[ 1776.148809][T29300]  hci_register_dev+0x378/0x8f0
[ 1776.153658][T29300]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1776.158760][T29300]  tty_ioctl+0xaf9/0x14f0
[ 1776.163130][T29300]  ? hci_uart_init_work+0x180/0x180
[ 1776.168648][T29300]  ? do_tty_hangup+0x30/0x30
[ 1776.173406][T29300]  ? tomoyo_path_number_perm+0x459/0x520
[ 1776.179030][T29300]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1776.185913][T29300]  ? tomoyo_path_number_perm+0x263/0x520
[ 1776.191533][T29300]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1776.197346][T29300]  ? __kasan_check_read+0x11/0x20
[ 1776.202406][T29300]  ? do_tty_hangup+0x30/0x30
[ 1776.207092][T29300]  do_vfs_ioctl+0xdb6/0x13e0
[ 1776.211900][T29300]  ? ioctl_preallocate+0x210/0x210
[ 1776.217017][T29300]  ? __fget+0x384/0x560
[ 1776.221416][T29300]  ? ksys_dup3+0x3e0/0x3e0
[ 1776.226024][T29300]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1776.232467][T29300]  ? fput_many+0x12c/0x1a0
[ 1776.237275][T29300]  ? tomoyo_file_ioctl+0x23/0x30
[ 1776.242512][T29300]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1776.255020][T29300]  ? security_file_ioctl+0x8d/0xc0
[ 1776.261155][T29300]  ksys_ioctl+0xab/0xd0
[ 1776.265492][T29300]  __x64_sys_ioctl+0x73/0xb0
[ 1776.270593][T29300]  do_syscall_64+0xfa/0x760
[ 1776.275611][T29300]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1776.281491][T29300] RIP: 0033:0x459829
[ 1776.285423][T29300] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1776.305361][T29300] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1776.314575][T29300] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1776.322536][T29300] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1776.330493][T29300] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
20:02:49 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:02:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000ffffa88800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1776.338469][T29300] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1776.346864][T29300] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:02:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000ffffca8800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1776.474246][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1778.503701][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1778.511043][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1780.583650][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1780.590096][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1782.663703][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:02:59 executing program 1 (fault-call:2 fault-nth:59):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:02:59 executing program 3:
r0 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x1, 0x2)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000140)={0xa5b, 0xfffffffffffffffb, 0x1, 0x1})
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
recvfrom(r0, &(0x7f0000000180)=""/197, 0xc5, 0x40000020, &(0x7f0000000280)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast]}, 0x80)
r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x80, 0x0)
write$P9_RSTAT(r2, &(0x7f0000000040)={0x76, 0x7d, 0x2, {0x0, 0x6f, 0xe8, 0x5, {0x20, 0x2, 0x6}, 0x40000, 0x81, 0x5, 0x7, 0xf, '/dev/dri/card#\x00', 0xf, '/dev/dri/card#\x00', 0xf, '/dev/dri/card#\x00', 0xf, '/dev/dri/card#\x00'}}, 0x76)
r3 = fcntl$dupfd(r1, 0x0, r1)
ioctl$SCSI_IOCTL_DOORUNLOCK(r3, 0x5381)
ioctl$NBD_SET_TIMEOUT(r3, 0xab09, 0x2)

20:02:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000068900000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:02:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:02:59 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x10000000)

20:02:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0xffffffffffffffff, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:02:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000ffffff8900000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1786.757539][T29337] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1786.786939][T29337] FAULT_INJECTION: forcing a failure.
[ 1786.786939][T29337] name failslab, interval 1, probability 0, space 0, times 0
20:02:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000080)={0x0, 0xa, 0x5})
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
ioctl$DRM_IOCTL_CONTROL(r0, 0x40086414, &(0x7f0000000000)={0x3, 0x80})

[ 1786.838891][T29337] CPU: 0 PID: 29337 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1786.848125][T29337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1786.858363][T29337] Call Trace:
[ 1786.861686][T29337]  dump_stack+0x172/0x1f0
[ 1786.866039][T29337]  should_fail.cold+0xa/0x15
[ 1786.870661][T29337]  ? fault_create_debugfs_attr+0x180/0x180
[ 1786.876479][T29337]  ? page_to_nid.part.0+0x20/0x20
[ 1786.881530][T29337]  ? ___might_sleep+0x163/0x280
20:03:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1786.886935][T29337]  __should_failslab+0x121/0x190
[ 1786.892250][T29337]  should_failslab+0x9/0x14
[ 1786.896771][T29337]  kmem_cache_alloc+0x2aa/0x710
[ 1786.901721][T29337]  ? __mutex_lock+0x45d/0x13c0
[ 1786.906508][T29337]  __kernfs_new_node+0xf0/0x6c0
[ 1786.911377][T29337]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1786.916842][T29337]  ? wait_for_completion+0x440/0x440
[ 1786.922138][T29337]  ? mutex_unlock+0xd/0x10
[ 1786.922152][T29337]  ? kernfs_activate+0x192/0x1f0
[ 1786.922170][T29337]  kernfs_new_node+0x96/0x120
[ 1786.936277][T29337]  __kernfs_create_file+0x51/0x33b
[ 1786.941513][T29337]  sysfs_add_file_mode_ns+0x222/0x560
[ 1786.947178][T29337]  internal_create_group+0x359/0xc30
[ 1786.952494][T29337]  ? remove_files.isra.0+0x190/0x190
[ 1786.957843][T29337]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1786.964138][T29337]  ? kernfs_create_link+0x1cc/0x250
[ 1786.969361][T29337]  internal_create_groups.part.0+0x90/0x140
[ 1786.975281][T29337]  sysfs_create_groups+0x2a/0x50
[ 1786.980264][T29337]  device_add+0x80f/0x17a0
[ 1786.984704][T29337]  ? uevent_show+0x370/0x370
20:03:00 executing program 3:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00')
sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc0001000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x15c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0xa4, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x59}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'gre0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x6, @remote, 0x9}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x1, @local, 0x9}}}}]}, @TIPC_NLA_BEARER={0x54, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x81, @empty, 0xcc9f}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'bridge0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_BEARER={0x50, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x8, @rand_addr="0a879a95dcec97fdeac79bae5a6468b5"}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @empty, 0xb}}}}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x10}, 0x4008000)
r2 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$NBD_SET_TIMEOUT(r3, 0xab09, 0x0)

[ 1786.989325][T29337]  rfkill_register+0x1bf/0xb50
[ 1786.994111][T29337]  hci_register_dev+0x378/0x8f0
[ 1786.998983][T29337]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1787.004072][T29337]  tty_ioctl+0xaf9/0x14f0
[ 1787.008424][T29337]  ? hci_uart_init_work+0x180/0x180
[ 1787.013649][T29337]  ? do_tty_hangup+0x30/0x30
[ 1787.018266][T29337]  ? tomoyo_path_number_perm+0x459/0x520
[ 1787.023922][T29337]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1787.030570][T29337]  ? tomoyo_path_number_perm+0x263/0x520
[ 1787.036220][T29337]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1787.036244][T29337]  ? __kasan_check_read+0x11/0x20
[ 1787.036262][T29337]  ? do_tty_hangup+0x30/0x30
[ 1787.036278][T29337]  do_vfs_ioctl+0xdb6/0x13e0
[ 1787.036296][T29337]  ? ioctl_preallocate+0x210/0x210
[ 1787.051683][T29337]  ? __fget+0x384/0x560
[ 1787.051703][T29337]  ? ksys_dup3+0x3e0/0x3e0
[ 1787.051720][T29337]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1787.051739][T29337]  ? fput_many+0x12c/0x1a0
[ 1787.081712][T29337]  ? tomoyo_file_ioctl+0x23/0x30
[ 1787.086664][T29337]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1787.092932][T29337]  ? security_file_ioctl+0x8d/0xc0
[ 1787.098159][T29337]  ksys_ioctl+0xab/0xd0
[ 1787.102325][T29337]  __x64_sys_ioctl+0x73/0xb0
[ 1787.106969][T29337]  do_syscall_64+0xfa/0x760
[ 1787.111583][T29337]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1787.117479][T29337] RIP: 0033:0x459829
[ 1787.121394][T29337] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1787.141211][T29337] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1787.149722][T29337] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1787.157703][T29337] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1787.165690][T29337] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1787.173752][T29337] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1787.181729][T29337] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:03:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000008000a000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1787.237178][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1789.303657][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1789.310081][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1791.383667][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1791.389785][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1793.463655][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:03:10 executing program 1 (fault-call:2 fault-nth:60):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:03:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000001a000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:10 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
getsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000080), &(0x7f0000001140)=0xffffffffffffffe0)
r2 = fcntl$dupfd(r0, 0x406, r0)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000140)="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", 0x1000}], 0x1, 0x4)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r3, 0xab09, 0x0)

20:03:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:10 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x12000000)

20:03:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:03:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:10 executing program 3:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x3, 0x4480)
setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x0, 0x4)
ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000280))
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$VIDIOC_ENUMAUDIO(r2, 0xc0345641, &(0x7f0000000080)={0x800, "637291d03a338c3ddc77163ddfacc820d8952a06412219bd21e2f361f73994e3", 0x2, 0x1})
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='dctcp-reno\x00', 0xb)
r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00')
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="140325bd7000ffdbdf250200000008000200c0fa0000180004000180000057f9000007000000030000000100000014000100fe80000000000000000000000000001d0400040008000500000000000c00040002000000000000000800030008000000080005000200000008000500010000000800050005000000"], 0x80}, 0x1, 0x0, 0x0, 0x10}, 0x48001)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
ioctl$ASHMEM_GET_PROT_MASK(r2, 0x7706, &(0x7f00000002c0))

[ 1797.673844][T29376] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1797.697812][T29376] FAULT_INJECTION: forcing a failure.
[ 1797.697812][T29376] name failslab, interval 1, probability 0, space 0, times 0
[ 1797.718150][T29376] CPU: 0 PID: 29376 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1797.727559][T29376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1797.737607][T29376] Call Trace:
[ 1797.740891][T29376]  dump_stack+0x172/0x1f0
[ 1797.745208][T29376]  should_fail.cold+0xa/0x15
[ 1797.749782][T29376]  ? fault_create_debugfs_attr+0x180/0x180
[ 1797.755568][T29376]  ? page_to_nid.part.0+0x20/0x20
[ 1797.760834][T29376]  ? ___might_sleep+0x163/0x280
[ 1797.765668][T29376]  __should_failslab+0x121/0x190
[ 1797.770586][T29376]  should_failslab+0x9/0x14
[ 1797.775067][T29376]  kmem_cache_alloc+0x2aa/0x710
[ 1797.779981][T29376]  ? __mutex_lock+0x45d/0x13c0
[ 1797.784729][T29376]  __kernfs_new_node+0xf0/0x6c0
[ 1797.789562][T29376]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1797.794999][T29376]  ? wait_for_completion+0x440/0x440
[ 1797.800267][T29376]  ? mutex_unlock+0xd/0x10
[ 1797.804661][T29376]  ? kernfs_activate+0x192/0x1f0
[ 1797.809669][T29376]  kernfs_new_node+0x96/0x120
[ 1797.814507][T29376]  __kernfs_create_file+0x51/0x33b
[ 1797.819685][T29376]  sysfs_add_file_mode_ns+0x222/0x560
[ 1797.825148][T29376]  internal_create_group+0x359/0xc30
[ 1797.830429][T29376]  ? remove_files.isra.0+0x190/0x190
[ 1797.836134][T29376]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1797.842352][T29376]  ? kernfs_create_link+0x1cc/0x250
[ 1797.847533][T29376]  internal_create_groups.part.0+0x90/0x140
[ 1797.853407][T29376]  sysfs_create_groups+0x2a/0x50
[ 1797.858336][T29376]  device_add+0x80f/0x17a0
[ 1797.862736][T29376]  ? uevent_show+0x370/0x370
[ 1797.867317][T29376]  rfkill_register+0x1bf/0xb50
[ 1797.872343][T29376]  hci_register_dev+0x378/0x8f0
[ 1797.877179][T29376]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1797.882284][T29376]  tty_ioctl+0xaf9/0x14f0
[ 1797.886596][T29376]  ? hci_uart_init_work+0x180/0x180
[ 1797.891783][T29376]  ? do_tty_hangup+0x30/0x30
[ 1797.896384][T29376]  ? tomoyo_path_number_perm+0x459/0x520
[ 1797.902174][T29376]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1797.908478][T29376]  ? tomoyo_path_number_perm+0x263/0x520
[ 1797.914187][T29376]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1797.919980][T29376]  ? __kasan_check_read+0x11/0x20
[ 1797.925594][T29376]  ? do_tty_hangup+0x30/0x30
[ 1797.930257][T29376]  do_vfs_ioctl+0xdb6/0x13e0
[ 1797.934831][T29376]  ? ioctl_preallocate+0x210/0x210
[ 1797.939971][T29376]  ? __fget+0x384/0x560
[ 1797.944111][T29376]  ? ksys_dup3+0x3e0/0x3e0
[ 1797.948524][T29376]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1797.954751][T29376]  ? fput_many+0x12c/0x1a0
[ 1797.959152][T29376]  ? tomoyo_file_ioctl+0x23/0x30
[ 1797.964069][T29376]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1797.970291][T29376]  ? security_file_ioctl+0x8d/0xc0
[ 1797.975394][T29376]  ksys_ioctl+0xab/0xd0
[ 1797.979534][T29376]  __x64_sys_ioctl+0x73/0xb0
[ 1797.984105][T29376]  do_syscall_64+0xfa/0x760
[ 1797.988590][T29376]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1797.994464][T29376] RIP: 0033:0x459829
[ 1797.998346][T29376] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1798.018974][T29376] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1798.027623][T29376] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1798.035942][T29376] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1798.045112][T29376] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1798.053074][T29376] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1798.061385][T29376] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:03:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000088a8ffff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x6)
ioctl$KVM_S390_INTERRUPT_CPU(r1, 0x4010ae94, &(0x7f0000000000)={0x5, 0x6, 0x10001})

20:03:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000088caffff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1798.315114][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1800.343695][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1800.351028][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1802.423687][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1802.429869][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1804.503646][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:03:21 executing program 1 (fault-call:2 fault-nth:61):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:03:21 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x8000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000040))
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

20:03:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000086ddffff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:21 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x14000000)

20:03:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:03:21 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000f0ffff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:21 executing program 3:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x2001, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000040)=[@timestamp, @mss={0x2, 0xc}], 0x2)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000000)=0x9, 0x4)
r1 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0xa0442)
fcntl$dupfd(r1, 0x0, r1)
ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0x0)

[ 1808.528032][T29417] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1808.558539][T29417] FAULT_INJECTION: forcing a failure.
[ 1808.558539][T29417] name failslab, interval 1, probability 0, space 0, times 0
[ 1808.633377][T29417] CPU: 0 PID: 29417 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1808.642545][T29417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1808.652773][T29417] Call Trace:
[ 1808.656166][T29417]  dump_stack+0x172/0x1f0
[ 1808.660500][T29417]  should_fail.cold+0xa/0x15
[ 1808.665082][T29417]  ? fault_create_debugfs_attr+0x180/0x180
[ 1808.670872][T29417]  ? page_to_nid.part.0+0x20/0x20
[ 1808.675882][T29417]  ? ___might_sleep+0x163/0x280
[ 1808.680729][T29417]  __should_failslab+0x121/0x190
[ 1808.686000][T29417]  should_failslab+0x9/0x14
[ 1808.690486][T29417]  kmem_cache_alloc+0x2aa/0x710
[ 1808.695423][T29417]  ? __mutex_lock+0x45d/0x13c0
[ 1808.700215][T29417]  __kernfs_new_node+0xf0/0x6c0
[ 1808.705139][T29417]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1808.710785][T29417]  ? wait_for_completion+0x440/0x440
[ 1808.716065][T29417]  ? mutex_unlock+0xd/0x10
[ 1808.720462][T29417]  ? kernfs_activate+0x192/0x1f0
[ 1808.725409][T29417]  kernfs_new_node+0x96/0x120
[ 1808.730083][T29417]  __kernfs_create_file+0x51/0x33b
[ 1808.735884][T29417]  sysfs_add_file_mode_ns+0x222/0x560
[ 1808.742544][T29417]  internal_create_group+0x359/0xc30
[ 1808.747918][T29417]  ? remove_files.isra.0+0x190/0x190
[ 1808.753201][T29417]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1808.759421][T29417]  ? kernfs_create_link+0x1cc/0x250
[ 1808.764691][T29417]  internal_create_groups.part.0+0x90/0x140
[ 1808.770577][T29417]  sysfs_create_groups+0x2a/0x50
[ 1808.775502][T29417]  device_add+0x80f/0x17a0
[ 1808.779902][T29417]  ? uevent_show+0x370/0x370
[ 1808.784490][T29417]  rfkill_register+0x1bf/0xb50
[ 1808.789246][T29417]  hci_register_dev+0x378/0x8f0
[ 1808.795529][T29417]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1808.800720][T29417]  tty_ioctl+0xaf9/0x14f0
[ 1808.805381][T29417]  ? hci_uart_init_work+0x180/0x180
[ 1808.810669][T29417]  ? do_tty_hangup+0x30/0x30
[ 1808.815932][T29417]  ? tomoyo_path_number_perm+0x459/0x520
[ 1808.821807][T29417]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1808.830129][T29417]  ? tomoyo_path_number_perm+0x263/0x520
[ 1808.838474][T29417]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1808.844627][T29417]  ? __kasan_check_read+0x11/0x20
[ 1808.849652][T29417]  ? do_tty_hangup+0x30/0x30
[ 1808.854228][T29417]  do_vfs_ioctl+0xdb6/0x13e0
[ 1808.858799][T29417]  ? ioctl_preallocate+0x210/0x210
[ 1808.864265][T29417]  ? __fget+0x384/0x560
[ 1808.870000][T29417]  ? ksys_dup3+0x3e0/0x3e0
[ 1808.874501][T29417]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1808.880728][T29417]  ? fput_many+0x12c/0x1a0
[ 1808.885158][T29417]  ? tomoyo_file_ioctl+0x23/0x30
[ 1808.890606][T29417]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1808.896826][T29417]  ? security_file_ioctl+0x8d/0xc0
[ 1808.902104][T29417]  ksys_ioctl+0xab/0xd0
[ 1808.906346][T29417]  __x64_sys_ioctl+0x73/0xb0
[ 1808.911093][T29417]  do_syscall_64+0xfa/0x760
[ 1808.915691][T29417]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1808.921750][T29417] RIP: 0033:0x459829
[ 1808.925982][T29417] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1808.947745][T29417] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1808.956232][T29417] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1808.964364][T29417] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1808.972413][T29417] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
20:03:22 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1808.980450][T29417] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1808.991283][T29417] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:03:22 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000089ffffff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:22 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x6, 0x2801)
connect$rds(r1, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
clock_gettime(0x0, &(0x7f0000000080)={<r2=>0x0, <r3=>0x0})
nanosleep(&(0x7f00000000c0)={r2, r3+30000000}, &(0x7f0000000140))
fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffd)
times(&(0x7f0000000180))

[ 1809.061590][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
20:03:22 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000ffffffffa0010000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1811.063685][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1811.071726][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1813.143655][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1813.149795][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1815.223690][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:03:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000ffffffffa0008000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:32 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x19260000)

