9a3b66c0200fb9a615c2bdb7503575fab3ea82214f737eb6e7f7575bfbfee0dbf0095f01e1492945ea28a716731a5b8d5cbb80748f964213cfce8e89145fe28704fac6417b619e89ecaf5bd5d7f95839d5d221e685406aac023da483551ff406e83e8ca1e39d9656c02a1ea81dab1b0eb6150ffc96973a278cceeee44dea708adc382d36a00363c1abb8a1c9adea862ce08349d61c04daff42366443c5271a536998611f1e74fc954a57b8a667e485c17e3f14933e9c410ac27aa829654af811af27d8393a99ccfa8ba3d7a1c34de7e5c7c0f95707662b9c8a6f21e6398f161791a724df655ea73f53ae41fee5cafc770f2eea0209f1e76fe9322a8ad8f700437dd31375588fd09a50b71117156d8b4b60e56968d7e783ec2bc4f3163a5d4c136915ad9d854a6f6aa38ba09fa64a893949bf245b14a7cab11ca23507e894fb13c27283cccae0494268bb389651b5faab0283fdd6b95ce8eb3057a4b2f5c9a0261eeed21ff67bf1b7d68265e592015be6573cada29ff9f95eef5fdfb1ccf6eb4341a6de34da71b218bd5f3f3fec7896588e60dd2ff1a1596c33e9f06064d46c73e64d69f43aaa6c05535fc5db10f799f01d8083635890e706b634c3621e7e5d3f1354e6cac512c5ad72530a976c2f6a56aaf795d093afebcf562004291b934622f8a3eb1105c93146aa5b69df05c9eb76649ee38df04bb572195a8a8b24c65ff6d29fa4f8b976e59b856fa1b82b89b19fa2687e4282c3ad8af232bfd6db0f95534d2ac7b5802ce0b0407074e66c214ecbe19ccf016915c49973c7434cb967d37981c33e804fb89f0da59a8edb62bbe2f3de06413c53b84740e4f9118bdcae4794e669542de672f2feadfe0ef4f86bb46410a10011836522d9bf2dde51e472dd5befb63e8efbb94fd387867642cc287447fed22b5dcb2c8581e73be8538fcf0fab5344a24891903b360b8fcfc869cd0e32461833ef44a5466e3307e31afb150e723e9a2266f0eee7b730c4ecd10d398d135413518d520f4a426c51374871ecaa469ec82e35e3f7618777f7e9b21391b026a6428a0715d0c8837d1eaf3f06201d551ed5adf202fce10fc9d200e26faa97de35f732d3950a81b8162d99070313ab60c78aa1b8dc5fce392ed9d47314b2f56d144681cf1bbbb96b1f6256be658238e073067c345010452837c5c62917a5ded2987bc548822728783fc01557d2630f60c6f17ba9bc3442a808061026f967e9b87a4fd23c056a5f2ec3a1144942448f1d79ce4e955bf2dfd6656fcd749c6dbc170b14015336c67a6c85cc9e6ee7c73c46ba729ee63e146eee3d2fd23a198a7a022f412b6ba58a7b6b8da042b59209f32d1118282a6b365d2ce0a8ed751c56fb65bedc4cb250ea4dd7070076a9d7f87cdeca22482bff1427f7a1ab8113b1084528a77bf81fe73d63a57178685e867015a6740036b4a171e62be332e9b03690102ad59238f682ea0397349d341f60cce9ab332cb207f65aa7f41b10c505266d7a56585d5b3558c81f245932f2f0165ae5fe00ff5787984cf263c689415c7850f8ad7f56947c7015826e82c240eaff77acb1724d748ecf77c2bde7e18830e183f2a1d945440e7d69bf44dab7dceb368ebb36e331f55258f62aaf9f4887706a911070ba48cfa7ab208c539da8ac86ec6fd73dda4994511bc5c41ff70497f11adabb1a5d0bbee2ae855553e74eabbee8611f507b836f01de988929599c954b21466e03de2129bb9f8e101c4abefad1f7f9a2eb1bfd6b387ba0cdc56d8d5342d25c407ba0f580134884a60f3399ff10d2b0a3987d59b489b012636f353140c21b94b25bbea7ff8b59f7d01923c65de4d535124ec4f7f939e57a91346c116e4158fde04dbe84ba140730ad0455425936e1d0b4092e86934f3cba4f971c32e51691c6818c308af67d6850c07f7265c8477c85a607731d58976961255c3083a4b0958755e2a8a5210989413fd8eb70e88b549ce4ca3c8afe205e4b92ee1ebf3ae1ae2bebcf7d6501110e12514a11f5f6fd02a3818387267d2fc7e048c41953d1c43ccb427fa9af822678343e03e00c5c6a641a3b820bd8a57b26e13d5d59f7659516c22999904dbf746c3db74cca7dd5e78fa053e7c21cb685ae7f54757c1833973fa400adff2d4091fef60d4391fbec4b0a0ea2fafe3febbe27b772d32f15d418ab4cc2d2d998b55a042b7df11f77f6d2dc1ec1d373e6d25ab1b714c0c2114b7a3bc0aac12b01ba5a142341a844d2cb4649d5ccba6ff6b0b9383f385ebfd6660a4f27096b7516a67a7c905fb10f84817b96a77cf59c774fa7ef4e8cb3b26c260ed79cb08b99bc13eb817d0859e974a3158d8f22890f6aad176431454ae9a0761ef8cee33d1797b046e86d6fec1111af414c8429fcced4fc996e007627c353427f4e0b4100ea1b92fd354a4ecb865a4ed13be98cb4cd1e2e419e3af215e5783d3dfe56cc14c75fd722d4d626081526e2ac23c2091ccb95a0186a96ed569551ee408890110e2091c451a63ac2f22e289f200716e1eaf7937e5c57c315f45829fcf715b518f006ad228a438d0b6a11dad4bc89baad3e6648aa93f29d44d79da4b318193a129ff49d9261e8c1c36f8fbce33363eeabc6be964a35fae1f8af3598159d928a417daff01a094dde4e7be8bef748baf2bf76b539a0568ce00f84f24046ad0048f33bad9bf2a99fcf67b07a0040fb33f9eb758392e5f95622a1647b47c60c136dccd11dc97eb45801459a9d32e757efacd801c3aad6fd0137f47c2f06283117ce105a87c54264fa3e8fe89d9b9acf04f402c42e32b30c5e5a968f5f3b0ad45881cc3559ee27b792ce03dd86ddf391dad320f89fc580256e67c434c7401890d81f918671dca6ae3acbd0ff4c9c4ef0e40a1398349db18c41fefedc460feccbeb49969b8a79b9f69095d6f5f0b4945111514724c8bc18496", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}, {&(0x7f00000014c0)="8ee6b77a5899cd173e7ec1557008e5ce4208a135dc83ce1d7b075320c48a4683c08294e6fcd96c8b0a2439ce5eb54575d8207ebc06148c4710d012b375c4295bede6c373af34f562b74672adb3fc7b", 0x4f, 0x7}, {&(0x7f0000001540)="50ecb5d8d3e6296306554dc9938cfd3e3574d1d90974a72eb7ea7a913255c8425ade360333e99713fed5e10810ee9393076d3e9416d1029c03169399a719d5831d1706e163560328a61cfcd65d8c5f5d404d53d54e3c6403fa4e4fbb34f0e31ec79ca78f37ebe4d1ba034982ef671bff0280d4ec86a70757544e2ce94c064da0de8590c25e347fd325", 0x89, 0x7}, {&(0x7f0000001600)="7f529716299218c4ac841f7f4a1703861aed0f0402bd637e25002c9b98eb30ebc37e5c30cbd739bd33ae7d042f8129988c52aafe011a00212617c80661f430b53eb239871169f9df57c0ad185fed78f483a7d32bd24bbe2d4777a19442442d2e13f88d1b191550911cd128abd274db2312c50481c3211127655b9e0542e7d340717b5aeeded33d3997dabd3c5a195e84e08baea7e899b4b235d3d803dd6d22e5b82df96e71570de34da5fb9c5f0ab696b5ebb5d4005ed042c10c9dcc4b55d3d5f476d69362f32ee3f775e207b86115645f07d67fbb8c91cb6c0f9f9fdbfaf59b0528e8919e712f0dc273d20cd39f435877b1ed3ef92ffa70a565d983693241e82d9308a9ed1afb63b34ebb107c02a7eae16e25902eb88cde06e6bff7fb4c14354afd67eaf50ab377b9674d5a334e1298fc90151673c22dba2b68611a9927c50fbf44536e1dc9f54ba3b6a51559bab2feb69dcd2549bd9e7f46ecd5804323ac94956c0cf099f937fa2d5b3d6e7a6355777d30eff15d5a13bce0aab7df262b0ea93a5143c6d7332af6f6a8643f3a1e6aa25eec82ad0fa25d84bd585c512256f3ca0febafe775474ff9280ef357bfe481af2dc9fd0c21e71b373f3b8cbf0f0f3fabf96c322882b35b4ce3a84c00d20ddf23c1a94ea97a8c563539443f7693b69f4bd931e1dff462ba49b5e7a1d2f4a43c50793c2b1b7a36852de3a37be2fa67324bc6b646040ffbcbfe8739ff819d3eb65eff33746bfff042a180af25199ddc60e837354474cc92bb862c56a1f4e7de6bdcd1f18c9fd6d9db6d7a02ea3cc24e4d1518d17d9cbe7a1a82085851ae20e7c7a3954f07b2a29d9d1bdb365b46d4f99e31514db4f7b862814a04666b1f9846a9c681a4710eaefd775dfa5af7d659ab4e18f6da60bbc89617476a5dafe7614fc39afbe44f45e0d755500ebfafc6346bd4a854977394170882b5446a70bc3f9b4a7672e317813334749670c9a2359bec1394a7bae416217278370867e75f34eb325271feeef64993dbc1a882ad8ee8a54e509e1c982d7cb7c5ee0ff680998ff23a80d687d8ca79a815f01c8eea7f40168af57d73aa9d728819d3d3de40daedb0fee7377b8b4663e03e8d0a24054ad67014aad4d6c7d75f2ed4391762b7dd7ab240bfef0db5ff005e5d2896cbf57ceedd7a7105b9822a1006e79ee04c0ebedb06a6c5c7050f76cbb8eac0e8e2dcbae161cff4379df9f4cc9d0050699746d8497ce37fa076dde2af45408830c35d666bad7bf3c3e88f6618617430c547b52a246c434ba90bf1d47ef65043afcc78490e265f83df4f536d0ed622f807b3d40880e76a8a4622bdbd51b688c9a119ebb3e0eb2fe0e37ed4b17a6b2ea2f2ae381d99f16490c597ac4270352e58e2c0460d8a42946ca3b5c4c52a7389d1690dc1e8ad5248ac3d21caa7cfda3b82466c48a3f082bc4a6c856f4e11c9a13dfe10e5aa63c2c6b7be7b7fcc848ebf580e5f9e50e92c5cf75469a30df9be2c22355725d758b694d653237f4163b5630d7e56d94b931afd1af0d1eda961bba7130f379ee9212a2df3ad30d5fd609633ca425c2f09250e516d7b0d0a1e7297b772f9e76379f997c0cf28ac09f8e50f3f80ff8eb0e4b4aa641bb4e4eaaa756bcb6cdfd2b84545d78a4de450886540f4cfee33b084777872825b1c27a7af4f9978599b017b9830d6caf4d2e601f50babf1fe2e63faa8021e18bbd8fa1a7620d3018c2f0d3983fa8ab2b185558d82aef2c929fde98492c8e70a5a6a255274d8887d99b692a8a75d4edc9051f3faa59d7fc4989019d3f65481fb9d44b0b5e2af519080edb628873e3bf92f2e8407a28286601207a145819776576d72a391a13ffdc6c8bff5bed23b1c7ecdf64260eda0d47fd4a4e3e50d7da60633f3ec50fcf828a37204feef693dcd9bd4a1c99b675177acc3a2fab6de00ab20ab6758ce48857a6a07a982361dba23f588e806536dffb124c196fe323aea0d4195a5ef836826b94956e3b76b2b96f56954286ae3eb08d3946138d44ea622bf488f07677b986b2792b03b416e5f7e1f3749612b9d73683a59603b78bb5cfa00cb0291ccdacd930bfc5a95753b4425e69eb931b5ddcabb605c31508c73a531767d759a14bba6e322228f70b214a9fe0b33b3665bfad16b28cb2c652edbb7cebcd1bcdfa460097bc078cb4b642154ddbe0c41c0016e0799371a3199d86a09736e1bddad0235820eb12952c13fbfde73fc071c041ee502d76d56a88906034914d0882283ba078a602aa6e9e166cc9360c5534354be9320d734abeade4da1e0ecf918085a1018ad30f3b5abd388a51aa1c662de26e72553d645d3786748d2204a161b49f28c144d2b2bd35a18bcd68af07ee395b92530e61d8ac7c7acbc02ff46940f5a25161345a7b0e7a499d7be70d150b3f5c0dd64db2f9ff2d40c6a4b946ecf8cb2576b4a100a1fac52489ef1b5f3bacff4ae9bc4c0ddd28cfce94559efee8901539d1c60523687cd3b0408d2b97cbbc362c6227afc9ab310553ff52a8d1b81674fda0e0b496ae481672de0c70c8d99b0a4a2e09a6bb56cbea72e460d2472f67ae43cda788edb9ac44a3ed35c6593251fa0323a84e374d7da263c46d187c67d5772425792bd8b54060c3b31ae6097f160da157d5fa50a24c23602b55c21155c6397f40aa0437267b498a107d5df1be528468c61b39b339006bc4d19093d91f834d482b88864509d0d936e261a0e3cc9e4118b527ab422ab00773efec95331f6b2d7810a22290fc1fcccc59c253fcde169b124c07e64bd5374899e50b6be1bf1fc1a4e8e25ea5699a79c57438805b8635775b9abd849c12fe142517ad8dcc2345075e33203eb7926296fb35471f0e458dd29bd81076826cae9061052aef578c44acbca41bbe6242d634c97ae55a8ac52cbc87b78817383c345bddfe93dc10c599b42707dae2d77b1c6531c698a320a11afab9a19a433ef38cc14d7b2788ddb119bb9b5eee1680696664bd950efd093fa31bdce3c28fee657816c3b16e87c1d68ad407f7686da6583f00e9b24093adf219e23986311397b8c994e710c10484e37c2d648c1e3c24c5de3c7fc0cf87d39991438f267bb60d2a6469799726f2fdfc5eb68cc93dcdadfc894e2de0b912a19853a0695142afa5ebaacdb19677c1139e5eac3c23c6daf5872ff4811446b57857dd0220173e2fc2f29120ee42a63d21cd3ad4902cdf803759589fafe2705c85ba6ca099b1418217541edd62cb553b785f4b30240d1c7ae190d6e82decec280452cba0ba82f1dea85170270b7e242c37739052233c5898c932f158d5bd19e307cdc4d49de353d8b0004adb099765878bc0b654dc8fa6cdababd73d01ca96bf5499f7361db2fea7b1b16eca64003de0b52fa490bccd98592e268beae4d03227616ce0d502119e23b47232a1e54a9497c305906dafd11f1edd43fd7d721ce71a46e6dd8f411cca557992783200dce94bffa900b5690852546b4d8b381c948d206213fa001e52b39e7ffa1ff97973b2ca6867c1c2f1035589c6112534de2ee4798f7622b762475d8a1405e2f4c611b81fc4fb95252db8ad733993dbd8034ff38a09b01e4399c7c821bae760cc8f8c87a37bf0d7d4b13bd3d28e3720eb37352f52199eea5d7c3bf3684028d960dd3948cde724247089ace1973842cb35ab33fe7fa27cfafbfce0b0f4abb7572660834ae6165cc52317be120b7b12a7460040a673dd09a3522ced06392a4a3c38323cb9ee4b9946b3ea396150fa97f63835596ac8a5e1dc3c5844d4d095527259e988ac52fd0b1117dcdd0475aed0e774787dedc538ddf05a0f3a244e025a054ae89995c4db509268de3f234abee00735d71fd9f28ba2b4ed992b8830b9d3545ef97b2c5f06fcf801f776c069e6aefb09abca1750cc8259fb592226fd329fa61c559f33795cfba387338083824fe23262c595a98ba9663f244ba96eaa9dadfd556f2a32f17668769b0cd785761e44358ebd38af394bdfa1412603eb89ce28f4d271af0642e0683b26714306e8ef701d5a8513eeb115b4264497b7ccb499d963b9884171104ced419b18dc70f85df456f708e0efd09072fd6ed45940296f99f00a01658c2ec32839c76f3967f7c9f1326a152e64ce410749f146dc0819b26abef1a65975924c46340f68b0ddae1396bb4817037bb410b1efaefb20b5b475e9abe10bde056985ff22cce9a5f7cff9d98707157f58fa5ed296b02bdcd6e50c2daa7b4604f08f12203371ab3184b66745ce493f2ba29dbbe7c1fa1385aa84dc2940d0444051da566ceff9dc6830f441200d28293ca98a602a7ae4a40dd60d14c824433faed1a934ba1ba82cadfdc9f828d619e9ec5aa515706884fdc065f5603e3dbf026ff317a10d9292448b8da19af36dc301661885b9031fad7ddecd2aeed264e37c4d23b3bcaae9540d353af64875a176f98bdb8ad05b20eb52e0fe2befbec0d68390846bd16857aeaab83bce508075274f30b795cdbd75b6035291a81093520f936dec4be26587c39e2873406c8da05a3594d9280f374230e029a589556abd2bdb51e98200e5d4f76d0d3c30d71d2fbc21b241e27329415fb9efef121a3611c943df5d9483958670f98d2dc17cf255dfc4a0dda670fe5c8bc680022a18d99fb7d1db7eaf98ccffaed727fb4955c39db95e32058ab856c6ff33f0b6435e466af5c1cef184db02935923d75884ed2bfdfb5319a15d4be997b4c3a4eeb7ad5c87cf95064b51920d82500bbe2a5ca46b47e97929b0cf99fb08fbb47b88b041410fb35244ef75816c9a532df1511d0d21352a7925d8dd19fbdf34fd6befd89445cb10a13c8d41e346f63db2e8571c60254d7e0f22c9c03b72a98db28631f9f74562e6d64583a80e08d3f6f91a3b81283dfde713821f020018ba1f8b5add1d19c03728abb6b5261550d26b0d5121f37dbc51c60ccb328a050e44b950bd369bcad7273111bde1150abcf0a09911d7a9034ca036e7a89daeabdd96dd5cf1a6e03c3bf3fc394a3319ecb50dc53ca42e25b0d421a6cb4d9f9f61787beadf9cdc7132f1a4a99763ab8b79eb23a0952bc0b02cd55d70651ab9505761b2bf260abc54a297a733f043a8c38d8f6b42e6585b460d6b95b6fb3793f7396407a5e5a6330675e54b9c29caf4172c89e4e563f57fd9e05e6938f00bcf4f900c514e61040e75d5216474d95acf0d873593fbd2fb25e8017a5fa50d0bd192c25bcbe3fe28edc75aadd44fee024a6addde04fe193037dced6518645cfedb4cab1da641d5c6351a538d216a243735dbbce96cb754c6512582cb4720b477318581363c354c0b8d01b24e82d556912703e26cbcff618c7b872c300e6661d953aec28062f4033ac9f84c655c4394d3e48004339124f5c032036ddc962991127242413ee5fdfee22d83806dfffd08a4dfa075367fd8e80bcdb39e52bdd65bd9462eb4cb4add80844ddae64eae915fc2bf4cf5ede2bc4c53cc394708776be4ddfa19c1ea1b21c2f872741f9d23679279e73cb43912eecdd0ff88ca13aea9ce3f55bc6de37918d61a48ce105b443b07f1809a4233557515b998eba1d31cb78e8ab81af72eea6790c1b2d3348949e4bb486d73a044bbc7a22875823292974d699ed1d455d6c9c979a1e0791ded286aa93c645ca94570d44326d3323b98b79a8ffd045fc78c1e5a13349ef57b4ddbf86d41c924cc7773ff1da327fd26ffcc9208206162769bea6f75a37672dc8f26d4abe57151a7a6776c0e3ebbe2363a4c6fc5b3e5f498be432c8fc2dd5bd3a50531d0463887a32399f35", 0x1000, 0x8000000000000000}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:16 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 1:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x4, 0x9, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}, {&(0x7f00000014c0)="8ee6b77a5899cd173e7ec1557008e5ce4208a135dc83ce1d7b075320c48a4683c08294e6fcd96c8b0a2439ce5eb54575d8207ebc06148c4710d012b375c4295bede6c373af34f562b74672adb3fc7b", 0x4f, 0x7}, {&(0x7f0000001540)="50ecb5d8d3e6296306554dc9938cfd3e3574d1d90974a72eb7ea7a913255c8425ade360333e99713fed5e10810ee9393076d3e9416d1029c03169399a719d5831d1706e163560328a61cfcd65d8c5f5d404d53d54e3c6403fa4e4fbb34f0e31ec79ca78f37ebe4d1ba034982ef671bff0280d4ec86a70757544e2ce94c064da0de8590c25e347fd325", 0x89, 0x7}, {&(0x7f0000001600)="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", 0x1000, 0x8000000000000000}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:16 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000002600)=[{&(0x7f0000000100)="dc7d8b821bf5ba8deb9c2979ff88fb03dc296b3538b16911f5848b9198a5f3d9d6e8dcbb1b4c2e78acd8ff0da4d86f5842b3249e94d7b7f97b435ea1f12cb127c97b424e124a341488508d623becab91aee920043e4e155b2db37ba8048ecee1969cc9a0cf665dedbff4750c1bb514880ddf5414cc1eefe8cc009d7d9b35a15ca338f8781989e4384753595b4569f986910af5f9c4076865293ac5b08e272caaa6f7e9a432c0101c88e8c35da54d4e597f50879d146612a21346faeddba47742ffbd8f0be60219fe4ac8123631375e4e5dbaaeedd6a890d93f87b8c5c5ffa642fa3721e2db11166eaf9072290653137663a5c8b52fe30ad853441652ea68ec", 0xff, 0x7f}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x4, 0x9, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}, {&(0x7f00000014c0)="8ee6b77a5899cd173e7ec1557008e5ce4208a135dc83ce1d7b075320c48a4683c08294e6fcd96c8b0a2439ce5eb54575d8207ebc06148c4710d012b375c4295bede6c373af34f562b74672adb3fc7b", 0x4f, 0x7}, {&(0x7f0000001540)="50ecb5d8d3e6296306554dc9938cfd3e3574d1d90974a72eb7ea7a913255c8425ade360333e99713fed5e10810ee9393076d3e9416d1029c03169399a719d5831d1706e163560328a61cfcd65d8c5f5d404d53d54e3c6403fa4e4fbb34f0e31ec79ca78f37ebe4d1ba034982ef671bff0280d4ec86a70757544e2ce94c064da0de8590c25e347fd325", 0x89, 0x7}, {&(0x7f0000001600)="7f529716299218c4ac841f7f4a1703861aed0f0402bd637e25002c9b98eb30ebc37e5c30cbd739bd33ae7d042f8129988c52aafe011a00212617c80661f430b53eb239871169f9df57c0ad185fed78f483a7d32bd24bbe2d4777a19442442d2e13f88d1b191550911cd128abd274db2312c50481c3211127655b9e0542e7d340717b5aeeded33d3997dabd3c5a195e84e08baea7e899b4b235d3d803dd6d22e5b82df96e71570de34da5fb9c5f0ab696b5ebb5d4005ed042c10c9dcc4b55d3d5f476d69362f32ee3f775e207b86115645f07d67fbb8c91cb6c0f9f9fdbfaf59b0528e8919e712f0dc273d20cd39f435877b1ed3ef92ffa70a565d983693241e82d9308a9ed1afb63b34ebb107c02a7eae16e25902eb88cde06e6bff7fb4c14354afd67eaf50ab377b9674d5a334e1298fc90151673c22dba2b68611a9927c50fbf44536e1dc9f54ba3b6a51559bab2feb69dcd2549bd9e7f46ecd5804323ac94956c0cf099f937fa2d5b3d6e7a6355777d30eff15d5a13bce0aab7df262b0ea93a5143c6d7332af6f6a8643f3a1e6aa25eec82ad0fa25d84bd585c512256f3ca0febafe775474ff9280ef357bfe481af2dc9fd0c21e71b373f3b8cbf0f0f3fabf96c322882b35b4ce3a84c00d20ddf23c1a94ea97a8c563539443f7693b69f4bd931e1dff462ba49b5e7a1d2f4a43c50793c2b1b7a36852de3a37be2fa67324bc6b646040ffbcbfe8739ff819d3eb65eff33746bfff042a180af25199ddc60e837354474cc92bb862c56a1f4e7de6bdcd1f18c9fd6d9db6d7a02ea3cc24e4d1518d17d9cbe7a1a82085851ae20e7c7a3954f07b2a29d9d1bdb365b46d4f99e31514db4f7b862814a04666b1f9846a9c681a4710eaefd775dfa5af7d659ab4e18f6da60bbc89617476a5dafe7614fc39afbe44f45e0d755500ebfafc6346bd4a854977394170882b5446a70bc3f9b4a7672e317813334749670c9a2359bec1394a7bae416217278370867e75f34eb325271feeef64993dbc1a882ad8ee8a54e509e1c982d7cb7c5ee0ff680998ff23a80d687d8ca79a815f01c8eea7f40168af57d73aa9d728819d3d3de40daedb0fee7377b8b4663e03e8d0a24054ad67014aad4d6c7d75f2ed4391762b7dd7ab240bfef0db5ff005e5d2896cbf57ceedd7a7105b9822a1006e79ee04c0ebedb06a6c5c7050f76cbb8eac0e8e2dcbae161cff4379df9f4cc9d0050699746d8497ce37fa076dde2af45408830c35d666bad7bf3c3e88f6618617430c547b52a246c434ba90bf1d47ef65043afcc78490e265f83df4f536d0ed622f807b3d40880e76a8a4622bdbd51b688c9a119ebb3e0eb2fe0e37ed4b17a6b2ea2f2ae381d99f16490c597ac4270352e58e2c0460d8a42946ca3b5c4c52a7389d1690dc1e8ad5248ac3d21caa7cfda3b82466c48a3f082bc4a6c856f4e11c9a13dfe10e5aa63c2c6b7be7b7fcc848ebf580e5f9e50e92c5cf75469a30df9be2c22355725d758b694d653237f4163b5630d7e56d94b931afd1af0d1eda961bba7130f379ee9212a2df3ad30d5fd609633ca425c2f09250e516d7b0d0a1e7297b772f9e76379f997c0cf28ac09f8e50f3f80ff8eb0e4b4aa641bb4e4eaaa756bcb6cdfd2b84545d78a4de450886540f4cfee33b084777872825b1c27a7af4f9978599b017b9830d6caf4d2e601f50babf1fe2e63faa8021e18bbd8fa1a7620d3018c2f0d3983fa8ab2b185558d82aef2c929fde98492c8e70a5a6a255274d8887d99b692a8a75d4edc9051f3faa59d7fc4989019d3f65481fb9d44b0b5e2af519080edb628873e3bf92f2e8407a28286601207a145819776576d72a391a13ffdc6c8bff5bed23b1c7ecdf64260eda0d47fd4a4e3e50d7da60633f3ec50fcf828a37204feef693dcd9bd4a1c99b675177acc3a2fab6de00ab20ab6758ce48857a6a07a982361dba23f588e806536dffb124c196fe323aea0d4195a5ef836826b94956e3b76b2b96f56954286ae3eb08d3946138d44ea622bf488f07677b986b2792b03b416e5f7e1f3749612b9d73683a59603b78bb5cfa00cb0291ccdacd930bfc5a95753b4425e69eb931b5ddcabb605c31508c73a531767d759a14bba6e322228f70b214a9fe0b33b3665bfad16b28cb2c652edbb7cebcd1bcdfa460097bc078cb4b642154ddbe0c41c0016e0799371a3199d86a09736e1bddad0235820eb12952c13fbfde73fc071c041ee502d76d56a88906034914d0882283ba078a602aa6e9e166cc9360c5534354be9320d734abeade4da1e0ecf918085a1018ad30f3b5abd388a51aa1c662de26e72553d645d3786748d2204a161b49f28c144d2b2bd35a18bcd68af07ee395b92530e61d8ac7c7acbc02ff46940f5a25161345a7b0e7a499d7be70d150b3f5c0dd64db2f9ff2d40c6a4b946ecf8cb2576b4a100a1fac52489ef1b5f3bacff4ae9bc4c0ddd28cfce94559efee8901539d1c60523687cd3b0408d2b97cbbc362c6227afc9ab310553ff52a8d1b81674fda0e0b496ae481672de0c70c8d99b0a4a2e09a6bb56cbea72e460d2472f67ae43cda788edb9ac44a3ed35c6593251fa0323a84e374d7da263c46d187c67d5772425792bd8b54060c3b31ae6097f160da157d5fa50a24c23602b55c21155c6397f40aa0437267b498a107d5df1be528468c61b39b339006bc4d19093d91f834d482b88864509d0d936e261a0e3cc9e4118b527ab422ab00773efec95331f6b2d7810a22290fc1fcccc59c253fcde169b124c07e64bd5374899e50b6be1bf1fc1a4e8e25ea5699a79c57438805b8635775b9abd849c12fe142517ad8dcc2345075e33203eb7926296fb35471f0e458dd29bd81076826cae9061052aef578c44acbca41bbe6242d634c97ae55a8ac52cbc87b78817383c345bddfe93dc10c599b42707dae2d77b1c6531c698a320a11afab9a19a433ef38cc14d7b2788ddb119bb9b5eee1680696664bd950efd093fa31bdce3c28fee657816c3b16e87c1d68ad407f7686da6583f00e9b24093adf219e23986311397b8c994e710c10484e37c2d648c1e3c24c5de3c7fc0cf87d39991438f267bb60d2a6469799726f2fdfc5eb68cc93dcdadfc894e2de0b912a19853a0695142afa5ebaacdb19677c1139e5eac3c23c6daf5872ff4811446b57857dd0220173e2fc2f29120ee42a63d21cd3ad4902cdf803759589fafe2705c85ba6ca099b1418217541edd62cb553b785f4b30240d1c7ae190d6e82decec280452cba0ba82f1dea85170270b7e242c37739052233c5898c932f158d5bd19e307cdc4d49de353d8b0004adb099765878bc0b654dc8fa6cdababd73d01ca96bf5499f7361db2fea7b1b16eca64003de0b52fa490bccd98592e268beae4d03227616ce0d502119e23b47232a1e54a9497c305906dafd11f1edd43fd7d721ce71a46e6dd8f411cca557992783200dce94bffa900b5690852546b4d8b381c948d206213fa001e52b39e7ffa1ff97973b2ca6867c1c2f1035589c6112534de2ee4798f7622b762475d8a1405e2f4c611b81fc4fb95252db8ad733993dbd8034ff38a09b01e4399c7c821bae760cc8f8c87a37bf0d7d4b13bd3d28e3720eb37352f52199eea5d7c3bf3684028d960dd3948cde724247089ace1973842cb35ab33fe7fa27cfafbfce0b0f4abb7572660834ae6165cc52317be120b7b12a7460040a673dd09a3522ced06392a4a3c38323cb9ee4b9946b3ea396150fa97f63835596ac8a5e1dc3c5844d4d095527259e988ac52fd0b1117dcdd0475aed0e774787dedc538ddf05a0f3a244e025a054ae89995c4db509268de3f234abee00735d71fd9f28ba2b4ed992b8830b9d3545ef97b2c5f06fcf801f776c069e6aefb09abca1750cc8259fb592226fd329fa61c559f33795cfba387338083824fe23262c595a98ba9663f244ba96eaa9dadfd556f2a32f17668769b0cd785761e44358ebd38af394bdfa1412603eb89ce28f4d271af0642e0683b26714306e8ef701d5a8513eeb115b4264497b7ccb499d963b9884171104ced419b18dc70f85df456f708e0efd09072fd6ed45940296f99f00a01658c2ec32839c76f3967f7c9f1326a152e64ce410749f146dc0819b26abef1a65975924c46340f68b0ddae1396bb4817037bb410b1efaefb20b5b475e9abe10bde056985ff22cce9a5f7cff9d98707157f58fa5ed296b02bdcd6e50c2daa7b4604f08f12203371ab3184b66745ce493f2ba29dbbe7c1fa1385aa84dc2940d0444051da566ceff9dc6830f441200d28293ca98a602a7ae4a40dd60d14c824433faed1a934ba1ba82cadfdc9f828d619e9ec5aa515706884fdc065f5603e3dbf026ff317a10d9292448b8da19af36dc301661885b9031fad7ddecd2aeed264e37c4d23b3bcaae9540d353af64875a176f98bdb8ad05b20eb52e0fe2befbec0d68390846bd16857aeaab83bce508075274f30b795cdbd75b6035291a81093520f936dec4be26587c39e2873406c8da05a3594d9280f374230e029a589556abd2bdb51e98200e5d4f76d0d3c30d71d2fbc21b241e27329415fb9efef121a3611c943df5d9483958670f98d2dc17cf255dfc4a0dda670fe5c8bc680022a18d99fb7d1db7eaf98ccffaed727fb4955c39db95e32058ab856c6ff33f0b6435e466af5c1cef184db02935923d75884ed2bfdfb5319a15d4be997b4c3a4eeb7ad5c87cf95064b51920d82500bbe2a5ca46b47e97929b0cf99fb08fbb47b88b041410fb35244ef75816c9a532df1511d0d21352a7925d8dd19fbdf34fd6befd89445cb10a13c8d41e346f63db2e8571c60254d7e0f22c9c03b72a98db28631f9f74562e6d64583a80e08d3f6f91a3b81283dfde713821f020018ba1f8b5add1d19c03728abb6b5261550d26b0d5121f37dbc51c60ccb328a050e44b950bd369bcad7273111bde1150abcf0a09911d7a9034ca036e7a89daeabdd96dd5cf1a6e03c3bf3fc394a3319ecb50dc53ca42e25b0d421a6cb4d9f9f61787beadf9cdc7132f1a4a99763ab8b79eb23a0952bc0b02cd55d70651ab9505761b2bf260abc54a297a733f043a8c38d8f6b42e6585b460d6b95b6fb3793f7396407a5e5a6330675e54b9c29caf4172c89e4e563f57fd9e05e6938f00bcf4f900c514e61040e75d5216474d95acf0d873593fbd2fb25e8017a5fa50d0bd192c25bcbe3fe28edc75aadd44fee024a6addde04fe193037dced6518645cfedb4cab1da641d5c6351a538d216a243735dbbce96cb754c6512582cb4720b477318581363c354c0b8d01b24e82d556912703e26cbcff618c7b872c300e6661d953aec28062f4033ac9f84c655c4394d3e48004339124f5c032036ddc962991127242413ee5fdfee22d83806dfffd08a4dfa075367fd8e80bcdb39e52bdd65bd9462eb4cb4add80844ddae64eae915fc2bf4cf5ede2bc4c53cc394708776be4ddfa19c1ea1b21c2f872741f9d23679279e73cb43912eecdd0ff88ca13aea9ce3f55bc6de37918d61a48ce105b443b07f1809a4233557515b998eba1d31cb78e8ab81af72eea6790c1b2d3348949e4bb486d73a044bbc7a22875823292974d699ed1d455d6c9c979a1e0791ded286aa93c645ca94570d44326d3323b98b79a8ffd045fc78c1e5a13349ef57b4ddbf86d41c924cc7773ff1da327fd26ffcc9208206162769bea6f75a37672dc8f26d4abe57151a7a6776c0e3ebbe2363a4c6fc5b3e5f498be432c8fc2dd5bd3a50531d0463887a32399f35", 0x1000, 0x8000000000000000}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:16 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x9, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}, {&(0x7f00000014c0)="8ee6b77a5899cd173e7ec1557008e5ce4208a135dc83ce1d7b075320c48a4683c08294e6fcd96c8b0a2439ce5eb54575d8207ebc06148c4710d012b375c4295bede6c373af34f562b74672adb3fc7b", 0x4f, 0x7}, {&(0x7f0000001540)="50ecb5d8d3e6296306554dc9938cfd3e3574d1d90974a72eb7ea7a913255c8425ade360333e99713fed5e10810ee9393076d3e9416d1029c03169399a719d5831d1706e163560328a61cfcd65d8c5f5d404d53d54e3c6403fa4e4fbb34f0e31ec79ca78f37ebe4d1ba034982ef671bff0280d4ec86a70757544e2ce94c064da0de8590c25e347fd325", 0x89, 0x7}, {&(0x7f0000001600)="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", 0x1000, 0x8000000000000000}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:16 executing program 3:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:16 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 3:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2}]}, 0x38}}, 0x40)

20:49:16 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="dc7d8b821bf5ba8deb9c2979ff88fb03dc296b3538b16911f5848b9198a5f3d9d6e8dcbb1b4c2e78acd8ff0da4d86f5842b3249e94d7b7f97b435ea1f12cb127c97b424e124a341488508d623becab91aee920043e4e155b2db37ba8048ecee1969cc9a0cf665dedbff4750c1bb514880ddf5414cc1eefe8cc009d7d9b35a15ca338f8781989e4384753595b4569f986910af5f9c4076865293ac5b08e272caaa6f7e9a432c0101c88e8c35da54d4e597f50879d146612a21346faeddba47742ffbd8f0be60219fe4ac8123631375e4e5dbaaeedd6a890d93f87b8c5c5ffa642fa3721e2db11166eaf9072290653137663a5c8b52fe30ad853441652ea68ec", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

[  804.131267] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=00000000)
20:49:16 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2}]}, 0x38}}, 0x0)

20:49:16 executing program 1:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2}]}, 0x38}}, 0x40)

20:49:16 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x8, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="1d32cea88461b78439f728c24a077ccfcc7f00dffad904f9ed9177c87c57bd5ac11afdf2d3846cf9a78a639863c148dab8196d9cb478c048036d78c9fc1993bec93221e87ec3c171867d62926b51766cfe7c990481431da273cb388cd64e1eb62128fa4234270c7dfde9784b79f7a0ad67b4ac7a40ef40ec3bd76c545f6a9e5befe734ca3db498fc716257b146e7c295fc26f1fded81c20cb36a567ca90a3aa0cb8fb44b08514246b8a4f05cfdf8b66de09747490228a9bd6df38ce56979afcfc9c9d854390a95dda851f9576f895072234191b26374022c794726ed66fa4274cb38c0367c659ca8dd9eb63f84f0866a315ed1dc0ccebf50c3b7047f94357360c695811ece476ed16341130e3eff839c3b708b29eeee5b3d1543ed22875170e2f90745b06d2205afa0e47b1cfb3c67dae2aade5b9820d3c578f81101accad3eaeeff135b7859ef0347c1fd84affe3392099245581ab6210fce412c506914e24fab85355fca81ea609dabed1a67e8658d65b19b2349883b83e1a3b22e7a5d017801accbfe64a9dc816cff2b2a5d499f6593cc73289009398574aa4b8d0469f999d5c6671afd9a1967e7bc933484b25ac1f379ee567ff3ee4bae9663d0913a94bd3c6f5015b73014757c5cc100246f8fce8265a9b6da37a07aa9d77ceb5f779ada3ba72f8a796c4b4218bfb77fbff6d04d9c85a86c85e94758bd7e7f63c77a2444b26dbc201672f8feb8098da6776983f9da79de6002842545876c9e522a9c9a74a08b9813808ab8b843fe6b994fa0eef527877f1c7f3569069c3f99054577aed136b29bf70660d6ab75e3bf288524c368ce90322528ec18f81edde6722314f250c5d73bcab9d13a5b07f7047657e6e4afcfac642f38ce7ad7f114736971254227a862a46ea8b581e20d453b15f0c338ba926e487f7725f1dfeee5c92744f1076998b4b5f1eb517bc003d73db7df7bd5f7156fcbe95e1b3c8d331f486a82a2687ce9edbc237d8c70ec3427e2dcc832e7fb71e9e99105f71d4f4de8b1206bc3ca7fb5b62fe76a733411dd0089c3d2220d96002da51d0c3b79ffac6f3c6089fa969cdc51d0b1bec72f00fcadda7c5c7de804dbf9b7bf49c02f66f244eff71f26394cc2b2cd176b9762ce9780c40ddb7a0fbeb5313efc8782b7310069ecd2939214b92de7befc811cde46a4527e1df6cbe1e02f078ea8c6c5b099637962545ef98589fe50ae016c97bd7c3a32ec2472a7b12ec0510029b8140e509ef4198bc7c8c8ddb6155cd2523d7d1abc6d306fa5d8ff25d186bd3d8f7b7bfada1e46e7dfc4ad27baa6c9c0d8662838a0ec6a7825778410fbde0cd0a80d6049022f27a6cbc2ca807d4bce956a487bd938203ab053e82fce2e851106abb80f528fe7565c3ac9aae9a83de84e3ae278894f78130f6a0a295d4b28dfbff1a4f8a8bb298d8d2cccbbe25d6747a2b725a360bb40a3c013e4bb8916cba74fa4ac12de965f7d6cb6f03a24742c0f6eef5d36acc2b3451366aef4bbb16c69a74f0b120ba5136b248476544b66e5bcb769d3c5cff1b7e9acc864dfb13fd65444e5c9749bc423b645981a10944eeb28a41abfc468a2f11fd9bee1f25f03dcb1b18692dd44e8d88416c10c1b51b9596481b371cd524f0a8e692cb6bdf0643631dc07bb441959557375e754a935d76d7ec39d6527f0dd9a47cc0ba32d7cb7ecccf2adf15e4716875e8e8d17c749e836a8c6a1e368674106a67f8daf719a2ce27b0763e5206deeac89abd6960fd830d3f3b9bb2c9a1c97cbfc462072843d57f0bc5f732cc2676f199f57007273c112011aca106c64fc7ff9e06d0901c4d1512851a5bef3b2d78004ab26637b61a577d3ee25dc15994705783b459e9eecac0d5dbe14660cad849573d4b0d7312da972e153d41a831def0b2ed63e46920c54780b02c8f3e2d2723f2d1773a75f01bc020f88120c15ca70489ea012c2801feb8d05aa71654a25b7ad91e83ffff72eb412d0f31c49e86074c5ade56091d1cad083f755ec046ba2cdbc3cdc22fb4170ebd72333b3f8e501e86cd7736941c835d93d661544894efe8b6a40eea5c5902d2bcc66ee388a6b6d997903abd1353e45889ae96061dab034075c5a926e47568c28af89b4cd45e100dcda1e1b2f84d5bbe15eee1083353627753bdeb2dc0bcd993fe321b195c59c656353d991c5ce84836f9f1fd1c2d871b5672ca79fac2fd382411c20bdbbee39cdeaf7bbb5fe0e934a902a88d999ddeb67292f5bd5760f498794e9f5abf9f6df96fdfca8823eba008f79d251a04478132bd91899bc030a027569bcc0aebaed97438eb2e2ed2a5762e91788aa5f2cbf1ff361cfc50b5702fda593189d749acf9bf6e76bf2a54fedf4b2e0207b7742275bf3068730d16ad6e51c31b640afbfbfc93a9484a5e8a586dbf2afc12c67197d6c81c60c221d0b84515d83c4650a30044eb7a17c8a1aac87b8f030077e1774cb67af5671fe1a6ddd5190ffe1fe6a14d2a8028311eac3be240546f15fe166bc8889fa59314e9402832e0b934eddb2ade95d27050f83abbe7f384a502baf145f8724e37ceab2671edc96cd6ba648e573a641d8f66dd2262d5ba16eaf24982721a10ea6bb9681678b941e6b7b631e4295c67808fff42ba2f5e89486df85a6551f25b94605169cff83b12ec1a17bec1cb1b0dd10abd2f806c504cfd4c6920d666cae9f6ec3925d0950a6b90860eb76cf3b425867f9d90b0ba9f6efa9b3f1d6b1daa67d1f8b5b3fa27c801b9e24c1744f92c6454afe345e6f17fce33a953cb808a2a1913b79c19c188f058898f5be493e732e47ddc965ad34e08ca33deb896ed6707a2906643365c919a3b66c0200fb9a615c2bdb7503575fab3ea82214f737eb6e7f7575bfbfee0dbf0095f01e1492945ea28a716731a5b8d5cbb80748f964213cfce8e89145fe28704fac6417b619e89ecaf5bd5d7f95839d5d221e685406aac023da483551ff406e83e8ca1e39d9656c02a1ea81dab1b0eb6150ffc96973a278cceeee44dea708adc382d36a00363c1abb8a1c9adea862ce08349d61c04daff42366443c5271a536998611f1e74fc954a57b8a667e485c17e3f14933e9c410ac27aa829654af811af27d8393a99ccfa8ba3d7a1c34de7e5c7c0f95707662b9c8a6f21e6398f161791a724df655ea73f53ae41fee5cafc770f2eea0209f1e76fe9322a8ad8f700437dd31375588fd09a50b71117156d8b4b60e56968d7e783ec2bc4f3163a5d4c136915ad9d854a6f6aa38ba09fa64a893949bf245b14a7cab11ca23507e894fb13c27283cccae0494268bb389651b5faab0283fdd6b95ce8eb3057a4b2f5c9a0261eeed21ff67bf1b7d68265e592015be6573cada29ff9f95eef5fdfb1ccf6eb4341a6de34da71b218bd5f3f3fec7896588e60dd2ff1a1596c33e9f06064d46c73e64d69f43aaa6c05535fc5db10f799f01d8083635890e706b634c3621e7e5d3f1354e6cac512c5ad72530a976c2f6a56aaf795d093afebcf562004291b934622f8a3eb1105c93146aa5b69df05c9eb76649ee38df04bb572195a8a8b24c65ff6d29fa4f8b976e59b856fa1b82b89b19fa2687e4282c3ad8af232bfd6db0f95534d2ac7b5802ce0b0407074e66c214ecbe19ccf016915c49973c7434cb967d37981c33e804fb89f0da59a8edb62bbe2f3de06413c53b84740e4f9118bdcae4794e669542de672f2feadfe0ef4f86bb46410a10011836522d9bf2dde51e472dd5befb63e8efbb94fd387867642cc287447fed22b5dcb2c8581e73be8538fcf0fab5344a24891903b360b8fcfc869cd0e32461833ef44a5466e3307e31afb150e723e9a2266f0eee7b730c4ecd10d398d135413518d520f4a426c51374871ecaa469ec82e35e3f7618777f7e9b21391b026a6428a0715d0c8837d1eaf3f06201d551ed5adf202fce10fc9d200e26faa97de35f732d3950a81b8162d99070313ab60c78aa1b8dc5fce392ed9d47314b2f56d144681cf1bbbb96b1f6256be658238e073067c345010452837c5c62917a5ded2987bc548822728783fc01557d2630f60c6f17ba9bc3442a808061026f967e9b87a4fd23c056a5f2ec3a1144942448f1d79ce4e955bf2dfd6656fcd749c6dbc170b14015336c67a6c85cc9e6ee7c73c46ba729ee63e146eee3d2fd23a198a7a022f412b6ba58a7b6b8da042b59209f32d1118282a6b365d2ce0a8ed751c56fb65bedc4cb250ea4dd7070076a9d7f87cdeca22482bff1427f7a1ab8113b1084528a77bf81fe73d63a57178685e867015a6740036b4a171e62be332e9b03690102ad59238f682ea0397349d341f60cce9ab332cb207f65aa7f41b10c505266d7a56585d5b3558c81f245932f2f0165ae5fe00ff5787984cf263c689415c7850f8ad7f56947c7015826e82c240eaff77acb1724d748ecf77c2bde7e18830e183f2a1d945440e7d69bf44dab7dceb368ebb36e331f55258f62aaf9f4887706a911070ba48cfa7ab208c539da8ac86ec6fd73dda4994511bc5c41ff70497f11adabb1a5d0bbee2ae855553e74eabbee8611f507b836f01de988929599c954b21466e03de2129bb9f8e101c4abefad1f7f9a2eb1bfd6b387ba0cdc56d8d5342d25c407ba0f580134884a60f3399ff10d2b0a3987d59b489b012636f353140c21b94b25bbea7ff8b59f7d01923c65de4d535124ec4f7f939e57a91346c116e4158fde04dbe84ba140730ad0455425936e1d0b4092e86934f3cba4f971c32e51691c6818c308af67d6850c07f7265c8477c85a607731d58976961255c3083a4b0958755e2a8a5210989413fd8eb70e88b549ce4ca3c8afe205e4b92ee1ebf3ae1ae2bebcf7d6501110e12514a11f5f6fd02a3818387267d2fc7e048c41953d1c43ccb427fa9af822678343e03e00c5c6a641a3b820bd8a57b26e13d5d59f7659516c22999904dbf746c3db74cca7dd5e78fa053e7c21cb685ae7f54757c1833973fa400adff2d4091fef60d4391fbec4b0a0ea2fafe3febbe27b772d32f15d418ab4cc2d2d998b55a042b7df11f77f6d2dc1ec1d373e6d25ab1b714c0c2114b7a3bc0aac12b01ba5a142341a844d2cb4649d5ccba6ff6b0b9383f385ebfd6660a4f27096b7516a67a7c905fb10f84817b96a77cf59c774fa7ef4e8cb3b26c260ed79cb08b99bc13eb817d0859e974a3158d8f22890f6aad176431454ae9a0761ef8cee33d1797b046e86d6fec1111af414c8429fcced4fc996e007627c353427f4e0b4100ea1b92fd354a4ecb865a4ed13be98cb4cd1e2e419e3af215e5783d3dfe56cc14c75fd722d4d626081526e2ac23c2091ccb95a0186a96ed569551ee408890110e2091c451a63ac2f22e289f200716e1eaf7937e5c57c315f45829fcf715b518f006ad228a438d0b6a11dad4bc89baad3e6648aa93f29d44d79da4b318193a129ff49d9261e8c1c36f8fbce33363eeabc6be964a35fae1f8af3598159d928a417daff01a094dde4e7be8bef748baf2bf76b539a0568ce00f84f24046ad0048f33bad9bf2a99fcf67b07a0040fb33f9eb758392e5f95622a1647b47c60c136dccd11dc97eb45801459a9d32e757efacd801c3aad6fd0137f47c2f06283117ce105a87c54264fa3e8fe89d9b9acf04f402c42e32b30c5e5a968f5f3b0ad45881cc3559ee27b792ce03dd86ddf391dad320f89fc580256e67c434c7401890d81f918671dca6ae3acbd0ff4c9c4ef0e40a1398349db18c41fefedc460feccbeb49969b8a79b9f69095d6f5f0b4945111514724c8bc18496", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}, {&(0x7f00000014c0)="8ee6b77a5899cd173e7ec1557008e5ce4208a135dc83ce1d7b075320c48a4683c08294e6fcd96c8b0a2439ce5eb54575d8207ebc06148c4710d012b375c4295bede6c373af34f562b74672adb3fc7b", 0x4f, 0x7}, {&(0x7f0000001540)="50ecb5d8d3e6296306554dc9938cfd3e3574d1d90974a72eb7ea7a913255c8425ade360333e99713fed5e10810ee9393076d3e9416d1029c03169399a719d5831d1706e163560328a61cfcd65d8c5f5d404d53d54e3c6403fa4e4fbb34f0e31ec79ca78f37ebe4d1ba034982ef671bff0280d4ec86a70757544e2ce94c064da0de8590c25e347fd325", 0x89, 0x7}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2}]}, 0x38}}, 0x0)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

[  804.259460] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=00000000)
20:49:16 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:16 executing program 1:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2}]}, 0x38}}, 0x0)

20:49:16 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x7, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}, {&(0x7f00000014c0)="8ee6b77a5899cd173e7ec1557008e5ce4208a135dc83ce1d7b075320c48a4683c08294e6fcd96c8b0a2439ce5eb54575d8207ebc06148c4710d012b375c4295bede6c373af34f562b74672adb3fc7b", 0x4f, 0x7}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:16 executing program 0:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:16 executing program 2:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="dc7d8b821bf5ba8deb9c2979ff88fb03dc296b3538b16911f5848b9198a5f3d9d6e8dcbb1b4c2e78acd8ff0da4d86f5842b3249e94d7b7f97b435ea1f12cb127c97b424e124a341488508d623becab91aee920043e4e155b2db37ba8048ecee1969cc9a0cf665dedbff4750c1bb514880ddf5414cc1eefe8cc009d7d9b35a15ca338f8781989e4384753595b4569f986910af5f9c4076865293ac5b08e272caaa6f7e9a432c0101c88e8c35da54d4e597f50879d146612a21346faeddba47742ffbd8f0be60219fe4ac8123631375e4e5dbaaeedd6a890d93f87b8c5c5ffa642fa3721e2db11166eaf9072290653137663a5c8b52fe30ad853441652ea68ec", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 1:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="dc7d8b821bf5ba8deb9c2979ff88fb03dc296b3538b16911f5848b9198a5f3d9d6e8dcbb1b4c2e78acd8ff0da4d86f5842b3249e94d7b7f97b435ea1f12cb127c97b424e124a341488508d623becab91aee920043e4e155b2db37ba8048ecee1969cc9a0cf665dedbff4750c1bb514880ddf5414cc1eefe8cc009d7d9b35a15ca338f8781989e4384753595b4569f986910af5f9c4076865293ac5b08e272caaa6f7e9a432c0101c88e8c35da54d4e597f50879d146612a21346faeddba47742ffbd8f0be60219fe4ac8123631375e4e5dbaaeedd6a890d93f87b8c5c5ffa642fa3721e2db11166eaf9072290653137663a5c8b52fe30ad853441652ea68ec", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:16 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:16 executing program 0:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

[  804.470439] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=00000000)
20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 0:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x6, &(0x7f0000002600)=[{&(0x7f0000000100)="dc7d8b821bf5ba8deb9c2979ff88fb03dc296b3538b16911f5848b9198a5f3d9d6e8dcbb1b4c2e78acd8ff0da4d86f5842b3249e94d7b7f97b435ea1f12cb127c97b424e124a341488508d623becab91aee920043e4e155b2db37ba8048ecee1969cc9a0cf665dedbff4750c1bb514880ddf5414cc1eefe8cc009d7d9b35a15ca338f8781989e4384753595b4569f986910af5f9c4076865293ac5b08e272caaa6f7e9a432c0101c88e8c35da54d4e597f50879d146612a21346faeddba47742ffbd8f0be60219fe4ac8123631375e4e5dbaaeedd6a890d93f87b8c5c5ffa642fa3721e2db11166eaf9072290653137663a5c8b52fe30ad853441652ea68ec", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}, {&(0x7f0000001400)="adb9007058bf8d808fd8dfcecec50be103880401c6892ce53d54666915514f20c505b7e6604bea0e3a4429f1b8cfc251afdb3d78ae6d690ca852684d118b567fe53b9b8cb482182bbbc7e3df282b7dd661e84afdefd2f8178ff9c5423a3bd87b01fd31c4e27adbf007f6133b414d2d97b5276710cd97ba42f756816e34b39c94f843e626b801c41fc8db4a818f8d4c5358bdcd005f1becc2ab3486679415d32bc3be1ba1e9641c6e27ec3b0014c6cde521", 0xb1, 0x5857}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:17 executing program 0:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:17 executing program 2:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_SYNTH_ID(r0, 0xc08c5114, &(0x7f0000000100)={"62306d0d95746d1996a9ce66bb2c9a6d3e5424137f612ac688867887d0f0", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x4, 0x5, 0x6fe7a55f, 0x41]})

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x5, &(0x7f0000002600)=[{&(0x7f0000000100)="dc7d8b821bf5ba8deb9c2979ff88fb03dc296b3538b16911f5848b9198a5f3d9d6e8dcbb1b4c2e78acd8ff0da4d86f5842b3249e94d7b7f97b435ea1f12cb127c97b424e124a341488508d623becab91aee920043e4e155b2db37ba8048ecee1969cc9a0cf665dedbff4750c1bb514880ddf5414cc1eefe8cc009d7d9b35a15ca338f8781989e4384753595b4569f986910af5f9c4076865293ac5b08e272caaa6f7e9a432c0101c88e8c35da54d4e597f50879d146612a21346faeddba47742ffbd8f0be60219fe4ac8123631375e4e5dbaaeedd6a890d93f87b8c5c5ffa642fa3721e2db11166eaf9072290653137663a5c8b52fe30ad853441652ea68ec", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}, {&(0x7f0000001340)="f45639c42c87d21e4acab2330d13d474f77c34422e7649caae40f28492bf8258aab11e31fac35853fbd8bbe31b0b0a16d91bcc792957dd5991f7a93b4720ae11f0ce92322bbc21c67127fe6b460b48029d1b58a8ccbeecb06873ded0a1ca7dae647469e0fd1e0283cd7de72a6e3905ff570f34d368ee9085d286a25539d50e90400b071bee894c3acd1c76d31b386e23244b39a725bb57fac70321e447966b47", 0xa0, 0x9}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 0:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:17 executing program 0:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:17 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="1d32cea88461b78439f728c24a077ccfcc7f00dffad904f9ed9177c87c57bd5ac11afdf2d3846cf9a78a639863c148dab8196d9cb478c048036d78c9fc1993bec93221e87ec3c171867d62926b51766cfe7c990481431da273cb388cd64e1eb62128fa4234270c7dfde9784b79f7a0ad67b4ac7a40ef40ec3bd76c545f6a9e5befe734ca3db498fc716257b146e7c295fc26f1fded81c20cb36a567ca90a3aa0cb8fb44b08514246b8a4f05cfdf8b66de09747490228a9bd6df38ce56979afcfc9c9d854390a95dda851f9576f895072234191b26374022c794726ed66fa4274cb38c0367c659ca8dd9eb63f84f0866a315ed1dc0ccebf50c3b7047f94357360c695811ece476ed16341130e3eff839c3b708b29eeee5b3d1543ed22875170e2f90745b06d2205afa0e47b1cfb3c67dae2aade5b9820d3c578f81101accad3eaeeff135b7859ef0347c1fd84affe3392099245581ab6210fce412c506914e24fab85355fca81ea609dabed1a67e8658d65b19b2349883b83e1a3b22e7a5d017801accbfe64a9dc816cff2b2a5d499f6593cc73289009398574aa4b8d0469f999d5c6671afd9a1967e7bc933484b25ac1f379ee567ff3ee4bae9663d0913a94bd3c6f5015b73014757c5cc100246f8fce8265a9b6da37a07aa9d77ceb5f779ada3ba72f8a796c4b4218bfb77fbff6d04d9c85a86c85e94758bd7e7f63c77a2444b26dbc201672f8feb8098da6776983f9da79de6002842545876c9e522a9c9a74a08b9813808ab8b843fe6b994fa0eef527877f1c7f3569069c3f99054577aed136b29bf70660d6ab75e3bf288524c368ce90322528ec18f81edde6722314f250c5d73bcab9d13a5b07f7047657e6e4afcfac642f38ce7ad7f114736971254227a862a46ea8b581e20d453b15f0c338ba926e487f7725f1dfeee5c92744f1076998b4b5f1eb517bc003d73db7df7bd5f7156fcbe95e1b3c8d331f486a82a2687ce9edbc237d8c70ec3427e2dcc832e7fb71e9e99105f71d4f4de8b1206bc3ca7fb5b62fe76a733411dd0089c3d2220d96002da51d0c3b79ffac6f3c6089fa969cdc51d0b1bec72f00fcadda7c5c7de804dbf9b7bf49c02f66f244eff71f26394cc2b2cd176b9762ce9780c40ddb7a0fbeb5313efc8782b7310069ecd2939214b92de7befc811cde46a4527e1df6cbe1e02f078ea8c6c5b099637962545ef98589fe50ae016c97bd7c3a32ec2472a7b12ec0510029b8140e509ef4198bc7c8c8ddb6155cd2523d7d1abc6d306fa5d8ff25d186bd3d8f7b7bfada1e46e7dfc4ad27baa6c9c0d8662838a0ec6a7825778410fbde0cd0a80d6049022f27a6cbc2ca807d4bce956a487bd938203ab053e82fce2e851106abb80f528fe7565c3ac9aae9a83de84e3ae278894f78130f6a0a295d4b28dfbff1a4f8a8bb298d8d2cccbbe25d6747a2b725a360bb40a3c013e4bb8916cba74fa4ac12de965f7d6cb6f03a24742c0f6eef5d36acc2b3451366aef4bbb16c69a74f0b120ba5136b248476544b66e5bcb769d3c5cff1b7e9acc864dfb13fd65444e5c9749bc423b645981a10944eeb28a41abfc468a2f11fd9bee1f25f03dcb1b18692dd44e8d88416c10c1b51b9596481b371cd524f0a8e692cb6bdf0643631dc07bb441959557375e754a935d76d7ec39d6527f0dd9a47cc0ba32d7cb7ecccf2adf15e4716875e8e8d17c749e836a8c6a1e368674106a67f8daf719a2ce27b0763e5206deeac89abd6960fd830d3f3b9bb2c9a1c97cbfc462072843d57f0bc5f732cc2676f199f57007273c112011aca106c64fc7ff9e06d0901c4d1512851a5bef3b2d78004ab26637b61a577d3ee25dc15994705783b459e9eecac0d5dbe14660cad849573d4b0d7312da972e153d41a831def0b2ed63e46920c54780b02c8f3e2d2723f2d1773a75f01bc020f88120c15ca70489ea012c2801feb8d05aa71654a25b7ad91e83ffff72eb412d0f31c49e86074c5ade56091d1cad083f755ec046ba2cdbc3cdc22fb4170ebd72333b3f8e501e86cd7736941c835d93d661544894efe8b6a40eea5c5902d2bcc66ee388a6b6d997903abd1353e45889ae96061dab034075c5a926e47568c28af89b4cd45e100dcda1e1b2f84d5bbe15eee1083353627753bdeb2dc0bcd993fe321b195c59c656353d991c5ce84836f9f1fd1c2d871b5672ca79fac2fd382411c20bdbbee39cdeaf7bbb5fe0e934a902a88d999ddeb67292f5bd5760f498794e9f5abf9f6df96fdfca8823eba008f79d251a04478132bd91899bc030a027569bcc0aebaed97438eb2e2ed2a5762e91788aa5f2cbf1ff361cfc50b5702fda593189d749acf9bf6e76bf2a54fedf4b2e0207b7742275bf3068730d16ad6e51c31b640afbfbfc93a9484a5e8a586dbf2afc12c67197d6c81c60c221d0b84515d83c4650a30044eb7a17c8a1aac87b8f030077e1774cb67af5671fe1a6ddd5190ffe1fe6a14d2a8028311eac3be240546f15fe166bc8889fa59314e9402832e0b934eddb2ade95d27050f83abbe7f384a502baf145f8724e37ceab2671edc96cd6ba648e573a641d8f66dd2262d5ba16eaf24982721a10ea6bb9681678b941e6b7b631e4295c67808fff42ba2f5e89486df85a6551f25b94605169cff83b12ec1a17bec1cb1b0dd10abd2f806c504cfd4c6920d666cae9f6ec3925d0950a6b90860eb76cf3b425867f9d90b0ba9f6efa9b3f1d6b1daa67d1f8b5b3fa27c801b9e24c1744f92c6454afe345e6f17fce33a953cb808a2a1913b79c19c188f058898f5be493e732e47ddc965ad34e08ca33deb896ed6707a2906643365c919a3b66c0200fb9a615c2bdb7503575fab3ea82214f737eb6e7f7575bfbfee0dbf0095f01e1492945ea28a716731a5b8d5cbb80748f964213cfce8e89145fe28704fac6417b619e89ecaf5bd5d7f95839d5d221e685406aac023da483551ff406e83e8ca1e39d9656c02a1ea81dab1b0eb6150ffc96973a278cceeee44dea708adc382d36a00363c1abb8a1c9adea862ce08349d61c04daff42366443c5271a536998611f1e74fc954a57b8a667e485c17e3f14933e9c410ac27aa829654af811af27d8393a99ccfa8ba3d7a1c34de7e5c7c0f95707662b9c8a6f21e6398f161791a724df655ea73f53ae41fee5cafc770f2eea0209f1e76fe9322a8ad8f700437dd31375588fd09a50b71117156d8b4b60e56968d7e783ec2bc4f3163a5d4c136915ad9d854a6f6aa38ba09fa64a893949bf245b14a7cab11ca23507e894fb13c27283cccae0494268bb389651b5faab0283fdd6b95ce8eb3057a4b2f5c9a0261eeed21ff67bf1b7d68265e592015be6573cada29ff9f95eef5fdfb1ccf6eb4341a6de34da71b218bd5f3f3fec7896588e60dd2ff1a1596c33e9f06064d46c73e64d69f43aaa6c05535fc5db10f799f01d8083635890e706b634c3621e7e5d3f1354e6cac512c5ad72530a976c2f6a56aaf795d093afebcf562004291b934622f8a3eb1105c93146aa5b69df05c9eb76649ee38df04bb572195a8a8b24c65ff6d29fa4f8b976e59b856fa1b82b89b19fa2687e4282c3ad8af232bfd6db0f95534d2ac7b5802ce0b0407074e66c214ecbe19ccf016915c49973c7434cb967d37981c33e804fb89f0da59a8edb62bbe2f3de06413c53b84740e4f9118bdcae4794e669542de672f2feadfe0ef4f86bb46410a10011836522d9bf2dde51e472dd5befb63e8efbb94fd387867642cc287447fed22b5dcb2c8581e73be8538fcf0fab5344a24891903b360b8fcfc869cd0e32461833ef44a5466e3307e31afb150e723e9a2266f0eee7b730c4ecd10d398d135413518d520f4a426c51374871ecaa469ec82e35e3f7618777f7e9b21391b026a6428a0715d0c8837d1eaf3f06201d551ed5adf202fce10fc9d200e26faa97de35f732d3950a81b8162d99070313ab60c78aa1b8dc5fce392ed9d47314b2f56d144681cf1bbbb96b1f6256be658238e073067c345010452837c5c62917a5ded2987bc548822728783fc01557d2630f60c6f17ba9bc3442a808061026f967e9b87a4fd23c056a5f2ec3a1144942448f1d79ce4e955bf2dfd6656fcd749c6dbc170b14015336c67a6c85cc9e6ee7c73c46ba729ee63e146eee3d2fd23a198a7a022f412b6ba58a7b6b8da042b59209f32d1118282a6b365d2ce0a8ed751c56fb65bedc4cb250ea4dd7070076a9d7f87cdeca22482bff1427f7a1ab8113b1084528a77bf81fe73d63a57178685e867015a6740036b4a171e62be332e9b03690102ad59238f682ea0397349d341f60cce9ab332cb207f65aa7f41b10c505266d7a56585d5b3558c81f245932f2f0165ae5fe00ff5787984cf263c689415c7850f8ad7f56947c7015826e82c240eaff77acb1724d748ecf77c2bde7e18830e183f2a1d945440e7d69bf44dab7dceb368ebb36e331f55258f62aaf9f4887706a911070ba48cfa7ab208c539da8ac86ec6fd73dda4994511bc5c41ff70497f11adabb1a5d0bbee2ae855553e74eabbee8611f507b836f01de988929599c954b21466e03de2129bb9f8e101c4abefad1f7f9a2eb1bfd6b387ba0cdc56d8d5342d25c407ba0f580134884a60f3399ff10d2b0a3987d59b489b012636f353140c21b94b25bbea7ff8b59f7d01923c65de4d535124ec4f7f939e57a91346c116e4158fde04dbe84ba140730ad0455425936e1d0b4092e86934f3cba4f971c32e51691c6818c308af67d6850c07f7265c8477c85a607731d58976961255c3083a4b0958755e2a8a5210989413fd8eb70e88b549ce4ca3c8afe205e4b92ee1ebf3ae1ae2bebcf7d6501110e12514a11f5f6fd02a3818387267d2fc7e048c41953d1c43ccb427fa9af822678343e03e00c5c6a641a3b820bd8a57b26e13d5d59f7659516c22999904dbf746c3db74cca7dd5e78fa053e7c21cb685ae7f54757c1833973fa400adff2d4091fef60d4391fbec4b0a0ea2fafe3febbe27b772d32f15d418ab4cc2d2d998b55a042b7df11f77f6d2dc1ec1d373e6d25ab1b714c0c2114b7a3bc0aac12b01ba5a142341a844d2cb4649d5ccba6ff6b0b9383f385ebfd6660a4f27096b7516a67a7c905fb10f84817b96a77cf59c774fa7ef4e8cb3b26c260ed79cb08b99bc13eb817d0859e974a3158d8f22890f6aad176431454ae9a0761ef8cee33d1797b046e86d6fec1111af414c8429fcced4fc996e007627c353427f4e0b4100ea1b92fd354a4ecb865a4ed13be98cb4cd1e2e419e3af215e5783d3dfe56cc14c75fd722d4d626081526e2ac23c2091ccb95a0186a96ed569551ee408890110e2091c451a63ac2f22e289f200716e1eaf7937e5c57c315f45829fcf715b518f006ad228a438d0b6a11dad4bc89baad3e6648aa93f29d44d79da4b318193a129ff49d9261e8c1c36f8fbce33363eeabc6be964a35fae1f8af3598159d928a417daff01a094dde4e7be8bef748baf2bf76b539a0568ce00f84f24046ad0048f33bad9bf2a99fcf67b07a0040fb33f9eb758392e5f95622a1647b47c60c136dccd11dc97eb45801459a9d32e757efacd801c3aad6fd0137f47c2f06283117ce105a87c54264fa3e8fe89d9b9acf04f402c42e32b30c5e5a968f5f3b0ad45881cc3559ee27b792ce03dd86ddf391dad320f89fc580256e67c434c7401890d81f918671dca6ae3acbd0ff4c9c4ef0e40a1398349db18c41fefedc460feccbeb49969b8a79b9f69095d6f5f0b4945111514724c8bc18496", 0x1000, 0xffffffffb61d9124}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:17 executing program 2:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}]})

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 2:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}]})

20:49:17 executing program 2:
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}]})

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 2:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:17 executing program 2:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}]})

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:17 executing program 2:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:17 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:17 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:17 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

[  805.491268] BFS-fs: bfs_fill_super(): No BFS filesystem on loop1 (magic=00000000)
20:49:17 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:17 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

[  805.561058] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=00000000)
20:49:18 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:18 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:18 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x40)

20:49:18 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:18 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, 0x0, 0x40)

20:49:18 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x0)

20:49:18 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:18 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}]})

20:49:18 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

[  805.703881] BFS-fs: bfs_fill_super(): No BFS filesystem on loop1 (magic=00000000)
[  805.739071] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=00000000)
20:49:18 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

20:49:18 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x40)

[  805.820417] BFS-fs: bfs_fill_super(): No BFS filesystem on loop1 (magic=00000000)
[  805.857197] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000)
20:49:18 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:18 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}]})

[  805.884202] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=00000000)
20:49:18 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:18 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:18 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:18 executing program 0:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:18 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700))

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:18 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:18 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:18 executing program 0:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:18 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:18 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:18 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}]}, 0x38}}, 0x40)

20:49:18 executing program 5:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 0:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:18 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:19 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}]})

20:49:19 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}]})

20:49:19 executing program 3:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:19 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x40)

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}]})

20:49:19 executing program 3:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}]})

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:19 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}]})

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:19 executing program 3:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}]})

20:49:19 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}]})

20:49:19 executing program 5:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x0, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x40)

20:49:19 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}]})

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x28}}, 0x0)

20:49:19 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}]})

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:19 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 2:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x40)

20:49:19 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}]})

20:49:19 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:19 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:19 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}]})

[  807.518219] BFS-fs: bfs_fill_super(): No BFS filesystem on loop0 (magic=00000000)
20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:20 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}]})

20:49:20 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}]})

20:49:20 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:20 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

[  807.672711] BFS-fs: bfs_fill_super(): No BFS filesystem on loop0 (magic=00000000)
20:49:20 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:20 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}]})

20:49:20 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}]})

[  807.857311] BFS-fs: bfs_fill_super(): No BFS filesystem on loop2 (magic=00000000)
20:49:20 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700))

20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:20 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}]})

[  807.919260] BFS-fs: bfs_fill_super(): No BFS filesystem on loop0 (magic=00000000)
[  807.950941] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=00000000)
20:49:20 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000002600)=[{&(0x7f0000000100)="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", 0xff, 0x7f}, {&(0x7f0000000200)="37dd8bf3c5cc85ed7738e836532212d63fca412800ac97a5db0929dd0709508652ae5fa234ea9d0868ddbee0353c9b06ce8eb9ce6e2decccbeefcd743f05161fb39be0de86fd95e5cb2f2af207081089c884eef8c608d740eb467058d18fd60a28b970ac4e6ce2bb14a0e1ac88f533be483c5e4f3a652a3f6746d5a2f7d54e8579b248dee3b5ded6b6095c3e1b5e9bf0034f2887569bca5d05e928ab2d189d84458e78d6cec74601ec9eb48a297c72695ccff119abc8b5d8af6ac7178478f994e4a13311cd74", 0xc6, 0x5b}, {&(0x7f0000000300)="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", 0x1000, 0xffffffffb61d9124}, {&(0x7f0000001300), 0x0, 0x2}], 0x8000, &(0x7f0000002700)={[{'bfs\x00'}], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}, {@fowner_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@hash}, {@seclabel}, {@mask={'mask', 0x3d, '^MAY_READ'}}]})

20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:20 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}]})

20:49:20 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:20 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:20 executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private2, 0xa}, @sadb_address={0x3, 0x0, 0x2b, 0x80, 0x0, @in={0x2, 0x4e24, @multicast1}}]}, 0x50}}, 0x40)

20:49:20 executing program 4:
socketpair(0x6, 0x0, 0xb, 0x0)

20:49:20 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:20 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:20 executing program 1:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700))

20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:20 executing program 4:
socketpair(0x6, 0x0, 0xb, 0x0)

[  808.217758] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000)
[  808.245302] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=00000000)
20:49:20 executing program 4:
socketpair(0x6, 0x0, 0xb, 0x0)

20:49:20 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:20 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}]})

20:49:20 executing program 4:
socketpair(0x0, 0x0, 0xb, 0x0)

20:49:20 executing program 1:
socketpair(0x15, 0x4, 0x0, 0x0)

[  808.402822] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000)
20:49:20 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000001040)={{0x4}, 0x0, [0x7fffffff, 0x7, 0xffffffffffffffff, 0x6, 0x3ff, 0x9, 0x3f, 0xffffffff, 0x3, 0xb2e, 0x2aa98094, 0x8, 0x3, 0x0, 0xfa, 0x8, 0x0, 0x20, 0xa0cc, 0x4, 0x2, 0x4, 0xabe7, 0x1, 0x17, 0x3, 0x2, 0x10001, 0x5, 0x0, 0x7, 0x7fffffffffffffff, 0x80, 0x6, 0x9, 0x6, 0x7, 0x3, 0x1, 0x4]})

20:49:20 executing program 1:
socketpair(0x15, 0x4, 0x0, 0x0)

20:49:20 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:20 executing program 4:
socketpair(0x0, 0x0, 0xb, 0x0)

20:49:20 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}]})

20:49:21 executing program 1:
socketpair(0x15, 0x4, 0x0, 0x0)

20:49:21 executing program 2:
socketpair(0x0, 0x0, 0xb, 0x0)

20:49:21 executing program 4:
socketpair(0x0, 0x0, 0xb, 0x0)

20:49:21 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:21 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}]})

20:49:21 executing program 1:
socketpair(0x0, 0x4, 0x0, 0x0)

20:49:21 executing program 4:
socketpair(0x6, 0x0, 0x0, 0x0)

[  808.662904] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000)
20:49:21 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

20:49:21 executing program 1:
socketpair(0x0, 0x4, 0x0, 0x0)

20:49:21 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}, {@measure}]})

20:49:21 executing program 4:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x7c068, &(0x7f0000000400)=ANY=[])
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  808.747675] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=00000000)
20:49:21 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}]})

20:49:21 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}]})

20:49:21 executing program 1:
socketpair(0x0, 0x4, 0x0, 0x0)

20:49:21 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

[  808.830394] BFS-fs: bfs_fill_super(): No BFS filesystem on loop2 (magic=00000000)
20:49:21 executing program 1:
socketpair(0x15, 0x0, 0x0, 0x0)

20:49:21 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, 0x0)

[  808.883657] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=2f6635e6)
20:49:21 executing program 5:
ioctl$SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000))
socketpair(0x26, 0x5, 0x0, 0x0)

20:49:21 executing program 0:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700))

20:49:21 executing program 2:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000001040)={{0x4}, 0x0, [0x7fffffff, 0x7, 0xffffffffffffffff, 0x6, 0x3ff, 0x9, 0x3f, 0xffffffff, 0x3, 0xb2e, 0x2aa98094, 0x8, 0x3, 0x0, 0xfa, 0x8, 0x0, 0x20, 0xa0cc, 0x4, 0x2, 0x4, 0xabe7, 0x1, 0x17, 0x3, 0x2, 0x10001, 0x5, 0x0, 0x7, 0x7fffffffffffffff, 0x80, 0x6, 0x9, 0x6, 0x7, 0x3, 0x1, 0x4, 0x5, 0x4, 0x9, 0x36b96d8c, 0x2, 0x100000001, 0xfffffffffffffc02, 0x100000000, 0x3f, 0x1, 0xde4, 0xfffffffffffffe01, 0x6]})

20:49:21 executing program 4:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x7c068, &(0x7f0000000400)=ANY=[])
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  808.998642] print_req_error: I/O error, dev loop4, sector 1
[  809.004827] Buffer I/O error on dev loop4, logical block 1, async page read
[  809.014983] print_req_error: I/O error, dev loop4, sector 2
[  809.020725] Buffer I/O error on dev loop4, logical block 2, async page read
[  809.027952] print_req_error: I/O error, dev loop4, sector 3
[  809.033672] Buffer I/O error on dev loop4, logical block 3, async page read
[  809.042168] print_req_error: I/O error, dev loop4, sector 4
20:49:21 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}, {@subj_type={'subj_type', 0x3d, 'bfs\x00'}}]})

20:49:21 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
write$sequencer(0xffffffffffffffff, &(0x7f0000000080)=[@n={0x2, 0x7, @SEQ_NOTEON=@special, 0xc5}, @e={0xff, 0xb, 0x9, 0x3, @SEQ_CONTROLLER=0xfe, 0x1f, 0x7f, 0x5}, @s={0x5, @SEQ_MIDIPUTC=0x89, 0x1a, 0x40}, @t={0x4, 0x0, 0x7f, 0x75, @generic=0x52cc}, @t={0x6, 0x5, 0x3, 0x1}], 0x20)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:21 executing program 5:
ioctl$SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000))
socketpair(0x26, 0x5, 0x0, 0x0)

20:49:21 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700))

[  809.047980] Buffer I/O error on dev loop4, logical block 4, async page read
[  809.055227] print_req_error: I/O error, dev loop4, sector 5
[  809.060951] Buffer I/O error on dev loop4, logical block 5, async page read
[  809.068206] print_req_error: I/O error, dev loop4, sector 6
[  809.073961] Buffer I/O error on dev loop4, logical block 6, async page read
[  809.081214] print_req_error: I/O error, dev loop4, sector 7
[  809.087042] Buffer I/O error on dev loop4, logical block 7, async page read
20:49:21 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
write$sequencer(0xffffffffffffffff, &(0x7f0000000080)=[@n={0x2, 0x7, @SEQ_NOTEON=@special, 0xc5}, @e={0xff, 0xb, 0x9, 0x3, @SEQ_CONTROLLER=0xfe, 0x1f, 0x7f, 0x5}, @s={0x5, @SEQ_MIDIPUTC=0x89, 0x1a, 0x40}, @t={0x4, 0x0, 0x7f, 0x75, @generic=0x52cc}, @t={0x6, 0x5, 0x3, 0x1}], 0x20)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:21 executing program 5:
ioctl$SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000))
socketpair(0x26, 0x5, 0x0, 0x0)

20:49:21 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}, {@smackfsdef}]})

20:49:21 executing program 2:
r0 = syz_open_dev$radio(&(0x7f0000000000), 0x0, 0x2)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0xa00, 0x0)
ioctl$VIDIOC_QUERYBUF_DMABUF(r0, 0xc0585609, &(0x7f0000000080)={0xfffffbff, 0x8, 0x4, 0x0, 0x20, {0x0, 0x2710}, {0x5, 0xc, 0xb8, 0x9, 0x3f, 0xb2, "1973cb32"}, 0x8, 0x4, {}, 0x9321, 0x0, r1})
r2 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r2, 0x8906, 0x0)

[  809.179934] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=2f6635e6)
20:49:21 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000001040)={{0x4}, 0x0, [0x7fffffff, 0x7, 0xffffffffffffffff, 0x6, 0x3ff, 0x9, 0x3f, 0xffffffff, 0x3, 0xb2e, 0x2aa98094, 0x8, 0x3, 0x0, 0xfa, 0x8, 0x0, 0x20, 0xa0cc, 0x4, 0x2, 0x4, 0xabe7, 0x1, 0x17, 0x3, 0x2, 0x10001, 0x5, 0x0, 0x7, 0x7fffffffffffffff, 0x80, 0x6, 0x9, 0x6, 0x7, 0x3, 0x1, 0x4, 0x5, 0x4, 0x9, 0x36b96d8c, 0x2, 0x100000001, 0xfffffffffffffc02, 0x100000000, 0x3f, 0x1, 0xde4, 0xfffffffffffffe01, 0x6, 0x3f, 0x100, 0x80000001, 0x80, 0x3, 0x6]})

20:49:21 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
write$sequencer(0xffffffffffffffff, &(0x7f0000000080)=[@n={0x2, 0x7, @SEQ_NOTEON=@special, 0xc5}, @e={0xff, 0xb, 0x9, 0x3, @SEQ_CONTROLLER=0xfe, 0x1f, 0x7f, 0x5}, @s={0x5, @SEQ_MIDIPUTC=0x89, 0x1a, 0x40}, @t={0x4, 0x0, 0x7f, 0x75, @generic=0x52cc}, @t={0x6, 0x5, 0x3, 0x1}], 0x20)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:21 executing program 5:
socketpair(0x26, 0x5, 0x0, 0x0)

20:49:21 executing program 4:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x7c068, &(0x7f0000000400)=ANY=[])
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:21 executing program 0:
socketpair(0x29, 0x0, 0x67bb, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x71d3}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x2805c014)
socketpair(0x3, 0xa, 0x7fffffd, 0x0)
socketpair(0x18, 0x2, 0xe7a, &(0x7f0000000000))

20:49:21 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 1)

20:49:21 executing program 5:
socketpair(0x0, 0x5, 0x0, 0x0)

20:49:21 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
write$sequencer(0xffffffffffffffff, &(0x7f0000000080)=[@n={0x2, 0x7, @SEQ_NOTEON=@special, 0xc5}, @e={0xff, 0xb, 0x9, 0x3, @SEQ_CONTROLLER=0xfe, 0x1f, 0x7f, 0x5}, @s={0x5, @SEQ_MIDIPUTC=0x89, 0x1a, 0x40}, @t={0x4, 0x0, 0x7f, 0x75, @generic=0x52cc}, @t={0x6, 0x5, 0x3, 0x1}], 0x20)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:21 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}, {@smackfsdef={'smackfsdef', 0x3d, 'bfs\x00'}}]})

20:49:21 executing program 0:
socketpair(0x29, 0x0, 0x67bb, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x71d3}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x2805c014)
socketpair(0x3, 0xa, 0x7fffffd, 0x0)
socketpair(0x18, 0x2, 0xe7a, &(0x7f0000000000))

[  809.349778] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=2f6635e6)
[  809.355208] FAULT_INJECTION: forcing a failure.
[  809.355208] name failslab, interval 1, probability 0, space 0, times 0
[  809.401962] CPU: 0 PID: 20585 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  809.409894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  809.419361] Call Trace:
[  809.421954]  dump_stack+0x1b2/0x281
[  809.425594]  should_fail.cold+0x10a/0x149
[  809.429750]  should_failslab+0xd6/0x130
[  809.433731]  __kmalloc+0x2c1/0x400
[  809.437276]  ? SyS_memfd_create+0xbc/0x3c0
[  809.441523]  SyS_memfd_create+0xbc/0x3c0
[  809.445597]  ? shmem_fcntl+0x120/0x120
[  809.449493]  ? __do_page_fault+0x159/0xad0
[  809.453721]  ? do_syscall_64+0x4c/0x640
[  809.457684]  ? shmem_fcntl+0x120/0x120
[  809.461556]  do_syscall_64+0x1d5/0x640
[  809.465429]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  809.470604] RIP: 0033:0x7fcd83ff3109
[  809.474296] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  809.481999] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff3109
[  809.489262] RDX: 00007fcd82967fe0 RSI: 0000000000000000 RDI: 00007fcd8404c1be
20:49:21 executing program 0:
socketpair(0x29, 0x0, 0x67bb, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x71d3}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x2805c014)
socketpair(0x3, 0xa, 0x7fffffd, 0x0)
socketpair(0x18, 0x2, 0xe7a, &(0x7f0000000000))

20:49:21 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
write$sequencer(0xffffffffffffffff, &(0x7f0000000080)=[@n={0x2, 0x7, @SEQ_NOTEON=@special, 0xc5}, @e={0xff, 0xb, 0x9, 0x3, @SEQ_CONTROLLER=0xfe, 0x1f, 0x7f, 0x5}, @s={0x5, @SEQ_MIDIPUTC=0x89, 0x1a, 0x40}, @t={0x4, 0x0, 0x7f, 0x75, @generic=0x52cc}, @t={0x6, 0x5, 0x3, 0x1}], 0x20)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:21 executing program 5:
socketpair(0x0, 0x5, 0x0, 0x0)

20:49:21 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  809.496516] RBP: 0000000000000000 R08: 00007fcd82967fd8 R09: 00007fcd829681d0
[  809.503768] R10: 00007fcd82967fdc R11: 0000000000000246 R12: 0000000020000080
[  809.511017] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
[  809.536019] print_req_error: I/O error, dev loop4, sector 16
20:49:22 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)={[], [{@obj_user}]})

20:49:22 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 2)

20:49:22 executing program 0:
socketpair(0x29, 0x0, 0x67bb, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x71d3}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x2805c014)
socketpair(0x3, 0xa, 0x7fffffd, 0x0)

20:49:22 executing program 5:
socketpair(0x0, 0x5, 0x0, 0x0)

20:49:22 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
write$sequencer(0xffffffffffffffff, &(0x7f0000000080)=[@n={0x2, 0x7, @SEQ_NOTEON=@special, 0xc5}, @e={0xff, 0xb, 0x9, 0x3, @SEQ_CONTROLLER=0xfe, 0x1f, 0x7f, 0x5}, @s={0x5, @SEQ_MIDIPUTC=0x89, 0x1a, 0x40}, @t={0x4, 0x0, 0x7f, 0x75, @generic=0x52cc}, @t={0x6, 0x5, 0x3, 0x1}], 0x20)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:22 executing program 0:
socketpair(0x29, 0x0, 0x67bb, &(0x7f0000000040))
socketpair(0x3, 0xa, 0x7fffffd, 0x0)

[  809.903122] FAULT_INJECTION: forcing a failure.
[  809.903122] name failslab, interval 1, probability 0, space 0, times 0
[  809.936935] BFS-fs: bfs_fill_super(): No BFS filesystem on loop4 (magic=2f6635e6)
[  809.966571] CPU: 0 PID: 20609 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  809.974485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  809.983843] Call Trace:
[  809.986441]  dump_stack+0x1b2/0x281
[  809.990080]  should_fail.cold+0x10a/0x149
[  809.994246]  should_failslab+0xd6/0x130
[  809.998316]  kmem_cache_alloc+0x28e/0x3c0
[  810.002476]  __d_alloc+0x2a/0xa20
[  810.005945]  ? lock_downgrade+0x740/0x740
[  810.010109]  __shmem_file_setup.part.0+0xcb/0x3c0
[  810.014961]  ? shmem_create+0x30/0x30
[  810.018784]  ? __alloc_fd+0x1be/0x490
[  810.022597]  SyS_memfd_create+0x1fc/0x3c0
[  810.026752]  ? shmem_fcntl+0x120/0x120
[  810.030648]  ? __do_page_fault+0x159/0xad0
[  810.034896]  ? do_syscall_64+0x4c/0x640
[  810.038884]  ? shmem_fcntl+0x120/0x120
[  810.042789]  do_syscall_64+0x1d5/0x640
[  810.046696]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  810.051888] RIP: 0033:0x7fcd83ff3109
[  810.055603] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
20:49:22 executing program 0:
socketpair(0x3, 0xa, 0x7fffffd, 0x0)

20:49:22 executing program 3:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700))

20:49:22 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
setsockopt$ax25_int(0xffffffffffffffff, 0x101, 0xa, &(0x7f0000000040)=0x200, 0x4)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:22 executing program 4:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:22 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 3)

[  810.063320] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff3109
[  810.070596] RDX: 00007fcd82967fe0 RSI: 0000000000000000 RDI: 00007fcd8404c1be
[  810.077871] RBP: 0000000000000000 R08: 00007fcd82967fd8 R09: 00007fcd829681d0
[  810.085154] R10: 00007fcd82967fdc R11: 0000000000000246 R12: 0000000020000080
[  810.092427] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
20:49:22 executing program 0:
socketpair(0x0, 0xa, 0x7fffffd, 0x0)

20:49:22 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:22 executing program 5:
socketpair(0x26, 0x0, 0x0, 0x0)

20:49:22 executing program 5:
socketpair(0x26, 0x0, 0x0, 0x0)

20:49:22 executing program 1:
socket$key(0xf, 0x3, 0x2)
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

[  810.213383] FAULT_INJECTION: forcing a failure.
[  810.213383] name failslab, interval 1, probability 0, space 0, times 0
[  810.233719] CPU: 0 PID: 20645 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  810.241634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  810.250990] Call Trace:
[  810.253586]  dump_stack+0x1b2/0x281
[  810.257229]  should_fail.cold+0x10a/0x149
20:49:22 executing program 0:
socketpair(0x0, 0xa, 0x7fffffd, 0x0)

[  810.261388]  should_failslab+0xd6/0x130
[  810.265374]  kmem_cache_alloc+0x28e/0x3c0
[  810.269536]  ? shmem_destroy_callback+0xa0/0xa0
[  810.274194]  shmem_alloc_inode+0x18/0x40
[  810.278238]  ? shmem_destroy_callback+0xa0/0xa0
[  810.282887]  alloc_inode+0x5d/0x170
[  810.286511]  new_inode+0x1d/0xf0
[  810.289862]  shmem_get_inode+0x8b/0x890
[  810.293823]  __shmem_file_setup.part.0+0x104/0x3c0
[  810.298731]  ? shmem_create+0x30/0x30
[  810.302509]  ? __alloc_fd+0x1be/0x490
[  810.306291]  SyS_memfd_create+0x1fc/0x3c0
[  810.310416]  ? shmem_fcntl+0x120/0x120
[  810.314282]  ? __do_page_fault+0x159/0xad0
[  810.318512]  ? do_syscall_64+0x4c/0x640
[  810.322473]  ? shmem_fcntl+0x120/0x120
[  810.326339]  do_syscall_64+0x1d5/0x640
[  810.330216]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  810.335409] RIP: 0033:0x7fcd83ff3109
[  810.339106] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  810.346802] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff3109
[  810.354054] RDX: 00007fcd82967fe0 RSI: 0000000000000000 RDI: 00007fcd8404c1be
20:49:22 executing program 5:
socketpair(0x26, 0x0, 0x0, 0x0)

20:49:22 executing program 4:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  810.361303] RBP: 0000000000000000 R08: 00007fcd82967fd8 R09: 00007fcd829681d0
[  810.368550] R10: 00007fcd82967fdc R11: 0000000000000246 R12: 0000000020000080
[  810.375814] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
20:49:22 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 4)

20:49:22 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:22 executing program 0:
socketpair(0x0, 0xa, 0x7fffffd, 0x0)

20:49:22 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:22 executing program 3:
socketpair(0x0, 0xa, 0x7fffffd, 0x0)

20:49:22 executing program 5:
socketpair(0x26, 0x0, 0x0, 0x0)

20:49:22 executing program 5:
socketpair(0x0, 0x5, 0x0, 0x0)

[  810.482335] FAULT_INJECTION: forcing a failure.
[  810.482335] name failslab, interval 1, probability 0, space 0, times 0
[  810.499726] CPU: 0 PID: 20674 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  810.507634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  810.516983] Call Trace:
[  810.519576]  dump_stack+0x1b2/0x281
[  810.523211]  should_fail.cold+0x10a/0x149
[  810.527381]  should_failslab+0xd6/0x130
[  810.531373]  kmem_cache_alloc+0x28e/0x3c0
[  810.535522]  get_empty_filp+0x86/0x3f0
[  810.539408]  alloc_file+0x23/0x440
[  810.542929]  __shmem_file_setup.part.0+0x198/0x3c0
[  810.547860]  ? shmem_create+0x30/0x30
[  810.551642]  ? __alloc_fd+0x1be/0x490
[  810.555541]  SyS_memfd_create+0x1fc/0x3c0
[  810.559678]  ? shmem_fcntl+0x120/0x120
[  810.563560]  ? __do_page_fault+0x159/0xad0
[  810.567780]  ? do_syscall_64+0x4c/0x640
[  810.571852]  ? shmem_fcntl+0x120/0x120
[  810.575750]  do_syscall_64+0x1d5/0x640
20:49:23 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:23 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 1)

20:49:23 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 5)

[  810.579645]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  810.584817] RIP: 0033:0x7fcd83ff3109
[  810.588512] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  810.596209] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff3109
[  810.603471] RDX: 00007fcd82967fe0 RSI: 0000000000000000 RDI: 00007fcd8404c1be
[  810.610722] RBP: 0000000000000000 R08: 00007fcd82967fd8 R09: 00007fcd829681d0
[  810.618027] R10: 00007fcd82967fdc R11: 0000000000000246 R12: 0000000020000080
[  810.625340] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
20:49:23 executing program 4:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:23 executing program 0:
socketpair(0x3, 0x0, 0x0, 0x0)

[  810.691924] FAULT_INJECTION: forcing a failure.
[  810.691924] name failslab, interval 1, probability 0, space 0, times 0
[  810.693868] FAULT_INJECTION: forcing a failure.
[  810.693868] name failslab, interval 1, probability 0, space 0, times 0
[  810.713500] CPU: 0 PID: 20692 Comm: syz-executor.3 Not tainted 4.14.286-syzkaller #0
[  810.722395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  810.731750] Call Trace:
[  810.734346]  dump_stack+0x1b2/0x281
[  810.737984]  should_fail.cold+0x10a/0x149
[  810.742143]  should_failslab+0xd6/0x130
[  810.746124]  kmem_cache_alloc+0x28e/0x3c0
[  810.750276]  ? sock_destroy_inode+0x60/0x60
[  810.754601]  sock_alloc_inode+0x19/0x250
[  810.758665]  ? sock_destroy_inode+0x60/0x60
[  810.762988]  alloc_inode+0x5d/0x170
[  810.766612]  new_inode_pseudo+0x14/0xe0
[  810.770584]  sock_alloc+0x3c/0x270
[  810.774124]  __sock_create+0x8a/0x620
[  810.777921]  ? wait_for_completion_io+0x10/0x10
[  810.782582]  SyS_socketpair+0xdf/0x480
[  810.786474]  ? SyS_socket+0x1b0/0x1b0
[  810.790277]  ? SyS_read+0x210/0x210
[  810.793899]  ? __do_page_fault+0x159/0xad0
[  810.798127]  ? do_syscall_64+0x4c/0x640
[  810.802123]  ? SyS_socket+0x1b0/0x1b0
[  810.805932]  do_syscall_64+0x1d5/0x640
[  810.809842]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  810.815032] RIP: 0033:0x7f789eba2109
[  810.818739] RSP: 002b:00007f789d517168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  810.826440] RAX: ffffffffffffffda RBX: 00007f789ecb4f60 RCX: 00007f789eba2109
[  810.833701] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
20:49:23 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

20:49:23 executing program 5:
syz_mount_image$bfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:23 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0xfffe, @broadcast, 'bond_slave_0\x00'}})

[  810.841232] RBP: 00007f789d5171d0 R08: 0000000000000000 R09: 0000000000000000
[  810.848503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  810.855772] R13: 00007ffdea704dbf R14: 00007f789d517300 R15: 0000000000022000
[  810.894984] CPU: 1 PID: 20695 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  810.902986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  810.912341] Call Trace:
[  810.914930]  dump_stack+0x1b2/0x281
[  810.918560]  should_fail.cold+0x10a/0x149
[  810.922714]  should_failslab+0xd6/0x130
[  810.926690]  kmem_cache_alloc_trace+0x29a/0x3d0
[  810.931368]  apparmor_file_alloc_security+0x129/0x800
[  810.936568]  security_file_alloc+0x66/0xa0
[  810.940804]  ? selinux_is_enabled+0x5/0x50
20:49:23 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:23 executing program 0:
socketpair(0x3, 0x0, 0x0, 0x0)

20:49:23 executing program 0:
socketpair(0x3, 0x0, 0x0, 0x0)

[  810.945040]  get_empty_filp+0x16b/0x3f0
[  810.949012]  alloc_file+0x23/0x440
[  810.952551]  __shmem_file_setup.part.0+0x198/0x3c0
[  810.957482]  ? shmem_create+0x30/0x30
[  810.961284]  ? __alloc_fd+0x1be/0x490
[  810.965131]  SyS_memfd_create+0x1fc/0x3c0
[  810.969285]  ? shmem_fcntl+0x120/0x120
[  810.973177]  ? __do_page_fault+0x159/0xad0
[  810.977411]  ? do_syscall_64+0x4c/0x640
[  810.981381]  ? shmem_fcntl+0x120/0x120
[  810.985269]  do_syscall_64+0x1d5/0x640
[  810.989176]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  810.994362] RIP: 0033:0x7fcd83ff3109
[  810.998066] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  811.001307] socket: no more sockets
[  811.005767] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff3109
[  811.005774] RDX: 00007fcd82967fe0 RSI: 0000000000000000 RDI: 00007fcd8404c1be
[  811.005780] RBP: 0000000000000000 R08: 00007fcd82967fd8 R09: 00007fcd829681d0
[  811.005786] R10: 00007fcd82967fdc R11: 0000000000000246 R12: 0000000020000080
20:49:23 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (fail_nth: 1)

20:49:23 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (fail_nth: 1)

[  811.005790] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
[  811.088258] FAULT_INJECTION: forcing a failure.
[  811.088258] name failslab, interval 1, probability 0, space 0, times 0
[  811.103592] CPU: 0 PID: 20730 Comm: syz-executor.0 Not tainted 4.14.286-syzkaller #0
[  811.111496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  811.120884] Call Trace:
[  811.123462]  dump_stack+0x1b2/0x281
[  811.127071]  should_fail.cold+0x10a/0x149
[  811.131216]  should_failslab+0xd6/0x130
[  811.135169]  kmem_cache_alloc+0x28e/0x3c0
[  811.139301]  ? sock_destroy_inode+0x60/0x60
[  811.143622]  sock_alloc_inode+0x19/0x250
[  811.147661]  ? sock_destroy_inode+0x60/0x60
[  811.151961]  alloc_inode+0x5d/0x170
[  811.155583]  new_inode_pseudo+0x14/0xe0
[  811.159548]  sock_alloc+0x3c/0x270
[  811.163072]  __sock_create+0x8a/0x620
[  811.166875]  ? wait_for_completion_io+0x10/0x10
[  811.171547]  SyS_socketpair+0xdf/0x480
[  811.175427]  ? SyS_socket+0x1b0/0x1b0
[  811.179207]  ? SyS_read+0x210/0x210
[  811.182811]  ? __do_page_fault+0x159/0xad0
[  811.187025]  ? do_syscall_64+0x4c/0x640
[  811.190975]  ? SyS_socket+0x1b0/0x1b0
[  811.194771]  do_syscall_64+0x1d5/0x640
[  811.198742]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  811.203910] RIP: 0033:0x7fbf2b62c109
[  811.207603] RSP: 002b:00007fbf29fa1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  811.215288] RAX: ffffffffffffffda RBX: 00007fbf2b73ef60 RCX: 00007fbf2b62c109
[  811.222537] RDX: 0000000007fffffd RSI: 0000000000000000 RDI: 0000000000000003
[  811.229805] RBP: 00007fbf29fa11d0 R08: 0000000000000000 R09: 0000000000000000
20:49:23 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 2)

20:49:23 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:23 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 1)

20:49:23 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000000))
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/crypto\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)=[0x6c6, 0xff, 0x5f, 0x1, 0x1, 0x7, 0x5, 0x401], 0x8, 0x3, 0x2})
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)

20:49:23 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 6)

[  811.237054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  811.244302] R13: 00007ffcb147860f R14: 00007fbf29fa1300 R15: 0000000000022000
[  811.270063] socket: no more sockets
20:49:23 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (fail_nth: 2)

[  811.301155] FAULT_INJECTION: forcing a failure.
[  811.301155] name failslab, interval 1, probability 0, space 0, times 0
[  811.320409] CPU: 0 PID: 20742 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  811.321310] FAULT_INJECTION: forcing a failure.
[  811.321310] name failslab, interval 1, probability 0, space 0, times 0
[  811.328326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  811.328332] Call Trace:
[  811.328351]  dump_stack+0x1b2/0x281
[  811.328363]  should_fail.cold+0x10a/0x149
[  811.328377]  should_failslab+0xd6/0x130
[  811.328388]  __kmalloc+0x2c1/0x400
[  811.328397]  ? SyS_memfd_create+0xbc/0x3c0
[  811.328410]  SyS_memfd_create+0xbc/0x3c0
[  811.328420]  ? shmem_fcntl+0x120/0x120
[  811.328429]  ? __do_page_fault+0x159/0xad0
[  811.328437]  ? do_syscall_64+0x4c/0x640
[  811.328444]  ? shmem_fcntl+0x120/0x120
[  811.328454]  do_syscall_64+0x1d5/0x640
[  811.328468]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  811.328475] RIP: 0033:0x7f6b8cbe4109
[  811.328481] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  811.328491] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe4109
[  811.328496] RDX: 00007f6b8b558fe0 RSI: 0000000000000000 RDI: 00007f6b8cc3d1be
[  811.328502] RBP: 0000000000000000 R08: 00007f6b8b558fd8 R09: 00007f6b8b5591d0
[  811.328508] R10: 00007f6b8b558fdc R11: 0000000000000246 R12: 0000000020000080
[  811.328514] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
20:49:23 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000000))
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/crypto\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)=[0x6c6, 0xff, 0x5f, 0x1, 0x1, 0x7, 0x5, 0x401], 0x8, 0x3, 0x2})
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000000)) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/crypto\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)=[0x6c6, 0xff, 0x5f, 0x1, 0x1, 0x7, 0x5, 0x401], 0x8, 0x3, 0x2}) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0) (async)

20:49:23 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  811.341864] FAULT_INJECTION: forcing a failure.
[  811.341864] name failslab, interval 1, probability 0, space 0, times 0
[  811.456609] CPU: 1 PID: 20743 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  811.467722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  811.477078] Call Trace:
[  811.479675]  dump_stack+0x1b2/0x281
[  811.483318]  should_fail.cold+0x10a/0x149
[  811.487477]  should_failslab+0xd6/0x130
[  811.491463]  kmem_cache_alloc+0x28e/0x3c0
[  811.495628]  getname_flags+0xc8/0x550
20:49:23 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000000))
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/crypto\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)=[0x6c6, 0xff, 0x5f, 0x1, 0x1, 0x7, 0x5, 0x401], 0x8, 0x3, 0x2})
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)

[  811.499441]  do_sys_open+0x1ce/0x410
[  811.503167]  ? filp_open+0x60/0x60
[  811.506720]  ? do_syscall_64+0x4c/0x640
[  811.510787]  ? SyS_open+0x30/0x30
[  811.514250]  do_syscall_64+0x1d5/0x640
[  811.518181]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  811.523382] RIP: 0033:0x7fcd83fa6024
[  811.527092] RSP: 002b:00007fcd82967eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  811.534893] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83fa6024
[  811.542169] RDX: 0000000000000002 RSI: 00007fcd82967fe0 RDI: 00000000ffffff9c
20:49:23 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 2)

[  811.549464] RBP: 00007fcd82967fe0 R08: 0000000000000000 R09: 00007fcd829681d0
[  811.557014] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  811.564284] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  811.580886] CPU: 0 PID: 20745 Comm: syz-executor.3 Not tainted 4.14.286-syzkaller #0
[  811.588800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  811.598161] Call Trace:
[  811.600768]  dump_stack+0x1b2/0x281
[  811.604411]  should_fail.cold+0x10a/0x149
[  811.608575]  should_failslab+0xd6/0x130
[  811.612557]  kmem_cache_alloc_trace+0x29a/0x3d0
[  811.612848] FAULT_INJECTION: forcing a failure.
[  811.612848] name failslab, interval 1, probability 0, space 0, times 0
[  811.617237]  ? kmem_cache_alloc+0x35f/0x3c0
[  811.617250]  sock_alloc_inode+0x5f/0x250
[  811.617261]  ? sock_destroy_inode+0x60/0x60
[  811.617270]  alloc_inode+0x5d/0x170
[  811.617285]  new_inode_pseudo+0x14/0xe0
[  811.649026]  sock_alloc+0x3c/0x270
[  811.652578]  __sock_create+0x8a/0x620
[  811.656397]  ? wait_for_completion_io+0x10/0x10
[  811.661074]  SyS_socketpair+0xdf/0x480
[  811.664972]  ? SyS_socket+0x1b0/0x1b0
[  811.668778]  ? SyS_read+0x210/0x210
[  811.672409]  ? __do_page_fault+0x159/0xad0
[  811.676654]  ? do_syscall_64+0x4c/0x640
[  811.680634]  ? SyS_socket+0x1b0/0x1b0
[  811.684445]  do_syscall_64+0x1d5/0x640
[  811.688345]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  811.693537] RIP: 0033:0x7f789eba2109
[  811.697257] RSP: 002b:00007f789d517168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  811.704970] RAX: ffffffffffffffda RBX: 00007f789ecb4f60 RCX: 00007f789eba2109
[  811.712248] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  811.719520] RBP: 00007f789d5171d0 R08: 0000000000000000 R09: 0000000000000000
[  811.726799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  811.734070] R13: 00007ffdea704dbf R14: 00007f789d517300 R15: 0000000000022000
[  811.747351] CPU: 1 PID: 20767 Comm: syz-executor.0 Not tainted 4.14.286-syzkaller #0
[  811.755254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  811.764605] Call Trace:
[  811.767196]  dump_stack+0x1b2/0x281
[  811.770831]  should_fail.cold+0x10a/0x149
[  811.773733] FAULT_INJECTION: forcing a failure.
[  811.773733] name failslab, interval 1, probability 0, space 0, times 0
[  811.774983]  should_failslab+0xd6/0x130
[  811.774998]  kmem_cache_alloc_trace+0x29a/0x3d0
[  811.775006]  ? kmem_cache_alloc+0x35f/0x3c0
[  811.775016]  sock_alloc_inode+0x5f/0x250
[  811.775026]  ? sock_destroy_inode+0x60/0x60
[  811.775035]  alloc_inode+0x5d/0x170
[  811.775044]  new_inode_pseudo+0x14/0xe0
[  811.775053]  sock_alloc+0x3c/0x270
[  811.775067]  __sock_create+0x8a/0x620
[  811.822496]  ? wait_for_completion_io+0x10/0x10
[  811.827157]  SyS_socketpair+0xdf/0x480
[  811.831033]  ? SyS_socket+0x1b0/0x1b0
[  811.834822]  ? SyS_read+0x210/0x210
[  811.838432]  ? __do_page_fault+0x159/0xad0
[  811.842674]  ? do_syscall_64+0x4c/0x640
[  811.846634]  ? SyS_socket+0x1b0/0x1b0
[  811.850423]  do_syscall_64+0x1d5/0x640
[  811.854297]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  811.859467] RIP: 0033:0x7fbf2b62c109
[  811.863159] RSP: 002b:00007fbf29fa1168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  811.870849] RAX: ffffffffffffffda RBX: 00007fbf2b73ef60 RCX: 00007fbf2b62c109
[  811.878110] RDX: 0000000007fffffd RSI: 0000000000000000 RDI: 0000000000000003
[  811.885383] RBP: 00007fbf29fa11d0 R08: 0000000000000000 R09: 0000000000000000
[  811.892652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
20:49:24 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r1, 0x7, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1000, 0x4, &(0x7f0000000340)=[{&(0x7f0000000080)="dddfa311d78bd53e687a35793438b6290ff6e3abe5f713296f5a893f382f4cdcd7a1286eeff7c863a6f5b7e469ddfe326101171efd9123e15580d6eed06e99a7f29bb84d4ed2e4b8ffa693ab250b3080cb8725e0334b5c7795405a1ce18bb11f9135d2c1009407231287d13dfef3e6c6b17e73d0e07d01b266b01589e362aa6f139b0a411c51e1aa6138b265a03d0878be49c5c253c8bc8fd0d7c6f5d828fdc8ed349d09644d66ac17ae4b6f0c0a8a33af678a62da8183df5ad28d21aa22db65935520343e977f7932a924ff80f1e5c01de6d10b510b27e1b8a3a35cefe0ac35f0ae984a2f4f56c296", 0xe9, 0x8}, {&(0x7f0000000180)="dace5a6ba4f6fd855bfebb1c7eb8f172fce2ca66a89a3cba80661789a922d3a0cefc868b40123a95543cb29b39fc31bb017eb52b9480e04fa8b6d2da2ba85eff691ca081", 0x44, 0x10000009}, {&(0x7f0000000200)="b4bebc82c949a65690cb78a85fc3da2c899e39af7247c9ebe22ff0a18bc90ab066bf23de87d7c2c7b8df87d5f315d317170cf444bc7ec75f44b581c5028d675e1c01a113bcf4350f04129326da8c63217b9aa7c4afb5f74cf0936f29aaaa3d8df36bebdfd6f283327f80da0d8646158f31c438f3be8d85d589b9188da3b4ac53ed8528717bcec66135b2fbc95e03828895de6be80de820f653452b10cea611defd4012de8723267016a7cd34cd45a909a8f13099a7888dff8357b680a7fcacb1ecb41e37a90d079de1", 0xc9, 0x6}, {&(0x7f0000000300)="f4", 0x1, 0x100}], 0x22, &(0x7f00000003c0)=ANY=[])
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r1, 0x7, r2, &(0x7f0000000440)={r3, r4, 0x5})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:24 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), 0x0, 0x0, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="60c3d1fab691c46dd7e012b9e43db810f04d743d3ad9f91a9d7cc3101f7cffe0ba703fab23b96e18e28ae88b2d16dfcf1048628b6f03bb0f44d9908638485b74557ff58bb941743765d77431880bb4cc333ce9bd6f721fc73d34eea3aee3a78b4685ad2d3f58e151377e9d96c01de525d6df0ef7b30bde93a9f64371b4a54be9cffcf8e9", 0x84, 0x7fff}, {&(0x7f00000001c0)="e635662f41", 0x5}, {&(0x7f0000000200)="192ac5cb2e9a9441d9b9f8b0675ed2a9535fb73ece6bab8de1f921dcaa06cbd8d10a09785f1d1e30cb3cc7ccbe7c60d166d1762d93eddf94b3bb12249e57464a01421bf2d66f9d7152fab695f27aed62ca409e5425af66c0f85d44bcd0efa10222b0313545ad9ba6d4c8af887699a46c7c5c0173bc00607138bd9b4aa14f4c55ce4333a2651017075bddbb37b1d59de06c004ce4ac", 0x95, 0x4}], 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  811.899926] R13: 00007ffcb147860f R14: 00007fbf29fa1300 R15: 0000000000022000
[  811.917887] print_req_error: I/O error, dev loop4, sector 0
[  811.942082] CPU: 0 PID: 20770 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  811.949996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  811.955888] socket: no more sockets
[  811.959343] Call Trace:
[  811.959359]  dump_stack+0x1b2/0x281
[  811.959373]  should_fail.cold+0x10a/0x149
[  811.959386]  should_failslab+0xd6/0x130
[  811.977293]  kmem_cache_alloc+0x28e/0x3c0
[  811.981448]  __d_alloc+0x2a/0xa20
[  811.984899]  ? lock_downgrade+0x740/0x740
[  811.989042]  __shmem_file_setup.part.0+0xcb/0x3c0
[  811.993867]  ? shmem_create+0x30/0x30
[  811.997649]  ? __alloc_fd+0x1be/0x490
[  812.001437]  SyS_memfd_create+0x1fc/0x3c0
[  812.005567]  ? shmem_fcntl+0x120/0x120
[  812.009436]  ? __do_page_fault+0x159/0xad0
[  812.013651]  ? do_syscall_64+0x4c/0x640
[  812.017624]  ? shmem_fcntl+0x120/0x120
[  812.021494]  do_syscall_64+0x1d5/0x640
[  812.025370]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  812.030552] RIP: 0033:0x7f6b8cbe4109
[  812.034503] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  812.042207] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe4109
[  812.049456] RDX: 00007f6b8b558fe0 RSI: 0000000000000000 RDI: 00007f6b8cc3d1be
[  812.056711] RBP: 0000000000000000 R08: 00007f6b8b558fd8 R09: 00007f6b8b5591d0
[  812.063975] R10: 00007f6b8b558fdc R11: 0000000000000246 R12: 0000000020000080
[  812.071227] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
20:49:24 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 3)

20:49:24 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 7)

20:49:24 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (fail_nth: 3)

20:49:24 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:24 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r1, 0x7, 0xffffffffffffffff, 0x0) (async)
r2 = syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1000, 0x4, &(0x7f0000000340)=[{&(0x7f0000000080)="dddfa311d78bd53e687a35793438b6290ff6e3abe5f713296f5a893f382f4cdcd7a1286eeff7c863a6f5b7e469ddfe326101171efd9123e15580d6eed06e99a7f29bb84d4ed2e4b8ffa693ab250b3080cb8725e0334b5c7795405a1ce18bb11f9135d2c1009407231287d13dfef3e6c6b17e73d0e07d01b266b01589e362aa6f139b0a411c51e1aa6138b265a03d0878be49c5c253c8bc8fd0d7c6f5d828fdc8ed349d09644d66ac17ae4b6f0c0a8a33af678a62da8183df5ad28d21aa22db65935520343e977f7932a924ff80f1e5c01de6d10b510b27e1b8a3a35cefe0ac35f0ae984a2f4f56c296", 0xe9, 0x8}, {&(0x7f0000000180)="dace5a6ba4f6fd855bfebb1c7eb8f172fce2ca66a89a3cba80661789a922d3a0cefc868b40123a95543cb29b39fc31bb017eb52b9480e04fa8b6d2da2ba85eff691ca081", 0x44, 0x10000009}, {&(0x7f0000000200)="b4bebc82c949a65690cb78a85fc3da2c899e39af7247c9ebe22ff0a18bc90ab066bf23de87d7c2c7b8df87d5f315d317170cf444bc7ec75f44b581c5028d675e1c01a113bcf4350f04129326da8c63217b9aa7c4afb5f74cf0936f29aaaa3d8df36bebdfd6f283327f80da0d8646158f31c438f3be8d85d589b9188da3b4ac53ed8528717bcec66135b2fbc95e03828895de6be80de820f653452b10cea611defd4012de8723267016a7cd34cd45a909a8f13099a7888dff8357b680a7fcacb1ecb41e37a90d079de1", 0xc9, 0x6}, {&(0x7f0000000300)="f4", 0x1, 0x100}], 0x22, &(0x7f00000003c0)=ANY=[]) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
r4 = socket$pppoe(0x18, 0x1, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r1, 0x7, r2, &(0x7f0000000440)={r3, r4, 0x5}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  812.142432] socket: no more sockets
20:49:24 executing program 0:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0xf1f953e90447e280, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

[  812.197261] FAULT_INJECTION: forcing a failure.
[  812.197261] name failslab, interval 1, probability 0, space 0, times 0
[  812.208760] FAULT_INJECTION: forcing a failure.
[  812.208760] name failslab, interval 1, probability 0, space 0, times 0
[  812.228744] CPU: 1 PID: 20793 Comm: syz-executor.3 Not tainted 4.14.286-syzkaller #0
[  812.236653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  812.246011] Call Trace:
[  812.248600]  dump_stack+0x1b2/0x281
[  812.252226]  should_fail.cold+0x10a/0x149
[  812.256384]  should_failslab+0xd6/0x130
[  812.260360]  __kmalloc+0x2c1/0x400
[  812.263900]  ? sk_prot_alloc+0x1ba/0x290
[  812.267971]  sk_prot_alloc+0x1ba/0x290
[  812.271866]  sk_alloc+0x36/0xcd0
[  812.275230]  ? lock_downgrade+0x740/0x740
[  812.279373]  alg_create+0x7d/0x160
[  812.282916]  __sock_create+0x303/0x620
[  812.286801]  SyS_socketpair+0xdf/0x480
[  812.290692]  ? SyS_socket+0x1b0/0x1b0
[  812.294493]  ? SyS_read+0x210/0x210
[  812.298121]  ? __do_page_fault+0x159/0xad0
[  812.302384]  ? do_syscall_64+0x4c/0x640
[  812.306351]  ? SyS_socket+0x1b0/0x1b0
[  812.310325]  do_syscall_64+0x1d5/0x640
[  812.314218]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  812.319405] RIP: 0033:0x7f789eba2109
[  812.323114] RSP: 002b:00007f789d517168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  812.330824] RAX: ffffffffffffffda RBX: 00007f789ecb4f60 RCX: 00007f789eba2109
[  812.338088] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  812.345347] RBP: 00007f789d5171d0 R08: 0000000000000000 R09: 0000000000000000
[  812.352602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  812.359864] R13: 00007ffdea704dbf R14: 00007f789d517300 R15: 0000000000022000
[  812.367138] CPU: 0 PID: 20792 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  812.375030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  812.384383] Call Trace:
[  812.386975]  dump_stack+0x1b2/0x281
[  812.390620]  should_fail.cold+0x10a/0x149
[  812.394784]  should_failslab+0xd6/0x130
[  812.398774]  kmem_cache_alloc+0x28e/0x3c0
[  812.402933]  get_empty_filp+0x86/0x3f0
[  812.406828]  path_openat+0x84/0x2970
[  812.410558]  ? path_lookupat+0x780/0x780
[  812.414625]  ? trace_hardirqs_on+0x10/0x10
[  812.418867]  ? fsnotify+0x974/0x11b0
[  812.422587]  ? shmem_setattr+0x241/0xbf0
[  812.426700]  do_filp_open+0x179/0x3c0
[  812.430504]  ? may_open_dev+0xe0/0xe0
[  812.434315]  ? __alloc_fd+0x1be/0x490
[  812.438131]  ? lock_downgrade+0x740/0x740
[  812.442287]  ? do_raw_spin_unlock+0x164/0x220
[  812.446792]  ? _raw_spin_unlock+0x29/0x40
[  812.450948]  ? __alloc_fd+0x1be/0x490
[  812.454761]  do_sys_open+0x296/0x410
[  812.458485]  ? filp_open+0x60/0x60
[  812.462034]  ? do_syscall_64+0x4c/0x640
[  812.466010]  ? SyS_open+0x30/0x30
[  812.469472]  do_syscall_64+0x1d5/0x640
[  812.473371]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  812.478562] RIP: 0033:0x7fcd83fa6024
[  812.482276] RSP: 002b:00007fcd82967eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  812.489987] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83fa6024
20:49:24 executing program 0:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0) (async, rerun: 32)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]}) (rerun: 32)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000}) (async)
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]}) (async)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0xf1f953e90447e280, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

20:49:24 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 3)

20:49:24 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:24 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 4)

[  812.497261] RDX: 0000000000000002 RSI: 00007fcd82967fe0 RDI: 00000000ffffff9c
[  812.504535] RBP: 00007fcd82967fe0 R08: 0000000000000000 R09: 00007fcd829681d0
[  812.511811] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  812.519085] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:25 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r1, 0x7, 0xffffffffffffffff, 0x0)
r2 = syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1000, 0x4, &(0x7f0000000340)=[{&(0x7f0000000080)="dddfa311d78bd53e687a35793438b6290ff6e3abe5f713296f5a893f382f4cdcd7a1286eeff7c863a6f5b7e469ddfe326101171efd9123e15580d6eed06e99a7f29bb84d4ed2e4b8ffa693ab250b3080cb8725e0334b5c7795405a1ce18bb11f9135d2c1009407231287d13dfef3e6c6b17e73d0e07d01b266b01589e362aa6f139b0a411c51e1aa6138b265a03d0878be49c5c253c8bc8fd0d7c6f5d828fdc8ed349d09644d66ac17ae4b6f0c0a8a33af678a62da8183df5ad28d21aa22db65935520343e977f7932a924ff80f1e5c01de6d10b510b27e1b8a3a35cefe0ac35f0ae984a2f4f56c296", 0xe9, 0x8}, {&(0x7f0000000180)="dace5a6ba4f6fd855bfebb1c7eb8f172fce2ca66a89a3cba80661789a922d3a0cefc868b40123a95543cb29b39fc31bb017eb52b9480e04fa8b6d2da2ba85eff691ca081", 0x44, 0x10000009}, {&(0x7f0000000200)="b4bebc82c949a65690cb78a85fc3da2c899e39af7247c9ebe22ff0a18bc90ab066bf23de87d7c2c7b8df87d5f315d317170cf444bc7ec75f44b581c5028d675e1c01a113bcf4350f04129326da8c63217b9aa7c4afb5f74cf0936f29aaaa3d8df36bebdfd6f283327f80da0d8646158f31c438f3be8d85d589b9188da3b4ac53ed8528717bcec66135b2fbc95e03828895de6be80de820f653452b10cea611defd4012de8723267016a7cd34cd45a909a8f13099a7888dff8357b680a7fcacb1ecb41e37a90d079de1", 0xc9, 0x6}, {&(0x7f0000000300)="f4", 0x1, 0x100}], 0x22, &(0x7f00000003c0)=ANY=[])
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
r4 = socket$pppoe(0x18, 0x1, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r1, 0x7, r2, &(0x7f0000000440)={r3, r4, 0x5})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
getpgid(0x0) (async)
kcmp$KCMP_EPOLL_TFD(0x0, r1, 0x7, 0xffffffffffffffff, 0x0) (async)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1000, 0x4, &(0x7f0000000340)=[{&(0x7f0000000080)="dddfa311d78bd53e687a35793438b6290ff6e3abe5f713296f5a893f382f4cdcd7a1286eeff7c863a6f5b7e469ddfe326101171efd9123e15580d6eed06e99a7f29bb84d4ed2e4b8ffa693ab250b3080cb8725e0334b5c7795405a1ce18bb11f9135d2c1009407231287d13dfef3e6c6b17e73d0e07d01b266b01589e362aa6f139b0a411c51e1aa6138b265a03d0878be49c5c253c8bc8fd0d7c6f5d828fdc8ed349d09644d66ac17ae4b6f0c0a8a33af678a62da8183df5ad28d21aa22db65935520343e977f7932a924ff80f1e5c01de6d10b510b27e1b8a3a35cefe0ac35f0ae984a2f4f56c296", 0xe9, 0x8}, {&(0x7f0000000180)="dace5a6ba4f6fd855bfebb1c7eb8f172fce2ca66a89a3cba80661789a922d3a0cefc868b40123a95543cb29b39fc31bb017eb52b9480e04fa8b6d2da2ba85eff691ca081", 0x44, 0x10000009}, {&(0x7f0000000200)="b4bebc82c949a65690cb78a85fc3da2c899e39af7247c9ebe22ff0a18bc90ab066bf23de87d7c2c7b8df87d5f315d317170cf444bc7ec75f44b581c5028d675e1c01a113bcf4350f04129326da8c63217b9aa7c4afb5f74cf0936f29aaaa3d8df36bebdfd6f283327f80da0d8646158f31c438f3be8d85d589b9188da3b4ac53ed8528717bcec66135b2fbc95e03828895de6be80de820f653452b10cea611defd4012de8723267016a7cd34cd45a909a8f13099a7888dff8357b680a7fcacb1ecb41e37a90d079de1", 0xc9, 0x6}, {&(0x7f0000000300)="f4", 0x1, 0x100}], 0x22, &(0x7f00000003c0)=ANY=[]) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r1, 0x7, r2, &(0x7f0000000440)={r3, r4, 0x5}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

20:49:25 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  812.551731] FAULT_INJECTION: forcing a failure.
[  812.551731] name failslab, interval 1, probability 0, space 0, times 0
[  812.613015] CPU: 0 PID: 20811 Comm: syz-executor.3 Not tainted 4.14.286-syzkaller #0
[  812.620931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  812.630286] Call Trace:
[  812.632892]  dump_stack+0x1b2/0x281
[  812.636533]  should_fail.cold+0x10a/0x149
[  812.640699]  ? trace_hardirqs_on+0x10/0x10
[  812.644960]  should_failslab+0xd6/0x130
[  812.648949]  kmem_cache_alloc+0x40/0x3c0
[  812.653026]  __debug_object_init+0x578/0x7a0
[  812.657446]  ? sk_alloc+0x508/0xcd0
[  812.661088]  ? debug_object_destroy+0x240/0x240
[  812.665767]  ? lock_acquire+0x170/0x3f0
[  812.669751]  ? __lockdep_init_map+0x100/0x560
[  812.674255]  init_timer_key+0x2f/0x300
[  812.678163]  sock_init_data+0x66/0xb80
[  812.682077]  alg_create+0xc0/0x160
[  812.685630]  __sock_create+0x303/0x620
[  812.689530]  SyS_socketpair+0xdf/0x480
[  812.693426]  ? SyS_socket+0x1b0/0x1b0
[  812.697238]  ? SyS_read+0x210/0x210
[  812.700874]  ? __do_page_fault+0x159/0xad0
[  812.705210]  ? do_syscall_64+0x4c/0x640
[  812.709190]  ? SyS_socket+0x1b0/0x1b0
[  812.713001]  do_syscall_64+0x1d5/0x640
[  812.716895]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  812.722088] RIP: 0033:0x7f789eba2109
[  812.725798] RSP: 002b:00007f789d517168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  812.733509] RAX: ffffffffffffffda RBX: 00007f789ecb4f60 RCX: 00007f789eba2109
[  812.740782] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  812.748058] RBP: 00007f789d5171d0 R08: 0000000000000000 R09: 0000000000000000
[  812.755331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
20:49:25 executing program 0:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0) (async, rerun: 32)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]}) (async, rerun: 32)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]}) (async, rerun: 64)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0xf1f953e90447e280, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) (rerun: 64)

20:49:25 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 8)

20:49:25 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}, {'-'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  812.762605] R13: 00007ffdea704dbf R14: 00007f789d517300 R15: 0000000000022000
20:49:25 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 5)

20:49:25 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000000)={0x2, 0x9e8, 0xefb, 0x4000})

[  812.826871] FAULT_INJECTION: forcing a failure.
[  812.826871] name failslab, interval 1, probability 0, space 0, times 0
[  812.860738] FAULT_INJECTION: forcing a failure.
[  812.860738] name failslab, interval 1, probability 0, space 0, times 0
20:49:25 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000000)={0x2, 0x9e8, 0xefb, 0x4000})
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000000)={0x2, 0x9e8, 0xefb, 0x4000}) (async)

20:49:25 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, 0x0)

[  812.881942] CPU: 1 PID: 20821 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  812.889855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  812.899385] Call Trace:
[  812.899627] FAULT_INJECTION: forcing a failure.
[  812.899627] name failslab, interval 1, probability 0, space 0, times 0
[  812.901970]  dump_stack+0x1b2/0x281
[  812.901987]  should_fail.cold+0x10a/0x149
[  812.902000]  should_failslab+0xd6/0x130
[  812.902016]  kmem_cache_alloc+0x28e/0x3c0
[  812.929037]  ? shmem_destroy_callback+0xa0/0xa0
[  812.933708]  shmem_alloc_inode+0x18/0x40
[  812.937752]  ? shmem_destroy_callback+0xa0/0xa0
[  812.942513]  alloc_inode+0x5d/0x170
[  812.946128]  new_inode+0x1d/0xf0
[  812.949481]  shmem_get_inode+0x8b/0x890
[  812.953447]  __shmem_file_setup.part.0+0x104/0x3c0
[  812.958363]  ? shmem_create+0x30/0x30
[  812.962147]  ? __alloc_fd+0x1be/0x490
[  812.965944]  SyS_memfd_create+0x1fc/0x3c0
[  812.970077]  ? shmem_fcntl+0x120/0x120
[  812.973949]  ? __do_page_fault+0x159/0xad0
[  812.978177]  ? do_syscall_64+0x4c/0x640
[  812.982147]  ? shmem_fcntl+0x120/0x120
[  812.986029]  do_syscall_64+0x1d5/0x640
[  812.989907]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  812.995081] RIP: 0033:0x7f6b8cbe4109
[  812.998775] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  813.006465] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe4109
[  813.013717] RDX: 00007f6b8b558fe0 RSI: 0000000000000000 RDI: 00007f6b8cc3d1be
[  813.020967] RBP: 0000000000000000 R08: 00007f6b8b558fd8 R09: 00007f6b8b5591d0
[  813.028221] R10: 00007f6b8b558fdc R11: 0000000000000246 R12: 0000000020000080
[  813.035561] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
[  813.042830] CPU: 0 PID: 20844 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  813.050715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  813.060065] Call Trace:
[  813.062645]  dump_stack+0x1b2/0x281
[  813.066266]  should_fail.cold+0x10a/0x149
[  813.070409]  should_failslab+0xd6/0x130
[  813.074368]  kmem_cache_alloc+0x28e/0x3c0
[  813.078499]  get_empty_filp+0x86/0x3f0
[  813.082371]  path_openat+0x84/0x2970
[  813.086076]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  813.090909]  ? path_lookupat+0x780/0x780
[  813.094962]  ? trace_hardirqs_on+0x10/0x10
[  813.099188]  ? fsnotify+0x974/0x11b0
[  813.102892]  ? shmem_setattr+0x241/0xbf0
[  813.106943]  do_filp_open+0x179/0x3c0
[  813.110751]  ? may_open_dev+0xe0/0xe0
[  813.114536]  ? __alloc_fd+0x1be/0x490
[  813.118323]  ? lock_downgrade+0x740/0x740
[  813.122458]  ? do_raw_spin_unlock+0x164/0x220
[  813.126938]  ? _raw_spin_unlock+0x29/0x40
[  813.131071]  ? __alloc_fd+0x1be/0x490
[  813.134866]  do_sys_open+0x296/0x410
[  813.138569]  ? filp_open+0x60/0x60
[  813.142116]  ? do_syscall_64+0x4c/0x640
[  813.146076]  ? SyS_open+0x30/0x30
[  813.149517]  do_syscall_64+0x1d5/0x640
[  813.153404]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  813.158581] RIP: 0033:0x7fcd83fa6024
[  813.162274] RSP: 002b:00007fcd82967eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  813.169971] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83fa6024
[  813.177230] RDX: 0000000000000002 RSI: 00007fcd82967fe0 RDI: 00000000ffffff9c
[  813.184484] RBP: 00007fcd82967fe0 R08: 0000000000000000 R09: 00007fcd829681d0
[  813.191738] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  813.198996] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  813.206269] CPU: 1 PID: 20842 Comm: syz-executor.3 Not tainted 4.14.286-syzkaller #0
[  813.214160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  813.223521] Call Trace:
[  813.226113]  dump_stack+0x1b2/0x281
[  813.229853]  should_fail.cold+0x10a/0x149
[  813.234021]  should_failslab+0xd6/0x130
[  813.238010]  kmem_cache_alloc_trace+0x29a/0x3d0
[  813.242688]  ? kmem_cache_alloc+0x35f/0x3c0
[  813.247020]  sock_alloc_inode+0x5f/0x250
[  813.251184]  ? sock_destroy_inode+0x60/0x60
[  813.255514]  alloc_inode+0x5d/0x170
[  813.259241]  new_inode_pseudo+0x14/0xe0
[  813.263228]  sock_alloc+0x3c/0x270
[  813.266780]  __sock_create+0x8a/0x620
[  813.270605]  SyS_socketpair+0x159/0x480
[  813.274590]  ? SyS_socket+0x1b0/0x1b0
[  813.278409]  ? SyS_read+0x210/0x210
[  813.282047]  ? __do_page_fault+0x159/0xad0
[  813.286292]  ? do_syscall_64+0x4c/0x640
[  813.290274]  ? SyS_socket+0x1b0/0x1b0
[  813.294086]  do_syscall_64+0x1d5/0x640
[  813.297987]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  813.303178] RIP: 0033:0x7f789eba2109
[  813.306896] RSP: 002b:00007f789d517168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  813.314616] RAX: ffffffffffffffda RBX: 00007f789ecb4f60 RCX: 00007f789eba2109
[  813.321886] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
20:49:25 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 4)

20:49:25 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x501040, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
socketpair(0x2, 0x800, 0x9, &(0x7f00000000c0)={<r4=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BACKEND_IDENTIFIER={0x5, 0xa, '*'}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2b}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, ',@\'[\\-(/#'}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6b}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6e3}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '([\xcc'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5b}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4c}, 0xc001)

20:49:25 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, 0x0)

[  813.329169] RBP: 00007f789d5171d0 R08: 0000000000000000 R09: 0000000000000000
[  813.336528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  813.343807] R13: 00007ffdea704dbf R14: 00007f789d517300 R15: 0000000000022000
20:49:25 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000000)={0x2, 0x9e8, 0xefb, 0x4000})

[  813.395812] FAULT_INJECTION: forcing a failure.
[  813.395812] name failslab, interval 1, probability 0, space 0, times 0
[  813.428386] CPU: 1 PID: 20860 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  813.436298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  813.445652] Call Trace:
[  813.448247]  dump_stack+0x1b2/0x281
[  813.451884]  should_fail.cold+0x10a/0x149
[  813.456047]  should_failslab+0xd6/0x130
[  813.460034]  kmem_cache_alloc+0x28e/0x3c0
[  813.464207]  get_empty_filp+0x86/0x3f0
[  813.468104]  alloc_file+0x23/0x440
[  813.471657]  __shmem_file_setup.part.0+0x198/0x3c0
[  813.476598]  ? shmem_create+0x30/0x30
[  813.480404]  ? __alloc_fd+0x1be/0x490
[  813.484220]  SyS_memfd_create+0x1fc/0x3c0
[  813.488380]  ? shmem_fcntl+0x120/0x120
[  813.492278]  ? __do_page_fault+0x159/0xad0
[  813.496520]  ? do_syscall_64+0x4c/0x640
[  813.500504]  ? shmem_fcntl+0x120/0x120
[  813.504400]  do_syscall_64+0x1d5/0x640
[  813.508294]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  813.513485] RIP: 0033:0x7f6b8cbe4109
[  813.517279] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  813.525025] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe4109
[  813.532297] RDX: 00007f6b8b558fe0 RSI: 0000000000000000 RDI: 00007f6b8cc3d1be
20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, 0x0)

20:49:26 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x501040, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
socketpair(0x2, 0x800, 0x9, &(0x7f00000000c0)={<r4=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BACKEND_IDENTIFIER={0x5, 0xa, '*'}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2b}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, ',@\'[\\-(/#'}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6b}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6e3}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '([\xcc'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5b}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4c}, 0xc001)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x501040, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) (async)
socketpair(0x2, 0x800, 0x9, &(0x7f00000000c0)) (async)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BACKEND_IDENTIFIER={0x5, 0xa, '*'}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2b}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, ',@\'[\\-(/#'}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6b}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6e3}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '([\xcc'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5b}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4c}, 0xc001) (async)

[  813.539571] RBP: 0000000000000000 R08: 00007f6b8b558fd8 R09: 00007f6b8b5591d0
[  813.546846] R10: 00007f6b8b558fdc R11: 0000000000000246 R12: 0000000020000080
[  813.554128] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
[  813.581793] socket: no more sockets
20:49:26 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 9)

20:49:26 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 6)

20:49:26 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 5)

20:49:26 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000040), r1)
sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400}, 0x20000000)

20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}, {'bfs\x00'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:26 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x501040, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff}) (async)
socketpair(0x2, 0x800, 0x9, &(0x7f00000000c0)={<r4=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa4, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BACKEND_IDENTIFIER={0x5, 0xa, '*'}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2b}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, ',@\'[\\-(/#'}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6b}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6e3}, @NBD_ATTR_BACKEND_IDENTIFIER={0x7, 0xa, '([\xcc'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5b}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4c}, 0xc001)

[  813.715752] FAULT_INJECTION: forcing a failure.
[  813.715752] name failslab, interval 1, probability 0, space 0, times 0
[  813.727689] FAULT_INJECTION: forcing a failure.
[  813.727689] name failslab, interval 1, probability 0, space 0, times 0
[  813.753231] FAULT_INJECTION: forcing a failure.
[  813.753231] name failslab, interval 1, probability 0, space 0, times 0
[  813.778158] CPU: 0 PID: 20889 Comm: syz-executor.3 Not tainted 4.14.286-syzkaller #0
[  813.786071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  813.795429] Call Trace:
[  813.798022]  dump_stack+0x1b2/0x281
[  813.801658]  should_fail.cold+0x10a/0x149
[  813.805811]  should_failslab+0xd6/0x130
[  813.809789]  __kmalloc+0x2c1/0x400
[  813.813333]  ? sk_prot_alloc+0x1ba/0x290
[  813.817397]  sk_prot_alloc+0x1ba/0x290
[  813.821288]  sk_alloc+0x36/0xcd0
[  813.824660]  ? lock_downgrade+0x740/0x740
[  813.828823]  alg_create+0x7d/0x160
[  813.832374]  __sock_create+0x303/0x620
[  813.836278]  SyS_socketpair+0x159/0x480
[  813.840260]  ? SyS_socket+0x1b0/0x1b0
[  813.844060]  ? SyS_read+0x210/0x210
[  813.847693]  ? __do_page_fault+0x159/0xad0
[  813.851928]  ? do_syscall_64+0x4c/0x640
[  813.855990]  ? SyS_socket+0x1b0/0x1b0
[  813.859806]  do_syscall_64+0x1d5/0x640
[  813.863703]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  813.868892] RIP: 0033:0x7f789eba2109
20:49:26 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000040), r1)
sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400}, 0x20000000)

[  813.872608] RSP: 002b:00007f789d517168 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  813.880322] RAX: ffffffffffffffda RBX: 00007f789ecb4f60 RCX: 00007f789eba2109
[  813.887597] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  813.894871] RBP: 00007f789d5171d0 R08: 0000000000000000 R09: 0000000000000000
[  813.902147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  813.909423] R13: 00007ffdea704dbf R14: 00007f789d517300 R15: 0000000000022000
[  813.930752] CPU: 0 PID: 20890 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  813.938662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  813.948022] Call Trace:
[  813.950627]  dump_stack+0x1b2/0x281
[  813.954263]  should_fail.cold+0x10a/0x149
[  813.958419]  should_failslab+0xd6/0x130
[  813.962404]  kmem_cache_alloc_trace+0x29a/0x3d0
[  813.967086]  ? loop_get_status64+0x100/0x100
[  813.971505]  __kthread_create_on_node+0xbe/0x3a0
[  813.976325]  ? kthread_park+0x130/0x130
[  813.980323]  ? loop_get_status64+0x100/0x100
[  813.984828]  kthread_create_on_node+0xa8/0xd0
[  813.989327]  ? __kthread_create_on_node+0x3a0/0x3a0
[  813.994360]  ? __lockdep_init_map+0x100/0x560
[  813.998871]  ? __lockdep_init_map+0x100/0x560
[  814.003383]  lo_ioctl+0xcd9/0x1cd0
[  814.006939]  ? loop_set_status64+0xe0/0xe0
[  814.011187]  blkdev_ioctl+0x540/0x1830
[  814.015080]  ? blkpg_ioctl+0x8d0/0x8d0
[  814.018966]  ? trace_hardirqs_on+0x10/0x10
[  814.023213]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  814.028325]  ? debug_check_no_obj_freed+0x2c0/0x680
[  814.033352]  block_ioctl+0xd9/0x120
[  814.036990]  ? blkdev_fallocate+0x3a0/0x3a0
[  814.041320]  do_vfs_ioctl+0x75a/0xff0
[  814.045131]  ? lock_acquire+0x170/0x3f0
[  814.049112]  ? ioctl_preallocate+0x1a0/0x1a0
[  814.053551]  ? __fget+0x265/0x3e0
[  814.057021]  ? do_vfs_ioctl+0xff0/0xff0
[  814.061003]  ? security_file_ioctl+0x83/0xb0
[  814.065420]  SyS_ioctl+0x7f/0xb0
[  814.068791]  ? do_vfs_ioctl+0xff0/0xff0
[  814.072774]  do_syscall_64+0x1d5/0x640
20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340)={[{'#'}, {'bfs\x00'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  814.076671]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  814.081876] RIP: 0033:0x7fcd83ff2ec7
[  814.085596] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  814.093314] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  814.100592] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  814.107872] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  814.115144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  814.122446] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  814.133877] CPU: 0 PID: 20892 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  814.141778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  814.151134] Call Trace:
[  814.153729]  dump_stack+0x1b2/0x281
[  814.157366]  should_fail.cold+0x10a/0x149
[  814.161527]  should_failslab+0xd6/0x130
[  814.165517]  kmem_cache_alloc_trace+0x29a/0x3d0
[  814.170201]  apparmor_file_alloc_security+0x129/0x800
[  814.175407]  security_file_alloc+0x66/0xa0
[  814.179655]  ? selinux_is_enabled+0x5/0x50
[  814.183903]  get_empty_filp+0x16b/0x3f0
[  814.187888]  alloc_file+0x23/0x440
[  814.191442]  __shmem_file_setup.part.0+0x198/0x3c0
[  814.196379]  ? shmem_create+0x30/0x30
[  814.200187]  ? __alloc_fd+0x1be/0x490
[  814.204001]  SyS_memfd_create+0x1fc/0x3c0
[  814.208155]  ? shmem_fcntl+0x120/0x120
[  814.212055]  ? __do_page_fault+0x159/0xad0
[  814.216298]  ? do_syscall_64+0x4c/0x640
[  814.220278]  ? shmem_fcntl+0x120/0x120
[  814.224181]  do_syscall_64+0x1d5/0x640
[  814.228084]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  814.233275] RIP: 0033:0x7f6b8cbe4109
[  814.236987] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  814.244695] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe4109
[  814.251965] RDX: 00007f6b8b558fe0 RSI: 0000000000000000 RDI: 00007f6b8cc3d1be
[  814.259266] RBP: 0000000000000000 R08: 00007f6b8b558fd8 R09: 00007f6b8b5591d0
[  814.266538] R10: 00007f6b8b558fdc R11: 0000000000000246 R12: 0000000020000080
[  814.273809] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020002700
20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340)={[{'#'}], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

20:49:26 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (fail_nth: 7)

20:49:26 executing program 0:
socketpair(0x25, 0x2, 0x4, 0x0)

20:49:26 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 10)

20:49:26 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 6)

20:49:26 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000040), r1)
sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400}, 0x20000000)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000040), r1) (async)
sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400}, 0x20000000) (async)

20:49:26 executing program 0:
socketpair(0x25, 0x2, 0x4, 0x0)

20:49:26 executing program 3:
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@val={0x0, 0x1}, @void, @mpls={[{0x6f8f}, {0x7, 0x0, 0x1}, {0x2}, {0xfff, 0x0, 0x1}, {0x1000}, {0x8}, {0xbb93}, {0x3}, {0x2}], @ipv4=@gre={{0x1e, 0x4, 0x3, 0x1d, 0x392, 0x65, 0x0, 0x9, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0xc, 0xcf, 0x3, 0x5, [{@broadcast, 0x1}]}, @noop, @ssrr={0x89, 0x27, 0xe5, [@broadcast, @dev={0xac, 0x14, 0x14, 0x37}, @multicast1, @multicast1, @rand_addr=0x64010102, @broadcast, @empty, @local, @multicast1]}, @rr={0x7, 0x7, 0xa3, [@rand_addr=0x64010100]}, @lsrr={0x83, 0xf, 0x17, [@private=0xa010101, @multicast2, @empty]}, @timestamp_prespec={0x44, 0x14, 0xe0, 0x3, 0x9, [{@dev={0xac, 0x14, 0x14, 0x30}, 0x8}, {@broadcast, 0x8}]}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xee, 0x0, [], "7be121f4f891dae3baa2c88288a74a9a76c62e1c37b1e058c77a05cc18a04ed983fbea5e78f9b91110844fc664c16b0ee68ecdb1d00675bcd2d9a8b94e235e480633b863cd1343e4ddf530aa91252c9215a11ee28709c33f5198eab13a694edcce1ec14316128ca5a4e8f617b065b97abc735cc214cf653e1bc14a3afd0f9d664710b67688f6f294024d0d8ca0c54e712de8aa748e9d5ba8bc179206fc15ce03ff15f02c9283af8cfe2c5451c1d66c57ec4a5791455ac4e02f3cc2a2bb4a49cb1bced965b171f7998a1929a6e739002fd0cf6c62fc89dea8c129a75b27b1c3570e5b65dcda5126408a22f571d5ca"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x1, 0x401], "ec8cbcf0963a66d229039d35db69393af8b8384d69e9459c40131f8c94723af1442cbb5a74a026a9eb5ad0384f586bb9161ae5210deba4292de12bd75c56afd0af234743810eb77b06f0001d2dd38f6d45d673f507e44e81710250e3c79d15f22b4df8523c842a290f2161d050dc81da33cb2c186817772447dec55a897e03c0a4c10ef14098c873023599badb7f789e2d714a3043b02f067684db6528ace125fe9588dd0d634bd9562db1ab105d20f577074df77bf207cbc9c59eef9a6c4a9ef7f1f18e87ea9e5155f1dc4b98cc6ae60cae3cd20a44a7153a94a6caf41a2367ec22565fa7570adebf03"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [0x1, 0x4bca, 0x6], "0bb570764909cb9d6d073b60de7290eab5988ba5e5d9b73c76c3673e6c8a969405aa45b1c6c5459588faba9405201a79ba866be243b66bb5fc221de2072a3d6ccf48f8d235bf6330ac7498cae3d7d09c11f6ed210e6ccd136bb922e3a9ab41a2e20acb9cd1d6386e89a209da72e1d42b473ff5363afff6e529f44d54822d6226bc0fc82057f774502b4015787e97d1b02330539edc45e5cf118e80481ab7c096925f67e464ab2b258fef68b95750f85438a6dcc1c7b4ef4ecadf992add0b5cb7849c068f58d597a015da4ce3714ee6d9f687d1fdae00f2ef"}, {0x8, 0x88be, 0x0, {{0x9, 0x1, 0x80, 0x0, 0x0, 0x0, 0x4, 0x9}, 0x1, {0x1}}}, {0x8, 0x22eb, 0x2, {{0x4, 0x2, 0x81, 0x2, 0x1, 0x0, 0x7, 0x1f}, 0x2, {0x3, 0x0, 0x1, 0x4, 0x0, 0x0, 0x2, 0x1, 0x1}}}, {0x8, 0x6558, 0x0, "e532e70fc5261071fde159e373412acb4c8d426224174426a31f120a"}}}}}, 0x3ba)
socketpair(0x26, 0x5, 0x0, 0x0)

[  814.346539] FAULT_INJECTION: forcing a failure.
[  814.346539] name failslab, interval 1, probability 0, space 0, times 0
[  814.359709] FAULT_INJECTION: forcing a failure.
[  814.359709] name failslab, interval 1, probability 0, space 0, times 0
20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340)={[], [{@fsname}, {@obj_type={'obj_type', 0x3d, '^!'}}]})

[  814.395391] CPU: 0 PID: 20916 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  814.403305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  814.412780] Call Trace:
[  814.415375]  dump_stack+0x1b2/0x281
[  814.419016]  should_fail.cold+0x10a/0x149
[  814.423180]  should_failslab+0xd6/0x130
[  814.427171]  kmem_cache_alloc_trace+0x29a/0x3d0
[  814.431849]  ? loop_get_status64+0x100/0x100
[  814.436265]  __kthread_create_on_node+0xbe/0x3a0
[  814.441030]  ? kthread_park+0x130/0x130
20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340)={[], [{@fsname}]})

[  814.445020]  ? loop_get_status64+0x100/0x100
[  814.449434]  kthread_create_on_node+0xa8/0xd0
[  814.453935]  ? __kthread_create_on_node+0x3a0/0x3a0
[  814.458961]  ? __lockdep_init_map+0x100/0x560
[  814.463461]  ? __lockdep_init_map+0x100/0x560
[  814.467962]  lo_ioctl+0xcd9/0x1cd0
[  814.471516]  ? loop_set_status64+0xe0/0xe0
[  814.475754]  blkdev_ioctl+0x540/0x1830
[  814.479645]  ? blkpg_ioctl+0x8d0/0x8d0
[  814.483568]  ? trace_hardirqs_on+0x10/0x10
[  814.487815]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  814.492925]  ? debug_check_no_obj_freed+0x2c0/0x680
[  814.497953]  block_ioctl+0xd9/0x120
[  814.501594]  ? blkdev_fallocate+0x3a0/0x3a0
[  814.505927]  do_vfs_ioctl+0x75a/0xff0
[  814.509730]  ? lock_acquire+0x170/0x3f0
[  814.513718]  ? ioctl_preallocate+0x1a0/0x1a0
[  814.518140]  ? __fget+0x265/0x3e0
[  814.521600]  ? do_vfs_ioctl+0xff0/0xff0
[  814.525581]  ? security_file_ioctl+0x83/0xb0
[  814.530000]  SyS_ioctl+0x7f/0xb0
[  814.533372]  ? do_vfs_ioctl+0xff0/0xff0
[  814.537352]  do_syscall_64+0x1d5/0x640
20:49:26 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000340))

20:49:27 executing program 3:
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@val={0x0, 0x1}, @void, @mpls={[{0x6f8f}, {0x7, 0x0, 0x1}, {0x2}, {0xfff, 0x0, 0x1}, {0x1000}, {0x8}, {0xbb93}, {0x3}, {0x2}], @ipv4=@gre={{0x1e, 0x4, 0x3, 0x1d, 0x392, 0x65, 0x0, 0x9, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0xc, 0xcf, 0x3, 0x5, [{@broadcast, 0x1}]}, @noop, @ssrr={0x89, 0x27, 0xe5, [@broadcast, @dev={0xac, 0x14, 0x14, 0x37}, @multicast1, @multicast1, @rand_addr=0x64010102, @broadcast, @empty, @local, @multicast1]}, @rr={0x7, 0x7, 0xa3, [@rand_addr=0x64010100]}, @lsrr={0x83, 0xf, 0x17, [@private=0xa010101, @multicast2, @empty]}, @timestamp_prespec={0x44, 0x14, 0xe0, 0x3, 0x9, [{@dev={0xac, 0x14, 0x14, 0x30}, 0x8}, {@broadcast, 0x8}]}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xee, 0x0, [], "7be121f4f891dae3baa2c88288a74a9a76c62e1c37b1e058c77a05cc18a04ed983fbea5e78f9b91110844fc664c16b0ee68ecdb1d00675bcd2d9a8b94e235e480633b863cd1343e4ddf530aa91252c9215a11ee28709c33f5198eab13a694edcce1ec14316128ca5a4e8f617b065b97abc735cc214cf653e1bc14a3afd0f9d664710b67688f6f294024d0d8ca0c54e712de8aa748e9d5ba8bc179206fc15ce03ff15f02c9283af8cfe2c5451c1d66c57ec4a5791455ac4e02f3cc2a2bb4a49cb1bced965b171f7998a1929a6e739002fd0cf6c62fc89dea8c129a75b27b1c3570e5b65dcda5126408a22f571d5ca"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x1, 0x401], "ec8cbcf0963a66d229039d35db69393af8b8384d69e9459c40131f8c94723af1442cbb5a74a026a9eb5ad0384f586bb9161ae5210deba4292de12bd75c56afd0af234743810eb77b06f0001d2dd38f6d45d673f507e44e81710250e3c79d15f22b4df8523c842a290f2161d050dc81da33cb2c186817772447dec55a897e03c0a4c10ef14098c873023599badb7f789e2d714a3043b02f067684db6528ace125fe9588dd0d634bd9562db1ab105d20f577074df77bf207cbc9c59eef9a6c4a9ef7f1f18e87ea9e5155f1dc4b98cc6ae60cae3cd20a44a7153a94a6caf41a2367ec22565fa7570adebf03"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [0x1, 0x4bca, 0x6], "0bb570764909cb9d6d073b60de7290eab5988ba5e5d9b73c76c3673e6c8a969405aa45b1c6c5459588faba9405201a79ba866be243b66bb5fc221de2072a3d6ccf48f8d235bf6330ac7498cae3d7d09c11f6ed210e6ccd136bb922e3a9ab41a2e20acb9cd1d6386e89a209da72e1d42b473ff5363afff6e529f44d54822d6226bc0fc82057f774502b4015787e97d1b02330539edc45e5cf118e80481ab7c096925f67e464ab2b258fef68b95750f85438a6dcc1c7b4ef4ecadf992add0b5cb7849c068f58d597a015da4ce3714ee6d9f687d1fdae00f2ef"}, {0x8, 0x88be, 0x0, {{0x9, 0x1, 0x80, 0x0, 0x0, 0x0, 0x4, 0x9}, 0x1, {0x1}}}, {0x8, 0x22eb, 0x2, {{0x4, 0x2, 0x81, 0x2, 0x1, 0x0, 0x7, 0x1f}, 0x2, {0x3, 0x0, 0x1, 0x4, 0x0, 0x0, 0x2, 0x1, 0x1}}}, {0x8, 0x6558, 0x0, "e532e70fc5261071fde159e373412acb4c8d426224174426a31f120a"}}}}}, 0x3ba) (async)
socketpair(0x26, 0x5, 0x0, 0x0)

[  814.541251]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  814.546439] RIP: 0033:0x7fcd83ff2ec7
[  814.550147] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  814.557862] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  814.565217] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  814.572497] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  814.579768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  814.587044] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  814.605696] CPU: 0 PID: 20917 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  814.613607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  814.622965] Call Trace:
[  814.625564]  dump_stack+0x1b2/0x281
[  814.629201]  should_fail.cold+0x10a/0x149
[  814.633356]  should_failslab+0xd6/0x130
[  814.637341]  kmem_cache_alloc+0x28e/0x3c0
[  814.641498]  getname_flags+0xc8/0x550
[  814.645399]  do_sys_open+0x1ce/0x410
[  814.649121]  ? filp_open+0x60/0x60
[  814.652671]  ? do_syscall_64+0x4c/0x640
[  814.656656]  ? SyS_open+0x30/0x30
[  814.660122]  do_syscall_64+0x1d5/0x640
[  814.664025]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  814.669221] RIP: 0033:0x7f6b8cb97024
[  814.672935] RSP: 002b:00007f6b8b558eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  814.680656] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cb97024
[  814.687931] RDX: 0000000000000002 RSI: 00007f6b8b558fe0 RDI: 00000000ffffff9c
[  814.695205] RBP: 00007f6b8b558fe0 R08: 0000000000000000 R09: 00007f6b8b5591d0
20:49:27 executing program 0:
socketpair(0x25, 0x2, 0x4, 0x0)

20:49:27 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={0x0, 0x1, r1})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:27 executing program 3:
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@val={0x0, 0x1}, @void, @mpls={[{0x6f8f}, {0x7, 0x0, 0x1}, {0x2}, {0xfff, 0x0, 0x1}, {0x1000}, {0x8}, {0xbb93}, {0x3}, {0x2}], @ipv4=@gre={{0x1e, 0x4, 0x3, 0x1d, 0x392, 0x65, 0x0, 0x9, 0x2f, 0x0, @remote, @remote, {[@ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0xc, 0xcf, 0x3, 0x5, [{@broadcast, 0x1}]}, @noop, @ssrr={0x89, 0x27, 0xe5, [@broadcast, @dev={0xac, 0x14, 0x14, 0x37}, @multicast1, @multicast1, @rand_addr=0x64010102, @broadcast, @empty, @local, @multicast1]}, @rr={0x7, 0x7, 0xa3, [@rand_addr=0x64010100]}, @lsrr={0x83, 0xf, 0x17, [@private=0xa010101, @multicast2, @empty]}, @timestamp_prespec={0x44, 0x14, 0xe0, 0x3, 0x9, [{@dev={0xac, 0x14, 0x14, 0x30}, 0x8}, {@broadcast, 0x8}]}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0xee, 0x0, [], "7be121f4f891dae3baa2c88288a74a9a76c62e1c37b1e058c77a05cc18a04ed983fbea5e78f9b91110844fc664c16b0ee68ecdb1d00675bcd2d9a8b94e235e480633b863cd1343e4ddf530aa91252c9215a11ee28709c33f5198eab13a694edcce1ec14316128ca5a4e8f617b065b97abc735cc214cf653e1bc14a3afd0f9d664710b67688f6f294024d0d8ca0c54e712de8aa748e9d5ba8bc179206fc15ce03ff15f02c9283af8cfe2c5451c1d66c57ec4a5791455ac4e02f3cc2a2bb4a49cb1bced965b171f7998a1929a6e739002fd0cf6c62fc89dea8c129a75b27b1c3570e5b65dcda5126408a22f571d5ca"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x1, 0x401], "ec8cbcf0963a66d229039d35db69393af8b8384d69e9459c40131f8c94723af1442cbb5a74a026a9eb5ad0384f586bb9161ae5210deba4292de12bd75c56afd0af234743810eb77b06f0001d2dd38f6d45d673f507e44e81710250e3c79d15f22b4df8523c842a290f2161d050dc81da33cb2c186817772447dec55a897e03c0a4c10ef14098c873023599badb7f789e2d714a3043b02f067684db6528ace125fe9588dd0d634bd9562db1ab105d20f577074df77bf207cbc9c59eef9a6c4a9ef7f1f18e87ea9e5155f1dc4b98cc6ae60cae3cd20a44a7153a94a6caf41a2367ec22565fa7570adebf03"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [0x1, 0x4bca, 0x6], "0bb570764909cb9d6d073b60de7290eab5988ba5e5d9b73c76c3673e6c8a969405aa45b1c6c5459588faba9405201a79ba866be243b66bb5fc221de2072a3d6ccf48f8d235bf6330ac7498cae3d7d09c11f6ed210e6ccd136bb922e3a9ab41a2e20acb9cd1d6386e89a209da72e1d42b473ff5363afff6e529f44d54822d6226bc0fc82057f774502b4015787e97d1b02330539edc45e5cf118e80481ab7c096925f67e464ab2b258fef68b95750f85438a6dcc1c7b4ef4ecadf992add0b5cb7849c068f58d597a015da4ce3714ee6d9f687d1fdae00f2ef"}, {0x8, 0x88be, 0x0, {{0x9, 0x1, 0x80, 0x0, 0x0, 0x0, 0x4, 0x9}, 0x1, {0x1}}}, {0x8, 0x22eb, 0x2, {{0x4, 0x2, 0x81, 0x2, 0x1, 0x0, 0x7, 0x1f}, 0x2, {0x3, 0x0, 0x1, 0x4, 0x0, 0x0, 0x2, 0x1, 0x1}}}, {0x8, 0x6558, 0x0, "e532e70fc5261071fde159e373412acb4c8d426224174426a31f120a"}}}}}, 0x3ba) (async)
socketpair(0x26, 0x5, 0x0, 0x0)

[  814.702480] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  814.709754] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:27 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 11)

20:49:27 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 7)

20:49:27 executing program 0:
socketpair(0x3, 0xf, 0x7fffffd, 0x0)

20:49:27 executing program 4:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000040), r1)
sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x400}, 0x20000000)

20:49:27 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={0x0, 0x1, r1})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={0x0, 0x1, r1}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

20:49:27 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x208e010}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x40)

[  814.828951] FAULT_INJECTION: forcing a failure.
[  814.828951] name failslab, interval 1, probability 0, space 0, times 0
[  814.858288] FAULT_INJECTION: forcing a failure.
[  814.858288] name failslab, interval 1, probability 0, space 0, times 0
[  814.870019] CPU: 0 PID: 20958 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
20:49:27 executing program 0:
socketpair(0x3, 0xf, 0x7fffffd, 0x0)

[  814.878003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  814.887363] Call Trace:
[  814.889956]  dump_stack+0x1b2/0x281
[  814.893709]  should_fail.cold+0x10a/0x149
[  814.897870]  should_failslab+0xd6/0x130
[  814.901851]  kmem_cache_alloc+0x40/0x3c0
[  814.905925]  radix_tree_node_alloc.constprop.0+0x1b0/0x2f0
[  814.911563]  idr_get_free_cmn+0x595/0x8d0
[  814.915719]  ? trace_hardirqs_on+0x10/0x10
[  814.919963]  idr_alloc_cmn+0xe8/0x1e0
[  814.923767]  ? __fprop_inc_percpu_max+0x1d0/0x1d0
[  814.928617]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  814.933648]  ? __schedule+0x1450/0x1de0
[  814.937644]  ? cpuacct_charge+0x1cf/0x350
[  814.941800]  ? fs_reclaim_release+0xd0/0x110
[  814.946217]  idr_alloc_cyclic+0xc2/0x1d0
[  814.950287]  ? idr_alloc_cmn+0x1e0/0x1e0
[  814.954448]  ? __radix_tree_preload+0x1c3/0x250
[  814.959127]  __kernfs_new_node+0xaf/0x470
[  814.963296]  kernfs_create_dir_ns+0x8c/0x200
[  814.967707]  internal_create_group+0xe9/0x710
[  814.972210]  lo_ioctl+0x1137/0x1cd0
20:49:27 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={0x0, 0x1, r1})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  814.975863]  ? loop_set_status64+0xe0/0xe0
[  814.980099]  blkdev_ioctl+0x540/0x1830
[  814.983991]  ? blkpg_ioctl+0x8d0/0x8d0
[  814.987885]  ? trace_hardirqs_on+0x10/0x10
[  814.992300]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  814.997322]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  815.002091]  block_ioctl+0xd9/0x120
[  815.005724]  ? blkdev_fallocate+0x3a0/0x3a0
[  815.010052]  do_vfs_ioctl+0x75a/0xff0
[  815.013872]  ? lock_acquire+0x170/0x3f0
[  815.017855]  ? ioctl_preallocate+0x1a0/0x1a0
[  815.022267]  ? __fget+0x265/0x3e0
[  815.025736]  ? do_vfs_ioctl+0xff0/0xff0
20:49:27 executing program 0:
socketpair(0x3, 0xf, 0x7fffffd, 0x0)

[  815.029718]  ? security_file_ioctl+0x83/0xb0
[  815.034134]  SyS_ioctl+0x7f/0xb0
[  815.037507]  ? do_vfs_ioctl+0xff0/0xff0
[  815.041486]  do_syscall_64+0x1d5/0x640
[  815.045383]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  815.050574] RIP: 0033:0x7fcd83ff2ec7
[  815.054283] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  815.062008] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  815.069279] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
20:49:27 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:27 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x208e010}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x40)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x4000) (async)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x208e010}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x40) (async)

20:49:27 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, 0x0)

[  815.076546] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  815.083816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  815.091086] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  815.104931] CPU: 0 PID: 20957 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  815.112918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  815.122273] Call Trace:
[  815.124867]  dump_stack+0x1b2/0x281
[  815.128504]  should_fail.cold+0x10a/0x149
[  815.132656]  should_failslab+0xd6/0x130
[  815.136636]  kmem_cache_alloc+0x28e/0x3c0
[  815.140794]  get_empty_filp+0x86/0x3f0
[  815.144696]  path_openat+0x84/0x2970
[  815.148424]  ? path_lookupat+0x780/0x780
[  815.152516]  ? trace_hardirqs_on+0x10/0x10
[  815.156753]  ? fsnotify+0x974/0x11b0
[  815.160466]  ? shmem_setattr+0x241/0xbf0
[  815.164537]  do_filp_open+0x179/0x3c0
[  815.168341]  ? may_open_dev+0xe0/0xe0
[  815.172185]  ? __alloc_fd+0x1be/0x490
[  815.175997]  ? lock_downgrade+0x740/0x740
[  815.180150]  ? do_raw_spin_unlock+0x164/0x220
[  815.184653]  ? _raw_spin_unlock+0x29/0x40
[  815.188816]  ? __alloc_fd+0x1be/0x490
[  815.192629]  do_sys_open+0x296/0x410
[  815.196362]  ? filp_open+0x60/0x60
[  815.199914]  ? do_syscall_64+0x4c/0x640
[  815.203895]  ? SyS_open+0x30/0x30
[  815.207393]  do_syscall_64+0x1d5/0x640
[  815.211291]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  815.216480] RIP: 0033:0x7f6b8cb97024
[  815.220189] RSP: 002b:00007f6b8b558eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  815.227898] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cb97024
[  815.235169] RDX: 0000000000000002 RSI: 00007f6b8b558fe0 RDI: 00000000ffffff9c
[  815.242444] RBP: 00007f6b8b558fe0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  815.249718] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  815.256997] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:27 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 12)

20:49:27 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="100046c57000fcdbdf250100000004010180b3c58f7db76533cdf57dcb1bb55454272a1a85b4fe197a1168d24cf3948cece44202d3708b104d52418d85810852f17c0666bdfb00f199930c1afac655be5c3fc869297cddac705db482a09e479043076eb761f205ef80da40a133313328d1f77c61dc28da28a3a53f2e8a2a4cdd0bd769c1c55b5a64c337a77d18fcd6626b16ae11ee2b69bb870c50d6df4a409232b473f626f1d0ddfdfdfb6cbd1fd288a6f8a80cb42f6b66"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000240))
statx(r0, &(0x7f0000000100)='./file0\x00', 0x100, 0x8, &(0x7f0000000140))

20:49:27 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, 0x0)

20:49:27 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 8)

20:49:27 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x4000) (async)
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x208e010}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x40)

20:49:27 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

20:49:27 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="100046c57000fcdbdf250100000004010180b3c58f7db76533cdf57dcb1bb55454272a1a85b4fe197a1168d24cf3948cece44202d3708b104d52418d85810852f17c0666bdfb00f199930c1afac655be5c3fc869297cddac705db482a09e479043076eb761f205ef80da40a133313328d1f77c61dc28da28a3a53f2e8a2a4cdd0bd769c1c55b5a64c337a77d18fcd6626b16ae11ee2b69bb870c50d6df4a409232b473f626f1d0ddfdfdfb6cbd1fd288a6f8a80cb42f6b66"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000240))
statx(r0, &(0x7f0000000100)='./file0\x00', 0x100, 0x8, &(0x7f0000000140))
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="100046c57000fcdbdf250100000004010180b3c58f7db76533cdf57dcb1bb55454272a1a85b4fe197a1168d24cf3948cece44202d3708b104d52418d85810852f17c0666bdfb00f199930c1afac655be5c3fc869297cddac705db482a09e479043076eb761f205ef80da40a133313328d1f77c61dc28da28a3a53f2e8a2a4cdd0bd769c1c55b5a64c337a77d18fcd6626b16ae11ee2b69bb870c50d6df4a409232b473f626f1d0ddfdfdfb6cbd1fd288a6f8a80cb42f6b66"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x4) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000240)) (async)
statx(r0, &(0x7f0000000100)='./file0\x00', 0x100, 0x8, &(0x7f0000000140)) (async)

[  815.434217] FAULT_INJECTION: forcing a failure.
[  815.434217] name failslab, interval 1, probability 0, space 0, times 0
[  815.461813] FAULT_INJECTION: forcing a failure.
[  815.461813] name failslab, interval 1, probability 0, space 0, times 0
[  815.473227] CPU: 0 PID: 21007 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
20:49:27 executing program 4:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x400, 0x0)

20:49:27 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="100046c57000fcdbdf250100000004010180b3c58f7db76533cdf57dcb1bb55454272a1a85b4fe197a1168d24cf3948cece44202d3708b104d52418d85810852f17c0666bdfb00f199930c1afac655be5c3fc869297cddac705db482a09e479043076eb761f205ef80da40a133313328d1f77c61dc28da28a3a53f2e8a2a4cdd0bd769c1c55b5a64c337a77d18fcd6626b16ae11ee2b69bb870c50d6df4a409232b473f626f1d0ddfdfdfb6cbd1fd288a6f8a80cb42f6b66"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r0, 0xc00464be, &(0x7f0000000240)) (async)
statx(r0, &(0x7f0000000100)='./file0\x00', 0x100, 0x8, &(0x7f0000000140))

20:49:27 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0xf1f953e90447e280, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

[  815.481111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  815.490722] Call Trace:
[  815.493316]  dump_stack+0x1b2/0x281
[  815.496956]  should_fail.cold+0x10a/0x149
[  815.501110]  should_failslab+0xd6/0x130
[  815.505092]  kmem_cache_alloc+0x40/0x3c0
[  815.509170]  radix_tree_node_alloc.constprop.0+0x1b0/0x2f0
[  815.514804]  idr_get_free_cmn+0x595/0x8d0
[  815.518957]  ? trace_hardirqs_on+0x10/0x10
[  815.523202]  idr_alloc_cmn+0xe8/0x1e0
[  815.527011]  ? __fprop_inc_percpu_max+0x1d0/0x1d0
20:49:27 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)

20:49:27 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0xf1f953e90447e280, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

[  815.531894]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  815.536921]  ? __schedule+0x1450/0x1de0
[  815.540913]  ? cpuacct_charge+0x1cf/0x350
[  815.545082]  ? fs_reclaim_release+0xd0/0x110
[  815.549505]  idr_alloc_cyclic+0xc2/0x1d0
[  815.553581]  ? idr_alloc_cmn+0x1e0/0x1e0
[  815.557648]  ? __radix_tree_preload+0x1c3/0x250
[  815.562325]  __kernfs_new_node+0xaf/0x470
[  815.566487]  kernfs_create_dir_ns+0x8c/0x200
[  815.570995]  internal_create_group+0xe9/0x710
[  815.575588]  lo_ioctl+0x1137/0x1cd0
[  815.579224]  ? loop_set_status64+0xe0/0xe0
[  815.583496]  blkdev_ioctl+0x540/0x1830
[  815.587397]  ? blkpg_ioctl+0x8d0/0x8d0
[  815.591287]  ? trace_hardirqs_on+0x10/0x10
[  815.595530]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  815.600731]  ? debug_check_no_obj_freed+0x2c0/0x680
[  815.605759]  block_ioctl+0xd9/0x120
[  815.609402]  ? blkdev_fallocate+0x3a0/0x3a0
[  815.613817]  do_vfs_ioctl+0x75a/0xff0
[  815.617672]  ? lock_acquire+0x170/0x3f0
[  815.621654]  ? ioctl_preallocate+0x1a0/0x1a0
[  815.626071]  ? __fget+0x265/0x3e0
[  815.629533]  ? do_vfs_ioctl+0xff0/0xff0
[  815.633662]  ? security_file_ioctl+0x83/0xb0
[  815.638168]  SyS_ioctl+0x7f/0xb0
[  815.641542]  ? do_vfs_ioctl+0xff0/0xff0
[  815.645526]  do_syscall_64+0x1d5/0x640
[  815.649426]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  815.654611] RIP: 0033:0x7fcd83ff2ec7
[  815.658315] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  815.666028] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  815.673302] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  815.680574] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  815.687930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  815.695200] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  815.739327] CPU: 1 PID: 21004 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  815.747241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  815.756593] Call Trace:
[  815.759200]  dump_stack+0x1b2/0x281
[  815.762843]  should_fail.cold+0x10a/0x149
[  815.767009]  should_failslab+0xd6/0x130
[  815.770999]  kmem_cache_alloc+0x28e/0x3c0
[  815.775157]  get_empty_filp+0x86/0x3f0
[  815.779054]  path_openat+0x84/0x2970
[  815.782778]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  815.787633]  ? path_lookupat+0x780/0x780
[  815.791723]  ? trace_hardirqs_on+0x10/0x10
[  815.795959]  ? fsnotify+0x974/0x11b0
[  815.799677]  ? shmem_setattr+0x241/0xbf0
[  815.803746]  do_filp_open+0x179/0x3c0
[  815.807549]  ? may_open_dev+0xe0/0xe0
[  815.811354]  ? __alloc_fd+0x1be/0x490
[  815.815162]  ? lock_downgrade+0x740/0x740
[  815.819317]  ? do_raw_spin_unlock+0x164/0x220
[  815.823822]  ? _raw_spin_unlock+0x29/0x40
[  815.827973]  ? __alloc_fd+0x1be/0x490
[  815.831787]  do_sys_open+0x296/0x410
[  815.835511]  ? filp_open+0x60/0x60
[  815.839058]  ? do_syscall_64+0x4c/0x640
[  815.843029]  ? SyS_open+0x30/0x30
[  815.846483]  do_syscall_64+0x1d5/0x640
[  815.850387]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  815.855688] RIP: 0033:0x7f6b8cb97024
[  815.859402] RSP: 002b:00007f6b8b558eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  815.867111] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cb97024
[  815.874385] RDX: 0000000000000002 RSI: 00007f6b8b558fe0 RDI: 00000000ffffff9c
[  815.881660] RBP: 00007f6b8b558fe0 R08: 0000000000000000 R09: 00007f6b8b5591d0
20:49:28 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 13)

20:49:28 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) (async)

20:49:28 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0xf1f953e90447e280, 0x70bd26, 0x25dfdbfd, {}, [@L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}, @L2TP_ATTR_L2SPEC_TYPE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)

20:49:28 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
connect$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, 0x10)

20:49:28 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  815.889021] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  815.896297] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:28 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 9)

20:49:28 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
connect$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, 0x10)

20:49:28 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)

20:49:28 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  815.985408] FAULT_INJECTION: forcing a failure.
[  815.985408] name failslab, interval 1, probability 0, space 0, times 0
[  815.996781] CPU: 0 PID: 21045 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  816.004660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  816.012980] FAULT_INJECTION: forcing a failure.
[  816.012980] name failslab, interval 1, probability 0, space 0, times 0
[  816.014002] Call Trace:
[  816.027828]  dump_stack+0x1b2/0x281
[  816.031465]  should_fail.cold+0x10a/0x149
20:49:28 executing program 0:
socketpair(0x9, 0x800, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={<r2=>0x0, 0x1, r0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580))
r6 = syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0)
r8 = syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000)

20:49:28 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:28 executing program 0:
socketpair(0x9, 0x800, 0x7fffffd, 0x0) (async, rerun: 32)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0) (async, rerun: 32)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={<r2=>0x0, 0x1, r0}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]}) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580)) (async)
r6 = syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1}) (async)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0) (async)
r8 = syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000)

[  816.035676]  should_failslab+0xd6/0x130
[  816.039664]  kmem_cache_alloc+0x40/0x3c0
[  816.043762]  radix_tree_node_alloc.constprop.0+0x1b0/0x2f0
[  816.049664]  idr_get_free_cmn+0x595/0x8d0
[  816.053922]  ? trace_hardirqs_on+0x10/0x10
[  816.058195]  idr_alloc_cmn+0xe8/0x1e0
[  816.062020]  ? __fprop_inc_percpu_max+0x1d0/0x1d0
[  816.066868]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  816.071892]  ? __schedule+0x1450/0x1de0
[  816.075870]  ? cpuacct_charge+0x1cf/0x350
[  816.080284]  ? fs_reclaim_release+0xd0/0x110
[  816.084712]  idr_alloc_cyclic+0xc2/0x1d0
[  816.088780]  ? idr_alloc_cmn+0x1e0/0x1e0
[  816.092843]  ? __radix_tree_preload+0x1c3/0x250
[  816.097520]  __kernfs_new_node+0xaf/0x470
[  816.101675]  kernfs_create_dir_ns+0x8c/0x200
[  816.106086]  internal_create_group+0xe9/0x710
[  816.110583]  lo_ioctl+0x1137/0x1cd0
[  816.114217]  ? loop_set_status64+0xe0/0xe0
[  816.118457]  blkdev_ioctl+0x540/0x1830
[  816.122352]  ? blkpg_ioctl+0x8d0/0x8d0
[  816.126239]  ? trace_hardirqs_on+0x10/0x10
[  816.130478]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  816.135590]  ? debug_check_no_obj_freed+0x2c0/0x680
[  816.140605]  block_ioctl+0xd9/0x120
[  816.144220]  ? blkdev_fallocate+0x3a0/0x3a0
[  816.148527]  do_vfs_ioctl+0x75a/0xff0
[  816.152316]  ? lock_acquire+0x170/0x3f0
[  816.156275]  ? ioctl_preallocate+0x1a0/0x1a0
[  816.160670]  ? __fget+0x265/0x3e0
[  816.164105]  ? do_vfs_ioctl+0xff0/0xff0
[  816.168062]  ? security_file_ioctl+0x83/0xb0
[  816.172455]  SyS_ioctl+0x7f/0xb0
[  816.175817]  ? do_vfs_ioctl+0xff0/0xff0
[  816.179774]  do_syscall_64+0x1d5/0x640
[  816.183650]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  816.188822] RIP: 0033:0x7fcd83ff2ec7
[  816.192515] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  816.200218] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  816.207475] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  816.214730] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  816.222593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  816.229849] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  816.237117] CPU: 1 PID: 21054 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  816.245001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  816.254348] Call Trace:
[  816.256937]  dump_stack+0x1b2/0x281
[  816.260656]  should_fail.cold+0x10a/0x149
[  816.264817]  should_failslab+0xd6/0x130
[  816.268797]  kmem_cache_alloc_trace+0x29a/0x3d0
[  816.273480]  apparmor_file_alloc_security+0x129/0x800
[  816.278684]  security_file_alloc+0x66/0xa0
[  816.282926]  ? selinux_is_enabled+0x5/0x50
[  816.287173]  get_empty_filp+0x16b/0x3f0
[  816.291156]  path_openat+0x84/0x2970
[  816.294879]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  816.299733]  ? path_lookupat+0x780/0x780
[  816.303832]  ? trace_hardirqs_on+0x10/0x10
[  816.308079]  ? fsnotify+0x974/0x11b0
[  816.311806]  ? shmem_setattr+0x241/0xbf0
[  816.315878]  do_filp_open+0x179/0x3c0
[  816.319692]  ? may_open_dev+0xe0/0xe0
[  816.323499]  ? __alloc_fd+0x1be/0x490
[  816.327312]  ? lock_downgrade+0x740/0x740
[  816.331478]  ? do_raw_spin_unlock+0x164/0x220
[  816.335986]  ? _raw_spin_unlock+0x29/0x40
[  816.340140]  ? __alloc_fd+0x1be/0x490
[  816.343957]  do_sys_open+0x296/0x410
[  816.347678]  ? filp_open+0x60/0x60
[  816.351234]  ? do_syscall_64+0x4c/0x640
[  816.355215]  ? SyS_open+0x30/0x30
[  816.358674]  do_syscall_64+0x1d5/0x640
[  816.362578]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  816.367773] RIP: 0033:0x7f6b8cb97024
[  816.371483] RSP: 002b:00007f6b8b558eb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  816.379194] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cb97024
[  816.386473] RDX: 0000000000000002 RSI: 00007f6b8b558fe0 RDI: 00000000ffffff9c
[  816.393745] RBP: 00007f6b8b558fe0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  816.401020] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  816.408293] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:28 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 14)