20:03:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:03:32 executing program 1 (fault-call:2 fault-nth:62):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:03:32 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:03:32 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0xffffffffffffffff, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1819.389455][T29449] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1819.421765][T29449] FAULT_INJECTION: forcing a failure.
[ 1819.421765][T29449] name failslab, interval 1, probability 0, space 0, times 0
[ 1819.449053][T29449] CPU: 1 PID: 29449 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1819.458201][T29449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1819.468614][T29449] Call Trace:
[ 1819.471933][T29449]  dump_stack+0x172/0x1f0
[ 1819.476287][T29449]  should_fail.cold+0xa/0x15
[ 1819.480943][T29449]  ? fault_create_debugfs_attr+0x180/0x180
[ 1819.486757][T29449]  ? page_to_nid.part.0+0x20/0x20
[ 1819.491785][T29449]  ? ___might_sleep+0x163/0x280
[ 1819.496645][T29449]  __should_failslab+0x121/0x190
[ 1819.501602][T29449]  should_failslab+0x9/0x14
[ 1819.506549][T29449]  kmem_cache_alloc+0x2aa/0x710
[ 1819.511445][T29449]  ? __mutex_lock+0x45d/0x13c0
[ 1819.516223][T29449]  __kernfs_new_node+0xf0/0x6c0
[ 1819.521087][T29449]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1819.526552][T29449]  ? wait_for_completion+0x440/0x440
[ 1819.531874][T29449]  ? mutex_unlock+0xd/0x10
[ 1819.536291][T29449]  ? kernfs_activate+0x192/0x1f0
[ 1819.541234][T29449]  kernfs_new_node+0x96/0x120
[ 1819.545953][T29449]  __kernfs_create_file+0x51/0x33b
[ 1819.551076][T29449]  sysfs_add_file_mode_ns+0x222/0x560
[ 1819.556462][T29449]  internal_create_group+0x359/0xc30
[ 1819.561786][T29449]  ? remove_files.isra.0+0x190/0x190
[ 1819.567112][T29449]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1819.574451][T29449]  ? kernfs_create_link+0x1cc/0x250
[ 1819.579668][T29449]  internal_create_groups.part.0+0x90/0x140
[ 1819.586265][T29449]  sysfs_create_groups+0x2a/0x50
[ 1819.591295][T29449]  device_add+0x80f/0x17a0
[ 1819.595989][T29449]  ? uevent_show+0x370/0x370
[ 1819.600593][T29449]  rfkill_register+0x1bf/0xb50
[ 1819.605374][T29449]  hci_register_dev+0x378/0x8f0
[ 1819.610238][T29449]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1819.615447][T29449]  tty_ioctl+0xaf9/0x14f0
[ 1819.619781][T29449]  ? hci_uart_init_work+0x180/0x180
[ 1819.624984][T29449]  ? do_tty_hangup+0x30/0x30
[ 1819.629579][T29449]  ? tomoyo_path_number_perm+0x459/0x520
[ 1819.635395][T29449]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1819.641638][T29449]  ? tomoyo_path_number_perm+0x263/0x520
[ 1819.647283][T29449]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1819.653186][T29449]  ? __kasan_check_read+0x11/0x20
[ 1819.658221][T29449]  ? do_tty_hangup+0x30/0x30
[ 1819.662826][T29449]  do_vfs_ioctl+0xdb6/0x13e0
[ 1819.667424][T29449]  ? ioctl_preallocate+0x210/0x210
[ 1819.672540][T29449]  ? __fget+0x384/0x560
[ 1819.676910][T29449]  ? ksys_dup3+0x3e0/0x3e0
[ 1819.681327][T29449]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1819.687571][T29449]  ? fput_many+0x12c/0x1a0
[ 1819.691991][T29449]  ? tomoyo_file_ioctl+0x23/0x30
[ 1819.696932][T29449]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1819.703178][T29449]  ? security_file_ioctl+0x8d/0xc0
[ 1819.708299][T29449]  ksys_ioctl+0xab/0xd0
[ 1819.712476][T29449]  __x64_sys_ioctl+0x73/0xb0
[ 1819.717078][T29449]  do_syscall_64+0xfa/0x760
[ 1819.721592][T29449]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1819.727482][T29449] RIP: 0033:0x459829
20:03:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000fffffffffffff000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1819.731377][T29449] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1819.750995][T29449] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1819.759425][T29449] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1819.767399][T29449] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1819.775371][T29449] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1819.783367][T29449] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1819.791860][T29449] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1819.815337][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
20:03:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:33 executing program 3:
clone(0x400, &(0x7f0000000000)="44fc8564d1cf4544543fb2bdb1d458b4f3b58afa8f9c5ef359adae736fd8fef4e2b58b39f8f68af10d08106d1c338bb63a2e5865e8c34449b3206e96740b4ee9c2e860083049be46c099622d448a7b9b6741c16323e523ef964d2b2e1acec505b21f48a6501198d568e158f0ad09df46f7a36ff0172c0a767c40cf3da3cd55b2c962a0ece89823759f13fa4e97ee5f318cb799a6d5566eed3c", &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)="ffa455e050f57bb19e36eaf40b437b761ca3f6494673cefebc970e5a9da7d478b70e8d549af3ccf195c6b23c14bec199ab23bc7fe4ac4d6b")
r0 = syz_open_dev$dri(&(0x7f0000000200)='/dev/dri/card#\x00', 0x1, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000100)=0xb643, 0xc0)

20:03:33 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000001ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:33 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000002ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1821.863712][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1821.870639][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1823.943767][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1823.949870][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1826.023707][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:03:43 executing program 1 (fault-call:2 fault-nth:63):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:03:43 executing program 3:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$NBD_SET_TIMEOUT(0xffffffffffffffff, 0xab09, 0x400000000000003)

20:03:43 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:43 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1a260000)

20:03:43 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:03:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000003ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:43 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x90000, 0x0)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r2 = fcntl$dupfd(r0, 0x0, r0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000140)={<r3=>0x0, @in6={{0xa, 0x4e20, 0x7f, @empty, 0x3ff}}, 0x8001, 0xffffffffffffff28, 0x7, 0x5, 0x401}, &(0x7f0000000200)=0x98)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000240)={r3, 0xcb6, 0x8}, 0x8)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
setsockopt$MISDN_TIME_STAMP(r2, 0x0, 0x1, &(0x7f0000000000)=0x1, 0x4)

20:03:43 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:03:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000211b03ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:43 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 1830.353435][T29489] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:03:43 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000004ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1830.396463][T29489] FAULT_INJECTION: forcing a failure.
[ 1830.396463][T29489] name failslab, interval 1, probability 0, space 0, times 0
[ 1830.440513][T29489] CPU: 0 PID: 29489 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1830.449744][T29489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1830.459811][T29489] Call Trace:
[ 1830.463123][T29489]  dump_stack+0x172/0x1f0
[ 1830.467485][T29489]  should_fail.cold+0xa/0x15
[ 1830.472100][T29489]  ? fault_create_debugfs_attr+0x180/0x180
[ 1830.478001][T29489]  ? page_to_nid.part.0+0x20/0x20
[ 1830.483189][T29489]  ? ___might_sleep+0x163/0x280
[ 1830.488967][T29489]  __should_failslab+0x121/0x190
[ 1830.493987][T29489]  should_failslab+0x9/0x14
[ 1830.499343][T29489]  kmem_cache_alloc+0x2aa/0x710
[ 1830.504174][T29489]  ? __mutex_lock+0x45d/0x13c0
[ 1830.508926][T29489]  __kernfs_new_node+0xf0/0x6c0
[ 1830.513760][T29489]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1830.519201][T29489]  ? wait_for_completion+0x440/0x440
[ 1830.524488][T29489]  ? mutex_unlock+0xd/0x10
[ 1830.528912][T29489]  ? kernfs_activate+0x192/0x1f0
[ 1830.533831][T29489]  kernfs_new_node+0x96/0x120
[ 1830.538512][T29489]  __kernfs_create_file+0x51/0x33b
[ 1830.543619][T29489]  sysfs_add_file_mode_ns+0x222/0x560
[ 1830.549075][T29489]  internal_create_group+0x359/0xc30
[ 1830.554361][T29489]  ? remove_files.isra.0+0x190/0x190
[ 1830.559744][T29489]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1830.566056][T29489]  ? kernfs_create_link+0x1cc/0x250
[ 1830.571339][T29489]  internal_create_groups.part.0+0x90/0x140
[ 1830.577215][T29489]  sysfs_create_groups+0x2a/0x50
[ 1830.582223][T29489]  device_add+0x80f/0x17a0
[ 1830.586645][T29489]  ? uevent_show+0x370/0x370
[ 1830.591310][T29489]  rfkill_register+0x1bf/0xb50
[ 1830.596193][T29489]  hci_register_dev+0x378/0x8f0
[ 1830.601044][T29489]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1830.606160][T29489]  tty_ioctl+0xaf9/0x14f0
[ 1830.610665][T29489]  ? hci_uart_init_work+0x180/0x180
[ 1830.615857][T29489]  ? do_tty_hangup+0x30/0x30
[ 1830.620428][T29489]  ? tomoyo_path_number_perm+0x459/0x520
[ 1830.626133][T29489]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1830.632352][T29489]  ? tomoyo_path_number_perm+0x263/0x520
[ 1830.637967][T29489]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1830.643770][T29489]  ? __kasan_check_read+0x11/0x20
[ 1830.648896][T29489]  ? do_tty_hangup+0x30/0x30
[ 1830.653470][T29489]  do_vfs_ioctl+0xdb6/0x13e0
[ 1830.658069][T29489]  ? ioctl_preallocate+0x210/0x210
[ 1830.663335][T29489]  ? __fget+0x384/0x560
[ 1830.667493][T29489]  ? ksys_dup3+0x3e0/0x3e0
[ 1830.671895][T29489]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1830.678120][T29489]  ? fput_many+0x12c/0x1a0
[ 1830.682519][T29489]  ? tomoyo_file_ioctl+0x23/0x30
[ 1830.687449][T29489]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1830.693671][T29489]  ? security_file_ioctl+0x8d/0xc0
[ 1830.698774][T29489]  ksys_ioctl+0xab/0xd0
[ 1830.703014][T29489]  __x64_sys_ioctl+0x73/0xb0
[ 1830.707594][T29489]  do_syscall_64+0xfa/0x760
[ 1830.712084][T29489]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1830.717978][T29489] RIP: 0033:0x459829
[ 1830.721855][T29489] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1830.741448][T29489] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1830.749838][T29489] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1830.757803][T29489] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1830.765872][T29489] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1830.773826][T29489] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1830.781798][T29489] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1830.811828][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1832.833710][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1832.839806][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1834.903685][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1834.909799][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1836.983680][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:03:54 executing program 1 (fault-call:2 fault-nth:64):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:03:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:03:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f0000000000)=0x7)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:03:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:03:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000005ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:03:54 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2f000000)

20:03:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:03:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
prctl$PR_SET_ENDIAN(0x14, 0x0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
sendto$netrom(r1, &(0x7f0000000140)="104a09640fe2242ed4e0f2c04454082c199a59ff79d4d89ea6b1208fffa2e716c30bc0fe4e231ba2b55eff71db3249826aa68c44a4d73e18378812e84a680c909c101927fc46757e67f226087bd2ff6386e428e3b302c53c6cf30748c3e320d95735ed2327025c2ce354be23c778355455305f8cac728516873639375e0a2911a4", 0x81, 0x200408c0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={<r2=>0x0, r0, 0x0, 0xf, &(0x7f0000000000)='/dev/dri/card#\x00'}, 0x30)
sched_setattr(r2, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x1, 0xfffffffffffffffa, 0x2, 0xec}, 0x0)
ioctl$EVIOCSCLOCKID(r1, 0x400445a0, &(0x7f00000000c0)=0x9)

20:03:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000006ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1841.170402][T29522] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1841.202744][T29522] FAULT_INJECTION: forcing a failure.
[ 1841.202744][T29522] name failslab, interval 1, probability 0, space 0, times 0
[ 1841.219831][T29522] CPU: 0 PID: 29522 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1841.228966][T29522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1841.228973][T29522] Call Trace:
[ 1841.229002][T29522]  dump_stack+0x172/0x1f0
[ 1841.229022][T29522]  should_fail.cold+0xa/0x15
[ 1841.229040][T29522]  ? fault_create_debugfs_attr+0x180/0x180
[ 1841.229057][T29522]  ? page_to_nid.part.0+0x20/0x20
[ 1841.229072][T29522]  ? ___might_sleep+0x163/0x280
[ 1841.229093][T29522]  __should_failslab+0x121/0x190
[ 1841.229115][T29522]  should_failslab+0x9/0x14
[ 1841.246773][T29522]  kmem_cache_alloc+0x2aa/0x710
[ 1841.246789][T29522]  ? __kasan_check_write+0x14/0x20
[ 1841.246803][T29522]  ? __mutex_unlock_slowpath+0xf8/0x6b0
[ 1841.246825][T29522]  __kernfs_new_node+0xf0/0x6c0
[ 1841.246843][T29522]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1841.246856][T29522]  ? mutex_unlock+0xd/0x10
[ 1841.246872][T29522]  ? kernfs_activate+0x192/0x1f0
[ 1841.257278][T29522]  ? kernfs_add_one+0x131/0x4d0
[ 1841.257297][T29522]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1841.257311][T29522]  kernfs_new_node+0x96/0x120
[ 1841.257326][T29522]  kernfs_create_dir_ns+0x52/0x160
[ 1841.257341][T29522]  internal_create_group+0x7f4/0xc30
[ 1841.257360][T29522]  ? remove_files.isra.0+0x190/0x190
[ 1841.257379][T29522]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1841.356089][T29522]  ? kernfs_create_link+0x1cc/0x250
[ 1841.361583][T29522]  sysfs_create_group+0x20/0x30
[ 1841.366481][T29522]  dpm_sysfs_add+0x87/0x270
[ 1841.371004][T29522]  device_add+0x9df/0x17a0
[ 1841.375456][T29522]  ? uevent_show+0x370/0x370
[ 1841.380065][T29522]  rfkill_register+0x1bf/0xb50
[ 1841.384870][T29522]  hci_register_dev+0x378/0x8f0
[ 1841.389732][T29522]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1841.394767][T29522]  tty_ioctl+0xaf9/0x14f0
[ 1841.399104][T29522]  ? hci_uart_init_work+0x180/0x180
[ 1841.404338][T29522]  ? do_tty_hangup+0x30/0x30
[ 1841.409017][T29522]  ? tomoyo_path_number_perm+0x459/0x520
[ 1841.414663][T29522]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
20:03:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1841.420988][T29522]  ? tomoyo_path_number_perm+0x263/0x520
[ 1841.426635][T29522]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1841.432524][T29522]  ? __kasan_check_read+0x11/0x20
[ 1841.437575][T29522]  ? do_tty_hangup+0x30/0x30
[ 1841.442266][T29522]  do_vfs_ioctl+0xdb6/0x13e0
[ 1841.446898][T29522]  ? ioctl_preallocate+0x210/0x210
[ 1841.452050][T29522]  ? __fget+0x384/0x560
[ 1841.456230][T29522]  ? ksys_dup3+0x3e0/0x3e0
[ 1841.460702][T29522]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1841.466961][T29522]  ? fput_many+0x12c/0x1a0
[ 1841.471396][T29522]  ? tomoyo_file_ioctl+0x23/0x30
[ 1841.476343][T29522]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1841.476359][T29522]  ? security_file_ioctl+0x8d/0xc0
[ 1841.476379][T29522]  ksys_ioctl+0xab/0xd0
[ 1841.487712][T29522]  __x64_sys_ioctl+0x73/0xb0
[ 1841.487730][T29522]  do_syscall_64+0xfa/0x760
[ 1841.487747][T29522]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1841.487757][T29522] RIP: 0033:0x459829
[ 1841.487772][T29522] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1841.487778][T29522] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1841.487791][T29522] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1841.487798][T29522] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1841.487810][T29522] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1841.562994][T29522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
20:03:54 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0xff, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffc)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000140)={0x0, @bt={0x2, 0xffffffffffffffc0, 0x0, 0x2, 0xec, 0x100, 0x6, 0x7, 0x0, 0x7, 0x4a1f, 0x5, 0x7, 0xf47, 0x0, 0x2}})

20:03:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1841.570979][T29522] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1841.625797][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1843.703706][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1843.709864][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1845.783708][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1845.789799][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1847.873678][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:04:05 executing program 1 (fault-call:2 fault-nth:65):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:04:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:04:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x80)
ioctl$PPPIOCGCHAN(r1, 0x80047437, &(0x7f0000000000))

20:04:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000008ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:04:05 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3e000000)

20:04:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2)

20:04:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000608ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1852.083998][T29564] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:04:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)

[ 1852.128299][T29564] FAULT_INJECTION: forcing a failure.
[ 1852.128299][T29564] name failslab, interval 1, probability 0, space 0, times 0
20:04:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1852.193857][T29564] CPU: 1 PID: 29564 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1852.203015][T29564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1852.213078][T29564] Call Trace:
[ 1852.216387][T29564]  dump_stack+0x172/0x1f0
[ 1852.220733][T29564]  should_fail.cold+0xa/0x15
[ 1852.225334][T29564]  ? fault_create_debugfs_attr+0x180/0x180
[ 1852.231142][T29564]  ? page_to_nid.part.0+0x20/0x20
[ 1852.236176][T29564]  ? ___might_sleep+0x163/0x280
[ 1852.241034][T29564]  __should_failslab+0x121/0x190
[ 1852.245976][T29564]  should_failslab+0x9/0x14
[ 1852.250480][T29564]  kmem_cache_alloc+0x2aa/0x710
[ 1852.255550][T29564]  ? __mutex_lock+0x45d/0x13c0
[ 1852.260318][T29564]  __kernfs_new_node+0xf0/0x6c0
[ 1852.265260][T29564]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1852.270717][T29564]  ? wait_for_completion+0x440/0x440
[ 1852.276024][T29564]  ? mutex_unlock+0xd/0x10
[ 1852.280442][T29564]  ? kernfs_activate+0x192/0x1f0
[ 1852.285385][T29564]  kernfs_new_node+0x96/0x120
[ 1852.290071][T29564]  __kernfs_create_file+0x51/0x33b
[ 1852.295202][T29564]  sysfs_add_file_mode_ns+0x222/0x560
[ 1852.300578][T29564]  sysfs_merge_group+0x1a0/0x340
[ 1852.305519][T29564]  ? sysfs_init_fs_context+0x380/0x380
[ 1852.310978][T29564]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1852.317218][T29564]  ? kernfs_create_link+0x1cc/0x250
[ 1852.322421][T29564]  dpm_sysfs_add+0x21e/0x270
[ 1852.327012][T29564]  device_add+0x9df/0x17a0
[ 1852.331428][T29564]  ? uevent_show+0x370/0x370
[ 1852.336023][T29564]  rfkill_register+0x1bf/0xb50
[ 1852.340791][T29564]  hci_register_dev+0x378/0x8f0
[ 1852.345644][T29564]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1852.350677][T29564]  tty_ioctl+0xaf9/0x14f0
[ 1852.355014][T29564]  ? hci_uart_init_work+0x180/0x180
[ 1852.361248][T29564]  ? do_tty_hangup+0x30/0x30
[ 1852.365842][T29564]  ? tomoyo_path_number_perm+0x459/0x520
[ 1852.371484][T29564]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1852.377722][T29564]  ? tomoyo_path_number_perm+0x263/0x520
[ 1852.383353][T29564]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1852.389168][T29564]  ? __kasan_check_read+0x11/0x20
[ 1852.394207][T29564]  ? do_tty_hangup+0x30/0x30
[ 1852.398799][T29564]  do_vfs_ioctl+0xdb6/0x13e0
[ 1852.403393][T29564]  ? ioctl_preallocate+0x210/0x210
[ 1852.408505][T29564]  ? __fget+0x384/0x560
[ 1852.412664][T29564]  ? ksys_dup3+0x3e0/0x3e0
[ 1852.417080][T29564]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1852.423321][T29564]  ? fput_many+0x12c/0x1a0
[ 1852.427761][T29564]  ? tomoyo_file_ioctl+0x23/0x30
[ 1852.432706][T29564]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1852.438946][T29564]  ? security_file_ioctl+0x8d/0xc0
[ 1852.444060][T29564]  ksys_ioctl+0xab/0xd0
[ 1852.448223][T29564]  __x64_sys_ioctl+0x73/0xb0
[ 1852.452814][T29564]  do_syscall_64+0xfa/0x760
[ 1852.457326][T29564]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1852.463211][T29564] RIP: 0033:0x459829
[ 1852.467109][T29564] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1852.486707][T29564] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:04:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000000000dff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1852.495203][T29564] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1852.503284][T29564] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1852.511274][T29564] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1852.519246][T29564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1852.527214][T29564] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:04:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000028ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1854.583711][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1854.591205][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1856.663704][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1856.669787][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1858.743668][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:04:15 executing program 1 (fault-call:2 fault-nth:66):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:04:15 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_udp_int(r1, 0x11, 0x66, &(0x7f0000000000)=0xfffffffffffffffe, 0x4)
getsockopt$inet_udp_int(r1, 0x11, 0x6f, &(0x7f0000000040), &(0x7f0000000080)=0x4)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:04:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000029ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:15 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:04:15 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3f000000)