20:49:28 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:28 executing program 0:
socketpair(0x9, 0x800, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={<r2=>0x0, 0x1, r0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580))
r6 = syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0)
r8 = syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000)
socketpair(0x9, 0x800, 0x7fffffd, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={0x0, 0x1, r0}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={0x0, 0x1, r1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4}) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]}) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4) (async)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580)) (async)
syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0) (async)
syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff) (async)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000) (async)

20:49:28 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
socketpair(0x1a, 0x2, 0x1, &(0x7f00000000c0))
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:28 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
connect$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4}, 0x10)

20:49:28 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 10)

20:49:28 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000300)={0x8000})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:29 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020, 0x0, <r0=>0x0}, 0x2020)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]})
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200))
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51)

20:49:29 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x1}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast1}, @L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x1f}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x8}]}, 0x50}}, 0x4000040)

20:49:29 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  816.539421] FAULT_INJECTION: forcing a failure.
[  816.539421] name failslab, interval 1, probability 0, space 0, times 0
[  816.561940] FAULT_INJECTION: forcing a failure.
[  816.561940] name failslab, interval 1, probability 0, space 0, times 0
[  816.613330] CPU: 1 PID: 21078 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  816.621275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  816.630633] Call Trace:
[  816.633227]  dump_stack+0x1b2/0x281
[  816.636871]  should_fail.cold+0x10a/0x149
[  816.641117]  should_failslab+0xd6/0x130
[  816.645107]  kmem_cache_alloc+0x28e/0x3c0
[  816.649268]  __kernfs_new_node+0x6f/0x470
[  816.653435]  kernfs_new_node+0x7b/0xe0
[  816.657332]  __kernfs_create_file+0x3d/0x320
[  816.661775]  sysfs_add_file_mode_ns+0x1e1/0x450
[  816.666439]  ? kernfs_create_dir_ns+0x171/0x200
[  816.671111]  internal_create_group+0x22b/0x710
[  816.675699]  lo_ioctl+0x1137/0x1cd0
[  816.679365]  ? loop_set_status64+0xe0/0xe0
[  816.683611]  blkdev_ioctl+0x540/0x1830
[  816.687508]  ? blkpg_ioctl+0x8d0/0x8d0
[  816.691406]  ? trace_hardirqs_on+0x10/0x10
[  816.695734]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  816.700834]  ? debug_check_no_obj_freed+0x2c0/0x680
[  816.705841]  block_ioctl+0xd9/0x120
[  816.709449]  ? blkdev_fallocate+0x3a0/0x3a0
[  816.713753]  do_vfs_ioctl+0x75a/0xff0
[  816.717558]  ? lock_acquire+0x170/0x3f0
[  816.721536]  ? ioctl_preallocate+0x1a0/0x1a0
[  816.725950]  ? __fget+0x265/0x3e0
[  816.729403]  ? do_vfs_ioctl+0xff0/0xff0
[  816.733378]  ? security_file_ioctl+0x83/0xb0
[  816.737786]  SyS_ioctl+0x7f/0xb0
[  816.741144]  ? do_vfs_ioctl+0xff0/0xff0
[  816.745107]  do_syscall_64+0x1d5/0x640
[  816.748981]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  816.754155] RIP: 0033:0x7fcd83ff2ec7
20:49:29 executing program 0:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xa0a00, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000040)={{@local, 0x20}, 0x6, 0x5, 0x5})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000000c0)={0x4, 0x9, 0xfffff7aa, 0x80800})

[  816.757851] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  816.765543] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  816.772798] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  816.780051] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  816.787317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  816.794588] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:29 executing program 0:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xa0a00, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000040)={{@local, 0x20}, 0x6, 0x5, 0x5})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000000c0)={0x4, 0x9, 0xfffff7aa, 0x80800})
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xa0a00, 0x0) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000040)={{@local, 0x20}, 0x6, 0x5, 0x5}) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2) (async)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000000c0)={0x4, 0x9, 0xfffff7aa, 0x80800}) (async)

[  816.828496] CPU: 0 PID: 21085 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  816.836424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  816.836433] Call Trace:
[  816.848412]  dump_stack+0x1b2/0x281
[  816.848427]  should_fail.cold+0x10a/0x149
[  816.848441]  should_failslab+0xd6/0x130
[  816.848453]  kmem_cache_alloc+0x28e/0x3c0
[  816.848467]  __kernfs_new_node+0x6f/0x470
[  816.848479]  kernfs_create_dir_ns+0x8c/0x200
[  816.848491]  internal_create_group+0xe9/0x710
[  816.848507]  lo_ioctl+0x1137/0x1cd0
[  816.848520]  ? loop_set_status64+0xe0/0xe0
[  816.848532]  blkdev_ioctl+0x540/0x1830
[  816.848541]  ? blkpg_ioctl+0x8d0/0x8d0
[  816.848551]  ? trace_hardirqs_on+0x10/0x10
[  816.848564]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  816.848573]  ? debug_check_no_obj_freed+0x2c0/0x680
[  816.848586]  block_ioctl+0xd9/0x120
[  816.848593]  ? blkdev_fallocate+0x3a0/0x3a0
[  816.848603]  do_vfs_ioctl+0x75a/0xff0
[  816.848612]  ? lock_acquire+0x170/0x3f0
[  816.848620]  ? ioctl_preallocate+0x1a0/0x1a0
[  816.848632]  ? __fget+0x265/0x3e0
[  816.848643]  ? do_vfs_ioctl+0xff0/0xff0
[  816.848654]  ? security_file_ioctl+0x83/0xb0
[  816.848664]  SyS_ioctl+0x7f/0xb0
[  816.848672]  ? do_vfs_ioctl+0xff0/0xff0
[  816.848683]  do_syscall_64+0x1d5/0x640
[  816.848696]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  816.848707] RIP: 0033:0x7f6b8cbe3ec7
[  816.960119] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:49:29 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 15)

20:49:29 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:29 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x1}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast1}, @L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x1f}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x8}]}, 0x50}}, 0x4000040)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0) (async)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x1}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast1}, @L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x1f}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x8}]}, 0x50}}, 0x4000040) (async)

[  816.960135] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  816.960140] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  816.960144] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
20:49:29 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020, 0x0, <r0=>0x0}, 0x2020)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]})
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200))
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51)
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020}, 0x2020) (async)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)) (async)
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) (async)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]}) (async)
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200)) (async)
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6) (async)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51) (async)

20:49:29 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 11)

20:49:29 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:29 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0) (async)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x1}, @L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast1}, @L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x1f}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x8}]}, 0x50}}, 0x4000040)

20:49:29 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 12)

[  816.960149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  816.960153] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  817.064169] FAULT_INJECTION: forcing a failure.
[  817.064169] name failslab, interval 1, probability 0, space 0, times 0
20:49:29 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:29 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 16)

20:49:29 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  817.064185] CPU: 1 PID: 21157 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  817.064191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  817.064195] Call Trace:
[  817.064208]  dump_stack+0x1b2/0x281
[  817.064223]  should_fail.cold+0x10a/0x149
[  817.064239]  should_failslab+0xd6/0x130
[  817.064251]  kmem_cache_alloc+0x28e/0x3c0
[  817.064266]  __kernfs_new_node+0x6f/0x470
[  817.064278]  kernfs_create_dir_ns+0x8c/0x200
[  817.064291]  internal_create_group+0xe9/0x710
[  817.064305]  lo_ioctl+0x1137/0x1cd0
[  817.064317]  ? loop_set_status64+0xe0/0xe0
[  817.064332]  blkdev_ioctl+0x540/0x1830
[  817.064342]  ? blkpg_ioctl+0x8d0/0x8d0
[  817.064351]  ? trace_hardirqs_on+0x10/0x10
[  817.064364]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  817.064374]  ? debug_check_no_obj_freed+0x2c0/0x680
[  817.064388]  block_ioctl+0xd9/0x120
[  817.064395]  ? blkdev_fallocate+0x3a0/0x3a0
[  817.064405]  do_vfs_ioctl+0x75a/0xff0
[  817.064414]  ? lock_acquire+0x170/0x3f0
[  817.064424]  ? ioctl_preallocate+0x1a0/0x1a0
[  817.064436]  ? __fget+0x265/0x3e0
[  817.064446]  ? do_vfs_ioctl+0xff0/0xff0
[  817.064456]  ? security_file_ioctl+0x83/0xb0
[  817.064465]  SyS_ioctl+0x7f/0xb0
[  817.064473]  ? do_vfs_ioctl+0xff0/0xff0
[  817.064483]  do_syscall_64+0x1d5/0x640
[  817.064497]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  817.064504] RIP: 0033:0x7f6b8cbe3ec7
[  817.064510] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  817.064519] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  817.064525] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  817.064530] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  817.064535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  817.064540] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  817.082280] FAULT_INJECTION: forcing a failure.
[  817.082280] name failslab, interval 1, probability 0, space 0, times 0
[  817.082293] CPU: 0 PID: 21162 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  817.082300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  817.082303] Call Trace:
[  817.082319]  dump_stack+0x1b2/0x281
[  817.082334]  should_fail.cold+0x10a/0x149
[  817.082349]  should_failslab+0xd6/0x130
[  817.082362]  kmem_cache_alloc+0x28e/0x3c0
[  817.082377]  __kernfs_new_node+0x6f/0x470
[  817.082398]  kernfs_new_node+0x7b/0xe0
[  817.082410]  __kernfs_create_file+0x3d/0x320
[  817.082423]  sysfs_add_file_mode_ns+0x1e1/0x450
[  817.082433]  ? kernfs_create_dir_ns+0x171/0x200
[  817.082445]  internal_create_group+0x22b/0x710
[  817.082461]  lo_ioctl+0x1137/0x1cd0
[  817.082475]  ? loop_set_status64+0xe0/0xe0
[  817.082489]  blkdev_ioctl+0x540/0x1830
[  817.082502]  ? blkpg_ioctl+0x8d0/0x8d0
[  817.082511]  ? trace_hardirqs_on+0x10/0x10
[  817.082525]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  817.082535]  ? debug_check_no_obj_freed+0x2c0/0x680
[  817.082549]  block_ioctl+0xd9/0x120
[  817.082557]  ? blkdev_fallocate+0x3a0/0x3a0
[  817.082567]  do_vfs_ioctl+0x75a/0xff0
[  817.082577]  ? lock_acquire+0x170/0x3f0
[  817.082587]  ? ioctl_preallocate+0x1a0/0x1a0
[  817.082600]  ? __fget+0x265/0x3e0
[  817.082611]  ? do_vfs_ioctl+0xff0/0xff0
[  817.082622]  ? security_file_ioctl+0x83/0xb0
[  817.082633]  SyS_ioctl+0x7f/0xb0
[  817.082640]  ? do_vfs_ioctl+0xff0/0xff0
[  817.082652]  do_syscall_64+0x1d5/0x640
[  817.082667]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  817.082675] RIP: 0033:0x7fcd83ff2ec7
[  817.082680] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  817.082691] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  817.082696] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  817.082701] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  817.082707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  817.082713] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  817.150317] FAULT_INJECTION: forcing a failure.
[  817.150317] name failslab, interval 1, probability 0, space 0, times 0
[  817.150330] CPU: 1 PID: 21174 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  817.150336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  817.150339] Call Trace:
[  817.150354]  dump_stack+0x1b2/0x281
[  817.150369]  should_fail.cold+0x10a/0x149
[  817.150383]  should_failslab+0xd6/0x130
[  817.150395]  kmem_cache_alloc+0x40/0x3c0
[  817.150411]  radix_tree_node_alloc.constprop.0+0x1b0/0x2f0
[  817.150422]  idr_get_free_cmn+0x595/0x8d0
[  817.150439]  idr_alloc_cmn+0xe8/0x1e0
[  817.150451]  ? __fprop_inc_percpu_max+0x1d0/0x1d0
[  817.150460]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  817.150471]  ? __schedule+0x1450/0x1de0
[  817.150480]  ? cpuacct_charge+0x1cf/0x350
[  817.150488]  ? fs_reclaim_release+0xd0/0x110
[  817.150501]  idr_alloc_cyclic+0xc2/0x1d0
[  817.150512]  ? idr_alloc_cmn+0x1e0/0x1e0
[  817.150522]  ? __radix_tree_preload+0x1c3/0x250
[  817.150535]  __kernfs_new_node+0xaf/0x470
[  817.150548]  kernfs_create_dir_ns+0x8c/0x200
[  817.150559]  internal_create_group+0xe9/0x710
[  817.150574]  lo_ioctl+0x1137/0x1cd0
[  817.150587]  ? loop_set_status64+0xe0/0xe0
[  817.150599]  blkdev_ioctl+0x540/0x1830
[  817.150610]  ? blkpg_ioctl+0x8d0/0x8d0
[  817.150619]  ? trace_hardirqs_on+0x10/0x10
[  817.150631]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  817.150641]  ? debug_check_no_obj_freed+0x2c0/0x680
[  817.150654]  block_ioctl+0xd9/0x120
[  817.150662]  ? blkdev_fallocate+0x3a0/0x3a0
[  817.150671]  do_vfs_ioctl+0x75a/0xff0
[  817.150681]  ? lock_acquire+0x170/0x3f0
[  817.150689]  ? ioctl_preallocate+0x1a0/0x1a0
[  817.150700]  ? __fget+0x265/0x3e0
[  817.150709]  ? do_vfs_ioctl+0xff0/0xff0
[  817.150719]  ? security_file_ioctl+0x83/0xb0
[  817.150729]  SyS_ioctl+0x7f/0xb0
[  817.150737]  ? do_vfs_ioctl+0xff0/0xff0
[  817.150748]  do_syscall_64+0x1d5/0x640
[  817.150762]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  817.150769] RIP: 0033:0x7f6b8cbe3ec7
[  817.150774] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  817.150785] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  817.150790] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  817.150796] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  817.150812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  817.150818] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  817.175744] FAULT_INJECTION: forcing a failure.
[  817.175744] name failslab, interval 1, probability 0, space 0, times 0
[  817.175756] CPU: 0 PID: 21185 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  817.175762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  817.175765] Call Trace:
[  817.175779]  dump_stack+0x1b2/0x281
[  817.175796]  should_fail.cold+0x10a/0x149
[  817.175810]  should_failslab+0xd6/0x130
[  817.175822]  kmem_cache_alloc+0x28e/0x3c0
[  817.175836]  __kernfs_new_node+0x6f/0x470
[  817.175849]  kernfs_new_node+0x7b/0xe0
[  817.175860]  __kernfs_create_file+0x3d/0x320
[  817.175871]  sysfs_add_file_mode_ns+0x1e1/0x450
[  817.175880]  ? kernfs_create_dir_ns+0x171/0x200
[  817.175891]  internal_create_group+0x22b/0x710
[  817.175906]  lo_ioctl+0x1137/0x1cd0
[  817.175919]  ? loop_set_status64+0xe0/0xe0
[  817.175931]  blkdev_ioctl+0x540/0x1830
[  817.175941]  ? blkpg_ioctl+0x8d0/0x8d0
[  817.175950]  ? trace_hardirqs_on+0x10/0x10
[  817.175963]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  817.175973]  ? debug_check_no_obj_freed+0x2c0/0x680
[  817.175986]  block_ioctl+0xd9/0x120
[  817.175994]  ? blkdev_fallocate+0x3a0/0x3a0
[  817.176003]  do_vfs_ioctl+0x75a/0xff0
[  817.176012]  ? lock_acquire+0x170/0x3f0
[  817.176021]  ? ioctl_preallocate+0x1a0/0x1a0
[  817.176032]  ? __fget+0x265/0x3e0
[  817.176042]  ? do_vfs_ioctl+0xff0/0xff0
[  817.176053]  ? security_file_ioctl+0x83/0xb0
[  817.176063]  SyS_ioctl+0x7f/0xb0
[  817.176070]  ? do_vfs_ioctl+0xff0/0xff0
[  817.176081]  do_syscall_64+0x1d5/0x640
[  817.176094]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  817.176101] RIP: 0033:0x7fcd83ff2ec7
[  817.176106] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  817.176116] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  817.176121] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  817.176126] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
20:49:30 executing program 0:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xa0a00, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000040)={{@local, 0x20}, 0x6, 0x5, 0x5})
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
syz_open_dev$radio(&(0x7f0000000080), 0x3, 0x2) (async)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000000c0)={0x4, 0x9, 0xfffff7aa, 0x80800})

20:49:30 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000001c0), r0)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)=ANY=[@ANYBLOB="4c00000075fc4496b12f40d61fd4c1b78ebfdf78084ee63b5c629deb0c2ec3ac2e71dfc6bd58b7fa99bc886c82e4157d4e7931f69629cbbba2c6b84fcac278ab0c1fb40c828ac1c2940f79", @ANYRES16=r1, @ANYBLOB="00042dbd7000fddbdf25010000000800020002000000080002000200000008000100000000000800010001000000080002000200000008000200020000000800010003000000"], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000000)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r2, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a9335d1}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
socket$bt_rfcomm(0x1f, 0x1, 0x3)
socketpair(0x26, 0x5, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
sendmsg$NLBL_CIPSOV4_C_LIST(r3, &(0x7f00000007c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000780)={&(0x7f0000000340)={0x41c, r2, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x17c, 0xc, 0x0, 0x1, [{0x4}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfe}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd214}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc111}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e54fb27}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7c2b64dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1a79dac7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61a20cf8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x65dd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6858cb8c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x692c}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1b4c8399}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7a439838}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9632}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2696e2b3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe966}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xe99a4fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb6ec}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f92}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5314bc85}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb65}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2872b84b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x619e8174}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e2c}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1860}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x639b4607}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35dc9b60}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4215b8ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x240cba1e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf40c}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x462}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x956e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e557a46}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x69e72a13}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40debb9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ce}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd5f2}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d334e87}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x39ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x647b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfa70}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4597df6a}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x118, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdbd8}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3b2e1722}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x48ec}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xdbd542c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30ad3804}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6bf7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47c86134}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb710354}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3a0f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x13e6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x786cfad2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65c7ec90}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6b80527c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xff47}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2221bc81}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47fed604}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3461622e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x13c21c5c}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ea0f1dd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xae29}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cae}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x54416cbe}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x29bc7a8f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2dd325cd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4244}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfc4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53b4691f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x36d2db32}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xba0102d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8a98}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeb0d}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5}, {0x5}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_TAGLST={0x3c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0xcc, 0x8, 0x0, 0x1, [{0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78a8683a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xde}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x106b711a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2172c64}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x571cf3ba}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78fe6ff}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f4d68e4}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a9e65a0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45c4a680}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3e710cb2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xaf}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3e}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56e880ae}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x476cc1d7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x48}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xe0c0f63}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcb}]}]}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20000080}, 0x40014)

20:49:30 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 13)

20:49:30 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:30 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020, 0x0, <r0=>0x0}, 0x2020)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]})
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200))
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51)
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020}, 0x2020) (async)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)) (async)
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) (async)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]}) (async)
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200)) (async)
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6) (async)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51) (async)

20:49:30 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 17)

[  817.176131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  817.176136] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:30 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000001c0), r0)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)=ANY=[@ANYBLOB="4c00000075fc4496b12f40d61fd4c1b78ebfdf78084ee63b5c629deb0c2ec3ac2e71dfc6bd58b7fa99bc886c82e4157d4e7931f69629cbbba2c6b84fcac278ab0c1fb40c828ac1c2940f79", @ANYRES16=r1, @ANYBLOB="00042dbd7000fddbdf25010000000800020002000000080002000200000008000100000000000800010001000000080002000200000008000200020000000800010003000000"], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000000) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r2, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a9335d1}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x80) (async)
socket$bt_rfcomm(0x1f, 0x1, 0x3) (async)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
sendmsg$NLBL_CIPSOV4_C_LIST(r3, &(0x7f00000007c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000780)={&(0x7f0000000340)={0x41c, r2, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x17c, 0xc, 0x0, 0x1, [{0x4}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfe}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd214}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc111}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e54fb27}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7c2b64dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1a79dac7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61a20cf8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x65dd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6858cb8c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x692c}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1b4c8399}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7a439838}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9632}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2696e2b3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe966}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xe99a4fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb6ec}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f92}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5314bc85}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb65}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2872b84b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x619e8174}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e2c}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1860}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x639b4607}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35dc9b60}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4215b8ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x240cba1e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf40c}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x462}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x956e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e557a46}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x69e72a13}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40debb9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ce}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd5f2}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d334e87}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x39ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x647b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfa70}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4597df6a}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x118, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdbd8}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3b2e1722}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x48ec}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xdbd542c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30ad3804}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6bf7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47c86134}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb710354}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3a0f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x13e6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x786cfad2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65c7ec90}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6b80527c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xff47}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2221bc81}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47fed604}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3461622e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x13c21c5c}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ea0f1dd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xae29}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cae}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x54416cbe}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x29bc7a8f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2dd325cd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4244}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfc4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53b4691f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x36d2db32}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xba0102d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8a98}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeb0d}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5}, {0x5}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_TAGLST={0x3c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0xcc, 0x8, 0x0, 0x1, [{0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78a8683a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xde}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x106b711a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2172c64}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x571cf3ba}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78fe6ff}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f4d68e4}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a9e65a0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45c4a680}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3e710cb2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xaf}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3e}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56e880ae}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x476cc1d7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x48}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xe0c0f63}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcb}]}]}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20000080}, 0x40014)

[  818.108390] FAULT_INJECTION: forcing a failure.
[  818.108390] name failslab, interval 1, probability 0, space 0, times 0
[  818.119741] CPU: 0 PID: 21225 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  818.127625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  818.136990] Call Trace:
[  818.139617]  dump_stack+0x1b2/0x281
[  818.143291]  should_fail.cold+0x10a/0x149
[  818.147451]  should_failslab+0xd6/0x130
[  818.151436]  kmem_cache_alloc+0x40/0x3c0
20:49:30 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000001c0), r0)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000800)=ANY=[@ANYBLOB="4c00000075fc4496b12f40d61fd4c1b78ebfdf78084ee63b5c629deb0c2ec3ac2e71dfc6bd58b7fa99bc886c82e4157d4e7931f69629cbbba2c6b84fcac278ab0c1fb40c828ac1c2940f79", @ANYRES16=r1, @ANYBLOB="00042dbd7000fddbdf25010000000800020002000000080002000200000008000100000000000800010001000000080002000200000008000200020000000800010003000000"], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000000)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r2, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a9335d1}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
socket$bt_rfcomm(0x1f, 0x1, 0x3) (async)
socketpair(0x26, 0x5, 0x0, 0x0) (async, rerun: 32)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async, rerun: 32)
sendmsg$NLBL_CIPSOV4_C_LIST(r3, &(0x7f00000007c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000780)={&(0x7f0000000340)={0x41c, r2, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x17c, 0xc, 0x0, 0x1, [{0x4}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfe}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd214}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc111}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e54fb27}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7c2b64dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1a79dac7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61a20cf8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x65dd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6858cb8c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x692c}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1b4c8399}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7a439838}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9632}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2696e2b3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe966}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xe99a4fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb6ec}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f92}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5314bc85}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb65}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2872b84b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x619e8174}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e2c}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1860}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x639b4607}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35dc9b60}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4215b8ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x240cba1e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf40c}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x462}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x956e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e557a46}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x69e72a13}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40debb9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ce}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd5f2}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d334e87}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x39ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x647b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfa70}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4597df6a}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x118, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdbd8}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3b2e1722}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x48ec}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xdbd542c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30ad3804}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6bf7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47c86134}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb710354}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3a0f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x13e6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x786cfad2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65c7ec90}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6b80527c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xff47}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2221bc81}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47fed604}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3461622e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x13c21c5c}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ea0f1dd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xae29}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cae}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x54416cbe}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x29bc7a8f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2dd325cd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4244}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfc4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53b4691f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x36d2db32}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xba0102d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8a98}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeb0d}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5}, {0x5}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_TAGLST={0x3c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0xcc, 0x8, 0x0, 0x1, [{0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78a8683a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xde}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x106b711a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2172c64}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x571cf3ba}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x78fe6ff}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f4d68e4}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a9e65a0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45c4a680}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3e710cb2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xaf}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3e}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56e880ae}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x476cc1d7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x48}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xe0c0f63}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcb}]}]}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20000080}, 0x40014) (rerun: 32)

[  818.155593]  radix_tree_node_alloc.constprop.0+0x1b0/0x2f0
[  818.161238]  idr_get_free_cmn+0x595/0x8d0
[  818.165404]  ? trace_hardirqs_on+0x10/0x10
[  818.169651]  idr_alloc_cmn+0xe8/0x1e0
[  818.173718]  ? __fprop_inc_percpu_max+0x1d0/0x1d0
[  818.178572]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  818.183604]  ? __schedule+0x1450/0x1de0
[  818.187672]  ? cpuacct_charge+0x1cf/0x350
[  818.191826]  ? fs_reclaim_release+0xd0/0x110
[  818.196253]  idr_alloc_cyclic+0xc2/0x1d0
[  818.200320]  ? idr_alloc_cmn+0x1e0/0x1e0
20:49:30 executing program 3:
socketpair(0x1f, 0x0, 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, &(0x7f0000000040)={0x4, 0x5a2e, 0x4, 0x1f, 0x1ff, 0x431d})

20:49:30 executing program 3:
socketpair(0x1f, 0x0, 0x0, 0x0) (async)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, &(0x7f0000000040)={0x4, 0x5a2e, 0x4, 0x1f, 0x1ff, 0x431d})

20:49:30 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  818.204391]  ? __radix_tree_preload+0x1c3/0x250
[  818.209102]  __kernfs_new_node+0xaf/0x470
[  818.213269]  kernfs_create_dir_ns+0x8c/0x200
[  818.217683]  internal_create_group+0xe9/0x710
[  818.222187]  lo_ioctl+0x1137/0x1cd0
[  818.225821]  ? loop_set_status64+0xe0/0xe0
[  818.230066]  blkdev_ioctl+0x540/0x1830
[  818.233994]  ? blkpg_ioctl+0x8d0/0x8d0
[  818.237886]  ? trace_hardirqs_on+0x10/0x10
[  818.242181]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  818.247297]  ? debug_check_no_obj_freed+0x2c0/0x680
[  818.252345]  block_ioctl+0xd9/0x120
20:49:30 executing program 3:
socketpair(0x1f, 0x0, 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, &(0x7f0000000040)={0x4, 0x5a2e, 0x4, 0x1f, 0x1ff, 0x431d})
socketpair(0x1f, 0x0, 0x0, 0x0) (async)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, &(0x7f0000000040)={0x4, 0x5a2e, 0x4, 0x1f, 0x1ff, 0x431d}) (async)

[  818.255976]  ? blkdev_fallocate+0x3a0/0x3a0
[  818.260314]  do_vfs_ioctl+0x75a/0xff0
[  818.264121]  ? lock_acquire+0x170/0x3f0
[  818.268106]  ? ioctl_preallocate+0x1a0/0x1a0
[  818.272527]  ? __fget+0x265/0x3e0
[  818.276094]  ? do_vfs_ioctl+0xff0/0xff0
[  818.280083]  ? security_file_ioctl+0x83/0xb0
[  818.284501]  SyS_ioctl+0x7f/0xb0
[  818.287995]  ? do_vfs_ioctl+0xff0/0xff0
[  818.292060]  do_syscall_64+0x1d5/0x640
[  818.295941]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  818.301125] RIP: 0033:0x7f6b8cbe3ec7
[  818.304845] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  818.312553] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  818.320018] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  818.327461] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  818.334732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  818.342112] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  818.349939] FAULT_INJECTION: forcing a failure.
20:49:30 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x4, 0x121000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000040)=""/32)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/timer_list\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f00000000c0)={0x10001, 0x4, [0x2]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:30 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  818.349939] name failslab, interval 1, probability 0, space 0, times 0
[  818.388459] CPU: 1 PID: 21227 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  818.396388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  818.405743] Call Trace:
[  818.408340]  dump_stack+0x1b2/0x281
[  818.411976]  should_fail.cold+0x10a/0x149
[  818.416133]  should_failslab+0xd6/0x130
[  818.420117]  kmem_cache_alloc+0x28e/0x3c0
[  818.424286]  __kernfs_new_node+0x6f/0x470
[  818.428443]  kernfs_new_node+0x7b/0xe0
[  818.432339]  __kernfs_create_file+0x3d/0x320
[  818.436885]  sysfs_add_file_mode_ns+0x1e1/0x450
[  818.441558]  ? kernfs_create_dir_ns+0x171/0x200
[  818.446247]  internal_create_group+0x22b/0x710
[  818.450855]  lo_ioctl+0x1137/0x1cd0
[  818.454494]  ? loop_set_status64+0xe0/0xe0
[  818.458820]  blkdev_ioctl+0x540/0x1830
[  818.462800]  ? blkpg_ioctl+0x8d0/0x8d0
[  818.466693]  ? trace_hardirqs_on+0x10/0x10
[  818.470931]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  818.476039]  ? debug_check_no_obj_freed+0x2c0/0x680
[  818.481067]  block_ioctl+0xd9/0x120
[  818.484695]  ? blkdev_fallocate+0x3a0/0x3a0
[  818.489106]  do_vfs_ioctl+0x75a/0xff0
[  818.492910]  ? lock_acquire+0x170/0x3f0
[  818.496898]  ? ioctl_preallocate+0x1a0/0x1a0
[  818.501317]  ? __fget+0x265/0x3e0
[  818.504787]  ? do_vfs_ioctl+0xff0/0xff0
[  818.508797]  ? security_file_ioctl+0x83/0xb0
[  818.513219]  SyS_ioctl+0x7f/0xb0
[  818.516587]  ? do_vfs_ioctl+0xff0/0xff0
[  818.520564]  do_syscall_64+0x1d5/0x640
[  818.524460]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  818.529661] RIP: 0033:0x7fcd83ff2ec7
20:49:31 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 14)

20:49:31 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)={0x0, <r0=>0x0})
r1 = epoll_create1(0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@dev}, 0x0, @in6=@dev}}, &(0x7f00000002c0)=0xe8)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="050328bd7000ffdbdf2501000000080002000100000004000180080003000500000024f0f3af4c67ec60582afb50e0845045a0"], 0x28}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000300), 0x232000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r3, 0x4004510f, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={r1, r3, 0xa7d3})

20:49:31 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x4, 0x121000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000040)=""/32) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/timer_list\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f00000000c0)={0x10001, 0x4, [0x2]}) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:31 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 18)

20:49:31 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:31 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
write$FUSE_WRITE(r1, &(0x7f0000000000)={0x18}, 0x18)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  818.533370] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  818.541078] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  818.548350] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  818.555621] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  818.562894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  818.570168] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:31 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)={0x0, <r0=>0x0}) (async)
r1 = epoll_create1(0x0) (async)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@dev}, 0x0, @in6=@dev}}, &(0x7f00000002c0)=0xe8)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="050328bd7000ffdbdf2501000000080002000100000004000180080003000500000024f0f3af4c67ec60582afb50e0845045a0"], 0x28}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000300), 0x232000, 0x0) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r3, 0x4004510f, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={r1, r3, 0xa7d3})

20:49:31 executing program 0:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x4, 0x121000)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000040)=""/32) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/timer_list\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f00000000c0)={0x10001, 0x4, [0x2]}) (async, rerun: 32)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (rerun: 32)

20:49:31 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  818.662844] FAULT_INJECTION: forcing a failure.
[  818.662844] name failslab, interval 1, probability 0, space 0, times 0
[  818.675307] FAULT_INJECTION: forcing a failure.
[  818.675307] name failslab, interval 1, probability 0, space 0, times 0
[  818.692774] CPU: 1 PID: 21299 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  818.700682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  818.710132] Call Trace:
[  818.712732]  dump_stack+0x1b2/0x281
[  818.716388]  should_fail.cold+0x10a/0x149
[  818.720545]  should_failslab+0xd6/0x130
[  818.724528]  kmem_cache_alloc+0x28e/0x3c0
[  818.728689]  __kernfs_new_node+0x6f/0x470
[  818.732944]  kernfs_new_node+0x7b/0xe0
[  818.736838]  __kernfs_create_file+0x3d/0x320
[  818.741265]  sysfs_add_file_mode_ns+0x1e1/0x450
[  818.745941]  ? kernfs_create_dir_ns+0x171/0x200
[  818.750620]  internal_create_group+0x22b/0x710
[  818.755215]  lo_ioctl+0x1137/0x1cd0
[  818.758852]  ? loop_set_status64+0xe0/0xe0
20:49:31 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
write$FUSE_WRITE(r1, &(0x7f0000000000)={0x18}, 0x18)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
write$FUSE_WRITE(r1, &(0x7f0000000000)={0x18}, 0x18) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

20:49:31 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:31 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)

[  818.763095]  blkdev_ioctl+0x540/0x1830
[  818.766993]  ? blkpg_ioctl+0x8d0/0x8d0
[  818.770884]  ? trace_hardirqs_on+0x10/0x10
[  818.775128]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  818.780236]  ? debug_check_no_obj_freed+0x2c0/0x680
[  818.785258]  block_ioctl+0xd9/0x120
[  818.788890]  ? blkdev_fallocate+0x3a0/0x3a0
[  818.793231]  do_vfs_ioctl+0x75a/0xff0
[  818.797044]  ? lock_acquire+0x170/0x3f0
[  818.801027]  ? ioctl_preallocate+0x1a0/0x1a0
[  818.805451]  ? __fget+0x265/0x3e0
[  818.808920]  ? do_vfs_ioctl+0xff0/0xff0
[  818.812909]  ? security_file_ioctl+0x83/0xb0
[  818.817417]  SyS_ioctl+0x7f/0xb0
[  818.820796]  ? do_vfs_ioctl+0xff0/0xff0
[  818.824777]  do_syscall_64+0x1d5/0x640
[  818.828682]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  818.833877] RIP: 0033:0x7f6b8cbe3ec7
[  818.837592] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  818.845306] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  818.852580] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  818.859849] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  818.867304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  818.874581] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  818.887243] CPU: 1 PID: 21300 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  818.895320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  818.904674] Call Trace:
[  818.907281]  dump_stack+0x1b2/0x281
[  818.910917]  should_fail.cold+0x10a/0x149
[  818.915159]  should_failslab+0xd6/0x130
[  818.919142]  kmem_cache_alloc_trace+0x29a/0x3d0
[  818.923818]  ? dev_uevent_filter+0xd0/0xd0
[  818.928061]  kobject_uevent_env+0x20c/0xf30
[  818.932427]  ? internal_create_group+0x48f/0x710
[  818.937193]  lo_ioctl+0x11a6/0x1cd0
[  818.940834]  ? loop_set_status64+0xe0/0xe0
[  818.945077]  blkdev_ioctl+0x540/0x1830
[  818.948976]  ? blkpg_ioctl+0x8d0/0x8d0
[  818.952869]  ? trace_hardirqs_on+0x10/0x10
[  818.957113]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  818.962226]  ? debug_check_no_obj_freed+0x2c0/0x680
[  818.967252]  block_ioctl+0xd9/0x120
[  818.970882]  ? blkdev_fallocate+0x3a0/0x3a0
[  818.975211]  do_vfs_ioctl+0x75a/0xff0
[  818.979017]  ? lock_acquire+0x170/0x3f0
[  818.983001]  ? ioctl_preallocate+0x1a0/0x1a0
[  818.987416]  ? __fget+0x265/0x3e0
[  818.991047]  ? do_vfs_ioctl+0xff0/0xff0
[  818.995031]  ? security_file_ioctl+0x83/0xb0
[  818.999445]  SyS_ioctl+0x7f/0xb0
[  819.002813]  ? do_vfs_ioctl+0xff0/0xff0
[  819.006791]  do_syscall_64+0x1d5/0x640
[  819.010688]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  819.015882] RIP: 0033:0x7fcd83ff2ec7
[  819.019589] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  819.027311] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  819.034566] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  819.041828] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  819.049088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  819.056353] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:31 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 15)

20:49:31 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:31 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)

20:49:31 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
write$FUSE_WRITE(r1, &(0x7f0000000000)={0x18}, 0x18)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
write$FUSE_WRITE(r1, &(0x7f0000000000)={0x18}, 0x18) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

20:49:31 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)={0x0, <r0=>0x0})
r1 = epoll_create1(0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@dev}, 0x0, @in6=@dev}}, &(0x7f00000002c0)=0xe8)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="050328bd7000ffdbdf2501000000080002000100000004000180080003000500000024f0f3af4c67ec60582afb50e0845045a0"], 0x28}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000300), 0x232000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r3, 0x4004510f, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={r1, r3, 0xa7d3})
socketpair(0x26, 0x5, 0x0, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)) (async)
epoll_create1(0x0) (async)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in, @in6=@empty}}, {{@in=@dev}, 0x0, @in6=@dev}}, &(0x7f00000002c0)=0xe8) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="050328bd7000ffdbdf2501000000080002000100000004000180080003000500000024f0f3af4c67ec60582afb50e0845045a0"], 0x28}, 0x1, 0x0, 0x0, 0x40804}, 0x0) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000300), 0x232000, 0x0) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r3, 0x4004510f, 0x0) (async)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={r1, r3, 0xa7d3}) (async)

20:49:31 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 19)

20:49:31 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:31 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
socketpair(0x2, 0x6, 0xee3, &(0x7f0000000000))
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000100))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r4, 0xc01064b3, &(0x7f00000000c0))
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0)
socketpair(0x1e, 0x1, 0x5, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000326bd7000ffdbdf25040000000800020001000000080003000600000028000180060001000a00000008000700", @ANYRES32=0x0, @ANYBLOB="1400040000000000000000000000000000000000080003000300000004000180"], 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x20040000)
write$sysctl(r3, &(0x7f0000000180)='5\x00', 0x2)
ioctl$PPPOEIOCSFWD(r6, 0x4008b100, 0x0)

20:49:31 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)

20:49:31 executing program 3:
socketpair(0x2, 0x80000, 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@hyper}, 0x400, 0x7, 0xd4f2ca1, 0x200})

20:49:31 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x6007}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  819.181862] FAULT_INJECTION: forcing a failure.
[  819.181862] name failslab, interval 1, probability 0, space 0, times 0
[  819.222443] FAULT_INJECTION: forcing a failure.
[  819.222443] name failslab, interval 1, probability 0, space 0, times 0
[  819.226604] CPU: 1 PID: 21370 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  819.241646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  819.241654] Call Trace:
[  819.253604]  dump_stack+0x1b2/0x281
[  819.257240]  should_fail.cold+0x10a/0x149
[  819.261394]  should_failslab+0xd6/0x130
[  819.265442]  kmem_cache_alloc+0x28e/0x3c0
20:49:31 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
socketpair(0x2, 0x6, 0xee3, &(0x7f0000000000))
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000100))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r4, 0xc01064b3, &(0x7f00000000c0))
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0)
socketpair(0x1e, 0x1, 0x5, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000326bd7000ffdbdf25040000000800020001000000080003000600000028000180060001000a00000008000700", @ANYRES32=0x0, @ANYBLOB="1400040000000000000000000000000000000000080003000300000004000180"], 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x20040000)
write$sysctl(r3, &(0x7f0000000180)='5\x00', 0x2)
ioctl$PPPOEIOCSFWD(r6, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
socketpair(0x2, 0x6, 0xee3, &(0x7f0000000000)) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0) (async)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, 0xffffffffffffffff) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000100)) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r4, 0xc01064b3, &(0x7f00000000c0)) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0) (async)
socketpair(0x1e, 0x1, 0x5, &(0x7f0000000080)) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000326bd7000ffdbdf25040000000800020001000000080003000600000028000180060001000a00000008000700", @ANYRES32=0x0, @ANYBLOB="1400040000000000000000000000000000000000080003000300000004000180"], 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x20040000) (async)
write$sysctl(r3, &(0x7f0000000180)='5\x00', 0x2) (async)
ioctl$PPPOEIOCSFWD(r6, 0x4008b100, 0x0) (async)

[  819.269605]  __kernfs_new_node+0x6f/0x470
[  819.274110]  kernfs_new_node+0x7b/0xe0
[  819.278009]  __kernfs_create_file+0x3d/0x320
[  819.282420]  sysfs_add_file_mode_ns+0x1e1/0x450
[  819.287531]  ? kernfs_create_dir_ns+0x171/0x200
[  819.292206]  internal_create_group+0x22b/0x710
[  819.296797]  lo_ioctl+0x1137/0x1cd0
[  819.300433]  ? loop_set_status64+0xe0/0xe0
[  819.304682]  blkdev_ioctl+0x540/0x1830
[  819.304693]  ? blkpg_ioctl+0x8d0/0x8d0
[  819.304703]  ? trace_hardirqs_on+0x10/0x10
[  819.304718]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  819.304729]  ? debug_check_no_obj_freed+0x2c0/0x680
[  819.304744]  block_ioctl+0xd9/0x120
[  819.304752]  ? blkdev_fallocate+0x3a0/0x3a0
[  819.304761]  do_vfs_ioctl+0x75a/0xff0
[  819.304770]  ? lock_acquire+0x170/0x3f0
[  819.304780]  ? ioctl_preallocate+0x1a0/0x1a0
[  819.304793]  ? __fget+0x265/0x3e0
[  819.304804]  ? do_vfs_ioctl+0xff0/0xff0
[  819.304816]  ? security_file_ioctl+0x83/0xb0
[  819.304826]  SyS_ioctl+0x7f/0xb0
[  819.304834]  ? do_vfs_ioctl+0xff0/0xff0
20:49:31 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 16)

20:49:31 executing program 0:
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000))
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000040)={0x8, 0x7f, 0x5})
socketpair(0x2c, 0x3, 0x7fffffd, 0x0)
socket$l2tp(0x2, 0x2, 0x73)

20:49:31 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x6007}}}, 0x0)

20:49:31 executing program 3:
socketpair(0x2, 0x80000, 0x0, 0x0) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@hyper}, 0x400, 0x7, 0xd4f2ca1, 0x200})

20:49:31 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 20)

[  819.304846]  do_syscall_64+0x1d5/0x640
[  819.304861]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  819.304869] RIP: 0033:0x7f6b8cbe3ec7
[  819.304875] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  819.304885] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  819.304891] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  819.304896] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  819.304902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  819.304907] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  819.322589] CPU: 0 PID: 21377 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  819.322596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  819.322599] Call Trace:
[  819.322614]  dump_stack+0x1b2/0x281
[  819.322628]  should_fail.cold+0x10a/0x149
[  819.322642]  should_failslab+0xd6/0x130
[  819.322653]  __kmalloc+0x2c1/0x400
[  819.322670]  ? kobject_get_path+0xb5/0x230
[  819.322680]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  819.322691]  kobject_get_path+0xb5/0x230
[  819.322704]  kobject_uevent_env+0x230/0xf30
[  819.322716]  ? internal_create_group+0x48f/0x710
[  819.322732]  lo_ioctl+0x11a6/0x1cd0
[  819.322744]  ? loop_set_status64+0xe0/0xe0
[  819.322757]  blkdev_ioctl+0x540/0x1830
20:49:32 executing program 0:
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000))
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000040)={0x8, 0x7f, 0x5})
socketpair(0x2c, 0x3, 0x7fffffd, 0x0)
socket$l2tp(0x2, 0x2, 0x73)

20:49:32 executing program 4:
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000))
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000040)={0x8, 0x7f, 0x5})
socketpair(0x2c, 0x3, 0x7fffffd, 0x0)
socket$l2tp(0x2, 0x2, 0x73)

[  819.322767]  ? blkpg_ioctl+0x8d0/0x8d0
[  819.322776]  ? trace_hardirqs_on+0x10/0x10
[  819.322790]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  819.322800]  ? debug_check_no_obj_freed+0x2c0/0x680
[  819.322812]  block_ioctl+0xd9/0x120
[  819.322820]  ? blkdev_fallocate+0x3a0/0x3a0
[  819.322830]  do_vfs_ioctl+0x75a/0xff0
[  819.322839]  ? lock_acquire+0x170/0x3f0
[  819.322848]  ? ioctl_preallocate+0x1a0/0x1a0
[  819.322860]  ? __fget+0x265/0x3e0
[  819.322871]  ? do_vfs_ioctl+0xff0/0xff0
[  819.322883]  ? security_file_ioctl+0x83/0xb0
20:49:32 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  819.322893]  SyS_ioctl+0x7f/0xb0
[  819.322901]  ? do_vfs_ioctl+0xff0/0xff0
[  819.322912]  do_syscall_64+0x1d5/0x640
[  819.322927]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  819.322935] RIP: 0033:0x7fcd83ff2ec7
[  819.322940] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  819.322951] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  819.322956] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  819.322962] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
20:49:32 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  819.322968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  819.322973] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  819.539940] FAULT_INJECTION: forcing a failure.
[  819.539940] name failslab, interval 1, probability 0, space 0, times 0
[  819.560508] FAULT_INJECTION: forcing a failure.
[  819.560508] name failslab, interval 1, probability 0, space 0, times 0
[  819.623546] CPU: 1 PID: 21424 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
20:49:32 executing program 3:
socketpair(0x2, 0x80000, 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@hyper}, 0x400, 0x7, 0xd4f2ca1, 0x200})
socketpair(0x2, 0x80000, 0x0, 0x0) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@hyper}, 0x400, 0x7, 0xd4f2ca1, 0x200}) (async)

20:49:32 executing program 0:
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f0000000000))
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000040)={0x8, 0x7f, 0x5})
socketpair(0x2c, 0x3, 0x7fffffd, 0x0) (async)
socket$l2tp(0x2, 0x2, 0x73)

[  819.755627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  819.755631] Call Trace:
[  819.755646]  dump_stack+0x1b2/0x281
[  819.755657]  should_fail.cold+0x10a/0x149
[  819.755668]  should_failslab+0xd6/0x130
[  819.755683]  kmem_cache_alloc+0x28e/0x3c0
[  819.755694]  __kernfs_new_node+0x6f/0x470
[  819.755704]  kernfs_new_node+0x7b/0xe0
[  819.755712]  __kernfs_create_file+0x3d/0x320
[  819.755721]  sysfs_add_file_mode_ns+0x1e1/0x450
[  819.755729]  ? kernfs_create_dir_ns+0x171/0x200
[  819.755737]  internal_create_group+0x22b/0x710
[  819.755749]  lo_ioctl+0x1137/0x1cd0
[  819.755759]  ? loop_set_status64+0xe0/0xe0
[  819.755769]  blkdev_ioctl+0x540/0x1830
[  819.755777]  ? blkpg_ioctl+0x8d0/0x8d0
[  819.755785]  ? trace_hardirqs_on+0x10/0x10
[  819.755796]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  819.755804]  ? debug_check_no_obj_freed+0x2c0/0x680
[  819.755815]  block_ioctl+0xd9/0x120
[  819.755822]  ? blkdev_fallocate+0x3a0/0x3a0
[  819.755830]  do_vfs_ioctl+0x75a/0xff0
[  819.755838]  ? lock_acquire+0x170/0x3f0
[  819.755845]  ? ioctl_preallocate+0x1a0/0x1a0
[  819.755854]  ? __fget+0x265/0x3e0
[  819.755862]  ? do_vfs_ioctl+0xff0/0xff0
[  819.755872]  ? security_file_ioctl+0x83/0xb0
[  819.755880]  SyS_ioctl+0x7f/0xb0
[  819.755885]  ? do_vfs_ioctl+0xff0/0xff0
[  819.755894]  do_syscall_64+0x1d5/0x640
[  819.755905]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  819.755912] RIP: 0033:0x7fcd83ff2ec7
[  819.755915] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  819.755923] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  819.755927] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  819.755931] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  819.755935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  819.755939] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  819.755958] CPU: 0 PID: 21431 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  819.755963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  819.755965] Call Trace:
[  819.755974]  dump_stack+0x1b2/0x281
[  819.755985]  should_fail.cold+0x10a/0x149
[  819.755996]  should_failslab+0xd6/0x130
[  819.756006]  kmem_cache_alloc+0x28e/0x3c0
[  819.756018]  __kernfs_new_node+0x6f/0x470
[  819.756031]  kernfs_new_node+0x7b/0xe0
[  819.756041]  __kernfs_create_file+0x3d/0x320
[  819.756050]  sysfs_add_file_mode_ns+0x1e1/0x450
[  819.756058]  ? kernfs_create_dir_ns+0x171/0x200
[  819.756068]  internal_create_group+0x22b/0x710
[  819.756081]  lo_ioctl+0x1137/0x1cd0
[  819.756092]  ? loop_set_status64+0xe0/0xe0
[  819.756102]  blkdev_ioctl+0x540/0x1830
[  819.756112]  ? blkpg_ioctl+0x8d0/0x8d0
[  819.756120]  ? trace_hardirqs_on+0x10/0x10
[  819.756131]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  819.756140]  ? debug_check_no_obj_freed+0x2c0/0x680
[  819.756153]  block_ioctl+0xd9/0x120
[  819.756160]  ? blkdev_fallocate+0x3a0/0x3a0
[  819.756169]  do_vfs_ioctl+0x75a/0xff0
[  819.756185]  ? lock_acquire+0x170/0x3f0
[  819.756193]  ? ioctl_preallocate+0x1a0/0x1a0
[  819.756204]  ? __fget+0x265/0x3e0
[  819.756212]  ? do_vfs_ioctl+0xff0/0xff0
[  819.756220]  ? security_file_ioctl+0x83/0xb0
[  819.756228]  SyS_ioctl+0x7f/0xb0
[  819.756234]  ? do_vfs_ioctl+0xff0/0xff0
[  819.756243]  do_syscall_64+0x1d5/0x640
[  819.756256]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  819.756262] RIP: 0033:0x7f6b8cbe3ec7
[  819.756265] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  819.756274] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  819.756278] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  819.756283] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  819.756287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
20:49:32 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
socketpair(0x2, 0x6, 0xee3, &(0x7f0000000000))
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000100))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r4, 0xc01064b3, &(0x7f00000000c0))
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0)
socketpair(0x1e, 0x1, 0x5, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000326bd7000ffdbdf25040000000800020001000000080003000600000028000180060001000a00000008000700", @ANYRES32=0x0, @ANYBLOB="1400040000000000000000000000000000000000080003000300000004000180"], 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x20040000)
write$sysctl(r3, &(0x7f0000000180)='5\x00', 0x2)
ioctl$PPPOEIOCSFWD(r6, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
socketpair(0x2, 0x6, 0xee3, &(0x7f0000000000)) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0) (async)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, 0xffffffffffffffff) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, &(0x7f0000000100)) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r4, 0xc01064b3, &(0x7f00000000c0)) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0) (async)
socketpair(0x1e, 0x1, 0x5, &(0x7f0000000080)) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000326bd7000ffdbdf25040000000800020001000000080003000600000028000180060001000a00000008000700", @ANYRES32=0x0, @ANYBLOB="1400040000000000000000000000000000000000080003000300000004000180"], 0x58}, 0x1, 0x0, 0x0, 0x8011}, 0x20040000) (async)
write$sysctl(r3, &(0x7f0000000180)='5\x00', 0x2) (async)
ioctl$PPPOEIOCSFWD(r6, 0x4008b100, 0x0) (async)

20:49:32 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:32 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 17)

20:49:32 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0)
write$sequencer(r0, &(0x7f0000000040)=[@raw={0xc, 0x2}, @n={0x1, 0x6, @generic=0x96, 0x18}, @raw={0xc, 0x7, "77a19c4c613b"}, @v={0x93, 0xf, 0x90, 0x19, @generic=0xfa, 0x80, 0x81}, @l={0x92, 0x9, 0xe0, 0x19, 0x3, 0x7, 0x30}, @s={0x5, @generic=0x8, 0x5, 0x9}], 0x28)

20:49:32 executing program 3:
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x3}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x734f3d14}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x4040080)
socketpair(0x26, 0x5, 0x0, 0x0)

20:49:32 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 21)

20:49:32 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:32 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0)
write$sequencer(r0, &(0x7f0000000040)=[@raw={0xc, 0x2}, @n={0x1, 0x6, @generic=0x96, 0x18}, @raw={0xc, 0x7, "77a19c4c613b"}, @v={0x93, 0xf, 0x90, 0x19, @generic=0xfa, 0x80, 0x81}, @l={0x92, 0x9, 0xe0, 0x19, 0x3, 0x7, 0x30}, @s={0x5, @generic=0x8, 0x5, 0x9}], 0x28)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0) (async)
write$sequencer(r0, &(0x7f0000000040)=[@raw={0xc, 0x2}, @n={0x1, 0x6, @generic=0x96, 0x18}, @raw={0xc, 0x7, "77a19c4c613b"}, @v={0x93, 0xf, 0x90, 0x19, @generic=0xfa, 0x80, 0x81}, @l={0x92, 0x9, 0xe0, 0x19, 0x3, 0x7, 0x30}, @s={0x5, @generic=0x8, 0x5, 0x9}], 0x28) (async)

[  819.756292] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:32 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:32 executing program 3:
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x3}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x734f3d14}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x4040080)
socketpair(0x26, 0x5, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x3}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x734f3d14}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x4040080) (async)
socketpair(0x26, 0x5, 0x0, 0x0) (async)

[  820.271042] FAULT_INJECTION: forcing a failure.
[  820.271042] name failslab, interval 1, probability 0, space 0, times 0
[  820.298903] CPU: 0 PID: 21476 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  820.306818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
20:49:32 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:32 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0)
write$sequencer(r0, &(0x7f0000000040)=[@raw={0xc, 0x2}, @n={0x1, 0x6, @generic=0x96, 0x18}, @raw={0xc, 0x7, "77a19c4c613b"}, @v={0x93, 0xf, 0x90, 0x19, @generic=0xfa, 0x80, 0x81}, @l={0x92, 0x9, 0xe0, 0x19, 0x3, 0x7, 0x30}, @s={0x5, @generic=0x8, 0x5, 0x9}], 0x28)

[  820.316271] Call Trace:
[  820.316290]  dump_stack+0x1b2/0x281
[  820.316305]  should_fail.cold+0x10a/0x149
[  820.316320]  should_failslab+0xd6/0x130
[  820.316333]  __kmalloc+0x2c1/0x400
[  820.316344]  ? kobject_get_path+0xb5/0x230
[  820.316354]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  820.316365]  kobject_get_path+0xb5/0x230
[  820.316379]  kobject_uevent_env+0x230/0xf30
[  820.316392]  ? internal_create_group+0x48f/0x710
[  820.316407]  lo_ioctl+0x11a6/0x1cd0
[  820.316420]  ? loop_set_status64+0xe0/0xe0
[  820.316433]  blkdev_ioctl+0x540/0x1830
[  820.316443]  ? blkpg_ioctl+0x8d0/0x8d0
[  820.316453]  ? trace_hardirqs_on+0x10/0x10
[  820.316466]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  820.316476]  ? debug_check_no_obj_freed+0x2c0/0x680
[  820.316489]  block_ioctl+0xd9/0x120
[  820.316497]  ? blkdev_fallocate+0x3a0/0x3a0
[  820.316507]  do_vfs_ioctl+0x75a/0xff0
[  820.316516]  ? lock_acquire+0x170/0x3f0
[  820.316524]  ? ioctl_preallocate+0x1a0/0x1a0
[  820.316536]  ? __fget+0x265/0x3e0
[  820.316546]  ? do_vfs_ioctl+0xff0/0xff0
[  820.316558]  ? security_file_ioctl+0x83/0xb0
[  820.316567]  SyS_ioctl+0x7f/0xb0
[  820.316575]  ? do_vfs_ioctl+0xff0/0xff0
[  820.316587]  do_syscall_64+0x1d5/0x640
[  820.316600]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  820.316607] RIP: 0033:0x7fcd83ff2ec7
[  820.316612] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  820.316622] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  820.316627] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  820.316632] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  820.316637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  820.316641] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  820.341938] FAULT_INJECTION: forcing a failure.
[  820.341938] name failslab, interval 1, probability 0, space 0, times 0
[  820.341950] CPU: 1 PID: 21484 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  820.341957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  820.341961] Call Trace:
[  820.341974]  dump_stack+0x1b2/0x281
[  820.341990]  should_fail.cold+0x10a/0x149
[  820.342004]  should_failslab+0xd6/0x130
[  820.342018]  kmem_cache_alloc+0x28e/0x3c0
[  820.342033]  __kernfs_new_node+0x6f/0x470
[  820.342047]  kernfs_new_node+0x7b/0xe0
[  820.342058]  __kernfs_create_file+0x3d/0x320
[  820.342071]  sysfs_add_file_mode_ns+0x1e1/0x450
[  820.342081]  ? kernfs_create_dir_ns+0x171/0x200
[  820.342092]  internal_create_group+0x22b/0x710
[  820.342107]  lo_ioctl+0x1137/0x1cd0
[  820.342120]  ? loop_set_status64+0xe0/0xe0
[  820.342131]  blkdev_ioctl+0x540/0x1830
[  820.342141]  ? blkpg_ioctl+0x8d0/0x8d0
[  820.342151]  ? trace_hardirqs_on+0x10/0x10
[  820.342165]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  820.342175]  ? debug_check_no_obj_freed+0x2c0/0x680
[  820.342188]  block_ioctl+0xd9/0x120
[  820.342197]  ? blkdev_fallocate+0x3a0/0x3a0
[  820.342206]  do_vfs_ioctl+0x75a/0xff0
[  820.342216]  ? lock_acquire+0x170/0x3f0
[  820.342226]  ? ioctl_preallocate+0x1a0/0x1a0
[  820.342238]  ? __fget+0x265/0x3e0
[  820.342249]  ? do_vfs_ioctl+0xff0/0xff0
[  820.342260]  ? security_file_ioctl+0x83/0xb0
[  820.342271]  SyS_ioctl+0x7f/0xb0
[  820.342278]  ? do_vfs_ioctl+0xff0/0xff0
[  820.342290]  do_syscall_64+0x1d5/0x640
[  820.342304]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  820.342311] RIP: 0033:0x7f6b8cbe3ec7
[  820.342317] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  820.342327] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  820.342333] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  820.342338] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  820.342343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
20:49:33 executing program 1:
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(0xffffffffffffffff, 0x7b1, &(0x7f0000001000)={&(0x7f0000000000)=[0xd180, 0x0, 0x1, 0x9, 0x6, 0x0, 0xff, 0x9, 0x6, 0x200, 0x83, 0xb6, 0x6, 0x0, 0x40, 0x6, 0x1, 0x401, 0xfffffffb, 0x6, 0x6, 0x0, 0xfffffffd, 0x8, 0x4, 0x0, 0x4, 0x2, 0x100, 0xab8, 0xd9, 0x80000001, 0xfffffe01, 0x0, 0x2, 0x6, 0x2, 0x5, 0xfffffffa, 0x124f, 0x2, 0xfffffffd, 0x40, 0x7, 0x9, 0x400, 0x4, 0x6, 0x38a, 0x3, 0x40, 0x7fffffff, 0x8000, 0x1, 0x1, 0x4, 0x100, 0x2, 0x372c, 0x80000000, 0x7, 0x10000, 0x1, 0x2, 0x4, 0x2, 0x0, 0x5, 0x4, 0x1, 0xd2, 0x8, 0x80000001, 0x80000001, 0x200, 0x200, 0xbab2, 0xfffffff7, 0x4, 0x10000, 0x1ff, 0x101, 0xff, 0x3, 0x0, 0x7e2f, 0x80000000, 0x8, 0x9, 0xfffff696, 0x7f, 0x1, 0x101, 0x3ff, 0x80000001, 0x2, 0x2, 0x584, 0x61, 0x7fffffff, 0xbd60, 0x9, 0xfffffffc, 0x6, 0x7fffffff, 0x0, 0x3ff, 0x20, 0x0, 0x1, 0x87, 0x2, 0x80, 0x400, 0xb6, 0x881, 0x8, 0x7, 0x401, 0x3, 0x7f, 0x2, 0x1ff, 0x33b0000, 0x7, 0x4, 0xc11b, 0x9, 0x7, 0x6, 0x1, 0x20, 0x7, 0x8, 0x444000, 0x3, 0xce, 0x21, 0x100, 0x6, 0x6, 0x2, 0x9, 0x3ff, 0x34d9, 0x7, 0x0, 0x3e3, 0x200, 0x20, 0x3, 0x1000, 0x6, 0x8, 0xd55, 0x7, 0x0, 0x8, 0x0, 0x401, 0x1fe3, 0x10001, 0xcc0, 0x4, 0x3, 0x5, 0xffffff7f, 0x100, 0x168, 0x9, 0x3, 0x401, 0x0, 0x3f, 0x3, 0x1, 0x5, 0x7fff, 0xfc, 0x1b3d, 0x800, 0xba06, 0x20, 0x2, 0x1, 0x6, 0x3, 0x40, 0x9, 0xfff, 0xffffffe1, 0x3, 0x5, 0x6, 0x7, 0x199, 0x1, 0x20, 0x2, 0x0, 0x8001, 0x0, 0xce8, 0x81, 0x8000, 0x5, 0x1000, 0x100, 0x8, 0x73f, 0xc1, 0x101, 0x3684, 0x3ff, 0x9, 0x80000000, 0x5b, 0x28, 0x8000, 0x4, 0x401, 0xff, 0x8, 0x7, 0x3, 0x7, 0x2, 0x5, 0x5, 0x8000, 0x5, 0x1, 0x0, 0x5d4, 0x400, 0x3, 0xfffff1be, 0x6, 0x7, 0x1, 0xfff, 0x5, 0x6, 0x6, 0x5, 0x0, 0x3, 0x8, 0x32335d16, 0xfffffff7, 0x800, 0xfff, 0x7, 0x5, 0x100, 0x20, 0x4, 0x8, 0x0, 0x4, 0x5, 0x401, 0x8, 0x3c38, 0x49c, 0x1000, 0x7f, 0x1, 0x2, 0x1, 0x2, 0x40, 0x7f, 0x0, 0x7fffffff, 0x9, 0x7, 0x5, 0x9, 0xefb, 0x6, 0x4f00, 0x816, 0x4, 0x4, 0x2, 0xffffffff, 0x4, 0x6, 0xffffffff, 0x1000, 0xffffffff, 0x4, 0xccb3, 0x401, 0x7, 0x5, 0x8, 0x7, 0x80000001, 0x9, 0x7f, 0x6ed3af58, 0xa000, 0xfff, 0x3, 0x5, 0x7, 0x3, 0x7, 0x7, 0x6, 0x6, 0xfff, 0x800, 0x889, 0x1, 0xc370, 0x4, 0x629, 0x2, 0x4, 0x31, 0x3f9f, 0x7fffffff, 0x8, 0x5, 0x80000001, 0x7, 0xe4, 0x401, 0xffffffff, 0x8, 0x3, 0x200, 0x0, 0x11, 0x9d, 0x99be, 0x8, 0x8, 0x80, 0x9, 0x401, 0x0, 0x401, 0x8, 0x3ff, 0xfffff95b, 0x20, 0x9, 0x6, 0x1, 0x6, 0xfffffffd, 0x4, 0x3, 0x0, 0x4, 0x10000, 0x4, 0x2, 0x9, 0x5, 0xffffff80, 0x0, 0x3, 0x9764, 0x4, 0x8, 0x81, 0x0, 0x200, 0x9, 0x5, 0x8, 0x8001, 0xb6c, 0x3, 0xebd, 0x1, 0x9, 0x81, 0xffffffff, 0x4, 0xfff, 0x1ff, 0x7, 0x6, 0x7, 0x8, 0x1000, 0x2, 0x7, 0x9, 0x6, 0xfffffffd, 0x4, 0x0, 0x9, 0x3ff, 0x400, 0xffffffff, 0x2, 0x80000000, 0x3, 0x8, 0x401, 0x4, 0x78f, 0x7, 0x1, 0x40, 0x8aeb, 0x7, 0x7fffffff, 0x6, 0x6, 0x4, 0x0, 0x8, 0x0, 0x9, 0x7, 0x7fff, 0xfffffffc, 0x10000, 0x10000, 0xab, 0x800, 0x627, 0x5, 0x4c, 0x6, 0x5, 0x401, 0x8dc, 0x1ff, 0x10001, 0x80000000, 0x2292, 0x5, 0x3, 0x1ff, 0x0, 0x6, 0xffff8001, 0x0, 0xaa5, 0xffff, 0x5, 0x2, 0x7ff, 0xff, 0x80000001, 0x0, 0x2, 0x400, 0x0, 0x0, 0xa280, 0x85fd, 0xa85d, 0x5, 0x1000, 0x6, 0x8, 0x9, 0x7, 0x80000000, 0x1, 0x51f, 0x80000000, 0x0, 0x40, 0xf7, 0x401, 0x8, 0xe1d, 0x6f, 0x1a6, 0x10001, 0x4, 0x0, 0xff, 0x400, 0x7, 0x4, 0x80000001, 0x6, 0x5, 0x0, 0x1, 0x1, 0x3, 0xffffffff, 0x8000, 0x80000000, 0x570f, 0x9, 0x0, 0x2000, 0xfff, 0x7, 0xfffffffb, 0x1a9, 0x80000001, 0x6, 0x3, 0x107, 0x2d2, 0xfa, 0x0, 0x2, 0x0, 0xbde3, 0x780, 0x41c0, 0x3f, 0x40, 0x81, 0x8, 0x3, 0x0, 0x8, 0x1, 0x20, 0x2, 0x6, 0x3, 0x8, 0x0, 0x1, 0x8, 0x4, 0x80000000, 0x80000000, 0x3, 0x80000000, 0xffff8001, 0x1f, 0x3, 0x5, 0x3, 0x5, 0x5, 0xff, 0x902b, 0x401, 0x7fffffff, 0xfffffffd, 0x3f, 0x0, 0x81, 0x3, 0x9, 0x2, 0x7fff, 0x3, 0x40, 0xfffffff8, 0x7fff, 0x3, 0x1000, 0x28911fef, 0x1, 0x4, 0x7, 0x10001, 0x8, 0x0, 0x7, 0x9, 0x48, 0xfffffffd, 0x0, 0x8, 0x3, 0x5, 0x2, 0x1f, 0x1, 0x0, 0x6a88, 0x3, 0x6, 0x979, 0x1f, 0xaba, 0x9, 0x9, 0x3, 0x9, 0x7, 0x4f, 0x5, 0x3, 0x80000001, 0xfff, 0x6, 0x2, 0xfffffffa, 0x7fffffff, 0x200, 0x0, 0x8, 0x3, 0x3, 0x800, 0x7, 0x14e8b9b7, 0x7, 0x1, 0xfb, 0x6, 0x1, 0x1, 0x7, 0xffffff48, 0x80000001, 0x10001, 0xffffff1a, 0x80, 0x6129f55f, 0x10001, 0x1, 0x6, 0x7ff, 0x10000, 0xfd05, 0x1ff, 0xfffffff6, 0x4, 0x100, 0x8, 0x800, 0xffff923b, 0x5, 0x3, 0x791, 0x9, 0x80000000, 0x200, 0x5, 0x7ab, 0xff, 0x9, 0x8, 0x1f, 0x75b, 0x2, 0x1, 0x3, 0x7, 0x9, 0x401, 0x7fffffff, 0x5, 0xffff, 0x9, 0xfff, 0x2, 0x81, 0x10001, 0x7, 0x7, 0x0, 0x2, 0xc812, 0x9, 0x1ff, 0xe1f8, 0xffffffff, 0x9, 0x80000000, 0xffffffa9, 0x9, 0x0, 0x8, 0xef5, 0x4, 0x2, 0x6, 0x3, 0x1000, 0x8000, 0x5d2, 0x5, 0x7, 0x0, 0x9425, 0x1, 0x3, 0x9, 0x101, 0xc15, 0x0, 0x7fffffff, 0xb1, 0x401, 0x4, 0x5, 0x0, 0x9, 0x7, 0x6, 0x5, 0xb2a, 0x1000, 0x643e, 0x4, 0x76, 0x4, 0x7f, 0x3, 0x9, 0x9, 0x2, 0x2, 0x71, 0xffff716e, 0xfff, 0x1, 0x1, 0x6, 0x2, 0x1, 0x9, 0xec0f, 0x0, 0x3, 0x40000000, 0x3, 0x0, 0x7ad8, 0x3, 0x99a, 0x0, 0xda64, 0x80000001, 0xff, 0x1, 0x80000000, 0x8, 0x6, 0x48, 0x80, 0x0, 0xfffff45e, 0x7, 0x7, 0x7ff, 0x9, 0x8, 0x3, 0x9, 0x8, 0x8, 0xfff, 0x33, 0x1, 0x9, 0x401, 0xff, 0x6, 0x0, 0x20, 0x0, 0x9, 0x8001, 0x2, 0x2, 0x1, 0x10000, 0x6a6, 0x6, 0x3, 0x20, 0x5, 0x2, 0x7ff, 0x2, 0x6, 0x5, 0x6, 0x0, 0x0, 0x1, 0x0, 0x9, 0x5, 0x80, 0x1, 0x8000, 0xfc, 0x100, 0xc7, 0x10000, 0x2, 0x10000, 0x40, 0x81, 0xffff, 0x93, 0x7, 0x1000, 0x4, 0x4, 0x8, 0x1, 0x3, 0x10001, 0x7, 0xfe58, 0x0, 0x2, 0x8001, 0x8, 0x1, 0x80, 0xfffffff8, 0xedf, 0x5, 0x7, 0x9, 0x4, 0x101, 0x3ff, 0x1000, 0xd77c, 0xfff, 0x7, 0xff, 0x8, 0x101, 0x4a, 0x3, 0x1, 0x8, 0x4, 0x4e, 0x1, 0x400, 0xffffff01, 0x8, 0x3, 0x2, 0x2, 0x9d42, 0x10001, 0x257c7eee, 0xfff, 0x9c1a, 0x1, 0x4, 0x800, 0x0, 0x200, 0xf70, 0x2, 0x7, 0x1, 0x3f, 0x0, 0x715a, 0x8, 0x3, 0x0, 0x2, 0x9, 0x7d, 0x40, 0x10001, 0x9, 0x8, 0xfffffffa, 0x4, 0x3, 0x7, 0x1e9b, 0x2, 0x4a, 0x8001, 0x1ff00000, 0x8, 0x7, 0x401, 0x4, 0x1, 0xfffffffa, 0x22f2961c, 0x3, 0x9, 0x200, 0x8, 0x6a, 0x5, 0x4, 0x3f, 0xff, 0x8000, 0x3f, 0x1, 0x1, 0x1, 0x8000, 0x8000, 0x5, 0xff, 0x40, 0x319f, 0x0, 0x0, 0x9, 0x0, 0x7, 0x1, 0xa0f, 0xac, 0x4, 0x7ff, 0xce, 0x0, 0x9, 0x4, 0x1, 0x0, 0xfc, 0x9, 0xffff0fea, 0x7, 0x0, 0x9, 0x6, 0x40, 0xbc, 0x1, 0x10000, 0xfffff801, 0x5, 0x9, 0x0, 0xffff0001, 0x6736, 0xfffffeff, 0x3, 0x5, 0x20, 0x3, 0x9, 0x50000000, 0x0, 0x80000001, 0x5, 0x3, 0x80000000, 0x3, 0x6, 0xffff, 0x7, 0x3, 0x119, 0x1, 0x7fff, 0x8, 0x1ff, 0x5, 0x74cd, 0xff, 0x3, 0x7, 0x8001, 0xe50e, 0xe9, 0x4, 0x5, 0xeb42, 0x4, 0x3, 0xfffff9cb, 0x1, 0x618a, 0x1ff, 0x1, 0x7, 0x9, 0x3, 0x9, 0x1, 0x9, 0x4, 0x0, 0x9, 0x8, 0x6, 0x7, 0x3fc00, 0x0, 0x0, 0x2, 0x1, 0xfffffff9, 0x31, 0x9, 0x7fffffff, 0x3, 0x4, 0xfffffff9, 0x9, 0x8, 0x1ff, 0x800, 0x8, 0x2, 0x5, 0x10000, 0x3, 0x7fffffff, 0x3, 0x26e1, 0xf20, 0x2, 0xffff, 0x9], 0x3, 0x400, 0xffff})
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000002040)={&(0x7f0000001040)=[0x401, 0x38, 0x0, 0x3, 0xfffffffa, 0x38ca6c39, 0x1, 0x8, 0x7, 0xab, 0x4, 0x5, 0x52c9, 0xffffff08, 0x730, 0x20000, 0x0, 0x6, 0x2, 0xf720, 0x3, 0x400, 0x1, 0x97dd, 0x7, 0x7, 0x10000, 0x400, 0x4, 0x8001, 0x8, 0xfff, 0x75c4, 0xde, 0x1000, 0x9, 0x20, 0x401, 0x668, 0x6, 0x8, 0x4ac6, 0xb210, 0x4, 0x10001, 0x8, 0xb0c, 0x7, 0x2, 0x1c, 0x941f, 0x2, 0x401, 0x5d9, 0x8, 0x4, 0x2, 0xe7, 0x7ad, 0x80000000, 0x6, 0xff, 0x0, 0x7fffffff, 0x7ff, 0x1, 0x8, 0x2d5d800, 0x9, 0x1, 0x0, 0x4, 0x2, 0x8000, 0xffff0000, 0x7f, 0x700000, 0x0, 0x3, 0x757, 0xfffff9a6, 0x6, 0xac2, 0x81, 0x1000, 0x4, 0x3, 0x3ff, 0x7, 0x2, 0x9c, 0x1, 0x9, 0x3, 0x6, 0x5, 0x10000, 0x800, 0x247, 0xa717, 0xcc88, 0x3, 0x40f, 0x80000000, 0x8, 0x80, 0x2, 0x2, 0xee70, 0x401, 0x5e0d, 0x5, 0x3, 0xfffffffb, 0x8, 0x9, 0x3, 0x9, 0x3ff, 0x0, 0x32, 0x81, 0x100, 0xd3a8, 0x511, 0x6, 0x2, 0x4, 0x7fff, 0x7, 0x800, 0x9, 0x400, 0xff, 0x4, 0x0, 0x3, 0x2, 0x7f, 0x20000000, 0x81, 0x3, 0x2, 0x40, 0x3, 0x1, 0x3, 0x0, 0x1f, 0xff, 0x7c00, 0x0, 0x4, 0x3, 0xfffff001, 0x92, 0x80, 0x7, 0x8fc, 0xffffffff, 0xfff, 0x8, 0x1ff, 0x4, 0x15, 0x3f, 0x6, 0x3, 0x7fff, 0x7, 0x4, 0x5, 0x8b, 0x3, 0x0, 0xb287, 0x80, 0x800, 0x7fff, 0x4, 0x2, 0x0, 0x0, 0x5, 0x6, 0xfffffffc, 0x8001, 0x10000, 0x400, 0x800, 0x20, 0x0, 0x5, 0x65a, 0x101, 0x3, 0x9, 0x6, 0x9, 0xff, 0x3, 0x55, 0x20, 0x7fffffff, 0x1, 0x2, 0x7c6ab1f6, 0x5c5, 0x7fff, 0x4, 0x8, 0x3f, 0x3, 0x0, 0xe20b, 0x7ff, 0x467f, 0x7, 0xffffffff, 0xfffffffa, 0x8, 0x81, 0x5, 0x8, 0x0, 0x8, 0x2, 0x5, 0x5, 0x6, 0x101, 0x4, 0x0, 0x7, 0x81, 0x20, 0x5, 0xe975, 0xfffffffe, 0x20000000, 0x6, 0x5, 0x8, 0xfffffffb, 0x4d85, 0x9f99e4e, 0x80000001, 0xc, 0x6, 0x3, 0xffff, 0x80000000, 0x1, 0x7, 0x7, 0x8, 0x1a3e6958, 0x2000000, 0x9, 0x0, 0xf13, 0x3078, 0x3fff80, 0x401, 0xfff, 0x7fff, 0x4, 0x1, 0x4, 0xfffff000, 0xffffffff, 0x80000001, 0xfff, 0x7fffffff, 0x50d83c5, 0xf64, 0xffffff1f, 0x2, 0x4, 0x63, 0xfffff280, 0x80, 0xfffffffb, 0x68, 0x9, 0x10000, 0x1, 0x6, 0x2, 0x7ff, 0x800, 0x0, 0x200, 0x5, 0xe, 0x9, 0x8, 0x9, 0x4, 0x26, 0x1, 0xfffffffc, 0x7, 0x0, 0x0, 0x4, 0x1, 0x0, 0x3f, 0x7f, 0x8, 0x1, 0x800, 0x9, 0x9, 0x9, 0xff, 0x9, 0x3, 0x80000001, 0x5, 0xdad, 0xffffffa8, 0x6, 0xa702, 0x80e, 0x80000000, 0x913, 0x8, 0xfffffffb, 0x7, 0x4, 0xcfc, 0x4, 0x7, 0x100, 0x87b9, 0x200, 0x3, 0x0, 0x5, 0x400, 0x400, 0x2, 0xbde9, 0x971, 0x401, 0x7ff, 0x14b, 0x1, 0x6, 0x1, 0x0, 0x400, 0x7ff, 0x8, 0x8, 0x80000001, 0x5, 0x10000, 0xdb79, 0x3ff, 0x3, 0x7, 0x2, 0x0, 0xfffffff8, 0x0, 0xfffffffb, 0x7, 0x80000001, 0x104e, 0x3, 0x4, 0x7, 0x3, 0x3, 0x7f, 0x7, 0x4, 0xd91, 0x7, 0x8, 0x1, 0x1e, 0x80, 0x6, 0x5a, 0x7, 0xffff0000, 0x1, 0x7fff, 0x6, 0x8, 0x0, 0x9, 0x9, 0x5, 0x8, 0x5, 0x5, 0x80, 0x3ff, 0x8000, 0x6, 0x200, 0x3ff, 0x6, 0xffffffff, 0x7d, 0x18, 0x3f, 0x8000, 0x5a, 0x6, 0x457, 0x2, 0x5, 0x8, 0x4, 0x5, 0x80, 0x6e, 0x1, 0x1, 0x3f, 0x6fc3, 0x3, 0x40, 0x4, 0x4, 0x1, 0xfffffffc, 0x7, 0x1ff, 0x7, 0x1, 0x8, 0x0, 0xbd0d, 0x5, 0xfffffffb, 0x1, 0x1, 0x6, 0x4, 0x7ff, 0xfffffffd, 0xae, 0xfc000000, 0x9, 0x101, 0xe75, 0x7fff, 0x80, 0x400, 0x9, 0xb5, 0x0, 0x24000, 0x7, 0x5, 0x81, 0x1580, 0x81, 0x2, 0x401, 0x2, 0xffff, 0x4, 0x2, 0x80000000, 0x5, 0x6, 0xff, 0xfffffff8, 0x3, 0x5, 0x4, 0x80, 0x3, 0x4, 0x0, 0x4096, 0x6, 0x20, 0x0, 0x4, 0xb6, 0xad3, 0x0, 0x4, 0x0, 0x5, 0x7ff, 0x8, 0x4, 0x9d, 0x2, 0x6, 0x5, 0x1, 0x5, 0x4, 0x4, 0x9, 0x7, 0x800, 0x10001, 0x300000, 0x200, 0x8000, 0x3ff, 0x1, 0xfffff32c, 0x8000, 0x9, 0x0, 0x7, 0x14000, 0x5, 0x3, 0x1, 0x2, 0x8, 0x9, 0x200000, 0x5, 0x28, 0x9, 0xb0fe, 0xc8b, 0x401, 0x40, 0x0, 0x7, 0x70, 0x5, 0x8, 0x5, 0x40, 0x1, 0x1, 0x80000000, 0x1, 0x8, 0x7303, 0x20, 0x2, 0x4, 0x7, 0xffffff01, 0x8, 0x5, 0x8, 0x4, 0x20, 0x401, 0x1, 0x8001, 0x9, 0x80000001, 0x1000, 0x7ff, 0x80000001, 0x0, 0x9, 0x1, 0x3, 0x81, 0x1, 0x4, 0xb310, 0xfffffffd, 0xfffffc01, 0xffffffff, 0x5, 0x1ff, 0x10001, 0x8, 0xffff, 0x81, 0x3, 0x7fff, 0x4, 0x42cf, 0x7, 0x3, 0xc95, 0x920b, 0x965, 0x265, 0x21a3, 0x40, 0x5, 0x8001, 0xfa9, 0x8, 0x8, 0x0, 0x1, 0x5, 0x3, 0x6, 0x22b, 0x7, 0x8, 0x200, 0x8000, 0x8, 0x71, 0xe7c, 0x1f, 0x10000, 0x3, 0x6, 0x7, 0x0, 0x0, 0x1ff, 0xff, 0x1, 0x6, 0x0, 0xfffffff8, 0x3, 0x0, 0x3, 0x3, 0x8d, 0x5aa, 0xc1f, 0x1, 0x8, 0x3, 0x6, 0x0, 0x9, 0x3e1, 0x6, 0x3, 0x2, 0xfffffffb, 0x5, 0xfffffff9, 0x4, 0xff, 0x2, 0x9, 0x3, 0x26, 0x0, 0x5, 0x1, 0x8, 0x401, 0x4, 0x8000, 0x1, 0x5, 0x7, 0xd0f1, 0x4, 0x6, 0x2, 0xe0, 0x40, 0x2, 0x4, 0x10001, 0x9679, 0x10000, 0xff, 0x3b2a40, 0x10001, 0x3, 0x4, 0xfffffffd, 0x5, 0x8, 0xff, 0x400, 0x8468, 0x40, 0x73, 0x7fff, 0x9, 0x1, 0x200, 0x4, 0x3, 0x401, 0x3f, 0x2c1, 0x3, 0x2, 0x1, 0xfffffffc, 0xeb9, 0x1, 0x7, 0x2, 0xc742, 0xfffff001, 0x3, 0x0, 0x0, 0x6, 0x100, 0x1, 0x124, 0x9, 0xfffffffe, 0x3, 0x2, 0x96, 0x0, 0x1, 0x5, 0x7f, 0x0, 0x8000, 0x4, 0x4, 0x6, 0x1, 0x3ff, 0x9, 0x2, 0x9, 0x9, 0xb6e, 0x10001, 0x3ff, 0x9, 0xfffffff9, 0x0, 0x5, 0x8, 0x6, 0x1, 0x8, 0x2, 0x1, 0x9, 0x2, 0x6f35, 0x1, 0x3, 0x6, 0x0, 0x9, 0x0, 0x4, 0x401, 0x200, 0x1ff, 0x10000, 0x8000, 0x8, 0x8001, 0x9, 0x1, 0x0, 0x101, 0x7, 0x2, 0x3, 0x2, 0x4, 0x1ff, 0x1f, 0x1, 0x2c25, 0x9, 0x8, 0x2, 0x0, 0x9, 0x3, 0x6, 0x7f, 0x3, 0x800, 0x2, 0x3, 0x8, 0xfffffc01, 0x9, 0xe4d5, 0x40, 0x7, 0xfffffffe, 0x0, 0x8, 0x8278, 0x9, 0x0, 0x7, 0x5, 0x0, 0x8, 0x8, 0x401, 0x7, 0x1800, 0x0, 0x2, 0x5db, 0x4, 0x0, 0x2, 0x3f, 0x3, 0x0, 0x80000000, 0x3, 0x7, 0x7, 0x7ff, 0x1, 0x5, 0x89c, 0x20000000, 0x2, 0x3ff, 0x3, 0x1, 0x80000001, 0x8, 0x200, 0x2, 0xffffffff, 0xfffffff8, 0xb91, 0x3, 0x4, 0x0, 0x6, 0x2, 0x5, 0x6, 0x4, 0x58d, 0x3, 0xffff, 0xfffffff9, 0x6, 0x401, 0x5, 0x0, 0x101, 0x80, 0x3, 0x6, 0x7f, 0x80000001, 0x6, 0x7, 0x6, 0x8000, 0x0, 0x0, 0x800, 0x39d6, 0x1, 0x0, 0x3, 0x9, 0x8000, 0x4, 0x1329, 0x76, 0x8, 0x1, 0x2, 0x0, 0x0, 0x7fffffff, 0x0, 0x6, 0x7fffffff, 0x6, 0x12, 0x885, 0x7, 0x4, 0x10000, 0x80000001, 0x8001, 0x7ff, 0x1ff, 0x2, 0x1ff, 0x0, 0xad, 0x6, 0x2, 0x8, 0x9, 0x6, 0x3, 0x8, 0xd50, 0xf8a, 0x1, 0xffffffff, 0x5, 0xce, 0xf530, 0x20, 0x8c, 0x277, 0x2, 0x6, 0xc, 0x5, 0x8, 0x0, 0x7ff, 0x1, 0x0, 0x4, 0x0, 0x6, 0x6, 0x8, 0xfffffe01, 0x5, 0x4, 0x5, 0x8, 0x1ff, 0x3, 0x4, 0x5, 0x4, 0x4, 0x8001, 0xffff1af7, 0x6, 0x2, 0x3, 0x4, 0x80, 0x7, 0x1, 0x7bb1, 0x7fffffff, 0x1ff, 0x4, 0x0, 0xffff8000, 0x8000, 0x9, 0xfff, 0x1, 0x6, 0x0, 0x9, 0x8, 0xffffffff, 0x5, 0x4, 0x5, 0x5, 0x2, 0xa7c, 0x80000000, 0x4, 0x4, 0x0, 0x7, 0x2, 0x4, 0xfffffff3, 0x82, 0x9, 0x81, 0x8000, 0x8, 0x7f, 0x0, 0x0, 0x2aca, 0x0, 0xfffffffe, 0x1, 0x6, 0x0, 0xffffff00, 0x6, 0x8000, 0x100, 0xf5, 0x700000, 0x4, 0x80000000, 0x7, 0x8a, 0x7f, 0x1924bd8f, 0x7, 0x9, 0x1, 0x1, 0x5, 0x100, 0x77dc, 0x9, 0x23f, 0x9e8, 0x9, 0x101, 0x2741, 0x20, 0x5b1c, 0x1, 0x4, 0x1, 0x9, 0x4, 0x3ff, 0xcf8], 0x1, 0x400, 0x7})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:33 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 18)

20:49:33 executing program 3:
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x3}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x734f3d14}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x4040080)
socketpair(0x26, 0x5, 0x0, 0x0)

20:49:33 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:33 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 22)

20:49:33 executing program 0:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
sendto$l2tp(r0, &(0x7f0000000040)="03686fcba273205a66f176eb83469380bc388cfbdf3738873894a18b6c33efa52125f5079a826441a177201e7053016474e81963d46c64b278547828d406df39538d54f2bf0084a0bb67efd8773bcd20643e9056d5a86aba44b27de65ef8cba190e46abedbf34236158963fa88bccb814a62b2a7474661be865078d6e04e54549f46378daad0a2ad1dce9a558603ccd7ccf21958f6e7710e6dc32ec76c2dec0319d55016d8", 0xa5, 0x44, &(0x7f0000000140)={0x2, 0x0, @multicast1, 0x3}, 0xffffffffffffff60)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