20:04:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:04:16 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x200, 0x0)
ioctl$CAPI_GET_ERRCODE(r1, 0x80024321, &(0x7f0000000040))
r2 = fcntl$dupfd(r0, 0x0, r0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x200000, 0x0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(r2, 0x0, 0x61, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)=0x114)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000140)={0x3, 0x1, 0x3, 0x3, 0x5})
fsetxattr$security_smack_entry(r3, &(0x7f0000000180)='security.SMACK64\x00', &(0x7f00000001c0)='user\x00', 0x5, 0x0)

20:04:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000000002bff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1863.014706][T29597] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1863.053809][T29597] FAULT_INJECTION: forcing a failure.
20:04:16 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
getsockopt$inet_sctp_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000003c0), &(0x7f0000000400)=0x4)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000000)={0xfffffffffffffffa, 0x3, 0x8, 0xae6, <r2=>0x0}, &(0x7f0000000040)=0x10)
ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000340)={0x4, &(0x7f0000000300)=[{}, {}, {<r3=>0x0}, {}]})
ioctl$DRM_IOCTL_NEW_CTX(r0, 0x40086425, &(0x7f0000000380)={r3, 0x2})
getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000140)={<r4=>0x0, 0x80, 0x0, 0x7, 0x7f, 0x80000000, 0x1004000000, 0x0, {0x0, @in6={{0xa, 0x4e21, 0xffff, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x200000}}, 0x0, 0x7ff, 0x8, 0x10001, 0x7ff}}, &(0x7f0000000080)=0xb0)
getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000200)={r2, 0x4, 0x9, 0x5, 0x4, 0x80000000, 0x80000001, 0x6, {r4, @in6={{0xa, 0x4e20, 0x4, @ipv4={[], [], @broadcast}, 0xfca7}}, 0x3, 0x9, 0x1f, 0x9492, 0x9}}, &(0x7f00000000c0)=0xb0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f00000002c0)=0x1)

[ 1863.053809][T29597] name failslab, interval 1, probability 0, space 0, times 0
20:04:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000000002cff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1863.115798][T29597] CPU: 0 PID: 29597 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1863.125222][T29597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1863.125228][T29597] Call Trace:
[ 1863.125255][T29597]  dump_stack+0x172/0x1f0
[ 1863.125276][T29597]  should_fail.cold+0xa/0x15
[ 1863.125295][T29597]  ? fault_create_debugfs_attr+0x180/0x180
[ 1863.125316][T29597]  ? page_to_nid.part.0+0x20/0x20
[ 1863.138846][T29597]  ? ___might_sleep+0x163/0x280
[ 1863.138866][T29597]  __should_failslab+0x121/0x190
[ 1863.138884][T29597]  should_failslab+0x9/0x14
[ 1863.138895][T29597]  kmem_cache_alloc+0x2aa/0x710
[ 1863.138910][T29597]  ? __mutex_lock+0x45d/0x13c0
[ 1863.138931][T29597]  __kernfs_new_node+0xf0/0x6c0
[ 1863.138953][T29597]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1863.193115][T29597]  ? wait_for_completion+0x440/0x440
[ 1863.198473][T29597]  ? mutex_unlock+0xd/0x10
[ 1863.202869][T29597]  ? kernfs_activate+0x192/0x1f0
[ 1863.207815][T29597]  kernfs_new_node+0x96/0x120
[ 1863.212695][T29597]  __kernfs_create_file+0x51/0x33b
[ 1863.218870][T29597]  sysfs_add_file_mode_ns+0x222/0x560
[ 1863.224688][T29597]  sysfs_merge_group+0x1a0/0x340
[ 1863.229807][T29597]  ? sysfs_init_fs_context+0x380/0x380
[ 1863.235262][T29597]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1863.242001][T29597]  ? kernfs_create_link+0x1cc/0x250
[ 1863.248409][T29597]  dpm_sysfs_add+0x21e/0x270
[ 1863.253153][T29597]  device_add+0x9df/0x17a0
[ 1863.257726][T29597]  ? uevent_show+0x370/0x370
[ 1863.262312][T29597]  rfkill_register+0x1bf/0xb50
[ 1863.267175][T29597]  hci_register_dev+0x378/0x8f0
[ 1863.272183][T29597]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1863.277363][T29597]  tty_ioctl+0xaf9/0x14f0
[ 1863.281694][T29597]  ? hci_uart_init_work+0x180/0x180
[ 1863.286870][T29597]  ? do_tty_hangup+0x30/0x30
[ 1863.291440][T29597]  ? tomoyo_path_number_perm+0x459/0x520
[ 1863.297602][T29597]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1863.303916][T29597]  ? tomoyo_path_number_perm+0x263/0x520
[ 1863.311277][T29597]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1863.319606][T29597]  ? __kasan_check_read+0x11/0x20
[ 1863.326437][T29597]  ? do_tty_hangup+0x30/0x30
[ 1863.331908][T29597]  do_vfs_ioctl+0xdb6/0x13e0
[ 1863.337020][T29597]  ? ioctl_preallocate+0x210/0x210
[ 1863.343779][T29597]  ? __fget+0x384/0x560
[ 1863.350456][T29597]  ? ksys_dup3+0x3e0/0x3e0
[ 1863.357129][T29597]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1863.363373][T29597]  ? fput_many+0x12c/0x1a0
[ 1863.367773][T29597]  ? tomoyo_file_ioctl+0x23/0x30
[ 1863.372704][T29597]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1863.378930][T29597]  ? security_file_ioctl+0x8d/0xc0
[ 1863.384024][T29597]  ksys_ioctl+0xab/0xd0
[ 1863.388161][T29597]  __x64_sys_ioctl+0x73/0xb0
[ 1863.392752][T29597]  do_syscall_64+0xfa/0x760
[ 1863.397240][T29597]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1863.403122][T29597] RIP: 0033:0x459829
[ 1863.407021][T29597] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1863.426780][T29597] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1863.435186][T29597] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1863.443139][T29597] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1863.451266][T29597] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1863.459912][T29597] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1863.467976][T29597] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:04:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1863.604616][T20466] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1865.623643][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1865.631339][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1867.703719][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1867.709823][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1869.783693][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:04:26 executing program 1 (fault-call:2 fault-nth:67):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:04:26 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000000000)=0x1dd)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
ioctl$DRM_IOCTL_AGP_ACQUIRE(r1, 0x6430)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1020009}, 0x8ffb1648b0038382, &(0x7f00000000c0)={&(0x7f0000000340)={0xfffffffffffffeda, r2, 0x408, 0x70bd2b, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x0, 0x7, [@TIPC_NLA_NET_NODEID_W1={0x0, 0x4, 0x7f}, @TIPC_NLA_NET_ID={0x0, 0x1, 0x6}, @TIPC_NLA_NET_NODEID={0x0, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0x0, 0x4, 0x5}, @TIPC_NLA_NET_ADDR={0x0, 0x2, 0x6}, @TIPC_NLA_NET_ADDR={0x0, 0x2, 0x8001}]}, @TIPC_NLA_MEDIA={0x30, 0x5, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}]}, @TIPC_NLA_LINK={0x138, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf6e1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x39cdb254}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffffff01}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}]}, 0xffffffffffffff22}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x2, 0x0)

20:04:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000000002fff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:26 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x40000000)

20:04:26 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:04:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:04:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000211d3bff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:26 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000080)=0x80, 0x4)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x7)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x80000000, 0xeab}, {0x5, 0xfffffffffffffffb}, 0x6b, 0x2, 0x10882691})

[ 1873.818036][T29628] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1873.879249][T29628] FAULT_INJECTION: forcing a failure.
[ 1873.879249][T29628] name failslab, interval 1, probability 0, space 0, times 0
[ 1873.917540][T29628] CPU: 1 PID: 29628 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1873.926689][T29628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1873.936838][T29628] Call Trace:
[ 1873.940247][T29628]  dump_stack+0x172/0x1f0
[ 1873.944630][T29628]  should_fail.cold+0xa/0x15
[ 1873.949257][T29628]  ? fault_create_debugfs_attr+0x180/0x180
[ 1873.955071][T29628]  ? page_to_nid.part.0+0x20/0x20
[ 1873.960107][T29628]  ? ___might_sleep+0x163/0x280
[ 1873.964973][T29628]  __should_failslab+0x121/0x190
[ 1873.970009][T29628]  should_failslab+0x9/0x14
[ 1873.974520][T29628]  kmem_cache_alloc+0x2aa/0x710
[ 1873.979387][T29628]  ? __mutex_lock+0x45d/0x13c0
[ 1873.984383][T29628]  __kernfs_new_node+0xf0/0x6c0
[ 1873.989248][T29628]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1873.994725][T29628]  ? wait_for_completion+0x440/0x440
[ 1874.000024][T29628]  ? mutex_unlock+0xd/0x10
[ 1874.004535][T29628]  ? kernfs_activate+0x192/0x1f0
[ 1874.009482][T29628]  kernfs_new_node+0x96/0x120
[ 1874.014174][T29628]  __kernfs_create_file+0x51/0x33b
[ 1874.019329][T29628]  sysfs_add_file_mode_ns+0x222/0x560
[ 1874.025326][T29628]  sysfs_merge_group+0x1a0/0x340
[ 1874.030270][T29628]  ? sysfs_init_fs_context+0x380/0x380
[ 1874.035762][T29628]  dpm_sysfs_add+0x21e/0x270
[ 1874.040359][T29628]  device_add+0x9df/0x17a0
[ 1874.044781][T29628]  ? uevent_show+0x370/0x370
[ 1874.049557][T29628]  rfkill_register+0x1bf/0xb50
[ 1874.054449][T29628]  hci_register_dev+0x378/0x8f0
[ 1874.059679][T29628]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1874.064836][T29628]  tty_ioctl+0xaf9/0x14f0
[ 1874.069177][T29628]  ? hci_uart_init_work+0x180/0x180
[ 1874.074388][T29628]  ? do_tty_hangup+0x30/0x30
[ 1874.078982][T29628]  ? tomoyo_path_number_perm+0x459/0x520
[ 1874.084747][T29628]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1874.090992][T29628]  ? tomoyo_path_number_perm+0x263/0x520
[ 1874.096630][T29628]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1874.102454][T29628]  ? __kasan_check_read+0x11/0x20
[ 1874.108361][T29628]  ? do_tty_hangup+0x30/0x30
[ 1874.112957][T29628]  do_vfs_ioctl+0xdb6/0x13e0
[ 1874.117650][T29628]  ? ioctl_preallocate+0x210/0x210
[ 1874.122889][T29628]  ? __fget+0x384/0x560
[ 1874.127144][T29628]  ? ksys_dup3+0x3e0/0x3e0
[ 1874.131574][T29628]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1874.137821][T29628]  ? fput_many+0x12c/0x1a0
[ 1874.142249][T29628]  ? tomoyo_file_ioctl+0x23/0x30
[ 1874.147192][T29628]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1874.153438][T29628]  ? security_file_ioctl+0x8d/0xc0
[ 1874.158558][T29628]  ksys_ioctl+0xab/0xd0
[ 1874.162727][T29628]  __x64_sys_ioctl+0x73/0xb0
[ 1874.167329][T29628]  do_syscall_64+0xfa/0x760
[ 1874.171902][T29628]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1874.177797][T29628] RIP: 0033:0x459829
[ 1874.181695][T29628] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1874.201317][T29628] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1874.209733][T29628] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1874.217799][T29628] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
20:04:27 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1874.225799][T29628] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1874.233780][T29628] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1874.241837][T29628] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1874.270411][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
20:04:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000000003cff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x84, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x1ff, 0xfff}, {0xfffffffffffffffa, 0xfffffffffffffffe}, 0x200, 0x2, 0x7})
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x1, 0x38, 0x3, 0x3, 0x0, 0x2, 0x2, 0xd2, 0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000000080))
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:04:27 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000440)={'team0\x00', <r3=>0x0})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000004c0)=0x14)
accept$packet(r1, &(0x7f0000000500)={0x11, 0x0, <r5=>0x0}, &(0x7f0000000540)=0x14)
getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000580)={@loopback, <r6=>0x0}, &(0x7f00000005c0)=0x14)
getpeername$packet(r1, &(0x7f0000000640)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000680)=0x14)
getpeername$packet(r1, &(0x7f00000006c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000700)=0x14)
recvmmsg(r1, &(0x7f0000005a40)=[{{&(0x7f0000003e40)=@ll={0x11, 0x0, <r9=>0x0}, 0x80, &(0x7f0000005400)=[{&(0x7f0000003ec0)=""/212, 0xd4}, {&(0x7f0000003fc0)=""/253, 0xfd}, {&(0x7f00000040c0)=""/245, 0xf5}, {&(0x7f00000041c0)=""/4096, 0x1000}, {&(0x7f00000051c0)=""/26, 0x1a}, {&(0x7f0000005200)=""/193, 0xc1}, {&(0x7f0000005300)=""/212, 0xd4}], 0x7, &(0x7f0000005480)=""/82, 0x52}, 0xe09e}, {{&(0x7f0000005500)=@sco, 0x80, &(0x7f00000056c0)=[{&(0x7f0000005580)=""/67, 0x43}, {&(0x7f0000005600)=""/138, 0x8a}], 0x2, &(0x7f0000005700)}, 0x3}, {{0x0, 0x0, &(0x7f0000005900)=[{&(0x7f0000005740)=""/179, 0xb3}, {&(0x7f0000005800)}, {&(0x7f0000005840)=""/138, 0x8a}], 0x3, &(0x7f0000005940)=""/199, 0xc7}, 0x9da}], 0x3, 0x100, &(0x7f0000005b00)={0x77359400})
sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000005e40)={&(0x7f0000000000), 0xc, &(0x7f0000005e00)={&(0x7f0000005b40)={0x298, r2, 0x1, 0x70bd26, 0x25dfdbfb, {}, [{{0x8, 0x1, r3}, {0x27c, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x24a3}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r4}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r5}}}, {0x5c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x2c, 0x4, [{0x3, 0xf131, 0x40, 0x4d}, {0x377f, 0xe3, 0x4, 0xce}, {0x4, 0x7, 0x972, 0xffffffffffffff00}, {0xffffffffffffff00, 0xffffffffffffff80, 0xfffffffffffffffc, 0x3}, {0x987, 0x100000000, 0x5, 0x100}]}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x1}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x3bba4c37}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r9}}}]}}]}, 0x298}, 0x1, 0x0, 0x0, 0x1}, 0x804)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1876.343679][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1876.349832][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1878.423680][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1878.429781][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1880.503675][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:04:37 executing program 1 (fault-call:2 fault-nth:68):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:04:37 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000040ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:37 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:04:37 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x200000000)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f0000000080))
pipe2$9p(&(0x7f0000000000), 0x4000)

20:04:37 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x8cffffff)

20:04:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x0, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:04:37 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000543ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:37 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x8, 0x8182)
r1 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x2, 0x40)
add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)
fcntl$notify(r0, 0x402, 0x80000000)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f00000001c0)={{0x3, 0x101}, 'port0\x00', 0x4, 0x121000, 0xe0, 0xfc00000000000000, 0xcc2f, 0x5, 0x81, 0x0, 0x4, 0xe8f4})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f0000000080)={0x100, 0x5, 0x6, 'queue1\x00', 0xefd4})

[ 1884.695435][T29665] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1884.726485][T29665] FAULT_INJECTION: forcing a failure.
[ 1884.726485][T29665] name failslab, interval 1, probability 0, space 0, times 0
20:04:37 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000060ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1884.778243][T29665] CPU: 0 PID: 29665 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1884.787651][T29665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1884.797736][T29665] Call Trace:
[ 1884.801054][T29665]  dump_stack+0x172/0x1f0
[ 1884.805583][T29665]  should_fail.cold+0xa/0x15
[ 1884.810199][T29665]  ? fault_create_debugfs_attr+0x180/0x180
[ 1884.816021][T29665]  ? page_to_nid.part.0+0x20/0x20
[ 1884.821144][T29665]  ? ___might_sleep+0x163/0x280
[ 1884.826017][T29665]  __should_failslab+0x121/0x190
[ 1884.830974][T29665]  should_failslab+0x9/0x14
[ 1884.835493][T29665]  kmem_cache_alloc+0x2aa/0x710
[ 1884.840388][T29665]  ? __mutex_lock+0x45d/0x13c0
[ 1884.845274][T29665]  __kernfs_new_node+0xf0/0x6c0
[ 1884.850146][T29665]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1884.855640][T29665]  ? wait_for_completion+0x440/0x440
[ 1884.855667][T29665]  ? mutex_unlock+0xd/0x10
[ 1884.865368][T29665]  ? kernfs_activate+0x192/0x1f0
[ 1884.865385][T29665]  kernfs_new_node+0x96/0x120
20:04:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000080ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1884.865400][T29665]  __kernfs_create_file+0x51/0x33b
[ 1884.865415][T29665]  sysfs_add_file_mode_ns+0x222/0x560
[ 1884.865434][T29665]  sysfs_merge_group+0x1a0/0x340
[ 1884.890660][T29665]  ? sysfs_init_fs_context+0x380/0x380
[ 1884.896134][T29665]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1884.902491][T29665]  ? kernfs_create_link+0x1cc/0x250
[ 1884.907711][T29665]  dpm_sysfs_add+0x21e/0x270
[ 1884.912399][T29665]  device_add+0x9df/0x17a0
[ 1884.916839][T29665]  ? uevent_show+0x370/0x370
[ 1884.922277][T29665]  rfkill_register+0x1bf/0xb50
[ 1884.927406][T29665]  hci_register_dev+0x378/0x8f0
[ 1884.932293][T29665]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1884.937595][T29665]  tty_ioctl+0xaf9/0x14f0
[ 1884.937614][T29665]  ? hci_uart_init_work+0x180/0x180
[ 1884.937626][T29665]  ? do_tty_hangup+0x30/0x30
[ 1884.937637][T29665]  ? tomoyo_path_number_perm+0x459/0x520
[ 1884.937655][T29665]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1884.937665][T29665]  ? tomoyo_path_number_perm+0x263/0x520
[ 1884.937687][T29665]  ? tomoyo_execute_permission+0x4a0/0x4a0
20:04:38 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000e80ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1884.947464][T29665]  ? __kasan_check_read+0x11/0x20
[ 1884.947487][T29665]  ? do_tty_hangup+0x30/0x30
[ 1884.947503][T29665]  do_vfs_ioctl+0xdb6/0x13e0
[ 1884.947517][T29665]  ? ioctl_preallocate+0x210/0x210
[ 1884.947529][T29665]  ? __fget+0x384/0x560
[ 1884.947546][T29665]  ? ksys_dup3+0x3e0/0x3e0
[ 1884.947560][T29665]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1884.947573][T29665]  ? fput_many+0x12c/0x1a0
[ 1884.947594][T29665]  ? tomoyo_file_ioctl+0x23/0x30
[ 1885.014076][T29665]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1885.014093][T29665]  ? security_file_ioctl+0x8d/0xc0
[ 1885.014108][T29665]  ksys_ioctl+0xab/0xd0
[ 1885.014125][T29665]  __x64_sys_ioctl+0x73/0xb0
[ 1885.025811][T29665]  do_syscall_64+0xfa/0x760
[ 1885.025830][T29665]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1885.025844][T29665] RIP: 0033:0x459829
[ 1885.025858][T29665] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
20:04:38 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1885.025864][T29665] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1885.025875][T29665] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1885.025882][T29665] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1885.025888][T29665] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1885.025896][T29665] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1885.025903][T29665] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1885.170709][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1887.223708][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1887.239778][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1889.303665][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1889.309941][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1891.383688][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:04:48 executing program 1 (fault-call:2 fault-nth:69):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:04:48 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000000)={0x7, 0x2b, 0x6, 'queue1\x00', 0x94})
ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000140)=""/147)

20:04:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000003580ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:04:48 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xa0008000)

20:04:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x0, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:04:48 executing program 3:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000700)='/dev/dsp\x00', 0x40, 0x0)
getpeername$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000007c0)=0x14)
openat$cgroup_subtree(r0, &(0x7f0000000740)='cgroup.subtree_control\x00', 0x2, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000780)='/dev/dri/card#\x00', 0x3f, 0x0)
ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000800)={0x0, 0x1f, 0x7, 0x8, 0x18, 0x911a})
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0x2, &(0x7f00000006c0)=0x1d, 0x4)
ioctl$DRM_IOCTL_MAP_BUFS(r2, 0xc0186419, &(0x7f0000000680)={0x7, &(0x7f0000000000)=""/176, &(0x7f00000005c0)=[{0x1, 0x11, 0x855b, &(0x7f00000000c0)=""/17}, {0x7, 0xa0, 0x1, &(0x7f0000000140)=""/160}, {0x100, 0x11, 0x9, &(0x7f0000000200)=""/17}, {0x6, 0xd0, 0xc000000, &(0x7f0000000240)=""/208}, {0x3ff, 0x8b, 0x4, &(0x7f0000000340)=""/139}, {0xf8d7, 0x8e, 0xffffffff8f0cb6c6, &(0x7f0000000400)=""/142}, {0x0, 0xff, 0x2, &(0x7f00000004c0)=""/255}]})

[ 1895.557226][T29697] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1895.601911][T29697] FAULT_INJECTION: forcing a failure.
[ 1895.601911][T29697] name failslab, interval 1, probability 0, space 0, times 0
[ 1895.615340][T29697] CPU: 1 PID: 29697 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1895.624459][T29697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1895.634614][T29697] Call Trace:
[ 1895.637925][T29697]  dump_stack+0x172/0x1f0
[ 1895.642277][T29697]  should_fail.cold+0xa/0x15
[ 1895.647156][T29697]  ? fault_create_debugfs_attr+0x180/0x180
[ 1895.652976][T29697]  ? stack_trace_save+0xac/0xe0
[ 1895.657932][T29697]  __should_failslab+0x121/0x190
[ 1895.663320][T29697]  should_failslab+0x9/0x14
[ 1895.667831][T29697]  kmem_cache_alloc+0x47/0x710
[ 1895.672607][T29697]  ? save_stack+0x5c/0x90
[ 1895.677058][T29697]  ? save_stack+0x23/0x90
[ 1895.681388][T29697]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 1895.687196][T29697]  ? kasan_slab_alloc+0xf/0x20
[ 1895.691969][T29697]  radix_tree_node_alloc.constprop.0+0x1eb/0x340
[ 1895.698305][T29697]  idr_get_free+0x48e/0x8c0
[ 1895.702820][T29697]  idr_alloc_u32+0x19e/0x330
[ 1895.707433][T29697]  ? __fprop_inc_percpu_max+0x230/0x230
[ 1895.712982][T29697]  ? mark_held_locks+0xf0/0xf0
[ 1895.717763][T29697]  ? page_to_nid.part.0+0x20/0x20
[ 1895.722793][T29697]  idr_alloc_cyclic+0x132/0x270
[ 1895.727665][T29697]  ? idr_alloc+0x150/0x150
[ 1895.732094][T29697]  __kernfs_new_node+0x172/0x6c0
[ 1895.737217][T29697]  ? kernfs_dop_revalidate+0x3c0/0x3c0
[ 1895.742679][T29697]  ? wait_for_completion+0x440/0x440
[ 1895.747975][T29697]  ? mutex_unlock+0xd/0x10
[ 1895.752395][T29697]  ? kernfs_activate+0x192/0x1f0
[ 1895.757339][T29697]  kernfs_new_node+0x96/0x120
[ 1895.762024][T29697]  __kernfs_create_file+0x51/0x33b
[ 1895.767143][T29697]  sysfs_add_file_mode_ns+0x222/0x560
[ 1895.772612][T29697]  sysfs_merge_group+0x1a0/0x340
[ 1895.777555][T29697]  ? sysfs_init_fs_context+0x380/0x380
[ 1895.783017][T29697]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1895.789260][T29697]  ? kernfs_create_link+0x1cc/0x250
[ 1895.794476][T29697]  dpm_sysfs_add+0x21e/0x270
[ 1895.799154][T29697]  device_add+0x9df/0x17a0
[ 1895.803841][T29697]  ? uevent_show+0x370/0x370
[ 1895.808452][T29697]  rfkill_register+0x1bf/0xb50
[ 1895.813219][T29697]  hci_register_dev+0x378/0x8f0
[ 1895.818078][T29697]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1895.823211][T29697]  tty_ioctl+0xaf9/0x14f0
[ 1895.827544][T29697]  ? hci_uart_init_work+0x180/0x180
[ 1895.833004][T29697]  ? do_tty_hangup+0x30/0x30
[ 1895.837600][T29697]  ? tomoyo_path_number_perm+0x459/0x520
[ 1895.843252][T29697]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1895.849505][T29697]  ? tomoyo_path_number_perm+0x263/0x520
[ 1895.855325][T29697]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1895.861146][T29697]  ? __kasan_check_read+0x11/0x20
[ 1895.866212][T29697]  ? do_tty_hangup+0x30/0x30
[ 1895.870993][T29697]  do_vfs_ioctl+0xdb6/0x13e0
[ 1895.875625][T29697]  ? ioctl_preallocate+0x210/0x210
[ 1895.880742][T29697]  ? __fget+0x384/0x560
[ 1895.884904][T29697]  ? ksys_dup3+0x3e0/0x3e0
[ 1895.889414][T29697]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1895.895660][T29697]  ? fput_many+0x12c/0x1a0
[ 1895.900096][T29697]  ? tomoyo_file_ioctl+0x23/0x30
[ 1895.905042][T29697]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1895.911375][T29697]  ? security_file_ioctl+0x8d/0xc0
[ 1895.916672][T29697]  ksys_ioctl+0xab/0xd0
[ 1895.920832][T29697]  __x64_sys_ioctl+0x73/0xb0
[ 1895.925540][T29697]  do_syscall_64+0xfa/0x760
[ 1895.930047][T29697]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1895.936032][T29697] RIP: 0033:0x459829
[ 1895.940112][T29697] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1895.959718][T29697] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1895.968137][T29697] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1895.976199][T29697] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1895.984355][T29697] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1895.992335][T29697] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
20:04:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000081ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1896.000339][T29697] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1896.019353][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
20:04:49 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc)
close(r3)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:04:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000ffffdd86ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:49 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$input_event(r1, &(0x7f0000000000)={{}, 0x11, 0x9, 0x4}, 0x18)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1898.023946][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1898.030071][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1900.103891][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1900.109976][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1902.184033][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:04:59 executing program 1 (fault-call:2 fault-nth:70):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:04:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000004788ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:04:59 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xa0010000)

20:04:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000000)=[@timestamp, @sack_perm, @sack_perm, @timestamp, @window={0x3, 0x6e499be8, 0x80000001}, @timestamp], 0x6)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:04:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x0, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:04:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000004888ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:04:59 executing program 3:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x2, 0x0)
ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000080))
ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0x9)
r1 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0xd5a8, 0x0)
setns(r0, 0x4a000000)
fcntl$dupfd(r0, 0x0, r1)

[ 1906.486271][T29734] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1906.515663][T29734] FAULT_INJECTION: forcing a failure.
[ 1906.515663][T29734] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1906.529867][T29734] CPU: 0 PID: 29734 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1906.529876][T29734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1906.529881][T29734] Call Trace:
[ 1906.529911][T29734]  dump_stack+0x172/0x1f0
[ 1906.529931][T29734]  should_fail.cold+0xa/0x15
[ 1906.529948][T29734]  ? rwlock_bug.part.0+0x90/0x90
[ 1906.529969][T29734]  ? fault_create_debugfs_attr+0x180/0x180
[ 1906.529985][T29734]  ? trace_hardirqs_on+0x67/0x240
[ 1906.530000][T29734]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1906.530017][T29734]  should_fail_alloc_page+0x50/0x60
[ 1906.530029][T29734]  __alloc_pages_nodemask+0x1a1/0x900
[ 1906.530046][T29734]  ? __alloc_pages_slowpath+0x2520/0x2520
[ 1906.530059][T29734]  ? fs_reclaim_acquire.part.0+0x30/0x30
[ 1906.530074][T29734]  ? __kasan_check_read+0x11/0x20
[ 1906.530094][T29734]  ? fault_create_debugfs_attr+0x180/0x180
[ 1906.530111][T29734]  cache_grow_begin+0x90/0xd20
[ 1906.530125][T29734]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1906.530144][T29734]  kmem_cache_alloc_trace+0x6b3/0x790
[ 1906.575117][T29734]  ? __kasan_check_write+0x14/0x20
[ 1906.575137][T29734]  kobject_uevent_env+0x387/0x1023
[ 1906.575155][T29734]  kobject_uevent+0x20/0x26
[ 1906.575169][T29734]  device_add+0xad8/0x17a0
[ 1906.575184][T29734]  ? uevent_show+0x370/0x370
[ 1906.575206][T29734]  rfkill_register+0x1bf/0xb50
[ 1906.665479][T29734]  hci_register_dev+0x378/0x8f0
[ 1906.670403][T29734]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1906.675413][T29734]  tty_ioctl+0xaf9/0x14f0
[ 1906.679914][T29734]  ? hci_uart_init_work+0x180/0x180
[ 1906.685185][T29734]  ? do_tty_hangup+0x30/0x30
[ 1906.689755][T29734]  ? tomoyo_path_number_perm+0x459/0x520
[ 1906.695369][T29734]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1906.701593][T29734]  ? tomoyo_path_number_perm+0x263/0x520
[ 1906.707215][T29734]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1906.713006][T29734]  ? __kasan_check_read+0x11/0x20
[ 1906.718015][T29734]  ? do_tty_hangup+0x30/0x30
[ 1906.722587][T29734]  do_vfs_ioctl+0xdb6/0x13e0
[ 1906.727158][T29734]  ? ioctl_preallocate+0x210/0x210
[ 1906.732335][T29734]  ? __fget+0x384/0x560
[ 1906.736668][T29734]  ? ksys_dup3+0x3e0/0x3e0
[ 1906.741077][T29734]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1906.747316][T29734]  ? fput_many+0x12c/0x1a0
[ 1906.751726][T29734]  ? tomoyo_file_ioctl+0x23/0x30
[ 1906.757776][T29734]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1906.764017][T29734]  ? security_file_ioctl+0x8d/0xc0
[ 1906.769122][T29734]  ksys_ioctl+0xab/0xd0
[ 1906.773261][T29734]  __x64_sys_ioctl+0x73/0xb0
[ 1906.777844][T29734]  do_syscall_64+0xfa/0x760
[ 1906.782330][T29734]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1906.788209][T29734] RIP: 0033:0x459829
[ 1906.792112][T29734] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1906.811697][T29734] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1906.820095][T29734] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1906.828235][T29734] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
20:04:59 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)
getsockopt$netrom_NETROM_T4(r1, 0x103, 0x6, &(0x7f0000000000)=0x3f, &(0x7f0000000040)=0x4)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)

20:04:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1906.836362][T29734] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1906.844318][T29734] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1906.852455][T29734] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:04:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000006488ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1906.888166][   T38] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1906.902406][   T38] Bluetooth: hci0: Frame reassembly failed (-84)
20:05:00 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$VIDIOC_STREAMON(r1, 0x40045612, &(0x7f0000000000)=0x8)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

[ 1908.903724][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1908.909895][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1910.983684][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1910.989867][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1913.063704][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:05:10 executing program 1 (fault-call:2 fault-nth:71):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:05:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000ffffa888ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:05:10 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
bind$netrom(r1, &(0x7f0000000180)={{0x3, @null, 0x8}, [@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={<r2=>0x0, r1, 0x0, 0x2, &(0x7f00000000c0)=']\x00', 0xffffffffffffffff}, 0x30)
perf_event_open(&(0x7f0000000040)={0x3, 0x70, 0x0, 0x6, 0x80000001, 0x20, 0x0, 0x8000000000, 0x40000, 0x1, 0x3, 0x21, 0x0, 0x7, 0xffffffff, 0x0, 0x2, 0x80ae, 0x200, 0x1, 0xffffffffffffff80, 0x4dbc, 0x4, 0xffffffffffffff6c, 0x9, 0xcdae, 0x3, 0x3ff, 0x1ff, 0x200, 0x2, 0x100, 0x0, 0x1, 0x7, 0xfffffffffffffffd, 0x1, 0x100, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x10010, 0x7, 0x3, 0xf, 0x5, 0xad2, 0xf876}, r2, 0x7, r1, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000200))
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:05:10 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc0000000)

20:05:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:05:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000ffffca88ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:10 executing program 3:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0x0)

[ 1917.372178][T29770] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:05:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1917.424592][T29770] FAULT_INJECTION: forcing a failure.
[ 1917.424592][T29770] name failslab, interval 1, probability 0, space 0, times 0
[ 1917.460712][T29770] CPU: 1 PID: 29770 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1917.470163][T29770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1917.480234][T29770] Call Trace:
[ 1917.483558][T29770]  dump_stack+0x172/0x1f0
[ 1917.488085][T29770]  should_fail.cold+0xa/0x15
[ 1917.493115][T29770]  ? fault_create_debugfs_attr+0x180/0x180
[ 1917.499019][T29770]  ? page_to_nid.part.0+0x20/0x20
[ 1917.504063][T29770]  ? ___might_sleep+0x163/0x280
[ 1917.509016][T29770]  __should_failslab+0x121/0x190
[ 1917.513982][T29770]  should_failslab+0x9/0x14
[ 1917.518521][T29770]  kmem_cache_alloc_node+0x268/0x740
[ 1917.523929][T29770]  ? netlink_has_listeners+0x23b/0x3f0
[ 1917.529707][T29770]  ? __kasan_check_read+0x11/0x20
[ 1917.535001][T29770]  __alloc_skb+0xd5/0x5e0
[ 1917.539370][T29770]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1917.544504][T29770]  ? netlink_has_listeners+0x6e/0x3f0
[ 1917.549927][T29770]  alloc_uevent_skb+0x83/0x1e2
[ 1917.554877][T29770]  kobject_uevent_env+0xaa3/0x1023
[ 1917.560660][T29770]  kobject_uevent+0x20/0x26
[ 1917.565206][T29770]  device_add+0xad8/0x17a0
[ 1917.569750][T29770]  ? uevent_show+0x370/0x370
[ 1917.574674][T29770]  rfkill_register+0x1bf/0xb50
[ 1917.579445][T29770]  hci_register_dev+0x378/0x8f0
[ 1917.584310][T29770]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1917.589357][T29770]  tty_ioctl+0xaf9/0x14f0
[ 1917.593990][T29770]  ? hci_uart_init_work+0x180/0x180
[ 1917.599188][T29770]  ? do_tty_hangup+0x30/0x30
[ 1917.603864][T29770]  ? tomoyo_path_number_perm+0x459/0x520
[ 1917.609855][T29770]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1917.616376][T29770]  ? tomoyo_path_number_perm+0x263/0x520
[ 1917.622537][T29770]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1917.628361][T29770]  ? __kasan_check_read+0x11/0x20
[ 1917.633400][T29770]  ? do_tty_hangup+0x30/0x30
[ 1917.637997][T29770]  do_vfs_ioctl+0xdb6/0x13e0
[ 1917.642794][T29770]  ? ioctl_preallocate+0x210/0x210
[ 1917.647910][T29770]  ? __fget+0x384/0x560
[ 1917.652074][T29770]  ? ksys_dup3+0x3e0/0x3e0
[ 1917.656567][T29770]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1917.662921][T29770]  ? fput_many+0x12c/0x1a0
[ 1917.667358][T29770]  ? tomoyo_file_ioctl+0x23/0x30
[ 1917.672302][T29770]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1917.678549][T29770]  ? security_file_ioctl+0x8d/0xc0
[ 1917.683671][T29770]  ksys_ioctl+0xab/0xd0
[ 1917.687847][T29770]  __x64_sys_ioctl+0x73/0xb0
[ 1917.692455][T29770]  do_syscall_64+0xfa/0x760
[ 1917.696975][T29770]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1917.702867][T29770] RIP: 0033:0x459829
20:05:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000000689ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:10 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000000), &(0x7f0000000040)=0x4)

[ 1917.706793][T29770] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1917.726861][T29770] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1917.735277][T29770] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1917.743258][T29770] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1917.751230][T29770] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1917.759400][T29770] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1917.767380][T29770] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:05:11 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x2e02, 0x0)
ioctl$BLKTRACESTOP(r1, 0x1275, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000140)={{{@in=@loopback, @in6=@remote}}, {{@in=@multicast2}, 0x0, @in=@multicast1}}, &(0x7f0000000080)=0xe8)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r2, 0xab09, 0x0)

[ 1919.863730][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1919.871512][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1921.943674][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1921.949972][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1924.023703][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:05:21 executing program 1 (fault-call:2 fault-nth:72):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:05:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000ffffff89ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:21 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:05:21 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x1, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)
bind$rxrpc(r1, &(0x7f0000000000)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e23, 0x6, @mcast2, 0x5}}, 0x24)

20:05:21 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xf4ffffff)

20:05:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:05:21 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x400)
ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x0)

20:05:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000000000ffff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1928.213435][T29804] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:05:21 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1928.256535][T29804] FAULT_INJECTION: forcing a failure.
[ 1928.256535][T29804] name failslab, interval 1, probability 0, space 0, times 0
[ 1928.303706][T29804] CPU: 0 PID: 29804 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1928.320662][T29804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1928.330792][T29804] Call Trace:
[ 1928.334080][T29804]  dump_stack+0x172/0x1f0
[ 1928.338397][T29804]  should_fail.cold+0xa/0x15
[ 1928.343060][T29804]  ? fault_create_debugfs_attr+0x180/0x180
[ 1928.350442][T29804]  ? page_to_nid.part.0+0x20/0x20
[ 1928.355453][T29804]  ? ___might_sleep+0x163/0x280
[ 1928.360470][T29804]  __should_failslab+0x121/0x190
[ 1928.365390][T29804]  should_failslab+0x9/0x14
[ 1928.369871][T29804]  kmem_cache_alloc_node_trace+0x274/0x750
[ 1928.375657][T29804]  ? kasan_unpoison_shadow+0x35/0x50
[ 1928.380933][T29804]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 1928.386808][T29804]  __kmalloc_node_track_caller+0x3d/0x70
[ 1928.392704][T29804]  __kmalloc_reserve.isra.0+0x40/0xf0
[ 1928.398145][T29804]  __alloc_skb+0x10b/0x5e0
[ 1928.402552][T29804]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1928.407741][T29804]  ? netlink_has_listeners+0x6e/0x3f0
[ 1928.415027][T29804]  alloc_uevent_skb+0x83/0x1e2
[ 1928.419875][T29804]  kobject_uevent_env+0xaa3/0x1023
[ 1928.425079][T29804]  kobject_uevent+0x20/0x26
[ 1928.429569][T29804]  device_add+0xad8/0x17a0
[ 1928.433967][T29804]  ? uevent_show+0x370/0x370
[ 1928.439414][T29804]  rfkill_register+0x1bf/0xb50
[ 1928.444163][T29804]  hci_register_dev+0x378/0x8f0
[ 1928.449282][T29804]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1928.454376][T29804]  tty_ioctl+0xaf9/0x14f0
[ 1928.458687][T29804]  ? hci_uart_init_work+0x180/0x180
[ 1928.463866][T29804]  ? do_tty_hangup+0x30/0x30
[ 1928.468443][T29804]  ? tomoyo_path_number_perm+0x459/0x520
[ 1928.474330][T29804]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1928.480558][T29804]  ? tomoyo_path_number_perm+0x263/0x520
[ 1928.486180][T29804]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1928.492070][T29804]  ? __kasan_check_read+0x11/0x20
[ 1928.497090][T29804]  ? do_tty_hangup+0x30/0x30
[ 1928.501856][T29804]  do_vfs_ioctl+0xdb6/0x13e0
[ 1928.506958][T29804]  ? ioctl_preallocate+0x210/0x210
[ 1928.512058][T29804]  ? __fget+0x384/0x560
[ 1928.516206][T29804]  ? ksys_dup3+0x3e0/0x3e0
[ 1928.520613][T29804]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1928.527628][T29804]  ? fput_many+0x12c/0x1a0
[ 1928.532301][T29804]  ? tomoyo_file_ioctl+0x23/0x30
[ 1928.537606][T29804]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1928.543828][T29804]  ? security_file_ioctl+0x8d/0xc0
[ 1928.548933][T29804]  ksys_ioctl+0xab/0xd0
[ 1928.553073][T29804]  __x64_sys_ioctl+0x73/0xb0
[ 1928.557733][T29804]  do_syscall_64+0xfa/0x760
[ 1928.562221][T29804]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1928.568098][T29804] RIP: 0033:0x459829
[ 1928.571981][T29804] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1928.591564][T29804] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1928.600128][T29804] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1928.609834][T29804] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1928.617795][T29804] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1928.625750][T29804] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1928.633701][T29804] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:05:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000ffffffffff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:21 executing program 3:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000880)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
readv(r0, &(0x7f0000000000)=[{&(0x7f00000001c0)=""/166, 0xa6}], 0x1)