[  820.342349] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:33 executing program 1:
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(0xffffffffffffffff, 0x7b1, &(0x7f0000001000)={&(0x7f0000000000)=[0xd180, 0x0, 0x1, 0x9, 0x6, 0x0, 0xff, 0x9, 0x6, 0x200, 0x83, 0xb6, 0x6, 0x0, 0x40, 0x6, 0x1, 0x401, 0xfffffffb, 0x6, 0x6, 0x0, 0xfffffffd, 0x8, 0x4, 0x0, 0x4, 0x2, 0x100, 0xab8, 0xd9, 0x80000001, 0xfffffe01, 0x0, 0x2, 0x6, 0x2, 0x5, 0xfffffffa, 0x124f, 0x2, 0xfffffffd, 0x40, 0x7, 0x9, 0x400, 0x4, 0x6, 0x38a, 0x3, 0x40, 0x7fffffff, 0x8000, 0x1, 0x1, 0x4, 0x100, 0x2, 0x372c, 0x80000000, 0x7, 0x10000, 0x1, 0x2, 0x4, 0x2, 0x0, 0x5, 0x4, 0x1, 0xd2, 0x8, 0x80000001, 0x80000001, 0x200, 0x200, 0xbab2, 0xfffffff7, 0x4, 0x10000, 0x1ff, 0x101, 0xff, 0x3, 0x0, 0x7e2f, 0x80000000, 0x8, 0x9, 0xfffff696, 0x7f, 0x1, 0x101, 0x3ff, 0x80000001, 0x2, 0x2, 0x584, 0x61, 0x7fffffff, 0xbd60, 0x9, 0xfffffffc, 0x6, 0x7fffffff, 0x0, 0x3ff, 0x20, 0x0, 0x1, 0x87, 0x2, 0x80, 0x400, 0xb6, 0x881, 0x8, 0x7, 0x401, 0x3, 0x7f, 0x2, 0x1ff, 0x33b0000, 0x7, 0x4, 0xc11b, 0x9, 0x7, 0x6, 0x1, 0x20, 0x7, 0x8, 0x444000, 0x3, 0xce, 0x21, 0x100, 0x6, 0x6, 0x2, 0x9, 0x3ff, 0x34d9, 0x7, 0x0, 0x3e3, 0x200, 0x20, 0x3, 0x1000, 0x6, 0x8, 0xd55, 0x7, 0x0, 0x8, 0x0, 0x401, 0x1fe3, 0x10001, 0xcc0, 0x4, 0x3, 0x5, 0xffffff7f, 0x100, 0x168, 0x9, 0x3, 0x401, 0x0, 0x3f, 0x3, 0x1, 0x5, 0x7fff, 0xfc, 0x1b3d, 0x800, 0xba06, 0x20, 0x2, 0x1, 0x6, 0x3, 0x40, 0x9, 0xfff, 0xffffffe1, 0x3, 0x5, 0x6, 0x7, 0x199, 0x1, 0x20, 0x2, 0x0, 0x8001, 0x0, 0xce8, 0x81, 0x8000, 0x5, 0x1000, 0x100, 0x8, 0x73f, 0xc1, 0x101, 0x3684, 0x3ff, 0x9, 0x80000000, 0x5b, 0x28, 0x8000, 0x4, 0x401, 0xff, 0x8, 0x7, 0x3, 0x7, 0x2, 0x5, 0x5, 0x8000, 0x5, 0x1, 0x0, 0x5d4, 0x400, 0x3, 0xfffff1be, 0x6, 0x7, 0x1, 0xfff, 0x5, 0x6, 0x6, 0x5, 0x0, 0x3, 0x8, 0x32335d16, 0xfffffff7, 0x800, 0xfff, 0x7, 0x5, 0x100, 0x20, 0x4, 0x8, 0x0, 0x4, 0x5, 0x401, 0x8, 0x3c38, 0x49c, 0x1000, 0x7f, 0x1, 0x2, 0x1, 0x2, 0x40, 0x7f, 0x0, 0x7fffffff, 0x9, 0x7, 0x5, 0x9, 0xefb, 0x6, 0x4f00, 0x816, 0x4, 0x4, 0x2, 0xffffffff, 0x4, 0x6, 0xffffffff, 0x1000, 0xffffffff, 0x4, 0xccb3, 0x401, 0x7, 0x5, 0x8, 0x7, 0x80000001, 0x9, 0x7f, 0x6ed3af58, 0xa000, 0xfff, 0x3, 0x5, 0x7, 0x3, 0x7, 0x7, 0x6, 0x6, 0xfff, 0x800, 0x889, 0x1, 0xc370, 0x4, 0x629, 0x2, 0x4, 0x31, 0x3f9f, 0x7fffffff, 0x8, 0x5, 0x80000001, 0x7, 0xe4, 0x401, 0xffffffff, 0x8, 0x3, 0x200, 0x0, 0x11, 0x9d, 0x99be, 0x8, 0x8, 0x80, 0x9, 0x401, 0x0, 0x401, 0x8, 0x3ff, 0xfffff95b, 0x20, 0x9, 0x6, 0x1, 0x6, 0xfffffffd, 0x4, 0x3, 0x0, 0x4, 0x10000, 0x4, 0x2, 0x9, 0x5, 0xffffff80, 0x0, 0x3, 0x9764, 0x4, 0x8, 0x81, 0x0, 0x200, 0x9, 0x5, 0x8, 0x8001, 0xb6c, 0x3, 0xebd, 0x1, 0x9, 0x81, 0xffffffff, 0x4, 0xfff, 0x1ff, 0x7, 0x6, 0x7, 0x8, 0x1000, 0x2, 0x7, 0x9, 0x6, 0xfffffffd, 0x4, 0x0, 0x9, 0x3ff, 0x400, 0xffffffff, 0x2, 0x80000000, 0x3, 0x8, 0x401, 0x4, 0x78f, 0x7, 0x1, 0x40, 0x8aeb, 0x7, 0x7fffffff, 0x6, 0x6, 0x4, 0x0, 0x8, 0x0, 0x9, 0x7, 0x7fff, 0xfffffffc, 0x10000, 0x10000, 0xab, 0x800, 0x627, 0x5, 0x4c, 0x6, 0x5, 0x401, 0x8dc, 0x1ff, 0x10001, 0x80000000, 0x2292, 0x5, 0x3, 0x1ff, 0x0, 0x6, 0xffff8001, 0x0, 0xaa5, 0xffff, 0x5, 0x2, 0x7ff, 0xff, 0x80000001, 0x0, 0x2, 0x400, 0x0, 0x0, 0xa280, 0x85fd, 0xa85d, 0x5, 0x1000, 0x6, 0x8, 0x9, 0x7, 0x80000000, 0x1, 0x51f, 0x80000000, 0x0, 0x40, 0xf7, 0x401, 0x8, 0xe1d, 0x6f, 0x1a6, 0x10001, 0x4, 0x0, 0xff, 0x400, 0x7, 0x4, 0x80000001, 0x6, 0x5, 0x0, 0x1, 0x1, 0x3, 0xffffffff, 0x8000, 0x80000000, 0x570f, 0x9, 0x0, 0x2000, 0xfff, 0x7, 0xfffffffb, 0x1a9, 0x80000001, 0x6, 0x3, 0x107, 0x2d2, 0xfa, 0x0, 0x2, 0x0, 0xbde3, 0x780, 0x41c0, 0x3f, 0x40, 0x81, 0x8, 0x3, 0x0, 0x8, 0x1, 0x20, 0x2, 0x6, 0x3, 0x8, 0x0, 0x1, 0x8, 0x4, 0x80000000, 0x80000000, 0x3, 0x80000000, 0xffff8001, 0x1f, 0x3, 0x5, 0x3, 0x5, 0x5, 0xff, 0x902b, 0x401, 0x7fffffff, 0xfffffffd, 0x3f, 0x0, 0x81, 0x3, 0x9, 0x2, 0x7fff, 0x3, 0x40, 0xfffffff8, 0x7fff, 0x3, 0x1000, 0x28911fef, 0x1, 0x4, 0x7, 0x10001, 0x8, 0x0, 0x7, 0x9, 0x48, 0xfffffffd, 0x0, 0x8, 0x3, 0x5, 0x2, 0x1f, 0x1, 0x0, 0x6a88, 0x3, 0x6, 0x979, 0x1f, 0xaba, 0x9, 0x9, 0x3, 0x9, 0x7, 0x4f, 0x5, 0x3, 0x80000001, 0xfff, 0x6, 0x2, 0xfffffffa, 0x7fffffff, 0x200, 0x0, 0x8, 0x3, 0x3, 0x800, 0x7, 0x14e8b9b7, 0x7, 0x1, 0xfb, 0x6, 0x1, 0x1, 0x7, 0xffffff48, 0x80000001, 0x10001, 0xffffff1a, 0x80, 0x6129f55f, 0x10001, 0x1, 0x6, 0x7ff, 0x10000, 0xfd05, 0x1ff, 0xfffffff6, 0x4, 0x100, 0x8, 0x800, 0xffff923b, 0x5, 0x3, 0x791, 0x9, 0x80000000, 0x200, 0x5, 0x7ab, 0xff, 0x9, 0x8, 0x1f, 0x75b, 0x2, 0x1, 0x3, 0x7, 0x9, 0x401, 0x7fffffff, 0x5, 0xffff, 0x9, 0xfff, 0x2, 0x81, 0x10001, 0x7, 0x7, 0x0, 0x2, 0xc812, 0x9, 0x1ff, 0xe1f8, 0xffffffff, 0x9, 0x80000000, 0xffffffa9, 0x9, 0x0, 0x8, 0xef5, 0x4, 0x2, 0x6, 0x3, 0x1000, 0x8000, 0x5d2, 0x5, 0x7, 0x0, 0x9425, 0x1, 0x3, 0x9, 0x101, 0xc15, 0x0, 0x7fffffff, 0xb1, 0x401, 0x4, 0x5, 0x0, 0x9, 0x7, 0x6, 0x5, 0xb2a, 0x1000, 0x643e, 0x4, 0x76, 0x4, 0x7f, 0x3, 0x9, 0x9, 0x2, 0x2, 0x71, 0xffff716e, 0xfff, 0x1, 0x1, 0x6, 0x2, 0x1, 0x9, 0xec0f, 0x0, 0x3, 0x40000000, 0x3, 0x0, 0x7ad8, 0x3, 0x99a, 0x0, 0xda64, 0x80000001, 0xff, 0x1, 0x80000000, 0x8, 0x6, 0x48, 0x80, 0x0, 0xfffff45e, 0x7, 0x7, 0x7ff, 0x9, 0x8, 0x3, 0x9, 0x8, 0x8, 0xfff, 0x33, 0x1, 0x9, 0x401, 0xff, 0x6, 0x0, 0x20, 0x0, 0x9, 0x8001, 0x2, 0x2, 0x1, 0x10000, 0x6a6, 0x6, 0x3, 0x20, 0x5, 0x2, 0x7ff, 0x2, 0x6, 0x5, 0x6, 0x0, 0x0, 0x1, 0x0, 0x9, 0x5, 0x80, 0x1, 0x8000, 0xfc, 0x100, 0xc7, 0x10000, 0x2, 0x10000, 0x40, 0x81, 0xffff, 0x93, 0x7, 0x1000, 0x4, 0x4, 0x8, 0x1, 0x3, 0x10001, 0x7, 0xfe58, 0x0, 0x2, 0x8001, 0x8, 0x1, 0x80, 0xfffffff8, 0xedf, 0x5, 0x7, 0x9, 0x4, 0x101, 0x3ff, 0x1000, 0xd77c, 0xfff, 0x7, 0xff, 0x8, 0x101, 0x4a, 0x3, 0x1, 0x8, 0x4, 0x4e, 0x1, 0x400, 0xffffff01, 0x8, 0x3, 0x2, 0x2, 0x9d42, 0x10001, 0x257c7eee, 0xfff, 0x9c1a, 0x1, 0x4, 0x800, 0x0, 0x200, 0xf70, 0x2, 0x7, 0x1, 0x3f, 0x0, 0x715a, 0x8, 0x3, 0x0, 0x2, 0x9, 0x7d, 0x40, 0x10001, 0x9, 0x8, 0xfffffffa, 0x4, 0x3, 0x7, 0x1e9b, 0x2, 0x4a, 0x8001, 0x1ff00000, 0x8, 0x7, 0x401, 0x4, 0x1, 0xfffffffa, 0x22f2961c, 0x3, 0x9, 0x200, 0x8, 0x6a, 0x5, 0x4, 0x3f, 0xff, 0x8000, 0x3f, 0x1, 0x1, 0x1, 0x8000, 0x8000, 0x5, 0xff, 0x40, 0x319f, 0x0, 0x0, 0x9, 0x0, 0x7, 0x1, 0xa0f, 0xac, 0x4, 0x7ff, 0xce, 0x0, 0x9, 0x4, 0x1, 0x0, 0xfc, 0x9, 0xffff0fea, 0x7, 0x0, 0x9, 0x6, 0x40, 0xbc, 0x1, 0x10000, 0xfffff801, 0x5, 0x9, 0x0, 0xffff0001, 0x6736, 0xfffffeff, 0x3, 0x5, 0x20, 0x3, 0x9, 0x50000000, 0x0, 0x80000001, 0x5, 0x3, 0x80000000, 0x3, 0x6, 0xffff, 0x7, 0x3, 0x119, 0x1, 0x7fff, 0x8, 0x1ff, 0x5, 0x74cd, 0xff, 0x3, 0x7, 0x8001, 0xe50e, 0xe9, 0x4, 0x5, 0xeb42, 0x4, 0x3, 0xfffff9cb, 0x1, 0x618a, 0x1ff, 0x1, 0x7, 0x9, 0x3, 0x9, 0x1, 0x9, 0x4, 0x0, 0x9, 0x8, 0x6, 0x7, 0x3fc00, 0x0, 0x0, 0x2, 0x1, 0xfffffff9, 0x31, 0x9, 0x7fffffff, 0x3, 0x4, 0xfffffff9, 0x9, 0x8, 0x1ff, 0x800, 0x8, 0x2, 0x5, 0x10000, 0x3, 0x7fffffff, 0x3, 0x26e1, 0xf20, 0x2, 0xffff, 0x9], 0x3, 0x400, 0xffff})
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000002040)={&(0x7f0000001040)=[0x401, 0x38, 0x0, 0x3, 0xfffffffa, 0x38ca6c39, 0x1, 0x8, 0x7, 0xab, 0x4, 0x5, 0x52c9, 0xffffff08, 0x730, 0x20000, 0x0, 0x6, 0x2, 0xf720, 0x3, 0x400, 0x1, 0x97dd, 0x7, 0x7, 0x10000, 0x400, 0x4, 0x8001, 0x8, 0xfff, 0x75c4, 0xde, 0x1000, 0x9, 0x20, 0x401, 0x668, 0x6, 0x8, 0x4ac6, 0xb210, 0x4, 0x10001, 0x8, 0xb0c, 0x7, 0x2, 0x1c, 0x941f, 0x2, 0x401, 0x5d9, 0x8, 0x4, 0x2, 0xe7, 0x7ad, 0x80000000, 0x6, 0xff, 0x0, 0x7fffffff, 0x7ff, 0x1, 0x8, 0x2d5d800, 0x9, 0x1, 0x0, 0x4, 0x2, 0x8000, 0xffff0000, 0x7f, 0x700000, 0x0, 0x3, 0x757, 0xfffff9a6, 0x6, 0xac2, 0x81, 0x1000, 0x4, 0x3, 0x3ff, 0x7, 0x2, 0x9c, 0x1, 0x9, 0x3, 0x6, 0x5, 0x10000, 0x800, 0x247, 0xa717, 0xcc88, 0x3, 0x40f, 0x80000000, 0x8, 0x80, 0x2, 0x2, 0xee70, 0x401, 0x5e0d, 0x5, 0x3, 0xfffffffb, 0x8, 0x9, 0x3, 0x9, 0x3ff, 0x0, 0x32, 0x81, 0x100, 0xd3a8, 0x511, 0x6, 0x2, 0x4, 0x7fff, 0x7, 0x800, 0x9, 0x400, 0xff, 0x4, 0x0, 0x3, 0x2, 0x7f, 0x20000000, 0x81, 0x3, 0x2, 0x40, 0x3, 0x1, 0x3, 0x0, 0x1f, 0xff, 0x7c00, 0x0, 0x4, 0x3, 0xfffff001, 0x92, 0x80, 0x7, 0x8fc, 0xffffffff, 0xfff, 0x8, 0x1ff, 0x4, 0x15, 0x3f, 0x6, 0x3, 0x7fff, 0x7, 0x4, 0x5, 0x8b, 0x3, 0x0, 0xb287, 0x80, 0x800, 0x7fff, 0x4, 0x2, 0x0, 0x0, 0x5, 0x6, 0xfffffffc, 0x8001, 0x10000, 0x400, 0x800, 0x20, 0x0, 0x5, 0x65a, 0x101, 0x3, 0x9, 0x6, 0x9, 0xff, 0x3, 0x55, 0x20, 0x7fffffff, 0x1, 0x2, 0x7c6ab1f6, 0x5c5, 0x7fff, 0x4, 0x8, 0x3f, 0x3, 0x0, 0xe20b, 0x7ff, 0x467f, 0x7, 0xffffffff, 0xfffffffa, 0x8, 0x81, 0x5, 0x8, 0x0, 0x8, 0x2, 0x5, 0x5, 0x6, 0x101, 0x4, 0x0, 0x7, 0x81, 0x20, 0x5, 0xe975, 0xfffffffe, 0x20000000, 0x6, 0x5, 0x8, 0xfffffffb, 0x4d85, 0x9f99e4e, 0x80000001, 0xc, 0x6, 0x3, 0xffff, 0x80000000, 0x1, 0x7, 0x7, 0x8, 0x1a3e6958, 0x2000000, 0x9, 0x0, 0xf13, 0x3078, 0x3fff80, 0x401, 0xfff, 0x7fff, 0x4, 0x1, 0x4, 0xfffff000, 0xffffffff, 0x80000001, 0xfff, 0x7fffffff, 0x50d83c5, 0xf64, 0xffffff1f, 0x2, 0x4, 0x63, 0xfffff280, 0x80, 0xfffffffb, 0x68, 0x9, 0x10000, 0x1, 0x6, 0x2, 0x7ff, 0x800, 0x0, 0x200, 0x5, 0xe, 0x9, 0x8, 0x9, 0x4, 0x26, 0x1, 0xfffffffc, 0x7, 0x0, 0x0, 0x4, 0x1, 0x0, 0x3f, 0x7f, 0x8, 0x1, 0x800, 0x9, 0x9, 0x9, 0xff, 0x9, 0x3, 0x80000001, 0x5, 0xdad, 0xffffffa8, 0x6, 0xa702, 0x80e, 0x80000000, 0x913, 0x8, 0xfffffffb, 0x7, 0x4, 0xcfc, 0x4, 0x7, 0x100, 0x87b9, 0x200, 0x3, 0x0, 0x5, 0x400, 0x400, 0x2, 0xbde9, 0x971, 0x401, 0x7ff, 0x14b, 0x1, 0x6, 0x1, 0x0, 0x400, 0x7ff, 0x8, 0x8, 0x80000001, 0x5, 0x10000, 0xdb79, 0x3ff, 0x3, 0x7, 0x2, 0x0, 0xfffffff8, 0x0, 0xfffffffb, 0x7, 0x80000001, 0x104e, 0x3, 0x4, 0x7, 0x3, 0x3, 0x7f, 0x7, 0x4, 0xd91, 0x7, 0x8, 0x1, 0x1e, 0x80, 0x6, 0x5a, 0x7, 0xffff0000, 0x1, 0x7fff, 0x6, 0x8, 0x0, 0x9, 0x9, 0x5, 0x8, 0x5, 0x5, 0x80, 0x3ff, 0x8000, 0x6, 0x200, 0x3ff, 0x6, 0xffffffff, 0x7d, 0x18, 0x3f, 0x8000, 0x5a, 0x6, 0x457, 0x2, 0x5, 0x8, 0x4, 0x5, 0x80, 0x6e, 0x1, 0x1, 0x3f, 0x6fc3, 0x3, 0x40, 0x4, 0x4, 0x1, 0xfffffffc, 0x7, 0x1ff, 0x7, 0x1, 0x8, 0x0, 0xbd0d, 0x5, 0xfffffffb, 0x1, 0x1, 0x6, 0x4, 0x7ff, 0xfffffffd, 0xae, 0xfc000000, 0x9, 0x101, 0xe75, 0x7fff, 0x80, 0x400, 0x9, 0xb5, 0x0, 0x24000, 0x7, 0x5, 0x81, 0x1580, 0x81, 0x2, 0x401, 0x2, 0xffff, 0x4, 0x2, 0x80000000, 0x5, 0x6, 0xff, 0xfffffff8, 0x3, 0x5, 0x4, 0x80, 0x3, 0x4, 0x0, 0x4096, 0x6, 0x20, 0x0, 0x4, 0xb6, 0xad3, 0x0, 0x4, 0x0, 0x5, 0x7ff, 0x8, 0x4, 0x9d, 0x2, 0x6, 0x5, 0x1, 0x5, 0x4, 0x4, 0x9, 0x7, 0x800, 0x10001, 0x300000, 0x200, 0x8000, 0x3ff, 0x1, 0xfffff32c, 0x8000, 0x9, 0x0, 0x7, 0x14000, 0x5, 0x3, 0x1, 0x2, 0x8, 0x9, 0x200000, 0x5, 0x28, 0x9, 0xb0fe, 0xc8b, 0x401, 0x40, 0x0, 0x7, 0x70, 0x5, 0x8, 0x5, 0x40, 0x1, 0x1, 0x80000000, 0x1, 0x8, 0x7303, 0x20, 0x2, 0x4, 0x7, 0xffffff01, 0x8, 0x5, 0x8, 0x4, 0x20, 0x401, 0x1, 0x8001, 0x9, 0x80000001, 0x1000, 0x7ff, 0x80000001, 0x0, 0x9, 0x1, 0x3, 0x81, 0x1, 0x4, 0xb310, 0xfffffffd, 0xfffffc01, 0xffffffff, 0x5, 0x1ff, 0x10001, 0x8, 0xffff, 0x81, 0x3, 0x7fff, 0x4, 0x42cf, 0x7, 0x3, 0xc95, 0x920b, 0x965, 0x265, 0x21a3, 0x40, 0x5, 0x8001, 0xfa9, 0x8, 0x8, 0x0, 0x1, 0x5, 0x3, 0x6, 0x22b, 0x7, 0x8, 0x200, 0x8000, 0x8, 0x71, 0xe7c, 0x1f, 0x10000, 0x3, 0x6, 0x7, 0x0, 0x0, 0x1ff, 0xff, 0x1, 0x6, 0x0, 0xfffffff8, 0x3, 0x0, 0x3, 0x3, 0x8d, 0x5aa, 0xc1f, 0x1, 0x8, 0x3, 0x6, 0x0, 0x9, 0x3e1, 0x6, 0x3, 0x2, 0xfffffffb, 0x5, 0xfffffff9, 0x4, 0xff, 0x2, 0x9, 0x3, 0x26, 0x0, 0x5, 0x1, 0x8, 0x401, 0x4, 0x8000, 0x1, 0x5, 0x7, 0xd0f1, 0x4, 0x6, 0x2, 0xe0, 0x40, 0x2, 0x4, 0x10001, 0x9679, 0x10000, 0xff, 0x3b2a40, 0x10001, 0x3, 0x4, 0xfffffffd, 0x5, 0x8, 0xff, 0x400, 0x8468, 0x40, 0x73, 0x7fff, 0x9, 0x1, 0x200, 0x4, 0x3, 0x401, 0x3f, 0x2c1, 0x3, 0x2, 0x1, 0xfffffffc, 0xeb9, 0x1, 0x7, 0x2, 0xc742, 0xfffff001, 0x3, 0x0, 0x0, 0x6, 0x100, 0x1, 0x124, 0x9, 0xfffffffe, 0x3, 0x2, 0x96, 0x0, 0x1, 0x5, 0x7f, 0x0, 0x8000, 0x4, 0x4, 0x6, 0x1, 0x3ff, 0x9, 0x2, 0x9, 0x9, 0xb6e, 0x10001, 0x3ff, 0x9, 0xfffffff9, 0x0, 0x5, 0x8, 0x6, 0x1, 0x8, 0x2, 0x1, 0x9, 0x2, 0x6f35, 0x1, 0x3, 0x6, 0x0, 0x9, 0x0, 0x4, 0x401, 0x200, 0x1ff, 0x10000, 0x8000, 0x8, 0x8001, 0x9, 0x1, 0x0, 0x101, 0x7, 0x2, 0x3, 0x2, 0x4, 0x1ff, 0x1f, 0x1, 0x2c25, 0x9, 0x8, 0x2, 0x0, 0x9, 0x3, 0x6, 0x7f, 0x3, 0x800, 0x2, 0x3, 0x8, 0xfffffc01, 0x9, 0xe4d5, 0x40, 0x7, 0xfffffffe, 0x0, 0x8, 0x8278, 0x9, 0x0, 0x7, 0x5, 0x0, 0x8, 0x8, 0x401, 0x7, 0x1800, 0x0, 0x2, 0x5db, 0x4, 0x0, 0x2, 0x3f, 0x3, 0x0, 0x80000000, 0x3, 0x7, 0x7, 0x7ff, 0x1, 0x5, 0x89c, 0x20000000, 0x2, 0x3ff, 0x3, 0x1, 0x80000001, 0x8, 0x200, 0x2, 0xffffffff, 0xfffffff8, 0xb91, 0x3, 0x4, 0x0, 0x6, 0x2, 0x5, 0x6, 0x4, 0x58d, 0x3, 0xffff, 0xfffffff9, 0x6, 0x401, 0x5, 0x0, 0x101, 0x80, 0x3, 0x6, 0x7f, 0x80000001, 0x6, 0x7, 0x6, 0x8000, 0x0, 0x0, 0x800, 0x39d6, 0x1, 0x0, 0x3, 0x9, 0x8000, 0x4, 0x1329, 0x76, 0x8, 0x1, 0x2, 0x0, 0x0, 0x7fffffff, 0x0, 0x6, 0x7fffffff, 0x6, 0x12, 0x885, 0x7, 0x4, 0x10000, 0x80000001, 0x8001, 0x7ff, 0x1ff, 0x2, 0x1ff, 0x0, 0xad, 0x6, 0x2, 0x8, 0x9, 0x6, 0x3, 0x8, 0xd50, 0xf8a, 0x1, 0xffffffff, 0x5, 0xce, 0xf530, 0x20, 0x8c, 0x277, 0x2, 0x6, 0xc, 0x5, 0x8, 0x0, 0x7ff, 0x1, 0x0, 0x4, 0x0, 0x6, 0x6, 0x8, 0xfffffe01, 0x5, 0x4, 0x5, 0x8, 0x1ff, 0x3, 0x4, 0x5, 0x4, 0x4, 0x8001, 0xffff1af7, 0x6, 0x2, 0x3, 0x4, 0x80, 0x7, 0x1, 0x7bb1, 0x7fffffff, 0x1ff, 0x4, 0x0, 0xffff8000, 0x8000, 0x9, 0xfff, 0x1, 0x6, 0x0, 0x9, 0x8, 0xffffffff, 0x5, 0x4, 0x5, 0x5, 0x2, 0xa7c, 0x80000000, 0x4, 0x4, 0x0, 0x7, 0x2, 0x4, 0xfffffff3, 0x82, 0x9, 0x81, 0x8000, 0x8, 0x7f, 0x0, 0x0, 0x2aca, 0x0, 0xfffffffe, 0x1, 0x6, 0x0, 0xffffff00, 0x6, 0x8000, 0x100, 0xf5, 0x700000, 0x4, 0x80000000, 0x7, 0x8a, 0x7f, 0x1924bd8f, 0x7, 0x9, 0x1, 0x1, 0x5, 0x100, 0x77dc, 0x9, 0x23f, 0x9e8, 0x9, 0x101, 0x2741, 0x20, 0x5b1c, 0x1, 0x4, 0x1, 0x9, 0x4, 0x3ff, 0xcf8], 0x1, 0x400, 0x7})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(0xffffffffffffffff, 0x7b1, &(0x7f0000001000)={&(0x7f0000000000)=[0xd180, 0x0, 0x1, 0x9, 0x6, 0x0, 0xff, 0x9, 0x6, 0x200, 0x83, 0xb6, 0x6, 0x0, 0x40, 0x6, 0x1, 0x401, 0xfffffffb, 0x6, 0x6, 0x0, 0xfffffffd, 0x8, 0x4, 0x0, 0x4, 0x2, 0x100, 0xab8, 0xd9, 0x80000001, 0xfffffe01, 0x0, 0x2, 0x6, 0x2, 0x5, 0xfffffffa, 0x124f, 0x2, 0xfffffffd, 0x40, 0x7, 0x9, 0x400, 0x4, 0x6, 0x38a, 0x3, 0x40, 0x7fffffff, 0x8000, 0x1, 0x1, 0x4, 0x100, 0x2, 0x372c, 0x80000000, 0x7, 0x10000, 0x1, 0x2, 0x4, 0x2, 0x0, 0x5, 0x4, 0x1, 0xd2, 0x8, 0x80000001, 0x80000001, 0x200, 0x200, 0xbab2, 0xfffffff7, 0x4, 0x10000, 0x1ff, 0x101, 0xff, 0x3, 0x0, 0x7e2f, 0x80000000, 0x8, 0x9, 0xfffff696, 0x7f, 0x1, 0x101, 0x3ff, 0x80000001, 0x2, 0x2, 0x584, 0x61, 0x7fffffff, 0xbd60, 0x9, 0xfffffffc, 0x6, 0x7fffffff, 0x0, 0x3ff, 0x20, 0x0, 0x1, 0x87, 0x2, 0x80, 0x400, 0xb6, 0x881, 0x8, 0x7, 0x401, 0x3, 0x7f, 0x2, 0x1ff, 0x33b0000, 0x7, 0x4, 0xc11b, 0x9, 0x7, 0x6, 0x1, 0x20, 0x7, 0x8, 0x444000, 0x3, 0xce, 0x21, 0x100, 0x6, 0x6, 0x2, 0x9, 0x3ff, 0x34d9, 0x7, 0x0, 0x3e3, 0x200, 0x20, 0x3, 0x1000, 0x6, 0x8, 0xd55, 0x7, 0x0, 0x8, 0x0, 0x401, 0x1fe3, 0x10001, 0xcc0, 0x4, 0x3, 0x5, 0xffffff7f, 0x100, 0x168, 0x9, 0x3, 0x401, 0x0, 0x3f, 0x3, 0x1, 0x5, 0x7fff, 0xfc, 0x1b3d, 0x800, 0xba06, 0x20, 0x2, 0x1, 0x6, 0x3, 0x40, 0x9, 0xfff, 0xffffffe1, 0x3, 0x5, 0x6, 0x7, 0x199, 0x1, 0x20, 0x2, 0x0, 0x8001, 0x0, 0xce8, 0x81, 0x8000, 0x5, 0x1000, 0x100, 0x8, 0x73f, 0xc1, 0x101, 0x3684, 0x3ff, 0x9, 0x80000000, 0x5b, 0x28, 0x8000, 0x4, 0x401, 0xff, 0x8, 0x7, 0x3, 0x7, 0x2, 0x5, 0x5, 0x8000, 0x5, 0x1, 0x0, 0x5d4, 0x400, 0x3, 0xfffff1be, 0x6, 0x7, 0x1, 0xfff, 0x5, 0x6, 0x6, 0x5, 0x0, 0x3, 0x8, 0x32335d16, 0xfffffff7, 0x800, 0xfff, 0x7, 0x5, 0x100, 0x20, 0x4, 0x8, 0x0, 0x4, 0x5, 0x401, 0x8, 0x3c38, 0x49c, 0x1000, 0x7f, 0x1, 0x2, 0x1, 0x2, 0x40, 0x7f, 0x0, 0x7fffffff, 0x9, 0x7, 0x5, 0x9, 0xefb, 0x6, 0x4f00, 0x816, 0x4, 0x4, 0x2, 0xffffffff, 0x4, 0x6, 0xffffffff, 0x1000, 0xffffffff, 0x4, 0xccb3, 0x401, 0x7, 0x5, 0x8, 0x7, 0x80000001, 0x9, 0x7f, 0x6ed3af58, 0xa000, 0xfff, 0x3, 0x5, 0x7, 0x3, 0x7, 0x7, 0x6, 0x6, 0xfff, 0x800, 0x889, 0x1, 0xc370, 0x4, 0x629, 0x2, 0x4, 0x31, 0x3f9f, 0x7fffffff, 0x8, 0x5, 0x80000001, 0x7, 0xe4, 0x401, 0xffffffff, 0x8, 0x3, 0x200, 0x0, 0x11, 0x9d, 0x99be, 0x8, 0x8, 0x80, 0x9, 0x401, 0x0, 0x401, 0x8, 0x3ff, 0xfffff95b, 0x20, 0x9, 0x6, 0x1, 0x6, 0xfffffffd, 0x4, 0x3, 0x0, 0x4, 0x10000, 0x4, 0x2, 0x9, 0x5, 0xffffff80, 0x0, 0x3, 0x9764, 0x4, 0x8, 0x81, 0x0, 0x200, 0x9, 0x5, 0x8, 0x8001, 0xb6c, 0x3, 0xebd, 0x1, 0x9, 0x81, 0xffffffff, 0x4, 0xfff, 0x1ff, 0x7, 0x6, 0x7, 0x8, 0x1000, 0x2, 0x7, 0x9, 0x6, 0xfffffffd, 0x4, 0x0, 0x9, 0x3ff, 0x400, 0xffffffff, 0x2, 0x80000000, 0x3, 0x8, 0x401, 0x4, 0x78f, 0x7, 0x1, 0x40, 0x8aeb, 0x7, 0x7fffffff, 0x6, 0x6, 0x4, 0x0, 0x8, 0x0, 0x9, 0x7, 0x7fff, 0xfffffffc, 0x10000, 0x10000, 0xab, 0x800, 0x627, 0x5, 0x4c, 0x6, 0x5, 0x401, 0x8dc, 0x1ff, 0x10001, 0x80000000, 0x2292, 0x5, 0x3, 0x1ff, 0x0, 0x6, 0xffff8001, 0x0, 0xaa5, 0xffff, 0x5, 0x2, 0x7ff, 0xff, 0x80000001, 0x0, 0x2, 0x400, 0x0, 0x0, 0xa280, 0x85fd, 0xa85d, 0x5, 0x1000, 0x6, 0x8, 0x9, 0x7, 0x80000000, 0x1, 0x51f, 0x80000000, 0x0, 0x40, 0xf7, 0x401, 0x8, 0xe1d, 0x6f, 0x1a6, 0x10001, 0x4, 0x0, 0xff, 0x400, 0x7, 0x4, 0x80000001, 0x6, 0x5, 0x0, 0x1, 0x1, 0x3, 0xffffffff, 0x8000, 0x80000000, 0x570f, 0x9, 0x0, 0x2000, 0xfff, 0x7, 0xfffffffb, 0x1a9, 0x80000001, 0x6, 0x3, 0x107, 0x2d2, 0xfa, 0x0, 0x2, 0x0, 0xbde3, 0x780, 0x41c0, 0x3f, 0x40, 0x81, 0x8, 0x3, 0x0, 0x8, 0x1, 0x20, 0x2, 0x6, 0x3, 0x8, 0x0, 0x1, 0x8, 0x4, 0x80000000, 0x80000000, 0x3, 0x80000000, 0xffff8001, 0x1f, 0x3, 0x5, 0x3, 0x5, 0x5, 0xff, 0x902b, 0x401, 0x7fffffff, 0xfffffffd, 0x3f, 0x0, 0x81, 0x3, 0x9, 0x2, 0x7fff, 0x3, 0x40, 0xfffffff8, 0x7fff, 0x3, 0x1000, 0x28911fef, 0x1, 0x4, 0x7, 0x10001, 0x8, 0x0, 0x7, 0x9, 0x48, 0xfffffffd, 0x0, 0x8, 0x3, 0x5, 0x2, 0x1f, 0x1, 0x0, 0x6a88, 0x3, 0x6, 0x979, 0x1f, 0xaba, 0x9, 0x9, 0x3, 0x9, 0x7, 0x4f, 0x5, 0x3, 0x80000001, 0xfff, 0x6, 0x2, 0xfffffffa, 0x7fffffff, 0x200, 0x0, 0x8, 0x3, 0x3, 0x800, 0x7, 0x14e8b9b7, 0x7, 0x1, 0xfb, 0x6, 0x1, 0x1, 0x7, 0xffffff48, 0x80000001, 0x10001, 0xffffff1a, 0x80, 0x6129f55f, 0x10001, 0x1, 0x6, 0x7ff, 0x10000, 0xfd05, 0x1ff, 0xfffffff6, 0x4, 0x100, 0x8, 0x800, 0xffff923b, 0x5, 0x3, 0x791, 0x9, 0x80000000, 0x200, 0x5, 0x7ab, 0xff, 0x9, 0x8, 0x1f, 0x75b, 0x2, 0x1, 0x3, 0x7, 0x9, 0x401, 0x7fffffff, 0x5, 0xffff, 0x9, 0xfff, 0x2, 0x81, 0x10001, 0x7, 0x7, 0x0, 0x2, 0xc812, 0x9, 0x1ff, 0xe1f8, 0xffffffff, 0x9, 0x80000000, 0xffffffa9, 0x9, 0x0, 0x8, 0xef5, 0x4, 0x2, 0x6, 0x3, 0x1000, 0x8000, 0x5d2, 0x5, 0x7, 0x0, 0x9425, 0x1, 0x3, 0x9, 0x101, 0xc15, 0x0, 0x7fffffff, 0xb1, 0x401, 0x4, 0x5, 0x0, 0x9, 0x7, 0x6, 0x5, 0xb2a, 0x1000, 0x643e, 0x4, 0x76, 0x4, 0x7f, 0x3, 0x9, 0x9, 0x2, 0x2, 0x71, 0xffff716e, 0xfff, 0x1, 0x1, 0x6, 0x2, 0x1, 0x9, 0xec0f, 0x0, 0x3, 0x40000000, 0x3, 0x0, 0x7ad8, 0x3, 0x99a, 0x0, 0xda64, 0x80000001, 0xff, 0x1, 0x80000000, 0x8, 0x6, 0x48, 0x80, 0x0, 0xfffff45e, 0x7, 0x7, 0x7ff, 0x9, 0x8, 0x3, 0x9, 0x8, 0x8, 0xfff, 0x33, 0x1, 0x9, 0x401, 0xff, 0x6, 0x0, 0x20, 0x0, 0x9, 0x8001, 0x2, 0x2, 0x1, 0x10000, 0x6a6, 0x6, 0x3, 0x20, 0x5, 0x2, 0x7ff, 0x2, 0x6, 0x5, 0x6, 0x0, 0x0, 0x1, 0x0, 0x9, 0x5, 0x80, 0x1, 0x8000, 0xfc, 0x100, 0xc7, 0x10000, 0x2, 0x10000, 0x40, 0x81, 0xffff, 0x93, 0x7, 0x1000, 0x4, 0x4, 0x8, 0x1, 0x3, 0x10001, 0x7, 0xfe58, 0x0, 0x2, 0x8001, 0x8, 0x1, 0x80, 0xfffffff8, 0xedf, 0x5, 0x7, 0x9, 0x4, 0x101, 0x3ff, 0x1000, 0xd77c, 0xfff, 0x7, 0xff, 0x8, 0x101, 0x4a, 0x3, 0x1, 0x8, 0x4, 0x4e, 0x1, 0x400, 0xffffff01, 0x8, 0x3, 0x2, 0x2, 0x9d42, 0x10001, 0x257c7eee, 0xfff, 0x9c1a, 0x1, 0x4, 0x800, 0x0, 0x200, 0xf70, 0x2, 0x7, 0x1, 0x3f, 0x0, 0x715a, 0x8, 0x3, 0x0, 0x2, 0x9, 0x7d, 0x40, 0x10001, 0x9, 0x8, 0xfffffffa, 0x4, 0x3, 0x7, 0x1e9b, 0x2, 0x4a, 0x8001, 0x1ff00000, 0x8, 0x7, 0x401, 0x4, 0x1, 0xfffffffa, 0x22f2961c, 0x3, 0x9, 0x200, 0x8, 0x6a, 0x5, 0x4, 0x3f, 0xff, 0x8000, 0x3f, 0x1, 0x1, 0x1, 0x8000, 0x8000, 0x5, 0xff, 0x40, 0x319f, 0x0, 0x0, 0x9, 0x0, 0x7, 0x1, 0xa0f, 0xac, 0x4, 0x7ff, 0xce, 0x0, 0x9, 0x4, 0x1, 0x0, 0xfc, 0x9, 0xffff0fea, 0x7, 0x0, 0x9, 0x6, 0x40, 0xbc, 0x1, 0x10000, 0xfffff801, 0x5, 0x9, 0x0, 0xffff0001, 0x6736, 0xfffffeff, 0x3, 0x5, 0x20, 0x3, 0x9, 0x50000000, 0x0, 0x80000001, 0x5, 0x3, 0x80000000, 0x3, 0x6, 0xffff, 0x7, 0x3, 0x119, 0x1, 0x7fff, 0x8, 0x1ff, 0x5, 0x74cd, 0xff, 0x3, 0x7, 0x8001, 0xe50e, 0xe9, 0x4, 0x5, 0xeb42, 0x4, 0x3, 0xfffff9cb, 0x1, 0x618a, 0x1ff, 0x1, 0x7, 0x9, 0x3, 0x9, 0x1, 0x9, 0x4, 0x0, 0x9, 0x8, 0x6, 0x7, 0x3fc00, 0x0, 0x0, 0x2, 0x1, 0xfffffff9, 0x31, 0x9, 0x7fffffff, 0x3, 0x4, 0xfffffff9, 0x9, 0x8, 0x1ff, 0x800, 0x8, 0x2, 0x5, 0x10000, 0x3, 0x7fffffff, 0x3, 0x26e1, 0xf20, 0x2, 0xffff, 0x9], 0x3, 0x400, 0xffff}) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000002040)={&(0x7f0000001040)=[0x401, 0x38, 0x0, 0x3, 0xfffffffa, 0x38ca6c39, 0x1, 0x8, 0x7, 0xab, 0x4, 0x5, 0x52c9, 0xffffff08, 0x730, 0x20000, 0x0, 0x6, 0x2, 0xf720, 0x3, 0x400, 0x1, 0x97dd, 0x7, 0x7, 0x10000, 0x400, 0x4, 0x8001, 0x8, 0xfff, 0x75c4, 0xde, 0x1000, 0x9, 0x20, 0x401, 0x668, 0x6, 0x8, 0x4ac6, 0xb210, 0x4, 0x10001, 0x8, 0xb0c, 0x7, 0x2, 0x1c, 0x941f, 0x2, 0x401, 0x5d9, 0x8, 0x4, 0x2, 0xe7, 0x7ad, 0x80000000, 0x6, 0xff, 0x0, 0x7fffffff, 0x7ff, 0x1, 0x8, 0x2d5d800, 0x9, 0x1, 0x0, 0x4, 0x2, 0x8000, 0xffff0000, 0x7f, 0x700000, 0x0, 0x3, 0x757, 0xfffff9a6, 0x6, 0xac2, 0x81, 0x1000, 0x4, 0x3, 0x3ff, 0x7, 0x2, 0x9c, 0x1, 0x9, 0x3, 0x6, 0x5, 0x10000, 0x800, 0x247, 0xa717, 0xcc88, 0x3, 0x40f, 0x80000000, 0x8, 0x80, 0x2, 0x2, 0xee70, 0x401, 0x5e0d, 0x5, 0x3, 0xfffffffb, 0x8, 0x9, 0x3, 0x9, 0x3ff, 0x0, 0x32, 0x81, 0x100, 0xd3a8, 0x511, 0x6, 0x2, 0x4, 0x7fff, 0x7, 0x800, 0x9, 0x400, 0xff, 0x4, 0x0, 0x3, 0x2, 0x7f, 0x20000000, 0x81, 0x3, 0x2, 0x40, 0x3, 0x1, 0x3, 0x0, 0x1f, 0xff, 0x7c00, 0x0, 0x4, 0x3, 0xfffff001, 0x92, 0x80, 0x7, 0x8fc, 0xffffffff, 0xfff, 0x8, 0x1ff, 0x4, 0x15, 0x3f, 0x6, 0x3, 0x7fff, 0x7, 0x4, 0x5, 0x8b, 0x3, 0x0, 0xb287, 0x80, 0x800, 0x7fff, 0x4, 0x2, 0x0, 0x0, 0x5, 0x6, 0xfffffffc, 0x8001, 0x10000, 0x400, 0x800, 0x20, 0x0, 0x5, 0x65a, 0x101, 0x3, 0x9, 0x6, 0x9, 0xff, 0x3, 0x55, 0x20, 0x7fffffff, 0x1, 0x2, 0x7c6ab1f6, 0x5c5, 0x7fff, 0x4, 0x8, 0x3f, 0x3, 0x0, 0xe20b, 0x7ff, 0x467f, 0x7, 0xffffffff, 0xfffffffa, 0x8, 0x81, 0x5, 0x8, 0x0, 0x8, 0x2, 0x5, 0x5, 0x6, 0x101, 0x4, 0x0, 0x7, 0x81, 0x20, 0x5, 0xe975, 0xfffffffe, 0x20000000, 0x6, 0x5, 0x8, 0xfffffffb, 0x4d85, 0x9f99e4e, 0x80000001, 0xc, 0x6, 0x3, 0xffff, 0x80000000, 0x1, 0x7, 0x7, 0x8, 0x1a3e6958, 0x2000000, 0x9, 0x0, 0xf13, 0x3078, 0x3fff80, 0x401, 0xfff, 0x7fff, 0x4, 0x1, 0x4, 0xfffff000, 0xffffffff, 0x80000001, 0xfff, 0x7fffffff, 0x50d83c5, 0xf64, 0xffffff1f, 0x2, 0x4, 0x63, 0xfffff280, 0x80, 0xfffffffb, 0x68, 0x9, 0x10000, 0x1, 0x6, 0x2, 0x7ff, 0x800, 0x0, 0x200, 0x5, 0xe, 0x9, 0x8, 0x9, 0x4, 0x26, 0x1, 0xfffffffc, 0x7, 0x0, 0x0, 0x4, 0x1, 0x0, 0x3f, 0x7f, 0x8, 0x1, 0x800, 0x9, 0x9, 0x9, 0xff, 0x9, 0x3, 0x80000001, 0x5, 0xdad, 0xffffffa8, 0x6, 0xa702, 0x80e, 0x80000000, 0x913, 0x8, 0xfffffffb, 0x7, 0x4, 0xcfc, 0x4, 0x7, 0x100, 0x87b9, 0x200, 0x3, 0x0, 0x5, 0x400, 0x400, 0x2, 0xbde9, 0x971, 0x401, 0x7ff, 0x14b, 0x1, 0x6, 0x1, 0x0, 0x400, 0x7ff, 0x8, 0x8, 0x80000001, 0x5, 0x10000, 0xdb79, 0x3ff, 0x3, 0x7, 0x2, 0x0, 0xfffffff8, 0x0, 0xfffffffb, 0x7, 0x80000001, 0x104e, 0x3, 0x4, 0x7, 0x3, 0x3, 0x7f, 0x7, 0x4, 0xd91, 0x7, 0x8, 0x1, 0x1e, 0x80, 0x6, 0x5a, 0x7, 0xffff0000, 0x1, 0x7fff, 0x6, 0x8, 0x0, 0x9, 0x9, 0x5, 0x8, 0x5, 0x5, 0x80, 0x3ff, 0x8000, 0x6, 0x200, 0x3ff, 0x6, 0xffffffff, 0x7d, 0x18, 0x3f, 0x8000, 0x5a, 0x6, 0x457, 0x2, 0x5, 0x8, 0x4, 0x5, 0x80, 0x6e, 0x1, 0x1, 0x3f, 0x6fc3, 0x3, 0x40, 0x4, 0x4, 0x1, 0xfffffffc, 0x7, 0x1ff, 0x7, 0x1, 0x8, 0x0, 0xbd0d, 0x5, 0xfffffffb, 0x1, 0x1, 0x6, 0x4, 0x7ff, 0xfffffffd, 0xae, 0xfc000000, 0x9, 0x101, 0xe75, 0x7fff, 0x80, 0x400, 0x9, 0xb5, 0x0, 0x24000, 0x7, 0x5, 0x81, 0x1580, 0x81, 0x2, 0x401, 0x2, 0xffff, 0x4, 0x2, 0x80000000, 0x5, 0x6, 0xff, 0xfffffff8, 0x3, 0x5, 0x4, 0x80, 0x3, 0x4, 0x0, 0x4096, 0x6, 0x20, 0x0, 0x4, 0xb6, 0xad3, 0x0, 0x4, 0x0, 0x5, 0x7ff, 0x8, 0x4, 0x9d, 0x2, 0x6, 0x5, 0x1, 0x5, 0x4, 0x4, 0x9, 0x7, 0x800, 0x10001, 0x300000, 0x200, 0x8000, 0x3ff, 0x1, 0xfffff32c, 0x8000, 0x9, 0x0, 0x7, 0x14000, 0x5, 0x3, 0x1, 0x2, 0x8, 0x9, 0x200000, 0x5, 0x28, 0x9, 0xb0fe, 0xc8b, 0x401, 0x40, 0x0, 0x7, 0x70, 0x5, 0x8, 0x5, 0x40, 0x1, 0x1, 0x80000000, 0x1, 0x8, 0x7303, 0x20, 0x2, 0x4, 0x7, 0xffffff01, 0x8, 0x5, 0x8, 0x4, 0x20, 0x401, 0x1, 0x8001, 0x9, 0x80000001, 0x1000, 0x7ff, 0x80000001, 0x0, 0x9, 0x1, 0x3, 0x81, 0x1, 0x4, 0xb310, 0xfffffffd, 0xfffffc01, 0xffffffff, 0x5, 0x1ff, 0x10001, 0x8, 0xffff, 0x81, 0x3, 0x7fff, 0x4, 0x42cf, 0x7, 0x3, 0xc95, 0x920b, 0x965, 0x265, 0x21a3, 0x40, 0x5, 0x8001, 0xfa9, 0x8, 0x8, 0x0, 0x1, 0x5, 0x3, 0x6, 0x22b, 0x7, 0x8, 0x200, 0x8000, 0x8, 0x71, 0xe7c, 0x1f, 0x10000, 0x3, 0x6, 0x7, 0x0, 0x0, 0x1ff, 0xff, 0x1, 0x6, 0x0, 0xfffffff8, 0x3, 0x0, 0x3, 0x3, 0x8d, 0x5aa, 0xc1f, 0x1, 0x8, 0x3, 0x6, 0x0, 0x9, 0x3e1, 0x6, 0x3, 0x2, 0xfffffffb, 0x5, 0xfffffff9, 0x4, 0xff, 0x2, 0x9, 0x3, 0x26, 0x0, 0x5, 0x1, 0x8, 0x401, 0x4, 0x8000, 0x1, 0x5, 0x7, 0xd0f1, 0x4, 0x6, 0x2, 0xe0, 0x40, 0x2, 0x4, 0x10001, 0x9679, 0x10000, 0xff, 0x3b2a40, 0x10001, 0x3, 0x4, 0xfffffffd, 0x5, 0x8, 0xff, 0x400, 0x8468, 0x40, 0x73, 0x7fff, 0x9, 0x1, 0x200, 0x4, 0x3, 0x401, 0x3f, 0x2c1, 0x3, 0x2, 0x1, 0xfffffffc, 0xeb9, 0x1, 0x7, 0x2, 0xc742, 0xfffff001, 0x3, 0x0, 0x0, 0x6, 0x100, 0x1, 0x124, 0x9, 0xfffffffe, 0x3, 0x2, 0x96, 0x0, 0x1, 0x5, 0x7f, 0x0, 0x8000, 0x4, 0x4, 0x6, 0x1, 0x3ff, 0x9, 0x2, 0x9, 0x9, 0xb6e, 0x10001, 0x3ff, 0x9, 0xfffffff9, 0x0, 0x5, 0x8, 0x6, 0x1, 0x8, 0x2, 0x1, 0x9, 0x2, 0x6f35, 0x1, 0x3, 0x6, 0x0, 0x9, 0x0, 0x4, 0x401, 0x200, 0x1ff, 0x10000, 0x8000, 0x8, 0x8001, 0x9, 0x1, 0x0, 0x101, 0x7, 0x2, 0x3, 0x2, 0x4, 0x1ff, 0x1f, 0x1, 0x2c25, 0x9, 0x8, 0x2, 0x0, 0x9, 0x3, 0x6, 0x7f, 0x3, 0x800, 0x2, 0x3, 0x8, 0xfffffc01, 0x9, 0xe4d5, 0x40, 0x7, 0xfffffffe, 0x0, 0x8, 0x8278, 0x9, 0x0, 0x7, 0x5, 0x0, 0x8, 0x8, 0x401, 0x7, 0x1800, 0x0, 0x2, 0x5db, 0x4, 0x0, 0x2, 0x3f, 0x3, 0x0, 0x80000000, 0x3, 0x7, 0x7, 0x7ff, 0x1, 0x5, 0x89c, 0x20000000, 0x2, 0x3ff, 0x3, 0x1, 0x80000001, 0x8, 0x200, 0x2, 0xffffffff, 0xfffffff8, 0xb91, 0x3, 0x4, 0x0, 0x6, 0x2, 0x5, 0x6, 0x4, 0x58d, 0x3, 0xffff, 0xfffffff9, 0x6, 0x401, 0x5, 0x0, 0x101, 0x80, 0x3, 0x6, 0x7f, 0x80000001, 0x6, 0x7, 0x6, 0x8000, 0x0, 0x0, 0x800, 0x39d6, 0x1, 0x0, 0x3, 0x9, 0x8000, 0x4, 0x1329, 0x76, 0x8, 0x1, 0x2, 0x0, 0x0, 0x7fffffff, 0x0, 0x6, 0x7fffffff, 0x6, 0x12, 0x885, 0x7, 0x4, 0x10000, 0x80000001, 0x8001, 0x7ff, 0x1ff, 0x2, 0x1ff, 0x0, 0xad, 0x6, 0x2, 0x8, 0x9, 0x6, 0x3, 0x8, 0xd50, 0xf8a, 0x1, 0xffffffff, 0x5, 0xce, 0xf530, 0x20, 0x8c, 0x277, 0x2, 0x6, 0xc, 0x5, 0x8, 0x0, 0x7ff, 0x1, 0x0, 0x4, 0x0, 0x6, 0x6, 0x8, 0xfffffe01, 0x5, 0x4, 0x5, 0x8, 0x1ff, 0x3, 0x4, 0x5, 0x4, 0x4, 0x8001, 0xffff1af7, 0x6, 0x2, 0x3, 0x4, 0x80, 0x7, 0x1, 0x7bb1, 0x7fffffff, 0x1ff, 0x4, 0x0, 0xffff8000, 0x8000, 0x9, 0xfff, 0x1, 0x6, 0x0, 0x9, 0x8, 0xffffffff, 0x5, 0x4, 0x5, 0x5, 0x2, 0xa7c, 0x80000000, 0x4, 0x4, 0x0, 0x7, 0x2, 0x4, 0xfffffff3, 0x82, 0x9, 0x81, 0x8000, 0x8, 0x7f, 0x0, 0x0, 0x2aca, 0x0, 0xfffffffe, 0x1, 0x6, 0x0, 0xffffff00, 0x6, 0x8000, 0x100, 0xf5, 0x700000, 0x4, 0x80000000, 0x7, 0x8a, 0x7f, 0x1924bd8f, 0x7, 0x9, 0x1, 0x1, 0x5, 0x100, 0x77dc, 0x9, 0x23f, 0x9e8, 0x9, 0x101, 0x2741, 0x20, 0x5b1c, 0x1, 0x4, 0x1, 0x9, 0x4, 0x3ff, 0xcf8], 0x1, 0x400, 0x7}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

[  820.873689] FAULT_INJECTION: forcing a failure.
[  820.873689] name failslab, interval 1, probability 0, space 0, times 0
[  820.901478] FAULT_INJECTION: forcing a failure.
[  820.901478] name failslab, interval 1, probability 0, space 0, times 0
[  820.907312] CPU: 1 PID: 21537 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  820.920568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  820.929916] Call Trace:
[  820.932499]  dump_stack+0x1b2/0x281
[  820.936128]  should_fail.cold+0x10a/0x149
[  820.940260]  should_failslab+0xd6/0x130
[  820.944217]  kmem_cache_alloc+0x28e/0x3c0
[  820.948364]  __kernfs_new_node+0x6f/0x470
[  820.952503]  kernfs_new_node+0x7b/0xe0
[  820.956377]  __kernfs_create_file+0x3d/0x320
[  820.960772]  sysfs_add_file_mode_ns+0x1e1/0x450
[  820.965424]  ? kernfs_create_dir_ns+0x171/0x200
[  820.970078]  internal_create_group+0x22b/0x710
[  820.974648]  lo_ioctl+0x1137/0x1cd0
[  820.978262]  ? loop_set_status64+0xe0/0xe0
[  820.982505]  blkdev_ioctl+0x540/0x1830
[  820.986381]  ? blkpg_ioctl+0x8d0/0x8d0
[  820.990270]  ? trace_hardirqs_on+0x10/0x10
[  820.994493]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  820.999599]  ? debug_check_no_obj_freed+0x2c0/0x680
[  821.004605]  block_ioctl+0xd9/0x120
[  821.008214]  ? blkdev_fallocate+0x3a0/0x3a0
[  821.012517]  do_vfs_ioctl+0x75a/0xff0
[  821.016302]  ? lock_acquire+0x170/0x3f0
[  821.020263]  ? ioctl_preallocate+0x1a0/0x1a0
[  821.024663]  ? __fget+0x265/0x3e0
[  821.028106]  ? do_vfs_ioctl+0xff0/0xff0
[  821.032077]  ? security_file_ioctl+0x83/0xb0
[  821.036476]  SyS_ioctl+0x7f/0xb0
[  821.039833]  ? do_vfs_ioctl+0xff0/0xff0
[  821.043825]  do_syscall_64+0x1d5/0x640
[  821.047703]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  821.052890] RIP: 0033:0x7f6b8cbe3ec7
[  821.056584] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  821.064282] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  821.071550] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  821.078804] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  821.086058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  821.093313] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  821.100625] CPU: 0 PID: 21540 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  821.108519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  821.117962] Call Trace:
[  821.120556]  dump_stack+0x1b2/0x281
20:49:33 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:33 executing program 0:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
sendto$l2tp(r0, &(0x7f0000000040)="03686fcba273205a66f176eb83469380bc388cfbdf3738873894a18b6c33efa52125f5079a826441a177201e7053016474e81963d46c64b278547828d406df39538d54f2bf0084a0bb67efd8773bcd20643e9056d5a86aba44b27de65ef8cba190e46abedbf34236158963fa88bccb814a62b2a7474661be865078d6e04e54549f46378daad0a2ad1dce9a558603ccd7ccf21958f6e7710e6dc32ec76c2dec0319d55016d8", 0xa5, 0x44, &(0x7f0000000140)={0x2, 0x0, @multicast1, 0x3}, 0xffffffffffffff60) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

[  821.124197]  should_fail.cold+0x10a/0x149
[  821.128445]  should_failslab+0xd6/0x130
[  821.132430]  kmem_cache_alloc_node+0x263/0x410
[  821.137029]  __alloc_skb+0x5c/0x510
[  821.140698]  kobject_uevent_env+0x882/0xf30
[  821.145051]  lo_ioctl+0x11a6/0x1cd0
[  821.148690]  ? loop_set_status64+0xe0/0xe0
[  821.152930]  blkdev_ioctl+0x540/0x1830
[  821.156855]  ? blkpg_ioctl+0x8d0/0x8d0
[  821.160753]  ? trace_hardirqs_on+0x10/0x10
[  821.165002]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  821.170127]  ? debug_check_no_obj_freed+0x2c0/0x680
20:49:33 executing program 0:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
sendto$l2tp(r0, &(0x7f0000000040)="03686fcba273205a66f176eb83469380bc388cfbdf3738873894a18b6c33efa52125f5079a826441a177201e7053016474e81963d46c64b278547828d406df39538d54f2bf0084a0bb67efd8773bcd20643e9056d5a86aba44b27de65ef8cba190e46abedbf34236158963fa88bccb814a62b2a7474661be865078d6e04e54549f46378daad0a2ad1dce9a558603ccd7ccf21958f6e7710e6dc32ec76c2dec0319d55016d8", 0xa5, 0x44, &(0x7f0000000140)={0x2, 0x0, @multicast1, 0x3}, 0xffffffffffffff60) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:33 executing program 3:
socketpair(0x10, 0x2, 0x9, 0x0)
socketpair(0x11, 0x0, 0x7, &(0x7f0000000000))

20:49:33 executing program 3:
socketpair(0x10, 0x2, 0x9, 0x0) (async)
socketpair(0x11, 0x0, 0x7, &(0x7f0000000000))

[  821.175156]  block_ioctl+0xd9/0x120
[  821.178794]  ? blkdev_fallocate+0x3a0/0x3a0
[  821.183128]  do_vfs_ioctl+0x75a/0xff0
[  821.186941]  ? lock_acquire+0x170/0x3f0
[  821.190927]  ? ioctl_preallocate+0x1a0/0x1a0
[  821.195344]  ? __fget+0x265/0x3e0
[  821.198803]  ? do_vfs_ioctl+0xff0/0xff0
[  821.202782]  ? security_file_ioctl+0x83/0xb0
[  821.207207]  SyS_ioctl+0x7f/0xb0
[  821.210580]  ? do_vfs_ioctl+0xff0/0xff0
[  821.214654]  do_syscall_64+0x1d5/0x640
[  821.218555]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
20:49:33 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0xfff)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000140)={{0x8, 0x0, 0x7, 0x2, 'syz1\x00', 0x7}, 0x1, [0xe3, 0x0, 0x3f, 0x4, 0xff, 0x0, 0x1a4, 0xfffffffffffffffa, 0x2, 0x400, 0x1, 0x5, 0x2, 0x2, 0x5, 0x3, 0x7f, 0x1, 0x1dc11ed, 0xffffffff, 0x6, 0x5, 0x7, 0x7, 0xbfeb, 0xcbd, 0xffffffffffffffff, 0x3, 0x4, 0x85ee, 0x6, 0x757e6c9d, 0x7c000000, 0x800, 0x5, 0x2, 0x7fffffffffffffff, 0xbfb, 0x3, 0x5, 0x3c94, 0x7fffffffffffffff, 0x6, 0x1, 0x1f, 0xb8a, 0x6, 0xffff, 0x0, 0x7, 0xffff, 0x9, 0x9, 0x6, 0x1ff, 0x100000000, 0x16, 0x80000000, 0x3, 0x2, 0x0, 0x7f, 0x48644108, 0xcd, 0x0, 0x8000, 0x3, 0x101, 0x3, 0x446, 0x7, 0xfffffffffffffffb, 0x0, 0x2, 0x5856, 0x100000001, 0x0, 0x18b, 0x7ed, 0x2, 0xb014, 0x5, 0x7, 0x6, 0x9, 0xff, 0x2, 0x9, 0x9, 0x100000001, 0x4, 0x200, 0x4, 0x55e8, 0x8000000000000000, 0x5, 0x3, 0x4, 0x0, 0x1, 0xf8, 0x1000, 0x2, 0x7f, 0x8000, 0x1, 0x996f, 0x20, 0x8000000000000000, 0x8, 0x2, 0x7, 0x1, 0x2a350066, 0xffffffffffffffff, 0x3, 0x8, 0x1, 0x2, 0x7b1fad01, 0x4, 0x8, 0x8, 0x1, 0x65d, 0xd76, 0x9f22, 0x8]})
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000100)=0x8000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000d00)={0x18, 0x0, {0x3, @local, 'batadv_slave_1\x00'}})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000800)={{0x4, 0x5, 0x5, 0x9, 'syz0\x00', 0x9}, 0x0, [0x2, 0xdc, 0xcab1, 0x84, 0x2d000000000000, 0x401, 0x6, 0xffe, 0x80, 0x7, 0x0, 0x4, 0x5, 0x800, 0x2000000000000, 0x1, 0x7d, 0x66ab, 0x3, 0x5, 0x7, 0x8000000000000001, 0x8, 0xd3d, 0x0, 0x569, 0x3, 0x0, 0x9, 0x7fffffff, 0x4, 0x1000, 0xffffffff, 0x0, 0x39, 0x0, 0xdbf1, 0x9, 0x0, 0x6, 0xa3, 0x1, 0x219b1ef3, 0xea, 0x3, 0x6, 0x8001, 0x7, 0xffff, 0x3df733, 0x3, 0x2, 0x7, 0x6, 0x8, 0x0, 0x6, 0x9, 0x10000, 0x9, 0xc2, 0x1, 0x32c4, 0x1, 0xffff, 0x3ff, 0x7ca4, 0x8, 0x4, 0x3, 0x400, 0x46, 0xff, 0x8, 0xa3, 0xffffffff, 0x2, 0x9, 0xfff, 0x100000001, 0x0, 0x3ff, 0xab00000000000000, 0x20, 0x0, 0x200, 0x7aba, 0x6ba1, 0x3, 0x80, 0x7fff, 0x6, 0x3, 0x9, 0x10000, 0xe8ff, 0x0, 0x3, 0x80, 0xed, 0x2, 0xffffffffffffff45, 0x81, 0x9, 0x8, 0x40000000000, 0x401, 0x10000, 0x0, 0x5, 0xffffffff, 0x0, 0x24be, 0x6, 0x1, 0xfffffffffffffffc, 0x200, 0x2, 0x4, 0x9b1a, 0x0, 0x101, 0x89f1, 0x0, 0x3, 0x8, 0x4, 0x7]})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={<r2=>0x0, @empty, @multicast1}, &(0x7f00000000c0)=0xc)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)={0xd8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3c}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}]}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8001}, 0x1)

[  821.223748] RIP: 0033:0x7fcd83ff2ec7
[  821.227458] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  821.235177] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  821.242448] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  821.249722] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  821.256999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  821.264285] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:33 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 19)

20:49:33 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:33 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0xfff)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000140)={{0x8, 0x0, 0x7, 0x2, 'syz1\x00', 0x7}, 0x1, [0xe3, 0x0, 0x3f, 0x4, 0xff, 0x0, 0x1a4, 0xfffffffffffffffa, 0x2, 0x400, 0x1, 0x5, 0x2, 0x2, 0x5, 0x3, 0x7f, 0x1, 0x1dc11ed, 0xffffffff, 0x6, 0x5, 0x7, 0x7, 0xbfeb, 0xcbd, 0xffffffffffffffff, 0x3, 0x4, 0x85ee, 0x6, 0x757e6c9d, 0x7c000000, 0x800, 0x5, 0x2, 0x7fffffffffffffff, 0xbfb, 0x3, 0x5, 0x3c94, 0x7fffffffffffffff, 0x6, 0x1, 0x1f, 0xb8a, 0x6, 0xffff, 0x0, 0x7, 0xffff, 0x9, 0x9, 0x6, 0x1ff, 0x100000000, 0x16, 0x80000000, 0x3, 0x2, 0x0, 0x7f, 0x48644108, 0xcd, 0x0, 0x8000, 0x3, 0x101, 0x3, 0x446, 0x7, 0xfffffffffffffffb, 0x0, 0x2, 0x5856, 0x100000001, 0x0, 0x18b, 0x7ed, 0x2, 0xb014, 0x5, 0x7, 0x6, 0x9, 0xff, 0x2, 0x9, 0x9, 0x100000001, 0x4, 0x200, 0x4, 0x55e8, 0x8000000000000000, 0x5, 0x3, 0x4, 0x0, 0x1, 0xf8, 0x1000, 0x2, 0x7f, 0x8000, 0x1, 0x996f, 0x20, 0x8000000000000000, 0x8, 0x2, 0x7, 0x1, 0x2a350066, 0xffffffffffffffff, 0x3, 0x8, 0x1, 0x2, 0x7b1fad01, 0x4, 0x8, 0x8, 0x1, 0x65d, 0xd76, 0x9f22, 0x8]})
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000100)=0x8000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000d00)={0x18, 0x0, {0x3, @local, 'batadv_slave_1\x00'}})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000800)={{0x4, 0x5, 0x5, 0x9, 'syz0\x00', 0x9}, 0x0, [0x2, 0xdc, 0xcab1, 0x84, 0x2d000000000000, 0x401, 0x6, 0xffe, 0x80, 0x7, 0x0, 0x4, 0x5, 0x800, 0x2000000000000, 0x1, 0x7d, 0x66ab, 0x3, 0x5, 0x7, 0x8000000000000001, 0x8, 0xd3d, 0x0, 0x569, 0x3, 0x0, 0x9, 0x7fffffff, 0x4, 0x1000, 0xffffffff, 0x0, 0x39, 0x0, 0xdbf1, 0x9, 0x0, 0x6, 0xa3, 0x1, 0x219b1ef3, 0xea, 0x3, 0x6, 0x8001, 0x7, 0xffff, 0x3df733, 0x3, 0x2, 0x7, 0x6, 0x8, 0x0, 0x6, 0x9, 0x10000, 0x9, 0xc2, 0x1, 0x32c4, 0x1, 0xffff, 0x3ff, 0x7ca4, 0x8, 0x4, 0x3, 0x400, 0x46, 0xff, 0x8, 0xa3, 0xffffffff, 0x2, 0x9, 0xfff, 0x100000001, 0x0, 0x3ff, 0xab00000000000000, 0x20, 0x0, 0x200, 0x7aba, 0x6ba1, 0x3, 0x80, 0x7fff, 0x6, 0x3, 0x9, 0x10000, 0xe8ff, 0x0, 0x3, 0x80, 0xed, 0x2, 0xffffffffffffff45, 0x81, 0x9, 0x8, 0x40000000000, 0x401, 0x10000, 0x0, 0x5, 0xffffffff, 0x0, 0x24be, 0x6, 0x1, 0xfffffffffffffffc, 0x200, 0x2, 0x4, 0x9b1a, 0x0, 0x101, 0x89f1, 0x0, 0x3, 0x8, 0x4, 0x7]})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={<r2=>0x0, @empty, @multicast1}, &(0x7f00000000c0)=0xc)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)={0xd8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3c}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}]}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8001}, 0x1)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0xfff) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000140)={{0x8, 0x0, 0x7, 0x2, 'syz1\x00', 0x7}, 0x1, [0xe3, 0x0, 0x3f, 0x4, 0xff, 0x0, 0x1a4, 0xfffffffffffffffa, 0x2, 0x400, 0x1, 0x5, 0x2, 0x2, 0x5, 0x3, 0x7f, 0x1, 0x1dc11ed, 0xffffffff, 0x6, 0x5, 0x7, 0x7, 0xbfeb, 0xcbd, 0xffffffffffffffff, 0x3, 0x4, 0x85ee, 0x6, 0x757e6c9d, 0x7c000000, 0x800, 0x5, 0x2, 0x7fffffffffffffff, 0xbfb, 0x3, 0x5, 0x3c94, 0x7fffffffffffffff, 0x6, 0x1, 0x1f, 0xb8a, 0x6, 0xffff, 0x0, 0x7, 0xffff, 0x9, 0x9, 0x6, 0x1ff, 0x100000000, 0x16, 0x80000000, 0x3, 0x2, 0x0, 0x7f, 0x48644108, 0xcd, 0x0, 0x8000, 0x3, 0x101, 0x3, 0x446, 0x7, 0xfffffffffffffffb, 0x0, 0x2, 0x5856, 0x100000001, 0x0, 0x18b, 0x7ed, 0x2, 0xb014, 0x5, 0x7, 0x6, 0x9, 0xff, 0x2, 0x9, 0x9, 0x100000001, 0x4, 0x200, 0x4, 0x55e8, 0x8000000000000000, 0x5, 0x3, 0x4, 0x0, 0x1, 0xf8, 0x1000, 0x2, 0x7f, 0x8000, 0x1, 0x996f, 0x20, 0x8000000000000000, 0x8, 0x2, 0x7, 0x1, 0x2a350066, 0xffffffffffffffff, 0x3, 0x8, 0x1, 0x2, 0x7b1fad01, 0x4, 0x8, 0x8, 0x1, 0x65d, 0xd76, 0x9f22, 0x8]}) (async)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000100)=0x8000) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000d00)={0x18, 0x0, {0x3, @local, 'batadv_slave_1\x00'}}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000800)={{0x4, 0x5, 0x5, 0x9, 'syz0\x00', 0x9}, 0x0, [0x2, 0xdc, 0xcab1, 0x84, 0x2d000000000000, 0x401, 0x6, 0xffe, 0x80, 0x7, 0x0, 0x4, 0x5, 0x800, 0x2000000000000, 0x1, 0x7d, 0x66ab, 0x3, 0x5, 0x7, 0x8000000000000001, 0x8, 0xd3d, 0x0, 0x569, 0x3, 0x0, 0x9, 0x7fffffff, 0x4, 0x1000, 0xffffffff, 0x0, 0x39, 0x0, 0xdbf1, 0x9, 0x0, 0x6, 0xa3, 0x1, 0x219b1ef3, 0xea, 0x3, 0x6, 0x8001, 0x7, 0xffff, 0x3df733, 0x3, 0x2, 0x7, 0x6, 0x8, 0x0, 0x6, 0x9, 0x10000, 0x9, 0xc2, 0x1, 0x32c4, 0x1, 0xffff, 0x3ff, 0x7ca4, 0x8, 0x4, 0x3, 0x400, 0x46, 0xff, 0x8, 0xa3, 0xffffffff, 0x2, 0x9, 0xfff, 0x100000001, 0x0, 0x3ff, 0xab00000000000000, 0x20, 0x0, 0x200, 0x7aba, 0x6ba1, 0x3, 0x80, 0x7fff, 0x6, 0x3, 0x9, 0x10000, 0xe8ff, 0x0, 0x3, 0x80, 0xed, 0x2, 0xffffffffffffff45, 0x81, 0x9, 0x8, 0x40000000000, 0x401, 0x10000, 0x0, 0x5, 0xffffffff, 0x0, 0x24be, 0x6, 0x1, 0xfffffffffffffffc, 0x200, 0x2, 0x4, 0x9b1a, 0x0, 0x101, 0x89f1, 0x0, 0x3, 0x8, 0x4, 0x7]}) (async)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={0x0, @empty, @multicast1}, &(0x7f00000000c0)=0xc) (async)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)={0xd8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3c}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}]}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8001}, 0x1) (async)

20:49:33 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 23)

20:49:33 executing program 1:
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(0xffffffffffffffff, 0x7b1, &(0x7f0000001000)={&(0x7f0000000000)=[0xd180, 0x0, 0x1, 0x9, 0x6, 0x0, 0xff, 0x9, 0x6, 0x200, 0x83, 0xb6, 0x6, 0x0, 0x40, 0x6, 0x1, 0x401, 0xfffffffb, 0x6, 0x6, 0x0, 0xfffffffd, 0x8, 0x4, 0x0, 0x4, 0x2, 0x100, 0xab8, 0xd9, 0x80000001, 0xfffffe01, 0x0, 0x2, 0x6, 0x2, 0x5, 0xfffffffa, 0x124f, 0x2, 0xfffffffd, 0x40, 0x7, 0x9, 0x400, 0x4, 0x6, 0x38a, 0x3, 0x40, 0x7fffffff, 0x8000, 0x1, 0x1, 0x4, 0x100, 0x2, 0x372c, 0x80000000, 0x7, 0x10000, 0x1, 0x2, 0x4, 0x2, 0x0, 0x5, 0x4, 0x1, 0xd2, 0x8, 0x80000001, 0x80000001, 0x200, 0x200, 0xbab2, 0xfffffff7, 0x4, 0x10000, 0x1ff, 0x101, 0xff, 0x3, 0x0, 0x7e2f, 0x80000000, 0x8, 0x9, 0xfffff696, 0x7f, 0x1, 0x101, 0x3ff, 0x80000001, 0x2, 0x2, 0x584, 0x61, 0x7fffffff, 0xbd60, 0x9, 0xfffffffc, 0x6, 0x7fffffff, 0x0, 0x3ff, 0x20, 0x0, 0x1, 0x87, 0x2, 0x80, 0x400, 0xb6, 0x881, 0x8, 0x7, 0x401, 0x3, 0x7f, 0x2, 0x1ff, 0x33b0000, 0x7, 0x4, 0xc11b, 0x9, 0x7, 0x6, 0x1, 0x20, 0x7, 0x8, 0x444000, 0x3, 0xce, 0x21, 0x100, 0x6, 0x6, 0x2, 0x9, 0x3ff, 0x34d9, 0x7, 0x0, 0x3e3, 0x200, 0x20, 0x3, 0x1000, 0x6, 0x8, 0xd55, 0x7, 0x0, 0x8, 0x0, 0x401, 0x1fe3, 0x10001, 0xcc0, 0x4, 0x3, 0x5, 0xffffff7f, 0x100, 0x168, 0x9, 0x3, 0x401, 0x0, 0x3f, 0x3, 0x1, 0x5, 0x7fff, 0xfc, 0x1b3d, 0x800, 0xba06, 0x20, 0x2, 0x1, 0x6, 0x3, 0x40, 0x9, 0xfff, 0xffffffe1, 0x3, 0x5, 0x6, 0x7, 0x199, 0x1, 0x20, 0x2, 0x0, 0x8001, 0x0, 0xce8, 0x81, 0x8000, 0x5, 0x1000, 0x100, 0x8, 0x73f, 0xc1, 0x101, 0x3684, 0x3ff, 0x9, 0x80000000, 0x5b, 0x28, 0x8000, 0x4, 0x401, 0xff, 0x8, 0x7, 0x3, 0x7, 0x2, 0x5, 0x5, 0x8000, 0x5, 0x1, 0x0, 0x5d4, 0x400, 0x3, 0xfffff1be, 0x6, 0x7, 0x1, 0xfff, 0x5, 0x6, 0x6, 0x5, 0x0, 0x3, 0x8, 0x32335d16, 0xfffffff7, 0x800, 0xfff, 0x7, 0x5, 0x100, 0x20, 0x4, 0x8, 0x0, 0x4, 0x5, 0x401, 0x8, 0x3c38, 0x49c, 0x1000, 0x7f, 0x1, 0x2, 0x1, 0x2, 0x40, 0x7f, 0x0, 0x7fffffff, 0x9, 0x7, 0x5, 0x9, 0xefb, 0x6, 0x4f00, 0x816, 0x4, 0x4, 0x2, 0xffffffff, 0x4, 0x6, 0xffffffff, 0x1000, 0xffffffff, 0x4, 0xccb3, 0x401, 0x7, 0x5, 0x8, 0x7, 0x80000001, 0x9, 0x7f, 0x6ed3af58, 0xa000, 0xfff, 0x3, 0x5, 0x7, 0x3, 0x7, 0x7, 0x6, 0x6, 0xfff, 0x800, 0x889, 0x1, 0xc370, 0x4, 0x629, 0x2, 0x4, 0x31, 0x3f9f, 0x7fffffff, 0x8, 0x5, 0x80000001, 0x7, 0xe4, 0x401, 0xffffffff, 0x8, 0x3, 0x200, 0x0, 0x11, 0x9d, 0x99be, 0x8, 0x8, 0x80, 0x9, 0x401, 0x0, 0x401, 0x8, 0x3ff, 0xfffff95b, 0x20, 0x9, 0x6, 0x1, 0x6, 0xfffffffd, 0x4, 0x3, 0x0, 0x4, 0x10000, 0x4, 0x2, 0x9, 0x5, 0xffffff80, 0x0, 0x3, 0x9764, 0x4, 0x8, 0x81, 0x0, 0x200, 0x9, 0x5, 0x8, 0x8001, 0xb6c, 0x3, 0xebd, 0x1, 0x9, 0x81, 0xffffffff, 0x4, 0xfff, 0x1ff, 0x7, 0x6, 0x7, 0x8, 0x1000, 0x2, 0x7, 0x9, 0x6, 0xfffffffd, 0x4, 0x0, 0x9, 0x3ff, 0x400, 0xffffffff, 0x2, 0x80000000, 0x3, 0x8, 0x401, 0x4, 0x78f, 0x7, 0x1, 0x40, 0x8aeb, 0x7, 0x7fffffff, 0x6, 0x6, 0x4, 0x0, 0x8, 0x0, 0x9, 0x7, 0x7fff, 0xfffffffc, 0x10000, 0x10000, 0xab, 0x800, 0x627, 0x5, 0x4c, 0x6, 0x5, 0x401, 0x8dc, 0x1ff, 0x10001, 0x80000000, 0x2292, 0x5, 0x3, 0x1ff, 0x0, 0x6, 0xffff8001, 0x0, 0xaa5, 0xffff, 0x5, 0x2, 0x7ff, 0xff, 0x80000001, 0x0, 0x2, 0x400, 0x0, 0x0, 0xa280, 0x85fd, 0xa85d, 0x5, 0x1000, 0x6, 0x8, 0x9, 0x7, 0x80000000, 0x1, 0x51f, 0x80000000, 0x0, 0x40, 0xf7, 0x401, 0x8, 0xe1d, 0x6f, 0x1a6, 0x10001, 0x4, 0x0, 0xff, 0x400, 0x7, 0x4, 0x80000001, 0x6, 0x5, 0x0, 0x1, 0x1, 0x3, 0xffffffff, 0x8000, 0x80000000, 0x570f, 0x9, 0x0, 0x2000, 0xfff, 0x7, 0xfffffffb, 0x1a9, 0x80000001, 0x6, 0x3, 0x107, 0x2d2, 0xfa, 0x0, 0x2, 0x0, 0xbde3, 0x780, 0x41c0, 0x3f, 0x40, 0x81, 0x8, 0x3, 0x0, 0x8, 0x1, 0x20, 0x2, 0x6, 0x3, 0x8, 0x0, 0x1, 0x8, 0x4, 0x80000000, 0x80000000, 0x3, 0x80000000, 0xffff8001, 0x1f, 0x3, 0x5, 0x3, 0x5, 0x5, 0xff, 0x902b, 0x401, 0x7fffffff, 0xfffffffd, 0x3f, 0x0, 0x81, 0x3, 0x9, 0x2, 0x7fff, 0x3, 0x40, 0xfffffff8, 0x7fff, 0x3, 0x1000, 0x28911fef, 0x1, 0x4, 0x7, 0x10001, 0x8, 0x0, 0x7, 0x9, 0x48, 0xfffffffd, 0x0, 0x8, 0x3, 0x5, 0x2, 0x1f, 0x1, 0x0, 0x6a88, 0x3, 0x6, 0x979, 0x1f, 0xaba, 0x9, 0x9, 0x3, 0x9, 0x7, 0x4f, 0x5, 0x3, 0x80000001, 0xfff, 0x6, 0x2, 0xfffffffa, 0x7fffffff, 0x200, 0x0, 0x8, 0x3, 0x3, 0x800, 0x7, 0x14e8b9b7, 0x7, 0x1, 0xfb, 0x6, 0x1, 0x1, 0x7, 0xffffff48, 0x80000001, 0x10001, 0xffffff1a, 0x80, 0x6129f55f, 0x10001, 0x1, 0x6, 0x7ff, 0x10000, 0xfd05, 0x1ff, 0xfffffff6, 0x4, 0x100, 0x8, 0x800, 0xffff923b, 0x5, 0x3, 0x791, 0x9, 0x80000000, 0x200, 0x5, 0x7ab, 0xff, 0x9, 0x8, 0x1f, 0x75b, 0x2, 0x1, 0x3, 0x7, 0x9, 0x401, 0x7fffffff, 0x5, 0xffff, 0x9, 0xfff, 0x2, 0x81, 0x10001, 0x7, 0x7, 0x0, 0x2, 0xc812, 0x9, 0x1ff, 0xe1f8, 0xffffffff, 0x9, 0x80000000, 0xffffffa9, 0x9, 0x0, 0x8, 0xef5, 0x4, 0x2, 0x6, 0x3, 0x1000, 0x8000, 0x5d2, 0x5, 0x7, 0x0, 0x9425, 0x1, 0x3, 0x9, 0x101, 0xc15, 0x0, 0x7fffffff, 0xb1, 0x401, 0x4, 0x5, 0x0, 0x9, 0x7, 0x6, 0x5, 0xb2a, 0x1000, 0x643e, 0x4, 0x76, 0x4, 0x7f, 0x3, 0x9, 0x9, 0x2, 0x2, 0x71, 0xffff716e, 0xfff, 0x1, 0x1, 0x6, 0x2, 0x1, 0x9, 0xec0f, 0x0, 0x3, 0x40000000, 0x3, 0x0, 0x7ad8, 0x3, 0x99a, 0x0, 0xda64, 0x80000001, 0xff, 0x1, 0x80000000, 0x8, 0x6, 0x48, 0x80, 0x0, 0xfffff45e, 0x7, 0x7, 0x7ff, 0x9, 0x8, 0x3, 0x9, 0x8, 0x8, 0xfff, 0x33, 0x1, 0x9, 0x401, 0xff, 0x6, 0x0, 0x20, 0x0, 0x9, 0x8001, 0x2, 0x2, 0x1, 0x10000, 0x6a6, 0x6, 0x3, 0x20, 0x5, 0x2, 0x7ff, 0x2, 0x6, 0x5, 0x6, 0x0, 0x0, 0x1, 0x0, 0x9, 0x5, 0x80, 0x1, 0x8000, 0xfc, 0x100, 0xc7, 0x10000, 0x2, 0x10000, 0x40, 0x81, 0xffff, 0x93, 0x7, 0x1000, 0x4, 0x4, 0x8, 0x1, 0x3, 0x10001, 0x7, 0xfe58, 0x0, 0x2, 0x8001, 0x8, 0x1, 0x80, 0xfffffff8, 0xedf, 0x5, 0x7, 0x9, 0x4, 0x101, 0x3ff, 0x1000, 0xd77c, 0xfff, 0x7, 0xff, 0x8, 0x101, 0x4a, 0x3, 0x1, 0x8, 0x4, 0x4e, 0x1, 0x400, 0xffffff01, 0x8, 0x3, 0x2, 0x2, 0x9d42, 0x10001, 0x257c7eee, 0xfff, 0x9c1a, 0x1, 0x4, 0x800, 0x0, 0x200, 0xf70, 0x2, 0x7, 0x1, 0x3f, 0x0, 0x715a, 0x8, 0x3, 0x0, 0x2, 0x9, 0x7d, 0x40, 0x10001, 0x9, 0x8, 0xfffffffa, 0x4, 0x3, 0x7, 0x1e9b, 0x2, 0x4a, 0x8001, 0x1ff00000, 0x8, 0x7, 0x401, 0x4, 0x1, 0xfffffffa, 0x22f2961c, 0x3, 0x9, 0x200, 0x8, 0x6a, 0x5, 0x4, 0x3f, 0xff, 0x8000, 0x3f, 0x1, 0x1, 0x1, 0x8000, 0x8000, 0x5, 0xff, 0x40, 0x319f, 0x0, 0x0, 0x9, 0x0, 0x7, 0x1, 0xa0f, 0xac, 0x4, 0x7ff, 0xce, 0x0, 0x9, 0x4, 0x1, 0x0, 0xfc, 0x9, 0xffff0fea, 0x7, 0x0, 0x9, 0x6, 0x40, 0xbc, 0x1, 0x10000, 0xfffff801, 0x5, 0x9, 0x0, 0xffff0001, 0x6736, 0xfffffeff, 0x3, 0x5, 0x20, 0x3, 0x9, 0x50000000, 0x0, 0x80000001, 0x5, 0x3, 0x80000000, 0x3, 0x6, 0xffff, 0x7, 0x3, 0x119, 0x1, 0x7fff, 0x8, 0x1ff, 0x5, 0x74cd, 0xff, 0x3, 0x7, 0x8001, 0xe50e, 0xe9, 0x4, 0x5, 0xeb42, 0x4, 0x3, 0xfffff9cb, 0x1, 0x618a, 0x1ff, 0x1, 0x7, 0x9, 0x3, 0x9, 0x1, 0x9, 0x4, 0x0, 0x9, 0x8, 0x6, 0x7, 0x3fc00, 0x0, 0x0, 0x2, 0x1, 0xfffffff9, 0x31, 0x9, 0x7fffffff, 0x3, 0x4, 0xfffffff9, 0x9, 0x8, 0x1ff, 0x800, 0x8, 0x2, 0x5, 0x10000, 0x3, 0x7fffffff, 0x3, 0x26e1, 0xf20, 0x2, 0xffff, 0x9], 0x3, 0x400, 0xffff}) (async)
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000002040)={&(0x7f0000001040)=[0x401, 0x38, 0x0, 0x3, 0xfffffffa, 0x38ca6c39, 0x1, 0x8, 0x7, 0xab, 0x4, 0x5, 0x52c9, 0xffffff08, 0x730, 0x20000, 0x0, 0x6, 0x2, 0xf720, 0x3, 0x400, 0x1, 0x97dd, 0x7, 0x7, 0x10000, 0x400, 0x4, 0x8001, 0x8, 0xfff, 0x75c4, 0xde, 0x1000, 0x9, 0x20, 0x401, 0x668, 0x6, 0x8, 0x4ac6, 0xb210, 0x4, 0x10001, 0x8, 0xb0c, 0x7, 0x2, 0x1c, 0x941f, 0x2, 0x401, 0x5d9, 0x8, 0x4, 0x2, 0xe7, 0x7ad, 0x80000000, 0x6, 0xff, 0x0, 0x7fffffff, 0x7ff, 0x1, 0x8, 0x2d5d800, 0x9, 0x1, 0x0, 0x4, 0x2, 0x8000, 0xffff0000, 0x7f, 0x700000, 0x0, 0x3, 0x757, 0xfffff9a6, 0x6, 0xac2, 0x81, 0x1000, 0x4, 0x3, 0x3ff, 0x7, 0x2, 0x9c, 0x1, 0x9, 0x3, 0x6, 0x5, 0x10000, 0x800, 0x247, 0xa717, 0xcc88, 0x3, 0x40f, 0x80000000, 0x8, 0x80, 0x2, 0x2, 0xee70, 0x401, 0x5e0d, 0x5, 0x3, 0xfffffffb, 0x8, 0x9, 0x3, 0x9, 0x3ff, 0x0, 0x32, 0x81, 0x100, 0xd3a8, 0x511, 0x6, 0x2, 0x4, 0x7fff, 0x7, 0x800, 0x9, 0x400, 0xff, 0x4, 0x0, 0x3, 0x2, 0x7f, 0x20000000, 0x81, 0x3, 0x2, 0x40, 0x3, 0x1, 0x3, 0x0, 0x1f, 0xff, 0x7c00, 0x0, 0x4, 0x3, 0xfffff001, 0x92, 0x80, 0x7, 0x8fc, 0xffffffff, 0xfff, 0x8, 0x1ff, 0x4, 0x15, 0x3f, 0x6, 0x3, 0x7fff, 0x7, 0x4, 0x5, 0x8b, 0x3, 0x0, 0xb287, 0x80, 0x800, 0x7fff, 0x4, 0x2, 0x0, 0x0, 0x5, 0x6, 0xfffffffc, 0x8001, 0x10000, 0x400, 0x800, 0x20, 0x0, 0x5, 0x65a, 0x101, 0x3, 0x9, 0x6, 0x9, 0xff, 0x3, 0x55, 0x20, 0x7fffffff, 0x1, 0x2, 0x7c6ab1f6, 0x5c5, 0x7fff, 0x4, 0x8, 0x3f, 0x3, 0x0, 0xe20b, 0x7ff, 0x467f, 0x7, 0xffffffff, 0xfffffffa, 0x8, 0x81, 0x5, 0x8, 0x0, 0x8, 0x2, 0x5, 0x5, 0x6, 0x101, 0x4, 0x0, 0x7, 0x81, 0x20, 0x5, 0xe975, 0xfffffffe, 0x20000000, 0x6, 0x5, 0x8, 0xfffffffb, 0x4d85, 0x9f99e4e, 0x80000001, 0xc, 0x6, 0x3, 0xffff, 0x80000000, 0x1, 0x7, 0x7, 0x8, 0x1a3e6958, 0x2000000, 0x9, 0x0, 0xf13, 0x3078, 0x3fff80, 0x401, 0xfff, 0x7fff, 0x4, 0x1, 0x4, 0xfffff000, 0xffffffff, 0x80000001, 0xfff, 0x7fffffff, 0x50d83c5, 0xf64, 0xffffff1f, 0x2, 0x4, 0x63, 0xfffff280, 0x80, 0xfffffffb, 0x68, 0x9, 0x10000, 0x1, 0x6, 0x2, 0x7ff, 0x800, 0x0, 0x200, 0x5, 0xe, 0x9, 0x8, 0x9, 0x4, 0x26, 0x1, 0xfffffffc, 0x7, 0x0, 0x0, 0x4, 0x1, 0x0, 0x3f, 0x7f, 0x8, 0x1, 0x800, 0x9, 0x9, 0x9, 0xff, 0x9, 0x3, 0x80000001, 0x5, 0xdad, 0xffffffa8, 0x6, 0xa702, 0x80e, 0x80000000, 0x913, 0x8, 0xfffffffb, 0x7, 0x4, 0xcfc, 0x4, 0x7, 0x100, 0x87b9, 0x200, 0x3, 0x0, 0x5, 0x400, 0x400, 0x2, 0xbde9, 0x971, 0x401, 0x7ff, 0x14b, 0x1, 0x6, 0x1, 0x0, 0x400, 0x7ff, 0x8, 0x8, 0x80000001, 0x5, 0x10000, 0xdb79, 0x3ff, 0x3, 0x7, 0x2, 0x0, 0xfffffff8, 0x0, 0xfffffffb, 0x7, 0x80000001, 0x104e, 0x3, 0x4, 0x7, 0x3, 0x3, 0x7f, 0x7, 0x4, 0xd91, 0x7, 0x8, 0x1, 0x1e, 0x80, 0x6, 0x5a, 0x7, 0xffff0000, 0x1, 0x7fff, 0x6, 0x8, 0x0, 0x9, 0x9, 0x5, 0x8, 0x5, 0x5, 0x80, 0x3ff, 0x8000, 0x6, 0x200, 0x3ff, 0x6, 0xffffffff, 0x7d, 0x18, 0x3f, 0x8000, 0x5a, 0x6, 0x457, 0x2, 0x5, 0x8, 0x4, 0x5, 0x80, 0x6e, 0x1, 0x1, 0x3f, 0x6fc3, 0x3, 0x40, 0x4, 0x4, 0x1, 0xfffffffc, 0x7, 0x1ff, 0x7, 0x1, 0x8, 0x0, 0xbd0d, 0x5, 0xfffffffb, 0x1, 0x1, 0x6, 0x4, 0x7ff, 0xfffffffd, 0xae, 0xfc000000, 0x9, 0x101, 0xe75, 0x7fff, 0x80, 0x400, 0x9, 0xb5, 0x0, 0x24000, 0x7, 0x5, 0x81, 0x1580, 0x81, 0x2, 0x401, 0x2, 0xffff, 0x4, 0x2, 0x80000000, 0x5, 0x6, 0xff, 0xfffffff8, 0x3, 0x5, 0x4, 0x80, 0x3, 0x4, 0x0, 0x4096, 0x6, 0x20, 0x0, 0x4, 0xb6, 0xad3, 0x0, 0x4, 0x0, 0x5, 0x7ff, 0x8, 0x4, 0x9d, 0x2, 0x6, 0x5, 0x1, 0x5, 0x4, 0x4, 0x9, 0x7, 0x800, 0x10001, 0x300000, 0x200, 0x8000, 0x3ff, 0x1, 0xfffff32c, 0x8000, 0x9, 0x0, 0x7, 0x14000, 0x5, 0x3, 0x1, 0x2, 0x8, 0x9, 0x200000, 0x5, 0x28, 0x9, 0xb0fe, 0xc8b, 0x401, 0x40, 0x0, 0x7, 0x70, 0x5, 0x8, 0x5, 0x40, 0x1, 0x1, 0x80000000, 0x1, 0x8, 0x7303, 0x20, 0x2, 0x4, 0x7, 0xffffff01, 0x8, 0x5, 0x8, 0x4, 0x20, 0x401, 0x1, 0x8001, 0x9, 0x80000001, 0x1000, 0x7ff, 0x80000001, 0x0, 0x9, 0x1, 0x3, 0x81, 0x1, 0x4, 0xb310, 0xfffffffd, 0xfffffc01, 0xffffffff, 0x5, 0x1ff, 0x10001, 0x8, 0xffff, 0x81, 0x3, 0x7fff, 0x4, 0x42cf, 0x7, 0x3, 0xc95, 0x920b, 0x965, 0x265, 0x21a3, 0x40, 0x5, 0x8001, 0xfa9, 0x8, 0x8, 0x0, 0x1, 0x5, 0x3, 0x6, 0x22b, 0x7, 0x8, 0x200, 0x8000, 0x8, 0x71, 0xe7c, 0x1f, 0x10000, 0x3, 0x6, 0x7, 0x0, 0x0, 0x1ff, 0xff, 0x1, 0x6, 0x0, 0xfffffff8, 0x3, 0x0, 0x3, 0x3, 0x8d, 0x5aa, 0xc1f, 0x1, 0x8, 0x3, 0x6, 0x0, 0x9, 0x3e1, 0x6, 0x3, 0x2, 0xfffffffb, 0x5, 0xfffffff9, 0x4, 0xff, 0x2, 0x9, 0x3, 0x26, 0x0, 0x5, 0x1, 0x8, 0x401, 0x4, 0x8000, 0x1, 0x5, 0x7, 0xd0f1, 0x4, 0x6, 0x2, 0xe0, 0x40, 0x2, 0x4, 0x10001, 0x9679, 0x10000, 0xff, 0x3b2a40, 0x10001, 0x3, 0x4, 0xfffffffd, 0x5, 0x8, 0xff, 0x400, 0x8468, 0x40, 0x73, 0x7fff, 0x9, 0x1, 0x200, 0x4, 0x3, 0x401, 0x3f, 0x2c1, 0x3, 0x2, 0x1, 0xfffffffc, 0xeb9, 0x1, 0x7, 0x2, 0xc742, 0xfffff001, 0x3, 0x0, 0x0, 0x6, 0x100, 0x1, 0x124, 0x9, 0xfffffffe, 0x3, 0x2, 0x96, 0x0, 0x1, 0x5, 0x7f, 0x0, 0x8000, 0x4, 0x4, 0x6, 0x1, 0x3ff, 0x9, 0x2, 0x9, 0x9, 0xb6e, 0x10001, 0x3ff, 0x9, 0xfffffff9, 0x0, 0x5, 0x8, 0x6, 0x1, 0x8, 0x2, 0x1, 0x9, 0x2, 0x6f35, 0x1, 0x3, 0x6, 0x0, 0x9, 0x0, 0x4, 0x401, 0x200, 0x1ff, 0x10000, 0x8000, 0x8, 0x8001, 0x9, 0x1, 0x0, 0x101, 0x7, 0x2, 0x3, 0x2, 0x4, 0x1ff, 0x1f, 0x1, 0x2c25, 0x9, 0x8, 0x2, 0x0, 0x9, 0x3, 0x6, 0x7f, 0x3, 0x800, 0x2, 0x3, 0x8, 0xfffffc01, 0x9, 0xe4d5, 0x40, 0x7, 0xfffffffe, 0x0, 0x8, 0x8278, 0x9, 0x0, 0x7, 0x5, 0x0, 0x8, 0x8, 0x401, 0x7, 0x1800, 0x0, 0x2, 0x5db, 0x4, 0x0, 0x2, 0x3f, 0x3, 0x0, 0x80000000, 0x3, 0x7, 0x7, 0x7ff, 0x1, 0x5, 0x89c, 0x20000000, 0x2, 0x3ff, 0x3, 0x1, 0x80000001, 0x8, 0x200, 0x2, 0xffffffff, 0xfffffff8, 0xb91, 0x3, 0x4, 0x0, 0x6, 0x2, 0x5, 0x6, 0x4, 0x58d, 0x3, 0xffff, 0xfffffff9, 0x6, 0x401, 0x5, 0x0, 0x101, 0x80, 0x3, 0x6, 0x7f, 0x80000001, 0x6, 0x7, 0x6, 0x8000, 0x0, 0x0, 0x800, 0x39d6, 0x1, 0x0, 0x3, 0x9, 0x8000, 0x4, 0x1329, 0x76, 0x8, 0x1, 0x2, 0x0, 0x0, 0x7fffffff, 0x0, 0x6, 0x7fffffff, 0x6, 0x12, 0x885, 0x7, 0x4, 0x10000, 0x80000001, 0x8001, 0x7ff, 0x1ff, 0x2, 0x1ff, 0x0, 0xad, 0x6, 0x2, 0x8, 0x9, 0x6, 0x3, 0x8, 0xd50, 0xf8a, 0x1, 0xffffffff, 0x5, 0xce, 0xf530, 0x20, 0x8c, 0x277, 0x2, 0x6, 0xc, 0x5, 0x8, 0x0, 0x7ff, 0x1, 0x0, 0x4, 0x0, 0x6, 0x6, 0x8, 0xfffffe01, 0x5, 0x4, 0x5, 0x8, 0x1ff, 0x3, 0x4, 0x5, 0x4, 0x4, 0x8001, 0xffff1af7, 0x6, 0x2, 0x3, 0x4, 0x80, 0x7, 0x1, 0x7bb1, 0x7fffffff, 0x1ff, 0x4, 0x0, 0xffff8000, 0x8000, 0x9, 0xfff, 0x1, 0x6, 0x0, 0x9, 0x8, 0xffffffff, 0x5, 0x4, 0x5, 0x5, 0x2, 0xa7c, 0x80000000, 0x4, 0x4, 0x0, 0x7, 0x2, 0x4, 0xfffffff3, 0x82, 0x9, 0x81, 0x8000, 0x8, 0x7f, 0x0, 0x0, 0x2aca, 0x0, 0xfffffffe, 0x1, 0x6, 0x0, 0xffffff00, 0x6, 0x8000, 0x100, 0xf5, 0x700000, 0x4, 0x80000000, 0x7, 0x8a, 0x7f, 0x1924bd8f, 0x7, 0x9, 0x1, 0x1, 0x5, 0x100, 0x77dc, 0x9, 0x23f, 0x9e8, 0x9, 0x101, 0x2741, 0x20, 0x5b1c, 0x1, 0x4, 0x1, 0x9, 0x4, 0x3ff, 0xcf8], 0x1, 0x400, 0x7})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:33 executing program 3:
socketpair(0x10, 0x2, 0x9, 0x0)
socketpair(0x11, 0x0, 0x7, &(0x7f0000000000))