[ 1928.699007][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
20:05:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000008000a0ffffffffff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1928.809929][T29820] input: syz1 as /devices/virtual/input/input15
[ 1929.598796][T29826] input: syz1 as /devices/virtual/input/input16
[ 1930.743653][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1930.751310][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1932.823696][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1932.829912][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1934.903718][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:05:32 executing program 1 (fault-call:2 fault-nth:73):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:05:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:05:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000001a0ffffffffff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:05:32 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xf5ffffff)

20:05:32 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x0, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000280)=""/208, &(0x7f0000000140)=0xd0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(0x0)
r2 = accept4$packet(r0, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000005c0)=0x14, 0x80000)
getpeername$packet(r0, &(0x7f00000006c0)={0x11, 0x0, <r3=>0x0}, &(0x7f0000000700)=0x14)
getpeername$packet(r0, 0x0, &(0x7f0000000780))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000880)={{{@in6=@initdev, @in6=@dev}}, {{@in6=@mcast2}, 0x0, @in6=@local}}, &(0x7f0000000980)=0xe8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth1_to_hsr\x00', r3})
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000c00)={{{@in=@initdev, @in=@initdev}}, {{@in=@empty}, 0x0, @in=@remote}}, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000d40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000d80)=0x14)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000dc0)={0x0, @rand_addr, @multicast1}, &(0x7f0000000e00)=0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f0000001280)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001240)={&(0x7f0000000400)=ANY=[@ANYBLOB="db244212bb4f59730c271d6f172f3d1ecdeeb36bf5157a721a7fe72937ee4e07d35d1dea85f8b30cb3beef0fecd939a5163ba44fef70fa36225d2aaa8ed7ce3d0b45f7ed32afb1014cb103a1fb9ddb24fd00"/94, @ANYRES32], 0x2}, 0x1, 0x0, 0x0, 0xc044}, 0x1)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, 0x0)
clock_gettime(0x4, &(0x7f00000003c0))
bind$alg(0xffffffffffffffff, &(0x7f0000000600)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58)
r4 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(r4, &(0x7f0000007f00)=[{{&(0x7f00000056c0)=@can, 0x3000, &(0x7f00000000c0)}}, {{&(0x7f0000005900)=@pppoe={0x18, 0x0, {0x0, @link_local, 'syzkaller0\x00'}}, 0x80, &(0x7f0000007ac0), 0x1a9, &(0x7f0000007b00), 0x24c}}], 0x3fffffffffffe0d, 0x0)
r5 = memfd_create(&(0x7f00000001c0)='ppp0+,selfppp0vmnet1proc\']\x00', 0x0)
r6 = syz_open_dev$sndseq(&(0x7f0000050000)='/dev/snd/seq\x00', 0x0, 0x2)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r7, 0x29, 0x1, &(0x7f00000004c0), 0x4)
r8 = dup2(r6, r5)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r8, 0x40bc5311, &(0x7f0000000000)={0x80, 0x1, 'clien\x00\x00\x00\x00\x00\x00\x04\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', 0xffffffff90000004, "7fd82d5e02ca3901", "88e7ed00007fff051eae961ef6c6992b7e6e560000f9fff77711be18a3d918e0"})

20:05:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000f0ffffffffffffff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1939.097013][T29839] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1939.134652][T29839] FAULT_INJECTION: forcing a failure.
[ 1939.134652][T29839] name failslab, interval 1, probability 0, space 0, times 0
[ 1939.203567][T29839] CPU: 0 PID: 29839 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1939.213797][T29839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1939.225358][T29839] Call Trace:
[ 1939.229029][T29839]  dump_stack+0x172/0x1f0
[ 1939.237569][T29839]  should_fail.cold+0xa/0x15
[ 1939.244804][T29839]  ? fault_create_debugfs_attr+0x180/0x180
[ 1939.251669][T29839]  ? page_to_nid.part.0+0x20/0x20
[ 1939.258898][T29839]  ? ___might_sleep+0x163/0x280
[ 1939.264555][T29839]  __should_failslab+0x121/0x190
[ 1939.269800][T29839]  should_failslab+0x9/0x14
[ 1939.274427][T29839]  kmem_cache_alloc_node+0x268/0x740
[ 1939.280261][T29839]  ? netlink_has_listeners+0x23b/0x3f0
[ 1939.286178][T29839]  ? __kasan_check_read+0x11/0x20
[ 1939.291477][T29839]  __alloc_skb+0xd5/0x5e0
[ 1939.296870][T29839]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1939.305756][T29839]  ? netlink_has_listeners+0x6e/0x3f0
[ 1939.313728][T29839]  alloc_uevent_skb+0x83/0x1e2
[ 1939.319979][T29839]  kobject_uevent_env+0xaa3/0x1023
[ 1939.325450][T29839]  kobject_uevent+0x20/0x26
[ 1939.329984][T29839]  device_add+0xad8/0x17a0
[ 1939.334545][T29839]  ? uevent_show+0x370/0x370
[ 1939.339770][T29839]  rfkill_register+0x1bf/0xb50
[ 1939.345671][T29839]  hci_register_dev+0x378/0x8f0
[ 1939.353541][T29839]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1939.360091][T29839]  tty_ioctl+0xaf9/0x14f0
[ 1939.364451][T29839]  ? hci_uart_init_work+0x180/0x180
[ 1939.370033][T29839]  ? do_tty_hangup+0x30/0x30
[ 1939.374823][T29839]  ? tomoyo_path_number_perm+0x459/0x520
[ 1939.380824][T29839]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1939.387402][T29839]  ? tomoyo_path_number_perm+0x263/0x520
[ 1939.394169][T29839]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1939.400447][T29839]  ? __kasan_check_read+0x11/0x20
[ 1939.405584][T29839]  ? do_tty_hangup+0x30/0x30
[ 1939.410216][T29839]  do_vfs_ioctl+0xdb6/0x13e0
[ 1939.415787][T29839]  ? ioctl_preallocate+0x210/0x210
[ 1939.421886][T29839]  ? __fget+0x384/0x560
[ 1939.426294][T29839]  ? ksys_dup3+0x3e0/0x3e0
[ 1939.431150][T29839]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1939.438128][T29839]  ? fput_many+0x12c/0x1a0
[ 1939.443415][T29839]  ? tomoyo_file_ioctl+0x23/0x30
[ 1939.449070][T29839]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1939.459676][T29839]  ? security_file_ioctl+0x8d/0xc0
[ 1939.465310][T29839]  ksys_ioctl+0xab/0xd0
[ 1939.469574][T29839]  __x64_sys_ioctl+0x73/0xb0
[ 1939.474183][T29839]  do_syscall_64+0xfa/0x760
[ 1939.478969][T29839]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1939.485030][T29839] RIP: 0033:0x459829
[ 1939.488953][T29839] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1939.509270][T29839] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1939.519476][T29839] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1939.528066][T29839] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1939.536497][T29839] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
20:05:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000002000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1939.545656][T29839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1939.557530][T29839] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1939.586784][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
20:05:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000003000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:32 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:05:32 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000004000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1941.623702][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1941.631255][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1943.703772][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1943.710495][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1945.783638][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:05:42 executing program 1 (fault-call:2 fault-nth:74):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:05:42 executing program 3:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x50000}]})
setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1a, 0x0, 0x0)

20:05:42 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xf6ffffff)

20:05:42 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000005000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:05:42 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:05:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000006000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:43 executing program 3:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, 0x0, 0x0)

20:05:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000008000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1950.038881][T29879] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1950.072598][T29879] FAULT_INJECTION: forcing a failure.
[ 1950.072598][T29879] name failslab, interval 1, probability 0, space 0, times 0
[ 1950.117715][T29879] CPU: 0 PID: 29879 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1950.126858][T29879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1950.136919][T29879] Call Trace:
[ 1950.136947][T29879]  dump_stack+0x172/0x1f0
[ 1950.136967][T29879]  should_fail.cold+0xa/0x15
[ 1950.136991][T29879]  ? fault_create_debugfs_attr+0x180/0x180
[ 1950.155051][T29879]  ? finish_task_switch+0x147/0x720
[ 1950.155064][T29879]  ? finish_task_switch+0x119/0x720
[ 1950.155083][T29879]  __should_failslab+0x121/0x190
[ 1950.155100][T29879]  should_failslab+0x9/0x14
[ 1950.155111][T29879]  kmem_cache_alloc_node+0x56/0x740
[ 1950.155130][T29879]  __alloc_skb+0xd5/0x5e0
[ 1950.155148][T29879]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1950.189650][T29879]  ? do_raw_read_unlock+0x70/0x70
[ 1950.194678][T29879]  ? hci_register_dev+0x469/0x8f0
[ 1950.199699][T29879]  hci_sock_dev_event+0xf3/0x580
[ 1950.204630][T29879]  hci_register_dev+0x57f/0x8f0
[ 1950.209489][T29879]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1950.214528][T29879]  tty_ioctl+0xaf9/0x14f0
[ 1950.218840][T29879]  ? hci_uart_init_work+0x180/0x180
[ 1950.224194][T29879]  ? do_tty_hangup+0x30/0x30
[ 1950.228765][T29879]  ? tomoyo_path_number_perm+0x459/0x520
[ 1950.234381][T29879]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1950.240600][T29879]  ? tomoyo_path_number_perm+0x263/0x520
[ 1950.246215][T29879]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1950.252094][T29879]  ? __kasan_check_read+0x11/0x20
[ 1950.257102][T29879]  ? do_tty_hangup+0x30/0x30
[ 1950.261688][T29879]  do_vfs_ioctl+0xdb6/0x13e0
[ 1950.266359][T29879]  ? ioctl_preallocate+0x210/0x210
[ 1950.271450][T29879]  ? __fget+0x384/0x560
[ 1950.275588][T29879]  ? ksys_dup3+0x3e0/0x3e0
[ 1950.279995][T29879]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1950.286216][T29879]  ? fput_many+0x12c/0x1a0
[ 1950.290616][T29879]  ? tomoyo_file_ioctl+0x23/0x30
[ 1950.295537][T29879]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1950.301773][T29879]  ? security_file_ioctl+0x8d/0xc0
[ 1950.306866][T29879]  ksys_ioctl+0xab/0xd0
[ 1950.311051][T29879]  __x64_sys_ioctl+0x73/0xb0
[ 1950.315714][T29879]  do_syscall_64+0xfa/0x760
[ 1950.320204][T29879]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1950.326521][T29879] RIP: 0033:0x459829
[ 1950.330500][T29879] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1950.350111][T29879] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1950.358652][T29879] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
20:05:43 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1950.366606][T29879] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1950.374557][T29879] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1950.382703][T29879] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1950.390655][T29879] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:05:43 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000d000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:43 executing program 3:
getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f000000b400), &(0x7f000000b480)=0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x50000}]})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x6)
openat$cgroup_int(r0, 0x0, 0x2, 0x0)

[ 1950.474031][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1952.503654][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1952.509772][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1954.583697][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1954.589970][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1956.663649][T28974] Bluetooth: hci0: command 0x1009 tx timeout
20:05:53 executing program 1 (fault-call:2 fault-nth:75):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:05:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:05:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000028000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:53 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xfeffffff)

20:05:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:05:53 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
read$FUSE(r0, &(0x7f0000002000), 0x215)
lstat(&(0x7f0000000680)='./file0/file1\x00', 0x0)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50)
read$FUSE(r0, &(0x7f0000004000), 0x1000)
write$FUSE_ENTRY(r0, &(0x7f0000000340)={0x90, 0x0, 0x2, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4}}}, 0x90)
lstat(&(0x7f0000000080)='./file0/file1\x00', 0x0)

20:05:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000029000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1960.826486][T29907] fuse: Bad value for 'subtype'
[ 1960.867947][T29909] fuse: Bad value for 'subtype'
20:05:54 executing program 3:
creat(&(0x7f0000000280)='./file0\x00', 0x0)
clone(0x10002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = memfd_create(&(0x7f00000001c0)='ppp0+,selfppp0vmnet1proc\']\x00', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000050000)='/dev/snd/seq\x00', 0x0, 0x2)
r2 = dup2(r1, r0)
socket$inet_tcp(0x2, 0x1, 0x0)
pipe(&(0x7f0000000440)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
dup2(r2, r3)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0)
write(r3, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7}, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
write$sndseq(0xffffffffffffffff, 0x0, 0xfffffffffffffd1e)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0)

[ 1960.901893][T29911] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1960.928900][T29911] FAULT_INJECTION: forcing a failure.
[ 1960.928900][T29911] name failslab, interval 1, probability 0, space 0, times 0
[ 1960.953690][T29911] CPU: 0 PID: 29911 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1960.962969][T29911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1960.973038][T29911] Call Trace:
[ 1960.976351][T29911]  dump_stack+0x172/0x1f0
[ 1960.980721][T29911]  should_fail.cold+0xa/0x15
[ 1960.985326][T29911]  ? fault_create_debugfs_attr+0x180/0x180
[ 1960.991143][T29911]  ? page_to_nid.part.0+0x20/0x20
[ 1960.996182][T29911]  ? ___might_sleep+0x163/0x280
[ 1961.001055][T29911]  __should_failslab+0x121/0x190
[ 1961.006010][T29911]  should_failslab+0x9/0x14
[ 1961.010540][T29911]  kmem_cache_alloc+0x2aa/0x710
[ 1961.015399][T29911]  ? refcount_dec_and_mutex_lock+0x90/0x90
[ 1961.021242][T29911]  ? netlink_broadcast_filtered+0x78/0xb90
[ 1961.027089][T29911]  ? __kmalloc_node_track_caller+0x4e/0x70
[ 1961.033002][T29911]  skb_clone+0x154/0x3d0
[ 1961.037347][T29911]  netlink_broadcast_filtered+0x8da/0xb90
[ 1961.043094][T29911]  netlink_broadcast+0x3a/0x50
[ 1961.047879][T29911]  kobject_uevent_env+0xad4/0x1023
[ 1961.053003][T29911]  kobject_uevent+0x20/0x26
[ 1961.057513][T29911]  device_add+0xad8/0x17a0
[ 1961.062027][T29911]  ? uevent_show+0x370/0x370
[ 1961.066633][T29911]  rfkill_register+0x1bf/0xb50
[ 1961.071411][T29911]  hci_register_dev+0x378/0x8f0
[ 1961.076274][T29911]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1961.081310][T29911]  tty_ioctl+0xaf9/0x14f0
[ 1961.085650][T29911]  ? hci_uart_init_work+0x180/0x180
[ 1961.090858][T29911]  ? do_tty_hangup+0x30/0x30
[ 1961.095459][T29911]  ? tomoyo_path_number_perm+0x459/0x520
[ 1961.101118][T29911]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1961.107372][T29911]  ? tomoyo_path_number_perm+0x263/0x520
[ 1961.113028][T29911]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1961.118852][T29911]  ? __kasan_check_read+0x11/0x20
[ 1961.123889][T29911]  ? do_tty_hangup+0x30/0x30
[ 1961.128485][T29911]  do_vfs_ioctl+0xdb6/0x13e0
[ 1961.133085][T29911]  ? ioctl_preallocate+0x210/0x210
[ 1961.138215][T29911]  ? __fget+0x384/0x560
[ 1961.142377][T29911]  ? ksys_dup3+0x3e0/0x3e0
[ 1961.146805][T29911]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1961.153053][T29911]  ? fput_many+0x12c/0x1a0
[ 1961.157567][T29911]  ? tomoyo_file_ioctl+0x23/0x30
[ 1961.162514][T29911]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1961.168773][T29911]  ? security_file_ioctl+0x8d/0xc0
[ 1961.168795][T29911]  ksys_ioctl+0xab/0xd0
[ 1961.178050][T29911]  __x64_sys_ioctl+0x73/0xb0
[ 1961.182669][T29911]  do_syscall_64+0xfa/0x760
[ 1961.182688][T29911]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1961.182704][T29911] RIP: 0033:0x459829
[ 1961.197118][T29911] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1961.216727][T29911] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1961.225150][T29911] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1961.233139][T29911] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1961.241570][T29911] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
20:05:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000002b000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1961.249641][T29911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1961.257721][T29911] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
[ 1961.283045][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
20:05:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000002c000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:05:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000002f000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1963.303678][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1963.331839][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1965.383681][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1965.389786][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1967.463657][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:06:04 executing program 1 (fault-call:2 fault-nth:76):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:06:04 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:04 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000003c000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:04 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xff000000)

20:06:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:04 executing program 3:
setsockopt$IP6T_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x29, 0x41, &(0x7f00000002c0)=ANY=[], 0x0)
ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000000000412d1fbc000000030006000000f9180200ee00e0000054d81458186fe8b90002000100000000000000030200044a7b030005000000000002000000e0193f010000000000fca0d9"], 0x60}}, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f00000003c0)='y\x00', 0x2, 0x0)
rt_sigpending(0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
openat$zero(0xffffffffffffff9c, 0x0, 0x2, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xb, &(0x7f0000000000)=""/119, 0x0)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000000000006d5ebe5a0000ff", 0x37}], 0x1, 0x0)

20:06:04 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000060000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1971.742068][T29948] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1971.765098][T29948] FAULT_INJECTION: forcing a failure.
[ 1971.765098][T29948] name failslab, interval 1, probability 0, space 0, times 0
[ 1971.798958][T29948] CPU: 0 PID: 29948 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1971.808196][T29948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1971.819474][T29948] Call Trace:
[ 1971.823116][T29948]  dump_stack+0x172/0x1f0
[ 1971.827450][T29948]  should_fail.cold+0xa/0x15
[ 1971.832121][T29948]  ? fault_create_debugfs_attr+0x180/0x180
[ 1971.837999][T29948]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1971.844392][T29948]  ? should_fail+0x1de/0x852
[ 1971.848969][T29948]  __should_failslab+0x121/0x190
[ 1971.853891][T29948]  should_failslab+0x9/0x14
[ 1971.858460][T29948]  kmem_cache_alloc_node_trace+0x5a/0x750
[ 1971.864161][T29948]  ? kasan_unpoison_shadow+0x35/0x50
[ 1971.869441][T29948]  ? __kasan_kmalloc.constprop.0+0xcf/0xe0
[ 1971.875318][T29948]  __kmalloc_node_track_caller+0x3d/0x70
[ 1971.881058][T29948]  __kmalloc_reserve.isra.0+0x40/0xf0
[ 1971.886414][T29948]  __alloc_skb+0x10b/0x5e0
[ 1971.890881][T29948]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1971.896319][T29948]  ? do_raw_read_unlock+0x70/0x70
[ 1971.901327][T29948]  ? hci_register_dev+0x469/0x8f0
[ 1971.906422][T29948]  hci_sock_dev_event+0xf3/0x580
[ 1971.911341][T29948]  hci_register_dev+0x57f/0x8f0
[ 1971.916187][T29948]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1971.921196][T29948]  tty_ioctl+0xaf9/0x14f0
[ 1971.925680][T29948]  ? hci_uart_init_work+0x180/0x180
[ 1971.930858][T29948]  ? do_tty_hangup+0x30/0x30
[ 1971.935426][T29948]  ? tomoyo_path_number_perm+0x459/0x520
[ 1971.941040][T29948]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1971.947271][T29948]  ? tomoyo_path_number_perm+0x263/0x520
[ 1971.952883][T29948]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1971.958675][T29948]  ? __kasan_check_read+0x11/0x20
[ 1971.963768][T29948]  ? do_tty_hangup+0x30/0x30
[ 1971.968428][T29948]  do_vfs_ioctl+0xdb6/0x13e0
[ 1971.972998][T29948]  ? ioctl_preallocate+0x210/0x210
[ 1971.978100][T29948]  ? __fget+0x384/0x560
[ 1971.982236][T29948]  ? ksys_dup3+0x3e0/0x3e0
[ 1971.986641][T29948]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1971.992857][T29948]  ? fput_many+0x12c/0x1a0
[ 1971.997266][T29948]  ? tomoyo_file_ioctl+0x23/0x30
[ 1972.002277][T29948]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1972.008699][T29948]  ? security_file_ioctl+0x8d/0xc0
[ 1972.013792][T29948]  ksys_ioctl+0xab/0xd0
[ 1972.017943][T29948]  __x64_sys_ioctl+0x73/0xb0
[ 1972.022602][T29948]  do_syscall_64+0xfa/0x760
[ 1972.027278][T29948]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1972.033238][T29948] RIP: 0033:0x459829
[ 1972.037137][T29948] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1972.056905][T29948] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1972.065296][T29948] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1972.073264][T29948] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1972.081216][T29948] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1972.089442][T29948] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
20:06:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000f0000000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1972.098268][T29948] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:06:05 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x3}, 0x28)

20:06:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000a0010000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1972.281628][T29962] fuse: Bad value for 'subtype'
[ 1972.312241][T29966] fuse: Bad value for 'subtype'
20:06:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1972.423967][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
[ 1974.503680][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1974.510962][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1976.583639][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1976.591337][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1978.663672][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:06:15 executing program 1 (fault-call:2 fault-nth:77):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:06:15 executing program 3:
getpid()
write$P9_RRENAME(0xffffffffffffffff, &(0x7f0000000200)={0x7}, 0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid\x00', 0x802, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c)
pipe(&(0x7f0000001200))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x3c081, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = getpgrp(0x0)
setpriority(0x0, r1, 0xffff)
sendto$inet(0xffffffffffffffff, &(0x7f0000000540)="0d000000000000001ec53a2ae3928a31eb4a2ee6b4464dc20fbe43fe306dae5456de96e8176b10e4fc8ee97954b33dda0485fd72ebba9e1f4f9d3335da068c0d4dbfa517611630445f0cbd7ff567274771d7a86b5785028faa1a814efd6383b218c1d41983ea72d3d24c102ecec8047642a40e52cfbb8e80460e4065a76b69bf4252aa82c5bbc36d736924579dad3d620447bf159e18a0f6eba5", 0x9a, 0x40000, 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1)
clone(0x4007fc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000001040)=[&(0x7f00000008c0)='TIPC\x00', &(0x7f0000000900)='%--\x00', &(0x7f0000000940)='system_u:object_r:pam_var_run_t:s0\x00', 0x0, &(0x7f0000000a00)='security.capability\x00', &(0x7f0000000a40)='security.capability\x00', &(0x7f0000000f80)='TIPC\x00', &(0x7f0000000fc0)=']\x00'], 0x0)

20:06:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000030000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:15 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0b")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:15 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xff0f0000)

20:06:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000050000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1982.654770][T29984] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 1982.679891][T29984] FAULT_INJECTION: forcing a failure.
[ 1982.679891][T29984] name failslab, interval 1, probability 0, space 0, times 0
[ 1982.716067][T29984] CPU: 1 PID: 29984 Comm: syz-executor.1 Not tainted 5.3.0-rc1-next-20190726 #53
[ 1982.725298][T29984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1982.735544][T29984] Call Trace:
[ 1982.738919][T29984]  dump_stack+0x172/0x1f0
[ 1982.743411][T29984]  should_fail.cold+0xa/0x15
[ 1982.747986][T29984]  ? fault_create_debugfs_attr+0x180/0x180
[ 1982.754833][T29984]  ? finish_task_switch+0x147/0x720
[ 1982.760900][T29984]  ? finish_task_switch+0x119/0x720
[ 1982.766527][T29984]  __should_failslab+0x121/0x190
[ 1982.772065][T29984]  should_failslab+0x9/0x14
[ 1982.776653][T29984]  kmem_cache_alloc_node+0x56/0x740
[ 1982.781924][T29984]  __alloc_skb+0xd5/0x5e0
[ 1982.786575][T29984]  ? netdev_alloc_frag+0x1b0/0x1b0
[ 1982.791928][T29984]  ? do_raw_read_unlock+0x70/0x70
[ 1982.797023][T29984]  ? hci_register_dev+0x469/0x8f0
[ 1982.802040][T29984]  hci_sock_dev_event+0xf3/0x580
[ 1982.806973][T29984]  hci_register_dev+0x57f/0x8f0
[ 1982.811811][T29984]  hci_uart_tty_ioctl+0x87e/0xc00
[ 1982.816833][T29984]  tty_ioctl+0xaf9/0x14f0
[ 1982.821144][T29984]  ? hci_uart_init_work+0x180/0x180
[ 1982.826411][T29984]  ? do_tty_hangup+0x30/0x30
[ 1982.830979][T29984]  ? tomoyo_path_number_perm+0x459/0x520
[ 1982.836595][T29984]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1982.842817][T29984]  ? tomoyo_path_number_perm+0x263/0x520
[ 1982.848430][T29984]  ? tomoyo_execute_permission+0x4a0/0x4a0
[ 1982.854318][T29984]  ? __kasan_check_read+0x11/0x20
[ 1982.859329][T29984]  ? do_tty_hangup+0x30/0x30
[ 1982.863899][T29984]  do_vfs_ioctl+0xdb6/0x13e0
[ 1982.868569][T29984]  ? ioctl_preallocate+0x210/0x210
[ 1982.873671][T29984]  ? __fget+0x384/0x560
[ 1982.877812][T29984]  ? ksys_dup3+0x3e0/0x3e0
[ 1982.882475][T29984]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1982.888957][T29984]  ? fput_many+0x12c/0x1a0
[ 1982.893541][T29984]  ? tomoyo_file_ioctl+0x23/0x30
[ 1982.898462][T29984]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1982.904691][T29984]  ? security_file_ioctl+0x8d/0xc0
[ 1982.909781][T29984]  ksys_ioctl+0xab/0xd0
[ 1982.913922][T29984]  __x64_sys_ioctl+0x73/0xb0
[ 1982.918588][T29984]  do_syscall_64+0xfa/0x760
[ 1982.923075][T29984]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1982.929207][T29984] RIP: 0033:0x459829
[ 1982.933090][T29984] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1982.953021][T29984] RSP: 002b:00007fc1b307fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:06:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1982.962198][T29984] RAX: ffffffffffffffda RBX: 00007fc1b307fc90 RCX: 0000000000459829
[ 1982.970600][T29984] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000003
[ 1982.978648][T29984] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[ 1982.986685][T29984] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc1b30806d4
[ 1982.994970][T29984] R13: 00000000004c250e R14: 00000000004d5930 R15: 0000000000000004
20:06:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000043050000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:16 executing program 3:
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup3(r0, r1, 0x80000)

20:06:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000060000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:16 executing program 3:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50}, 0x50)

[ 1985.073680][T25540] Bluetooth: hci0: command 0x1003 tx timeout
[ 1985.079774][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1987.143638][T25540] Bluetooth: hci0: command 0x1001 tx timeout
[ 1987.149748][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1989.223698][T25540] Bluetooth: hci0: command 0x1009 tx timeout
20:06:26 executing program 1 (fault-call:2 fault-nth:78):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:06:26 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xffefffff)

20:06:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000008060000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0b")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:26 executing program 3:

20:06:26 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000089060000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:26 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000001c0))
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]})
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 1993.541720][T30029] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
20:06:26 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 1993.582105][  T172] Bluetooth: hci0: Frame reassembly failed (-84)
20:06:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000006080000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:26 executing program 3:
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0x10)
r0 = syz_open_dev$usbmon(&(0x7f00000001c0)='/dev/usbmon#\x00', 0xcfbc, 0x4000)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000280)='SEG6\x00')
sendmsg$SEG6_CMD_SETHMAC(r0, 0x0, 0x0)
r1 = syz_open_dev$evdev(0x0, 0x0, 0x0)
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000040)=""/29)
ioctl$EVIOCGSND(r1, 0x8040451a, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
lstat(&(0x7f0000000240)='./bus\x00', 0x0)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
write$FUSE_POLL(0xffffffffffffffff, 0x0, 0xe8)
clock_gettime(0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000740)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[.\xf6\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+\x8d\xed\xa6\\\x1c\xc3\x97\x94\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4\xc4\x88C\xa2B\x8b\x81\v\xea\t\xf0\x8fw\a\f\x15\xe2\xd0q\xbb\r\x17`s\xec\x85>\xcf\xab9(\xf6.\x15\xcd2-\xf2\xc4\xd8\x00a\xd5\xd9\xb5Z\xd7\xb4\xac\x1d_+k\xd6\x8ag\xdceHE\xd5\x1c\x8a\xbd#\xcc\x82\xca\xc2@\xb6\xe1\x99p\x9b\xa3D\xd2\x91\x96\xef\x05\fv\x16\x14\xcc\xea\x9d\x11w\x1eu\xa1T\xd7d\x9a`=^h\x8c8\xcfi\x90\xd7\xd3H\xa1\xb4\xda\v\x17\x95\xf7\x19\x99\x99\x92\xc3\xc0\x8a\x18\xc7\"g\xd7B\x8f\x85\x18\xf3\x02\xa7\xb6\x83\x92\xefY\xef\x85\x92\x10E\x18\xbc\xacy\xd6\xa7Wh\xcd\xd0\xfa\xcc\xde\xeb\xdf\xad\xfd\xb0\xee\xfb\xc2(\x8cj\xd0uj{4\xb2\xe1p\x88u6\x9a;\xaa\x9f+J\x9e\xe3\xcc\xc7O\xad\x84\x8c;\x92~,\x15\xb2\x97\f~\xa0W\x16\x8b\a\x88\xaa\xe4C\xaf\x90\xdf\x7f\xe51\x00/n\xb5f\x1a\x8c+\xea<\xe3N@\x9e\xec\xbe{\x90x\xc6\x95!\xea\x11\xda\xe1I\x1d\xcbY\xe1\x01\xd2d\xae\xd1(>\xa3\xa9\x93\x16\xc6G\x94|\x00\x00\x00\x00\x00\x00\x00\x00\xd5\x16\xde\xa09\xe2\xaa\x90\x958\xd6\xe6', 0x2761, 0x0)
write$cgroup_pid(r2, &(0x7f0000000080), 0xfffffe38)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x660c, 0x0)
r3 = open(&(0x7f0000000280)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xc, 0x4002091, r3, 0x0)

20:06:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000d0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 1993.968003][   T26] audit: type=1804 audit(1564344387.059:207): pid=30050 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir513452746/syzkaller.tSjmsw/1770/bus" dev="sda1" ino=16899 res=1
[ 1994.035828][   T26] audit: type=1804 audit(1564344387.059:208): pid=30050 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir513452746/syzkaller.tSjmsw/1770/bus" dev="sda1" ino=16899 res=1
[ 1995.633638][T28974] Bluetooth: hci0: command 0x1003 tx timeout
[ 1995.639731][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1997.713636][T28974] Bluetooth: hci0: command 0x1001 tx timeout
[ 1997.719762][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 1999.783693][   T22] Bluetooth: hci0: command 0x1009 tx timeout
20:06:36 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)

20:06:36 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:36 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000800e0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:36 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x20800, 0x4)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000200))
gettid()
ioctl$TIOCLINUX4(0xffffffffffffffff, 0x541c, 0x0)
prctl$PR_SET_TSC(0x1a, 0x3)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000500)={'sit0\x00\x00\x00\x00\x00\x00\x00\xd6\x00'})
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, 0x0)

20:06:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0b")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:36 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xffffefff)

[ 2003.681706][T30062] fuse: Bad value for 'subtype'
20:06:36 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000280000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 2003.742620][T30067] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 2003.780835][T28699] Bluetooth: hci0: Frame reassembly failed (-84)
20:06:36 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 2003.840764][T30070] fuse: Bad value for 'subtype'
20:06:37 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000290000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:37 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x20800, 0x4)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000200))
gettid()
ioctl$TIOCLINUX4(0xffffffffffffffff, 0x541c, 0x0)
prctl$PR_SET_TSC(0x1a, 0x3)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000500)={'sit0\x00\x00\x00\x00\x00\x00\x00\xd6\x00'})
ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, 0x0)

20:06:37 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000002b0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 2004.015758][T30079] fuse: Bad value for 'subtype'
20:06:37 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

[ 2005.783634][   T22] Bluetooth: hci0: command 0x1003 tx timeout
[ 2005.789846][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 2007.863644][   T22] Bluetooth: hci0: command 0x1001 tx timeout
[ 2007.869736][T18861] Bluetooth: hci0: sending frame failed (-49)
[ 2009.943698][   T22] Bluetooth: hci0: command 0x1009 tx timeout
20:06:46 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x2, 0x4)

20:06:46 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000002c0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:46 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x0, 0x0)

20:06:46 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:46 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47b")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:46 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xffffff7f)

20:06:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000002f0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:47 executing program 3:
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)

20:06:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000080350000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:47 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x10, 0x4)

20:06:47 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:47 executing program 3:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r0, 0x0)
ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x5})

20:06:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000003c0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:47 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x2405, 0x4)

20:06:47 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/userio\x00', 0x8081, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000000)={0x1, 0x1}, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)

20:06:47 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47b")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:47 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4c00, 0x4)

20:06:47 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000400000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:47 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f0000000080)=0x1, 0x4)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)

20:06:47 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:47 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xffffff8c)

20:06:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000005430000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4c01, 0x4)

[ 2014.939933][T30142] debugfs: Directory 'vcpu0' with parent '30142-5' already present!
20:06:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000088470000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4c80, 0x4)

20:06:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000088480000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47b")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:48 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000600000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4c81, 0x4)

20:06:48 executing program 3:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x4000, 0x0)
syz_genetlink_get_family_id$team(0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)

20:06:48 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xfffffff4)

20:06:48 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000088640000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5406, 0x4)

20:06:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000e800000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:49 executing program 3:
timerfd_create(0x8, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r1 = socket$l2tp(0x18, 0x1, 0x1)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x8, @ipv4={[], [], @remote}}, 0x1c)
connect$l2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
sendmmsg(r1, &(0x7f0000005fc0), 0x800000000000059, 0xffffffff00000000)
clock_gettime(0x0, &(0x7f0000001a40))
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0xc100, 0x0)
connect$llc(r2, &(0x7f0000000100)={0x1a, 0x32b, 0x6, 0x401, 0x4, 0x1, @broadcast}, 0x10)

20:06:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5409, 0x4)

20:06:49 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf0")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000035800000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x540b, 0x4)

20:06:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:49 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r0, &(0x7f0000000480)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/4\x00')
write$UHID_INPUT2(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x1)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, 0x0)
lseek(r1, 0x20400000, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
write$P9_RXATTRWALK(r1, &(0x7f0000000080)={0xf}, 0x2000008f)
mremap(&(0x7f0000433000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007f000/0x1000)=nil)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)

20:06:49 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xfffffff5)

20:06:49 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000810000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x540c, 0x4)

20:06:49 executing program 3:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$caif_seqpacket(0x25, 0x5, 0x0)

20:06:49 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:50 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000047880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x540d, 0x4)

20:06:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf0")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:50 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000048880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:50 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:50 executing program 3:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0xc008240a, &(0x7f00000000c0)=']em0-\x00')

20:06:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x540e, 0x4)

20:06:50 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xfffffff6)

20:06:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x540f, 0x4)

20:06:50 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000064880000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5410, 0x4)

20:06:50 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:50 executing program 3:

20:06:51 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000006890000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf0")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:51 executing program 3:

20:06:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5412, 0x4)

20:06:51 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:51 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000f00000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:51 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xfffffffe)

20:06:51 executing program 3:

20:06:51 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000ff0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5413, 0x4)

20:06:51 executing program 3:

20:06:51 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000031b2100000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:51 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:52 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:06:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5414, 0x4)

20:06:52 executing program 3:

20:06:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000003b1d2100000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:52 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:52 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1a0ffffffff)

20:06:52 executing program 3:

20:06:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5415, 0x4)

20:06:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000a0008000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:52 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:06:52 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000000000412d1fbc000000030006000000f9180200ee00e0000054d81458186fe8b90002000100000000000000030200044a7b030005000000000002000000e0193f010000000000fca0d9"], 0x60}}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)

20:06:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5416, 0x4)

20:06:52 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:52 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000fffff000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:52 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:06:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000001000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5418, 0x4)

20:06:53 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1000000000000)

20:06:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000002000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x541a, 0x4)

20:06:53 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000000000412d1fbc000000030006000000f9180200ee00e0000054d81458186fe8b90002000100000000000000030200044a7b030005000000000002000000e0193f010000000000fca0d9"], 0x60}}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)

20:06:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x541c, 0x4)

20:06:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000003000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:53 executing program 3:
socket$kcm(0x2b, 0x80000000001, 0x0)
pipe(&(0x7f0000000440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
userfaultfd(0x0)
write(r1, &(0x7f0000000340), 0x41395527)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0xff}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

20:06:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:53 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000211b03000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:54 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x4000000000000)

20:06:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x541d, 0x4)

20:06:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000004000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000005000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x541e, 0x4)

20:06:54 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:54 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/userio\x00', 0x8081, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000000)={0x1, 0x1}, 0x2)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(r0, &(0x7f0000000140)={0x7ffffffff000, 0x10, 0xfa00, {&(0x7f00000000c0)}}, 0x2)

20:06:54 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000006000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x541f, 0x4)

20:06:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000008000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5420, 0x4)

20:06:55 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:55 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x10000000000000)

20:06:55 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x40000, 0x0)

[ 2022.497187][T30446] fuse: Bad value for 'subtype'
20:06:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5421, 0x4)

20:06:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000608000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2022.529732][T30448] fuse: Bad value for 'subtype'
20:06:55 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
prctl$PR_MPX_DISABLE_MANAGEMENT(0x34)

20:06:55 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:55 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_opts(r0, 0x0, 0x0, &(0x7f0000000240)="83cb2caba0ed75dbbd0c5b79255715a8eacdfc640560ce6b40aafc75d001d79f28f2978ee8ee682997026d9b88fc21d46db84df24404bebf476e45f84db52d8c10a140b0df07f20655b80898", 0x4c)
r1 = socket$inet(0x2, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, &(0x7f00000002c0), 0x4)
write$FUSE_GETXATTR(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f00000000c0)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x0, 0x0, @loopback}}, 0x24)
listen(r2, 0x9)
keyctl$assume_authority(0x10, 0x0)
syz_open_dev$media(0x0, 0xffffffffffff4fad, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fa, &(0x7f0000000140)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0)
syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000300)=@assoc_value={r3, 0x2}, 0x8)