20:49:33 executing program 4:
syz_emit_ethernet(0x2c, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a8"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:33 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0xfff)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000140)={{0x8, 0x0, 0x7, 0x2, 'syz1\x00', 0x7}, 0x1, [0xe3, 0x0, 0x3f, 0x4, 0xff, 0x0, 0x1a4, 0xfffffffffffffffa, 0x2, 0x400, 0x1, 0x5, 0x2, 0x2, 0x5, 0x3, 0x7f, 0x1, 0x1dc11ed, 0xffffffff, 0x6, 0x5, 0x7, 0x7, 0xbfeb, 0xcbd, 0xffffffffffffffff, 0x3, 0x4, 0x85ee, 0x6, 0x757e6c9d, 0x7c000000, 0x800, 0x5, 0x2, 0x7fffffffffffffff, 0xbfb, 0x3, 0x5, 0x3c94, 0x7fffffffffffffff, 0x6, 0x1, 0x1f, 0xb8a, 0x6, 0xffff, 0x0, 0x7, 0xffff, 0x9, 0x9, 0x6, 0x1ff, 0x100000000, 0x16, 0x80000000, 0x3, 0x2, 0x0, 0x7f, 0x48644108, 0xcd, 0x0, 0x8000, 0x3, 0x101, 0x3, 0x446, 0x7, 0xfffffffffffffffb, 0x0, 0x2, 0x5856, 0x100000001, 0x0, 0x18b, 0x7ed, 0x2, 0xb014, 0x5, 0x7, 0x6, 0x9, 0xff, 0x2, 0x9, 0x9, 0x100000001, 0x4, 0x200, 0x4, 0x55e8, 0x8000000000000000, 0x5, 0x3, 0x4, 0x0, 0x1, 0xf8, 0x1000, 0x2, 0x7f, 0x8000, 0x1, 0x996f, 0x20, 0x8000000000000000, 0x8, 0x2, 0x7, 0x1, 0x2a350066, 0xffffffffffffffff, 0x3, 0x8, 0x1, 0x2, 0x7b1fad01, 0x4, 0x8, 0x8, 0x1, 0x65d, 0xd76, 0x9f22, 0x8]})
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000100)=0x8000)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000d00)={0x18, 0x0, {0x3, @local, 'batadv_slave_1\x00'}})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000800)={{0x4, 0x5, 0x5, 0x9, 'syz0\x00', 0x9}, 0x0, [0x2, 0xdc, 0xcab1, 0x84, 0x2d000000000000, 0x401, 0x6, 0xffe, 0x80, 0x7, 0x0, 0x4, 0x5, 0x800, 0x2000000000000, 0x1, 0x7d, 0x66ab, 0x3, 0x5, 0x7, 0x8000000000000001, 0x8, 0xd3d, 0x0, 0x569, 0x3, 0x0, 0x9, 0x7fffffff, 0x4, 0x1000, 0xffffffff, 0x0, 0x39, 0x0, 0xdbf1, 0x9, 0x0, 0x6, 0xa3, 0x1, 0x219b1ef3, 0xea, 0x3, 0x6, 0x8001, 0x7, 0xffff, 0x3df733, 0x3, 0x2, 0x7, 0x6, 0x8, 0x0, 0x6, 0x9, 0x10000, 0x9, 0xc2, 0x1, 0x32c4, 0x1, 0xffff, 0x3ff, 0x7ca4, 0x8, 0x4, 0x3, 0x400, 0x46, 0xff, 0x8, 0xa3, 0xffffffff, 0x2, 0x9, 0xfff, 0x100000001, 0x0, 0x3ff, 0xab00000000000000, 0x20, 0x0, 0x200, 0x7aba, 0x6ba1, 0x3, 0x80, 0x7fff, 0x6, 0x3, 0x9, 0x10000, 0xe8ff, 0x0, 0x3, 0x80, 0xed, 0x2, 0xffffffffffffff45, 0x81, 0x9, 0x8, 0x40000000000, 0x401, 0x10000, 0x0, 0x5, 0xffffffff, 0x0, 0x24be, 0x6, 0x1, 0xfffffffffffffffc, 0x200, 0x2, 0x4, 0x9b1a, 0x0, 0x101, 0x89f1, 0x0, 0x3, 0x8, 0x4, 0x7]})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={<r2=>0x0, @empty, @multicast1}, &(0x7f00000000c0)=0xc)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)={0xd8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3c}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}]}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8001}, 0x1)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0xfff) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000140)={{0x8, 0x0, 0x7, 0x2, 'syz1\x00', 0x7}, 0x1, [0xe3, 0x0, 0x3f, 0x4, 0xff, 0x0, 0x1a4, 0xfffffffffffffffa, 0x2, 0x400, 0x1, 0x5, 0x2, 0x2, 0x5, 0x3, 0x7f, 0x1, 0x1dc11ed, 0xffffffff, 0x6, 0x5, 0x7, 0x7, 0xbfeb, 0xcbd, 0xffffffffffffffff, 0x3, 0x4, 0x85ee, 0x6, 0x757e6c9d, 0x7c000000, 0x800, 0x5, 0x2, 0x7fffffffffffffff, 0xbfb, 0x3, 0x5, 0x3c94, 0x7fffffffffffffff, 0x6, 0x1, 0x1f, 0xb8a, 0x6, 0xffff, 0x0, 0x7, 0xffff, 0x9, 0x9, 0x6, 0x1ff, 0x100000000, 0x16, 0x80000000, 0x3, 0x2, 0x0, 0x7f, 0x48644108, 0xcd, 0x0, 0x8000, 0x3, 0x101, 0x3, 0x446, 0x7, 0xfffffffffffffffb, 0x0, 0x2, 0x5856, 0x100000001, 0x0, 0x18b, 0x7ed, 0x2, 0xb014, 0x5, 0x7, 0x6, 0x9, 0xff, 0x2, 0x9, 0x9, 0x100000001, 0x4, 0x200, 0x4, 0x55e8, 0x8000000000000000, 0x5, 0x3, 0x4, 0x0, 0x1, 0xf8, 0x1000, 0x2, 0x7f, 0x8000, 0x1, 0x996f, 0x20, 0x8000000000000000, 0x8, 0x2, 0x7, 0x1, 0x2a350066, 0xffffffffffffffff, 0x3, 0x8, 0x1, 0x2, 0x7b1fad01, 0x4, 0x8, 0x8, 0x1, 0x65d, 0xd76, 0x9f22, 0x8]}) (async)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000100)=0x8000) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000d00)={0x18, 0x0, {0x3, @local, 'batadv_slave_1\x00'}}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000800)={{0x4, 0x5, 0x5, 0x9, 'syz0\x00', 0x9}, 0x0, [0x2, 0xdc, 0xcab1, 0x84, 0x2d000000000000, 0x401, 0x6, 0xffe, 0x80, 0x7, 0x0, 0x4, 0x5, 0x800, 0x2000000000000, 0x1, 0x7d, 0x66ab, 0x3, 0x5, 0x7, 0x8000000000000001, 0x8, 0xd3d, 0x0, 0x569, 0x3, 0x0, 0x9, 0x7fffffff, 0x4, 0x1000, 0xffffffff, 0x0, 0x39, 0x0, 0xdbf1, 0x9, 0x0, 0x6, 0xa3, 0x1, 0x219b1ef3, 0xea, 0x3, 0x6, 0x8001, 0x7, 0xffff, 0x3df733, 0x3, 0x2, 0x7, 0x6, 0x8, 0x0, 0x6, 0x9, 0x10000, 0x9, 0xc2, 0x1, 0x32c4, 0x1, 0xffff, 0x3ff, 0x7ca4, 0x8, 0x4, 0x3, 0x400, 0x46, 0xff, 0x8, 0xa3, 0xffffffff, 0x2, 0x9, 0xfff, 0x100000001, 0x0, 0x3ff, 0xab00000000000000, 0x20, 0x0, 0x200, 0x7aba, 0x6ba1, 0x3, 0x80, 0x7fff, 0x6, 0x3, 0x9, 0x10000, 0xe8ff, 0x0, 0x3, 0x80, 0xed, 0x2, 0xffffffffffffff45, 0x81, 0x9, 0x8, 0x40000000000, 0x401, 0x10000, 0x0, 0x5, 0xffffffff, 0x0, 0x24be, 0x6, 0x1, 0xfffffffffffffffc, 0x200, 0x2, 0x4, 0x9b1a, 0x0, 0x101, 0x89f1, 0x0, 0x3, 0x8, 0x4, 0x7]}) (async)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={0x0, @empty, @multicast1}, &(0x7f00000000c0)=0xc) (async)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000780)={&(0x7f0000000680)={0xd8, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3c}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}]}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8001}, 0x1) (async)

20:49:33 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x7, 0x8, 0x5, 0x9}, {0x1ff, 0x4, 0xff, 0x1}, {0x0, 0x4, 0x2, 0x4}, {0x1000, 0x5, 0x8, 0x7}, {0x3, 0x3, 0x1, 0x7bf}]})
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
ioctl$VIDIOC_QUERYBUF_DMABUF(r1, 0xc0585609, &(0x7f0000000080)={0x19, 0xc, 0x4, 0x70000, 0x7, {}, {0x4, 0x0, 0x38, 0x4, 0x5, 0x1, "de98eef3"}, 0x6, 0x4, {}, 0x8a6, 0x0, r2})

[  821.382337] FAULT_INJECTION: forcing a failure.
[  821.382337] name failslab, interval 1, probability 0, space 0, times 0
[  821.396731] FAULT_INJECTION: forcing a failure.
[  821.396731] name failslab, interval 1, probability 0, space 0, times 0
20:49:33 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000100)={&(0x7f0000000000)="5c916475a6d5f9657d6df739f49191e05c891be69d4f2d4dfbcde09869874a666470b3855e516c83f7bc3a1ce56b8ee71047a921747996451895a27464fc6bb7735c10408a27ca8f76151c00c61b143878718637baf3506b1d0b08f9eb8d3166418eabecfa83a958febbf506660a317edcc47608fc21c41dccbc6ebe0016f93355dd0cabb20a43869ca10e232e68969fb90d425b57012786bf87931bbfca4c75c5ab509e57737c0260db2146e7bf62c953d4bb32869511bb4df65c6e7cbd5b275aba6d7225663a5d9a3d008fcc16b3bc381b54e559d0f1a5", 0xd8})

[  821.424894] CPU: 0 PID: 21587 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  821.432808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  821.442163] Call Trace:
[  821.444757]  dump_stack+0x1b2/0x281
[  821.448397]  should_fail.cold+0x10a/0x149
[  821.452644]  should_failslab+0xd6/0x130
[  821.456641]  __kmalloc+0x2c1/0x400
[  821.460195]  ? kobject_get_path+0xb5/0x230
[  821.464441]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  821.469905]  kobject_get_path+0xb5/0x230
[  821.473978]  kobject_uevent_env+0x230/0xf30
20:49:33 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000100)={&(0x7f0000000000)="5c916475a6d5f9657d6df739f49191e05c891be69d4f2d4dfbcde09869874a666470b3855e516c83f7bc3a1ce56b8ee71047a921747996451895a27464fc6bb7735c10408a27ca8f76151c00c61b143878718637baf3506b1d0b08f9eb8d3166418eabecfa83a958febbf506660a317edcc47608fc21c41dccbc6ebe0016f93355dd0cabb20a43869ca10e232e68969fb90d425b57012786bf87931bbfca4c75c5ab509e57737c0260db2146e7bf62c953d4bb32869511bb4df65c6e7cbd5b275aba6d7225663a5d9a3d008fcc16b3bc381b54e559d0f1a5", 0xd8})

[  821.478304]  ? internal_create_group+0x48f/0x710
[  821.483066]  lo_ioctl+0x11a6/0x1cd0
[  821.486713]  ? loop_set_status64+0xe0/0xe0
[  821.490964]  blkdev_ioctl+0x540/0x1830
[  821.494868]  ? blkpg_ioctl+0x8d0/0x8d0
[  821.498751]  ? trace_hardirqs_on+0x10/0x10
[  821.502996]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  821.508197]  ? debug_check_no_obj_freed+0x2c0/0x680
[  821.513576]  block_ioctl+0xd9/0x120
[  821.517209]  ? blkdev_fallocate+0x3a0/0x3a0
[  821.521524]  do_vfs_ioctl+0x75a/0xff0
[  821.525310]  ? lock_acquire+0x170/0x3f0
[  821.529275]  ? ioctl_preallocate+0x1a0/0x1a0
[  821.533668]  ? __fget+0x265/0x3e0
[  821.537112]  ? do_vfs_ioctl+0xff0/0xff0
[  821.541099]  ? security_file_ioctl+0x83/0xb0
[  821.545495]  SyS_ioctl+0x7f/0xb0
[  821.548850]  ? do_vfs_ioctl+0xff0/0xff0
[  821.552808]  do_syscall_64+0x1d5/0x640
[  821.556691]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  821.561870] RIP: 0033:0x7f6b8cbe3ec7
[  821.565563] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  821.573298] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
20:49:34 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x7, 0x8, 0x5, 0x9}, {0x1ff, 0x4, 0xff, 0x1}, {0x0, 0x4, 0x2, 0x4}, {0x1000, 0x5, 0x8, 0x7}, {0x3, 0x3, 0x1, 0x7bf}]}) (async)
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
ioctl$VIDIOC_QUERYBUF_DMABUF(r1, 0xc0585609, &(0x7f0000000080)={0x19, 0xc, 0x4, 0x70000, 0x7, {}, {0x4, 0x0, 0x38, 0x4, 0x5, 0x1, "de98eef3"}, 0x6, 0x4, {}, 0x8a6, 0x0, r2})

[  821.580575] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  821.587842] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  821.595198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  821.602461] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  821.623947] CPU: 1 PID: 21588 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  821.631860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  821.641356] Call Trace:
[  821.643952]  dump_stack+0x1b2/0x281
[  821.647601]  should_fail.cold+0x10a/0x149
[  821.651756]  should_failslab+0xd6/0x130
[  821.655740]  kmem_cache_alloc_node_trace+0x25a/0x400
[  821.660844]  __kmalloc_node_track_caller+0x38/0x70
[  821.665888]  __alloc_skb+0x96/0x510
[  821.669595]  kobject_uevent_env+0x882/0xf30
[  821.673900]  lo_ioctl+0x11a6/0x1cd0
[  821.677610]  ? loop_set_status64+0xe0/0xe0
[  821.681829]  blkdev_ioctl+0x540/0x1830
[  821.685697]  ? blkpg_ioctl+0x8d0/0x8d0
[  821.689565]  ? trace_hardirqs_on+0x10/0x10
[  821.693779]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  821.698862]  ? debug_check_no_obj_freed+0x2c0/0x680
[  821.703862]  block_ioctl+0xd9/0x120
[  821.707474]  ? blkdev_fallocate+0x3a0/0x3a0
[  821.711797]  do_vfs_ioctl+0x75a/0xff0
[  821.715586]  ? lock_acquire+0x170/0x3f0
[  821.719538]  ? ioctl_preallocate+0x1a0/0x1a0
[  821.723925]  ? __fget+0x265/0x3e0
[  821.727374]  ? do_vfs_ioctl+0xff0/0xff0
[  821.731326]  ? security_file_ioctl+0x83/0xb0
[  821.735714]  SyS_ioctl+0x7f/0xb0
[  821.739071]  ? do_vfs_ioctl+0xff0/0xff0
[  821.743063]  do_syscall_64+0x1d5/0x640
[  821.746950]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  821.752221] RIP: 0033:0x7fcd83ff2ec7
[  821.755921] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  821.763611] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  821.770859] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  821.778107] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  821.785356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  821.792604] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:34 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 20)

20:49:34 executing program 0:
socketpair(0x3, 0x2, 0x40401, 0x0)
setsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, &(0x7f0000000000)=0x14, 0x4)

20:49:34 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x7, 0x8, 0x5, 0x9}, {0x1ff, 0x4, 0xff, 0x1}, {0x0, 0x4, 0x2, 0x4}, {0x1000, 0x5, 0x8, 0x7}, {0x3, 0x3, 0x1, 0x7bf}]}) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
ioctl$VIDIOC_QUERYBUF_DMABUF(r1, 0xc0585609, &(0x7f0000000080)={0x19, 0xc, 0x4, 0x70000, 0x7, {}, {0x4, 0x0, 0x38, 0x4, 0x5, 0x1, "de98eef3"}, 0x6, 0x4, {}, 0x8a6, 0x0, r2})

20:49:34 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000100)={&(0x7f0000000000)="5c916475a6d5f9657d6df739f49191e05c891be69d4f2d4dfbcde09869874a666470b3855e516c83f7bc3a1ce56b8ee71047a921747996451895a27464fc6bb7735c10408a27ca8f76151c00c61b143878718637baf3506b1d0b08f9eb8d3166418eabecfa83a958febbf506660a317edcc47608fc21c41dccbc6ebe0016f93355dd0cabb20a43869ca10e232e68969fb90d425b57012786bf87931bbfca4c75c5ab509e57737c0260db2146e7bf62c953d4bb32869511bb4df65c6e7cbd5b275aba6d7225663a5d9a3d008fcc16b3bc381b54e559d0f1a5", 0xd8})

20:49:34 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:34 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 24)

20:49:34 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:34 executing program 0:
socketpair(0x3, 0x2, 0x40401, 0x0)
setsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, &(0x7f0000000000)=0x14, 0x4)

20:49:34 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000000)={0x3, 0x9, 0x3, 0x84000})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:34 executing program 3:
socketpair(0x26, 0x805, 0xfffffffe, 0x0)

[  821.894188] FAULT_INJECTION: forcing a failure.
[  821.894188] name failslab, interval 1, probability 0, space 0, times 0
20:49:34 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:34 executing program 3:
socketpair(0x26, 0x805, 0xfffffffe, 0x0)

[  821.952966] CPU: 0 PID: 21642 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  821.960977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  821.970332] Call Trace:
[  821.972923]  dump_stack+0x1b2/0x281
[  821.976586]  should_fail.cold+0x10a/0x149
[  821.980849]  should_failslab+0xd6/0x130
[  821.984927]  kmem_cache_alloc_node+0x263/0x410
[  821.989527]  __alloc_skb+0x5c/0x510
[  821.993165]  kobject_uevent_env+0x882/0xf30
[  821.997497]  lo_ioctl+0x11a6/0x1cd0
[  822.001133]  ? loop_set_status64+0xe0/0xe0
[  822.005377]  blkdev_ioctl+0x540/0x1830
[  822.009277]  ? blkpg_ioctl+0x8d0/0x8d0
[  822.013193]  ? trace_hardirqs_on+0x10/0x10
[  822.017438]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  822.022546]  ? debug_check_no_obj_freed+0x2c0/0x680
[  822.027580]  block_ioctl+0xd9/0x120
[  822.031218]  ? blkdev_fallocate+0x3a0/0x3a0
[  822.035557]  do_vfs_ioctl+0x75a/0xff0
[  822.039421]  ? lock_acquire+0x170/0x3f0
[  822.043407]  ? ioctl_preallocate+0x1a0/0x1a0
[  822.047804]  ? __fget+0x265/0x3e0
[  822.051244]  ? do_vfs_ioctl+0xff0/0xff0
[  822.055224]  ? security_file_ioctl+0x83/0xb0
[  822.059618]  SyS_ioctl+0x7f/0xb0
[  822.062963]  ? do_vfs_ioctl+0xff0/0xff0
[  822.066930]  do_syscall_64+0x1d5/0x640
[  822.070814]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  822.075985] RIP: 0033:0x7f6b8cbe3ec7
[  822.079687] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  822.087389] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  822.094645] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  822.101901] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  822.109157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  822.116515] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  822.137099] FAULT_INJECTION: forcing a failure.
[  822.137099] name failslab, interval 1, probability 0, space 0, times 0
[  822.149036] CPU: 1 PID: 21651 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  822.156927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  822.166284] Call Trace:
[  822.168863]  dump_stack+0x1b2/0x281
[  822.172482]  should_fail.cold+0x10a/0x149
[  822.176634]  should_failslab+0xd6/0x130
[  822.180608]  kmem_cache_alloc_node_trace+0x25a/0x400
[  822.185792]  __kmalloc_node_track_caller+0x38/0x70
[  822.190835]  __alloc_skb+0x96/0x510
[  822.194455]  kobject_uevent_env+0x882/0xf30
[  822.198774]  lo_ioctl+0x11a6/0x1cd0
[  822.202387]  ? loop_set_status64+0xe0/0xe0
[  822.206610]  blkdev_ioctl+0x540/0x1830
[  822.210486]  ? blkpg_ioctl+0x8d0/0x8d0
[  822.214357]  ? trace_hardirqs_on+0x10/0x10
[  822.218590]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  822.223676]  ? debug_check_no_obj_freed+0x2c0/0x680
[  822.228681]  block_ioctl+0xd9/0x120
[  822.232310]  ? blkdev_fallocate+0x3a0/0x3a0
[  822.236620]  do_vfs_ioctl+0x75a/0xff0
[  822.240438]  ? lock_acquire+0x170/0x3f0
[  822.244436]  ? ioctl_preallocate+0x1a0/0x1a0
[  822.248850]  ? __fget+0x265/0x3e0
[  822.252310]  ? do_vfs_ioctl+0xff0/0xff0
[  822.256280]  ? security_file_ioctl+0x83/0xb0
[  822.260673]  SyS_ioctl+0x7f/0xb0
[  822.264026]  ? do_vfs_ioctl+0xff0/0xff0
[  822.267985]  do_syscall_64+0x1d5/0x640
[  822.271875]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  822.277074] RIP: 0033:0x7fcd83ff2ec7
[  822.280856] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  822.288560] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  822.295810] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
20:49:34 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 21)

20:49:34 executing program 4:
syz_emit_ethernet(0x1d, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e37e66fa17abe1c"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:34 executing program 3:
socketpair(0x26, 0x805, 0xfffffffe, 0x0)

20:49:34 executing program 1:
socket$pppoe(0x18, 0x1, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000000)={0x3, 0x9, 0x3, 0x84000}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:34 executing program 0:
socketpair(0x3, 0x2, 0x40401, 0x0) (async, rerun: 64)
setsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, &(0x7f0000000000)=0x14, 0x4) (rerun: 64)

[  822.303059] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  822.310312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  822.317737] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:34 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 25)

20:49:34 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:34 executing program 0:
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000000)={0x8})
socketpair(0x2, 0x800, 0x7fffffd, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r0=>0x0, <r1=>0x0})
pselect6(0x40, &(0x7f0000000040)={0x7fff, 0x4, 0x0, 0x6, 0x4, 0x22, 0xfffffffffffffffc, 0x8001}, &(0x7f0000000080)={0x0, 0x80000001, 0x1, 0xb9, 0x1800000000000000, 0x4, 0x0, 0x3b8}, &(0x7f00000000c0)={0xac, 0x9, 0x8, 0x3, 0x5, 0x9, 0x7, 0x5}, &(0x7f0000000140)={r0, r1+10000000}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x6]}, 0x8})

20:49:34 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000000)={0x3, 0x9, 0x3, 0x84000}) (async, rerun: 32)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (rerun: 32)

20:49:34 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(0xffffffffffffffff, 0x7a9, &(0x7f0000000000)={{@hyper, 0x1}, 0xdbc5, 0x1, 0xfffffffffffffffc, 0x3a4, 0x3, 0x6, 0x4, 0xffffffffffffff84})
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000280)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @private0}, r1}}, 0x38)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000004180)={0x10, 0x30, 0xfa00, {&(0x7f0000004140), 0x3, {0xa, 0x4e20, 0x3, @remote, 0x1000}, r1}}, 0x38)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000002080)={0x20, 0x0, r3, {0x86e, 0x4, 0x40, 0x9}}, 0x20)
read$FUSE(r2, &(0x7f00000020c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_POLL(r2, &(0x7f0000004100)={0x18, 0x0, r4, {0xd9}}, 0x18)

[  822.418911] FAULT_INJECTION: forcing a failure.
[  822.418911] name failslab, interval 1, probability 0, space 0, times 0
[  822.458738] CPU: 1 PID: 21684 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
20:49:34 executing program 0:
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000000)={0x8}) (async, rerun: 32)
socketpair(0x2, 0x800, 0x7fffffd, 0x0) (async, rerun: 32)
clock_gettime(0x0, &(0x7f0000000100)={<r0=>0x0, <r1=>0x0})
pselect6(0x40, &(0x7f0000000040)={0x7fff, 0x4, 0x0, 0x6, 0x4, 0x22, 0xfffffffffffffffc, 0x8001}, &(0x7f0000000080)={0x0, 0x80000001, 0x1, 0xb9, 0x1800000000000000, 0x4, 0x0, 0x3b8}, &(0x7f00000000c0)={0xac, 0x9, 0x8, 0x3, 0x5, 0x9, 0x7, 0x5}, &(0x7f0000000140)={r0, r1+10000000}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x6]}, 0x8})

20:49:34 executing program 0:
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000000)={0x8})
socketpair(0x2, 0x800, 0x7fffffd, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r0=>0x0, <r1=>0x0})
pselect6(0x40, &(0x7f0000000040)={0x7fff, 0x4, 0x0, 0x6, 0x4, 0x22, 0xfffffffffffffffc, 0x8001}, &(0x7f0000000080)={0x0, 0x80000001, 0x1, 0xb9, 0x1800000000000000, 0x4, 0x0, 0x3b8}, &(0x7f00000000c0)={0xac, 0x9, 0x8, 0x3, 0x5, 0x9, 0x7, 0x5}, &(0x7f0000000140)={r0, r1+10000000}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x6]}, 0x8})
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000000)={0x8}) (async)
socketpair(0x2, 0x800, 0x7fffffd, 0x0) (async)
clock_gettime(0x0, &(0x7f0000000100)) (async)
pselect6(0x40, &(0x7f0000000040)={0x7fff, 0x4, 0x0, 0x6, 0x4, 0x22, 0xfffffffffffffffc, 0x8001}, &(0x7f0000000080)={0x0, 0x80000001, 0x1, 0xb9, 0x1800000000000000, 0x4, 0x0, 0x3b8}, &(0x7f00000000c0)={0xac, 0x9, 0x8, 0x3, 0x5, 0x9, 0x7, 0x5}, &(0x7f0000000140)={r0, r1+10000000}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x6]}, 0x8}) (async)

[  822.466661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  822.476022] Call Trace:
[  822.478613]  dump_stack+0x1b2/0x281
[  822.482245]  should_fail.cold+0x10a/0x149
[  822.486404]  should_failslab+0xd6/0x130
[  822.490391]  kmem_cache_alloc_node+0x263/0x410
[  822.495013]  __alloc_skb+0x5c/0x510
[  822.498653]  kobject_uevent_env+0x882/0xf30
[  822.502988]  lo_ioctl+0x11a6/0x1cd0
[  822.506629]  ? loop_set_status64+0xe0/0xe0
[  822.510870]  blkdev_ioctl+0x540/0x1830
[  822.514764]  ? blkpg_ioctl+0x8d0/0x8d0
[  822.518664]  ? trace_hardirqs_on+0x10/0x10
[  822.523028]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  822.528118]  ? debug_check_no_obj_freed+0x2c0/0x680
[  822.533123]  block_ioctl+0xd9/0x120
[  822.536740]  ? blkdev_fallocate+0x3a0/0x3a0
[  822.541045]  do_vfs_ioctl+0x75a/0xff0
[  822.544874]  ? lock_acquire+0x170/0x3f0
[  822.548869]  ? ioctl_preallocate+0x1a0/0x1a0
[  822.553366]  ? __fget+0x265/0x3e0
[  822.556830]  ? do_vfs_ioctl+0xff0/0xff0
[  822.560802]  ? security_file_ioctl+0x83/0xb0
[  822.565198]  SyS_ioctl+0x7f/0xb0
[  822.568573]  ? do_vfs_ioctl+0xff0/0xff0
[  822.572545]  do_syscall_64+0x1d5/0x640
[  822.576888]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  822.582082] RIP: 0033:0x7f6b8cbe3ec7
[  822.585776] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  822.593573] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  822.601062] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  822.608331] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  822.615596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  822.625375] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  822.644077] FAULT_INJECTION: forcing a failure.
[  822.644077] name failslab, interval 1, probability 0, space 0, times 0
[  822.644089] CPU: 1 PID: 21691 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  822.644095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  822.644098] Call Trace:
[  822.644118]  dump_stack+0x1b2/0x281
[  822.679379]  should_fail.cold+0x10a/0x149
[  822.683537]  should_failslab+0xd6/0x130
[  822.687520]  kmem_cache_alloc_node_trace+0x25a/0x400
[  822.692653]  __kmalloc_node_track_caller+0x38/0x70
[  822.697569]  __alloc_skb+0x96/0x510
[  822.701181]  kobject_uevent_env+0x882/0xf30
[  822.705494]  lo_ioctl+0x11a6/0x1cd0
[  822.709115]  ? loop_set_status64+0xe0/0xe0
[  822.713329]  blkdev_ioctl+0x540/0x1830
[  822.717210]  ? blkpg_ioctl+0x8d0/0x8d0
[  822.721102]  ? trace_hardirqs_on+0x10/0x10
[  822.725329]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  822.730422]  ? debug_check_no_obj_freed+0x2c0/0x680
[  822.735440]  block_ioctl+0xd9/0x120
[  822.739066]  ? blkdev_fallocate+0x3a0/0x3a0
[  822.743384]  do_vfs_ioctl+0x75a/0xff0
[  822.747178]  ? lock_acquire+0x170/0x3f0
[  822.751246]  ? ioctl_preallocate+0x1a0/0x1a0
[  822.755658]  ? __fget+0x265/0x3e0
[  822.759106]  ? do_vfs_ioctl+0xff0/0xff0
[  822.763078]  ? security_file_ioctl+0x83/0xb0
[  822.767470]  SyS_ioctl+0x7f/0xb0
[  822.770823]  ? do_vfs_ioctl+0xff0/0xff0
[  822.775218]  do_syscall_64+0x1d5/0x640
[  822.779092]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  822.784269] RIP: 0033:0x7fcd83ff2ec7
[  822.787968] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  822.795674] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  822.802936] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  822.810194] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
20:49:35 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 22)

20:49:35 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x501d00, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r1, 0xc01064c2, &(0x7f0000000040)={<r2=>0x0, 0x0, r1})
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r1, 0xc00864c0, &(0x7f0000000080)={r2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, 0x0, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r6=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r6})
r7 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r7, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r7, 0xc00864bf, &(0x7f0000000300)={<r8=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r7, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r8, r6], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r9, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r8, 0x0, r8, r6, r8, r8, r8, r8], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[r2, 0x0, r2, r8], &(0x7f0000000100)=[0xdc27, 0x9, 0x957, 0x8000, 0xff, 0x1f, 0x7], 0x4})

20:49:35 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(0xffffffffffffffff, 0x7a9, &(0x7f0000000000)={{@hyper, 0x1}, 0xdbc5, 0x1, 0xfffffffffffffffc, 0x3a4, 0x3, 0x6, 0x4, 0xffffffffffffff84}) (async)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000280)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @private0}, r1}}, 0x38) (async)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000004180)={0x10, 0x30, 0xfa00, {&(0x7f0000004140), 0x3, {0xa, 0x4e20, 0x3, @remote, 0x1000}, r1}}, 0x38) (async, rerun: 64)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (rerun: 64)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000002080)={0x20, 0x0, r3, {0x86e, 0x4, 0x40, 0x9}}, 0x20) (async, rerun: 64)
read$FUSE(r2, &(0x7f00000020c0)={0x2020, 0x0, <r4=>0x0}, 0x2020) (rerun: 64)
write$FUSE_POLL(r2, &(0x7f0000004100)={0x18, 0x0, r4, {0xd9}}, 0x18)

20:49:35 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:35 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
socketpair(0x23, 0xa, 0x80, &(0x7f0000000000))

[  822.817472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  822.824747] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:35 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 26)

20:49:35 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  822.921208] FAULT_INJECTION: forcing a failure.
[  822.921208] name failslab, interval 1, probability 0, space 0, times 0
[  822.947762] CPU: 0 PID: 21726 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  822.955706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  822.965064] Call Trace:
[  822.967657]  dump_stack+0x1b2/0x281
[  822.971338]  should_fail.cold+0x10a/0x149
[  822.975492]  should_failslab+0xd6/0x130
[  822.979476]  kmem_cache_alloc_node+0x263/0x410
[  822.984073]  __alloc_skb+0x5c/0x510
[  822.987708]  kobject_uevent_env+0x882/0xf30
[  822.992049]  lo_ioctl+0x11a6/0x1cd0
[  822.995684]  ? loop_set_status64+0xe0/0xe0
[  822.999935]  blkdev_ioctl+0x540/0x1830
[  823.003829]  ? blkpg_ioctl+0x8d0/0x8d0
[  823.007718]  ? trace_hardirqs_on+0x10/0x10
[  823.012053]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
20:49:35 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x501d00, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r1, 0xc01064c2, &(0x7f0000000040)={<r2=>0x0, 0x0, r1})
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r1, 0xc00864c0, &(0x7f0000000080)={r2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, 0x0, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r6=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r6})
r7 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r7, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r7, 0xc00864bf, &(0x7f0000000300)={<r8=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r7, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r8, r6], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r9, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r8, 0x0, r8, r6, r8, r8, r8, r8], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[r2, 0x0, r2, r8], &(0x7f0000000100)=[0xdc27, 0x9, 0x957, 0x8000, 0xff, 0x1f, 0x7], 0x4})
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x501d00, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r1, 0xc01064c2, &(0x7f0000000040)={0x0, 0x0, r1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r1, 0xc00864c0, &(0x7f0000000080)={r2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000300)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, 0x0, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r6}) (async)
syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r7, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r7, 0xc00864bf, &(0x7f0000000300)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r7, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r8, r6], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r9, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r8, 0x0, r8, r6, r8, r8, r8, r8], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[r2, 0x0, r2, r8], &(0x7f0000000100)=[0xdc27, 0x9, 0x957, 0x8000, 0xff, 0x1f, 0x7], 0x4}) (async)

20:49:35 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
socketpair(0x23, 0xa, 0x80, &(0x7f0000000000))
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
socketpair(0x23, 0xa, 0x80, &(0x7f0000000000)) (async)

20:49:35 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(0xffffffffffffffff, 0x7a9, &(0x7f0000000000)={{@hyper, 0x1}, 0xdbc5, 0x1, 0xfffffffffffffffc, 0x3a4, 0x3, 0x6, 0x4, 0xffffffffffffff84})
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000280)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @private0}, r1}}, 0x38)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000004180)={0x10, 0x30, 0xfa00, {&(0x7f0000004140), 0x3, {0xa, 0x4e20, 0x3, @remote, 0x1000}, r1}}, 0x38)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000002080)={0x20, 0x0, r3, {0x86e, 0x4, 0x40, 0x9}}, 0x20) (async)
read$FUSE(r2, &(0x7f00000020c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_POLL(r2, &(0x7f0000004100)={0x18, 0x0, r4, {0xd9}}, 0x18)

20:49:35 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
socketpair(0x23, 0xa, 0x80, &(0x7f0000000000))

20:49:35 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x501d00, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r1, 0xc01064c2, &(0x7f0000000040)={<r2=>0x0, 0x0, r1})
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r1, 0xc00864c0, &(0x7f0000000080)={r2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, 0x0, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r6=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r6})
r7 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r7, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r7, 0xc00864bf, &(0x7f0000000300)={<r8=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r7, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r8, r6], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r9, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r8, 0x0, r8, r6, r8, r8, r8, r8], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[r2, 0x0, r2, r8], &(0x7f0000000100)=[0xdc27, 0x9, 0x957, 0x8000, 0xff, 0x1f, 0x7], 0x4})

[  823.017162]  ? debug_check_no_obj_freed+0x2c0/0x680
[  823.022190]  block_ioctl+0xd9/0x120
[  823.025822]  ? blkdev_fallocate+0x3a0/0x3a0
[  823.030149]  do_vfs_ioctl+0x75a/0xff0
[  823.033984]  ? lock_acquire+0x170/0x3f0
[  823.037965]  ? ioctl_preallocate+0x1a0/0x1a0
[  823.042379]  ? __fget+0x265/0x3e0
[  823.045840]  ? do_vfs_ioctl+0xff0/0xff0
[  823.049938]  ? security_file_ioctl+0x83/0xb0
[  823.054348]  SyS_ioctl+0x7f/0xb0
[  823.057715]  ? do_vfs_ioctl+0xff0/0xff0
[  823.061691]  do_syscall_64+0x1d5/0x640
[  823.065588]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  823.070779] RIP: 0033:0x7f6b8cbe3ec7
[  823.074492] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  823.082204] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  823.089476] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  823.096748] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  823.104016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  823.111287] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  823.141496] FAULT_INJECTION: forcing a failure.
[  823.141496] name failslab, interval 1, probability 0, space 0, times 0
[  823.156195] CPU: 1 PID: 21734 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  823.164100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  823.173450] Call Trace:
[  823.176042]  dump_stack+0x1b2/0x281
[  823.179667]  should_fail.cold+0x10a/0x149
[  823.183835]  should_failslab+0xd6/0x130
[  823.187795]  kmem_cache_alloc_node+0x263/0x410
[  823.192365]  __alloc_skb+0x5c/0x510
[  823.195978]  kobject_uevent_env+0x882/0xf30
[  823.200321]  lo_ioctl+0x11a6/0x1cd0
[  823.203940]  ? loop_set_status64+0xe0/0xe0
[  823.208169]  blkdev_ioctl+0x540/0x1830
[  823.212038]  ? blkpg_ioctl+0x8d0/0x8d0
[  823.215908]  ? trace_hardirqs_on+0x10/0x10
[  823.220144]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  823.225244]  ? debug_check_no_obj_freed+0x2c0/0x680
[  823.230252]  block_ioctl+0xd9/0x120
[  823.233860]  ? blkdev_fallocate+0x3a0/0x3a0
[  823.238168]  do_vfs_ioctl+0x75a/0xff0
[  823.241965]  ? lock_acquire+0x170/0x3f0
[  823.245921]  ? ioctl_preallocate+0x1a0/0x1a0
[  823.250371]  ? __fget+0x265/0x3e0
[  823.253820]  ? do_vfs_ioctl+0xff0/0xff0
[  823.257789]  ? security_file_ioctl+0x83/0xb0
[  823.262187]  SyS_ioctl+0x7f/0xb0
[  823.265541]  ? do_vfs_ioctl+0xff0/0xff0
[  823.269508]  do_syscall_64+0x1d5/0x640
[  823.273406]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  823.278586] RIP: 0033:0x7fcd83ff2ec7
[  823.282301] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:49:35 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 23)

20:49:35 executing program 4:
syz_emit_ethernet(0x16, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9f1d68e"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:35 executing program 0:
socketpair(0x2b, 0xa, 0x76, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)

20:49:35 executing program 3:
socketpair(0x26, 0x2, 0x3, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = geteuid()
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x80, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
getgroups(0x4, &(0x7f0000000140)=[0xee00, 0xee01, 0x0, <r3=>0xffffffffffffffff])
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000180)={0x290, 0x0, 0x0, [{{0x0, 0x2, 0x8, 0x6, 0x6, 0xffffffff, {0x4, 0xbc0, 0x4, 0xffff, 0x3, 0x1, 0x3, 0x4, 0x101, 0xa4c5beff828c8135, 0x1000, 0x0, 0x0, 0x3ff, 0x8}}, {0x4, 0x7ff, 0x1, 0x7, '}'}}, {{0x6, 0x3, 0x1, 0x6a, 0x1, 0x99f, {0x5, 0xffffffff, 0x76e0134c, 0x0, 0x1b, 0x400, 0x20ab8349, 0x4, 0x100, 0x2000, 0xf9, r1, r2, 0xc1, 0x3}}, {0x4, 0x5, 0x1, 0x1, ']'}}, {{0x0, 0x2, 0x6, 0x2, 0x7, 0x8, {0x5, 0x6, 0x200, 0xb1, 0x4, 0x5, 0xfffffc01, 0x36, 0x2, 0x4000, 0x10000, 0x0, 0xee01, 0x2, 0xfffffbff}}, {0x2, 0x5, 0x1, 0x401, ','}}, {{0x4, 0x0, 0x7, 0x3, 0x9, 0x5, {0x3, 0x7fffffff, 0x64, 0x5, 0x2, 0xf92f1c1, 0x9, 0x40, 0xe586, 0x4000, 0xffffffff, 0xffffffffffffffff, r3, 0x16, 0x10000}}, {0x0, 0x7, 0x1, 0x7, '.'}}]}, 0x290)

20:49:35 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socketpair(0x10, 0x8000c, 0x0, &(0x7f0000000000))

[  823.290001] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  823.297264] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  823.304521] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  823.311784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  823.319051] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:35 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 27)

20:49:35 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:35 executing program 3:
socketpair(0x26, 0x2, 0x3, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = geteuid()
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x80, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
getgroups(0x4, &(0x7f0000000140)=[0xee00, 0xee01, 0x0, <r3=>0xffffffffffffffff])
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000180)={0x290, 0x0, 0x0, [{{0x0, 0x2, 0x8, 0x6, 0x6, 0xffffffff, {0x4, 0xbc0, 0x4, 0xffff, 0x3, 0x1, 0x3, 0x4, 0x101, 0xa4c5beff828c8135, 0x1000, 0x0, 0x0, 0x3ff, 0x8}}, {0x4, 0x7ff, 0x1, 0x7, '}'}}, {{0x6, 0x3, 0x1, 0x6a, 0x1, 0x99f, {0x5, 0xffffffff, 0x76e0134c, 0x0, 0x1b, 0x400, 0x20ab8349, 0x4, 0x100, 0x2000, 0xf9, r1, r2, 0xc1, 0x3}}, {0x4, 0x5, 0x1, 0x1, ']'}}, {{0x0, 0x2, 0x6, 0x2, 0x7, 0x8, {0x5, 0x6, 0x200, 0xb1, 0x4, 0x5, 0xfffffc01, 0x36, 0x2, 0x4000, 0x10000, 0x0, 0xee01, 0x2, 0xfffffbff}}, {0x2, 0x5, 0x1, 0x401, ','}}, {{0x4, 0x0, 0x7, 0x3, 0x9, 0x5, {0x3, 0x7fffffff, 0x64, 0x5, 0x2, 0xf92f1c1, 0x9, 0x40, 0xe586, 0x4000, 0xffffffff, 0xffffffffffffffff, r3, 0x16, 0x10000}}, {0x0, 0x7, 0x1, 0x7, '.'}}]}, 0x290)
socketpair(0x26, 0x2, 0x3, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
geteuid() (async)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x80, &(0x7f0000000040)) (async)
getgroups(0x4, &(0x7f0000000140)=[0xee00, 0xee01, 0x0, 0xffffffffffffffff]) (async)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000180)={0x290, 0x0, 0x0, [{{0x0, 0x2, 0x8, 0x6, 0x6, 0xffffffff, {0x4, 0xbc0, 0x4, 0xffff, 0x3, 0x1, 0x3, 0x4, 0x101, 0xa4c5beff828c8135, 0x1000, 0x0, 0x0, 0x3ff, 0x8}}, {0x4, 0x7ff, 0x1, 0x7, '}'}}, {{0x6, 0x3, 0x1, 0x6a, 0x1, 0x99f, {0x5, 0xffffffff, 0x76e0134c, 0x0, 0x1b, 0x400, 0x20ab8349, 0x4, 0x100, 0x2000, 0xf9, r1, r2, 0xc1, 0x3}}, {0x4, 0x5, 0x1, 0x1, ']'}}, {{0x0, 0x2, 0x6, 0x2, 0x7, 0x8, {0x5, 0x6, 0x200, 0xb1, 0x4, 0x5, 0xfffffc01, 0x36, 0x2, 0x4000, 0x10000, 0x0, 0xee01, 0x2, 0xfffffbff}}, {0x2, 0x5, 0x1, 0x401, ','}}, {{0x4, 0x0, 0x7, 0x3, 0x9, 0x5, {0x3, 0x7fffffff, 0x64, 0x5, 0x2, 0xf92f1c1, 0x9, 0x40, 0xe586, 0x4000, 0xffffffff, 0xffffffffffffffff, r3, 0x16, 0x10000}}, {0x0, 0x7, 0x1, 0x7, '.'}}]}, 0x290) (async)

20:49:35 executing program 0:
socketpair(0x2b, 0xa, 0x76, 0x0) (async, rerun: 64)
socket$inet6_udplite(0xa, 0x2, 0x88) (rerun: 64)

20:49:35 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socketpair(0x10, 0x8000c, 0x0, &(0x7f0000000000))

20:49:35 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  823.428861] FAULT_INJECTION: forcing a failure.
[  823.428861] name failslab, interval 1, probability 0, space 0, times 0
[  823.456688] CPU: 1 PID: 21792 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  823.464607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  823.474226] Call Trace:
20:49:35 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  823.476822]  dump_stack+0x1b2/0x281
[  823.480467]  should_fail.cold+0x10a/0x149
[  823.484630]  should_failslab+0xd6/0x130
[  823.488619]  kmem_cache_alloc_node_trace+0x25a/0x400
[  823.493740]  __kmalloc_node_track_caller+0x38/0x70
[  823.498701]  __alloc_skb+0x96/0x510
[  823.502320]  kobject_uevent_env+0x882/0xf30
[  823.506649]  lo_ioctl+0x11a6/0x1cd0
[  823.510281]  ? loop_set_status64+0xe0/0xe0
[  823.514595]  blkdev_ioctl+0x540/0x1830
[  823.518467]  ? blkpg_ioctl+0x8d0/0x8d0
[  823.522344]  ? trace_hardirqs_on+0x10/0x10
[  823.526565]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  823.531653]  ? debug_check_no_obj_freed+0x2c0/0x680
[  823.536668]  block_ioctl+0xd9/0x120
[  823.540393]  ? blkdev_fallocate+0x3a0/0x3a0
[  823.544704]  do_vfs_ioctl+0x75a/0xff0
[  823.548493]  ? lock_acquire+0x170/0x3f0
[  823.552459]  ? ioctl_preallocate+0x1a0/0x1a0
[  823.556867]  ? __fget+0x265/0x3e0
[  823.560308]  ? do_vfs_ioctl+0xff0/0xff0
[  823.564269]  ? security_file_ioctl+0x83/0xb0
[  823.568662]  SyS_ioctl+0x7f/0xb0
[  823.572017]  ? do_vfs_ioctl+0xff0/0xff0
[  823.575999]  do_syscall_64+0x1d5/0x640
[  823.579962]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  823.585151] RIP: 0033:0x7f6b8cbe3ec7
[  823.588849] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  823.596558] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  823.603814] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  823.611066] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  823.618327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  823.625607] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  823.635768] FAULT_INJECTION: forcing a failure.
[  823.635768] name failslab, interval 1, probability 0, space 0, times 0
[  823.649370] CPU: 1 PID: 21802 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  823.657274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  823.666631] Call Trace:
[  823.669240]  dump_stack+0x1b2/0x281
[  823.672872]  should_fail.cold+0x10a/0x149
[  823.677007]  should_failslab+0xd6/0x130
[  823.680981]  kmem_cache_alloc_node_trace+0x25a/0x400
[  823.686074]  __kmalloc_node_track_caller+0x38/0x70
[  823.690992]  __alloc_skb+0x96/0x510
[  823.694634]  kobject_uevent_env+0x882/0xf30
[  823.698941]  lo_ioctl+0x11a6/0x1cd0
[  823.702550]  ? loop_set_status64+0xe0/0xe0
[  823.706769]  blkdev_ioctl+0x540/0x1830
[  823.710648]  ? blkpg_ioctl+0x8d0/0x8d0
[  823.714522]  ? trace_hardirqs_on+0x10/0x10
[  823.718742]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  823.723843]  ? debug_check_no_obj_freed+0x2c0/0x680
[  823.728885]  block_ioctl+0xd9/0x120
[  823.732501]  ? blkdev_fallocate+0x3a0/0x3a0
[  823.736835]  do_vfs_ioctl+0x75a/0xff0
[  823.740622]  ? lock_acquire+0x170/0x3f0
[  823.744586]  ? ioctl_preallocate+0x1a0/0x1a0
[  823.748992]  ? __fget+0x265/0x3e0
[  823.752439]  ? do_vfs_ioctl+0xff0/0xff0
[  823.756398]  ? security_file_ioctl+0x83/0xb0
[  823.760791]  SyS_ioctl+0x7f/0xb0
[  823.764145]  ? do_vfs_ioctl+0xff0/0xff0
[  823.768113]  do_syscall_64+0x1d5/0x640
[  823.772095]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  823.777279] RIP: 0033:0x7fcd83ff2ec7
[  823.780973] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  823.788664] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  823.795917] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  823.803174] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  823.810426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  823.817685] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:36 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 24)

20:49:36 executing program 4:
syz_emit_ethernet(0x13, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d801283b9"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:36 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
socketpair(0x10, 0x8000c, 0x0, &(0x7f0000000000))

20:49:36 executing program 0:
socketpair(0x2b, 0xa, 0x76, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
socketpair(0x2b, 0xa, 0x76, 0x0) (async)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)

20:49:36 executing program 3:
socketpair(0x26, 0x2, 0x3, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
r1 = geteuid() (async)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x80, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}) (async)
getgroups(0x4, &(0x7f0000000140)=[0xee00, 0xee01, 0x0, <r3=>0xffffffffffffffff])
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000180)={0x290, 0x0, 0x0, [{{0x0, 0x2, 0x8, 0x6, 0x6, 0xffffffff, {0x4, 0xbc0, 0x4, 0xffff, 0x3, 0x1, 0x3, 0x4, 0x101, 0xa4c5beff828c8135, 0x1000, 0x0, 0x0, 0x3ff, 0x8}}, {0x4, 0x7ff, 0x1, 0x7, '}'}}, {{0x6, 0x3, 0x1, 0x6a, 0x1, 0x99f, {0x5, 0xffffffff, 0x76e0134c, 0x0, 0x1b, 0x400, 0x20ab8349, 0x4, 0x100, 0x2000, 0xf9, r1, r2, 0xc1, 0x3}}, {0x4, 0x5, 0x1, 0x1, ']'}}, {{0x0, 0x2, 0x6, 0x2, 0x7, 0x8, {0x5, 0x6, 0x200, 0xb1, 0x4, 0x5, 0xfffffc01, 0x36, 0x2, 0x4000, 0x10000, 0x0, 0xee01, 0x2, 0xfffffbff}}, {0x2, 0x5, 0x1, 0x401, ','}}, {{0x4, 0x0, 0x7, 0x3, 0x9, 0x5, {0x3, 0x7fffffff, 0x64, 0x5, 0x2, 0xf92f1c1, 0x9, 0x40, 0xe586, 0x4000, 0xffffffff, 0xffffffffffffffff, r3, 0x16, 0x10000}}, {0x0, 0x7, 0x1, 0x7, '.'}}]}, 0x290)

20:49:36 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 28)

20:49:36 executing program 0:
socketpair(0x0, 0x0, 0x15, 0x0)

20:49:36 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
socketpair(0x2, 0x4, 0x61e3, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:36 executing program 4:
syz_emit_ethernet(0x10, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d80"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:36 executing program 3:
socketpair(0x15, 0x80005, 0xfffffffc, 0x0)
socket$key(0xf, 0x3, 0x2)

20:49:36 executing program 0:
socketpair(0x0, 0x0, 0x15, 0x0)

20:49:36 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
socketpair(0x2, 0x4, 0x61e3, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  823.928997] FAULT_INJECTION: forcing a failure.
[  823.928997] name failslab, interval 1, probability 0, space 0, times 0
[  823.957651] CPU: 1 PID: 21837 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  823.965564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  823.974919] Call Trace:
[  823.977508]  dump_stack+0x1b2/0x281
[  823.981145]  should_fail.cold+0x10a/0x149
[  823.985304]  should_failslab+0xd6/0x130
[  823.989287]  kmem_cache_alloc_node+0x263/0x410
[  823.993965]  __alloc_skb+0x5c/0x510
[  823.997604]  kobject_uevent_env+0x882/0xf30
[  824.002428]  lo_ioctl+0x11a6/0x1cd0
[  824.006063]  ? loop_set_status64+0xe0/0xe0
[  824.010295]  blkdev_ioctl+0x540/0x1830
[  824.014186]  ? blkpg_ioctl+0x8d0/0x8d0
[  824.018058]  ? trace_hardirqs_on+0x10/0x10
[  824.022288]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  824.027383]  ? debug_check_no_obj_freed+0x2c0/0x680
[  824.032406]  block_ioctl+0xd9/0x120
[  824.036023]  ? blkdev_fallocate+0x3a0/0x3a0
[  824.040333]  do_vfs_ioctl+0x75a/0xff0
[  824.044147]  ? lock_acquire+0x170/0x3f0
[  824.048181]  ? ioctl_preallocate+0x1a0/0x1a0
[  824.052582]  ? __fget+0x265/0x3e0
[  824.056024]  ? do_vfs_ioctl+0xff0/0xff0
[  824.059982]  ? security_file_ioctl+0x83/0xb0
[  824.064377]  SyS_ioctl+0x7f/0xb0
[  824.067745]  ? do_vfs_ioctl+0xff0/0xff0
[  824.071719]  do_syscall_64+0x1d5/0x640
[  824.075954]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  824.081140] RIP: 0033:0x7fcd83ff2ec7
[  824.084841] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  824.092543] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  824.099808] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  824.107073] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  824.114436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  824.121794] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  824.133482] FAULT_INJECTION: forcing a failure.
[  824.133482] name failslab, interval 1, probability 0, space 0, times 0
[  824.149075] CPU: 1 PID: 21836 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  824.156977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  824.166410] Call Trace:
[  824.168987]  dump_stack+0x1b2/0x281
[  824.172596]  should_fail.cold+0x10a/0x149
[  824.176726]  should_failslab+0xd6/0x130
[  824.180700]  kmem_cache_alloc_node+0x263/0x410
[  824.185265]  __alloc_skb+0x5c/0x510
[  824.188891]  kobject_uevent_env+0x882/0xf30
[  824.193205]  lo_ioctl+0x11a6/0x1cd0
[  824.196819]  ? loop_set_status64+0xe0/0xe0
[  824.201041]  blkdev_ioctl+0x540/0x1830
[  824.204912]  ? blkpg_ioctl+0x8d0/0x8d0
[  824.208777]  ? trace_hardirqs_on+0x10/0x10
[  824.213185]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  824.218273]  ? debug_check_no_obj_freed+0x2c0/0x680
[  824.223272]  block_ioctl+0xd9/0x120
[  824.226877]  ? blkdev_fallocate+0x3a0/0x3a0
[  824.231179]  do_vfs_ioctl+0x75a/0xff0
[  824.234961]  ? lock_acquire+0x170/0x3f0
[  824.238917]  ? ioctl_preallocate+0x1a0/0x1a0
[  824.243309]  ? __fget+0x265/0x3e0
[  824.246744]  ? do_vfs_ioctl+0xff0/0xff0
[  824.250701]  ? security_file_ioctl+0x83/0xb0
[  824.255107]  SyS_ioctl+0x7f/0xb0
[  824.258452]  ? do_vfs_ioctl+0xff0/0xff0
[  824.262406]  do_syscall_64+0x1d5/0x640
[  824.266277]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  824.271445] RIP: 0033:0x7f6b8cbe3ec7
[  824.275133] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  824.282835] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  824.290082] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  824.297332] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  824.304578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  824.311845] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:36 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 25)

20:49:36 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
socketpair(0x2, 0x4, 0x61e3, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
socketpair(0x2, 0x4, 0x61e3, &(0x7f0000000000)) (async)
ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)

20:49:36 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:36 executing program 0:
socketpair(0x0, 0x0, 0x15, 0x0)

20:49:36 executing program 3:
socketpair(0x15, 0x80005, 0xfffffffc, 0x0) (async)
socket$key(0xf, 0x3, 0x2)

20:49:36 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 29)

20:49:36 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x22101, 0x0)

20:49:36 executing program 3:
socketpair(0x15, 0x80005, 0xfffffffc, 0x0) (async)
socket$key(0xf, 0x3, 0x2)

20:49:36 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:36 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x22101, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x22101, 0x0) (async)

20:49:36 executing program 3:
socketpair(0x10, 0x5, 0x200003, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7aa, &(0x7f0000000240)={{@any, 0x6000}, 0x4, 0x80})
socketpair(0x1a, 0x80000, 0xc199, &(0x7f0000000280))
r1 = socket$l2tp6(0xa, 0x2, 0x73)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
recvfrom$l2tp(r0, &(0x7f0000000100)=""/219, 0xdb, 0x10000, &(0x7f0000000200)={0x2, 0x0, @empty}, 0x10)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000), 0x106}}, 0x20)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0xf0080, 0x0)
getsockname$l2tp(r4, &(0x7f00000000c0), &(0x7f00000002c0)=0x10)

[  824.438411] FAULT_INJECTION: forcing a failure.
[  824.438411] name failslab, interval 1, probability 0, space 0, times 0
[  824.463342] CPU: 1 PID: 21879 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  824.471259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  824.480987] Call Trace:
[  824.483580]  dump_stack+0x1b2/0x281
20:49:36 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  824.487220]  should_fail.cold+0x10a/0x149
[  824.491378]  should_failslab+0xd6/0x130
[  824.495363]  kmem_cache_alloc_node_trace+0x25a/0x400
[  824.500481]  __kmalloc_node_track_caller+0x38/0x70
[  824.505420]  __alloc_skb+0x96/0x510
[  824.509057]  kobject_uevent_env+0x882/0xf30
[  824.513397]  lo_ioctl+0x11a6/0x1cd0
[  824.517036]  ? loop_set_status64+0xe0/0xe0
[  824.521285]  blkdev_ioctl+0x540/0x1830
[  824.525212]  ? blkpg_ioctl+0x8d0/0x8d0
[  824.529103]  ? trace_hardirqs_on+0x10/0x10
[  824.533345]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  824.538450]  ? debug_check_no_obj_freed+0x2c0/0x680
[  824.543516]  block_ioctl+0xd9/0x120
[  824.547248]  ? blkdev_fallocate+0x3a0/0x3a0
[  824.551656]  do_vfs_ioctl+0x75a/0xff0
[  824.555436]  ? lock_acquire+0x170/0x3f0
[  824.559409]  ? ioctl_preallocate+0x1a0/0x1a0
[  824.563805]  ? __fget+0x265/0x3e0
[  824.567247]  ? do_vfs_ioctl+0xff0/0xff0
[  824.571204]  ? security_file_ioctl+0x83/0xb0
[  824.575594]  SyS_ioctl+0x7f/0xb0
[  824.578949]  ? do_vfs_ioctl+0xff0/0xff0
[  824.582914]  do_syscall_64+0x1d5/0x640
[  824.586788]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  824.591981] RIP: 0033:0x7fcd83ff2ec7
[  824.595670] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  824.603360] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  824.610618] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  824.617899] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  824.625338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  824.632613] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  824.645900] FAULT_INJECTION: forcing a failure.
[  824.645900] name failslab, interval 1, probability 0, space 0, times 0
[  824.660790] CPU: 1 PID: 21873 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  824.668696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  824.678044] Call Trace:
[  824.680620]  dump_stack+0x1b2/0x281
[  824.684232]  should_fail.cold+0x10a/0x149
[  824.688369]  should_failslab+0xd6/0x130
[  824.692343]  kmem_cache_alloc_node+0x263/0x410
[  824.696909]  __alloc_skb+0x5c/0x510
[  824.700518]  kobject_uevent_env+0x882/0xf30
[  824.704836]  lo_ioctl+0x11a6/0x1cd0
[  824.708446]  ? loop_set_status64+0xe0/0xe0
[  824.712673]  blkdev_ioctl+0x540/0x1830
[  824.716545]  ? blkpg_ioctl+0x8d0/0x8d0
[  824.720413]  ? trace_hardirqs_on+0x10/0x10
[  824.724625]  ? _raw_spin_unlock_irq+0x24/0x80
[  824.729101]  ? trace_hardirqs_on_caller+0x3a8/0x580
[  824.734144]  ? _raw_spin_unlock_irq+0x5a/0x80
[  824.738618]  ? finish_task_switch+0x178/0x610
[  824.743094]  ? finish_task_switch+0x14d/0x610
[  824.747576]  ? switch_mm_irqs_off+0x601/0xeb0
[  824.752051]  block_ioctl+0xd9/0x120
[  824.755660]  ? blkdev_fallocate+0x3a0/0x3a0
[  824.759964]  do_vfs_ioctl+0x75a/0xff0
[  824.763746]  ? lock_acquire+0x170/0x3f0
[  824.767700]  ? ioctl_preallocate+0x1a0/0x1a0
[  824.772104]  ? __fget+0x265/0x3e0
[  824.775539]  ? do_vfs_ioctl+0xff0/0xff0
[  824.779507]  ? security_file_ioctl+0x83/0xb0
[  824.783988]  SyS_ioctl+0x7f/0xb0
[  824.787351]  ? do_vfs_ioctl+0xff0/0xff0
[  824.791314]  do_syscall_64+0x1d5/0x640
[  824.795191]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  824.800360] RIP: 0033:0x7f6b8cbe3ec7
[  824.804049] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  824.811738] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  824.818988] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  824.826236] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  824.833497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  824.840745] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:37 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 26)

20:49:37 executing program 3:
socketpair(0x10, 0x5, 0x200003, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7aa, &(0x7f0000000240)={{@any, 0x6000}, 0x4, 0x80}) (async)
socketpair(0x1a, 0x80000, 0xc199, &(0x7f0000000280))
r1 = socket$l2tp6(0xa, 0x2, 0x73)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1) (async, rerun: 64)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (rerun: 64)
recvfrom$l2tp(r0, &(0x7f0000000100)=""/219, 0xdb, 0x10000, &(0x7f0000000200)={0x2, 0x0, @empty}, 0x10) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000), 0x106}}, 0x20) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0xf0080, 0x0)
getsockname$l2tp(r4, &(0x7f00000000c0), &(0x7f00000002c0)=0x10)

20:49:37 executing program 4:
syz_emit_ethernet(0x10, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d80"}}}, 0x0)

20:49:37 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0xff, 0x652, 0x7})

20:49:37 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async, rerun: 64)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x22101, 0x0) (rerun: 64)

20:49:37 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 30)

20:49:37 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0xff, 0x652, 0x7})

20:49:37 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:37 executing program 3:
socketpair(0x10, 0x5, 0x200003, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7aa, &(0x7f0000000240)={{@any, 0x6000}, 0x4, 0x80})
socketpair(0x1a, 0x80000, 0xc199, &(0x7f0000000280)) (async)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
recvfrom$l2tp(r0, &(0x7f0000000100)=""/219, 0xdb, 0x10000, &(0x7f0000000200)={0x2, 0x0, @empty}, 0x10) (async, rerun: 32)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async, rerun: 32)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000), 0x106}}, 0x20)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0xf0080, 0x0)
getsockname$l2tp(r4, &(0x7f00000000c0), &(0x7f00000002c0)=0x10)

20:49:37 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:37 executing program 3:
socketpair(0x26, 0x1, 0x0, 0x0)

[  824.942684] FAULT_INJECTION: forcing a failure.
[  824.942684] name failslab, interval 1, probability 0, space 0, times 0
20:49:37 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0xff, 0x652, 0x7})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0xff, 0x652, 0x7}) (async)

[  825.011371] CPU: 0 PID: 21922 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  825.019293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  825.028646] Call Trace:
[  825.031241]  dump_stack+0x1b2/0x281
[  825.034881]  should_fail.cold+0x10a/0x149
[  825.039037]  should_failslab+0xd6/0x130
[  825.043041]  kmem_cache_alloc_node_trace+0x25a/0x400
[  825.048134]  __kmalloc_node_track_caller+0x38/0x70
[  825.053069]  __alloc_skb+0x96/0x510
[  825.056680]  kobject_uevent_env+0x882/0xf30
[  825.060989]  lo_ioctl+0x11a6/0x1cd0
[  825.064598]  ? loop_set_status64+0xe0/0xe0
[  825.068820]  blkdev_ioctl+0x540/0x1830
[  825.072688]  ? blkpg_ioctl+0x8d0/0x8d0
[  825.076572]  ? trace_hardirqs_on+0x10/0x10
[  825.080812]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  825.085925]  ? debug_check_no_obj_freed+0x2c0/0x680
[  825.090945]  block_ioctl+0xd9/0x120
[  825.094561]  ? blkdev_fallocate+0x3a0/0x3a0
[  825.098865]  do_vfs_ioctl+0x75a/0xff0
[  825.102667]  ? lock_acquire+0x170/0x3f0
[  825.106704]  ? ioctl_preallocate+0x1a0/0x1a0
[  825.111097]  ? __fget+0x265/0x3e0
[  825.114533]  ? do_vfs_ioctl+0xff0/0xff0
[  825.118602]  ? security_file_ioctl+0x83/0xb0
[  825.122994]  SyS_ioctl+0x7f/0xb0
[  825.126341]  ? do_vfs_ioctl+0xff0/0xff0
[  825.130298]  do_syscall_64+0x1d5/0x640
[  825.134182]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  825.139350] RIP: 0033:0x7fcd83ff2ec7
[  825.143040] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  825.150727] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  825.157983] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  825.165253] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  825.172507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  825.179775] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  825.197807] FAULT_INJECTION: forcing a failure.
[  825.197807] name failslab, interval 1, probability 0, space 0, times 0
[  825.210678] CPU: 1 PID: 21923 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  825.218557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  825.227897] Call Trace:
[  825.230473]  dump_stack+0x1b2/0x281
[  825.234089]  should_fail.cold+0x10a/0x149
[  825.238221]  should_failslab+0xd6/0x130
[  825.242177]  kmem_cache_alloc_node_trace+0x25a/0x400
[  825.247264]  __kmalloc_node_track_caller+0x38/0x70
[  825.252176]  __alloc_skb+0x96/0x510
[  825.255788]  kobject_uevent_env+0x882/0xf30
[  825.260093]  lo_ioctl+0x11a6/0x1cd0
[  825.263703]  ? loop_set_status64+0xe0/0xe0
[  825.267925]  blkdev_ioctl+0x540/0x1830
[  825.271792]  ? blkpg_ioctl+0x8d0/0x8d0
[  825.275661]  ? trace_hardirqs_on+0x10/0x10
[  825.279877]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  825.284975]  ? debug_check_no_obj_freed+0x2c0/0x680
[  825.289974]  block_ioctl+0xd9/0x120
[  825.293584]  ? blkdev_fallocate+0x3a0/0x3a0
[  825.297889]  do_vfs_ioctl+0x75a/0xff0
[  825.301677]  ? lock_acquire+0x170/0x3f0
[  825.305641]  ? ioctl_preallocate+0x1a0/0x1a0
[  825.310030]  ? __fget+0x265/0x3e0
[  825.313464]  ? do_vfs_ioctl+0xff0/0xff0
[  825.317441]  ? security_file_ioctl+0x83/0xb0
[  825.321830]  SyS_ioctl+0x7f/0xb0
[  825.325176]  ? do_vfs_ioctl+0xff0/0xff0
[  825.329131]  do_syscall_64+0x1d5/0x640
[  825.333004]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  825.338176] RIP: 0033:0x7f6b8cbe3ec7
[  825.341873] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  825.349562] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  825.356811] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  825.364061] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  825.371317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  825.378575] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:37 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 27)

20:49:37 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'bond_slave_1\x00'}}, 0x1e)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

20:49:37 executing program 4:
syz_emit_ethernet(0xf, &(0x7f0000000240)={@link_local, @link_local, @void, {@generic={0x0, "1d"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:37 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/50)

20:49:37 executing program 3:
socketpair(0x26, 0x1, 0x0, 0x0)
socketpair(0x26, 0x1, 0x0, 0x0) (async)

20:49:37 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 31)

20:49:37 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/50)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/50) (async)

20:49:37 executing program 3:
socketpair(0x26, 0x1, 0x0, 0x0)

20:49:37 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:38 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'bond_slave_1\x00'}}, 0x1e)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'bond_slave_1\x00'}}, 0x1e) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)

[  825.546479] FAULT_INJECTION: forcing a failure.
[  825.546479] name failslab, interval 1, probability 0, space 0, times 0
20:49:38 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'bond_slave_1\x00'}}, 0x1e) (async)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

20:49:38 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/50)

[  825.590439] CPU: 0 PID: 21970 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  825.598347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  825.607711] Call Trace:
[  825.610301]  dump_stack+0x1b2/0x281
[  825.613940]  should_fail.cold+0x10a/0x149
[  825.618097]  should_failslab+0xd6/0x130
[  825.622079]  kmem_cache_alloc_node_trace+0x25a/0x400
[  825.627191]  __kmalloc_node_track_caller+0x38/0x70
[  825.632138]  __alloc_skb+0x96/0x510
[  825.635773]  kobject_uevent_env+0x882/0xf30
[  825.640105]  lo_ioctl+0x11a6/0x1cd0
[  825.643742]  ? loop_set_status64+0xe0/0xe0
[  825.647980]  blkdev_ioctl+0x540/0x1830
[  825.651874]  ? blkpg_ioctl+0x8d0/0x8d0
[  825.655765]  ? trace_hardirqs_on+0x10/0x10
[  825.660022]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  825.665142]  ? debug_check_no_obj_freed+0x2c0/0x680
[  825.670171]  block_ioctl+0xd9/0x120
[  825.673802]  ? blkdev_fallocate+0x3a0/0x3a0
[  825.678134]  do_vfs_ioctl+0x75a/0xff0
[  825.681930]  ? lock_acquire+0x170/0x3f0
[  825.685903]  ? ioctl_preallocate+0x1a0/0x1a0
[  825.690301]  ? __fget+0x265/0x3e0
[  825.693736]  ? do_vfs_ioctl+0xff0/0xff0
[  825.697696]  ? security_file_ioctl+0x83/0xb0
[  825.702197]  SyS_ioctl+0x7f/0xb0
[  825.705560]  ? do_vfs_ioctl+0xff0/0xff0
[  825.709529]  do_syscall_64+0x1d5/0x640
[  825.713467]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  825.718636] RIP: 0033:0x7fcd83ff2ec7
[  825.722326] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  825.730020] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  825.737276] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  825.744624] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  825.751909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  825.759169] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  825.774798] FAULT_INJECTION: forcing a failure.
[  825.774798] name failslab, interval 1, probability 0, space 0, times 0
[  825.789042] CPU: 1 PID: 21967 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  825.797047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  825.806400] Call Trace:
[  825.808988]  dump_stack+0x1b2/0x281
[  825.812616]  should_fail.cold+0x10a/0x149
[  825.816756]  should_failslab+0xd6/0x130
[  825.820714]  kmem_cache_alloc_node_trace+0x25a/0x400
[  825.825802]  __kmalloc_node_track_caller+0x38/0x70
[  825.830715]  __alloc_skb+0x96/0x510
[  825.834327]  kobject_uevent_env+0x882/0xf30
[  825.838652]  lo_ioctl+0x11a6/0x1cd0
[  825.842265]  ? loop_set_status64+0xe0/0xe0
[  825.846489]  blkdev_ioctl+0x540/0x1830
[  825.850361]  ? blkpg_ioctl+0x8d0/0x8d0
[  825.854233]  ? trace_hardirqs_on+0x10/0x10
[  825.858458]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  825.863543]  ? debug_check_no_obj_freed+0x2c0/0x680
[  825.868562]  block_ioctl+0xd9/0x120
[  825.872174]  ? blkdev_fallocate+0x3a0/0x3a0
[  825.876476]  do_vfs_ioctl+0x75a/0xff0
[  825.880260]  ? lock_acquire+0x170/0x3f0
[  825.884216]  ? ioctl_preallocate+0x1a0/0x1a0
[  825.888610]  ? __fget+0x265/0x3e0
[  825.892048]  ? do_vfs_ioctl+0xff0/0xff0
[  825.896006]  ? security_file_ioctl+0x83/0xb0
[  825.900397]  SyS_ioctl+0x7f/0xb0
[  825.903759]  ? do_vfs_ioctl+0xff0/0xff0
[  825.907717]  do_syscall_64+0x1d5/0x640
[  825.911594]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  825.916873] RIP: 0033:0x7f6b8cbe3ec7
[  825.920582] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  825.928272] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  825.935537] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  825.942788] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  825.950040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  825.957291] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:38 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 28)

20:49:38 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x1, @broadcast, 'pimreg1\x00'}}, 0x1e)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppoe(r2, &(0x7f0000000000)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'xfrm0\x00'}}, 0x1e)

20:49:38 executing program 0:
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200080c0}, 0x800)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:38 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:38 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881)

20:49:38 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 32)

20:49:38 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x1, @broadcast, 'pimreg1\x00'}}, 0x1e) (async, rerun: 64)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/timer_list\x00', 0x0, 0x0) (rerun: 64)
connect$pppoe(r2, &(0x7f0000000000)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'xfrm0\x00'}}, 0x1e)

20:49:38 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x1, @broadcast, 'pimreg1\x00'}}, 0x1e)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/timer_list\x00', 0x0, 0x0)
connect$pppoe(r2, &(0x7f0000000000)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'xfrm0\x00'}}, 0x1e)

20:49:38 executing program 4:
syz_emit_ethernet(0x0, 0x0, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:38 executing program 0:
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200080c0}, 0x800)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200080c0}, 0x800) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)

[  826.080575] FAULT_INJECTION: forcing a failure.
[  826.080575] name failslab, interval 1, probability 0, space 0, times 0
20:49:38 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) (async)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1) (async)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xce) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0) (async)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881)

20:49:38 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

[  826.151899] CPU: 1 PID: 22007 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  826.159812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  826.169192] Call Trace:
[  826.169208]  dump_stack+0x1b2/0x281
[  826.175405]  should_fail.cold+0x10a/0x149
[  826.179564]  should_failslab+0xd6/0x130
[  826.183549]  kmem_cache_alloc_node+0x263/0x410
[  826.188141]  __alloc_skb+0x5c/0x510
[  826.191783]  kobject_uevent_env+0x882/0xf30
[  826.196122]  lo_ioctl+0x11a6/0x1cd0
[  826.199757]  ? loop_set_status64+0xe0/0xe0
[  826.203993]  blkdev_ioctl+0x540/0x1830
[  826.207869]  ? blkpg_ioctl+0x8d0/0x8d0
[  826.211740]  ? trace_hardirqs_on+0x10/0x10
[  826.215957]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  826.221052]  ? debug_check_no_obj_freed+0x2c0/0x680
[  826.226047]  block_ioctl+0xd9/0x120
[  826.229653]  ? blkdev_fallocate+0x3a0/0x3a0
[  826.233954]  do_vfs_ioctl+0x75a/0xff0
[  826.237737]  ? lock_acquire+0x170/0x3f0
[  826.241786]  ? ioctl_preallocate+0x1a0/0x1a0
[  826.246186]  ? __fget+0x265/0x3e0
[  826.249624]  ? do_vfs_ioctl+0xff0/0xff0
[  826.253583]  ? security_file_ioctl+0x83/0xb0
[  826.257980]  SyS_ioctl+0x7f/0xb0
[  826.261341]  ? do_vfs_ioctl+0xff0/0xff0
[  826.265292]  do_syscall_64+0x1d5/0x640
[  826.269173]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  826.274784] RIP: 0033:0x7fcd83ff2ec7
[  826.278488] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  826.286174] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  826.293421] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  826.300691] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  826.307944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  826.315365] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  826.349018] FAULT_INJECTION: forcing a failure.
[  826.349018] name failslab, interval 1, probability 0, space 0, times 0
[  826.362205] CPU: 0 PID: 22019 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  826.370097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  826.379445] Call Trace:
[  826.382034]  dump_stack+0x1b2/0x281
[  826.385656]  should_fail.cold+0x10a/0x149
[  826.389790]  should_failslab+0xd6/0x130
[  826.393751]  kmem_cache_alloc_node_trace+0x25a/0x400
[  826.398841]  __kmalloc_node_track_caller+0x38/0x70
[  826.403755]  __alloc_skb+0x96/0x510
[  826.407368]  kobject_uevent_env+0x882/0xf30
[  826.411676]  lo_ioctl+0x11a6/0x1cd0
[  826.415302]  ? loop_set_status64+0xe0/0xe0
[  826.419523]  blkdev_ioctl+0x540/0x1830
[  826.423392]  ? blkpg_ioctl+0x8d0/0x8d0
[  826.427267]  ? trace_hardirqs_on+0x10/0x10
[  826.431491]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  826.436578]  ? debug_check_no_obj_freed+0x2c0/0x680
[  826.441581]  block_ioctl+0xd9/0x120
[  826.445205]  ? blkdev_fallocate+0x3a0/0x3a0
[  826.449514]  do_vfs_ioctl+0x75a/0xff0
[  826.453303]  ? lock_acquire+0x170/0x3f0
[  826.457275]  ? ioctl_preallocate+0x1a0/0x1a0
[  826.461669]  ? __fget+0x265/0x3e0
[  826.465107]  ? do_vfs_ioctl+0xff0/0xff0
[  826.469090]  ? security_file_ioctl+0x83/0xb0
[  826.473482]  SyS_ioctl+0x7f/0xb0
[  826.476848]  ? do_vfs_ioctl+0xff0/0xff0
[  826.480809]  do_syscall_64+0x1d5/0x640
[  826.484685]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  826.489874] RIP: 0033:0x7f6b8cbe3ec7
[  826.493566] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  826.501260] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  826.508510] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  826.515762] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  826.523014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  826.530271] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:39 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 29)