20:06:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5422, 0x4)

20:06:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000000d000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:55 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000028000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:56 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x20000000000000)

20:06:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5423, 0x4)

20:06:56 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:56 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
request_key(&(0x7f0000000080)='asymmetric\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, r0)

20:06:56 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000029000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:56 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
inotify_rm_watch(r0, 0x0)

20:06:56 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000002b000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:56 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5424, 0x4)

20:06:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5425, 0x4)

20:06:57 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x8000a0ffffffff)

20:06:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000002c000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:57 executing program 3:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$VT_SETMODE(0xffffffffffffffff, 0x5602, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f0000000140)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3235004000000f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000001c0))
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]})
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:57 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5427, 0x4)

20:06:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000002f000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5428, 0x4)

20:06:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000211d3b000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:57 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:57 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000003c000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:58 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x100000000000000)

20:06:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5429, 0x4)

20:06:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:58 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f00000003c0)='y\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x400000000e)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)

20:06:58 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000040000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:58 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, &(0x7f00000003c0)='y\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x400000000e)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)

20:06:58 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000543000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5437, 0x4)

20:06:58 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:58 executing program 3:
dup(0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000000000412d1fbc000000030006000000f9180200ee00e0000054d81458186fe8b90002000100000000000000030200044a7b030005000000000002000000e0193f010000000000fca0d9"], 0x60}}, 0x0)
rt_sigpending(0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
lsetxattr$security_evm(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000340), 0x1, 0x0)

20:06:59 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x200000000000000)

20:06:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000060000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:59 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5441, 0x4)

20:06:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:59 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = creat(&(0x7f0000000640)='./file0\x00', 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
io_uring_enter(r1, 0x0, 0x0, 0x0, 0x0, 0x0)

20:06:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:59 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5450, 0x4)

20:06:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:06:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000e80000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:06:59 executing program 3:
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='mqueue\x00', 0x0, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x200020, 0x0)

20:06:59 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:06:59 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000003580000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:00 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x300000000000000)

20:07:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5451, 0x4)

20:07:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap$perf(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x80004008013, r0, 0x0)

20:07:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000081000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:00 executing program 3:
r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0x80045300, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x1f\xfc\xff\xff\xff\x00\xc0\xff\x00', 0x0, [0x0, 0x0, 0x1f00]})

20:07:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000ffffdd86000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5452, 0x4)

20:07:00 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:00 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000004788000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:01 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x400000000000000)

20:07:01 executing program 3:
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x20400040c2, 0x0)
pwritev(r0, &(0x7f0000000580)=[{&(0x7f00000003c0)="15", 0x1}], 0x1, 0x0)

20:07:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5456, 0x4)

20:07:01 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:01 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000004888000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:01 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000006488000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 2028.315167][   T26] audit: type=1800 audit(1564344421.409:209): pid=30670 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=17077 res=0
20:07:01 executing program 3:
syz_open_dev$usbmon(&(0x7f00000001c0)='/dev/usbmon#\x00', 0xcfbc, 0x4000)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000280)='SEG6\x00')
r0 = syz_open_dev$evdev(0x0, 0x0, 0x0)
ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000040)=""/29)
ioctl$EVIOCGSND(r0, 0x8040451a, 0x0)
r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, &(0x7f0000000640)={0x0, {}, {0x2, 0x4e20, @loopback}, {0x2, 0x4e21, @multicast2}, 0x15, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)='netdevsim0\x00', 0xffffffff})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000440)={{{@in6=@remote, @in6=@initdev}}, {{@in6=@empty}, 0x0, @in6=@dev}}, &(0x7f0000000000)=0xe8)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
lstat(&(0x7f0000000240)='./bus\x00', 0x0)
getgid()
creat(&(0x7f0000000380)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000740)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[.\xf6\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+\x8d\xed\xa6\\\x1c\xc3\x97\x94\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4\xc4\x88C\xa2B\x8b\x81\v\xea\t\xf0\x8fw\a\f\x15\xe2\xd0q\xbb\r\x17`s\xec\x85>\xcf\xab9(\xf6.\x15\xcd2-\xf2\xc4\xd8\x00a\xd5\xd9\xb5Z\xd7\xb4\xac\x1d_+k\xd6\x8ag\xdceHE\xd5\x1c\x8a\xbd#\xcc\x82\xca\xc2@\xb6\xe1\x99p\x9b\xa3D\xd2\x91\x96\xef\x05\fv\x16\x14\xcc\xea\x9d\x11w\x1eu\xa1T\xd7d\x9a`=^h\x8c8\xcfi\x90\xd7\xd3H\xa1\xb4\xda\v\x17\x95\xf7\x19\x99\x99\x92\xc3\xc0\x8a\x18\xc7\"g\xd7B\x8f\x85\x18\xf3\x02\xa7\xb6\x83\x92\xefY\xef\x85\x92\x10E\x18\xbc\xacy\xd6\xa7Wh\xcd\xd0\xfa\xcc\xde\xeb\xdf\xad\xfd\xb0\xee\xfb\xc2(\x8cj\xd0uj{4\xb2\xe1p\x88u6\x9a;\xaa\x9f+J\x9e\xe3\xcc\xc7O\xad\x84\x8c;\x92~,\x15\xb2\x97\f~\xa0W\x16\x8b\a\x88\xaa\xe4C\xaf\x90\xdf\x7f\xe51\x00/n\xb5f\x1a\x8c+\xea<\xe3N@\x9e\xec\xbe{\x90x\xc6\x95!\xea\x11\xda\xe1I\x1d\xcbY\xe1\x01\xd2d\xae\xd1(>\xa3\xa9\x93\x16\xc6G\x94|\x00\x00\x00\x00\x00\x00\x00\x00\xd5\x16\xde\xa09\xe2\xaa\x90\x958\xd6\xe6', 0x2761, 0x0)
write$cgroup_pid(r2, &(0x7f0000000080), 0xfffffe38)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x660c, 0x0)
r3 = open(&(0x7f0000000280)='./bus\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xc, 0x4002091, r3, 0x0)

20:07:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x545d, 0x4)

20:07:01 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:01 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000ffffa888000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 2028.638907][   T26] audit: type=1804 audit(1564344421.729:210): pid=30695 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir513452746/syzkaller.tSjmsw/1807/bus" dev="sda1" ino=17075 res=1
[ 2028.700470][   T26] audit: type=1804 audit(1564344421.769:211): pid=30695 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir513452746/syzkaller.tSjmsw/1807/bus" dev="sda1" ino=17075 res=1
20:07:02 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x500000000000000)

20:07:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x5460, 0x4)

20:07:02 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000ffffca88000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:02 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:02 executing program 3:
r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc0a85320, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x1f\xfc\xff\xff\xff\x00\xc0\xff\x00', 0x0, [0x0, 0x0, 0x1f00]})

20:07:02 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000689000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x6364, 0x4)

20:07:02 executing program 3:
open(&(0x7f0000000040)='./file0\x00', 0x2fc, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
flock(r0, 0xffffffffffffffff)

20:07:02 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:02 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000ffffff89000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:03 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x600000000000000)

20:07:03 executing program 3:
r0 = inotify_init1(0x0)
ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x541b, 0x70e000)

20:07:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x890c, 0x4)

20:07:03 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000008000a0000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:03 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:03 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000001a0000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x8912, 0x4)

20:07:03 executing program 3:
r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x1f\xfc\xff\xff\xff\x00\xc0\xff\x00', 0x0, [0x0, 0x0, 0x1f00]})

20:07:03 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:03 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000ff000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:04 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x700000000000000)

20:07:04 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x8933, 0x4)

20:07:04 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000000c0))

20:07:04 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000088a8ffff000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:04 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:04 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000088caffff000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:04 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xab08, 0x4)

20:07:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:04 executing program 3:
r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0x40505330, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x1f\xfc\xff\xff\xff\x00\xc0\xff\x00', 0x0, [0x0, 0x0, 0x1f00]})

20:07:04 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:04 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000086ddffff000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:05 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x800000000000000)

20:07:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xae01, 0x4)

20:07:05 executing program 3:
r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5334, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x1f\xfc\xff\xff\xff\x00\xc0\xff\x00', 0x0, [0x0, 0x0, 0x1f00]})

20:07:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000f0ffff000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0x3)
ioctl$TCXONC(r1, 0x540a, 0x0)

20:07:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000089ffffff000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xae41, 0x4)

20:07:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:05 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:05 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000020000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:06 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc00000000000000)

20:07:06 executing program 3:
r0 = syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc0305302, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x1f\xfc\xff\xff\xff\x00\xc0\xff\x00', 0x0, [0x0, 0x0, 0x1f00]})

20:07:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xae60, 0x4)

20:07:06 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000030000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:06 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xae80, 0x4)

20:07:06 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000040000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:06 executing program 3:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$unlink(0x9, r0, r0)

20:07:06 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000050000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:06 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:06 executing program 3:
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video36\x00', 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000002c0)={0x0, 0x0, 0x0, {0x8, @raw_data="37eff2653430a431c64fbfa30c2a38dac2bfec391e57a058488681818c09f696cb927986149d147e5bdb188052955e73dbf46d0c32aeefcf9e6d9c6dfa4d837c7d89baad901a0c27dadb0b9776316a2c36b33646115376e3602346de9a65e5d812ecf6eeb88f247ed31abc084429e7d6a0f8935c808ac4a805487b5567ebe45005271260780a78abcf70deaff66bccb36c3d9fb3c831a9e576ad07f3ce722003c54f90a4dfba0e81095ad2f4c1089003cdd592bb47b86b4224fee36fbe35865d14833c4094de11b3"}})

20:07:07 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xd26000000000000)

20:07:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xae9a, 0x4)

20:07:07 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000060000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:07 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x1f6, &(0x7f00000000c0)={&(0x7f0000000000)={0x14, 0x2f, 0xffffffffffffffff, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)

20:07:07 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:07 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000080000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:07 executing program 3:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$unlink(0x4, r0, r0)

20:07:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40044591, 0x4)

20:07:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:07 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:07 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5414, &(0x7f0000fd0ffc))

20:07:08 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1000000000000000)

20:07:08 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40045431, 0x4)

20:07:08 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000d0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e8000000"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:08 executing program 3:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/uinput\x00', 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x4})
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5335, 0x0)

20:07:08 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:08 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000280000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

[ 2035.228968][T30915] input: syz1 as /devices/virtual/input/input19
20:07:08 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40045436, 0x4)

[ 2035.338471][T30917] input: syz1 as /devices/virtual/input/input20
20:07:08 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e8000000"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:08 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000290000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:08 executing program 3:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$unlink(0x16, r0, r0)

20:07:09 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1200000000000000)

20:07:09 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400454ca, 0x4)

20:07:09 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000002b0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:07:09 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e8000000"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

20:07:09 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000002c0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:09 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40045584, 0x4)

20:07:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20:07:09 executing program 3:
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video36\x00', 0x2, 0x0)
ioctl$VIDIOC_G_CTRL(r0, 0xc008561b, &(0x7f0000000080)={0xfffffffffffffff8})

20:07:09 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:09 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000002f0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:10 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1400000000000000)

20:07:10 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='\x00\x00\x00\x00\x00egy\xc5\x8e\xcb\x1c\xf8\x8f\xca;\xa3?\xad\xae\x0f\xb5\x97ao3\xab\xcdY\x9a\xe3\xe5\xe1\xf4\x87\xac\xad\x80\xa3P\x8c\xea\x9c\xc7\x00\xeb\xf4X#\xe34\x80O]\x87\xdd\x894\xdal;w\xf8\xf8\v?v\xf0\xb8\xda=|\xa4\xba\xbbiq!\xd8g\xb7I\x12\x80')
openat$cgroup_ro(r0, &(0x7f0000000480)='mem\x00\x01y7SwaS.\x06ur\x89\xc9B\xab\xe3\xfarent\x00\xaa\x1a\xfd\xae\v\xbf\xd8d\xbb\xaf9Q\xde\xfb\x1fY\xfb\x8do\xd1\x16\xce(\x82\xf1\xbf{5Z\x13\x15\x14\xd7\xb8\xce\xf20\x1e\xc0\xc2\xed<?\xc7\xb6s\xca\xff\x96\x9a}+Q\xd2\xd9{\xca\x86Vw\xde\xb3\x86\x91\xfd\xb5p\xdb$ j\xfb\xf8\xedw\xf4\x161a.\xc7\n\xe0X?\xc4\xf4BW\x01\x1f-\xcc\x01\xd0W\xc8\xf09\fV\x1b|A)\xb8\xda#NP\x1c\x9d\x93#V\x9f\"Kgn{\x96\xaa\xbd0\x8ef\x9d\xb88CP(}w\x8c\xbb\xdc%\ax \x10\xd1\n(\xa8=\xf54\xa9\xcb\xe9\x97T\xcf\xcf\x87t\x81\xfa\xaa\xf30\x8b\xb7\xea\xfc^\xb6\x95\x87E\x11\x89\x7f\xa0m\xd3&\tHvtD\x83\\6\xe0t\xa8\xdd\xa3\xa4\xd2\xb9\xb9{+\x1d\xa3\xd5Z;]*2\x99Os\bVW5\xe6\xe7\xdb\x95\x8d\xffY\xe0s\x7f\x9eK,\xae\xaeX\x15M@\xdd\x04`\xea\x03\xf7\x7f:\xc8HU3\xabX}\xa7S8s\xdb_\xc5\x9c\xc9Rw\x90G\xf3J\x9c\x8f\x91\xa1\xd6\x055?m\xed\x94\x9c\xb7(\x0f\xd3\xbc\xba\xc6T\xdd\x15\xf7+*Z3\x8e_Z\xa3k\xe4R\x1e\xc8\vYV\x8a\x8d\xad\x8cI\x88\fM\x19JX\x1f\xffe#|\x06\xfa86\xcb\x93\xea\xab\xcc\x864fC*I\x7fM\t7\x94}\x06\x1d\xc3\x9co-\xdd\xa6\x1b\xa8_\x1fBl\xc4:\xae\xfe4\x9e\xa9T\x91\xd9w\x05\xf8{\xd6@', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/4\x00')
lseek(r1, 0x20400000, 0x0)
write$P9_RXATTRWALK(r1, &(0x7f0000000080)={0xf}, 0x2000008f)
mremap(&(0x7f0000028000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f000007f000/0x1000)=nil)

20:07:10 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455cb, 0x4)

20:07:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000003c0000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20:07:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x1}], 0x1}, 0x0)

20:07:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000600000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:10 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40045612, 0x4)

20:07:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x138, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="e80000002b"])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

20:07:10 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="02", 0x1}], 0x1}, 0x0)

20:07:10 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
dup3(r0, r1, 0x0)
poll(&(0x7f0000000080)=[{r0}], 0x1, 0x0)

20:07:10 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000f00000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:11 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1926000000000000)

20:07:11 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40049409, 0x4)

20:07:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000a00100000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:11 executing program 3:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r0 = gettid()
mknod(&(0x7f00000001c0)='./file0\x00', 0x800141f, 0x0)
open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
tkill(r0, 0x13)

20:07:11 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00')
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x34, r1, 0x1, 0x0, 0x0, {{}, 0x0, 0xf, 0x0, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'tunl0\x00'}}}}}, 0x34}}, 0x0)

20:07:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="03", 0x1}], 0x1}, 0x0)

20:07:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000300000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:11 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

20:07:11 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4008ae90, 0x4)

20:07:11 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000500000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:11 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="04", 0x1}], 0x1}, 0x0)

20:07:11 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40206435, 0x4)

20:07:12 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x1a26000000000000)

20:07:12 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000430500000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:12 executing program 0:
getpid()
write$P9_RRENAME(0xffffffffffffffff, &(0x7f0000000200)={0x7}, 0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005)
openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
pipe(&(0x7f0000001200))
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000001240)='/dev/vga_arbiter\x00', 0x30001, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x3c081, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getpgrp(0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000540)="0d000000000000001ec53a2ae3928a31eb4a2ee6b4464dc20fbe43fe306dae5456de96e8176b10e4fc8ee97954b33dda0485fd72ebba9e1f4f9d3335da068c0d4dbfa517611630445f0cbd7ff567274771d7a86b5785028faa1a814efd6383b218c1d41983ea72d3d24c102ecec8047642a40e52cfbb8e80460e4065a76b69bf4252aa82c5bbc36d736924579dad3d6204", 0x91, 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1)
clone(0x4007fc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

20:07:12 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4020940d, 0x4)

20:07:12 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="05", 0x1}], 0x1}, 0x0)

20:07:12 executing program 3:
modify_ldt$write2(0x11, &(0x7f00000000c0)={0xaf4}, 0x10)
modify_ldt$write2(0x11, &(0x7f0000000100), 0x10)

20:07:12 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000600000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000300)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0xfffffffffffffffa})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:07:12 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4020ae46, 0x4)

20:07:12 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\a', 0x1}], 0x1}, 0x0)

20:07:12 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000080600000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:12 executing program 0:
getpid()
write$P9_RRENAME(0xffffffffffffffff, &(0x7f0000000200)={0x7}, 0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005)
openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
pipe(&(0x7f0000001200))
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000001240)='/dev/vga_arbiter\x00', 0x30001, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x3c081, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getpgrp(0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000540)="0d000000000000001ec53a2ae3928a31eb4a2ee6b4464dc20fbe43fe306dae5456de96e8176b10e4fc8ee97954b33dda0485fd72ebba9e1f4f9d3335da068c0d4dbfa517611630445f0cbd7ff567274771d7a86b5785028faa1a814efd6383b218c1d41983ea72d3d24c102ecec8047642a40e52cfbb8e80460e4065a76b69bf4252aa82c5bbc36d736924579dad3d6204", 0x91, 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1)
clone(0x4007fc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

[ 2039.234317][T31075] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
20:07:13 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x2f00000000000000)

20:07:13 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4040534e, 0x4)

20:07:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000300)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0xfffffffffffffffa, 0x0, 0x0, 0x100a0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

20:07:13 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000890600000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:13 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\t', 0x1}], 0x1}, 0x0)

20:07:13 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r0, &(0x7f0000606ff0)={0x2, 0x0, @loopback}, 0x10)

20:07:13 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000060800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:13 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x40505330, 0x4)

20:07:13 executing program 0:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x50000}]})
getpeername(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, <r0=>0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x0)
ioctl$TIOCPKT(r0, 0x5420, 0x0)

[ 2040.055885][T31107] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
20:07:13 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\n', 0x1}], 0x1}, 0x0)

20:07:13 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00')
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x34, r1, 0x1, 0x0, 0x0, {{}, 0x0, 0x2, 0x0, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'tunl0\x00'}}}}}, 0x34}}, 0x0)

20:07:13 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000d00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:14 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3e00000000000000)

20:07:14 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4090ae82, 0x4)

20:07:14 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000800e00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:14 executing program 3:
getpid()
write$P9_RRENAME(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005)
openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid\x00', 0x802, 0x0)
pipe(&(0x7f0000001200))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001280)='/dev/sequencer2\x00', 0x3c081, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpgrp(0x0)
setpriority(0x0, r0, 0xffff)
sendto$inet(0xffffffffffffffff, &(0x7f0000000540)="0d000000000000001ec53a2ae3928a31eb4a2ee6b4464dc20fbe43fe306dae5456de96e8176b10e4fc8ee97954b33dda0485fd72ebba9e1f4f9d3335da068c0d4dbfa517611630445f0cbd7ff567274771d7a86b5785028faa1a814efd6383b218c1d41983ea72d3d24c102ecec8047642a40e52cfbb8e80460e4065a76b69bf4252aa82c5bbc36d736924579dad3d620447bf159e18a0f6eba5", 0x9a, 0x40000, 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1)
clone(0x4007fc, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000001040)=[&(0x7f00000008c0)='TIPC\x00', &(0x7f0000000900)='%--\x00', &(0x7f0000000940)='system_u:object_r:pam_var_run_t:s0\x00', 0x0, &(0x7f0000000a00)='security.capability\x00', &(0x7f0000000a40)='security.capability\x00', &(0x7f0000000f80)='TIPC\x00', &(0x7f0000000fc0)=']\x00'], 0x0)