20:49:39 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, 0x0)

20:49:39 executing program 0:
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0xfff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200080c0}, 0x800) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:39 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:39 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0) (async)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1) (async)
syz_init_net_socket$ax25(0x3, 0x5, 0xce) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0) (async)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000) (async)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881) (async)

20:49:39 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 33)

[  826.642481] FAULT_INJECTION: forcing a failure.
[  826.642481] name failslab, interval 1, probability 0, space 0, times 0
[  826.662314] CPU: 0 PID: 22051 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  826.670224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  826.679582] Call Trace:
[  826.682172]  dump_stack+0x1b2/0x281
[  826.685817]  should_fail.cold+0x10a/0x149
[  826.689979]  should_failslab+0xd6/0x130
[  826.693966]  kmem_cache_alloc_node_trace+0x25a/0x400
[  826.699081]  __kmalloc_node_track_caller+0x38/0x70
[  826.704017]  __alloc_skb+0x96/0x510
[  826.707654]  kobject_uevent_env+0x882/0xf30
[  826.711992]  lo_ioctl+0x11a6/0x1cd0
[  826.715632]  ? loop_set_status64+0xe0/0xe0
[  826.719878]  blkdev_ioctl+0x540/0x1830
[  826.723770]  ? blkpg_ioctl+0x8d0/0x8d0
[  826.727658]  ? trace_hardirqs_on+0x10/0x10
[  826.731902]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  826.737018]  ? debug_check_no_obj_freed+0x2c0/0x680
20:49:39 executing program 0:
socketpair(0x25, 0x3, 0x3, 0x0)

20:49:39 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:39 executing program 3:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000042c0), 0x2000, 0x0)
write$FUSE_POLL(r0, &(0x7f0000004300)={0x18, 0xfffffffffffffffe, 0x0, {0xffffffff}}, 0x18)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r1=>0x0}, 0x2020)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
write$cgroup_freezer_state(r3, &(0x7f0000006440)='THAWED\x00', 0x7)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
read$FUSE(r2, &(0x7f0000004340)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000006380)={0x20, 0x0, r4, {0xfffffeb9, 0x0, 0x3d, 0x95e}}, 0x20)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000063c0), 0x802, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r5, 0xc00864bf, &(0x7f0000006400)={0x0, 0x1})
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000040c0)=ANY=[@ANYBLOB="f001000000000000", @ANYRES64=r1, @ANYBLOB="030000000000000000000000000000000200000000000000ff0100000000000001000000010000000200000000000000770500000000000081000000000000000300000000000000ff0300000000000001800000000000000000000005000000ffff0000004000007d0c0000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="08000000010100000000000000000000000000000100000000000000010000000800000000000000000000000200000000000000020000000000000004000000000000000100000000000000703a0000ac000000030000000000000004000000000000003f00000000000000020000000000000007000000000000000000000000000000ff0f000006000000be0000000040000001000100", @ANYRES32, @ANYRES32, @ANYBLOB="a99200000000000000000000060000000000000000000000010000002cffffff070000002c2d252f26212e00050000000000000003000000000000000300000000000000af7c000000000000010000006364000003000000000000000000000000000000020000000000000002000000000000007100000000000000000700000000000000040000010000004700000000100000cc000000", @ANYRES32=r7, @ANYRES32=0xee01, @ANYBLOB="04000000162b0000000000000100000000000000000000000000008001000000ff0f00"/44], 0x1f0)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x4, 0x10001, 0x7, 0x81000})
socketpair(0x26, 0x5, 0x0, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000006480), 0x2, 0x0)
write$FUSE_GETXATTR(r8, &(0x7f00000064c0)={0x18, 0x0, r6, {0xffff}}, 0x18)

20:49:39 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:39 executing program 0:
socketpair(0x25, 0x3, 0x3, 0x0)

[  826.742045]  block_ioctl+0xd9/0x120
[  826.745700]  ? blkdev_fallocate+0x3a0/0x3a0
[  826.750030]  do_vfs_ioctl+0x75a/0xff0
[  826.753844]  ? lock_acquire+0x170/0x3f0
[  826.757824]  ? ioctl_preallocate+0x1a0/0x1a0
[  826.762241]  ? __fget+0x265/0x3e0
[  826.765713]  ? do_vfs_ioctl+0xff0/0xff0
[  826.769696]  ? security_file_ioctl+0x83/0xb0
[  826.774108]  SyS_ioctl+0x7f/0xb0
[  826.777472]  ? do_vfs_ioctl+0xff0/0xff0
[  826.781453]  do_syscall_64+0x1d5/0x640
[  826.785350]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
20:49:39 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
write$sysctl(r0, &(0x7f00000001c0)='7\x00', 0x2)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
bind$l2tp(r1, &(0x7f0000000200)={0x2, 0x0, @local, 0x4}, 0x10)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r3=>0x0})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmstat\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, r3], &(0x7f0000000100), 0x4, 0x1})

[  826.790819] RIP: 0033:0x7f6b8cbe3ec7
[  826.794527] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  826.802237] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  826.809510] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  826.816794] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  826.824164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
20:49:39 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 30)

20:49:39 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881)

20:49:39 executing program 0:
socketpair(0x25, 0x3, 0x3, 0x0)

20:49:39 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 34)

20:49:39 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
write$sysctl(r0, &(0x7f00000001c0)='7\x00', 0x2) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
bind$l2tp(r1, &(0x7f0000000200)={0x2, 0x0, @local, 0x4}, 0x10) (async)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r3=>0x0}) (async, rerun: 32)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmstat\x00', 0x0, 0x0) (rerun: 32)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, r3], &(0x7f0000000100), 0x4, 0x1})

20:49:39 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0x80045500, &(0x7f0000000000))

[  826.824170] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  826.844097] FAULT_INJECTION: forcing a failure.
[  826.844097] name failslab, interval 1, probability 0, space 0, times 0
[  826.844109] CPU: 1 PID: 22070 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
20:49:39 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0x80045500, &(0x7f0000000000))

[  826.844115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  826.844119] Call Trace:
[  826.844133]  dump_stack+0x1b2/0x281
[  826.844150]  should_fail.cold+0x10a/0x149
[  826.844171]  should_failslab+0xd6/0x130
[  826.844190]  kmem_cache_alloc_node_trace+0x25a/0x400
[  826.844205]  __kmalloc_node_track_caller+0x38/0x70
[  826.844216]  __alloc_skb+0x96/0x510
20:49:39 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async, rerun: 32)
ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0x80045500, &(0x7f0000000000)) (rerun: 32)

[  826.844229]  kobject_uevent_env+0x882/0xf30
[  826.844246]  lo_ioctl+0x11a6/0x1cd0
[  826.844258]  ? loop_set_status64+0xe0/0xe0
[  826.844270]  blkdev_ioctl+0x540/0x1830
[  826.844281]  ? blkpg_ioctl+0x8d0/0x8d0
[  826.844290]  ? trace_hardirqs_on+0x10/0x10
[  826.844302]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  826.844312]  ? debug_check_no_obj_freed+0x2c0/0x680
[  826.844326]  block_ioctl+0xd9/0x120
[  826.844334]  ? blkdev_fallocate+0x3a0/0x3a0
[  826.844344]  do_vfs_ioctl+0x75a/0xff0
[  826.844353]  ? lock_acquire+0x170/0x3f0
[  826.844363]  ? ioctl_preallocate+0x1a0/0x1a0
[  826.844374]  ? __fget+0x265/0x3e0
[  826.844385]  ? do_vfs_ioctl+0xff0/0xff0
[  826.844396]  ? security_file_ioctl+0x83/0xb0
[  826.844406]  SyS_ioctl+0x7f/0xb0
[  826.844414]  ? do_vfs_ioctl+0xff0/0xff0
[  826.844425]  do_syscall_64+0x1d5/0x640
[  826.844439]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  826.844447] RIP: 0033:0x7fcd83ff2ec7
[  826.844451] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  826.844462] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  826.844468] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  826.844473] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  826.844479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  826.844485] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  826.963213] FAULT_INJECTION: forcing a failure.
[  826.963213] name failslab, interval 1, probability 0, space 0, times 0
[  827.042621] FAULT_INJECTION: forcing a failure.
[  827.042621] name failslab, interval 1, probability 0, space 0, times 0
[  827.086914] CPU: 0 PID: 22100 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  827.152413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  827.152417] Call Trace:
[  827.152433]  dump_stack+0x1b2/0x281
[  827.152444]  should_fail.cold+0x10a/0x149
[  827.152455]  should_failslab+0xd6/0x130
[  827.152477]  kmem_cache_alloc_trace+0x29a/0x3d0
[  827.152488]  ? kobj_ns_drop+0x80/0x80
[  827.152501]  call_usermodehelper_setup+0x73/0x2e0
[  827.152514]  kobject_uevent_env+0xc21/0xf30
[  827.152534]  lo_ioctl+0x11a6/0x1cd0
[  827.152554]  ? loop_set_status64+0xe0/0xe0
[  827.152568]  blkdev_ioctl+0x540/0x1830
[  827.152576]  ? blkpg_ioctl+0x8d0/0x8d0
[  827.152585]  ? trace_hardirqs_on+0x10/0x10
[  827.152599]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  827.152609]  ? debug_check_no_obj_freed+0x2c0/0x680
[  827.152624]  block_ioctl+0xd9/0x120
[  827.152631]  ? blkdev_fallocate+0x3a0/0x3a0
[  827.152638]  do_vfs_ioctl+0x75a/0xff0
[  827.152646]  ? lock_acquire+0x170/0x3f0
[  827.152653]  ? ioctl_preallocate+0x1a0/0x1a0
[  827.152662]  ? __fget+0x265/0x3e0
[  827.152670]  ? do_vfs_ioctl+0xff0/0xff0
[  827.152679]  ? security_file_ioctl+0x83/0xb0
[  827.152687]  SyS_ioctl+0x7f/0xb0
[  827.152692]  ? do_vfs_ioctl+0xff0/0xff0
[  827.152701]  do_syscall_64+0x1d5/0x640
[  827.152712]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  827.152719] RIP: 0033:0x7fcd83ff2ec7
[  827.152722] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  827.152730] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
[  827.152735] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  827.152739] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  827.152743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  827.152747] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  827.152765] CPU: 1 PID: 22110 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  827.152770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  827.152773] Call Trace:
[  827.152781]  dump_stack+0x1b2/0x281
[  827.152792]  should_fail.cold+0x10a/0x149
[  827.152804]  should_failslab+0xd6/0x130
[  827.152814]  kmem_cache_alloc_node+0x263/0x410
[  827.152829]  __alloc_skb+0x5c/0x510
[  827.152840]  kobject_uevent_env+0x882/0xf30
[  827.152856]  lo_ioctl+0x11a6/0x1cd0
[  827.152868]  ? loop_set_status64+0xe0/0xe0
[  827.152879]  blkdev_ioctl+0x540/0x1830
[  827.152888]  ? blkpg_ioctl+0x8d0/0x8d0
[  827.152897]  ? trace_hardirqs_on+0x10/0x10
[  827.152909]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  827.152917]  ? debug_check_no_obj_freed+0x2c0/0x680
[  827.152929]  block_ioctl+0xd9/0x120
[  827.152936]  ? blkdev_fallocate+0x3a0/0x3a0
[  827.152943]  do_vfs_ioctl+0x75a/0xff0
[  827.152950]  ? lock_acquire+0x170/0x3f0
[  827.152957]  ? ioctl_preallocate+0x1a0/0x1a0
[  827.152967]  ? __fget+0x265/0x3e0
[  827.152975]  ? do_vfs_ioctl+0xff0/0xff0
[  827.152984]  ? security_file_ioctl+0x83/0xb0
[  827.152992]  SyS_ioctl+0x7f/0xb0
[  827.152998]  ? do_vfs_ioctl+0xff0/0xff0
[  827.153006]  do_syscall_64+0x1d5/0x640
[  827.153019]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  827.153025] RIP: 0033:0x7f6b8cbe3ec7
[  827.153030] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
20:49:40 executing program 3:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000042c0), 0x2000, 0x0)
write$FUSE_POLL(r0, &(0x7f0000004300)={0x18, 0xfffffffffffffffe, 0x0, {0xffffffff}}, 0x18) (async, rerun: 64)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r1=>0x0}, 0x2020) (rerun: 64)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
write$cgroup_freezer_state(r3, &(0x7f0000006440)='THAWED\x00', 0x7)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
read$FUSE(r2, &(0x7f0000004340)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000006380)={0x20, 0x0, r4, {0xfffffeb9, 0x0, 0x3d, 0x95e}}, 0x20) (async, rerun: 64)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000063c0), 0x802, 0x0) (rerun: 64)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r5, 0xc00864bf, &(0x7f0000006400)={0x0, 0x1}) (async, rerun: 32)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020) (rerun: 32)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000040c0)=ANY=[@ANYBLOB="f001000000000000", @ANYRES64=r1, @ANYBLOB="030000000000000000000000000000000200000000000000ff0100000000000001000000010000000200000000000000770500000000000081000000000000000300000000000000ff0300000000000001800000000000000000000005000000ffff0000004000007d0c0000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="08000000010100000000000000000000000000000100000000000000010000000800000000000000000000000200000000000000020000000000000004000000000000000100000000000000703a0000ac000000030000000000000004000000000000003f00000000000000020000000000000007000000000000000000000000000000ff0f000006000000be0000000040000001000100", @ANYRES32, @ANYRES32, @ANYBLOB="a99200000000000000000000060000000000000000000000010000002cffffff070000002c2d252f26212e00050000000000000003000000000000000300000000000000af7c000000000000010000006364000003000000000000000000000000000000020000000000000002000000000000007100000000000000000700000000000000040000010000004700000000100000cc000000", @ANYRES32=r7, @ANYRES32=0xee01, @ANYBLOB="04000000162b0000000000000100000000000000000000000000008001000000ff0f00"/44], 0x1f0) (async)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x4, 0x10001, 0x7, 0x81000})
socketpair(0x26, 0x5, 0x0, 0x0) (async, rerun: 64)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000006480), 0x2, 0x0) (rerun: 64)
write$FUSE_GETXATTR(r8, &(0x7f00000064c0)={0x18, 0x0, r6, {0xffff}}, 0x18)

20:49:40 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
write$sysctl(r0, &(0x7f00000001c0)='7\x00', 0x2)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
bind$l2tp(r1, &(0x7f0000000200)={0x2, 0x0, @local, 0x4}, 0x10)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r3=>0x0})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmstat\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, r3], &(0x7f0000000100), 0x4, 0x1})
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
write$sysctl(r0, &(0x7f00000001c0)='7\x00', 0x2) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
bind$l2tp(r1, &(0x7f0000000200)={0x2, 0x0, @local, 0x4}, 0x10) (async)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/vmstat\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, r3], &(0x7f0000000100), 0x4, 0x1}) (async)

20:49:40 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
socketpair(0x21, 0x800, 0x4, &(0x7f0000000300))
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000040)={0x290, 0x0, 0x0, [{{0x2, 0x3, 0x963, 0x8, 0x3, 0x1800, {0x0, 0x0, 0x8, 0x1, 0x200000000000000, 0x9, 0x4, 0x712dd3e7, 0xf3e1, 0x8000, 0x7c, 0xffffffffffffffff, 0xee00, 0x9, 0x80}}, {0x5, 0x8, 0x3, 0x3, '/\','}}, {{0x1, 0x2, 0x4, 0x9, 0x800, 0xd4a2, {0x3, 0x0, 0xfffffffffffffffe, 0x8, 0x3, 0x80, 0xeb5, 0x8, 0x7, 0xc000, 0x8001, 0xffffffffffffffff, 0x0, 0x9, 0x1}}, {0x0, 0x9, 0x1, 0x3, '^'}}, {{0x4, 0x0, 0xa00000000, 0x2, 0x4, 0x8001, {0x1, 0x2, 0x2, 0x829d, 0x6, 0x8, 0x7ff, 0x1, 0x3, 0x2000, 0xff, 0xee01, 0x0, 0x77, 0xec9d}}, {0x2, 0x7fff, 0x3, 0x60be8bab, '-&\\'}}, {{0x3, 0x0, 0x80000000, 0x7, 0x10001, 0x288, {0x4, 0x3ff, 0x800000000000000, 0x5, 0x6, 0x5, 0x3, 0x3, 0x100, 0xc000, 0x7, 0xee00, 0xee00, 0x8, 0x8000}}, {0x4, 0x2, 0x4, 0x1ff, '*\xcc(@'}}]}, 0x290)
ioctl$SNDCTL_SEQ_RESET(0xffffffffffffffff, 0x5100)
ioctl$SIOCAX25DELFWD(0xffffffffffffffff, 0x89eb, &(0x7f0000000000)={@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

20:49:40 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 31)

20:49:40 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 35)

20:49:40 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881)

[  827.153039] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  827.153044] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  827.153049] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  827.153055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  827.153060] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:40 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
socketpair(0x21, 0x800, 0x4, &(0x7f0000000300))
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000040)={0x290, 0x0, 0x0, [{{0x2, 0x3, 0x963, 0x8, 0x3, 0x1800, {0x0, 0x0, 0x8, 0x1, 0x200000000000000, 0x9, 0x4, 0x712dd3e7, 0xf3e1, 0x8000, 0x7c, 0xffffffffffffffff, 0xee00, 0x9, 0x80}}, {0x5, 0x8, 0x3, 0x3, '/\','}}, {{0x1, 0x2, 0x4, 0x9, 0x800, 0xd4a2, {0x3, 0x0, 0xfffffffffffffffe, 0x8, 0x3, 0x80, 0xeb5, 0x8, 0x7, 0xc000, 0x8001, 0xffffffffffffffff, 0x0, 0x9, 0x1}}, {0x0, 0x9, 0x1, 0x3, '^'}}, {{0x4, 0x0, 0xa00000000, 0x2, 0x4, 0x8001, {0x1, 0x2, 0x2, 0x829d, 0x6, 0x8, 0x7ff, 0x1, 0x3, 0x2000, 0xff, 0xee01, 0x0, 0x77, 0xec9d}}, {0x2, 0x7fff, 0x3, 0x60be8bab, '-&\\'}}, {{0x3, 0x0, 0x80000000, 0x7, 0x10001, 0x288, {0x4, 0x3ff, 0x800000000000000, 0x5, 0x6, 0x5, 0x3, 0x3, 0x100, 0xc000, 0x7, 0xee00, 0xee00, 0x8, 0x8000}}, {0x4, 0x2, 0x4, 0x1ff, '*\xcc(@'}}]}, 0x290) (async)
ioctl$SNDCTL_SEQ_RESET(0xffffffffffffffff, 0x5100) (async)
ioctl$SIOCAX25DELFWD(0xffffffffffffffff, 0x89eb, &(0x7f0000000000)={@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

20:49:40 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000040)={0xfffffffd, 0xc, [0x219, 0x0, 0x9]})
read$FUSE(r0, &(0x7f0000000440)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r1, {0x7, 0x24, 0x8, 0x100000, 0x8, 0x2, 0x4, 0xfffffe01}}, 0x50)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000080)={0x1, 0x17, 0x7, 0x4000})

20:49:40 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r1)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r3, 0x40045408)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="04002cbd7000fcdbdf2504000000080002000500000028000188050002003f00000014000400fe88000000000000000000000000010108000600020000003c0001800500020020000000060001000800000008cbe48fd77e0006000500000008000300ac1414bb060001000a000000050002000500000008000300ac1435aa0800020007000000080003"], 0x90}, 0x1, 0x0, 0x0, 0x8000}, 0x881)

[  827.698019] FAULT_INJECTION: forcing a failure.
[  827.698019] name failslab, interval 1, probability 0, space 0, times 0
[  827.740809] CPU: 1 PID: 22162 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  827.748718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  827.758112] Call Trace:
[  827.760709]  dump_stack+0x1b2/0x281
[  827.764346]  should_fail.cold+0x10a/0x149
[  827.768501]  should_failslab+0xd6/0x130
[  827.772901]  kmem_cache_alloc_node_trace+0x25a/0x400
[  827.777990]  __kmalloc_node_track_caller+0x38/0x70
[  827.782903]  __alloc_skb+0x96/0x510
[  827.786511]  kobject_uevent_env+0x882/0xf30
[  827.790816]  lo_ioctl+0x11a6/0x1cd0
[  827.794424]  ? loop_set_status64+0xe0/0xe0
[  827.798691]  blkdev_ioctl+0x540/0x1830
[  827.802568]  ? blkpg_ioctl+0x8d0/0x8d0
[  827.806441]  ? trace_hardirqs_on+0x10/0x10
[  827.810656]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  827.815743]  ? debug_check_no_obj_freed+0x2c0/0x680
[  827.820754]  block_ioctl+0xd9/0x120
[  827.824391]  ? blkdev_fallocate+0x3a0/0x3a0
[  827.824405]  do_vfs_ioctl+0x75a/0xff0
[  827.832521]  ? lock_acquire+0x170/0x3f0
[  827.836493]  ? ioctl_preallocate+0x1a0/0x1a0
[  827.840900]  ? __fget+0x265/0x3e0
[  827.844357]  ? do_vfs_ioctl+0xff0/0xff0
[  827.848328]  ? security_file_ioctl+0x83/0xb0
[  827.852719]  SyS_ioctl+0x7f/0xb0
[  827.856060]  ? do_vfs_ioctl+0xff0/0xff0
[  827.860013]  do_syscall_64+0x1d5/0x640
[  827.863881]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  827.869139] RIP: 0033:0x7fcd83ff2ec7
[  827.872828] RSP: 002b:00007fcd82967f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  827.880602] RAX: ffffffffffffffda RBX: 00007fcd8403ca20 RCX: 00007fcd83ff2ec7
20:49:40 executing program 3:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000042c0), 0x2000, 0x0)
write$FUSE_POLL(r0, &(0x7f0000004300)={0x18, 0xfffffffffffffffe, 0x0, {0xffffffff}}, 0x18) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r1=>0x0}, 0x2020)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
write$cgroup_freezer_state(r3, &(0x7f0000006440)='THAWED\x00', 0x7) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
read$FUSE(r2, &(0x7f0000004340)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000006380)={0x20, 0x0, r4, {0xfffffeb9, 0x0, 0x3d, 0x95e}}, 0x20)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000063c0), 0x802, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r5, 0xc00864bf, &(0x7f0000006400)={0x0, 0x1}) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000040c0)=ANY=[@ANYBLOB="f001000000000000", @ANYRES64=r1, @ANYBLOB="030000000000000000000000000000000200000000000000ff0100000000000001000000010000000200000000000000770500000000000081000000000000000300000000000000ff0300000000000001800000000000000000000005000000ffff0000004000007d0c0000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="08000000010100000000000000000000000000000100000000000000010000000800000000000000000000000200000000000000020000000000000004000000000000000100000000000000703a0000ac000000030000000000000004000000000000003f00000000000000020000000000000007000000000000000000000000000000ff0f000006000000be0000000040000001000100", @ANYRES32, @ANYRES32, @ANYBLOB="a99200000000000000000000060000000000000000000000010000002cffffff070000002c2d252f26212e00050000000000000003000000000000000300000000000000af7c000000000000010000006364000003000000000000000000000000000000020000000000000002000000000000007100000000000000000700000000000000040000010000004700000000100000cc000000", @ANYRES32=r7, @ANYRES32=0xee01, @ANYBLOB="04000000162b0000000000000100000000000000000000000000008001000000ff0f00"/44], 0x1f0)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x4, 0x10001, 0x7, 0x81000}) (async)
socketpair(0x26, 0x5, 0x0, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000006480), 0x2, 0x0)
write$FUSE_GETXATTR(r8, &(0x7f00000064c0)={0x18, 0x0, r6, {0xffff}}, 0x18)

20:49:40 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
socketpair(0x21, 0x800, 0x4, &(0x7f0000000300)) (async)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000040)={0x290, 0x0, 0x0, [{{0x2, 0x3, 0x963, 0x8, 0x3, 0x1800, {0x0, 0x0, 0x8, 0x1, 0x200000000000000, 0x9, 0x4, 0x712dd3e7, 0xf3e1, 0x8000, 0x7c, 0xffffffffffffffff, 0xee00, 0x9, 0x80}}, {0x5, 0x8, 0x3, 0x3, '/\','}}, {{0x1, 0x2, 0x4, 0x9, 0x800, 0xd4a2, {0x3, 0x0, 0xfffffffffffffffe, 0x8, 0x3, 0x80, 0xeb5, 0x8, 0x7, 0xc000, 0x8001, 0xffffffffffffffff, 0x0, 0x9, 0x1}}, {0x0, 0x9, 0x1, 0x3, '^'}}, {{0x4, 0x0, 0xa00000000, 0x2, 0x4, 0x8001, {0x1, 0x2, 0x2, 0x829d, 0x6, 0x8, 0x7ff, 0x1, 0x3, 0x2000, 0xff, 0xee01, 0x0, 0x77, 0xec9d}}, {0x2, 0x7fff, 0x3, 0x60be8bab, '-&\\'}}, {{0x3, 0x0, 0x80000000, 0x7, 0x10001, 0x288, {0x4, 0x3ff, 0x800000000000000, 0x5, 0x6, 0x5, 0x3, 0x3, 0x100, 0xc000, 0x7, 0xee00, 0xee00, 0x8, 0x8000}}, {0x4, 0x2, 0x4, 0x1ff, '*\xcc(@'}}]}, 0x290) (async, rerun: 32)
ioctl$SNDCTL_SEQ_RESET(0xffffffffffffffff, 0x5100) (async, rerun: 32)
ioctl$SIOCAX25DELFWD(0xffffffffffffffff, 0x89eb, &(0x7f0000000000)={@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

20:49:40 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000040)={0xfffffffd, 0xc, [0x219, 0x0, 0x9]})
read$FUSE(r0, &(0x7f0000000440)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r1, {0x7, 0x24, 0x8, 0x100000, 0x8, 0x2, 0x4, 0xfffffe01}}, 0x50)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000080)={0x1, 0x17, 0x7, 0x4000})
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000040)={0xfffffffd, 0xc, [0x219, 0x0, 0x9]}) (async)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020) (async)
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r1, {0x7, 0x24, 0x8, 0x100000, 0x8, 0x2, 0x4, 0xfffffe01}}, 0x50) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0) (async)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000080)={0x1, 0x17, 0x7, 0x4000}) (async)

[  827.888025] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  827.895460] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007fcd829681d0
[  827.902723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  827.909976] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:40 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
r2 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r3, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r2, 0x40045408)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r1, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xffffffff}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x408d0}, 0x4801)

20:49:40 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x1f, 0xfb, 0x7f, 0x10000}, {0x3, 0x0, 0xd6, 0xffffffff}, {0x3, 0x4, 0xfd, 0xffffffff}, {0x1, 0xb8, 0x67, 0x1}, {0x3, 0x49, 0x0, 0x3ff}]})
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r0, 0x40082102, &(0x7f0000000080))
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

[  827.939928] FAULT_INJECTION: forcing a failure.
[  827.939928] name failslab, interval 1, probability 0, space 0, times 0
[  827.962627] CPU: 1 PID: 22158 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  827.970533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  827.979975] Call Trace:
[  827.982566]  dump_stack+0x1b2/0x281
[  827.986203]  should_fail.cold+0x10a/0x149
20:49:40 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000040)={0xfffffffd, 0xc, [0x219, 0x0, 0x9]}) (async)
read$FUSE(r0, &(0x7f0000000440)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r1, {0x7, 0x24, 0x8, 0x100000, 0x8, 0x2, 0x4, 0xfffffe01}}, 0x50) (async, rerun: 32)
r2 = socket$pppoe(0x18, 0x1, 0x0) (rerun: 32)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000080)={0x1, 0x17, 0x7, 0x4000})

[  827.990360]  should_failslab+0xd6/0x130
[  827.994433]  kmem_cache_alloc_node_trace+0x25a/0x400
[  827.999566]  __kmalloc_node_track_caller+0x38/0x70
[  827.999581]  __alloc_skb+0x96/0x510
[  828.008131]  kobject_uevent_env+0x882/0xf30
[  828.012590]  lo_ioctl+0x11a6/0x1cd0
[  828.016222]  ? loop_set_status64+0xe0/0xe0
[  828.020466]  blkdev_ioctl+0x540/0x1830
[  828.024447]  ? blkpg_ioctl+0x8d0/0x8d0
[  828.028334]  ? trace_hardirqs_on+0x10/0x10
[  828.032575]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  828.037777]  ? debug_check_no_obj_freed+0x2c0/0x680
[  828.042886]  block_ioctl+0xd9/0x120
[  828.046517]  ? blkdev_fallocate+0x3a0/0x3a0
[  828.050846]  do_vfs_ioctl+0x75a/0xff0
[  828.054649]  ? lock_acquire+0x170/0x3f0
[  828.058637]  ? ioctl_preallocate+0x1a0/0x1a0
[  828.058649]  ? __fget+0x265/0x3e0
[  828.066503]  ? do_vfs_ioctl+0xff0/0xff0
[  828.070491]  ? security_file_ioctl+0x83/0xb0
[  828.074950]  SyS_ioctl+0x7f/0xb0
[  828.078325]  ? do_vfs_ioctl+0xff0/0xff0
[  828.082301]  do_syscall_64+0x1d5/0x640
[  828.086180]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  828.091349] RIP: 0033:0x7f6b8cbe3ec7
[  828.095042] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  828.102772] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  828.110074] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  828.117322] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  828.124576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  828.131830] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:40 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 32)

20:49:40 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r2, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, @multicast2}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x4}, @L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x7fffffff}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xd0}, 0x8000)
ioctl$SNDCTL_TMR_SELECT(r1, 0x40045408)

20:49:40 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000002080)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r0, 0xc01064c1, &(0x7f00000020c0)={r1})
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f00000021c0)={&(0x7f0000002100)="001f1b21648d7f060fb5e9b64f743d9b0c40150f0448e4d8eb9bc851ad444925caaff75e11d5854474f0e5e21367a86538938b87a4f263362584d79ece1578679f9277cbb36d391b79d80c6c41376a2de85d6cf42ff80f0e950d6fafd674a287b12116aef66a077e167a57039bf6a8328615373e7b9999fa54cc5c8799a62bd0af186a2405fecd0d43677e517977d7727fc4d292394848d0b88bd0f4289a2d1d1f7d42fbbac72f1b05d3", 0xaa, <r4=>0x0})
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r3, 0xc00464be, &(0x7f0000002200)={r4})
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020)

20:49:40 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x1f, 0xfb, 0x7f, 0x10000}, {0x3, 0x0, 0xd6, 0xffffffff}, {0x3, 0x4, 0xfd, 0xffffffff}, {0x1, 0xb8, 0x67, 0x1}, {0x3, 0x49, 0x0, 0x3ff}]})
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r0, 0x40082102, &(0x7f0000000080)) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0)

20:49:40 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
socketpair(0x22, 0x2, 0x10001, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={r1, r2, 0x8001})
r3 = getpgid(r0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$key(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="020400000700000000bd7000ffdbdf250400020001000100030000000000000000010000000000000000"], 0x30}}, 0x1)
getpgid(r3)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000080)={0x0, <r5=>0x0})
ptrace$poke(0x4, r5, &(0x7f0000000100), 0x8)

20:49:40 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 36)

20:49:40 executing program 0:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x1f, 0xfb, 0x7f, 0x10000}, {0x3, 0x0, 0xd6, 0xffffffff}, {0x3, 0x4, 0xfd, 0xffffffff}, {0x1, 0xb8, 0x67, 0x1}, {0x3, 0x49, 0x0, 0x3ff}]})
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r0, 0x40082102, &(0x7f0000000080))
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x5, &(0x7f0000000000)=[{0x1f, 0xfb, 0x7f, 0x10000}, {0x3, 0x0, 0xd6, 0xffffffff}, {0x3, 0x4, 0xfd, 0xffffffff}, {0x1, 0xb8, 0x67, 0x1}, {0x3, 0x49, 0x0, 0x3ff}]}) (async)
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r0, 0x40082102, &(0x7f0000000080)) (async)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)

20:49:40 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000002080)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r0, 0xc01064c1, &(0x7f00000020c0)={r1})
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f00000021c0)={&(0x7f0000002100)="001f1b21648d7f060fb5e9b64f743d9b0c40150f0448e4d8eb9bc851ad444925caaff75e11d5854474f0e5e21367a86538938b87a4f263362584d79ece1578679f9277cbb36d391b79d80c6c41376a2de85d6cf42ff80f0e950d6fafd674a287b12116aef66a077e167a57039bf6a8328615373e7b9999fa54cc5c8799a62bd0af186a2405fecd0d43677e517977d7727fc4d292394848d0b88bd0f4289a2d1d1f7d42fbbac72f1b05d3", 0xaa, <r4=>0x0})
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r3, 0xc00464be, &(0x7f0000002200)={r4})
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020)

[  828.221010] FAULT_INJECTION: forcing a failure.
[  828.221010] name failslab, interval 1, probability 0, space 0, times 0
[  828.245266] CPU: 1 PID: 22217 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  828.253174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  828.262525] Call Trace:
[  828.265120]  dump_stack+0x1b2/0x281
20:49:40 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
ioctl$SNDCTL_TMR_SELECT(r1, 0x40045408)

[  828.268773]  should_fail.cold+0x10a/0x149
[  828.272948]  should_failslab+0xd6/0x130
[  828.272962]  kmem_cache_alloc_node+0x263/0x410
[  828.281521]  __alloc_skb+0x5c/0x510
[  828.285154]  kobject_uevent_env+0x882/0xf30
[  828.289491]  lo_ioctl+0x11a6/0x1cd0
[  828.293157]  ? loop_set_status64+0xe0/0xe0
[  828.297402]  blkdev_ioctl+0x540/0x1830
[  828.301309]  ? blkpg_ioctl+0x8d0/0x8d0
[  828.305377]  ? trace_hardirqs_on+0x10/0x10
[  828.309619]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  828.314724]  ? debug_check_no_obj_freed+0x2c0/0x680
20:49:40 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002040)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000002080)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r0, 0xc01064c1, &(0x7f00000020c0)={r1}) (async)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f00000021c0)={&(0x7f0000002100)="001f1b21648d7f060fb5e9b64f743d9b0c40150f0448e4d8eb9bc851ad444925caaff75e11d5854474f0e5e21367a86538938b87a4f263362584d79ece1578679f9277cbb36d391b79d80c6c41376a2de85d6cf42ff80f0e950d6fafd674a287b12116aef66a077e167a57039bf6a8328615373e7b9999fa54cc5c8799a62bd0af186a2405fecd0d43677e517977d7727fc4d292394848d0b88bd0f4289a2d1d1f7d42fbbac72f1b05d3", 0xaa, <r4=>0x0})
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r3, 0xc00464be, &(0x7f0000002200)={r4}) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020)

20:49:40 executing program 0:
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="e0000000120000022dbd7000fedbde25626c616b6532732d3136302d61726d000000000000008000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000200000000000000000000000000000000000000000010d907000000000000000000000000000000000000000000000000000000000000000000b800000000040000002400"/221], 0xe0}, 0x1, 0x0, 0x0, 0x4008840}, 0x4000000)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r0, 0x40045109, &(0x7f0000000240)=0x7ff)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/partitions\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000300)={<r3=>0x0, @dev, @dev}, &(0x7f0000000340)=0xc)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r2, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x5c, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e1f}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4005}, 0x20020850)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
write$sysctl(r1, &(0x7f0000000200)='2\x00', 0x2)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040))
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r4, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r5, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r5, 0x0, r5, 0x0, r5, r5, r5, r5], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000500)={&(0x7f0000000480)=[0x0, 0x0], &(0x7f00000004c0)=[0xac7, 0x1, 0x8e43, 0x5, 0x86, 0xde349a4, 0x3f], 0xa567, 0x2, 0x2})

[  828.319747]  block_ioctl+0xd9/0x120
[  828.323380]  ? blkdev_fallocate+0x3a0/0x3a0
[  828.327705]  do_vfs_ioctl+0x75a/0xff0
[  828.331521]  ? lock_acquire+0x170/0x3f0
[  828.335503]  ? ioctl_preallocate+0x1a0/0x1a0
[  828.339916]  ? __fget+0x265/0x3e0
[  828.343373]  ? do_vfs_ioctl+0xff0/0xff0
[  828.347350]  ? security_file_ioctl+0x83/0xb0
[  828.351938]  SyS_ioctl+0x7f/0xb0
[  828.355302]  ? do_vfs_ioctl+0xff0/0xff0
[  828.359282]  do_syscall_64+0x1d5/0x640
[  828.363187]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
20:49:40 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@host, 0x2}, 0x5, 0x1ff, 0x5, 0xe1800000})
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f00000010c0)={"7161e059e5bec5eb262b12e8c343cfcc08478923d6369e5d6978310651678121", 0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x602, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/cgroups\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000001140)={0x1})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r2, 0x7b2, &(0x7f0000001080)={&(0x7f0000000080)=[0x4, 0x9, 0xffffffff, 0x7, 0x3, 0xd45, 0x7, 0x5, 0xb2, 0x7, 0x5, 0x1, 0xff, 0x0, 0xbc, 0x101, 0x5, 0x0, 0x4, 0x5, 0x80000001, 0xffff, 0x4fd365c5, 0xffffffff, 0x8, 0xf96, 0x3ff, 0x7, 0xff, 0x0, 0xbef, 0x2, 0x7, 0x101, 0x2, 0x80000000, 0x0, 0x10001, 0x7f, 0x3, 0x7, 0xfffffffe, 0x2, 0x2, 0x3, 0x7, 0x8, 0x2, 0x7, 0x401, 0x5, 0x6, 0x1, 0x9ac, 0x1, 0x5, 0x1b71, 0x1000, 0xfffffffa, 0x4, 0x4, 0x81, 0x10000, 0x7fff, 0x7d, 0x1, 0x7fff, 0x44b, 0x0, 0x3f, 0x9, 0x10001, 0x0, 0x5, 0x0, 0xa096, 0x8, 0x21f0b169, 0x3, 0x1, 0x8000, 0x7, 0x5, 0x4, 0x5, 0x800, 0x5, 0x0, 0x8, 0x7fffffff, 0x80000000, 0x10001, 0x6e88, 0x0, 0x3, 0x4, 0x70000000, 0xcb, 0x6, 0x1000, 0x2, 0x0, 0xfac, 0x9, 0x0, 0x1ff, 0x401, 0x0, 0x8, 0x8000, 0x5, 0x2f62, 0x2, 0x80000001, 0x1, 0xf9, 0x40, 0x8, 0x5, 0x100, 0x10000, 0x40, 0x8, 0x7, 0x5, 0x80000000, 0x9, 0x300, 0xffff, 0x7, 0x7ff, 0x0, 0xa4ed, 0x4, 0x6, 0x7, 0x3, 0x6, 0x5, 0x0, 0x8, 0x8, 0x1, 0x81, 0x10000, 0x10000000, 0x6, 0xffff, 0x7, 0x9e2, 0x228, 0x9, 0x40, 0x0, 0xfffffffb, 0xfff, 0x1ff, 0x7, 0x51a, 0x6, 0x81, 0x0, 0x4, 0xffffffff, 0x2, 0xffffffff, 0x4, 0x2, 0x4, 0x6, 0x1, 0x1, 0x3, 0xffff95da, 0x10000, 0x378, 0x9, 0xe3, 0x1, 0x77e8, 0xfff, 0x4, 0x1000, 0x4, 0x3f, 0x5, 0x2, 0x7, 0x3, 0xffff5aa9, 0xffffffff, 0x0, 0x1, 0x7, 0x0, 0x8, 0x4ae282c5, 0x6687, 0x10001, 0x4, 0xfffff4e7, 0xffffffff, 0x7fff, 0x401, 0x6, 0x400, 0x101, 0xfffffffb, 0x2, 0x8, 0x6, 0x2, 0xfffffffa, 0x7, 0x4, 0x7fffffff, 0x3, 0x5, 0x0, 0x1, 0x3c3, 0x20000000, 0x452, 0x5, 0x20, 0x97, 0x9, 0x5, 0x101, 0x6, 0xca4, 0xffff, 0x8, 0x0, 0xffffffff, 0x1f, 0x3ff, 0x9, 0xa9, 0x4, 0xa6, 0x7, 0x3, 0x4, 0x8001, 0x2, 0x8000, 0x1, 0xfffffff7, 0x8, 0x2, 0x8, 0x8, 0x7, 0x9, 0x0, 0x7, 0x1f, 0x80000001, 0x7, 0x98c, 0x1, 0x55, 0x7, 0x696, 0xfff, 0x7fff, 0x0, 0x8, 0x8, 0x7b, 0xffffffff, 0x8000, 0x7, 0xffff0000, 0xfffffff8, 0x10001, 0x20, 0x4, 0x1, 0x5, 0x5, 0x400, 0x7fffffff, 0x3, 0x1ff, 0x4, 0x3f, 0x1, 0x1, 0x9, 0x8, 0x1, 0x1, 0x40, 0x5, 0x1, 0x9, 0x5, 0x4, 0x6611a0cb, 0x6, 0x2, 0x80000000, 0xbab, 0x5, 0x3, 0x5, 0xd6, 0x9, 0xed0, 0x7, 0x9f1, 0x8, 0x2, 0x1000, 0x1, 0x7, 0x4, 0x40, 0x6, 0x1, 0x9, 0x6, 0x8, 0x3, 0x80000000, 0x0, 0x3ff, 0xff, 0x8, 0x8000, 0x0, 0xfffffffd, 0x7, 0x5, 0x7, 0x40, 0x7b0784d1, 0x0, 0x9, 0x4, 0x4a, 0x7, 0x3ff, 0xe8d, 0xffffffff, 0x0, 0x81, 0x3, 0x4, 0x5, 0x9, 0x6, 0x800, 0x6, 0x200, 0x8000, 0x3, 0x5, 0x3, 0x40, 0x1, 0x81, 0x1, 0x1ff, 0x0, 0x2, 0x5, 0x3, 0x7, 0x2, 0x54, 0xfffffff8, 0x7, 0xb3d, 0x2, 0x40, 0x9, 0xdab, 0xfffffffd, 0x22, 0x7f, 0x7ea8266d, 0x3, 0xb947, 0x8000, 0x2, 0x1, 0xdd67, 0x7, 0x6, 0x5106bc73, 0xb18, 0x50dad6bc, 0x2c0, 0x4, 0x0, 0x7ff, 0xdd92, 0xff, 0x3, 0x41fc, 0x4, 0x1, 0x80000000, 0xfff, 0x7, 0x8, 0x101, 0x190ea63b, 0x8, 0x3, 0x53c6, 0x7fff, 0x4, 0xffff, 0x5c2, 0x9, 0x3ff, 0x85b, 0x199, 0x9, 0x10000, 0x42e, 0x1, 0xb516, 0x766, 0x5, 0x80000000, 0x7ff, 0x9, 0x80000001, 0x401, 0x5, 0xfc2, 0x2, 0x80000001, 0x1, 0x100, 0x1, 0xa0000000, 0x7, 0xf0c, 0x9, 0x6, 0xff, 0x3ff, 0x5, 0xfc53, 0xfffffeff, 0x7fff, 0x1, 0xeb, 0x3, 0x1, 0x0, 0x2, 0xfc, 0x2, 0xfff, 0xff, 0x2, 0x6, 0x3ff, 0x3, 0x62ca, 0xc3, 0x92b9, 0x5, 0xfffffffa, 0x87, 0x1, 0xec7, 0xb7f7, 0x1f, 0x0, 0x2, 0x5, 0x10000, 0x58f, 0x1, 0x4, 0xffffffa7, 0x3, 0x1b01e1c9, 0x1, 0x9, 0x6, 0x7, 0x44, 0x3, 0x1, 0xff, 0xfffffff9, 0x9, 0x6d9, 0x8, 0x8, 0x8000, 0x8020000, 0x35, 0xf4b, 0x5, 0x200, 0x8, 0x59a6, 0x0, 0xffffffff, 0x401, 0x8, 0x7, 0x7, 0x5, 0x85d, 0x8, 0x401, 0x1, 0x1, 0xc99, 0x8, 0x7, 0x591, 0x1b, 0x1, 0xdc, 0x4, 0x7, 0x8001, 0x3, 0x1000, 0x10000, 0x1, 0x0, 0x8, 0x759, 0x0, 0x59d0, 0x2cd14000, 0x9df3, 0x6, 0x7fffffff, 0x6, 0x7fff, 0x200, 0x8000, 0x1, 0x23e3, 0x101, 0x7, 0x80000000, 0xffffff01, 0x1, 0x5, 0x9c13, 0x1, 0x7a6e, 0x7, 0x5, 0xfffffffa, 0x63f7343e, 0x3, 0x7fff, 0x7e, 0x2, 0x3, 0x5, 0x2, 0x4, 0x0, 0x89678ae, 0x3, 0x4, 0x1, 0x1, 0x6, 0x1ff, 0x80e, 0x3, 0x6, 0x4, 0x7fffffff, 0x3ff, 0x3c6, 0x6, 0xe71, 0x9, 0x1, 0x1000, 0x6, 0x3f, 0x2, 0x9d, 0x1, 0xfffffc01, 0x8, 0x1f, 0x6, 0x3, 0x401, 0x8, 0xa3, 0xa1, 0x1, 0x1, 0x101, 0xfffff001, 0xfffffe01, 0x8, 0x20, 0x51, 0x0, 0x9, 0x6, 0x8, 0x3, 0x0, 0x101, 0x3, 0x0, 0xa9c, 0x8, 0x8, 0xea12, 0x0, 0x8c68, 0x7, 0xfffffffe, 0x5, 0x0, 0x4, 0x101, 0x5, 0xffff, 0x0, 0x6, 0x2, 0x1, 0x9, 0xf8b, 0x3ff, 0x10001, 0x5, 0x7, 0x8, 0x7, 0x7, 0xc84, 0xffffffff, 0x4, 0x9, 0x8000, 0x4, 0x9, 0x9, 0x6, 0x149ea49e, 0x3, 0x7, 0x1ff, 0xff, 0x8, 0x7f2, 0x4, 0xffff, 0x4, 0x60, 0x8, 0x80000000, 0x1e60b6c2, 0x5, 0x2, 0x3, 0x25f, 0xfffffff9, 0x4, 0x3, 0x4, 0x104d, 0xf9, 0xff, 0x9, 0x800, 0xfb, 0x1, 0x1, 0x1, 0xffffff00, 0x9, 0x7fffffff, 0x40, 0x1, 0x5, 0xfffffff9, 0x4, 0x0, 0x7f, 0x8, 0x0, 0x4, 0x9, 0x7fff, 0x85b, 0xffffffff, 0x3ff, 0x6, 0x7fff, 0x6, 0x7, 0x10001, 0xfff, 0x1, 0x401, 0x77, 0x6, 0x6, 0x1, 0x4, 0x2, 0xea08, 0x0, 0x7f, 0xfffff3f0, 0x3, 0x9, 0x2, 0x800, 0x40, 0x0, 0x9, 0x5, 0x800, 0x8, 0xffff, 0x1, 0x3, 0x6, 0x3, 0x3, 0x6, 0x5, 0x1000, 0x401, 0x0, 0x1, 0x8, 0xebd, 0x81, 0x397, 0x7ff, 0x20, 0x1, 0x2, 0x0, 0x7fffffff, 0xffff7fff, 0x1, 0x9, 0x7, 0xffff, 0x9, 0x3f400, 0x98, 0x7, 0x0, 0xff, 0xfff, 0x4800, 0x9, 0xffff, 0x0, 0x8e0, 0x80, 0x7fff, 0x31a, 0x3, 0x3, 0x8, 0x2, 0x8, 0x4, 0x1, 0x3aa, 0x0, 0x80, 0x1ff, 0x7, 0x400, 0x3, 0x6, 0x1f, 0x401, 0x1, 0xfffff3a2, 0x0, 0x7e13, 0x7, 0xfffffffb, 0x0, 0x1000, 0x6, 0x1, 0x6, 0x9, 0x10000, 0x0, 0x7, 0x8, 0xffffff9f, 0x8, 0x4278, 0x7d19, 0x0, 0x600, 0x4, 0x9, 0x1a9f, 0x80000000, 0x6, 0x7fffffff, 0xfff, 0x7, 0x0, 0x1, 0x23f, 0x7fff, 0x7, 0x0, 0x777, 0x6, 0x81, 0x7ff, 0x43743da, 0xffffba69, 0x4, 0x7, 0xffffffff, 0x0, 0x7ff, 0x3, 0xf2be, 0x7fff, 0x4, 0x6, 0x3dac60d0, 0x1, 0x9, 0x9, 0xccf, 0x80, 0x7f, 0x7, 0x7, 0x0, 0x7ff, 0xd4f9, 0x9, 0xfffffffd, 0x1, 0xc8, 0xffffff01, 0x7, 0x1, 0xfd, 0xfffff9d7, 0x100, 0xfffffffd, 0x8, 0x1, 0x3, 0x1, 0x8000, 0x29ce, 0xffffffff, 0x80000001, 0x8, 0x3, 0x0, 0x6, 0x8, 0x4f, 0x7, 0x2, 0x3f, 0x80, 0x0, 0x800, 0x1ff, 0x7f77, 0x2, 0x1, 0xf4ae, 0x6, 0x20, 0x2, 0x9, 0x8, 0x5, 0x7d3, 0x10000, 0xff, 0x1f, 0x1, 0x46d3, 0x0, 0x527, 0x8, 0xffffffff, 0x7fffffff, 0x3, 0x6, 0x0, 0x5, 0x6, 0x6, 0x6e, 0x800, 0x5, 0x1ff, 0x4, 0x6fb90730, 0x100, 0x1, 0x4, 0x827e, 0x2, 0x2, 0x8, 0x9, 0x0, 0x1, 0x8001, 0xa2d, 0x30, 0x10001, 0x101, 0x2, 0x0, 0x1, 0x6, 0xd3, 0x1f, 0x800, 0x9cb98f63, 0x1000, 0xde0000, 0x1fc3db7d, 0x10000, 0x1, 0x8, 0x3, 0x0, 0x1000, 0x8, 0xfffffff7, 0xf8, 0x489, 0x4, 0x1, 0xb8a, 0x800, 0x6, 0x10001, 0x54bd, 0x401, 0x81, 0x80000001, 0x8, 0x1, 0x7, 0x2, 0x9, 0x5, 0x1000000, 0x7, 0xa43, 0x9, 0x6, 0x8, 0xffffff87, 0x5, 0x7, 0x2, 0x7, 0x9, 0x1, 0x5, 0x2960, 0x1, 0x1, 0x6, 0x101, 0x4, 0x0, 0x6, 0x3, 0x10000, 0xaa, 0x2, 0x40, 0x40, 0x800, 0x0, 0x200, 0x3ff, 0x8001, 0x10000, 0x6, 0x401, 0x3, 0x9, 0x7, 0x7fffffff, 0x8, 0x8de, 0x1, 0x45d6, 0x8, 0x5e06, 0x6, 0x4, 0x5, 0x200, 0x6], 0x6, 0x400, 0x7})

[  828.368378] RIP: 0033:0x7f6b8cbe3ec7
[  828.372098] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  828.379802] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  828.387087] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  828.387096] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  828.401624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  828.408898] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
[  828.423178] FAULT_INJECTION: forcing a failure.
[  828.423178] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  828.435174] CPU: 1 PID: 22224 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  828.443056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  828.452448] Call Trace:
[  828.452463]  dump_stack+0x1b2/0x281
[  828.452477]  should_fail.cold+0x10a/0x149
[  828.462807]  __alloc_pages_nodemask+0x22c/0x2720
[  828.467603]  ? kobject_uevent_env+0x274/0xf30
[  828.472113]  ? __lock_acquire+0x5fc/0x3f20
[  828.476357]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  828.481211]  ? blkdev_ioctl+0xf4/0x1830
[  828.485200]  ? blkpg_ioctl+0x8d0/0x8d0
[  828.489083]  ? trace_hardirqs_on+0x10/0x10
[  828.493333]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  828.498462]  cache_grow_begin+0x91/0x700
[  828.502525]  ? fs_reclaim_release+0xd0/0x110
[  828.506945]  ? check_preemption_disabled+0x35/0x240
[  828.511974]  cache_alloc_refill+0x273/0x350
[  828.516310]  kmem_cache_alloc+0x333/0x3c0
[  828.520465]  getname_flags+0xc8/0x550
[  828.524275]  SyS_mkdirat+0x83/0x270
[  828.527911]  ? SyS_mknod+0x30/0x30
[  828.531485]  ? fput_many+0xe/0x140
[  828.535035]  ? do_syscall_64+0x4c/0x640
[  828.539012]  ? SyS_mknod+0x30/0x30
[  828.542646]  do_syscall_64+0x1d5/0x640
[  828.546594]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  828.551788] RIP: 0033:0x7fcd83ff2217
[  828.555508] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  828.563219] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
20:49:41 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 33)

20:49:41 executing program 0:
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="e0000000120000022dbd7000fedbde25626c616b6532732d3136302d61726d000000000000008000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000200000000000000000000000000000000000000000010d907000000000000000000000000000000000000000000000000000000000000000000b800000000040000002400"/221], 0xe0}, 0x1, 0x0, 0x0, 0x4008840}, 0x4000000) (async)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r0, 0x40045109, &(0x7f0000000240)=0x7ff) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/partitions\x00', 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000300)={<r3=>0x0, @dev, @dev}, &(0x7f0000000340)=0xc)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r2, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x5c, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e1f}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4005}, 0x20020850)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
write$sysctl(r1, &(0x7f0000000200)='2\x00', 0x2) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)) (async)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r4, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r5, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r5, 0x0, r5, 0x0, r5, r5, r5, r5], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000500)={&(0x7f0000000480)=[0x0, 0x0], &(0x7f00000004c0)=[0xac7, 0x1, 0x8e43, 0x5, 0x86, 0xde349a4, 0x3f], 0xa567, 0x2, 0x2})

20:49:41 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
socketpair(0x22, 0x2, 0x10001, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={r1, r2, 0x8001})
r3 = getpgid(r0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0)
sendmsg$key(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="020400000700000000bd7000ffdbdf250400020001000100030000000000000000010000000000000000"], 0x30}}, 0x1)
getpgid(r3)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000080)={0x0, <r5=>0x0})
ptrace$poke(0x4, r5, &(0x7f0000000100), 0x8)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
getpgid(0x0) (async)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
socketpair(0x22, 0x2, 0x10001, &(0x7f0000000000)) (async)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={r1, r2, 0x8001}) (async)
getpgid(r0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0) (async)
sendmsg$key(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="020400000700000000bd7000ffdbdf250400020001000100030000000000000000010000000000000000"], 0x30}}, 0x1) (async)
getpgid(r3) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000080)) (async)
ptrace$poke(0x4, r5, &(0x7f0000000100), 0x8) (async)

20:49:41 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@host, 0x2}, 0x5, 0x1ff, 0x5, 0xe1800000}) (async, rerun: 32)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f00000010c0)={"7161e059e5bec5eb262b12e8c343cfcc08478923d6369e5d6978310651678121", 0xffffffffffffffff, <r1=>0xffffffffffffffff}) (async, rerun: 32)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x602, 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/cgroups\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000001140)={0x1})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r2, 0x7b2, &(0x7f0000001080)={&(0x7f0000000080)=[0x4, 0x9, 0xffffffff, 0x7, 0x3, 0xd45, 0x7, 0x5, 0xb2, 0x7, 0x5, 0x1, 0xff, 0x0, 0xbc, 0x101, 0x5, 0x0, 0x4, 0x5, 0x80000001, 0xffff, 0x4fd365c5, 0xffffffff, 0x8, 0xf96, 0x3ff, 0x7, 0xff, 0x0, 0xbef, 0x2, 0x7, 0x101, 0x2, 0x80000000, 0x0, 0x10001, 0x7f, 0x3, 0x7, 0xfffffffe, 0x2, 0x2, 0x3, 0x7, 0x8, 0x2, 0x7, 0x401, 0x5, 0x6, 0x1, 0x9ac, 0x1, 0x5, 0x1b71, 0x1000, 0xfffffffa, 0x4, 0x4, 0x81, 0x10000, 0x7fff, 0x7d, 0x1, 0x7fff, 0x44b, 0x0, 0x3f, 0x9, 0x10001, 0x0, 0x5, 0x0, 0xa096, 0x8, 0x21f0b169, 0x3, 0x1, 0x8000, 0x7, 0x5, 0x4, 0x5, 0x800, 0x5, 0x0, 0x8, 0x7fffffff, 0x80000000, 0x10001, 0x6e88, 0x0, 0x3, 0x4, 0x70000000, 0xcb, 0x6, 0x1000, 0x2, 0x0, 0xfac, 0x9, 0x0, 0x1ff, 0x401, 0x0, 0x8, 0x8000, 0x5, 0x2f62, 0x2, 0x80000001, 0x1, 0xf9, 0x40, 0x8, 0x5, 0x100, 0x10000, 0x40, 0x8, 0x7, 0x5, 0x80000000, 0x9, 0x300, 0xffff, 0x7, 0x7ff, 0x0, 0xa4ed, 0x4, 0x6, 0x7, 0x3, 0x6, 0x5, 0x0, 0x8, 0x8, 0x1, 0x81, 0x10000, 0x10000000, 0x6, 0xffff, 0x7, 0x9e2, 0x228, 0x9, 0x40, 0x0, 0xfffffffb, 0xfff, 0x1ff, 0x7, 0x51a, 0x6, 0x81, 0x0, 0x4, 0xffffffff, 0x2, 0xffffffff, 0x4, 0x2, 0x4, 0x6, 0x1, 0x1, 0x3, 0xffff95da, 0x10000, 0x378, 0x9, 0xe3, 0x1, 0x77e8, 0xfff, 0x4, 0x1000, 0x4, 0x3f, 0x5, 0x2, 0x7, 0x3, 0xffff5aa9, 0xffffffff, 0x0, 0x1, 0x7, 0x0, 0x8, 0x4ae282c5, 0x6687, 0x10001, 0x4, 0xfffff4e7, 0xffffffff, 0x7fff, 0x401, 0x6, 0x400, 0x101, 0xfffffffb, 0x2, 0x8, 0x6, 0x2, 0xfffffffa, 0x7, 0x4, 0x7fffffff, 0x3, 0x5, 0x0, 0x1, 0x3c3, 0x20000000, 0x452, 0x5, 0x20, 0x97, 0x9, 0x5, 0x101, 0x6, 0xca4, 0xffff, 0x8, 0x0, 0xffffffff, 0x1f, 0x3ff, 0x9, 0xa9, 0x4, 0xa6, 0x7, 0x3, 0x4, 0x8001, 0x2, 0x8000, 0x1, 0xfffffff7, 0x8, 0x2, 0x8, 0x8, 0x7, 0x9, 0x0, 0x7, 0x1f, 0x80000001, 0x7, 0x98c, 0x1, 0x55, 0x7, 0x696, 0xfff, 0x7fff, 0x0, 0x8, 0x8, 0x7b, 0xffffffff, 0x8000, 0x7, 0xffff0000, 0xfffffff8, 0x10001, 0x20, 0x4, 0x1, 0x5, 0x5, 0x400, 0x7fffffff, 0x3, 0x1ff, 0x4, 0x3f, 0x1, 0x1, 0x9, 0x8, 0x1, 0x1, 0x40, 0x5, 0x1, 0x9, 0x5, 0x4, 0x6611a0cb, 0x6, 0x2, 0x80000000, 0xbab, 0x5, 0x3, 0x5, 0xd6, 0x9, 0xed0, 0x7, 0x9f1, 0x8, 0x2, 0x1000, 0x1, 0x7, 0x4, 0x40, 0x6, 0x1, 0x9, 0x6, 0x8, 0x3, 0x80000000, 0x0, 0x3ff, 0xff, 0x8, 0x8000, 0x0, 0xfffffffd, 0x7, 0x5, 0x7, 0x40, 0x7b0784d1, 0x0, 0x9, 0x4, 0x4a, 0x7, 0x3ff, 0xe8d, 0xffffffff, 0x0, 0x81, 0x3, 0x4, 0x5, 0x9, 0x6, 0x800, 0x6, 0x200, 0x8000, 0x3, 0x5, 0x3, 0x40, 0x1, 0x81, 0x1, 0x1ff, 0x0, 0x2, 0x5, 0x3, 0x7, 0x2, 0x54, 0xfffffff8, 0x7, 0xb3d, 0x2, 0x40, 0x9, 0xdab, 0xfffffffd, 0x22, 0x7f, 0x7ea8266d, 0x3, 0xb947, 0x8000, 0x2, 0x1, 0xdd67, 0x7, 0x6, 0x5106bc73, 0xb18, 0x50dad6bc, 0x2c0, 0x4, 0x0, 0x7ff, 0xdd92, 0xff, 0x3, 0x41fc, 0x4, 0x1, 0x80000000, 0xfff, 0x7, 0x8, 0x101, 0x190ea63b, 0x8, 0x3, 0x53c6, 0x7fff, 0x4, 0xffff, 0x5c2, 0x9, 0x3ff, 0x85b, 0x199, 0x9, 0x10000, 0x42e, 0x1, 0xb516, 0x766, 0x5, 0x80000000, 0x7ff, 0x9, 0x80000001, 0x401, 0x5, 0xfc2, 0x2, 0x80000001, 0x1, 0x100, 0x1, 0xa0000000, 0x7, 0xf0c, 0x9, 0x6, 0xff, 0x3ff, 0x5, 0xfc53, 0xfffffeff, 0x7fff, 0x1, 0xeb, 0x3, 0x1, 0x0, 0x2, 0xfc, 0x2, 0xfff, 0xff, 0x2, 0x6, 0x3ff, 0x3, 0x62ca, 0xc3, 0x92b9, 0x5, 0xfffffffa, 0x87, 0x1, 0xec7, 0xb7f7, 0x1f, 0x0, 0x2, 0x5, 0x10000, 0x58f, 0x1, 0x4, 0xffffffa7, 0x3, 0x1b01e1c9, 0x1, 0x9, 0x6, 0x7, 0x44, 0x3, 0x1, 0xff, 0xfffffff9, 0x9, 0x6d9, 0x8, 0x8, 0x8000, 0x8020000, 0x35, 0xf4b, 0x5, 0x200, 0x8, 0x59a6, 0x0, 0xffffffff, 0x401, 0x8, 0x7, 0x7, 0x5, 0x85d, 0x8, 0x401, 0x1, 0x1, 0xc99, 0x8, 0x7, 0x591, 0x1b, 0x1, 0xdc, 0x4, 0x7, 0x8001, 0x3, 0x1000, 0x10000, 0x1, 0x0, 0x8, 0x759, 0x0, 0x59d0, 0x2cd14000, 0x9df3, 0x6, 0x7fffffff, 0x6, 0x7fff, 0x200, 0x8000, 0x1, 0x23e3, 0x101, 0x7, 0x80000000, 0xffffff01, 0x1, 0x5, 0x9c13, 0x1, 0x7a6e, 0x7, 0x5, 0xfffffffa, 0x63f7343e, 0x3, 0x7fff, 0x7e, 0x2, 0x3, 0x5, 0x2, 0x4, 0x0, 0x89678ae, 0x3, 0x4, 0x1, 0x1, 0x6, 0x1ff, 0x80e, 0x3, 0x6, 0x4, 0x7fffffff, 0x3ff, 0x3c6, 0x6, 0xe71, 0x9, 0x1, 0x1000, 0x6, 0x3f, 0x2, 0x9d, 0x1, 0xfffffc01, 0x8, 0x1f, 0x6, 0x3, 0x401, 0x8, 0xa3, 0xa1, 0x1, 0x1, 0x101, 0xfffff001, 0xfffffe01, 0x8, 0x20, 0x51, 0x0, 0x9, 0x6, 0x8, 0x3, 0x0, 0x101, 0x3, 0x0, 0xa9c, 0x8, 0x8, 0xea12, 0x0, 0x8c68, 0x7, 0xfffffffe, 0x5, 0x0, 0x4, 0x101, 0x5, 0xffff, 0x0, 0x6, 0x2, 0x1, 0x9, 0xf8b, 0x3ff, 0x10001, 0x5, 0x7, 0x8, 0x7, 0x7, 0xc84, 0xffffffff, 0x4, 0x9, 0x8000, 0x4, 0x9, 0x9, 0x6, 0x149ea49e, 0x3, 0x7, 0x1ff, 0xff, 0x8, 0x7f2, 0x4, 0xffff, 0x4, 0x60, 0x8, 0x80000000, 0x1e60b6c2, 0x5, 0x2, 0x3, 0x25f, 0xfffffff9, 0x4, 0x3, 0x4, 0x104d, 0xf9, 0xff, 0x9, 0x800, 0xfb, 0x1, 0x1, 0x1, 0xffffff00, 0x9, 0x7fffffff, 0x40, 0x1, 0x5, 0xfffffff9, 0x4, 0x0, 0x7f, 0x8, 0x0, 0x4, 0x9, 0x7fff, 0x85b, 0xffffffff, 0x3ff, 0x6, 0x7fff, 0x6, 0x7, 0x10001, 0xfff, 0x1, 0x401, 0x77, 0x6, 0x6, 0x1, 0x4, 0x2, 0xea08, 0x0, 0x7f, 0xfffff3f0, 0x3, 0x9, 0x2, 0x800, 0x40, 0x0, 0x9, 0x5, 0x800, 0x8, 0xffff, 0x1, 0x3, 0x6, 0x3, 0x3, 0x6, 0x5, 0x1000, 0x401, 0x0, 0x1, 0x8, 0xebd, 0x81, 0x397, 0x7ff, 0x20, 0x1, 0x2, 0x0, 0x7fffffff, 0xffff7fff, 0x1, 0x9, 0x7, 0xffff, 0x9, 0x3f400, 0x98, 0x7, 0x0, 0xff, 0xfff, 0x4800, 0x9, 0xffff, 0x0, 0x8e0, 0x80, 0x7fff, 0x31a, 0x3, 0x3, 0x8, 0x2, 0x8, 0x4, 0x1, 0x3aa, 0x0, 0x80, 0x1ff, 0x7, 0x400, 0x3, 0x6, 0x1f, 0x401, 0x1, 0xfffff3a2, 0x0, 0x7e13, 0x7, 0xfffffffb, 0x0, 0x1000, 0x6, 0x1, 0x6, 0x9, 0x10000, 0x0, 0x7, 0x8, 0xffffff9f, 0x8, 0x4278, 0x7d19, 0x0, 0x600, 0x4, 0x9, 0x1a9f, 0x80000000, 0x6, 0x7fffffff, 0xfff, 0x7, 0x0, 0x1, 0x23f, 0x7fff, 0x7, 0x0, 0x777, 0x6, 0x81, 0x7ff, 0x43743da, 0xffffba69, 0x4, 0x7, 0xffffffff, 0x0, 0x7ff, 0x3, 0xf2be, 0x7fff, 0x4, 0x6, 0x3dac60d0, 0x1, 0x9, 0x9, 0xccf, 0x80, 0x7f, 0x7, 0x7, 0x0, 0x7ff, 0xd4f9, 0x9, 0xfffffffd, 0x1, 0xc8, 0xffffff01, 0x7, 0x1, 0xfd, 0xfffff9d7, 0x100, 0xfffffffd, 0x8, 0x1, 0x3, 0x1, 0x8000, 0x29ce, 0xffffffff, 0x80000001, 0x8, 0x3, 0x0, 0x6, 0x8, 0x4f, 0x7, 0x2, 0x3f, 0x80, 0x0, 0x800, 0x1ff, 0x7f77, 0x2, 0x1, 0xf4ae, 0x6, 0x20, 0x2, 0x9, 0x8, 0x5, 0x7d3, 0x10000, 0xff, 0x1f, 0x1, 0x46d3, 0x0, 0x527, 0x8, 0xffffffff, 0x7fffffff, 0x3, 0x6, 0x0, 0x5, 0x6, 0x6, 0x6e, 0x800, 0x5, 0x1ff, 0x4, 0x6fb90730, 0x100, 0x1, 0x4, 0x827e, 0x2, 0x2, 0x8, 0x9, 0x0, 0x1, 0x8001, 0xa2d, 0x30, 0x10001, 0x101, 0x2, 0x0, 0x1, 0x6, 0xd3, 0x1f, 0x800, 0x9cb98f63, 0x1000, 0xde0000, 0x1fc3db7d, 0x10000, 0x1, 0x8, 0x3, 0x0, 0x1000, 0x8, 0xfffffff7, 0xf8, 0x489, 0x4, 0x1, 0xb8a, 0x800, 0x6, 0x10001, 0x54bd, 0x401, 0x81, 0x80000001, 0x8, 0x1, 0x7, 0x2, 0x9, 0x5, 0x1000000, 0x7, 0xa43, 0x9, 0x6, 0x8, 0xffffff87, 0x5, 0x7, 0x2, 0x7, 0x9, 0x1, 0x5, 0x2960, 0x1, 0x1, 0x6, 0x101, 0x4, 0x0, 0x6, 0x3, 0x10000, 0xaa, 0x2, 0x40, 0x40, 0x800, 0x0, 0x200, 0x3ff, 0x8001, 0x10000, 0x6, 0x401, 0x3, 0x9, 0x7, 0x7fffffff, 0x8, 0x8de, 0x1, 0x45d6, 0x8, 0x5e06, 0x6, 0x4, 0x5, 0x200, 0x6], 0x6, 0x400, 0x7})

20:49:41 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$SNDCTL_TMR_SELECT(r1, 0x40045408)

[  828.570488] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  828.577756] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  828.585023] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  828.592293] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:41 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 37)

20:49:41 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@host, 0x2}, 0x5, 0x1ff, 0x5, 0xe1800000})
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f00000010c0)={"7161e059e5bec5eb262b12e8c343cfcc08478923d6369e5d6978310651678121", 0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x602, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/cgroups\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000001140)={0x1})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r2, 0x7b2, &(0x7f0000001080)={&(0x7f0000000080)=[0x4, 0x9, 0xffffffff, 0x7, 0x3, 0xd45, 0x7, 0x5, 0xb2, 0x7, 0x5, 0x1, 0xff, 0x0, 0xbc, 0x101, 0x5, 0x0, 0x4, 0x5, 0x80000001, 0xffff, 0x4fd365c5, 0xffffffff, 0x8, 0xf96, 0x3ff, 0x7, 0xff, 0x0, 0xbef, 0x2, 0x7, 0x101, 0x2, 0x80000000, 0x0, 0x10001, 0x7f, 0x3, 0x7, 0xfffffffe, 0x2, 0x2, 0x3, 0x7, 0x8, 0x2, 0x7, 0x401, 0x5, 0x6, 0x1, 0x9ac, 0x1, 0x5, 0x1b71, 0x1000, 0xfffffffa, 0x4, 0x4, 0x81, 0x10000, 0x7fff, 0x7d, 0x1, 0x7fff, 0x44b, 0x0, 0x3f, 0x9, 0x10001, 0x0, 0x5, 0x0, 0xa096, 0x8, 0x21f0b169, 0x3, 0x1, 0x8000, 0x7, 0x5, 0x4, 0x5, 0x800, 0x5, 0x0, 0x8, 0x7fffffff, 0x80000000, 0x10001, 0x6e88, 0x0, 0x3, 0x4, 0x70000000, 0xcb, 0x6, 0x1000, 0x2, 0x0, 0xfac, 0x9, 0x0, 0x1ff, 0x401, 0x0, 0x8, 0x8000, 0x5, 0x2f62, 0x2, 0x80000001, 0x1, 0xf9, 0x40, 0x8, 0x5, 0x100, 0x10000, 0x40, 0x8, 0x7, 0x5, 0x80000000, 0x9, 0x300, 0xffff, 0x7, 0x7ff, 0x0, 0xa4ed, 0x4, 0x6, 0x7, 0x3, 0x6, 0x5, 0x0, 0x8, 0x8, 0x1, 0x81, 0x10000, 0x10000000, 0x6, 0xffff, 0x7, 0x9e2, 0x228, 0x9, 0x40, 0x0, 0xfffffffb, 0xfff, 0x1ff, 0x7, 0x51a, 0x6, 0x81, 0x0, 0x4, 0xffffffff, 0x2, 0xffffffff, 0x4, 0x2, 0x4, 0x6, 0x1, 0x1, 0x3, 0xffff95da, 0x10000, 0x378, 0x9, 0xe3, 0x1, 0x77e8, 0xfff, 0x4, 0x1000, 0x4, 0x3f, 0x5, 0x2, 0x7, 0x3, 0xffff5aa9, 0xffffffff, 0x0, 0x1, 0x7, 0x0, 0x8, 0x4ae282c5, 0x6687, 0x10001, 0x4, 0xfffff4e7, 0xffffffff, 0x7fff, 0x401, 0x6, 0x400, 0x101, 0xfffffffb, 0x2, 0x8, 0x6, 0x2, 0xfffffffa, 0x7, 0x4, 0x7fffffff, 0x3, 0x5, 0x0, 0x1, 0x3c3, 0x20000000, 0x452, 0x5, 0x20, 0x97, 0x9, 0x5, 0x101, 0x6, 0xca4, 0xffff, 0x8, 0x0, 0xffffffff, 0x1f, 0x3ff, 0x9, 0xa9, 0x4, 0xa6, 0x7, 0x3, 0x4, 0x8001, 0x2, 0x8000, 0x1, 0xfffffff7, 0x8, 0x2, 0x8, 0x8, 0x7, 0x9, 0x0, 0x7, 0x1f, 0x80000001, 0x7, 0x98c, 0x1, 0x55, 0x7, 0x696, 0xfff, 0x7fff, 0x0, 0x8, 0x8, 0x7b, 0xffffffff, 0x8000, 0x7, 0xffff0000, 0xfffffff8, 0x10001, 0x20, 0x4, 0x1, 0x5, 0x5, 0x400, 0x7fffffff, 0x3, 0x1ff, 0x4, 0x3f, 0x1, 0x1, 0x9, 0x8, 0x1, 0x1, 0x40, 0x5, 0x1, 0x9, 0x5, 0x4, 0x6611a0cb, 0x6, 0x2, 0x80000000, 0xbab, 0x5, 0x3, 0x5, 0xd6, 0x9, 0xed0, 0x7, 0x9f1, 0x8, 0x2, 0x1000, 0x1, 0x7, 0x4, 0x40, 0x6, 0x1, 0x9, 0x6, 0x8, 0x3, 0x80000000, 0x0, 0x3ff, 0xff, 0x8, 0x8000, 0x0, 0xfffffffd, 0x7, 0x5, 0x7, 0x40, 0x7b0784d1, 0x0, 0x9, 0x4, 0x4a, 0x7, 0x3ff, 0xe8d, 0xffffffff, 0x0, 0x81, 0x3, 0x4, 0x5, 0x9, 0x6, 0x800, 0x6, 0x200, 0x8000, 0x3, 0x5, 0x3, 0x40, 0x1, 0x81, 0x1, 0x1ff, 0x0, 0x2, 0x5, 0x3, 0x7, 0x2, 0x54, 0xfffffff8, 0x7, 0xb3d, 0x2, 0x40, 0x9, 0xdab, 0xfffffffd, 0x22, 0x7f, 0x7ea8266d, 0x3, 0xb947, 0x8000, 0x2, 0x1, 0xdd67, 0x7, 0x6, 0x5106bc73, 0xb18, 0x50dad6bc, 0x2c0, 0x4, 0x0, 0x7ff, 0xdd92, 0xff, 0x3, 0x41fc, 0x4, 0x1, 0x80000000, 0xfff, 0x7, 0x8, 0x101, 0x190ea63b, 0x8, 0x3, 0x53c6, 0x7fff, 0x4, 0xffff, 0x5c2, 0x9, 0x3ff, 0x85b, 0x199, 0x9, 0x10000, 0x42e, 0x1, 0xb516, 0x766, 0x5, 0x80000000, 0x7ff, 0x9, 0x80000001, 0x401, 0x5, 0xfc2, 0x2, 0x80000001, 0x1, 0x100, 0x1, 0xa0000000, 0x7, 0xf0c, 0x9, 0x6, 0xff, 0x3ff, 0x5, 0xfc53, 0xfffffeff, 0x7fff, 0x1, 0xeb, 0x3, 0x1, 0x0, 0x2, 0xfc, 0x2, 0xfff, 0xff, 0x2, 0x6, 0x3ff, 0x3, 0x62ca, 0xc3, 0x92b9, 0x5, 0xfffffffa, 0x87, 0x1, 0xec7, 0xb7f7, 0x1f, 0x0, 0x2, 0x5, 0x10000, 0x58f, 0x1, 0x4, 0xffffffa7, 0x3, 0x1b01e1c9, 0x1, 0x9, 0x6, 0x7, 0x44, 0x3, 0x1, 0xff, 0xfffffff9, 0x9, 0x6d9, 0x8, 0x8, 0x8000, 0x8020000, 0x35, 0xf4b, 0x5, 0x200, 0x8, 0x59a6, 0x0, 0xffffffff, 0x401, 0x8, 0x7, 0x7, 0x5, 0x85d, 0x8, 0x401, 0x1, 0x1, 0xc99, 0x8, 0x7, 0x591, 0x1b, 0x1, 0xdc, 0x4, 0x7, 0x8001, 0x3, 0x1000, 0x10000, 0x1, 0x0, 0x8, 0x759, 0x0, 0x59d0, 0x2cd14000, 0x9df3, 0x6, 0x7fffffff, 0x6, 0x7fff, 0x200, 0x8000, 0x1, 0x23e3, 0x101, 0x7, 0x80000000, 0xffffff01, 0x1, 0x5, 0x9c13, 0x1, 0x7a6e, 0x7, 0x5, 0xfffffffa, 0x63f7343e, 0x3, 0x7fff, 0x7e, 0x2, 0x3, 0x5, 0x2, 0x4, 0x0, 0x89678ae, 0x3, 0x4, 0x1, 0x1, 0x6, 0x1ff, 0x80e, 0x3, 0x6, 0x4, 0x7fffffff, 0x3ff, 0x3c6, 0x6, 0xe71, 0x9, 0x1, 0x1000, 0x6, 0x3f, 0x2, 0x9d, 0x1, 0xfffffc01, 0x8, 0x1f, 0x6, 0x3, 0x401, 0x8, 0xa3, 0xa1, 0x1, 0x1, 0x101, 0xfffff001, 0xfffffe01, 0x8, 0x20, 0x51, 0x0, 0x9, 0x6, 0x8, 0x3, 0x0, 0x101, 0x3, 0x0, 0xa9c, 0x8, 0x8, 0xea12, 0x0, 0x8c68, 0x7, 0xfffffffe, 0x5, 0x0, 0x4, 0x101, 0x5, 0xffff, 0x0, 0x6, 0x2, 0x1, 0x9, 0xf8b, 0x3ff, 0x10001, 0x5, 0x7, 0x8, 0x7, 0x7, 0xc84, 0xffffffff, 0x4, 0x9, 0x8000, 0x4, 0x9, 0x9, 0x6, 0x149ea49e, 0x3, 0x7, 0x1ff, 0xff, 0x8, 0x7f2, 0x4, 0xffff, 0x4, 0x60, 0x8, 0x80000000, 0x1e60b6c2, 0x5, 0x2, 0x3, 0x25f, 0xfffffff9, 0x4, 0x3, 0x4, 0x104d, 0xf9, 0xff, 0x9, 0x800, 0xfb, 0x1, 0x1, 0x1, 0xffffff00, 0x9, 0x7fffffff, 0x40, 0x1, 0x5, 0xfffffff9, 0x4, 0x0, 0x7f, 0x8, 0x0, 0x4, 0x9, 0x7fff, 0x85b, 0xffffffff, 0x3ff, 0x6, 0x7fff, 0x6, 0x7, 0x10001, 0xfff, 0x1, 0x401, 0x77, 0x6, 0x6, 0x1, 0x4, 0x2, 0xea08, 0x0, 0x7f, 0xfffff3f0, 0x3, 0x9, 0x2, 0x800, 0x40, 0x0, 0x9, 0x5, 0x800, 0x8, 0xffff, 0x1, 0x3, 0x6, 0x3, 0x3, 0x6, 0x5, 0x1000, 0x401, 0x0, 0x1, 0x8, 0xebd, 0x81, 0x397, 0x7ff, 0x20, 0x1, 0x2, 0x0, 0x7fffffff, 0xffff7fff, 0x1, 0x9, 0x7, 0xffff, 0x9, 0x3f400, 0x98, 0x7, 0x0, 0xff, 0xfff, 0x4800, 0x9, 0xffff, 0x0, 0x8e0, 0x80, 0x7fff, 0x31a, 0x3, 0x3, 0x8, 0x2, 0x8, 0x4, 0x1, 0x3aa, 0x0, 0x80, 0x1ff, 0x7, 0x400, 0x3, 0x6, 0x1f, 0x401, 0x1, 0xfffff3a2, 0x0, 0x7e13, 0x7, 0xfffffffb, 0x0, 0x1000, 0x6, 0x1, 0x6, 0x9, 0x10000, 0x0, 0x7, 0x8, 0xffffff9f, 0x8, 0x4278, 0x7d19, 0x0, 0x600, 0x4, 0x9, 0x1a9f, 0x80000000, 0x6, 0x7fffffff, 0xfff, 0x7, 0x0, 0x1, 0x23f, 0x7fff, 0x7, 0x0, 0x777, 0x6, 0x81, 0x7ff, 0x43743da, 0xffffba69, 0x4, 0x7, 0xffffffff, 0x0, 0x7ff, 0x3, 0xf2be, 0x7fff, 0x4, 0x6, 0x3dac60d0, 0x1, 0x9, 0x9, 0xccf, 0x80, 0x7f, 0x7, 0x7, 0x0, 0x7ff, 0xd4f9, 0x9, 0xfffffffd, 0x1, 0xc8, 0xffffff01, 0x7, 0x1, 0xfd, 0xfffff9d7, 0x100, 0xfffffffd, 0x8, 0x1, 0x3, 0x1, 0x8000, 0x29ce, 0xffffffff, 0x80000001, 0x8, 0x3, 0x0, 0x6, 0x8, 0x4f, 0x7, 0x2, 0x3f, 0x80, 0x0, 0x800, 0x1ff, 0x7f77, 0x2, 0x1, 0xf4ae, 0x6, 0x20, 0x2, 0x9, 0x8, 0x5, 0x7d3, 0x10000, 0xff, 0x1f, 0x1, 0x46d3, 0x0, 0x527, 0x8, 0xffffffff, 0x7fffffff, 0x3, 0x6, 0x0, 0x5, 0x6, 0x6, 0x6e, 0x800, 0x5, 0x1ff, 0x4, 0x6fb90730, 0x100, 0x1, 0x4, 0x827e, 0x2, 0x2, 0x8, 0x9, 0x0, 0x1, 0x8001, 0xa2d, 0x30, 0x10001, 0x101, 0x2, 0x0, 0x1, 0x6, 0xd3, 0x1f, 0x800, 0x9cb98f63, 0x1000, 0xde0000, 0x1fc3db7d, 0x10000, 0x1, 0x8, 0x3, 0x0, 0x1000, 0x8, 0xfffffff7, 0xf8, 0x489, 0x4, 0x1, 0xb8a, 0x800, 0x6, 0x10001, 0x54bd, 0x401, 0x81, 0x80000001, 0x8, 0x1, 0x7, 0x2, 0x9, 0x5, 0x1000000, 0x7, 0xa43, 0x9, 0x6, 0x8, 0xffffff87, 0x5, 0x7, 0x2, 0x7, 0x9, 0x1, 0x5, 0x2960, 0x1, 0x1, 0x6, 0x101, 0x4, 0x0, 0x6, 0x3, 0x10000, 0xaa, 0x2, 0x40, 0x40, 0x800, 0x0, 0x200, 0x3ff, 0x8001, 0x10000, 0x6, 0x401, 0x3, 0x9, 0x7, 0x7fffffff, 0x8, 0x8de, 0x1, 0x45d6, 0x8, 0x5e06, 0x6, 0x4, 0x5, 0x200, 0x6], 0x6, 0x400, 0x7})
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, &(0x7f0000000000)={{@host, 0x2}, 0x5, 0x1ff, 0x5, 0xe1800000}) (async)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f00000010c0)={"7161e059e5bec5eb262b12e8c343cfcc08478923d6369e5d6978310651678121"}) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x602, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/cgroups\x00', 0x0, 0x0) (async)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000001140)={0x1}) (async)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r2, 0x7b2, &(0x7f0000001080)={&(0x7f0000000080)=[0x4, 0x9, 0xffffffff, 0x7, 0x3, 0xd45, 0x7, 0x5, 0xb2, 0x7, 0x5, 0x1, 0xff, 0x0, 0xbc, 0x101, 0x5, 0x0, 0x4, 0x5, 0x80000001, 0xffff, 0x4fd365c5, 0xffffffff, 0x8, 0xf96, 0x3ff, 0x7, 0xff, 0x0, 0xbef, 0x2, 0x7, 0x101, 0x2, 0x80000000, 0x0, 0x10001, 0x7f, 0x3, 0x7, 0xfffffffe, 0x2, 0x2, 0x3, 0x7, 0x8, 0x2, 0x7, 0x401, 0x5, 0x6, 0x1, 0x9ac, 0x1, 0x5, 0x1b71, 0x1000, 0xfffffffa, 0x4, 0x4, 0x81, 0x10000, 0x7fff, 0x7d, 0x1, 0x7fff, 0x44b, 0x0, 0x3f, 0x9, 0x10001, 0x0, 0x5, 0x0, 0xa096, 0x8, 0x21f0b169, 0x3, 0x1, 0x8000, 0x7, 0x5, 0x4, 0x5, 0x800, 0x5, 0x0, 0x8, 0x7fffffff, 0x80000000, 0x10001, 0x6e88, 0x0, 0x3, 0x4, 0x70000000, 0xcb, 0x6, 0x1000, 0x2, 0x0, 0xfac, 0x9, 0x0, 0x1ff, 0x401, 0x0, 0x8, 0x8000, 0x5, 0x2f62, 0x2, 0x80000001, 0x1, 0xf9, 0x40, 0x8, 0x5, 0x100, 0x10000, 0x40, 0x8, 0x7, 0x5, 0x80000000, 0x9, 0x300, 0xffff, 0x7, 0x7ff, 0x0, 0xa4ed, 0x4, 0x6, 0x7, 0x3, 0x6, 0x5, 0x0, 0x8, 0x8, 0x1, 0x81, 0x10000, 0x10000000, 0x6, 0xffff, 0x7, 0x9e2, 0x228, 0x9, 0x40, 0x0, 0xfffffffb, 0xfff, 0x1ff, 0x7, 0x51a, 0x6, 0x81, 0x0, 0x4, 0xffffffff, 0x2, 0xffffffff, 0x4, 0x2, 0x4, 0x6, 0x1, 0x1, 0x3, 0xffff95da, 0x10000, 0x378, 0x9, 0xe3, 0x1, 0x77e8, 0xfff, 0x4, 0x1000, 0x4, 0x3f, 0x5, 0x2, 0x7, 0x3, 0xffff5aa9, 0xffffffff, 0x0, 0x1, 0x7, 0x0, 0x8, 0x4ae282c5, 0x6687, 0x10001, 0x4, 0xfffff4e7, 0xffffffff, 0x7fff, 0x401, 0x6, 0x400, 0x101, 0xfffffffb, 0x2, 0x8, 0x6, 0x2, 0xfffffffa, 0x7, 0x4, 0x7fffffff, 0x3, 0x5, 0x0, 0x1, 0x3c3, 0x20000000, 0x452, 0x5, 0x20, 0x97, 0x9, 0x5, 0x101, 0x6, 0xca4, 0xffff, 0x8, 0x0, 0xffffffff, 0x1f, 0x3ff, 0x9, 0xa9, 0x4, 0xa6, 0x7, 0x3, 0x4, 0x8001, 0x2, 0x8000, 0x1, 0xfffffff7, 0x8, 0x2, 0x8, 0x8, 0x7, 0x9, 0x0, 0x7, 0x1f, 0x80000001, 0x7, 0x98c, 0x1, 0x55, 0x7, 0x696, 0xfff, 0x7fff, 0x0, 0x8, 0x8, 0x7b, 0xffffffff, 0x8000, 0x7, 0xffff0000, 0xfffffff8, 0x10001, 0x20, 0x4, 0x1, 0x5, 0x5, 0x400, 0x7fffffff, 0x3, 0x1ff, 0x4, 0x3f, 0x1, 0x1, 0x9, 0x8, 0x1, 0x1, 0x40, 0x5, 0x1, 0x9, 0x5, 0x4, 0x6611a0cb, 0x6, 0x2, 0x80000000, 0xbab, 0x5, 0x3, 0x5, 0xd6, 0x9, 0xed0, 0x7, 0x9f1, 0x8, 0x2, 0x1000, 0x1, 0x7, 0x4, 0x40, 0x6, 0x1, 0x9, 0x6, 0x8, 0x3, 0x80000000, 0x0, 0x3ff, 0xff, 0x8, 0x8000, 0x0, 0xfffffffd, 0x7, 0x5, 0x7, 0x40, 0x7b0784d1, 0x0, 0x9, 0x4, 0x4a, 0x7, 0x3ff, 0xe8d, 0xffffffff, 0x0, 0x81, 0x3, 0x4, 0x5, 0x9, 0x6, 0x800, 0x6, 0x200, 0x8000, 0x3, 0x5, 0x3, 0x40, 0x1, 0x81, 0x1, 0x1ff, 0x0, 0x2, 0x5, 0x3, 0x7, 0x2, 0x54, 0xfffffff8, 0x7, 0xb3d, 0x2, 0x40, 0x9, 0xdab, 0xfffffffd, 0x22, 0x7f, 0x7ea8266d, 0x3, 0xb947, 0x8000, 0x2, 0x1, 0xdd67, 0x7, 0x6, 0x5106bc73, 0xb18, 0x50dad6bc, 0x2c0, 0x4, 0x0, 0x7ff, 0xdd92, 0xff, 0x3, 0x41fc, 0x4, 0x1, 0x80000000, 0xfff, 0x7, 0x8, 0x101, 0x190ea63b, 0x8, 0x3, 0x53c6, 0x7fff, 0x4, 0xffff, 0x5c2, 0x9, 0x3ff, 0x85b, 0x199, 0x9, 0x10000, 0x42e, 0x1, 0xb516, 0x766, 0x5, 0x80000000, 0x7ff, 0x9, 0x80000001, 0x401, 0x5, 0xfc2, 0x2, 0x80000001, 0x1, 0x100, 0x1, 0xa0000000, 0x7, 0xf0c, 0x9, 0x6, 0xff, 0x3ff, 0x5, 0xfc53, 0xfffffeff, 0x7fff, 0x1, 0xeb, 0x3, 0x1, 0x0, 0x2, 0xfc, 0x2, 0xfff, 0xff, 0x2, 0x6, 0x3ff, 0x3, 0x62ca, 0xc3, 0x92b9, 0x5, 0xfffffffa, 0x87, 0x1, 0xec7, 0xb7f7, 0x1f, 0x0, 0x2, 0x5, 0x10000, 0x58f, 0x1, 0x4, 0xffffffa7, 0x3, 0x1b01e1c9, 0x1, 0x9, 0x6, 0x7, 0x44, 0x3, 0x1, 0xff, 0xfffffff9, 0x9, 0x6d9, 0x8, 0x8, 0x8000, 0x8020000, 0x35, 0xf4b, 0x5, 0x200, 0x8, 0x59a6, 0x0, 0xffffffff, 0x401, 0x8, 0x7, 0x7, 0x5, 0x85d, 0x8, 0x401, 0x1, 0x1, 0xc99, 0x8, 0x7, 0x591, 0x1b, 0x1, 0xdc, 0x4, 0x7, 0x8001, 0x3, 0x1000, 0x10000, 0x1, 0x0, 0x8, 0x759, 0x0, 0x59d0, 0x2cd14000, 0x9df3, 0x6, 0x7fffffff, 0x6, 0x7fff, 0x200, 0x8000, 0x1, 0x23e3, 0x101, 0x7, 0x80000000, 0xffffff01, 0x1, 0x5, 0x9c13, 0x1, 0x7a6e, 0x7, 0x5, 0xfffffffa, 0x63f7343e, 0x3, 0x7fff, 0x7e, 0x2, 0x3, 0x5, 0x2, 0x4, 0x0, 0x89678ae, 0x3, 0x4, 0x1, 0x1, 0x6, 0x1ff, 0x80e, 0x3, 0x6, 0x4, 0x7fffffff, 0x3ff, 0x3c6, 0x6, 0xe71, 0x9, 0x1, 0x1000, 0x6, 0x3f, 0x2, 0x9d, 0x1, 0xfffffc01, 0x8, 0x1f, 0x6, 0x3, 0x401, 0x8, 0xa3, 0xa1, 0x1, 0x1, 0x101, 0xfffff001, 0xfffffe01, 0x8, 0x20, 0x51, 0x0, 0x9, 0x6, 0x8, 0x3, 0x0, 0x101, 0x3, 0x0, 0xa9c, 0x8, 0x8, 0xea12, 0x0, 0x8c68, 0x7, 0xfffffffe, 0x5, 0x0, 0x4, 0x101, 0x5, 0xffff, 0x0, 0x6, 0x2, 0x1, 0x9, 0xf8b, 0x3ff, 0x10001, 0x5, 0x7, 0x8, 0x7, 0x7, 0xc84, 0xffffffff, 0x4, 0x9, 0x8000, 0x4, 0x9, 0x9, 0x6, 0x149ea49e, 0x3, 0x7, 0x1ff, 0xff, 0x8, 0x7f2, 0x4, 0xffff, 0x4, 0x60, 0x8, 0x80000000, 0x1e60b6c2, 0x5, 0x2, 0x3, 0x25f, 0xfffffff9, 0x4, 0x3, 0x4, 0x104d, 0xf9, 0xff, 0x9, 0x800, 0xfb, 0x1, 0x1, 0x1, 0xffffff00, 0x9, 0x7fffffff, 0x40, 0x1, 0x5, 0xfffffff9, 0x4, 0x0, 0x7f, 0x8, 0x0, 0x4, 0x9, 0x7fff, 0x85b, 0xffffffff, 0x3ff, 0x6, 0x7fff, 0x6, 0x7, 0x10001, 0xfff, 0x1, 0x401, 0x77, 0x6, 0x6, 0x1, 0x4, 0x2, 0xea08, 0x0, 0x7f, 0xfffff3f0, 0x3, 0x9, 0x2, 0x800, 0x40, 0x0, 0x9, 0x5, 0x800, 0x8, 0xffff, 0x1, 0x3, 0x6, 0x3, 0x3, 0x6, 0x5, 0x1000, 0x401, 0x0, 0x1, 0x8, 0xebd, 0x81, 0x397, 0x7ff, 0x20, 0x1, 0x2, 0x0, 0x7fffffff, 0xffff7fff, 0x1, 0x9, 0x7, 0xffff, 0x9, 0x3f400, 0x98, 0x7, 0x0, 0xff, 0xfff, 0x4800, 0x9, 0xffff, 0x0, 0x8e0, 0x80, 0x7fff, 0x31a, 0x3, 0x3, 0x8, 0x2, 0x8, 0x4, 0x1, 0x3aa, 0x0, 0x80, 0x1ff, 0x7, 0x400, 0x3, 0x6, 0x1f, 0x401, 0x1, 0xfffff3a2, 0x0, 0x7e13, 0x7, 0xfffffffb, 0x0, 0x1000, 0x6, 0x1, 0x6, 0x9, 0x10000, 0x0, 0x7, 0x8, 0xffffff9f, 0x8, 0x4278, 0x7d19, 0x0, 0x600, 0x4, 0x9, 0x1a9f, 0x80000000, 0x6, 0x7fffffff, 0xfff, 0x7, 0x0, 0x1, 0x23f, 0x7fff, 0x7, 0x0, 0x777, 0x6, 0x81, 0x7ff, 0x43743da, 0xffffba69, 0x4, 0x7, 0xffffffff, 0x0, 0x7ff, 0x3, 0xf2be, 0x7fff, 0x4, 0x6, 0x3dac60d0, 0x1, 0x9, 0x9, 0xccf, 0x80, 0x7f, 0x7, 0x7, 0x0, 0x7ff, 0xd4f9, 0x9, 0xfffffffd, 0x1, 0xc8, 0xffffff01, 0x7, 0x1, 0xfd, 0xfffff9d7, 0x100, 0xfffffffd, 0x8, 0x1, 0x3, 0x1, 0x8000, 0x29ce, 0xffffffff, 0x80000001, 0x8, 0x3, 0x0, 0x6, 0x8, 0x4f, 0x7, 0x2, 0x3f, 0x80, 0x0, 0x800, 0x1ff, 0x7f77, 0x2, 0x1, 0xf4ae, 0x6, 0x20, 0x2, 0x9, 0x8, 0x5, 0x7d3, 0x10000, 0xff, 0x1f, 0x1, 0x46d3, 0x0, 0x527, 0x8, 0xffffffff, 0x7fffffff, 0x3, 0x6, 0x0, 0x5, 0x6, 0x6, 0x6e, 0x800, 0x5, 0x1ff, 0x4, 0x6fb90730, 0x100, 0x1, 0x4, 0x827e, 0x2, 0x2, 0x8, 0x9, 0x0, 0x1, 0x8001, 0xa2d, 0x30, 0x10001, 0x101, 0x2, 0x0, 0x1, 0x6, 0xd3, 0x1f, 0x800, 0x9cb98f63, 0x1000, 0xde0000, 0x1fc3db7d, 0x10000, 0x1, 0x8, 0x3, 0x0, 0x1000, 0x8, 0xfffffff7, 0xf8, 0x489, 0x4, 0x1, 0xb8a, 0x800, 0x6, 0x10001, 0x54bd, 0x401, 0x81, 0x80000001, 0x8, 0x1, 0x7, 0x2, 0x9, 0x5, 0x1000000, 0x7, 0xa43, 0x9, 0x6, 0x8, 0xffffff87, 0x5, 0x7, 0x2, 0x7, 0x9, 0x1, 0x5, 0x2960, 0x1, 0x1, 0x6, 0x101, 0x4, 0x0, 0x6, 0x3, 0x10000, 0xaa, 0x2, 0x40, 0x40, 0x800, 0x0, 0x200, 0x3ff, 0x8001, 0x10000, 0x6, 0x401, 0x3, 0x9, 0x7, 0x7fffffff, 0x8, 0x8de, 0x1, 0x45d6, 0x8, 0x5e06, 0x6, 0x4, 0x5, 0x200, 0x6], 0x6, 0x400, 0x7}) (async)