20:07:14 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)
pipe(&(0x7f0000000440))
pselect6(0x40, &(0x7f00000000c0)={0x3}, 0x0, &(0x7f0000000140)={0xff}, 0x0, 0x0)

20:07:14 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\v', 0x1}], 0x1}, 0x0)

20:07:14 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:14 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x4138ae84, 0x4)

20:07:14 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="10", 0x1}], 0x1}, 0x0)

[ 2041.179260][   T26] audit: type=1800 audit(1564344434.269:212): pid=31150 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=17262 res=0
20:07:14 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
close(r0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
ppoll(&(0x7f00000000c0)=[{r0}], 0x1, &(0x7f0000000140)={0x0, 0x1c9c380}, 0x0, 0x0)

20:07:14 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002900000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:14 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80044945, 0x4)

20:07:15 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x3f00000000000000)

20:07:15 executing program 3:
socketpair$unix(0x1, 0x0, 0x0, 0x0)
clone(0xffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$set_reqkey_keyring(0xe, 0x4)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz'}, &(0x7f00000000c0)='\xd1?\xf3\xd7v', 0x0)

20:07:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002b00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:15 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80045301, 0x4)

20:07:15 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\"', 0x1}], 0x1}, 0x0)

20:07:15 executing program 0:
getpgrp(0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x1, 0x1f, 0x0, 0x0, 0xbad}, 0x10)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x400, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000200), 0x10, &(0x7f00000002c0)={0x0}}, 0x0)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
r2 = gettid()
semget(0x2, 0x4, 0x201)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
syz_genetlink_get_family_id$fou(&(0x7f0000000140)='fou\x00')
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
tkill(r2, 0x16)
openat$dsp(0xffffffffffffff9c, 0x0, 0x1, 0x0)

20:07:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002c00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:15 executing program 3:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0xd613284bac9f2f96)
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa)
fchdir(r0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x1fe, 0x0)
write$binfmt_aout(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="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"/407], 0x197)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, 0x0)
creat(&(0x7f0000000180)='./file0\x00', 0x80)

20:07:15 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80045430, 0x4)

20:07:15 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='4', 0x1}], 0x1}, 0x0)

20:07:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000002f00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:15 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80045432, 0x4)

20:07:15 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='<', 0x1}], 0x1}, 0x0)

20:07:15 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000803500000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:15 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80045438, 0x4)

20:07:15 executing program 0:
getpgrp(0x0)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x1, 0x1f, 0x0, 0x0, 0xbad}, 0x10)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x400, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000200), 0x10, &(0x7f00000002c0)={0x0}}, 0x0)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
r2 = gettid()
semget(0x2, 0x4, 0x201)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
syz_genetlink_get_family_id$fou(&(0x7f0000000140)='fou\x00')
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
tkill(r2, 0x16)
openat$dsp(0xffffffffffffff9c, 0x0, 0x1, 0x0)

20:07:15 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x4000000000000000)

20:07:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000003c00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:16 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80045439, 0x4)

[ 2043.037798][   T26] audit: type=1804 audit(1564344436.129:213): pid=31212 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir513452746/syzkaller.tSjmsw/1835/file0/file0" dev="sda1" ino=17280 res=1
20:07:16 executing program 3:
getpgrp(0x0)
getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x1, 0x1f, 0x0, 0x0, 0xbad}, 0x10)
r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x400, 0x0)
ioctl$NBD_SET_BLKSIZE(r1, 0xab01, 0x100000000)
sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000200), 0x10, &(0x7f00000002c0)={0x0}}, 0x0)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
r2 = gettid()
semctl$IPC_RMID(0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000140)='fou\x00')
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000240)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, r3, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @empty}, @FOU_ATTR_PEER_V4={0x8, 0x8, @empty}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e21}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000004}, 0x4005)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, 0x0)
tkill(r2, 0x16)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x1, 0x0)

20:07:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="89", 0x1}], 0x1}, 0x0)

20:07:16 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80045440, 0x4)

20:07:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000004000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000054300000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:16 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x800454d2, 0x4)

20:07:16 executing program 0:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]})
r0 = openat$urandom(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, 0x0, 0x0)

20:07:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='e', 0x1}], 0x1}, 0x0)

20:07:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000884700000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:16 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0x8cffffff00000000)

20:07:16 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x800455c9, 0x4)

20:07:16 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000884800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:16 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070")
unshare(0x40000000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

20:07:16 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="ff", 0x1}], 0x1}, 0x0)

20:07:16 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00'})
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
ppoll(0x0, 0x334, &(0x7f00000003c0)={0x77359400}, &(0x7f0000000300), 0x2bb)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
writev(r1, &(0x7f0000000240)=[{&(0x7f0000000140)="a3", 0x1}], 0x1)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000785000), 0x34a)
writev(r1, &(0x7f000063e000)=[{&(0x7f00000000c0)="da", 0x1}], 0x1)
close(r1)
sendmmsg$alg(r2, &(0x7f0000236fc8)=[{0x8000000, 0x0, &(0x7f00000fff80)}], 0x1, 0x0)

[ 2043.852453][T31284] IPVS: ftp: loaded support on port[0] = 21
20:07:17 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000006000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:17 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x800455ca, 0x4)

20:07:17 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="88", 0x1}], 0x1}, 0x0)

20:07:17 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000886400000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:17 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x800455cc, 0x4)

20:07:17 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)="fe", 0x1}], 0x1}, 0x0)

[ 2044.229393][T31291] IPVS: ftp: loaded support on port[0] = 21
20:07:17 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xc000000000000000)

20:07:17 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000e8000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:17 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00'})
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000001c0))
ppoll(0x0, 0x334, &(0x7f00000003c0)={0x77359400}, &(0x7f0000000300), 0x2bb)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
writev(r1, &(0x7f0000000240)=[{&(0x7f0000000140)="a3", 0x1}], 0x1)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000785000), 0x34a)
writev(r1, &(0x7f000063e000)=[{&(0x7f00000000c0)="da", 0x1}], 0x1)
close(r1)
sendmmsg$alg(r2, &(0x7f0000236fc8)=[{0x8000000, 0x0, &(0x7f00000fff80)}], 0x1, 0x0)

20:07:17 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x80086301, 0x4)

20:07:17 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
ppoll(0x0, 0x0, &(0x7f00000003c0)={0x77359400}, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000140)="a3", 0x1}], 0x1)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, 0x0)
write(r2, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000785000), 0x34a)
writev(r2, &(0x7f000063e000)=[{&(0x7f00000000c0)="da", 0x1}], 0x1)
sendmmsg$alg(r3, &(0x7f0000236fc8)=[{0x8000000, 0x0, &(0x7f00000fff80), 0xc, &(0x7f00001e1e78)}], 0x4924924924926c8, 0xf0ff7f)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x1)
setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)

20:07:17 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x2}], 0x1}, 0x0)

20:07:17 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x8138ae83, 0x4)

20:07:18 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000358000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:18 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00', 0x1801})
socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
ppoll(0x0, 0x334, &(0x7f00000003c0)={0x77359400}, &(0x7f0000000300)={0x8000}, 0x2bb)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000140)="a3", 0x1}], 0x1)
write(r2, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000785000), 0x34a)
writev(r2, &(0x7f000063e000)=[{&(0x7f00000000c0)="da", 0x1}], 0x1)
close(r2)
sendmmsg$alg(r3, &(0x7f0000236fc8)=[{0x8000000, 0x0, &(0x7f00000fff80), 0xc, &(0x7f00001e1e78)}], 0x4924924924926c8, 0xf0ff7f)
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000001c0))

20:07:18 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x3}], 0x1}, 0x0)

20:07:18 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000008100000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:18 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0045878, 0x4)

20:07:18 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xf4ffffff00000000)

20:07:18 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x4}], 0x1}, 0x0)

20:07:18 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000478800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:18 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0045878, 0x4)

20:07:20 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
ppoll(0x0, 0x0, &(0x7f00000003c0)={0x77359400}, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000140)="a3", 0x1}], 0x1)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, 0x0)
write(r2, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000785000), 0x34a)
writev(r2, &(0x7f000063e000)=[{&(0x7f00000000c0)="da", 0x1}], 0x1)
sendmmsg$alg(r3, &(0x7f0000236fc8)=[{0x8000000, 0x0, &(0x7f00000fff80), 0xc, &(0x7f00001e1e78)}], 0x4924924924926c8, 0xf0ff7f)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x1)
setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)

20:07:20 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000488800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:20 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc008561c, 0x4)

20:07:20 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x7}], 0x1}, 0x0)

20:07:21 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00', 0x1801})
socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
ppoll(0x0, 0x334, &(0x7f00000003c0)={0x77359400}, &(0x7f0000000300)={0x8000}, 0x2bb)
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r2, &(0x7f0000000240)=[{&(0x7f0000000140)="a3", 0x1}], 0x1)
write(r2, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000785000), 0x34a)
writev(r2, &(0x7f000063e000)=[{&(0x7f00000000c0)="da", 0x1}], 0x1)
close(r2)
sendmmsg$alg(r3, &(0x7f0000236fc8)=[{0x8000000, 0x0, &(0x7f00000fff80), 0xc, &(0x7f00001e1e78)}], 0x4924924924926c8, 0xf0ff7f)
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000001c0))

20:07:21 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xf5ffffff00000000)

20:07:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000648800000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:21 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc008ae05, 0x4)

20:07:21 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x8}], 0x1}, 0x0)

20:07:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000068900000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:21 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0106401, 0x4)

20:07:21 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000f000000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:24 executing program 0:
timerfd_create(0x0, 0x0)
pipe(&(0x7f0000000440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x41395527)
syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x1, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000080)={0xfc}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

20:07:24 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x9}], 0x1}, 0x0)

20:07:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000ff00000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:24 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc018620c, 0x4)

20:07:24 executing program 3:

20:07:24 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xf6ffffff00000000)

20:07:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000031b21000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:24 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0189436, 0x4)

20:07:24 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0xa}], 0x1}, 0x0)

20:07:24 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000003b1d21000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:24 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0205648, 0x4)

20:07:24 executing program 3:

20:07:25 executing program 0:

20:07:25 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0xb}], 0x1}, 0x0)

20:07:25 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000a00080000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:25 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc020660b, 0x4)

20:07:25 executing program 3:

20:07:25 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xfeffffff00000000)

20:07:25 executing program 3:

20:07:25 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000fffff0000000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:25 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc028660f, 0x4)

20:07:25 executing program 0:

20:07:25 executing program 3:

20:07:25 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0xc}], 0x1}, 0x0)

20:07:25 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000010000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:25 executing program 0:

20:07:25 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0585604, 0x4)

20:07:25 executing program 3:

20:07:25 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000020000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:26 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xff00000000000000)

20:07:26 executing program 0:

20:07:26 executing program 3:

20:07:26 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0xd}], 0x1}, 0x0)

20:07:26 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0a85322, 0x4)

20:07:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000030000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:26 executing program 0:

20:07:26 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b40900056300000000000000211b030000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:26 executing program 3:

20:07:26 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0xc0bc5310, 0x4)

20:07:26 executing program 0:

20:07:26 executing program 3:

20:07:27 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xff0f000000000000)

20:07:27 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x10}], 0x1}, 0x0)

20:07:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000040000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:27 executing program 0:

20:07:27 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)

20:07:27 executing program 3:

20:07:27 executing program 3:

20:07:27 executing program 0:

20:07:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000050000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:27 executing program 3:

20:07:27 executing program 0:

20:07:27 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000060000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:28 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xffefffff00000000)

20:07:28 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x11}], 0x1}, 0x0)

20:07:28 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x3)

20:07:28 executing program 3:

20:07:28 executing program 0:

20:07:28 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000080000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:28 executing program 3:

20:07:28 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000006080000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:28 executing program 0:

20:07:28 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x5)

20:07:28 executing program 3:

20:07:28 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x6)

20:07:29 executing program 2:
unshare(0x20020000)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
poll(0x0, 0x0, 0x400007f)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000080)='./file0\x00', 0xffffff7f00000000)

20:07:29 executing program 0:

20:07:29 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x41}], 0x1}, 0x0)

20:07:29 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b4090005630000000000000000000d0000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:29 executing program 3:

20:07:29 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x7)

20:07:29 executing program 0:

20:07:29 executing program 3:

20:07:29 executing program 5:
syz_emit_ethernet(0x211d49, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaafe020000000086dd60b409000563000000000000000000280000ff000000000000000000000000018800907800092900034107fe945310f813fb914840bfba49640d3c6560b680fa0000000000000000000000000000ffffffffffff00000000000000000000ff04000000bbf9a5ee18f629b76cdc9f8eef662b587276b6ff246e943083"], 0x0)

20:07:29 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x8)

20:07:29 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x3, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000af5000)={0x1, &(0x7f0000000040)=[{0x200006, 0x0, 0x0, 0xa1}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10)
read(r0, &(0x7f0000001100)=""/4096, 0x1000)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x200, 0x4)
sendto$inet(r0, &(0x7f0000001040)="c3401c344654f3c7d9fe1ba48c8e390002000000000000d65cffffff38e9dd18c58f6bd779650fc30f09000000ecf323c9b87010227a60d177faf6502ceab47e58034347b289546c65a5eb278de72b1989f64cc99412e36880d20c34d91051b22f6c8acc9d082b7bcdec844f667da0867d0c00"/130, 0x82, 0x1, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f00000021c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "", [[]]}, 0x158)
sendmsg(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000002100)='\b', 0x82}], 0x1}, 0x0)

20:07:29 executing program 0:

[ 2056.116841][T31573] debugfs: Directory 'hci0' with parent 'bluetooth' already present!
[ 2056.137234][ T1518] ------------[ cut here ]------------
[ 2056.143190][ T1518] WARNING: CPU: 1 PID: 1518 at drivers/tty/tty_ioctl.c:319 tty_set_termios.cold+0x11/0x23
[ 2056.153345][ T1518] Kernel panic - not syncing: panic_on_warn set ...
[ 2056.159947][ T1518] CPU: 1 PID: 1518 Comm: kworker/u5:0 Not tainted 5.3.0-rc1-next-20190726 #53
[ 2056.168790][ T1518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2056.178961][ T1518] Workqueue: hci0 hci_power_on
[ 2056.183805][ T1518] Call Trace:
[ 2056.187097][ T1518]  dump_stack+0x172/0x1f0
[ 2056.191432][ T1518]  ? tty_unthrottle_safe+0x90/0x17d
[ 2056.196635][ T1518]  panic+0x2dc/0x755
[ 2056.200531][ T1518]  ? add_taint.cold+0x16/0x16
[ 2056.205211][ T1518]  ? __kasan_check_write+0x14/0x20
[ 2056.210319][ T1518]  ? __warn.cold+0x5/0x4c
[ 2056.214644][ T1518]  ? __warn+0xe7/0x1e0
[ 2056.218713][ T1518]  ? tty_set_termios.cold+0x11/0x23
[ 2056.223913][ T1518]  __warn.cold+0x20/0x4c
[ 2056.228160][ T1518]  ? tty_set_termios.cold+0x11/0x23
[ 2056.233360][ T1518]  report_bug+0x263/0x2b0
[ 2056.238319][ T1518]  do_error_trap+0x11b/0x200
[ 2056.242909][ T1518]  do_invalid_op+0x37/0x50
[ 2056.247326][ T1518]  ? tty_set_termios.cold+0x11/0x23
[ 2056.252526][ T1518]  invalid_op+0x23/0x30
[ 2056.256678][ T1518] RIP: 0010:tty_set_termios.cold+0x11/0x23
[ 2056.262481][ T1518] Code: ef e8 06 cd 2b fe e9 e8 fe ff ff e8 fc cc 2b fe eb ae e8 f5 cc 2b fe eb 84 e8 de 5c f1 fd 48 c7 c7 c0 e9 d0 87 e8 d6 eb da fd <0f> 0b e9 d5 d5 ff ff 90 90 90 90 90 90 90 90 90 90 90 55 48 89 e5
[ 2056.282076][ T1518] RSP: 0018:ffff8880a67d7978 EFLAGS: 00010282
[ 2056.288137][ T1518] RAX: 0000000000000024 RBX: ffff8880a67d7a38 RCX: 0000000000000000
[ 2056.296101][ T1518] RDX: 0000000000000000 RSI: ffffffff815c6f46 RDI: ffffed1014cfaf21
[ 2056.304069][ T1518] RBP: ffff8880a67d7a60 R08: 0000000000000024 R09: ffffed1015d24101
[ 2056.312038][ T1518] R10: ffffed1015d24100 R11: ffff8880ae920807 R12: ffff8880a67d7aa0
[ 2056.320268][ T1518] R13: 0000000000010004 R14: 1ffff11014cfaf4e R15: ffff8880918c5400
[ 2056.328262][ T1518]  ? vprintk_func+0x86/0x189
[ 2056.332855][ T1518]  ? tty_set_termios.cold+0x11/0x23
[ 2056.338049][ T1518]  ? hci_dev_do_open+0xa7/0x1940
[ 2056.342987][ T1518]  ? tty_wait_until_sent+0x580/0x580
[ 2056.348293][ T1518]  ? __mutex_lock+0x45d/0x13c0
[ 2056.353054][ T1518]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 2056.359288][ T1518]  ? tty_termios_encode_baud_rate+0x3ca/0x4e0
[ 2056.365359][ T1518]  hci_uart_set_baudrate+0x157/0x1c0
[ 2056.370759][ T1518]  ? hci_uart_set_speeds+0x90/0x90
[ 2056.375966][ T1518]  hci_uart_setup+0xa2/0x4a0
[ 2056.380559][ T1518]  ? hci_uart_set_baudrate+0x1c0/0x1c0
[ 2056.386018][ T1518]  hci_dev_do_open+0x3e3/0x1940
[ 2056.390865][ T1518]  ? debug_smp_processor_id+0x3c/0x214
[ 2056.396318][ T1518]  ? hci_rx_work+0xae0/0xae0
[ 2056.400909][ T1518]  ? perf_trace_lock_acquire+0xf5/0x530
[ 2056.406540][ T1518]  ? trace_hardirqs_off+0x62/0x240
[ 2056.411652][ T1518]  ? __kasan_check_read+0x11/0x20
[ 2056.416686][ T1518]  ? mark_held_locks+0xf0/0xf0
[ 2056.421458][ T1518]  hci_power_on+0x12d/0x680
[ 2056.425960][ T1518]  ? hci_error_reset+0xf0/0xf0
[ 2056.430721][ T1518]  ? lock_acquire+0x190/0x410
[ 2056.435415][ T1518]  ? process_one_work+0x8c1/0x1740
[ 2056.440524][ T1518]  ? trace_hardirqs_on+0x67/0x240
[ 2056.445555][ T1518]  process_one_work+0x9af/0x1740
[ 2056.450498][ T1518]  ? pwq_dec_nr_in_flight+0x320/0x320
[ 2056.455863][ T1518]  ? lock_acquire+0x190/0x410
[ 2056.460549][ T1518]  worker_thread+0x98/0xe40
[ 2056.465425][ T1518]  kthread+0x361/0x430
[ 2056.469497][ T1518]  ? process_one_work+0x1740/0x1740
[ 2056.474695][ T1518]  ? kthread_cancel_delayed_work_sync+0x20/0x20
[ 2056.480936][ T1518]  ret_from_fork+0x24/0x30
[ 2056.487147][ T1518] Kernel Offset: disabled
[ 2056.491475][ T1518] Rebooting in 86400 seconds..