20:49:41 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
r0 = getpgid(0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
socketpair(0x22, 0x2, 0x10001, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={r1, r2, 0x8001})
r3 = getpgid(r0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, 0x0) (async)
sendmsg$key(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="020400000700000000bd7000ffdbdf250400020001000100030000000000000000010000000000000000"], 0x30}}, 0x1) (async)
getpgid(r3) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000080)={0x0, <r5=>0x0})
ptrace$poke(0x4, r5, &(0x7f0000000100), 0x8)

[  828.712698] FAULT_INJECTION: forcing a failure.
[  828.712698] name failslab, interval 1, probability 0, space 0, times 0
20:49:41 executing program 0:
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="e0000000120000022dbd7000fedbde25626c616b6532732d3136302d61726d000000000000008000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000200000000000000000000000000000000000000000010d907000000000000000000000000000000000000000000000000000000000000000000b800000000040000002400"/221], 0xe0}, 0x1, 0x0, 0x0, 0x4008840}, 0x4000000)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r0, 0x40045109, &(0x7f0000000240)=0x7ff) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/partitions\x00', 0x0, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000300)={<r3=>0x0, @dev, @dev}, &(0x7f0000000340)=0xc)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r2, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x5c, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e1f}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4005}, 0x20020850) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
write$sysctl(r1, &(0x7f0000000200)='2\x00', 0x2)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)) (async)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r4, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r5, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r5, 0x0, r5, 0x0, r5, r5, r5, r5], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, &(0x7f0000000500)={&(0x7f0000000480)=[0x0, 0x0], &(0x7f00000004c0)=[0xac7, 0x1, 0x8e43, 0x5, 0x86, 0xde349a4, 0x3f], 0xa567, 0x2, 0x2})

20:49:41 executing program 0:
socketpair(0x10, 0x0, 0x7fffffd, 0x0)

[  828.768247] CPU: 1 PID: 22268 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  828.776161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  828.785512] Call Trace:
[  828.788106]  dump_stack+0x1b2/0x281
[  828.791742]  should_fail.cold+0x10a/0x149
[  828.796234]  should_failslab+0xd6/0x130
[  828.796248]  kmem_cache_alloc+0x28e/0x3c0
[  828.804367]  __d_alloc+0x2a/0xa20
[  828.807825]  ? d_lookup+0x172/0x220
[  828.811462]  d_alloc+0x46/0x240
[  828.814758]  __lookup_hash+0x101/0x270
20:49:41 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040))
r1 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000001c0)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r1, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r2, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r2, 0x0, r2, 0x0, r2, r2, r2, r2], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, r7, r7, 0x0, 0x0, 0x0, r7], &(0x7f0000000080)=[0x339e], 0x4, 0x9, 0x7})

[  828.818651]  filename_create+0x156/0x3f0
[  828.822720]  ? kern_path_mountpoint+0x40/0x40
[  828.827230]  SyS_mkdirat+0x95/0x270
[  828.830888]  ? SyS_mknod+0x30/0x30
[  828.834445]  ? fput_many+0xe/0x140
[  828.837991]  ? do_syscall_64+0x4c/0x640
[  828.841972]  ? SyS_mknod+0x30/0x30
[  828.845530]  do_syscall_64+0x1d5/0x640
[  828.849431]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  828.854621] RIP: 0033:0x7fcd83ff2217
[  828.858329] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
20:49:41 executing program 0:
socketpair(0x10, 0x0, 0x7fffffd, 0x0)

[  828.866039] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  828.873308] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  828.880584] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  828.887858] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  828.895132] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  828.917545] FAULT_INJECTION: forcing a failure.
[  828.917545] name failslab, interval 1, probability 0, space 0, times 0
[  828.930723] CPU: 1 PID: 22301 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  828.938626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  828.947974] Call Trace:
[  828.950549]  dump_stack+0x1b2/0x281
[  828.954171]  should_fail.cold+0x10a/0x149
[  828.958325]  should_failslab+0xd6/0x130
[  828.962296]  kmem_cache_alloc_node_trace+0x25a/0x400
[  828.967486]  __kmalloc_node_track_caller+0x38/0x70
[  828.972415]  __alloc_skb+0x96/0x510
[  828.976041]  kobject_uevent_env+0x882/0xf30
[  828.980354]  lo_ioctl+0x11a6/0x1cd0
[  828.983973]  ? loop_set_status64+0xe0/0xe0
[  828.988198]  blkdev_ioctl+0x540/0x1830
[  828.992070]  ? blkpg_ioctl+0x8d0/0x8d0
[  828.995941]  ? trace_hardirqs_on+0x10/0x10
[  829.000214]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  829.005395]  ? debug_check_no_obj_freed+0x2c0/0x680
[  829.010496]  block_ioctl+0xd9/0x120
[  829.014115]  ? blkdev_fallocate+0x3a0/0x3a0
[  829.018514]  do_vfs_ioctl+0x75a/0xff0
[  829.022314]  ? lock_acquire+0x170/0x3f0
[  829.026298]  ? ioctl_preallocate+0x1a0/0x1a0
[  829.030695]  ? __fget+0x265/0x3e0
[  829.034130]  ? do_vfs_ioctl+0xff0/0xff0
[  829.038189]  ? security_file_ioctl+0x83/0xb0
[  829.042593]  SyS_ioctl+0x7f/0xb0
[  829.045955]  ? do_vfs_ioctl+0xff0/0xff0
[  829.049942]  do_syscall_64+0x1d5/0x640
[  829.053819]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  829.059087] RIP: 0033:0x7f6b8cbe3ec7
[  829.062810] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  829.070532] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  829.077792] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  829.085049] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  829.092300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  829.099578] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:41 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 34)

20:49:41 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r1, 0x40045408)

20:49:41 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040))
r1 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000001c0)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r1, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r2, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r2, 0x0, r2, 0x0, r2, r2, r2, r2], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, r7, r7, 0x0, 0x0, 0x0, r7], &(0x7f0000000080)=[0x339e], 0x4, 0x9, 0x7})
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)) (async)
syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000001c0)) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r1, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r2, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r2, 0x0, r2, 0x0, r2, r2, r2, r2], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5}) (async)
syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, r7, r7, 0x0, 0x0, 0x0, r7], &(0x7f0000000080)=[0x339e], 0x4, 0x9, 0x7}) (async)

20:49:41 executing program 0:
socketpair(0x10, 0x0, 0x7fffffd, 0x0)

20:49:41 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = socket$bt_rfcomm(0x1f, 0x1, 0x3)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

20:49:41 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 38)

20:49:41 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
socketpair(0x2a, 0x800, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000080)={r0, r1, 0x1, 0x3b, &(0x7f0000000040)="88231efba24a239d72d37370d4bb9e2e470403798eb3129a0614f0fdaafc9bce62d1ca6b153a28c1f42838ecdfdd9bc8e1161ef42cf009839772cc", 0x0, 0x8, 0x5, 0x4, 0x7f, 0x1, 0x53d, 'syz1\x00'})

20:49:41 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async, rerun: 64)
r0 = socket$bt_rfcomm(0x1f, 0x1, 0x3) (rerun: 64)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

20:49:41 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

[  829.250574] FAULT_INJECTION: forcing a failure.
[  829.250574] name failslab, interval 1, probability 0, space 0, times 0
[  829.267629] FAULT_INJECTION: forcing a failure.
[  829.267629] name failslab, interval 1, probability 0, space 0, times 0
[  829.287801] CPU: 1 PID: 22347 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
20:49:41 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

20:49:41 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
socketpair(0x2a, 0x800, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}) (async)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000080)={r0, r1, 0x1, 0x3b, &(0x7f0000000040)="88231efba24a239d72d37370d4bb9e2e470403798eb3129a0614f0fdaafc9bce62d1ca6b153a28c1f42838ecdfdd9bc8e1161ef42cf009839772cc", 0x0, 0x8, 0x5, 0x4, 0x7f, 0x1, 0x53d, 'syz1\x00'})

[  829.295738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  829.305179] Call Trace:
[  829.307768]  dump_stack+0x1b2/0x281
[  829.311426]  should_fail.cold+0x10a/0x149
[  829.315902]  should_failslab+0xd6/0x130
[  829.315915]  __kmalloc+0x2c1/0x400
[  829.323430]  ? ext4_find_extent+0x879/0xbc0
[  829.327761]  ext4_find_extent+0x879/0xbc0
[  829.331919]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  829.337378]  ext4_ext_map_blocks+0x19a/0x6b10
[  829.341882]  ? __lock_acquire+0x5fc/0x3f20
[  829.346134]  ? __lock_acquire+0x5fc/0x3f20
[  829.350377]  ? mark_buffer_dirty+0x95/0x480
[  829.354707]  ? trace_hardirqs_on+0x10/0x10
[  829.358941]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  829.364314]  ? ext4_find_delalloc_cluster+0x180/0x180
[  829.369544]  ? trace_hardirqs_on+0x10/0x10
[  829.373781]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  829.378635]  ? ext4_es_lookup_extent+0x321/0xac0
[  829.383513]  ? lock_acquire+0x170/0x3f0
[  829.387595]  ? lock_acquire+0x170/0x3f0
[  829.391600]  ? ext4_map_blocks+0x29f/0x1730
[  829.391618]  ext4_map_blocks+0xb19/0x1730
20:49:41 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

[  829.391634]  ? ext4_issue_zeroout+0x150/0x150
[  829.391643]  ? __ext4_new_inode+0x27c/0x4eb0
[  829.391661]  ext4_getblk+0x98/0x3f0
[  829.391672]  ? ext4_iomap_begin+0x7f0/0x7f0
[  829.391688]  ext4_bread+0x6c/0x1a0
[  829.391698]  ? ext4_getblk+0x3f0/0x3f0
[  829.391706]  ? dquot_initialize_needed+0x240/0x240
[  829.391720]  ext4_append+0x143/0x350
[  829.391732]  ext4_mkdir+0x4c9/0xbd0
[  829.391748]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  829.391760]  ? security_inode_mkdir+0xca/0x100
[  829.391772]  vfs_mkdir+0x463/0x6e0
[  829.449456]  SyS_mkdirat+0x1fd/0x270
[  829.449467]  ? SyS_mknod+0x30/0x30
[  829.456700]  ? fput_many+0xe/0x140
[  829.460243]  ? do_syscall_64+0x4c/0x640
[  829.464219]  ? SyS_mknod+0x30/0x30
[  829.467753]  do_syscall_64+0x1d5/0x640
[  829.471627]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  829.476793] RIP: 0033:0x7fcd83ff2217
[  829.480478] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  829.488166] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  829.495435] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  829.502682] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  829.509934] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  829.517182] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  829.527189] CPU: 1 PID: 22351 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  829.535082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  829.544435] Call Trace:
[  829.547011]  dump_stack+0x1b2/0x281
[  829.550640]  should_fail.cold+0x10a/0x149
[  829.554772]  should_failslab+0xd6/0x130
[  829.558727]  kmem_cache_alloc_node_trace+0x25a/0x400
[  829.563828]  __kmalloc_node_track_caller+0x38/0x70
[  829.568742]  __alloc_skb+0x96/0x510
[  829.572350]  kobject_uevent_env+0x882/0xf30
[  829.576656]  lo_ioctl+0x11a6/0x1cd0
[  829.580265]  ? loop_set_status64+0xe0/0xe0
[  829.584485]  blkdev_ioctl+0x540/0x1830
[  829.588439]  ? blkpg_ioctl+0x8d0/0x8d0
[  829.592305]  ? trace_hardirqs_on+0x10/0x10
[  829.596537]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  829.601622]  ? debug_check_no_obj_freed+0x2c0/0x680
[  829.606714]  block_ioctl+0xd9/0x120
[  829.610319]  ? blkdev_fallocate+0x3a0/0x3a0
[  829.614623]  do_vfs_ioctl+0x75a/0xff0
[  829.618412]  ? lock_acquire+0x170/0x3f0
[  829.622378]  ? ioctl_preallocate+0x1a0/0x1a0
[  829.626778]  ? __fget+0x265/0x3e0
[  829.630209]  ? do_vfs_ioctl+0xff0/0xff0
[  829.634186]  ? security_file_ioctl+0x83/0xb0
[  829.638585]  SyS_ioctl+0x7f/0xb0
[  829.641939]  ? do_vfs_ioctl+0xff0/0xff0
[  829.645895]  do_syscall_64+0x1d5/0x640
[  829.649764]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  829.654931] RIP: 0033:0x7f6b8cbe3ec7
[  829.658621] RSP: 002b:00007f6b8b558f28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  829.666304] RAX: ffffffffffffffda RBX: 00007f6b8cc2da20 RCX: 00007f6b8cbe3ec7
[  829.673558] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  829.680921] RBP: 0000000000000005 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  829.688174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  829.695878] R13: 0000000000000004 R14: 0000000020002600 R15: 0000000000000000
20:49:42 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 35)

20:49:42 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async, rerun: 32)
socketpair(0x2a, 0x800, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}) (async, rerun: 32)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000080)={r0, r1, 0x1, 0x3b, &(0x7f0000000040)="88231efba24a239d72d37370d4bb9e2e470403798eb3129a0614f0fdaafc9bce62d1ca6b153a28c1f42838ecdfdd9bc8e1161ef42cf009839772cc", 0x0, 0x8, 0x5, 0x4, 0x7f, 0x1, 0x53d, 'syz1\x00'})

20:49:42 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r1, 0x40045408)

20:49:42 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)) (async)
r1 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f00000001c0)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r1, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r2, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r2, 0x0, r2, 0x0, r2, r2, r2, r2], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sysvipc/shm\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000006c0)={&(0x7f0000000600)=[0x0, 0x0, 0x0], &(0x7f0000000640)=[0x9, 0xc0b7, 0x7, 0x7, 0x7, 0x2, 0x6, 0x5, 0x1ff, 0x7ff], 0x1, 0x3, 0x2}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x0, 0x0, r7, r7, 0x0, 0x0, 0x0, r7], &(0x7f0000000080)=[0x339e], 0x4, 0x9, 0x7})

20:49:42 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
r0 = socket$bt_rfcomm(0x1f, 0x1, 0x3)
getsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

20:49:42 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 39)

20:49:42 executing program 3:
socketpair(0x5, 0x4, 0x20000000, 0x0)

20:49:42 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

[  829.865119] FAULT_INJECTION: forcing a failure.
[  829.865119] name failslab, interval 1, probability 0, space 0, times 0
20:49:42 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r0=>0x0}, 0x2020)
epoll_create(0x8)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f00000020c0)={0x60, 0x0, r0, {{0xfff, 0x3, 0x0, 0x8, 0x9f, 0x2, 0x4, 0xfffffff9}}}, 0x60)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x3, @multicast, 'veth1_virt_wifi\x00'}})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)

20:49:42 executing program 3:
socketpair(0x5, 0x4, 0x20000000, 0x0)

[  829.907218] FAULT_INJECTION: forcing a failure.
[  829.907218] name failslab, interval 1, probability 0, space 0, times 0
[  829.968888] CPU: 0 PID: 22409 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  829.976799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  829.986152] Call Trace:
[  829.988742]  dump_stack+0x1b2/0x281
[  829.992378]  should_fail.cold+0x10a/0x149
[  829.996531]  should_failslab+0xd6/0x130
[  830.000868]  kmem_cache_alloc+0x28e/0x3c0
[  830.005017]  ? ext4_sync_fs+0x7e0/0x7e0
[  830.009082]  ext4_alloc_inode+0x1a/0x640
[  830.013146]  ? ext4_sync_fs+0x7e0/0x7e0
[  830.017123]  alloc_inode+0x5d/0x170
[  830.020756]  new_inode+0x1d/0xf0
[  830.024129]  __ext4_new_inode+0x360/0x4eb0
[  830.028370]  ? kmem_cache_free+0x7c/0x2b0
[  830.032525]  ? putname+0xcd/0x110
[  830.035983]  ? SyS_mkdirat+0x95/0x270
[  830.039882]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  830.045436]  ? ext4_free_inode+0x1460/0x1460
[  830.049861]  ? lock_downgrade+0x740/0x740
[  830.054018]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  830.059127]  ? dquot_initialize_needed+0x240/0x240
[  830.064072]  ext4_mkdir+0x2e4/0xbd0
[  830.067714]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  830.072393]  ? security_inode_mkdir+0xca/0x100
[  830.076978]  vfs_mkdir+0x463/0x6e0
[  830.080529]  SyS_mkdirat+0x1fd/0x270
[  830.084260]  ? SyS_mknod+0x30/0x30
[  830.087812]  ? fput_many+0xe/0x140
[  830.091359]  ? do_syscall_64+0x4c/0x640
[  830.095339]  ? SyS_mknod+0x30/0x30
[  830.098884]  do_syscall_64+0x1d5/0x640
[  830.102780]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  830.107966] RIP: 0033:0x7fcd83ff2217
[  830.111682] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
20:49:42 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r0=>0x0}, 0x2020)
epoll_create(0x8)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f00000020c0)={0x60, 0x0, r0, {{0xfff, 0x3, 0x0, 0x8, 0x9f, 0x2, 0x4, 0xfffffff9}}}, 0x60)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x3, @multicast, 'veth1_virt_wifi\x00'}})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020}, 0x2020) (async)
epoll_create(0x8) (async)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f00000020c0)={0x60, 0x0, r0, {{0xfff, 0x3, 0x0, 0x8, 0x9f, 0x2, 0x4, 0xfffffff9}}}, 0x60) (async)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x3, @multicast, 'veth1_virt_wifi\x00'}}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0) (async)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0) (async)

20:49:42 executing program 3:
socketpair(0x5, 0x4, 0x20000000, 0x0)
socketpair(0x5, 0x4, 0x20000000, 0x0) (async)

[  830.119405] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  830.126763] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  830.134034] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  830.141315] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  830.148586] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  830.197003] CPU: 1 PID: 22412 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  830.204920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  830.214280] Call Trace:
[  830.216867]  dump_stack+0x1b2/0x281
[  830.220511]  should_fail.cold+0x10a/0x149
[  830.224667]  should_failslab+0xd6/0x130
[  830.228653]  kmem_cache_alloc+0x28e/0x3c0
[  830.232816]  getname_flags+0xc8/0x550
[  830.236627]  SyS_mkdirat+0x83/0x270
[  830.240266]  ? SyS_mknod+0x30/0x30
[  830.243813]  ? fput_many+0xe/0x140
[  830.247357]  ? do_syscall_64+0x4c/0x640
[  830.251336]  ? SyS_mknod+0x30/0x30
[  830.254883]  do_syscall_64+0x1d5/0x640
[  830.258788]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  830.263978] RIP: 0033:0x7f6b8cbe3217
[  830.267685] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  830.275480] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  830.282752] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  830.290028] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
20:49:42 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 36)

20:49:42 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:42 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 40)

20:49:42 executing program 1:
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r0=>0x0}, 0x2020)
epoll_create(0x8) (async)
write$FUSE_STATFS(0xffffffffffffffff, &(0x7f00000020c0)={0x60, 0x0, r0, {{0xfff, 0x3, 0x0, 0x8, 0x9f, 0x2, 0x4, 0xfffffff9}}}, 0x60) (async)
r1 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x3, @multicast, 'veth1_virt_wifi\x00'}})
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)

20:49:42 executing program 0:
socketpair(0x22, 0x0, 0x7fffff5, 0x0)

20:49:42 executing program 3:
socketpair(0x26, 0x800, 0x200, 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f00000000c0))
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r1, 0x4004510f, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000140)=""/72)
write$sequencer(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="80f2930c90021180050005880100fe0e0ba700016cffff05fa02048106031f0000000005c50e089b71c92e2fdb109d2b23efd7d5e37014ba1d19ccf5c1acaa63521a4ca13fc9836f741aa7033feb052a619336fb8abcfe0d10f8bf4349b7a3ef76653fbc8c4e277d89404fb7000000000000007ef81dc205672cfe617ddd8d28bf6f2002ed9a87a69699a2909a968fbc77e83877b43f8b3274327b0ed316aaec52f931c22024f1bc8f1279d2061fe77fa10e7c7e385fbdbc82911c14834ed43da1178e6f49fb2e6ead6610475ca92eb1c0746686572b00"/224], 0x34)
recvfrom$l2tp(r0, &(0x7f0000000000)=""/154, 0x9a, 0x2061, 0x0, 0x0)

[  830.297302] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  830.304573] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:42 executing program 0:
socketpair(0x22, 0x0, 0x7fffff5, 0x0)
socketpair(0x22, 0x0, 0x7fffff5, 0x0) (async)

[  830.408323] FAULT_INJECTION: forcing a failure.
[  830.408323] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  830.420156] CPU: 0 PID: 22500 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  830.428038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  830.437394] Call Trace:
[  830.439991]  dump_stack+0x1b2/0x281
[  830.443628]  should_fail.cold+0x10a/0x149
[  830.447793]  __alloc_pages_nodemask+0x22c/0x2720
[  830.452557]  ? kobject_uevent_env+0x274/0xf30
[  830.457075]  ? __lock_acquire+0x5fc/0x3f20
[  830.461323]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  830.466185]  ? blkdev_ioctl+0xf4/0x1830
[  830.470172]  ? blkpg_ioctl+0x8d0/0x8d0
[  830.474069]  ? trace_hardirqs_on+0x10/0x10
[  830.478312]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  830.483528]  cache_grow_begin+0x91/0x700
[  830.487601]  ? fs_reclaim_release+0xd0/0x110
[  830.488605] FAULT_INJECTION: forcing a failure.
[  830.488605] name failslab, interval 1, probability 0, space 0, times 0
[  830.492010]  ? check_preemption_disabled+0x35/0x240
[  830.492024]  cache_alloc_refill+0x273/0x350
[  830.492036]  kmem_cache_alloc+0x333/0x3c0
[  830.492051]  getname_flags+0xc8/0x550
[  830.520522]  SyS_mkdirat+0x83/0x270
[  830.524148]  ? SyS_mknod+0x30/0x30
[  830.527672]  ? fput_many+0xe/0x140
[  830.531196]  ? do_syscall_64+0x4c/0x640
[  830.535154]  ? SyS_mknod+0x30/0x30
[  830.538679]  do_syscall_64+0x1d5/0x640
[  830.542555]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  830.547728] RIP: 0033:0x7f6b8cbe3217
[  830.551419] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  830.559111] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  830.566365] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  830.573631] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  830.580911] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  830.588165] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  830.595436] CPU: 1 PID: 22509 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
20:49:43 executing program 3:
socketpair(0x26, 0x800, 0x200, 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f00000000c0))
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r1, 0x4004510f, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000140)=""/72)
write$sequencer(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="80f2930c90021180050005880100fe0e0ba700016cffff05fa02048106031f0000000005c50e089b71c92e2fdb109d2b23efd7d5e37014ba1d19ccf5c1acaa63521a4ca13fc9836f741aa7033feb052a619336fb8abcfe0d10f8bf4349b7a3ef76653fbc8c4e277d89404fb7000000000000007ef81dc205672cfe617ddd8d28bf6f2002ed9a87a69699a2909a968fbc77e83877b43f8b3274327b0ed316aaec52f931c22024f1bc8f1279d2061fe77fa10e7c7e385fbdbc82911c14834ed43da1178e6f49fb2e6ead6610475ca92eb1c0746686572b00"/224], 0x34)
recvfrom$l2tp(r0, &(0x7f0000000000)=""/154, 0x9a, 0x2061, 0x0, 0x0)
socketpair(0x26, 0x800, 0x200, 0x0) (async)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f00000000c0)) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r1, 0x4004510f, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000140)=""/72) (async)
write$sequencer(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="80f2930c90021180050005880100fe0e0ba700016cffff05fa02048106031f0000000005c50e089b71c92e2fdb109d2b23efd7d5e37014ba1d19ccf5c1acaa63521a4ca13fc9836f741aa7033feb052a619336fb8abcfe0d10f8bf4349b7a3ef76653fbc8c4e277d89404fb7000000000000007ef81dc205672cfe617ddd8d28bf6f2002ed9a87a69699a2909a968fbc77e83877b43f8b3274327b0ed316aaec52f931c22024f1bc8f1279d2061fe77fa10e7c7e385fbdbc82911c14834ed43da1178e6f49fb2e6ead6610475ca92eb1c0746686572b00"/224], 0x34) (async)
recvfrom$l2tp(r0, &(0x7f0000000000)=""/154, 0x9a, 0x2061, 0x0, 0x0) (async)

[  830.603320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  830.612670] Call Trace:
[  830.615278]  dump_stack+0x1b2/0x281
[  830.618915]  should_fail.cold+0x10a/0x149
[  830.623076]  should_failslab+0xd6/0x130
[  830.627067]  kmem_cache_alloc+0x40/0x3c0
[  830.631142]  __es_insert_extent+0x338/0x1360
[  830.635560]  ? __es_shrink+0x8c0/0x8c0
[  830.639464]  ? lock_acquire+0x170/0x3f0
[  830.643455]  ? ext4_es_insert_extent+0x11f/0x530
[  830.648227]  ext4_es_insert_extent+0x1b9/0x530
[  830.652823]  ? ext4_es_find_delayed_extent_range+0x930/0x930
20:49:43 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r1})
r2 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r2, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, r1], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, r1, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000080)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(0xffffffffffffffff, 0xc02064c3, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, r3, r7, 0x0], 0x8, 0x4, 0x5})

20:49:43 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r1})
r2 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r2, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, r1], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, r1, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000080)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(0xffffffffffffffff, 0xc02064c3, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, r3, r7, 0x0], 0x8, 0x4, 0x5})
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r1}) (async)
syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0xc00864bf, &(0x7f0000000300)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r2, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, r1], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, r1, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5}) (async)
syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000080)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(0xffffffffffffffff, 0xc02064c3, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, r3, r7, 0x0], 0x8, 0x4, 0x5}) (async)

[  830.658627]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  830.664093]  ? ext4_es_find_delayed_extent_range+0x646/0x930
[  830.669904]  ext4_ext_map_blocks+0x1e2c/0x6b10
[  830.674534]  ? __lock_acquire+0x5fc/0x3f20
[  830.678781]  ? __lock_acquire+0x5fc/0x3f20
[  830.683030]  ? mark_buffer_dirty+0x95/0x480
[  830.687361]  ? trace_hardirqs_on+0x10/0x10
[  830.691604]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  830.696976]  ? ext4_find_delalloc_cluster+0x180/0x180
[  830.702170]  ? trace_hardirqs_on+0x10/0x10
[  830.706417]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  830.711272]  ? ext4_es_lookup_extent+0x321/0xac0
[  830.716038]  ? lock_acquire+0x170/0x3f0
[  830.720017]  ? lock_acquire+0x170/0x3f0
[  830.724000]  ? ext4_map_blocks+0x29f/0x1730
[  830.728338]  ext4_map_blocks+0xb19/0x1730
[  830.732508]  ? ext4_issue_zeroout+0x150/0x150
[  830.737010]  ? __ext4_new_inode+0x27c/0x4eb0
[  830.741440]  ext4_getblk+0x98/0x3f0
[  830.745082]  ? ext4_iomap_begin+0x7f0/0x7f0
[  830.749416]  ext4_bread+0x6c/0x1a0
[  830.752965]  ? ext4_getblk+0x3f0/0x3f0
20:49:43 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r1}) (async)
r2 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r2, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, r1], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, r1, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5}) (async)
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000080)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(0xffffffffffffffff, 0xc02064c3, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, r3, r7, 0x0], 0x8, 0x4, 0x5})

[  830.756859]  ? dquot_initialize_needed+0x240/0x240
[  830.761794]  ext4_append+0x143/0x350
[  830.765605]  ext4_mkdir+0x4c9/0xbd0
[  830.769242]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  830.773919]  ? security_inode_mkdir+0xca/0x100
[  830.778519]  vfs_mkdir+0x463/0x6e0
[  830.782066]  SyS_mkdirat+0x1fd/0x270
[  830.785789]  ? SyS_mknod+0x30/0x30
[  830.789332]  ? fput_many+0xe/0x140
[  830.792871]  ? do_syscall_64+0x4c/0x640
[  830.796854]  ? SyS_mknod+0x30/0x30
[  830.800407]  do_syscall_64+0x1d5/0x640
[  830.804304]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
20:49:43 executing program 0:
socketpair(0x22, 0x0, 0x7fffff5, 0x0)

[  830.809501] RIP: 0033:0x7fcd83ff2217
[  830.813211] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  830.820925] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  830.828200] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  830.835471] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  830.842742] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  830.850012] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:43 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 37)

20:49:43 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x0, @local, 'gretap0\x00'}}, 0x1e)
recvfrom$l2tp(r0, &(0x7f0000000080)=""/203, 0xcb, 0x10041, &(0x7f0000000180)={0x2, 0x0, @private}, 0x10)
read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002200)={0x10, 0x0, r1}, 0x10)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, 0x0)

[  830.917253] FAULT_INJECTION: forcing a failure.
[  830.917253] name failslab, interval 1, probability 0, space 0, times 0
[  830.930217] CPU: 1 PID: 22571 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  830.938117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  830.947472] Call Trace:
[  830.950069]  dump_stack+0x1b2/0x281
[  830.953716]  should_fail.cold+0x10a/0x149
[  830.957960]  should_failslab+0xd6/0x130
[  830.961944]  kmem_cache_alloc+0x28e/0x3c0
[  830.966103]  ? ext4_sync_fs+0x7e0/0x7e0
[  830.970085]  ext4_alloc_inode+0x1a/0x640
[  830.974158]  ? ext4_sync_fs+0x7e0/0x7e0
[  830.978143]  alloc_inode+0x5d/0x170
[  830.981772]  new_inode+0x1d/0xf0
[  830.985129]  __ext4_new_inode+0x360/0x4eb0
[  830.989355]  ? kmem_cache_free+0x7c/0x2b0
[  830.993507]  ? putname+0xcd/0x110
[  830.997002]  ? SyS_mkdirat+0x95/0x270
[  831.000793]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  831.006152]  ? ext4_free_inode+0x1460/0x1460
[  831.010554]  ? lock_downgrade+0x740/0x740
[  831.014701]  ? _raw_spin_unlock_irqrestore+0x66/0xe0
[  831.019898]  ? dquot_initialize_needed+0x240/0x240
[  831.024821]  ext4_mkdir+0x2e4/0xbd0
[  831.028439]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  831.033093]  ? security_inode_mkdir+0xca/0x100
[  831.037667]  vfs_mkdir+0x463/0x6e0
[  831.041211]  SyS_mkdirat+0x1fd/0x270
[  831.044915]  ? SyS_mknod+0x30/0x30
[  831.048434]  ? fput_many+0xe/0x140
[  831.052034]  ? do_syscall_64+0x4c/0x640
[  831.056006]  ? SyS_mknod+0x30/0x30
[  831.059534]  do_syscall_64+0x1d5/0x640
[  831.063405]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  831.068574] RIP: 0033:0x7f6b8cbe3217
[  831.072262] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  831.079952] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  831.087201] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  831.094446] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  831.101710] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  831.108962] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:43 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 41)

20:49:43 executing program 0:
socketpair(0x5, 0x3, 0x7ffeffd, 0x0)
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, '-+\\F'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x10091)
socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)

20:49:43 executing program 3:
socketpair(0x26, 0x800, 0x200, 0x0) (async)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f00000000c0)) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r1, 0x4004510f, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000140)=""/72)
write$sequencer(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="80f2930c90021180050005880100fe0e0ba700016cffff05fa02048106031f0000000005c50e089b71c92e2fdb109d2b23efd7d5e37014ba1d19ccf5c1acaa63521a4ca13fc9836f741aa7033feb052a619336fb8abcfe0d10f8bf4349b7a3ef76653fbc8c4e277d89404fb7000000000000007ef81dc205672cfe617ddd8d28bf6f2002ed9a87a69699a2909a968fbc77e83877b43f8b3274327b0ed316aaec52f931c22024f1bc8f1279d2061fe77fa10e7c7e385fbdbc82911c14834ed43da1178e6f49fb2e6ead6610475ca92eb1c0746686572b00"/224], 0x34) (async)
recvfrom$l2tp(r0, &(0x7f0000000000)=""/154, 0x9a, 0x2061, 0x0, 0x0)

20:49:43 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:43 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x0, @local, 'gretap0\x00'}}, 0x1e) (async)
recvfrom$l2tp(r0, &(0x7f0000000080)=""/203, 0xcb, 0x10041, &(0x7f0000000180)={0x2, 0x0, @private}, 0x10)
read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002200)={0x10, 0x0, r1}, 0x10) (async)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, 0x0)

20:49:43 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 38)

20:49:43 executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x410000, 0x0)
socketpair(0x6, 0x5, 0x0, 0x0)
getpgid(0x0)

20:49:43 executing program 0:
socketpair(0x5, 0x3, 0x7ffeffd, 0x0)
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, '-+\\F'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x10091)
socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)
socketpair(0x5, 0x3, 0x7ffeffd, 0x0) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff) (async)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, '-+\\F'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x10091) (async)
socket$bt_rfcomm(0x1f, 0x1, 0x3) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080)) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0) (async)

20:49:43 executing program 4:
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

[  831.187663] FAULT_INJECTION: forcing a failure.
[  831.187663] name failslab, interval 1, probability 0, space 0, times 0
[  831.240984] FAULT_INJECTION: forcing a failure.
[  831.240984] name failslab, interval 1, probability 0, space 0, times 0
[  831.242957] CPU: 1 PID: 22592 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  831.260086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  831.269527] Call Trace:
[  831.272124]  dump_stack+0x1b2/0x281
[  831.275778]  should_fail.cold+0x10a/0x149
[  831.279922]  should_failslab+0xd6/0x130
[  831.283895]  kmem_cache_alloc+0x28e/0x3c0
[  831.288054]  getname_flags+0xc8/0x550
[  831.291866]  SyS_mkdirat+0x83/0x270
[  831.295513]  ? SyS_mknod+0x30/0x30
[  831.299067]  ? fput_many+0xe/0x140
[  831.302609]  ? do_syscall_64+0x4c/0x640
[  831.306590]  ? SyS_mknod+0x30/0x30
[  831.310216]  do_syscall_64+0x1d5/0x640
[  831.314104]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  831.319298] RIP: 0033:0x7f6b8cbe3217
[  831.323005] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  831.330715] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  831.337992] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  831.345261] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  831.352528] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  831.359798] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  831.367084] CPU: 0 PID: 22598 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  831.374974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  831.384327] Call Trace:
[  831.386921]  dump_stack+0x1b2/0x281
[  831.390556]  should_fail.cold+0x10a/0x149
[  831.394716]  should_failslab+0xd6/0x130
[  831.398694]  __kmalloc+0x2c1/0x400
[  831.402239]  ? ext4_find_extent+0x879/0xbc0
[  831.406577]  ext4_find_extent+0x879/0xbc0
[  831.410735]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  831.416214]  ext4_ext_map_blocks+0x19a/0x6b10
[  831.420741]  ? __lock_acquire+0x5fc/0x3f20
[  831.425082]  ? mark_buffer_dirty+0x95/0x480
[  831.429433]  ? trace_hardirqs_on+0x10/0x10
[  831.433674]  ? __ext4_handle_dirty_metadata+0x120/0x480
20:49:43 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x0, @local, 'gretap0\x00'}}, 0x1e)
recvfrom$l2tp(r0, &(0x7f0000000080)=""/203, 0xcb, 0x10041, &(0x7f0000000180)={0x2, 0x0, @private}, 0x10)
read$FUSE(r0, &(0x7f00000001c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002200)={0x10, 0x0, r1}, 0x10) (async)
ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, 0x0)

20:49:43 executing program 0:
socketpair(0x5, 0x3, 0x7ffeffd, 0x0)
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, '-+\\F'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x10091)
socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)
socketpair(0x5, 0x3, 0x7ffeffd, 0x0) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff) (async)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, '-+\\F'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x10091) (async)
socket$bt_rfcomm(0x1f, 0x1, 0x3) (async)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080)) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0) (async)

20:49:43 executing program 0:
socketpair(0xb, 0x9, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r1)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x20004000)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0)
epoll_create1(0x80000)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r4, 0x4004510f, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r4)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$SNDCTL_MIDI_PRETIME(r4, 0xc0046d00, &(0x7f0000000240)=0x9)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200029bd7000fbdbdfdc0a68fb54eb988a6431ae701e03"], 0x5c}, 0x1, 0x0, 0x0, 0x40895}, 0xc000)

[  831.439054]  ? ext4_find_delalloc_cluster+0x180/0x180
[  831.444253]  ? trace_hardirqs_on+0x10/0x10
[  831.448502]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  831.453354]  ? ext4_es_lookup_extent+0x321/0xac0
[  831.458122]  ? lock_acquire+0x170/0x3f0
[  831.462108]  ? lock_acquire+0x170/0x3f0
[  831.466088]  ? ext4_map_blocks+0x623/0x1730
[  831.470434]  ext4_map_blocks+0x675/0x1730
[  831.470450]  ? ext4_issue_zeroout+0x150/0x150
[  831.470459]  ? __ext4_new_inode+0x27c/0x4eb0
[  831.470473]  ext4_getblk+0x98/0x3f0
[  831.470483]  ? ext4_iomap_begin+0x7f0/0x7f0
[  831.470498]  ext4_bread+0x6c/0x1a0
[  831.470508]  ? ext4_getblk+0x3f0/0x3f0
[  831.470515]  ? dquot_initialize_needed+0x240/0x240
[  831.470528]  ext4_append+0x143/0x350
[  831.470539]  ext4_mkdir+0x4c9/0xbd0
[  831.470552]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  831.470566]  ? security_inode_mkdir+0xca/0x100
[  831.470579]  vfs_mkdir+0x463/0x6e0
[  831.470591]  SyS_mkdirat+0x1fd/0x270
[  831.470601]  ? SyS_mknod+0x30/0x30
[  831.470608]  ? fput_many+0xe/0x140
[  831.470618]  ? do_syscall_64+0x4c/0x640
[  831.470627]  ? SyS_mknod+0x30/0x30
[  831.470635]  do_syscall_64+0x1d5/0x640
[  831.470651]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  831.470659] RIP: 0033:0x7fcd83ff2217
20:49:44 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 42)

20:49:44 executing program 4:
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:44 executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x410000, 0x0) (async)
socketpair(0x6, 0x5, 0x0, 0x0)
getpgid(0x0)

20:49:44 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 39)

20:49:44 executing program 0:
socketpair(0xb, 0x9, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r1)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x20004000)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0)
epoll_create1(0x80000)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r4, 0x4004510f, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r4)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$SNDCTL_MIDI_PRETIME(r4, 0xc0046d00, &(0x7f0000000240)=0x9)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200029bd7000fbdbdfdc0a68fb54eb988a6431ae701e03"], 0x5c}, 0x1, 0x0, 0x0, 0x40895}, 0xc000)
socketpair(0xb, 0x9, 0x7fffffd, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r1) (async)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x20004000) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0) (async)
epoll_create1(0x80000) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r4, 0x4004510f, 0x0) (async)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r4) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$SNDCTL_MIDI_PRETIME(r4, 0xc0046d00, &(0x7f0000000240)=0x9) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0) (async)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200029bd7000fbdbdfdc0a68fb54eb988a6431ae701e03"], 0x5c}, 0x1, 0x0, 0x0, 0x40895}, 0xc000) (async)

[  831.470664] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  831.470674] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
20:49:44 executing program 4:
r0 = syz_init_net_socket$ax25(0x3, 0x0, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

[  831.470680] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  831.470686] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  831.470691] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  831.470697] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  831.708760] FAULT_INJECTION: forcing a failure.
[  831.708760] name failslab, interval 1, probability 0, space 0, times 0
[  831.708773] CPU: 0 PID: 22661 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  831.708779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  831.708782] Call Trace:
[  831.708798]  dump_stack+0x1b2/0x281
[  831.708813]  should_fail.cold+0x10a/0x149
[  831.708828]  should_failslab+0xd6/0x130
[  831.708840]  kmem_cache_alloc+0x28e/0x3c0
[  831.708853]  __d_alloc+0x2a/0xa20
[  831.708862]  ? d_lookup+0x172/0x220
[  831.708874]  d_alloc+0x46/0x240
[  831.708886]  __lookup_hash+0x101/0x270
[  831.708898]  filename_create+0x156/0x3f0
[  831.708910]  ? kern_path_mountpoint+0x40/0x40
[  831.708926]  SyS_mkdirat+0x95/0x270
[  831.708937]  ? SyS_mknod+0x30/0x30
[  831.708945]  ? fput_many+0xe/0x140
[  831.708955]  ? do_syscall_64+0x4c/0x640
[  831.708964]  ? SyS_mknod+0x30/0x30
[  831.708974]  do_syscall_64+0x1d5/0x640
[  831.708989]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  831.708996] RIP: 0033:0x7f6b8cbe3217
[  831.709001] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  831.709011] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  831.709017] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  831.709023] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  831.709028] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  831.709033] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  831.719332] FAULT_INJECTION: forcing a failure.
[  831.719332] name failslab, interval 1, probability 0, space 0, times 0
[  831.719344] CPU: 0 PID: 22660 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  831.719350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  831.719354] Call Trace:
[  831.719368]  dump_stack+0x1b2/0x281
[  831.719381]  should_fail.cold+0x10a/0x149
[  831.719395]  should_failslab+0xd6/0x130
[  831.719407]  __kmalloc+0x2c1/0x400
[  831.719415]  ? ext4_find_extent+0x879/0xbc0
[  831.719427]  ext4_find_extent+0x879/0xbc0
[  831.719439]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  831.719449]  ext4_ext_map_blocks+0x19a/0x6b10
[  831.719464]  ? __lock_acquire+0x5fc/0x3f20
[  831.719476]  ? mark_buffer_dirty+0x95/0x480
[  831.719484]  ? trace_hardirqs_on+0x10/0x10
[  831.719492]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  831.719500]  ? ext4_find_delalloc_cluster+0x180/0x180
[  831.719508]  ? trace_hardirqs_on+0x10/0x10
[  831.719518]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  831.719533]  ? ext4_es_lookup_extent+0x321/0xac0
[  831.719543]  ? lock_acquire+0x170/0x3f0
[  831.719555]  ? lock_acquire+0x170/0x3f0
[  831.719564]  ? ext4_map_blocks+0x623/0x1730
[  831.719580]  ext4_map_blocks+0x675/0x1730
[  831.719604]  ? ext4_issue_zeroout+0x150/0x150
[  831.719615]  ? __ext4_new_inode+0x27c/0x4eb0
[  831.719634]  ext4_getblk+0x98/0x3f0
[  831.719646]  ? ext4_iomap_begin+0x7f0/0x7f0
[  831.719661]  ext4_bread+0x6c/0x1a0
[  831.719670]  ? ext4_getblk+0x3f0/0x3f0
[  831.719677]  ? dquot_initialize_needed+0x240/0x240
[  831.719689]  ext4_append+0x143/0x350
[  831.719701]  ext4_mkdir+0x4c9/0xbd0
[  831.719715]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  831.719727]  ? security_inode_mkdir+0xca/0x100
[  831.719738]  vfs_mkdir+0x463/0x6e0
[  831.719750]  SyS_mkdirat+0x1fd/0x270
[  831.719761]  ? SyS_mknod+0x30/0x30
[  831.719769]  ? fput_many+0xe/0x140
[  831.719779]  ? do_syscall_64+0x4c/0x640
[  831.719788]  ? SyS_mknod+0x30/0x30
[  831.719798]  do_syscall_64+0x1d5/0x640
20:49:44 executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x410000, 0x0)
socketpair(0x6, 0x5, 0x0, 0x0)
getpgid(0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x410000, 0x0) (async)
socketpair(0x6, 0x5, 0x0, 0x0) (async)
getpgid(0x0) (async)

20:49:44 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
ioctl$SNDCTL_TMR_TIMEBASE(r3, 0xc0045401, &(0x7f0000000080)=0x225)
socketpair(0x25, 0x8000c, 0xfffffffd, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
ioctl$PPPOEIOCDFWD(r4, 0xb101, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:44 executing program 0:
socketpair(0xb, 0x9, 0x7fffffd, 0x0) (async)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000440)={0x2020}, 0x2020)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r1)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x20004000)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0) (async)
epoll_create1(0x80000)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r4, 0x4004510f, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r4)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$SNDCTL_MIDI_PRETIME(r4, 0xc0046d00, &(0x7f0000000240)=0x9)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r5, 0xc02864ca, 0x0) (async)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200029bd7000fbdbdfdc0a68fb54eb988a6431ae701e03"], 0x5c}, 0x1, 0x0, 0x0, 0x40895}, 0xc000)

20:49:44 executing program 4:
r0 = syz_init_net_socket$ax25(0x3, 0x0, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:44 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

20:49:44 executing program 4:
r0 = syz_init_net_socket$ax25(0x3, 0x0, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:44 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 43)

20:49:44 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
write$sequencer(0xffffffffffffffff, &(0x7f0000000000)=[@l={0x92, 0x2, 0xe0, 0x7, 0x4, 0x28, 0xfffa}], 0x8)

20:49:44 executing program 4:
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:44 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 40)

20:49:44 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
ioctl$SNDCTL_TMR_TIMEBASE(r3, 0xc0045401, &(0x7f0000000080)=0x225) (async)
socketpair(0x25, 0x8000c, 0xfffffffd, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
ioctl$PPPOEIOCDFWD(r4, 0xb101, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  831.719812]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  832.073481] RIP: 0033:0x7fcd83ff2217
[  832.073487] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  832.073498] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  832.073504] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
20:49:44 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
write$sequencer(0xffffffffffffffff, &(0x7f0000000000)=[@l={0x92, 0x2, 0xe0, 0x7, 0x4, 0x28, 0xfffa}], 0x8)

20:49:44 executing program 4:
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

[  832.073509] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  832.073514] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
20:49:44 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0) (async)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50) (async)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000)) (async)

20:49:44 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
ioctl$SNDCTL_TMR_TIMEBASE(r3, 0xc0045401, &(0x7f0000000080)=0x225) (async)
socketpair(0x25, 0x8000c, 0xfffffffd, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
ioctl$PPPOEIOCDFWD(r4, 0xb101, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:44 executing program 4:
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

[  832.073519] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  832.235289] FAULT_INJECTION: forcing a failure.
[  832.235289] name failslab, interval 1, probability 0, space 0, times 0
[  832.266505] FAULT_INJECTION: forcing a failure.
[  832.266505] name failslab, interval 1, probability 0, space 0, times 0
20:49:44 executing program 4:
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

20:49:44 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socketpair(0x21, 0xc, 0xfffe, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
getsockname$l2tp(r1, &(0x7f0000000040)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10)

[  832.290470] CPU: 1 PID: 22737 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  832.298377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  832.307751] Call Trace:
[  832.307772]  dump_stack+0x1b2/0x281
[  832.307789]  should_fail.cold+0x10a/0x149
[  832.307801]  should_failslab+0xd6/0x130
[  832.307814]  __kmalloc+0x2c1/0x400
[  832.307823]  ? ext4_find_extent+0x879/0xbc0
[  832.307834]  ext4_find_extent+0x879/0xbc0
[  832.307847]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  832.307855]  ext4_ext_map_blocks+0x19a/0x6b10
[  832.307864]  ? __lock_acquire+0x5fc/0x3f20
[  832.307874]  ? __lock_acquire+0x5fc/0x3f20
[  832.307888]  ? mark_buffer_dirty+0x95/0x480
[  832.307894]  ? trace_hardirqs_on+0x10/0x10
[  832.307901]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  832.307910]  ? ext4_find_delalloc_cluster+0x180/0x180
[  832.307917]  ? trace_hardirqs_on+0x10/0x10
[  832.307927]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  832.307941]  ? ext4_es_lookup_extent+0x321/0xac0
[  832.307951]  ? lock_acquire+0x170/0x3f0
[  832.307962]  ? lock_acquire+0x170/0x3f0
[  832.393876]  ? ext4_map_blocks+0x29f/0x1730
[  832.393891]  ext4_map_blocks+0xb19/0x1730
[  832.402366]  ? ext4_issue_zeroout+0x150/0x150
[  832.402376]  ? __ext4_new_inode+0x27c/0x4eb0
[  832.402393]  ext4_getblk+0x98/0x3f0
[  832.402404]  ? ext4_iomap_begin+0x7f0/0x7f0
[  832.402420]  ext4_bread+0x6c/0x1a0
[  832.402429]  ? ext4_getblk+0x3f0/0x3f0
[  832.402438]  ? dquot_initialize_needed+0x240/0x240
[  832.402450]  ext4_append+0x143/0x350
[  832.402462]  ext4_mkdir+0x4c9/0xbd0
[  832.402477]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  832.402490]  ? security_inode_mkdir+0xca/0x100
[  832.402501]  vfs_mkdir+0x463/0x6e0
[  832.402514]  SyS_mkdirat+0x1fd/0x270
[  832.402524]  ? SyS_mknod+0x30/0x30
[  832.402532]  ? fput_many+0xe/0x140
[  832.402542]  ? do_syscall_64+0x4c/0x640
[  832.402551]  ? SyS_mknod+0x30/0x30
[  832.402560]  do_syscall_64+0x1d5/0x640
[  832.402576]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  832.402584] RIP: 0033:0x7f6b8cbe3217
[  832.402589] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  832.402599] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  832.402610] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  832.402617] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  832.402623] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  832.402628] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  832.406171] CPU: 1 PID: 22734 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  832.535504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  832.535508] Call Trace:
[  832.535524]  dump_stack+0x1b2/0x281
[  832.551335]  should_fail.cold+0x10a/0x149
[  832.551350]  should_failslab+0xd6/0x130
[  832.559466]  kmem_cache_alloc+0x28e/0x3c0
[  832.559478]  ext4_mb_new_blocks+0x514/0x3db0
[  832.559493]  ? ext4_find_extent+0x6f7/0xbc0
20:49:45 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 44)

20:49:45 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socketpair(0x21, 0xc, 0xfffe, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
getsockname$l2tp(r1, &(0x7f0000000040)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10)

20:49:45 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
write$sequencer(0xffffffffffffffff, &(0x7f0000000000)=[@l={0x92, 0x2, 0xe0, 0x7, 0x4, 0x28, 0xfffa}], 0x8)

20:49:45 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 41)

20:49:45 executing program 4:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

[  832.559500]  ? ext4_ext_search_right+0x2bc/0xaa0
[  832.559511]  ? ext4_inode_to_goal_block+0x29a/0x3b0
20:49:45 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
socketpair(0x21, 0xc, 0xfffe, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
getsockname$l2tp(r1, &(0x7f0000000040)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10)

20:49:45 executing program 3:
socketpair(0x26, 0x2, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000001100)=ANY=[@ANYBLOB="02167f000d02000026bd7000ffdbdf2504000400080000000200000000000000000000000000000000000000000000000400020002000000c00c000000000000010000000000000002000000000000000102180078050010cddd3e9cf90d5ddfefd704f24aa9725a57128d4674a5fd5e806f50cf8b8f185c732525d647479428580dd807de278f5e0a646d56c57110c187cf9884e1a8284fc841b641df23f2c0f3b03b06361e7e35c377d7aac7f7671564c735399db38f665d9e672b1546a4446b883a8856082b3678b32dd5b7b189cbb17e235605153bcabc188a1cd45b5386e6afe88dfc516b34832336de93e1fdcada04c6747a9d0633ca37f4633de125cf7c6c47f5177d0679e0a432f5ed0166cfaaa2fde1173e9274851c7bcd300c9e1aa23dd4c450b8013c3465c368ac7b73fc2bb83511515840bc0ae9a7ac7e9fd60d3e8a5e622ed75dbea7b9ddaf3742059002fb8e7cd0f005f11eafd08f90e17d4fd72d74f2d25e2cca71895426d571c29d6b214b376e587c88044464867737c621503dfe62485e953744f3c63353c580f3e514906923f3aadd32470584e535bb0cf0f57cfe942804d17e79012ba8657b1e30db28d4a21b6ad843682d9297c28cb39f3a1467ec27d7912bab4f9f00f403ab7bdc9a5033a1a307048903cdd56df8ac4ec3eda95145ce2a5549b1e72190738ddf79d083f5605278e9c26cf59edbc03039af68e151ba339f2c7e1b703a93db9125e8c26de48dd3991e71a41a0512f21a2e4229c61421581d7cef97e9c1e52f2a40e7d13055603c72a59106854650fe9d6f5f14967c13594a819215eba62a2c6b7e4f31c6ae8a9e34fbdbfa33228ab05fb60f886dd58012cf519f3e9d6427134609f37aed08097430f9a23a45ddd38f6adabd2f5ac08673efcb7105780f5df8c74064b47b91b0308ee3bd7c8a40c605751a35e51ff1378431ee53b8e4159a8442ea49254a90c70ad2aebc16fb3806446af535ce727d1575c2ebd0aea23895210d22ef099ff605844bb7508197e7941c5cb953e47978c300ae6b72e0c83fe62e807be648ce517994966b0c8a900b1450673e1b7f07a1749616efc06c33ed05f124f76ee90695e120903e93a930b6ded746196071197610c34c4c4b475ccb8edea49952982fdc50eb1536070b6b45146c15da2875cd81c095c096dc6f9a66441bd8a236d48f338346238275f653cccbfaa8d7c6444844b4037ed82dd1e73588595b01b4f19fab67f497ebcc6d6eaa0341b683ddb7caa60945a896bd0be7c151cfba220fce81b301437dd9731d8318e66a36529ec7e252ee6ed848c06cb3cd46570871a9b1b610f728a3e0bfe349c693e95b6f5e3bf7a9bd927b5b03e2eb6cfaa3af8c416c3ccafa9e7a06505726d9feb6724b205251fd8c3cc83f7e84d45c6787027049bc076d22a032f671f6c5fdfbf21e76f8e5dcf6564a12106d3732f58632814266f021220c4cd97f1d5304f67ab9905e0cd6d62e6c734b3b8e32aa25ba8a5222b4b1a4bb1917c8d54f191cc9c43b2c6887fce974ab7a415ee7ef2dfbb8a24c8eabac6b2ed4397e8202d20e76277454880a182649662372a19de530e6a75c1f919a3329d5174d21ef7d47d6f928a3889d2b7b05c00385718682b52e54d92e829e540e0c2ae37beb399d425137c0ee3f1a37a54b940c4bc40fef5ec3ad4452e9868365756df12369b443f48e3d7ea50e17f916863622c679431f5c4871d9d9f24ee94c43001dee8b1e9648bfbefb657d6cbc9c2cc33eea69eb0cc86683d2c5f6d6ff9be3022e1b2085bb09c49b61dca2375669ae3ef1548f86ae560b5f823ddd689b4376a40128f9ce26686f393af028b611d86e3797cf37aa2dbf8b991788dc7f68abcddbb2b82a9bbd25193e421643a6062e2968bcc7833ab6185803f844b713b0554d630842e64de878fa424c1fe0670eb24edfc4ea283fef35c014674c6cc37211ad086af761054bce9c0fbeee768002b4a93999639a6d37d91365d7cc3ddb365a5855ac18bc7992eefb43c1ef09ab132290cdc0a311c7a938a99652999076efc7d9cedb30ce3905422b8ea8ed2aafcacba929706ffc97852a291797daa7c20899c2ee2bb9b246b08d074bb2905cd006b4f34c45c684482a7d0a118db5878d3b3d4f2e06bbc3dc0890e04dee0817959de2eed2710664e0f26fd70bf2694d4be80d79a66794354e69f81c9e49ddac3ba392ed33367d84fcb011d46adce97d69234da368d511d68701549989508ad3fcd1baa95a187bf8a920928181c644878d630e9b4c08efbdf5317c1653f617bab0f98d4ca4ae1b5253841b6d8174ce62465730d45b2b9d694592f42b3acef7ab7899483f1a7bb533ef38f5f4569a10112b31a670c3516239ea8754a3d7a10435c4d720ce03d0ed77a368c0eab3e50d7eb4577e5064063f26149ab8aed10aa7219b8e151040f14dd26c1f3628d3ebc87ec4e3f4a1c077925f79df5c2451ba1f78d23e0d5ac6749d4035fcdee2e17a342eb1de13ded6c83000218b7cb5ca00cdd0bf3286d15c7acacab23bcb3e259fd78e9afa134fe0f6dabaa7d480ad55b0008147626e439b6ce0d854abb169f6773c2c9688e7920b21c29c1a4570d0d0cf595639055010e1523ffde25068d86b4e4760d398b5bcd7753801b3b2e42de35e697bddf7114d8ca098756c4b3cdc9891d37f55f36f314dcda7e979bcf454a7719c84731fc6676c2a634797051d8e43c3aa7713246723f2d3a651f0145234366cddb618595a0f2c8bd49cf003df579c1c5918e51a2583d746b63a5f1b620236d2c5748c66a65d154f2f7e15495acc151d776a94ac3c1d7b3852531d3bbc46e6c16148809c798c2e3a2412ff9753f2c1fc1ef8faae2d966306df3016d323f722a3d183e041d36ee19f7adaf8aa5a351208649143bf860c54ad8c4804d0f5665ae612c9865965a33dc050f27240d2fe98443057c389e1245c6f551f2688e2b3fd1c86d40c324a7b34d8d1a60bc6984f825e8657e69177557e169c161c057331b6c67466ddfeb687872ddeda18f32389ef1f4dabb463ea70b8b421d5e7de6468db25753d0f23e8e0a368ca52a39a8b915e3091ef06a7c0c32e3d7e01eb49ec9ea7decd97a649cdcec13c6dcb4f718296d3fb7bf46b1926f5a6171b49cacd6c19334eb3d609127366c931f2990abf7b89e37704340cccbc3b0189b2b975100975959a0dc8f004dcec5799306b418c132f12e0f7d38d7927e9507f9c5efc86ebf7c9630153bcd1cefc9a34f456d47f940daa07b04f3737c024d3e8dea0ee926208061daf862cd2d5974d46fb5fb424071e3a45ae908e694e0764b452af6c519cf64f5364a82a01973bebd00d95542267c4947751b485ea462952fd08d1c897424d1a822b5616191849b1f8e167c957d1b156559d0200d71106677d089881ed73d0dfa01fcef316d22e0c2495f92a9390ce5f5261a2d4970b7bebc52b666de80b5b612d8ae8290bf8d1a5817c7be43bb2c40af6262e6a3ffe89a637746e7f0156b07a3164f6d2622b748246b090b5150a48b2c421332cfc82a4b497d8dc12c7b3d031551489a82c9223a72cedfa517a2e97b9584485db156b00de2a3f825b56df47667fbeaeebe6d43615db54394eff664393e5bc1939d6f752d4e0eb2eb6f0e196447dcd25db9ede1e3922175cb638ed2f1e23941a1ad90ef21385984e7defe04d05fca7f61107f67c4189c75247bf435df36d4b5e575798fa42ca0123697719896765fa31f6595827c8ccd7017c22cc54557e146e159d266df63e40e638bebe2c97691f245b667b4ec6b7707ad854eb0b150ff7e258d43b2f9e6143bc820c468deae6276dd51e133f53bd6b362d05378eb9e785717aa06076e842979980576d688b7e5c032c21c786b784118d61a28b46cfc7dd185abcd3e329a31c986f1a7ee56e2702315714dd250d7fe97c779d591200c3451a3169efc161252dd8443d19d57686efebcea9e32d3d4bf58ff3deecb342e17329c712dc7a4e30241e07ba19999147bcc52cac3dc083c67af6ee3179c50e48b2daf198d9e0a8ecdc8c6dbfae82c92cec851ff6c5658c43f0dadb901ff32dfccf357039f147fcdee7c3d932b70cc0f4c007302553322e3620d5a2fd85c49118b43269b77e2c10a66dc693de2ad27105044141ea3573b3f19df50a3fdcf97245faae8eaa6de0031967dccb754a3a5e79b821e4ef102600abf798dfe9d0da043c9bac581b47653c5c8f33cd6f535211e43e9c8a92e9126ecaa960f05208c4bd28805cdb3e272e04bf1d937bd5736ae6ef96d12f2debdf08be9d462bffe9dd38cfcad6c86290c9eb38e6566483f9bb408bab6e26293a9442dda01214f60223cb9db55a2bcc338964b1ba7491498e67e5a7d8458cf3865ec1ffc1da341102cb5eb37ae8c2ae51f2585ca38cbda101ab1b23d15a0684bc800c95e72e079b5767db0eb1c89a8bf7a390ccc54c31bad88673ecaaba1c446f0623511736c33f754af27d0dfade277727131965d6c58494c9415f3d90d047d5b74f270323ff800d49f6061f1e1a4fdd48f94c401be5eb8de1f5193c0cb68526af69ca6bae9c0fd33ea8aad80f797ce952f101cf600ff9733840ff6d9106b1431032145d0b569ac4a9d02553543ab000df50afb0e21faf7e9f2ddd4ddcc3578cede6743af6e766e1897aded2eea56b5c8a404c7b2052718cd4c45f3d9ff4dca1e386566f135c9c11b2a3c5fc260f869f23d6da762169825e8da227a1e17bf252ea0d753f1b171c905d2ec2c033025fd6af02dd9730f4b3f770f360e4d1fd9fd45e7242d81b2a16b3026e613d03c3f5451da53a6e2b6b2071ceeecbfa7f717db834ef855bb92a1e6d1b68e71672ccf8bebe3747701ff0ddd90791ae423aa61ce8fbee8e1053083f4aa211f3392f29a9277ea42bb470e3ae03d775e38b3f15e0b56a8ce9271bac05dfbbdec44fac45a7cc238e518e44e1531c933269b10935cdaf188911d7725d95bd0550f531d64984dd53b7a0dbf1e9806d36aed466943f7024b3d1eea5bb22fca8f0e5288cdb86313790064e51066b32a140033300b6ddb6925d3537e45a0a234c91105f0b95ba3c41de40168a3d83afee2297e16187b8f8990eed803a677471461cb622847d20a22156aa2b08baf18a87764dc594f060ee3fdf6e9f24c230dd912f40bd36ad338d68bf9758993c9e24d1f38d1acf642cfe8a88fb464c83226e443c6ba326264ca4071ce6a9faec03b88552c2402da266535680bdf922a530f3a838ba0c9704e8f70e4157921bcdf509ea66c5e34e3fb3e52934148b59bc0c3b15dfe626ab26ca0c844636523658d6848b52a7897f6bf0b4aeef74a6875184579e0e1140639031acf5c232eee89cf7f15eff648d85011e1f3c2c7bbac4db72f7c9643dcef381e41cb91e00110a8aa6afde9e0a21344260ade0a15a72fded153e704aeadb427932c708835e0598f4547d5b8c907ef11246fe4d74f39d21e0d74759bf48eb359b37b9d8e9be9e625917f31174fa04ff48d4ad9008cbe521f021d21402541fb4395bbd787f2beabf7733bdb2558e7e5c2b89d571ef15066bf5d9afd674b98a40deebcc2260627268b60581fce6640d85a1189e8f159225c512099316b415827430023c03585d542a175828649b989edd95a4bc5680832fad45e4a90c59c803e61135f903cf6f82b7c5dc7e0a04aae0a61da3824174cb920b607744a0f33abdfc4c63ae73e537e4c5782e5e5e30bd537a0aac19a8e4514242f0dc429470f29dbcafaa459de0572f2ba88975ce3f47c90d08629a874507282cb68f866abc6359cd79e92dd06ef3e8b7de4132d2a2b39ce57747e2e092953677f5891282ac81c1543a9623510414cf8f0b61447d0894ae80740b5c6da9d863598456c0e4f69c86df86790c3d97561ceb8d2202000a00e50600002d00000000000000"], 0x1068}}, 0x48080)
socket$inet_udp(0x2, 0x2, 0x0)

[  832.559524]  ext4_ext_map_blocks+0x2845/0x6b10
[  832.559541]  ? __lock_acquire+0x5fc/0x3f20
[  832.559555]  ? mark_buffer_dirty+0x95/0x480
[  832.559564]  ? trace_hardirqs_on+0x10/0x10
[  832.559572]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  832.559581]  ? ext4_find_delalloc_cluster+0x180/0x180
[  832.559590]  ? trace_hardirqs_on+0x10/0x10
[  832.559598]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  832.559613]  ? ext4_es_lookup_extent+0x321/0xac0
[  832.559623]  ? lock_acquire+0x170/0x3f0
[  832.559644]  ext4_map_blocks+0x675/0x1730
[  832.559659]  ? ext4_issue_zeroout+0x150/0x150
[  832.559666]  ? __ext4_new_inode+0x27c/0x4eb0
[  832.559682]  ext4_getblk+0x98/0x3f0
[  832.559693]  ? ext4_iomap_begin+0x7f0/0x7f0
[  832.559708]  ext4_bread+0x6c/0x1a0
[  832.559717]  ? ext4_getblk+0x3f0/0x3f0
[  832.559725]  ? dquot_initialize_needed+0x240/0x240
[  832.559738]  ext4_append+0x143/0x350
[  832.559749]  ext4_mkdir+0x4c9/0xbd0
[  832.559764]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  832.559778]  ? security_inode_mkdir+0xca/0x100
[  832.559789]  vfs_mkdir+0x463/0x6e0
[  832.559802]  SyS_mkdirat+0x1fd/0x270
[  832.559813]  ? SyS_mknod+0x30/0x30
[  832.559821]  ? fput_many+0xe/0x140
[  832.559831]  ? do_syscall_64+0x4c/0x640
[  832.559839]  ? SyS_mknod+0x30/0x30
[  832.559849]  do_syscall_64+0x1d5/0x640
[  832.559865]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  832.559873] RIP: 0033:0x7fcd83ff2217
[  832.559878] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  832.559889] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  832.559895] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  832.559900] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  832.559905] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  832.559911] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  832.659979] FAULT_INJECTION: forcing a failure.
[  832.659979] name failslab, interval 1, probability 0, space 0, times 0
[  832.659993] CPU: 1 PID: 22787 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  832.659997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  832.660001] Call Trace:
[  832.660016]  dump_stack+0x1b2/0x281
[  832.660032]  should_fail.cold+0x10a/0x149
[  832.660046]  should_failslab+0xd6/0x130
[  832.660059]  __kmalloc_track_caller+0x2bc/0x400
[  832.660069]  ? strndup_user+0x5b/0xf0
[  832.660079]  memdup_user+0x22/0xa0
[  832.660088]  strndup_user+0x5b/0xf0
[  832.660096]  ? copy_mnt_ns+0xa30/0xa30
[  832.660105]  SyS_mount+0x39/0x120
[  832.660114]  ? copy_mnt_ns+0xa30/0xa30
[  832.660124]  do_syscall_64+0x1d5/0x640
[  832.660153]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  832.660161] RIP: 0033:0x7fcd83ff463a
[  832.660167] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  832.660177] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  832.660182] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  832.660188] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  832.660194] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  832.660199] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  832.672085] FAULT_INJECTION: forcing a failure.
[  832.672085] name failslab, interval 1, probability 0, space 0, times 0
[  832.672102] CPU: 0 PID: 22792 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  832.672111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  832.672115] Call Trace:
[  832.672135]  dump_stack+0x1b2/0x281
[  832.672154]  should_fail.cold+0x10a/0x149
[  832.672168]  should_failslab+0xd6/0x130
[  832.672180]  __kmalloc+0x2c1/0x400
[  832.672188]  ? ext4_find_extent+0x879/0xbc0
[  832.672196]  ext4_find_extent+0x879/0xbc0
[  832.672211]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  832.672220]  ext4_ext_map_blocks+0x19a/0x6b10
[  832.672238]  ? __lock_acquire+0x5fc/0x3f20
[  832.672251]  ? mark_buffer_dirty+0x95/0x480
[  832.672260]  ? trace_hardirqs_on+0x10/0x10
[  832.672268]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  832.672276]  ? ext4_find_delalloc_cluster+0x180/0x180
[  832.672285]  ? trace_hardirqs_on+0x10/0x10
[  832.672295]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  832.672307]  ? ext4_es_lookup_extent+0x321/0xac0
[  832.672317]  ? lock_acquire+0x170/0x3f0
[  832.672328]  ? lock_acquire+0x170/0x3f0
[  832.672336]  ? ext4_map_blocks+0x623/0x1730
[  832.672351]  ext4_map_blocks+0x675/0x1730
[  832.672365]  ? ext4_issue_zeroout+0x150/0x150
[  832.672372]  ? __ext4_new_inode+0x27c/0x4eb0
[  832.672388]  ext4_getblk+0x98/0x3f0
[  832.672398]  ? ext4_iomap_begin+0x7f0/0x7f0
[  832.672412]  ext4_bread+0x6c/0x1a0
[  832.672421]  ? ext4_getblk+0x3f0/0x3f0
[  832.672428]  ? dquot_initialize_needed+0x240/0x240
[  832.672440]  ext4_append+0x143/0x350
[  832.672451]  ext4_mkdir+0x4c9/0xbd0
[  832.672465]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  832.672478]  ? security_inode_mkdir+0xca/0x100
[  832.672489]  vfs_mkdir+0x463/0x6e0
[  832.672500]  SyS_mkdirat+0x1fd/0x270
[  832.672510]  ? SyS_mknod+0x30/0x30
[  832.672517]  ? fput_many+0xe/0x140
[  832.672525]  ? do_syscall_64+0x4c/0x640
[  832.672533]  ? SyS_mknod+0x30/0x30
[  832.672542]  do_syscall_64+0x1d5/0x640
[  832.672558]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  832.672571] RIP: 0033:0x7f6b8cbe3217
20:49:45 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50) (async)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

20:49:45 executing program 3:
socketpair(0x26, 0x2, 0x0, 0x0) (async)
sendmsg$key(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000001100)=ANY=[@ANYBLOB="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"], 0x1068}}, 0x48080) (async)
socket$inet_udp(0x2, 0x2, 0x0)

20:49:45 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = getpgid(0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000180)={@hyper, 0x2})
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'wg2\x00'}}, 0x1e)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
recvfrom$l2tp(r2, &(0x7f00000000c0)=""/175, 0xaf, 0x12000, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
ioctl$DMA_BUF_SET_NAME_A(0xffffffffffffffff, 0x40046201, &(0x7f0000000000)='\x00')

20:49:45 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 45)

20:49:45 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 42)

20:49:45 executing program 4:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

[  832.672576] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  832.672588] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  832.672594] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  832.672600] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  832.672606] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  832.672612] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:45 executing program 3:
socketpair(0x26, 0x2, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000001100)=ANY=[@ANYBLOB="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"], 0x1068}}, 0x48080)
socket$inet_udp(0x2, 0x2, 0x0)

20:49:45 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[{0x6f9e, 0x0, 0xc2, 0x40}, {0xfff7, 0x3, 0x80}, {0x8, 0x9, 0x1f, 0x80000000}, {0x0, 0x0, 0x0, 0x7fffffff}, {0x1}, {0x0, 0x1, 0xe0}]})
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x4, &(0x7f0000000200)=[{0xfffe, 0x0, 0x8, 0x7}, {0x100, 0x20, 0x9, 0x9}, {0x6, 0x1, 0x6, 0x6}, {0x9, 0x39, 0x3f, 0x80}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000100)={0x0, <r2=>0x0})
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20c0, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, r3, &(0x7f00000000c0)={r4, 0xffffffffffffffff, 0x8})

20:49:45 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[{0x6f9e, 0x0, 0xc2, 0x40}, {0xfff7, 0x3, 0x80}, {0x8, 0x9, 0x1f, 0x80000000}, {0x0, 0x0, 0x0, 0x7fffffff}, {0x1}, {0x0, 0x1, 0xe0}]})
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x4, &(0x7f0000000200)=[{0xfffe, 0x0, 0x8, 0x7}, {0x100, 0x20, 0x9, 0x9}, {0x6, 0x1, 0x6, 0x6}, {0x9, 0x39, 0x3f, 0x80}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000100)={0x0, <r2=>0x0}) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20c0, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, r3, &(0x7f00000000c0)={r4, 0xffffffffffffffff, 0x8})

[  833.320620] FAULT_INJECTION: forcing a failure.
[  833.320620] name failslab, interval 1, probability 0, space 0, times 0
[  833.332438] CPU: 0 PID: 22817 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  833.332448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  833.349881] Call Trace:
[  833.349900]  dump_stack+0x1b2/0x281
20:49:45 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 43)

[  833.349915]  should_fail.cold+0x10a/0x149
[  833.349929]  should_failslab+0xd6/0x130
[  833.349941]  kmem_cache_alloc+0x40/0x3c0
[  833.349955]  __es_insert_extent+0x338/0x1360
20:49:45 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[{0x6f9e, 0x0, 0xc2, 0x40}, {0xfff7, 0x3, 0x80}, {0x8, 0x9, 0x1f, 0x80000000}, {0x0, 0x0, 0x0, 0x7fffffff}, {0x1}, {0x0, 0x1, 0xe0}]}) (async, rerun: 64)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (rerun: 64)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0) (async)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x4, &(0x7f0000000200)=[{0xfffe, 0x0, 0x8, 0x7}, {0x100, 0x20, 0x9, 0x9}, {0x6, 0x1, 0x6, 0x6}, {0x9, 0x39, 0x3f, 0x80}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000100)={0x0, <r2=>0x0}) (async, rerun: 64)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async, rerun: 64)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20c0, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, r3, &(0x7f00000000c0)={r4, 0xffffffffffffffff, 0x8})

[  833.349974]  ext4_es_insert_extent+0x1b9/0x530
20:49:45 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 44)

[  833.349986]  ? ext4_es_find_delayed_extent_range+0x930/0x930
[  833.350007]  ext4_map_blocks+0x887/0x1730
[  833.350023]  ? ext4_issue_zeroout+0x150/0x150
[  833.350031]  ? __ext4_new_inode+0x27c/0x4eb0
[  833.350049]  ext4_getblk+0x98/0x3f0
[  833.350060]  ? ext4_iomap_begin+0x7f0/0x7f0
[  833.350076]  ext4_bread+0x6c/0x1a0
[  833.350085]  ? ext4_getblk+0x3f0/0x3f0
[  833.350093]  ? dquot_initialize_needed+0x240/0x240
[  833.350106]  ext4_append+0x143/0x350
[  833.350118]  ext4_mkdir+0x4c9/0xbd0
[  833.350134]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  833.350148]  ? security_inode_mkdir+0xca/0x100
[  833.350160]  vfs_mkdir+0x463/0x6e0
[  833.350173]  SyS_mkdirat+0x1fd/0x270
[  833.350184]  ? SyS_mknod+0x30/0x30
[  833.350192]  ? fput_many+0xe/0x140
[  833.350201]  ? do_syscall_64+0x4c/0x640
[  833.350210]  ? SyS_mknod+0x30/0x30
[  833.350220]  do_syscall_64+0x1d5/0x640
[  833.350236]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  833.350244] RIP: 0033:0x7fcd83ff2217
[  833.350249] RSP: 002b:00007fcd82967f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  833.350260] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff2217
[  833.350265] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  833.350271] RBP: 00007fcd829681d0 R08: 0000000000000000 R09: 00007fcd829681d0
[  833.350276] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  833.350282] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  833.372625] FAULT_INJECTION: forcing a failure.
[  833.372625] name failslab, interval 1, probability 0, space 0, times 0
[  833.372638] CPU: 1 PID: 22822 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  833.372644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  833.372647] Call Trace:
[  833.372663]  dump_stack+0x1b2/0x281
[  833.372678]  should_fail.cold+0x10a/0x149
[  833.372692]  should_failslab+0xd6/0x130
[  833.372705]  kmem_cache_alloc+0x28e/0x3c0
[  833.372718]  ext4_mb_new_blocks+0x514/0x3db0
[  833.372733]  ? ext4_find_extent+0x6f7/0xbc0
[  833.372741]  ? ext4_ext_search_right+0x2bc/0xaa0
[  833.372752]  ? ext4_inode_to_goal_block+0x29a/0x3b0
[  833.372765]  ext4_ext_map_blocks+0x2845/0x6b10
[  833.372782]  ? __lock_acquire+0x5fc/0x3f20
[  833.372796]  ? mark_buffer_dirty+0x95/0x480
[  833.372806]  ? trace_hardirqs_on+0x10/0x10
[  833.372814]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  833.372824]  ? ext4_find_delalloc_cluster+0x180/0x180
[  833.372834]  ? trace_hardirqs_on+0x10/0x10
[  833.372843]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  833.372858]  ? ext4_es_lookup_extent+0x321/0xac0
[  833.372869]  ? lock_acquire+0x170/0x3f0
[  833.372888]  ext4_map_blocks+0x675/0x1730
[  833.372901]  ? ext4_issue_zeroout+0x150/0x150
[  833.372909]  ? __ext4_new_inode+0x27c/0x4eb0
[  833.372927]  ext4_getblk+0x98/0x3f0
[  833.372937]  ? ext4_iomap_begin+0x7f0/0x7f0
[  833.372953]  ext4_bread+0x6c/0x1a0
[  833.372962]  ? ext4_getblk+0x3f0/0x3f0
[  833.372970]  ? dquot_initialize_needed+0x240/0x240
[  833.372981]  ext4_append+0x143/0x350
[  833.372992]  ext4_mkdir+0x4c9/0xbd0
[  833.373006]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  833.373019]  ? security_inode_mkdir+0xca/0x100
[  833.373030]  vfs_mkdir+0x463/0x6e0
[  833.373043]  SyS_mkdirat+0x1fd/0x270
[  833.373054]  ? SyS_mknod+0x30/0x30
[  833.373062]  ? fput_many+0xe/0x140
[  833.373071]  ? do_syscall_64+0x4c/0x640
[  833.373080]  ? SyS_mknod+0x30/0x30
[  833.373090]  do_syscall_64+0x1d5/0x640
[  833.373115]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  833.373123] RIP: 0033:0x7f6b8cbe3217
[  833.373128] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  833.373138] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  833.373144] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  833.373150] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  833.373156] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  833.373162] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  833.461160] FAULT_INJECTION: forcing a failure.
[  833.461160] name failslab, interval 1, probability 0, space 0, times 0
[  833.461175] CPU: 1 PID: 22844 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  833.461181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  833.461184] Call Trace:
[  833.461198]  dump_stack+0x1b2/0x281
[  833.461212]  should_fail.cold+0x10a/0x149
[  833.461225]  should_failslab+0xd6/0x130
[  833.461236]  __kmalloc_track_caller+0x2bc/0x400
[  833.461245]  ? strndup_user+0x5b/0xf0
[  833.461255]  memdup_user+0x22/0xa0
[  833.461263]  strndup_user+0x5b/0xf0
[  833.461271]  ? copy_mnt_ns+0xa30/0xa30
[  833.461278]  SyS_mount+0x39/0x120
[  833.461284]  ? copy_mnt_ns+0xa30/0xa30
[  833.461295]  do_syscall_64+0x1d5/0x640
[  833.461309]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  833.461316] RIP: 0033:0x7f6b8cbe563a
[  833.461322] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  833.461332] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  833.461338] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  833.461343] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  833.461349] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  833.461354] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  833.544192] FAULT_INJECTION: forcing a failure.
[  833.544192] name failslab, interval 1, probability 0, space 0, times 0
[  833.544205] CPU: 1 PID: 22858 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  833.544210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  833.544214] Call Trace:
[  833.544228]  dump_stack+0x1b2/0x281
[  833.544244]  should_fail.cold+0x10a/0x149
[  833.544258]  should_failslab+0xd6/0x130
[  833.544270]  kmem_cache_alloc+0x28e/0x3c0
[  833.544282]  ext4_mb_new_blocks+0x514/0x3db0
[  833.544294]  ? ext4_find_extent+0x6f7/0xbc0
[  833.544303]  ? ext4_ext_search_right+0x2bc/0xaa0
[  833.544315]  ? ext4_inode_to_goal_block+0x29a/0x3b0
[  833.544329]  ext4_ext_map_blocks+0x2845/0x6b10
[  833.544348]  ? __lock_acquire+0x5fc/0x3f20
[  833.544364]  ? mark_buffer_dirty+0x95/0x480
[  833.544374]  ? trace_hardirqs_on+0x10/0x10
[  833.544383]  ? __ext4_handle_dirty_metadata+0x120/0x480
[  833.544395]  ? ext4_find_delalloc_cluster+0x180/0x180
[  833.544405]  ? trace_hardirqs_on+0x10/0x10
[  833.544415]  ? ext4_mark_iloc_dirty+0x1822/0x26a0
[  833.544430]  ? ext4_es_lookup_extent+0x321/0xac0
[  833.544441]  ? lock_acquire+0x170/0x3f0
[  833.544465]  ext4_map_blocks+0x675/0x1730
[  833.544480]  ? ext4_issue_zeroout+0x150/0x150
[  833.544489]  ? __ext4_new_inode+0x27c/0x4eb0
[  833.544507]  ext4_getblk+0x98/0x3f0
[  833.544518]  ? ext4_iomap_begin+0x7f0/0x7f0
[  833.544535]  ext4_bread+0x6c/0x1a0
[  833.544544]  ? ext4_getblk+0x3f0/0x3f0
[  833.544552]  ? dquot_initialize_needed+0x240/0x240
[  833.544565]  ext4_append+0x143/0x350
[  833.544578]  ext4_mkdir+0x4c9/0xbd0
[  833.544594]  ? ext4_init_dot_dotdot+0x5a0/0x5a0
[  833.544607]  ? security_inode_mkdir+0xca/0x100
[  833.544619]  vfs_mkdir+0x463/0x6e0
[  833.544632]  SyS_mkdirat+0x1fd/0x270
[  833.544642]  ? SyS_mknod+0x30/0x30
[  833.544651]  ? fput_many+0xe/0x140
[  833.544660]  ? do_syscall_64+0x4c/0x640
[  833.544669]  ? SyS_mknod+0x30/0x30
[  833.544680]  do_syscall_64+0x1d5/0x640
[  833.544695]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  833.544703] RIP: 0033:0x7f6b8cbe3217
20:49:46 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x90, r1, 0x10, 0x70bd28, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x51, 0xa, '-:.##'}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r2}, {0x8, 0x1, r3}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fffffffffffffff}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x1}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x8000000000000000}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x200000000000000}]}, 0x90}, 0x1, 0x0, 0x0, 0x40480d0}, 0x0)

20:49:46 executing program 3:
socketpair(0x5, 0x4, 0x3f, 0x0)
eventfd2(0x1ff, 0x80000)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x2, 0x3f, 0x1, 0x4000})
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r0, 0x4004510f, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000080)={0xffffffffffffffff, r1, 0x1})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0)
ioctl$SNDCTL_SYNTH_MEMAVL(r2, 0xc004510e, &(0x7f00000000c0)=0x5)

20:49:46 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 46)

20:49:46 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 45)

20:49:46 executing program 1:
socket$pppoe(0x18, 0x1, 0x0)
r0 = getpgid(0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000180)={@hyper, 0x2}) (async)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'wg2\x00'}}, 0x1e) (async)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0) (async)
r2 = socket$l2tp(0x2, 0x2, 0x73)
recvfrom$l2tp(r2, &(0x7f00000000c0)=""/175, 0xaf, 0x12000, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
ioctl$DMA_BUF_SET_NAME_A(0xffffffffffffffff, 0x40046201, &(0x7f0000000000)='\x00')

20:49:46 executing program 4:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x2501, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x24, 0x100, 0x200, 0x8, 0x11, 0xffffff7f, 0x2}}, 0x50)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

[  833.544708] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000213 ORIG_RAX: 0000000000000102
[  833.544717] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe3217
[  833.544723] RDX: 00000000000001ff RSI: 00000000200000c0 RDI: 00000000ffffff9c
[  833.544729] RBP: 00007f6b8b5591d0 R08: 0000000000000000 R09: 00007f6b8b5591d0
[  833.544734] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000080
[  833.544739] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:46 executing program 4:
socketpair(0x5, 0x3, 0x7ffeffd, 0x0)
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200020}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, r0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x8, 0xa, '-+\\F'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x10091)
socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000080))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)

[  834.320126] FAULT_INJECTION: forcing a failure.
[  834.320126] name failslab, interval 1, probability 0, space 0, times 0
[  834.334162] FAULT_INJECTION: forcing a failure.
[  834.334162] name failslab, interval 1, probability 0, space 0, times 0
[  834.353048] CPU: 1 PID: 22878 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  834.360964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  834.370328] Call Trace:
[  834.372922]  dump_stack+0x1b2/0x281
[  834.376559]  should_fail.cold+0x10a/0x149
[  834.380718]  should_failslab+0xd6/0x130
[  834.384704]  __kmalloc_track_caller+0x2bc/0x400
[  834.389381]  ? strndup_user+0x5b/0xf0
[  834.393194]  memdup_user+0x22/0xa0
[  834.396745]  strndup_user+0x5b/0xf0
[  834.400379]  ? copy_mnt_ns+0xa30/0xa30
[  834.404275]  SyS_mount+0x39/0x120
[  834.407735]  ? copy_mnt_ns+0xa30/0xa30
[  834.411635]  do_syscall_64+0x1d5/0x640
[  834.415542]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
20:49:46 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x90, r1, 0x10, 0x70bd28, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x51, 0xa, '-:.##'}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r2}, {0x8, 0x1, r3}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fffffffffffffff}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x1}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x8000000000000000}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x200000000000000}]}, 0x90}, 0x1, 0x0, 0x0, 0x40480d0}, 0x0)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) (async)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x90, r1, 0x10, 0x70bd28, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x51, 0xa, '-:.##'}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r2}, {0x8, 0x1, r3}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fffffffffffffff}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x1}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x8000000000000000}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x200000000000000}]}, 0x90}, 0x1, 0x0, 0x0, 0x40480d0}, 0x0) (async)

20:49:46 executing program 4:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(0xffffffffffffffff, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r1})
r2 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0xc00864bf, &(0x7f0000000300)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r2, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r3, r1], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r4, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r3, 0x0, r3, r1, r3, r3, r3, r3], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r5})
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r6, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000300)={<r7=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r6, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000080)=[r7, r5], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r7, 0x0, r7, r5, r7, r7, r7, r7], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(0xffffffffffffffff, 0xc02064c3, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, r3, r7, 0x0], 0x8, 0x4, 0x5})

20:49:46 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

[  834.420736] RIP: 0033:0x7f6b8cbe563a
[  834.424444] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  834.432160] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  834.439430] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  834.446732] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  834.454092] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  834.461362] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  834.479950] CPU: 1 PID: 22875 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  834.487863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  834.497220] Call Trace:
[  834.499988]  dump_stack+0x1b2/0x281
[  834.503628]  should_fail.cold+0x10a/0x149
[  834.507787]  should_failslab+0xd6/0x130
[  834.511777]  __kmalloc_track_caller+0x2bc/0x400
[  834.516451]  ? strndup_user+0x5b/0xf0
[  834.520283]  memdup_user+0x22/0xa0
[  834.520293]  strndup_user+0x5b/0xf0
[  834.527455]  ? copy_mnt_ns+0xa30/0xa30
[  834.531355]  SyS_mount+0x39/0x120
[  834.534815]  ? copy_mnt_ns+0xa30/0xa30
[  834.538707]  do_syscall_64+0x1d5/0x640
[  834.542606]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  834.547823] RIP: 0033:0x7fcd83ff463a
[  834.551535] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  834.559253] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  834.566529] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
20:49:46 executing program 3:
socketpair(0x5, 0x4, 0x3f, 0x0)
eventfd2(0x1ff, 0x80000) (async)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff) (async)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x2, 0x3f, 0x1, 0x4000}) (async)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r0, 0x4004510f, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000080)={0xffffffffffffffff, r1, 0x1}) (async)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0)
ioctl$SNDCTL_SYNTH_MEMAVL(r2, 0xc004510e, &(0x7f00000000c0)=0x5)

20:49:46 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:47 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

20:49:47 executing program 3:
socketpair(0x5, 0x4, 0x3f, 0x0)
eventfd2(0x1ff, 0x80000)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x2, 0x3f, 0x1, 0x4000})
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r0, 0x4004510f, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000080)={0xffffffffffffffff, r1, 0x1})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0)
ioctl$SNDCTL_SYNTH_MEMAVL(r2, 0xc004510e, &(0x7f00000000c0)=0x5)
socketpair(0x5, 0x4, 0x3f, 0x0) (async)
eventfd2(0x1ff, 0x80000) (async)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff) (async)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x2, 0x3f, 0x1, 0x4000}) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r0, 0x4004510f, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x90000, 0x0) (async)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r0, &(0x7f0000000080)={0xffffffffffffffff, r1, 0x1}) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000840), 0x200000, 0x0) (async)
ioctl$SNDCTL_FM_4OP_ENABLE(r2, 0x4004510f, 0x0) (async)
ioctl$SNDCTL_SYNTH_MEMAVL(r2, 0xc004510e, &(0x7f00000000c0)=0x5) (async)

[  834.573806] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  834.581083] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  834.588366] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:47 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 47)

20:49:47 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) (async, rerun: 32)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (rerun: 32)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x90, r1, 0x10, 0x70bd28, 0x25dfdbff, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x51, 0xa, '-:.##'}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r2}, {0x8, 0x1, r3}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7fffffffffffffff}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x1}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x8000000000000000}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x200000000000000}]}, 0x90}, 0x1, 0x0, 0x0, 0x40480d0}, 0x0)

[  834.728594] FAULT_INJECTION: forcing a failure.
[  834.728594] name failslab, interval 1, probability 0, space 0, times 0
[  834.744781] CPU: 0 PID: 22954 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  834.752727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  834.762085] Call Trace:
[  834.764679]  dump_stack+0x1b2/0x281
[  834.768321]  should_fail.cold+0x10a/0x149
[  834.772483]  should_failslab+0xd6/0x130
[  834.776474]  __kmalloc_track_caller+0x2bc/0x400
[  834.781154]  ? strndup_user+0x5b/0xf0
[  834.784966]  memdup_user+0x22/0xa0
[  834.788519]  strndup_user+0x5b/0xf0
[  834.792153]  ? copy_mnt_ns+0xa30/0xa30
[  834.796050]  SyS_mount+0x68/0x120
[  834.799519]  ? copy_mnt_ns+0xa30/0xa30
[  834.803413]  do_syscall_64+0x1d5/0x640
[  834.807395]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  834.812574] RIP: 0033:0x7fcd83ff463a
[  834.816265] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  834.823963] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  834.831239] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  834.838510] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  834.845790] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  834.853063] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:47 executing program 1:
socket$pppoe(0x18, 0x1, 0x0) (async)
r0 = getpgid(0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000180)={@hyper, 0x2}) (async)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'wg2\x00'}}, 0x1e)
kcmp$KCMP_EPOLL_TFD(0x0, r0, 0x7, 0xffffffffffffffff, 0x0) (async)
r2 = socket$l2tp(0x2, 0x2, 0x73)
recvfrom$l2tp(r2, &(0x7f00000000c0)=""/175, 0xaf, 0x12000, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) (async)
ioctl$DMA_BUF_SET_NAME_A(0xffffffffffffffff, 0x40046201, &(0x7f0000000000)='\x00')

20:49:47 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 46)

20:49:47 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)

20:49:47 executing program 4:
socketpair(0x26, 0x5, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0)
sendmsg$L2TP_CMD_TUNNEL_GET(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@L2TP_ATTR_IP6_DADDR={0x14, 0x20, @dev={0xfe, 0x80, '\x00', 0x40}}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x2400c8c0}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), r0)
ioctl$SNDCTL_TMR_SELECT(0xffffffffffffffff, 0x40045408)

20:49:47 executing program 0:
socketpair(0x3, 0x4, 0x4a9, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, &(0x7f0000000000)={0x2, 0x0, @private=0xa010102}, 0x10)
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="07cb0000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000ffdbdf25040000000500060004000000050004002000000005000d000100000005000d0000000000"], 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x20000015)
recvfrom$l2tp(r0, &(0x7f0000000040)=""/17, 0x11, 0x40000000, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)

20:49:47 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 48)

[  835.160147] FAULT_INJECTION: forcing a failure.
[  835.160147] name failslab, interval 1, probability 0, space 0, times 0
[  835.176567] FAULT_INJECTION: forcing a failure.
[  835.176567] name failslab, interval 1, probability 0, space 0, times 0
[  835.181584] CPU: 0 PID: 22971 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  835.195673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  835.205061] Call Trace:
[  835.207655]  dump_stack+0x1b2/0x281
[  835.211286]  should_fail.cold+0x10a/0x149
[  835.215437]  should_failslab+0xd6/0x130
[  835.219493]  kmem_cache_alloc_trace+0x29a/0x3d0
[  835.224166]  ? copy_mnt_ns+0xa30/0xa30
[  835.224179]  copy_mount_options+0x59/0x2f0
[  835.232285]  ? copy_mnt_ns+0xa30/0xa30
[  835.236175]  SyS_mount+0x84/0x120
[  835.239624]  ? copy_mnt_ns+0xa30/0xa30
[  835.243516]  do_syscall_64+0x1d5/0x640
[  835.247398]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  835.252657] RIP: 0033:0x7fcd83ff463a
[  835.256356] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  835.264050] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  835.271307] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  835.278560] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  835.285901] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  835.293165] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  835.300871] CPU: 1 PID: 22979 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  835.308755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  835.318108] Call Trace:
[  835.320698]  dump_stack+0x1b2/0x281
[  835.324334]  should_fail.cold+0x10a/0x149
[  835.328490]  should_failslab+0xd6/0x130
[  835.332470]  kmem_cache_alloc_trace+0x29a/0x3d0
[  835.337136]  ? copy_mnt_ns+0xa30/0xa30
[  835.341027]  copy_mount_options+0x59/0x2f0
[  835.345267]  ? copy_mnt_ns+0xa30/0xa30
[  835.349167]  SyS_mount+0x84/0x120
[  835.352620]  ? copy_mnt_ns+0xa30/0xa30
[  835.356518]  do_syscall_64+0x1d5/0x640
20:49:47 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) (async)

20:49:47 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) (async)

[  835.360412]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  835.365598] RIP: 0033:0x7f6b8cbe563a
[  835.369303] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  835.377031] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  835.384305] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  835.391576] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  835.398945] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
20:49:47 executing program 3:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000080)={0x41c, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e72a9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a31}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf670}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x284f8649}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f34686f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x623a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x689f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3af496cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66ec8d7f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x82e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x31ea}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x37d9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5379}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e259ab1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2527be08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x354f2f1b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1552}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cc4}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x138, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a42ee94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8789b6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57071be1}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7a8f2b0e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x435691fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a52d885}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c7d7787}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b33be2c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x360172d9}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64344fb3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x764605e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x95}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf408d15}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43e1e3d0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x379ab818}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e54daf3}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x140a3b3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19df4d6a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x650f967a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3225dc8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd338}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2817a1ef}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf35d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe087}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6774}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa9fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x757b5d1e}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc86b8ee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6491}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c6bb40d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e88}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x56e40e2c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1648}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35a96fbb}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f166442}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c1afbef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3010a684}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33f6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x78b}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34120525}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33e5b78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1f0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cb9ce3e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a16}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4a8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d79}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa42f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x429bacb3}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60882f5b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6899}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1491e9db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1d635cb4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6df5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ec20974}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddec}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5836}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fccc5a3}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4534a77c}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c36422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4a21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe04f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bae89ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x64f0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f47}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf32}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff38}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, 'NLBL_CIPSOv4\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c880}, 0x80)
socketpair(0x29, 0x3, 0x0, 0x0)

20:49:47 executing program 4:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000042c0), 0x2000, 0x0)
write$FUSE_POLL(r0, &(0x7f0000004300)={0x18, 0xfffffffffffffffe, 0x0, {0xffffffff}}, 0x18)
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, <r1=>0x0}, 0x2020)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r3, 0xc02864ca, 0x0)
write$cgroup_freezer_state(r3, &(0x7f0000006440)='THAWED\x00', 0x7)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r2, 0xc02864ca, 0x0)
read$FUSE(r2, &(0x7f0000004340)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_IOCTL(r2, &(0x7f0000006380)={0x20, 0x0, r4, {0xfffffeb9, 0x0, 0x3d, 0x95e}}, 0x20)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000063c0), 0x802, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r5, 0xc00864bf, &(0x7f0000006400)={0x0, 0x1})
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000040c0)=ANY=[@ANYBLOB="f001000000000000", @ANYRES64=r1, @ANYBLOB="030000000000000000000000000000000200000000000000ff0100000000000001000000010000000200000000000000770500000000000081000000000000000300000000000000ff0300000000000001800000000000000000000005000000ffff0000004000007d0c0000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="08000000010100000000000000000000000000000100000000000000010000000800000000000000000000000200000000000000020000000000000004000000000000000100000000000000703a0000ac000000030000000000000004000000000000003f00000000000000020000000000000007000000000000000000000000000000ff0f000006000000be0000000040000001000100", @ANYRES32, @ANYRES32, @ANYBLOB="a99200000000000000000000060000000000000000000000010000002cffffff070000002c2d252f26212e00050000000000000003000000000000000300000000000000af7c000000000000010000006364000003000000000000000000000000000000020000000000000002000000000000007100000000000000000700000000000000040000010000004700000000100000cc000000", @ANYRES32=r7, @ANYRES32=0xee01, @ANYBLOB="04000000162b0000000000000100000000000000000000000000008001000000ff0f00"/44], 0x1f0)
ioctl$VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000000000)={0x4, 0x10001, 0x7, 0x81000})
socketpair(0x26, 0x5, 0x0, 0x0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000006480), 0x2, 0x0)
write$FUSE_GETXATTR(r8, &(0x7f00000064c0)={0x18, 0x0, r6, {0xffff}}, 0x18)

[  835.406309] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:47 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 47)

20:49:47 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 49)

[  835.509445] FAULT_INJECTION: forcing a failure.
[  835.509445] name failslab, interval 1, probability 0, space 0, times 0
[  835.516355] FAULT_INJECTION: forcing a failure.
[  835.516355] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  835.526725] CPU: 1 PID: 23009 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  835.540567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  835.549903] Call Trace:
[  835.552479]  dump_stack+0x1b2/0x281
[  835.556107]  should_fail.cold+0x10a/0x149
[  835.560264]  should_failslab+0xd6/0x130
[  835.564231]  __kmalloc_track_caller+0x2bc/0x400
[  835.568883]  ? kstrdup_const+0x35/0x60
[  835.572753]  ? lock_downgrade+0x740/0x740
[  835.576884]  kstrdup+0x36/0x70
[  835.580058]  kstrdup_const+0x35/0x60
[  835.583755]  alloc_vfsmnt+0xe0/0x7f0
[  835.587478]  ? _raw_read_unlock+0x29/0x40
[  835.591623]  vfs_kern_mount.part.0+0x27/0x470
[  835.596132]  do_mount+0xe65/0x2a30
[  835.599688]  ? __do_page_fault+0x159/0xad0
[  835.603914]  ? retint_kernel+0x2d/0x2d
[  835.607785]  ? copy_mount_string+0x40/0x40
[  835.612005]  ? memset+0x20/0x40
[  835.615283]  ? copy_mount_options+0x1fa/0x2f0
[  835.619760]  ? copy_mnt_ns+0xa30/0xa30
[  835.623635]  SyS_mount+0xa8/0x120
[  835.627070]  ? copy_mnt_ns+0xa30/0xa30
[  835.630945]  do_syscall_64+0x1d5/0x640
[  835.634833]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  835.640004] RIP: 0033:0x7fcd83ff463a
[  835.643693] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  835.651397] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  835.658647] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  835.665899] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  835.673165] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  835.680416] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  835.687685] CPU: 0 PID: 23010 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  835.695665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  835.705017] Call Trace:
[  835.707612]  dump_stack+0x1b2/0x281
[  835.711243]  should_fail.cold+0x10a/0x149
[  835.715614]  __alloc_pages_nodemask+0x22c/0x2720
[  835.720473]  ? __save_stack_trace+0x63/0x160
[  835.724876]  ? is_bpf_text_address+0x91/0x150
[  835.729474]  ? __lock_acquire+0x5fc/0x3f20
[  835.733699]  ? cmp_ex_sort+0xb0/0xb0
[  835.737409]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  835.742242]  ? search_extable+0x6f/0x80
[  835.746198]  ? trim_init_extable+0x280/0x280
[  835.750592]  ? __kernel_text_address+0x9/0x30
[  835.755091]  ? copy_mount_options+0x194/0x2f0
[  835.759572]  ? fixup_exception+0x93/0xd0
[  835.763622]  ? no_context+0x9c/0x7c0
[  835.767320]  ? force_sig_info_fault.constprop.0+0x260/0x260
[  835.773017]  ? bad_area_access_error+0x1f8/0x3e0
[  835.777875]  cache_grow_begin+0x91/0x700
[  835.781932]  ? fs_reclaim_release+0xd0/0x110
[  835.786328]  ? check_preemption_disabled+0x35/0x240
[  835.791338]  cache_alloc_refill+0x273/0x350
[  835.795665]  kmem_cache_alloc+0x333/0x3c0
[  835.799817]  getname_flags+0xc8/0x550
[  835.803601]  ? __do_page_fault+0x159/0xad0
[  835.807821]  user_path_at_empty+0x2a/0x50
[  835.811958]  do_mount+0x118/0x2a30
[  835.815481]  ? __do_page_fault+0x159/0xad0
[  835.819699]  ? retint_kernel+0x2d/0x2d
[  835.823576]  ? copy_mount_string+0x40/0x40
[  835.827793]  ? memset+0x20/0x40
[  835.831061]  ? copy_mount_options+0x1fa/0x2f0
[  835.836059]  ? copy_mnt_ns+0xa30/0xa30
[  835.839940]  SyS_mount+0xa8/0x120
[  835.843381]  ? copy_mnt_ns+0xa30/0xa30
[  835.847265]  do_syscall_64+0x1d5/0x640
[  835.851140]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  835.856319] RIP: 0033:0x7f6b8cbe563a
[  835.860022] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  835.867798] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  835.875064] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  835.882344] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  835.889596] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  835.896849] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:48 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000040)={<r1=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r2=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r3})
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r4, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r5, r3], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r5, 0x0, r5, r3, r5, r5, r5, r5], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, r1, r2, r5], &(0x7f0000000100)=[0x8, 0x2, 0x708, 0x1, 0x9], 0x5})
ioctl$IOCTL_VMCI_VERSION(r0, 0x79f, &(0x7f0000000000)=0xa0000)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[0x0, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f00000001c0))
r8 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r8, 0x4008b100, 0x0)

20:49:48 executing program 3:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000080)={0x41c, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e72a9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a31}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf670}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x284f8649}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f34686f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x623a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x689f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3af496cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66ec8d7f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x82e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x31ea}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x37d9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5379}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e259ab1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2527be08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x354f2f1b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1552}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cc4}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x138, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a42ee94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8789b6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57071be1}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7a8f2b0e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x435691fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a52d885}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c7d7787}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b33be2c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x360172d9}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64344fb3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x764605e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x95}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf408d15}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43e1e3d0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x379ab818}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e54daf3}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x140a3b3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19df4d6a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x650f967a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3225dc8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd338}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2817a1ef}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf35d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe087}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6774}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa9fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x757b5d1e}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc86b8ee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6491}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c6bb40d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e88}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x56e40e2c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1648}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35a96fbb}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f166442}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c1afbef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3010a684}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33f6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x78b}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34120525}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33e5b78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1f0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cb9ce3e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a16}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4a8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d79}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa42f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x429bacb3}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60882f5b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6899}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1491e9db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1d635cb4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6df5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ec20974}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddec}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5836}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fccc5a3}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4534a77c}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c36422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4a21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe04f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bae89ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x64f0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f47}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf32}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff38}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, 'NLBL_CIPSOv4\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c880}, 0x80)
socketpair(0x29, 0x3, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000080)={0x41c, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e72a9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a31}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf670}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x284f8649}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f34686f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x623a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x689f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3af496cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66ec8d7f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x82e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x31ea}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x37d9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5379}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e259ab1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2527be08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x354f2f1b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1552}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cc4}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x138, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a42ee94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8789b6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57071be1}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7a8f2b0e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x435691fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a52d885}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c7d7787}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b33be2c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x360172d9}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64344fb3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x764605e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x95}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf408d15}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43e1e3d0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x379ab818}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e54daf3}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x140a3b3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19df4d6a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x650f967a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3225dc8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd338}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2817a1ef}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf35d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe087}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6774}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa9fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x757b5d1e}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc86b8ee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6491}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c6bb40d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e88}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x56e40e2c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1648}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35a96fbb}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f166442}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c1afbef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3010a684}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33f6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x78b}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34120525}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33e5b78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1f0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cb9ce3e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a16}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4a8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d79}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa42f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x429bacb3}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60882f5b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6899}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1491e9db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1d635cb4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6df5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ec20974}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddec}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5836}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fccc5a3}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4534a77c}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c36422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4a21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe04f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bae89ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x64f0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f47}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf32}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff38}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, 'NLBL_CIPSOv4\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c880}, 0x80) (async)
socketpair(0x29, 0x3, 0x0, 0x0) (async)

20:49:48 executing program 4:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000080)={0x41c, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e72a9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a31}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf670}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x284f8649}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f34686f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x623a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x689f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3af496cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66ec8d7f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x82e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x31ea}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x37d9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5379}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e259ab1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2527be08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x354f2f1b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1552}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cc4}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x138, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a42ee94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8789b6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57071be1}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7a8f2b0e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x435691fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a52d885}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c7d7787}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b33be2c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x360172d9}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64344fb3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x764605e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x95}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf408d15}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43e1e3d0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x379ab818}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e54daf3}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x140a3b3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19df4d6a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x650f967a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3225dc8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd338}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2817a1ef}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf35d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe087}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6774}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa9fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x757b5d1e}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc86b8ee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6491}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c6bb40d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e88}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x56e40e2c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1648}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35a96fbb}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f166442}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c1afbef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3010a684}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33f6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x78b}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34120525}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33e5b78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1f0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cb9ce3e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a16}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4a8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d79}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa42f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x429bacb3}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60882f5b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6899}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1491e9db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1d635cb4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6df5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ec20974}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddec}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5836}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fccc5a3}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4534a77c}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c36422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4a21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe04f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bae89ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x64f0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f47}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf32}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff38}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, 'NLBL_CIPSOv4\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c880}, 0x80)
socketpair(0x29, 0x3, 0x0, 0x0)

20:49:48 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 50)

20:49:48 executing program 0:
socketpair(0x3, 0x4, 0x4a9, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, &(0x7f0000000000)={0x2, 0x0, @private=0xa010102}, 0x10)
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="07cb0000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000ffdbdf25040000000500060004000000050004002000000005000d000100000005000d0000000000"], 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x20000015)
recvfrom$l2tp(r0, &(0x7f0000000040)=""/17, 0x11, 0x40000000, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)

20:49:48 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 48)

20:49:48 executing program 4:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000080)={0x41c, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e72a9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a31}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf670}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x284f8649}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f34686f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x623a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x689f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3af496cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66ec8d7f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x82e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x31ea}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x37d9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5379}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e259ab1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2527be08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x354f2f1b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1552}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cc4}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x138, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a42ee94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8789b6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57071be1}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7a8f2b0e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x435691fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a52d885}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c7d7787}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b33be2c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x360172d9}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64344fb3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x764605e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x95}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf408d15}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43e1e3d0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x379ab818}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e54daf3}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x140a3b3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19df4d6a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x650f967a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3225dc8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd338}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2817a1ef}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf35d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe087}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6774}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa9fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x757b5d1e}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc86b8ee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6491}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c6bb40d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e88}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x56e40e2c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1648}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35a96fbb}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f166442}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c1afbef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3010a684}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33f6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x78b}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34120525}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33e5b78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1f0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cb9ce3e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a16}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4a8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d79}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa42f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x429bacb3}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60882f5b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6899}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1491e9db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1d635cb4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6df5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ec20974}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddec}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5836}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fccc5a3}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4534a77c}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c36422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4a21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe04f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bae89ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x64f0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f47}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf32}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff38}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, 'NLBL_CIPSOv4\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c880}, 0x80)
socketpair(0x29, 0x3, 0x0, 0x0)

20:49:48 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000040)={<r1=>0x0}) (async, rerun: 64)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r2=>0x0, 0x1}) (async, rerun: 64)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r3}) (async, rerun: 32)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2) (rerun: 32)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r4, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r5, r3], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async, rerun: 32)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (rerun: 32)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r5, 0x0, r5, r3, r5, r5, r5, r5], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, r1, r2, r5], &(0x7f0000000100)=[0x8, 0x2, 0x708, 0x1, 0x9], 0x5}) (async)
ioctl$IOCTL_VMCI_VERSION(r0, 0x79f, &(0x7f0000000000)=0xa0000) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[0x0, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f00000001c0)) (async)
r8 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r8, 0x4008b100, 0x0)

[  836.042283] FAULT_INJECTION: forcing a failure.
[  836.042283] name failslab, interval 1, probability 0, space 0, times 0
[  836.070590] FAULT_INJECTION: forcing a failure.
[  836.070590] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  836.082507] CPU: 1 PID: 23039 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  836.090393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  836.099749] Call Trace:
[  836.102350]  dump_stack+0x1b2/0x281
[  836.105988]  should_fail.cold+0x10a/0x149
[  836.110148]  __alloc_pages_nodemask+0x22c/0x2720
[  836.114917]  ? __save_stack_trace+0x63/0x160
[  836.119337]  ? is_bpf_text_address+0x91/0x150
[  836.123849]  ? __lock_acquire+0x5fc/0x3f20
[  836.128098]  ? cmp_ex_sort+0xb0/0xb0
[  836.131843]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  836.136695]  ? search_extable+0x6f/0x80
[  836.140679]  ? trim_init_extable+0x280/0x280
[  836.145095]  ? __kernel_text_address+0x9/0x30
[  836.149601]  ? copy_mount_options+0x194/0x2f0
[  836.154111]  ? fixup_exception+0x93/0xd0
[  836.158182]  ? no_context+0x9c/0x7c0
[  836.161905]  ? force_sig_info_fault.constprop.0+0x260/0x260
[  836.167619]  ? bad_area_access_error+0x1f8/0x3e0
[  836.172392]  cache_grow_begin+0x91/0x700
[  836.176549]  ? fs_reclaim_release+0xd0/0x110
[  836.180974]  ? check_preemption_disabled+0x35/0x240
[  836.186002]  cache_alloc_refill+0x273/0x350
[  836.190335]  kmem_cache_alloc+0x333/0x3c0
[  836.194496]  getname_flags+0xc8/0x550
[  836.198304]  ? __do_page_fault+0x159/0xad0
[  836.202549]  user_path_at_empty+0x2a/0x50
[  836.206716]  do_mount+0x118/0x2a30
[  836.210268]  ? __do_page_fault+0x159/0xad0
[  836.214506]  ? retint_kernel+0x2d/0x2d
[  836.218395]  ? copy_mount_string+0x40/0x40
[  836.222642]  ? memset+0x20/0x40
[  836.225924]  ? copy_mount_options+0x1fa/0x2f0
[  836.230425]  ? copy_mnt_ns+0xa30/0xa30
[  836.234326]  SyS_mount+0xa8/0x120
[  836.237788]  ? copy_mnt_ns+0xa30/0xa30
[  836.241676]  do_syscall_64+0x1d5/0x640
[  836.245575]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  836.250777] RIP: 0033:0x7f6b8cbe563a
[  836.254488] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  836.262201] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  836.269474] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  836.276745] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  836.284017] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  836.291293] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  836.298574] CPU: 0 PID: 23029 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  836.306474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  836.315830] Call Trace:
[  836.318429]  dump_stack+0x1b2/0x281
[  836.322074]  should_fail.cold+0x10a/0x149
[  836.326232]  should_failslab+0xd6/0x130
[  836.330218]  kmem_cache_alloc+0x28e/0x3c0
[  836.334397]  getname_flags+0xc8/0x550
[  836.338214]  ? __do_page_fault+0x159/0xad0
20:49:48 executing program 3:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000080)={0x41c, r0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x20, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x455e72a9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a31}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf670}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x284f8649}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f34686f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x623a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x689f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc6dc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3af496cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66ec8d7f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x82e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x31ea}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x37d9}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5379}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e259ab1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2527be08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x354f2f1b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1552}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1cc4}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x138, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1a42ee94}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f8789b6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57071be1}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7a8f2b0e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x435691fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe3}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a52d885}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c7d7787}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b33be2c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x360172d9}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64344fb3}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x764605e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x95}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf408d15}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43e1e3d0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x28}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x379ab818}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e54daf3}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x140a3b3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19df4d6a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x650f967a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3225dc8b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd338}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2817a1ef}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf35d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe087}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6774}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa9fb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa0f8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x757b5d1e}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc86b8ee}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6491}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c6bb40d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e88}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x56e40e2c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1648}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35a96fbb}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3f166442}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c1afbef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3010a684}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33f6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x78b}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34120525}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33e5b78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1f0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cb9ce3e}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5a16}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa4a8}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8d79}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa42f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x51f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x429bacb3}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdf4d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60882f5b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6899}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1491e9db}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1d635cb4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f9d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6df5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ec20974}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddec}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5836}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fccc5a3}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4534a77c}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c36422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4a21}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xace9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe04f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3bae89ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x64f0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f47}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcf32}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x41c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff38}, @NBD_ATTR_BACKEND_IDENTIFIER={0x11, 0xa, 'NLBL_CIPSOv4\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c880}, 0x80) (async, rerun: 32)
socketpair(0x29, 0x3, 0x0, 0x0) (rerun: 32)

20:49:48 executing program 3:
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/251)
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000100)={0x1f, @none, 0x1f}, 0xa)
socket$l2tp(0x2, 0x2, 0x73)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000200)={&(0x7f0000000140)="1a6b4fc02f43e9c3967c4e940f7c92f9c3dcc91d83b92e6fdb08a48720c334c766bfb3096a52c7d0706705c33b212bc30f71391a5fa7074fff75bad86530a0dcb89983a18f0d49575d9c6ca13ecbda6c68e1cd4d242cbc16d80c7d489c14e97b8fd6a41fa87599625296ffc38a1984564b598dec2342a3f002b17d87d75cd00ad88b7ca3e8e3cb947b051562cf761857cd46", 0x92})

20:49:48 executing program 3:
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/251)
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000100)={0x1f, @none, 0x1f}, 0xa)
socket$l2tp(0x2, 0x2, 0x73)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000200)={&(0x7f0000000140)="1a6b4fc02f43e9c3967c4e940f7c92f9c3dcc91d83b92e6fdb08a48720c334c766bfb3096a52c7d0706705c33b212bc30f71391a5fa7074fff75bad86530a0dcb89983a18f0d49575d9c6ca13ecbda6c68e1cd4d242cbc16d80c7d489c14e97b8fd6a41fa87599625296ffc38a1984564b598dec2342a3f002b17d87d75cd00ad88b7ca3e8e3cb947b051562cf761857cd46", 0x92})
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/251) (async)
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000100)={0x1f, @none, 0x1f}, 0xa) (async)
socket$l2tp(0x2, 0x2, 0x73) (async)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000200)={&(0x7f0000000140)="1a6b4fc02f43e9c3967c4e940f7c92f9c3dcc91d83b92e6fdb08a48720c334c766bfb3096a52c7d0706705c33b212bc30f71391a5fa7074fff75bad86530a0dcb89983a18f0d49575d9c6ca13ecbda6c68e1cd4d242cbc16d80c7d489c14e97b8fd6a41fa87599625296ffc38a1984564b598dec2342a3f002b17d87d75cd00ad88b7ca3e8e3cb947b051562cf761857cd46", 0x92}) (async)

20:49:48 executing program 3:
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f0000000000)=""/251)
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000100)={0x1f, @none, 0x1f}, 0xa) (async, rerun: 32)
socket$l2tp(0x2, 0x2, 0x73) (rerun: 32)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000200)={&(0x7f0000000140)="1a6b4fc02f43e9c3967c4e940f7c92f9c3dcc91d83b92e6fdb08a48720c334c766bfb3096a52c7d0706705c33b212bc30f71391a5fa7074fff75bad86530a0dcb89983a18f0d49575d9c6ca13ecbda6c68e1cd4d242cbc16d80c7d489c14e97b8fd6a41fa87599625296ffc38a1984564b598dec2342a3f002b17d87d75cd00ad88b7ca3e8e3cb947b051562cf761857cd46", 0x92})

[  836.342465]  user_path_at_empty+0x2a/0x50
[  836.346630]  do_mount+0x118/0x2a30
[  836.350187]  ? __do_page_fault+0x159/0xad0
[  836.354431]  ? retint_kernel+0x2d/0x2d
[  836.358333]  ? copy_mount_string+0x40/0x40
[  836.362587]  ? memset+0x20/0x40
[  836.365869]  ? copy_mount_options+0x1fa/0x2f0
[  836.370370]  ? copy_mnt_ns+0xa30/0xa30
[  836.374267]  SyS_mount+0xa8/0x120
[  836.377727]  ? copy_mnt_ns+0xa30/0xa30
[  836.381623]  do_syscall_64+0x1d5/0x640
[  836.385526]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
20:49:48 executing program 3:
ioctl$SNDCTL_FM_4OP_ENABLE(0xffffffffffffffff, 0x4004510f, 0x0)
ioctl$SNDCTL_MIDI_INFO(0xffffffffffffffff, 0xc074510c, &(0x7f0000000040)={"7e577815c400b0b44ef4d423d2783a2516c559d1fc4b16cac2ed577a7600", 0x71, 0x5, 0x9, [0x3, 0x6, 0x0, 0x5, 0x2, 0x7, 0x10001, 0x0, 0x4, 0xfffeffff, 0x6, 0x7, 0x3, 0x7f, 0xfffffffe, 0x5, 0x80000000, 0x81]})
socketpair(0x26, 0x5, 0x0, 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

20:49:48 executing program 1:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000040)={<r1=>0x0}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r2=>0x0, 0x1}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0xc00864bf, &(0x7f0000000000)={<r3=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={r3})
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x6, 0x2)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r4, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000140)="25b4a2337e78f8bde111f7fbefd6493331f96f0ddcb333b3b06031dc261300b029eb", 0x22}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r4, 0xc00864bf, &(0x7f0000000300)={<r5=>0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r4, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[r5, r3], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1}) (async)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r6, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[r5, 0x0, r5, r3, r5, r5, r5, r5], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000140)={&(0x7f00000000c0)=[0x0, 0x0, r1, r2, r5], &(0x7f0000000100)=[0x8, 0x2, 0x708, 0x1, 0x9], 0x5}) (async)
ioctl$IOCTL_VMCI_VERSION(r0, 0x79f, &(0x7f0000000000)=0xa0000)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f00000003c0)={&(0x7f0000000340)=[0x0, 0x0], &(0x7f0000000380)=[0x8, 0x7fffffffffffffff, 0x1ff, 0x16, 0x2, 0x4], 0x2, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, &(0x7f00000004c0)={&(0x7f0000000440)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000480)=[0x0, 0x9, 0x2], 0x5, 0x8, 0x5}) (async)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(0xffffffffffffffff, 0xc00864c0, &(0x7f00000001c0))
r8 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r8, 0x4008b100, 0x0)

20:49:48 executing program 4:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'bond_slave_1\x00'}}, 0x1e)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

[  836.390716] RIP: 0033:0x7fcd83ff463a
[  836.394426] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  836.402140] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  836.409414] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  836.416694] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  836.423970] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  836.431244] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:48 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 51)

[  836.538302] FAULT_INJECTION: forcing a failure.
[  836.538302] name failslab, interval 1, probability 0, space 0, times 0
[  836.550535] CPU: 0 PID: 23091 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  836.558435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  836.567796] Call Trace:
[  836.570405]  dump_stack+0x1b2/0x281
[  836.574050]  should_fail.cold+0x10a/0x149
[  836.578213]  should_failslab+0xd6/0x130
[  836.582202]  kmem_cache_alloc+0x28e/0x3c0
[  836.586361]  alloc_vfsmnt+0x23/0x7f0
[  836.590081]  ? _raw_read_unlock+0x29/0x40
[  836.594232]  vfs_kern_mount.part.0+0x27/0x470
[  836.598713]  do_mount+0xe65/0x2a30
[  836.602238]  ? __do_page_fault+0x159/0xad0
[  836.606482]  ? retint_kernel+0x2d/0x2d
[  836.610550]  ? copy_mount_string+0x40/0x40
[  836.614793]  ? memset+0x20/0x40
[  836.618060]  ? copy_mount_options+0x1fa/0x2f0
[  836.622536]  ? copy_mnt_ns+0xa30/0xa30
[  836.626432]  SyS_mount+0xa8/0x120
[  836.629868]  ? copy_mnt_ns+0xa30/0xa30
[  836.633745]  do_syscall_64+0x1d5/0x640
[  836.637710]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  836.642884] RIP: 0033:0x7fcd83ff463a
[  836.646573] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  836.654277] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  836.661529] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  836.668777] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  836.676270] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  836.683532] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:49 executing program 0:
socketpair(0x3, 0x4, 0x4a9, 0x0) (async)
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r0, &(0x7f0000000000)={0x2, 0x0, @private=0xa010102}, 0x10) (async)
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="07cb0000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000ffdbdf25040000000500060004000000050004002000000005000d000100000005000d0000000000"], 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x20000015) (async)
recvfrom$l2tp(r0, &(0x7f0000000040)=""/17, 0x11, 0x40000000, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)

20:49:49 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 49)

20:49:49 executing program 3:
ioctl$SNDCTL_FM_4OP_ENABLE(0xffffffffffffffff, 0x4004510f, 0x0) (async)
ioctl$SNDCTL_MIDI_INFO(0xffffffffffffffff, 0xc074510c, &(0x7f0000000040)={"7e577815c400b0b44ef4d423d2783a2516c559d1fc4b16cac2ed577a7600", 0x71, 0x5, 0x9, [0x3, 0x6, 0x0, 0x5, 0x2, 0x7, 0x10001, 0x0, 0x4, 0xfffeffff, 0x6, 0x7, 0x3, 0x7f, 0xfffffffe, 0x5, 0x80000000, 0x81]}) (async)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

20:49:49 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x24, 0x4, 0x1180184, 0x7, 0x5b8e, 0x7, 0xffff}}, 0x50)

20:49:49 executing program 4:
socketpair(0x15, 0x80005, 0xfffffffc, 0x0)
socket$key(0xf, 0x3, 0x2)

20:49:49 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 52)

20:49:49 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x24, 0x4, 0x1180184, 0x7, 0x5b8e, 0x7, 0xffff}}, 0x50)
socket$pppoe(0x18, 0x1, 0x0) (async)
write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0) (async)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x24, 0x4, 0x1180184, 0x7, 0x5b8e, 0x7, 0xffff}}, 0x50) (async)

20:49:49 executing program 4:
socketpair(0x15, 0x80005, 0xfffffffc, 0x0)
socket$key(0xf, 0x3, 0x2)

20:49:49 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x24, 0x4, 0x1180184, 0x7, 0x5b8e, 0x7, 0xffff}}, 0x50)
socket$pppoe(0x18, 0x1, 0x0) (async)
write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x10}, 0x10) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0) (async)
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x24, 0x4, 0x1180184, 0x7, 0x5b8e, 0x7, 0xffff}}, 0x50) (async)

20:49:49 executing program 4:
socketpair(0x15, 0x80005, 0xfffffffc, 0x0)
socket$key(0xf, 0x3, 0x2)

[  836.942154] FAULT_INJECTION: forcing a failure.
[  836.942154] name failslab, interval 1, probability 0, space 0, times 0
[  836.958353] FAULT_INJECTION: forcing a failure.
[  836.958353] name failslab, interval 1, probability 0, space 0, times 0
[  836.977402] CPU: 1 PID: 23121 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  836.985315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  836.994676] Call Trace:
[  836.997275]  dump_stack+0x1b2/0x281
[  837.000915]  should_fail.cold+0x10a/0x149
[  837.005081]  should_failslab+0xd6/0x130
[  837.009071]  __kmalloc_track_caller+0x2bc/0x400
[  837.013746]  ? kstrdup_const+0x35/0x60
[  837.017640]  ? lock_downgrade+0x740/0x740
[  837.021827]  kstrdup+0x36/0x70
[  837.025025]  kstrdup_const+0x35/0x60
[  837.028748]  alloc_vfsmnt+0xe0/0x7f0
[  837.032462]  ? _raw_read_unlock+0x29/0x40
[  837.036618]  vfs_kern_mount.part.0+0x27/0x470
[  837.041125]  do_mount+0xe65/0x2a30
[  837.044671]  ? __do_page_fault+0x159/0xad0
[  837.048904]  ? retint_kernel+0x2d/0x2d
[  837.052796]  ? copy_mount_string+0x40/0x40
[  837.057038]  ? memset+0x20/0x40
[  837.060317]  ? copy_mount_options+0x1fa/0x2f0
[  837.064815]  ? copy_mnt_ns+0xa30/0xa30
[  837.068709]  SyS_mount+0xa8/0x120
[  837.072166]  ? copy_mnt_ns+0xa30/0xa30
[  837.076066]  do_syscall_64+0x1d5/0x640
[  837.079956]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  837.085137] RIP: 0033:0x7fcd83ff463a
[  837.088838] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  837.096541] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  837.103815] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  837.111088] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  837.118360] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  837.125629] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  837.132909] CPU: 0 PID: 23108 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
20:49:49 executing program 3:
ioctl$SNDCTL_FM_4OP_ENABLE(0xffffffffffffffff, 0x4004510f, 0x0) (async)
ioctl$SNDCTL_MIDI_INFO(0xffffffffffffffff, 0xc074510c, &(0x7f0000000040)={"7e577815c400b0b44ef4d423d2783a2516c559d1fc4b16cac2ed577a7600", 0x71, 0x5, 0x9, [0x3, 0x6, 0x0, 0x5, 0x2, 0x7, 0x10001, 0x0, 0x4, 0xfffeffff, 0x6, 0x7, 0x3, 0x7f, 0xfffffffe, 0x5, 0x80000000, 0x81]}) (async)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))

20:49:49 executing program 3:
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f0000000000)=0x734)
socketpair(0x21, 0xa, 0x0, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
getpeername$l2tp(r0, &(0x7f0000000040), &(0x7f0000000080)=0x10)

[  837.140807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  837.150172] Call Trace:
[  837.152761]  dump_stack+0x1b2/0x281
[  837.156400]  should_fail.cold+0x10a/0x149
[  837.160560]  should_failslab+0xd6/0x130
[  837.164544]  __kmalloc_track_caller+0x2bc/0x400
[  837.169223]  ? strndup_user+0x5b/0xf0
[  837.173034]  memdup_user+0x22/0xa0
[  837.176583]  strndup_user+0x5b/0xf0
[  837.180213]  ? copy_mnt_ns+0xa30/0xa30
[  837.184107]  SyS_mount+0x68/0x120
[  837.187568]  ? copy_mnt_ns+0xa30/0xa30
[  837.191468]  do_syscall_64+0x1d5/0x640
[  837.195369]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  837.200560] RIP: 0033:0x7f6b8cbe563a
[  837.204302] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  837.212025] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  837.219298] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  837.226670] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  837.233952] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
20:49:49 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

[  837.241230] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:49 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 50)

20:49:49 executing program 4:
syz_emit_ethernet(0xe, &(0x7f0000000240)={@link_local, @link_local, @void}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:49 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c000000a8e2a88d49c18355b07c426338b750f61ddf9af4f36524e1a0eadcf58975c85d9193410479eb41218ea28bf3a2af785444387b69aa45a159fdcebb38a6f22dafec7d4b9f6ea0041fe4cd8d98e7fd67081479a408d9b90c2dcae08216caecdbd32b29d046239f6786abeb531ed7e0854646e75f8ad83eee25cdcd6dcdf1e0ad89246f0863a6a6", @ANYRES16=0x0, @ANYBLOB="000426bd7000ffdbdf2504000000080003000800000008000200040000000800020005000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)

20:49:49 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 53)

20:49:49 executing program 3:
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f0000000000)=0x734) (async)
socketpair(0x21, 0xa, 0x0, 0x0) (async)
r0 = socket$l2tp(0x2, 0x2, 0x73)
getpeername$l2tp(r0, &(0x7f0000000040), &(0x7f0000000080)=0x10)

20:49:49 executing program 4:
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020, 0x0, <r0=>0x0}, 0x2020)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]})
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200))
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51)

20:49:49 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async)

20:49:49 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c000000a8e2a88d49c18355b07c426338b750f61ddf9af4f36524e1a0eadcf58975c85d9193410479eb41218ea28bf3a2af785444387b69aa45a159fdcebb38a6f22dafec7d4b9f6ea0041fe4cd8d98e7fd67081479a408d9b90c2dcae08216caecdbd32b29d046239f6786abeb531ed7e0854646e75f8ad83eee25cdcd6dcdf1e0ad89246f0863a6a6", @ANYRES16=0x0, @ANYBLOB="000426bd7000ffdbdf2504000000080003000800000008000200040000000800020005000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c000000a8e2a88d49c18355b07c426338b750f61ddf9af4f36524e1a0eadcf58975c85d9193410479eb41218ea28bf3a2af785444387b69aa45a159fdcebb38a6f22dafec7d4b9f6ea0041fe4cd8d98e7fd67081479a408d9b90c2dcae08216caecdbd32b29d046239f6786abeb531ed7e0854646e75f8ad83eee25cdcd6dcdf1e0ad89246f0863a6a6", @ANYRES16=0x0, @ANYBLOB="000426bd7000ffdbdf2504000000080003000800000008000200040000000800020005000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) (async)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) (async)

[  837.367076] FAULT_INJECTION: forcing a failure.
[  837.367076] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  837.378925] CPU: 0 PID: 23172 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  837.378933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  837.378937] Call Trace:
[  837.378953]  dump_stack+0x1b2/0x281
[  837.378968]  should_fail.cold+0x10a/0x149
[  837.378978]  ? get_page_from_freelist+0xaf6/0x25a0
[  837.378990]  __alloc_pages_nodemask+0x22c/0x2720
[  837.379002]  ? lock_downgrade+0x740/0x740
[  837.379014]  ? page_outside_zone_boundaries+0x1db/0x310
[  837.379026]  ? __lock_acquire+0x5fc/0x3f20
[  837.379040]  ? preempt_count_add+0xaf/0x170
[  837.379051]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  837.379071]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  837.379083]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[  837.379092]  ? __alloc_pages_nodemask+0x1a6e/0x2720
[  837.379105]  cache_grow_begin+0x91/0x700
[  837.379112]  ? fs_reclaim_release+0xd0/0x110
[  837.379123]  ? check_preemption_disabled+0x35/0x240
[  837.379135]  cache_alloc_refill+0x273/0x350
[  837.379149]  kmem_cache_alloc+0x333/0x3c0
[  837.379172]  getname_kernel+0x4e/0x340
[  837.379183]  kern_path+0x1b/0x40
[  837.379195]  lookup_bdev+0xc6/0x1c0
[  837.379204]  ? bd_acquire+0x440/0x440
[  837.379212]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  837.379222]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[  837.379231]  blkdev_get_by_path+0x1b/0xa0
[  837.379243]  mount_bdev+0x4c/0x360
[  837.509797]  ? bfs_iget+0xae0/0xae0
[  837.509809]  mount_fs+0x92/0x2a0
20:49:49 executing program 3:
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f0000000000)=0x734) (async, rerun: 32)
socketpair(0x21, 0xa, 0x0, 0x0) (async, rerun: 32)
r0 = socket$l2tp(0x2, 0x2, 0x73)
getpeername$l2tp(r0, &(0x7f0000000040), &(0x7f0000000080)=0x10)

[  837.516817]  vfs_kern_mount.part.0+0x5b/0x470
[  837.516829]  do_mount+0xe65/0x2a30
[  837.524874]  ? __do_page_fault+0x159/0xad0
20:49:49 executing program 4:
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020, 0x0, <r0=>0x0}, 0x2020)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]})
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200))
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51)

20:49:49 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 51)

20:49:50 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async, rerun: 32)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c000000a8e2a88d49c18355b07c426338b750f61ddf9af4f36524e1a0eadcf58975c85d9193410479eb41218ea28bf3a2af785444387b69aa45a159fdcebb38a6f22dafec7d4b9f6ea0041fe4cd8d98e7fd67081479a408d9b90c2dcae08216caecdbd32b29d046239f6786abeb531ed7e0854646e75f8ad83eee25cdcd6dcdf1e0ad89246f0863a6a6", @ANYRES16=0x0, @ANYBLOB="000426bd7000ffdbdf2504000000080003000800000008000200040000000800020005000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) (async, rerun: 32)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)

20:49:50 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 54)

[  837.524886]  ? retint_kernel+0x2d/0x2d
20:49:50 executing program 3:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x108, r0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0xdc, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x393aba2e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50b3022c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x129ae325}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeeae}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3b67}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe08c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4758fd66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6c13}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68d896bc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x65d0}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x79bb53a8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3c44}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x68b8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x641f1875}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbbf2}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5fab024d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x619b510a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfd9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x742a5052}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d9bc3d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5966467a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60147969}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x57ef9f2f}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x108}, 0x1, 0x0, 0x0, 0x80a0}, 0x40000)
socketpair(0x26, 0x5, 0x0, 0x0)
recvfrom$l2tp(0xffffffffffffffff, &(0x7f0000000000)=""/239, 0xef, 0x2110, &(0x7f0000000100)={0x2, 0x0, @initdev}, 0x10)

[  837.524897]  ? copy_mount_string+0x40/0x40
20:49:50 executing program 3:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x108, r0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0xdc, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x393aba2e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50b3022c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x129ae325}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeeae}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3b67}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe08c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4758fd66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6c13}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68d896bc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x65d0}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x79bb53a8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3c44}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x68b8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x641f1875}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbbf2}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5fab024d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x619b510a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfd9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x742a5052}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d9bc3d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5966467a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60147969}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x57ef9f2f}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x108}, 0x1, 0x0, 0x0, 0x80a0}, 0x40000)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
recvfrom$l2tp(0xffffffffffffffff, &(0x7f0000000000)=""/239, 0xef, 0x2110, &(0x7f0000000100)={0x2, 0x0, @initdev}, 0x10)

[  837.524909]  ? memset+0x20/0x40
[  837.524918]  ? copy_mount_options+0x1fa/0x2f0
[  837.524925]  ? copy_mnt_ns+0xa30/0xa30
[  837.524935]  SyS_mount+0xa8/0x120
[  837.524945]  ? copy_mnt_ns+0xa30/0xa30
20:49:50 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 52)

20:49:50 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 55)

20:49:50 executing program 1:
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f00000022c0)=0x1)
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x0, @multicast, 'ip6tnl0\x00'}})
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r1=>0x0}, 0x2020)
statx(0xffffffffffffffff, &(0x7f00000020c0)='./file0\x00', 0x1000, 0x40, &(0x7f0000002100)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000002200)={0x90, 0x0, r1, {0x6, 0x3, 0x6, 0x6287, 0xffff7fff, 0x40, {0x5, 0x2, 0x5, 0x2a6f, 0x0, 0x7, 0x81, 0x20, 0x200, 0xa000, 0x2, r2, 0xee00, 0x3f, 0x1}}}, 0x90)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000000)={0xa, 0x3, 0x0, 0x9, 'syz1\x00', 0x80000000})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  837.524973]  do_syscall_64+0x1d5/0x640
[  837.524986]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  837.524994] RIP: 0033:0x7fcd83ff463a
[  837.524998] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  837.525007] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  837.525012] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
20:49:50 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0) (async)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

20:49:50 executing program 3:
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x108, r0, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0xdc, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x393aba2e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50b3022c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x129ae325}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xeeae}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3b67}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe08c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4758fd66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6c13}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68d896bc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x65d0}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x79bb53a8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3c44}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x68b8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x641f1875}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbbf2}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5fab024d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x619b510a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfd9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x742a5052}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d9bc3d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5966467a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60147969}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x57ef9f2f}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x108}, 0x1, 0x0, 0x0, 0x80a0}, 0x40000)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
recvfrom$l2tp(0xffffffffffffffff, &(0x7f0000000000)=""/239, 0xef, 0x2110, &(0x7f0000000100)={0x2, 0x0, @initdev}, 0x10)

20:49:50 executing program 1:
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f00000022c0)=0x1)
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x0, @multicast, 'ip6tnl0\x00'}})
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r1=>0x0}, 0x2020) (async)
statx(0xffffffffffffffff, &(0x7f00000020c0)='./file0\x00', 0x1000, 0x40, &(0x7f0000002100)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000002200)={0x90, 0x0, r1, {0x6, 0x3, 0x6, 0x6287, 0xffff7fff, 0x40, {0x5, 0x2, 0x5, 0x2a6f, 0x0, 0x7, 0x81, 0x20, 0x200, 0xa000, 0x2, r2, 0xee00, 0x3f, 0x1}}}, 0x90)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000000)={0xa, 0x3, 0x0, 0x9, 'syz1\x00', 0x80000000}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

[  837.525017] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  837.525021] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  837.525025] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  837.540150] FAULT_INJECTION: forcing a failure.
[  837.540150] name failslab, interval 1, probability 0, space 0, times 0
[  837.540163] CPU: 0 PID: 23186 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  837.540169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  837.540173] Call Trace:
[  837.540187]  dump_stack+0x1b2/0x281
[  837.540202]  should_fail.cold+0x10a/0x149
[  837.540217]  should_failslab+0xd6/0x130
[  837.540231]  __kmalloc_track_caller+0x2bc/0x400
[  837.540245]  ? kstrdup_const+0x35/0x60
[  837.540255]  ? lock_downgrade+0x740/0x740
[  837.540266]  kstrdup+0x36/0x70
[  837.540278]  kstrdup_const+0x35/0x60
[  837.540288]  alloc_vfsmnt+0xe0/0x7f0
[  837.540296]  ? _raw_read_unlock+0x29/0x40
[  837.540306]  vfs_kern_mount.part.0+0x27/0x470
[  837.540318]  do_mount+0xe65/0x2a30
[  837.540330]  ? __do_page_fault+0x159/0xad0
[  837.540339]  ? retint_kernel+0x2d/0x2d
[  837.540349]  ? copy_mount_string+0x40/0x40
[  837.540361]  ? memset+0x20/0x40
[  837.540371]  ? copy_mount_options+0x1fa/0x2f0
[  837.540380]  ? copy_mnt_ns+0xa30/0xa30
[  837.540390]  SyS_mount+0xa8/0x120
[  837.540398]  ? copy_mnt_ns+0xa30/0xa30
[  837.540409]  do_syscall_64+0x1d5/0x640
[  837.540422]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  837.540429] RIP: 0033:0x7f6b8cbe563a
[  837.540434] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  837.540443] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  837.540448] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  837.540453] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  837.540459] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  837.540465] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  837.630474] FAULT_INJECTION: forcing a failure.
[  837.630474] name failslab, interval 1, probability 0, space 0, times 0
[  837.630486] CPU: 0 PID: 23226 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  837.630493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  837.630498] Call Trace:
[  837.630512]  dump_stack+0x1b2/0x281
[  837.630527]  should_fail.cold+0x10a/0x149
[  837.630542]  should_failslab+0xd6/0x130
[  837.630555]  __kmalloc_track_caller+0x2bc/0x400
[  837.630564]  ? kstrdup_const+0x35/0x60
[  837.630573]  ? lock_downgrade+0x740/0x740
[  837.630583]  kstrdup+0x36/0x70
[  837.630592]  kstrdup_const+0x35/0x60
[  837.630601]  alloc_vfsmnt+0xe0/0x7f0
[  837.630610]  ? _raw_read_unlock+0x29/0x40
[  837.630620]  vfs_kern_mount.part.0+0x27/0x470
[  837.630632]  do_mount+0xe65/0x2a30
[  837.630645]  ? __do_page_fault+0x159/0xad0
[  837.630654]  ? retint_kernel+0x2d/0x2d
[  837.630665]  ? copy_mount_string+0x40/0x40
[  837.630677]  ? memset+0x20/0x40
[  837.630687]  ? copy_mount_options+0x1fa/0x2f0
[  837.630705]  ? copy_mnt_ns+0xa30/0xa30
[  837.630717]  SyS_mount+0xa8/0x120
[  837.630726]  ? copy_mnt_ns+0xa30/0xa30
[  837.630738]  do_syscall_64+0x1d5/0x640
[  837.630753]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  837.630760] RIP: 0033:0x7f6b8cbe563a
[  837.630766] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  837.630776] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  837.630782] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  837.630788] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  837.630794] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  837.630800] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  837.659675] FAULT_INJECTION: forcing a failure.
[  837.659675] name failslab, interval 1, probability 0, space 0, times 0
[  837.659722] CPU: 0 PID: 23230 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  837.659728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  837.659732] Call Trace:
[  837.659746]  dump_stack+0x1b2/0x281
[  837.659772]  should_fail.cold+0x10a/0x149
[  837.659786]  should_failslab+0xd6/0x130
[  837.659798]  __kmalloc+0x2c1/0x400
[  837.659808]  ? __list_lru_init+0x67/0x710
[  837.659820]  __list_lru_init+0x67/0x710
[  837.659833]  sget_userns+0x4e4/0xc10
[  837.659842]  ? set_bdev_super+0x110/0x110
[  837.659854]  ? ns_test_super+0x50/0x50
[  837.659865]  ? set_bdev_super+0x110/0x110
[  837.659873]  ? ns_test_super+0x50/0x50
[  837.659879]  sget+0xd1/0x110
[  837.659890]  mount_bdev+0xcd/0x360
[  837.659898]  ? bfs_iget+0xae0/0xae0
[  837.659908]  mount_fs+0x92/0x2a0
[  837.659921]  vfs_kern_mount.part.0+0x5b/0x470
[  837.659933]  do_mount+0xe65/0x2a30
[  837.659946]  ? __do_page_fault+0x159/0xad0
[  837.659956]  ? retint_kernel+0x2d/0x2d
[  837.659967]  ? copy_mount_string+0x40/0x40
[  837.659979]  ? memset+0x20/0x40
[  837.659989]  ? copy_mount_options+0x1fa/0x2f0
[  837.659998]  ? copy_mnt_ns+0xa30/0xa30
[  837.660008]  SyS_mount+0xa8/0x120
[  837.660016]  ? copy_mnt_ns+0xa30/0xa30
[  837.660026]  do_syscall_64+0x1d5/0x640
[  837.660038]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  837.660045] RIP: 0033:0x7fcd83ff463a
[  837.660049] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  837.660058] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  837.660063] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  837.660068] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  837.660074] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  837.660080] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  837.761891] FAULT_INJECTION: forcing a failure.
[  837.761891] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  837.767747] FAULT_INJECTION: forcing a failure.
[  837.767747] name failslab, interval 1, probability 0, space 0, times 0
[  837.769823] CPU: 0 PID: 23250 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  838.338557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  838.338561] Call Trace:
[  838.338576]  dump_stack+0x1b2/0x281
[  838.338588]  should_fail.cold+0x10a/0x149
[  838.338599]  __alloc_pages_nodemask+0x22c/0x2720
[  838.338610]  ? __lock_acquire+0x5fc/0x3f20
[  838.338619]  ? __lock_acquire+0x5fc/0x3f20
[  838.338628]  ? __lock_acquire+0x5fc/0x3f20
[  838.338635]  ? gfp_pfmemalloc_allowed+0x150/0x150
[  838.338644]  ? blkdev_get+0x484/0x890
[  838.338654]  ? blkdev_get+0x484/0x890
[  838.338661]  ? trace_hardirqs_on+0x10/0x10
[  838.338682]  cache_grow_begin+0x91/0x700
[  838.338688]  ? fs_reclaim_release+0xd0/0x110
[  838.338697]  ? check_preemption_disabled+0x35/0x240
[  838.338706]  cache_alloc_refill+0x273/0x350
[  838.338717]  kmem_cache_alloc_trace+0x340/0x3d0
[  838.338726]  ? set_bdev_super+0x110/0x110
[  838.338732]  sget_userns+0x102/0xc10
[  838.338739]  ? set_bdev_super+0x110/0x110
[  838.338748]  ? ns_test_super+0x50/0x50
[  838.338756]  ? set_bdev_super+0x110/0x110
[  838.338762]  ? ns_test_super+0x50/0x50
[  838.338767]  sget+0xd1/0x110
[  838.338775]  mount_bdev+0xcd/0x360
[  838.338781]  ? bfs_iget+0xae0/0xae0
[  838.338789]  mount_fs+0x92/0x2a0
[  838.338799]  vfs_kern_mount.part.0+0x5b/0x470
[  838.338808]  do_mount+0xe65/0x2a30
[  838.338819]  ? __do_page_fault+0x159/0xad0
[  838.338827]  ? retint_kernel+0x2d/0x2d
[  838.338834]  ? copy_mount_string+0x40/0x40
[  838.338844]  ? memset+0x20/0x40
[  838.338851]  ? copy_mount_options+0x1fa/0x2f0
[  838.338858]  ? copy_mnt_ns+0xa30/0xa30
[  838.338865]  SyS_mount+0xa8/0x120
[  838.338872]  ? copy_mnt_ns+0xa30/0xa30
[  838.338880]  do_syscall_64+0x1d5/0x640
[  838.338891]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  838.338898] RIP: 0033:0x7fcd83ff463a
[  838.338902] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  838.338910] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  838.338914] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  838.338918] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  838.338922] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  838.338927] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  838.338945] CPU: 1 PID: 23249 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  838.338951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  838.338953] Call Trace:
[  838.338962]  dump_stack+0x1b2/0x281
[  838.338974]  should_fail.cold+0x10a/0x149
[  838.338986]  should_failslab+0xd6/0x130
[  838.338995]  kmem_cache_alloc+0x28e/0x3c0
[  838.339006]  getname_kernel+0x4e/0x340
[  838.339017]  kern_path+0x1b/0x40
[  838.339026]  lookup_bdev+0xc6/0x1c0
[  838.339036]  ? bd_acquire+0x440/0x440
[  838.339045]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  838.339056]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[  838.339065]  blkdev_get_by_path+0x1b/0xa0
[  838.339073]  mount_bdev+0x4c/0x360
[  838.339080]  ? bfs_iget+0xae0/0xae0
[  838.339092]  mount_fs+0x92/0x2a0
[  838.339104]  vfs_kern_mount.part.0+0x5b/0x470
[  838.339115]  do_mount+0xe65/0x2a30
[  838.339127]  ? __do_page_fault+0x159/0xad0
[  838.339134]  ? retint_kernel+0x2d/0x2d
[  838.339144]  ? copy_mount_string+0x40/0x40
[  838.339156]  ? memset+0x20/0x40
[  838.339165]  ? copy_mount_options+0x1fa/0x2f0
[  838.339179]  ? copy_mnt_ns+0xa30/0xa30
[  838.339189]  SyS_mount+0xa8/0x120
[  838.339196]  ? copy_mnt_ns+0xa30/0xa30
[  838.339206]  do_syscall_64+0x1d5/0x640
20:49:51 executing program 4:
read$FUSE(0xffffffffffffffff, &(0x7f0000000280)={0x2020, 0x0, <r0=>0x0}, 0x2020)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400, 0x200, &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f00000023c0)={0x90, 0x0, r0, {0x6, 0x2, 0x7f, 0x2, 0x4, 0x86, {0x6, 0x20, 0x40, 0xf488, 0xdd, 0xffffffff00000000, 0x3, 0x3, 0x5, 0x1000, 0x80000000, r1, 0xee00, 0x1, 0x8}}}, 0x90)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x181500, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="a2d6a157c383e9fd394c354e9f0275e5eb658fa37a4c04af23c1b9371246c974da176bd7e22c0b8e30ec9bbdf47974f7cb31d3c753376fef937b5a853d6c429b0624af606961256c0598662f2436f60abb7e093c9ce0a27d7295677c8fff2abeb9514378d7383b1e43bb5e80e9a587f90833599bb2eb3d61282c83", 0x7b, 0xfffffffffffffffe}, {&(0x7f0000000180)="0226578a61b30f84732eaf2b22f8f344b0a1ab156e64", 0x16}, {&(0x7f00000001c0)='+', 0x1}], 0x1001, &(0x7f0000000380)={[{'('}, {}, {'/dev/vmci\x00'}], [{@smackfshat}, {@dont_hash}, {@obj_type={'obj_type', 0x3d, '/dev/vmci\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\),\xa2+[+-['}}]})
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000200))
ioctl$SNDCTL_MIDI_PRETIME(0xffffffffffffffff, 0xc0046d00, &(0x7f0000000000)=0x6)
ioctl$SNDCTL_TMR_TEMPO(r3, 0xc0045405, &(0x7f0000000100)=0x51)

20:49:51 executing program 1:
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(0xffffffffffffffff, 0xc0045520, &(0x7f00000022c0)=0x1) (async)
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x0, @multicast, 'ip6tnl0\x00'}}) (async)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r1=>0x0}, 0x2020)
statx(0xffffffffffffffff, &(0x7f00000020c0)='./file0\x00', 0x1000, 0x40, &(0x7f0000002100)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000002200)={0x90, 0x0, r1, {0x6, 0x3, 0x6, 0x6287, 0xffff7fff, 0x40, {0x5, 0x2, 0x5, 0x2a6f, 0x0, 0x7, 0x81, 0x20, 0x200, 0xa000, 0x2, r2, 0xee00, 0x3f, 0x1}}}, 0x90) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(0xffffffffffffffff, 0x40405514, &(0x7f0000000000)={0xa, 0x3, 0x0, 0x9, 'syz1\x00', 0x80000000})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)

20:49:51 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfffffffeffffffff}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x46}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff81}]}, 0x44}, 0x1, 0x0, 0x0, 0x808c}, 0xc000)

20:49:51 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 53)

20:49:51 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 56)

20:49:51 executing program 0:
socketpair(0x27, 0x5, 0x3ff, 0x0)

[  838.339220]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  838.339228] RIP: 0033:0x7f6b8cbe563a
[  838.339232] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  838.339242] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  838.339247] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  838.339253] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  838.339258] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  838.339264] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
20:49:51 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfffffffeffffffff}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x46}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff81}]}, 0x44}, 0x1, 0x0, 0x0, 0x808c}, 0xc000)
socketpair(0x26, 0x5, 0x0, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfffffffeffffffff}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x46}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff81}]}, 0x44}, 0x1, 0x0, 0x0, 0x808c}, 0xc000) (async)

20:49:51 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x4, @local, 'veth0_virt_wifi\x00'}})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)

20:49:51 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x4, @local, 'veth0_virt_wifi\x00'}})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)
socket$pppoe(0x18, 0x1, 0x0) (async)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0) (async)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0) (async)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x4, @local, 'veth0_virt_wifi\x00'}}) (async)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) (async)

20:49:51 executing program 0:
socketpair(0x27, 0x5, 0x3ff, 0x0)

[  838.850156] FAULT_INJECTION: forcing a failure.
[  838.850156] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  838.879775] FAULT_INJECTION: forcing a failure.
[  838.879775] name failslab, interval 1, probability 0, space 0, times 0
20:49:51 executing program 3:
socketpair(0x26, 0x5, 0x0, 0x0) (async, rerun: 32)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1) (async)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xff}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfffffffeffffffff}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x46}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffffffffff81}]}, 0x44}, 0x1, 0x0, 0x0, 0x808c}, 0xc000)

[  838.919266] CPU: 1 PID: 23293 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  838.927178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  838.936540] Call Trace:
[  838.939141]  dump_stack+0x1b2/0x281
[  838.942783]  should_fail.cold+0x10a/0x149
[  838.946942]  __alloc_pages_nodemask+0x22c/0x2720
[  838.951710]  ? trace_hardirqs_on+0x10/0x10
[  838.955963]  ? pcpu_alloc+0xbe0/0xf50
[  838.959782]  ? gfp_pfmemalloc_allowed+0x150/0x150
20:49:51 executing program 3:
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000040)={0x2fc, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0xa0, 0xc, 0x0, 0x1, [{0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4d43010e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6f66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb4d1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe408}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb26e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x628b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x705ac9b2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50f4e51f}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa3ef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x43b7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6fd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68e4588a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5fdc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x55ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9003}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb64}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1fdd7317}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c97091c}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x154, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x27ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x650762b6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3596c0ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7fc3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6a084e4d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb3f3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e6f4211}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc1ed}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60e05f63}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f64e586}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3ed}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe6f2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbd3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb336}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b24a5e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb2d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x45966d9f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e604727}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66b3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e576cf1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3cb2a308}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x24d3b99d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53a8706b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x769f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x694d441f}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2043fb8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e34}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbcca}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x640f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x812f}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x79}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x58a67a71}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xca3b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4893e025}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x552e1902}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xf0, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b20c48a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bd1885f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x25cb8fb7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bf0cda3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x92}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b50bf8d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5783ce80}]}, {0x4}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x21486fd5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5bbc853d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xed}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bf13163}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ef8dc7c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfc}]}, {0x4}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ee3017b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x390ef56b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b13a46f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b608a01}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}]}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0xc000}, 0x40c04)

[  838.964647]  ? rcu_lockdep_current_cpu_online+0xed/0x140
[  838.970123]  ? rcu_read_lock_sched_held+0x16c/0x1d0
[  838.975196]  alloc_pages_current+0x155/0x260
[  838.979622]  ? __lockdep_init_map+0x100/0x560
[  838.984138]  get_zeroed_page+0x19/0x50
[  838.988032]  mount_fs+0x1c7/0x2a0
[  838.991498]  vfs_kern_mount.part.0+0x5b/0x470
[  838.996026]  do_mount+0xe65/0x2a30
[  838.999599]  ? __do_page_fault+0x159/0xad0
[  839.003841]  ? retint_kernel+0x2d/0x2d
[  839.007755]  ? copy_mount_string+0x40/0x40
[  839.012004]  ? memset+0x20/0x40
[  839.015384]  ? copy_mount_options+0x1fa/0x2f0
[  839.019897]  ? copy_mnt_ns+0xa30/0xa30
[  839.023806]  SyS_mount+0xa8/0x120
[  839.027264]  ? copy_mnt_ns+0xa30/0xa30
[  839.031166]  do_syscall_64+0x1d5/0x640
[  839.035063]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  839.040253] RIP: 0033:0x7f6b8cbe563a
[  839.043958] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  839.051659] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  839.058910] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
[  839.066164] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  839.073421] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  839.080671] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  839.087939] CPU: 0 PID: 23290 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  839.095827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  839.105180] Call Trace:
[  839.107782]  dump_stack+0x1b2/0x281
[  839.111410]  should_fail.cold+0x10a/0x149
[  839.115545]  should_failslab+0xd6/0x130
[  839.119501]  __kmalloc+0x2c1/0x400
[  839.123025]  ? __list_lru_init+0x67/0x710
[  839.127156]  __list_lru_init+0x67/0x710
[  839.131117]  sget_userns+0x504/0xc10
[  839.134811]  ? set_bdev_super+0x110/0x110
[  839.138944]  ? ns_test_super+0x50/0x50
[  839.142824]  ? set_bdev_super+0x110/0x110
[  839.146953]  ? ns_test_super+0x50/0x50
[  839.150821]  sget+0xd1/0x110
[  839.153827]  mount_bdev+0xcd/0x360
[  839.157349]  ? bfs_iget+0xae0/0xae0
[  839.160959]  mount_fs+0x92/0x2a0
[  839.164311]  vfs_kern_mount.part.0+0x5b/0x470
[  839.168793]  do_mount+0xe65/0x2a30
[  839.172318]  ? __do_page_fault+0x159/0xad0
[  839.176632]  ? retint_kernel+0x2d/0x2d
[  839.180505]  ? copy_mount_string+0x40/0x40
[  839.184725]  ? memset+0x20/0x40
[  839.188012]  ? copy_mount_options+0x1fa/0x2f0
[  839.192509]  ? copy_mnt_ns+0xa30/0xa30
[  839.196388]  SyS_mount+0xa8/0x120
[  839.199829]  ? copy_mnt_ns+0xa30/0xa30
[  839.203703]  do_syscall_64+0x1d5/0x640
[  839.207582]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  839.212755] RIP: 0033:0x7fcd83ff463a
20:49:51 executing program 4:
syz_extract_tcp_res$synack(&(0x7f0000000200), 0x1, 0x0)
ioctl$SNDCTL_SYNTH_INFO(0xffffffffffffffff, 0xc08c5102, &(0x7f0000000000)={"2cfcc5c49fbe9e901e383b291a6016ba81b63cc5be2f31663f3d386dc658", 0x9, 0x1, 0x1, 0x801f, 0xffffffff, 0x10000, 0x1, 0x1, [0x7, 0x3, 0x5, 0x3ff, 0x5, 0x3f, 0xfffffffb, 0x2, 0x6, 0x5af8, 0x10008, 0x8, 0xa536, 0x1, 0x5, 0x8, 0x2, 0x1, 0xfffffcd4]})
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x400, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@generic={0x6007, "1d801283b9f1d68e37e66fa17abe1c9ea701530dcc92cfdcbefe1fd022a88981f3b8d8b997e0fcb8a1114c898a420c18e75ad7582772c2bed2b80be6"}}}, &(0x7f00000002c0)={0x1, 0x3, [0xa44, 0x414, 0xb21, 0xe10]})

20:49:51 executing program 3:
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000040)={0x2fc, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0xa0, 0xc, 0x0, 0x1, [{0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4d43010e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6f66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb4d1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe408}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb26e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x628b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x705ac9b2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50f4e51f}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa3ef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x43b7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6fd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68e4588a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5fdc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x55ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9003}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb64}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1fdd7317}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c97091c}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x154, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x27ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x650762b6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3596c0ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7fc3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6a084e4d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb3f3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e6f4211}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc1ed}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60e05f63}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f64e586}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3ed}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe6f2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbd3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb336}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b24a5e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb2d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x45966d9f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e604727}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66b3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e576cf1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3cb2a308}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x24d3b99d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53a8706b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x769f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x694d441f}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2043fb8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e34}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbcca}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x640f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x812f}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x79}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x58a67a71}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xca3b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4893e025}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x552e1902}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xf0, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b20c48a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bd1885f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x25cb8fb7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bf0cda3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x92}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b50bf8d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5783ce80}]}, {0x4}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x21486fd5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5bbc853d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xed}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bf13163}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ef8dc7c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfc}]}, {0x4}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ee3017b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x390ef56b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b13a46f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b608a01}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}]}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0xc000}, 0x40c04)

20:49:51 executing program 0:
socketpair(0x27, 0x5, 0x3ff, 0x0)
socketpair(0x27, 0x5, 0x3ff, 0x0) (async)

[  839.216446] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  839.224135] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  839.231387] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  839.238638] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  839.245888] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  839.253142] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
20:49:51 executing program 5:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 54)

20:49:51 executing program 1:
r0 = socket$pppoe(0x18, 0x1, 0x0) (async)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc02864ca, 0x0)
ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x4, @local, 'veth0_virt_wifi\x00'}})
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0)

20:49:51 executing program 2:
syz_mount_image$bfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002600), 0x8000, &(0x7f0000002700)) (fail_nth: 57)

20:49:51 executing program 3:
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000040)={0x2fc, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0xa0, 0xc, 0x0, 0x1, [{0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4d43010e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6f66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb4d1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe408}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb26e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x628b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x705ac9b2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50f4e51f}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa3ef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x43b7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6fd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68e4588a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5fdc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x55ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9003}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb64}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1fdd7317}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c97091c}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x154, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x27ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x650762b6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3596c0ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7fc3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6a084e4d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb3f3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e6f4211}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc1ed}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60e05f63}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f64e586}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3ed}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe6f2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbd3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb336}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b24a5e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb2d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x45966d9f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e604727}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66b3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e576cf1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3cb2a308}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x24d3b99d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53a8706b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x769f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x694d441f}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2043fb8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e34}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbcca}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x640f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x812f}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x79}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x58a67a71}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xca3b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4893e025}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x552e1902}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xf0, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b20c48a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bd1885f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x25cb8fb7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bf0cda3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x92}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b50bf8d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5783ce80}]}, {0x4}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x21486fd5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5bbc853d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xed}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bf13163}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ef8dc7c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfc}]}, {0x4}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ee3017b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x390ef56b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b13a46f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b608a01}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}]}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0xc000}, 0x40c04)
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000040)={0x2fc, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0xa0, 0xc, 0x0, 0x1, [{0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4d43010e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6f66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb4d1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe408}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb26e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x628b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x705ac9b2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50f4e51f}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa3ef}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x43b7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6fd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68e4588a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5fdc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x55ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9003}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb64}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1fdd7317}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c97091c}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x154, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x27ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x650762b6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3596c0ff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7fc3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6a084e4d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb3f3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e6f4211}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8794}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc1ed}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60e05f63}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f64e586}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3ed}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe6f2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbd3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb336}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b24a5e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb2d0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x45966d9f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1e604727}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66b3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e576cf1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3cb2a308}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x24d3b99d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x53a8706b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x769f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x694d441f}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2043fb8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1e34}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbcca}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x640f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x812f}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x79}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x58a67a71}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xca3b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4893e025}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x552e1902}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xf0, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1b20c48a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bd1885f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x25cb8fb7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bf0cda3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x92}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b50bf8d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5783ce80}]}, {0x4}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x21486fd5}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5bbc853d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xed}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bf13163}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ef8dc7c}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfc}]}, {0x4}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbc}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7ee3017b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x390ef56b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc5}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b13a46f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b608a01}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}]}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0xc000}, 0x40c04) (async)

20:49:51 executing program 4:
socketpair(0x9, 0x800, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={<r2=>0x0, 0x1, r0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580))
r6 = syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0)
r8 = syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000)

20:49:51 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'veth1_vlan\x00'}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x8}, 0x24008000)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(0xffffffffffffffff, 0xc008551c, &(0x7f0000000000)={0xb69, 0xc, [0x4, 0x5, 0x1f]})

20:49:51 executing program 3:
socketpair(0x26, 0x80000, 0x0, 0x0)

20:49:51 executing program 4:
socketpair(0x9, 0x800, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={<r2=>0x0, 0x1, r0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580))
r6 = syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0)
r8 = syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000)

20:49:51 executing program 0:
socketpair(0x3, 0x0, 0x7fffffd, 0x0)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_IFNAME={0x14, 0x8, 'veth1_vlan\x00'}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x8}, 0x24008000) (async, rerun: 32)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(0xffffffffffffffff, 0xc008551c, &(0x7f0000000000)={0xb69, 0xc, [0x4, 0x5, 0x1f]}) (rerun: 32)

20:49:51 executing program 1:
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x2000000)
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0)
write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000)='THAWED\x00', 0x7)

[  839.396079] FAULT_INJECTION: forcing a failure.
[  839.396079] name failslab, interval 1, probability 0, space 0, times 0
[  839.450611] CPU: 1 PID: 23346 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  839.453917] FAULT_INJECTION: forcing a failure.
[  839.453917] name failslab, interval 1, probability 0, space 0, times 0
[  839.458520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  839.458529] Call Trace:
[  839.458553]  dump_stack+0x1b2/0x281
[  839.458571]  should_fail.cold+0x10a/0x149
[  839.489470]  should_failslab+0xd6/0x130
[  839.493455]  __kmalloc+0x2c1/0x400
[  839.497003]  ? register_shrinker+0x1ab/0x220
[  839.501423]  register_shrinker+0x1ab/0x220
[  839.505665]  sget_userns+0x9aa/0xc10
[  839.509443]  ? set_bdev_super+0x110/0x110
[  839.513603]  ? ns_test_super+0x50/0x50
[  839.517679]  ? set_bdev_super+0x110/0x110
[  839.521826]  ? ns_test_super+0x50/0x50
[  839.525892]  sget+0xd1/0x110
[  839.528909]  mount_bdev+0xcd/0x360
[  839.532447]  ? bfs_iget+0xae0/0xae0
[  839.536079]  mount_fs+0x92/0x2a0
[  839.539457]  vfs_kern_mount.part.0+0x5b/0x470
[  839.544062]  do_mount+0xe65/0x2a30
[  839.547606]  ? __do_page_fault+0x159/0xad0
[  839.551838]  ? retint_kernel+0x2d/0x2d
[  839.555728]  ? copy_mount_string+0x40/0x40
[  839.559973]  ? memset+0x20/0x40
[  839.563345]  ? copy_mount_options+0x1fa/0x2f0
[  839.567844]  ? copy_mnt_ns+0xa30/0xa30
[  839.571732]  SyS_mount+0xa8/0x120
[  839.575189]  ? copy_mnt_ns+0xa30/0xa30
[  839.579080]  do_syscall_64+0x1d5/0x640
[  839.582982]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  839.588180] RIP: 0033:0x7fcd83ff463a
[  839.591892] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  839.599605] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  839.606877] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  839.614145] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  839.621417] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  839.628691] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  839.635974] CPU: 0 PID: 23355 Comm: syz-executor.5 Not tainted 4.14.286-syzkaller #0
[  839.643868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  839.653233] Call Trace:
[  839.655827]  dump_stack+0x1b2/0x281
[  839.659462]  should_fail.cold+0x10a/0x149
[  839.663619]  should_failslab+0xd6/0x130
[  839.667620]  kmem_cache_alloc_trace+0x29a/0x3d0
[  839.672309]  bfs_fill_super+0x50/0xd80
[  839.676206]  ? snprintf+0xa5/0xd0
[  839.679668]  ? vsprintf+0x30/0x30
[  839.683133]  ? ns_test_super+0x50/0x50
[  839.687040]  ? set_blocksize+0x125/0x380
[  839.691119]  mount_bdev+0x2b3/0x360
[  839.694755]  ? bfs_iget+0xae0/0xae0
[  839.696787] ------------[ cut here ]------------
[  839.698384]  mount_fs+0x92/0x2a0
[  839.703130] WARNING: CPU: 1 PID: 23346 at fs/super.c:1163 kill_block_super+0xbe/0xe0
[  839.706474]  vfs_kern_mount.part.0+0x5b/0x470
[  839.714327] Kernel panic - not syncing: panic_on_warn set ...
[  839.714327] 
[  839.718808]  do_mount+0xe65/0x2a30
[  839.729688]  ? __do_page_fault+0x159/0xad0
[  839.733907]  ? retint_kernel+0x2d/0x2d
[  839.737779]  ? copy_mount_string+0x40/0x40
[  839.742013]  ? memset+0x20/0x40
[  839.745277]  ? copy_mount_options+0x1fa/0x2f0
[  839.749842]  ? copy_mnt_ns+0xa30/0xa30
[  839.753712]  SyS_mount+0xa8/0x120
[  839.757163]  ? copy_mnt_ns+0xa30/0xa30
[  839.761037]  do_syscall_64+0x1d5/0x640
[  839.764911]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  839.770082] RIP: 0033:0x7f6b8cbe563a
[  839.773773] RSP: 002b:00007f6b8b558f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  839.781464] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007f6b8cbe563a
[  839.788716] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007f6b8b558fe0
20:49:52 executing program 1:
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x2000000) (async)
r0 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, 0x0) (async)
write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000)='THAWED\x00', 0x7)

20:49:52 executing program 4:
socketpair(0x9, 0x800, 0x7fffffd, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/slabinfo\x00', 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc02864ca, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000000)={<r2=>0x0, 0x1, r0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000180)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r1, 0xc02064c3, &(0x7f0000000200)={&(0x7f00000001c0)=[r3, r2], 0x1, 0x2, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x6, 0x1, 0x8, 0x3ff}, {0x5, 0x1, 0x3f, 0x23}, {0x6894, 0x4d, 0x9, 0x1}, {0x80, 0x9, 0x1f, 0xfffffffc}, {0x2, 0x7f, 0x81, 0x3}, {0x3, 0x8, 0x81, 0x5}, {0x401, 0x7f, 0xc0, 0x3}]})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={0x0}}, 0x1)
r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000280), r4)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000004)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x4c0400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000580))
r6 = syz_open_dev$dri(&(0x7f0000000500), 0x4, 0x200)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r6, 0xc00864bf, &(0x7f0000000540)={0x0, 0x1})
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/partitions\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r7, 0xc02864ca, 0x0)
r8 = syz_genetlink_get_family_id$l2tp(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r7, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r8, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_MTU={0x6, 0x1c, 0x2}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20000000)

[  839.795967] RBP: 00007f6b8b559020 R08: 00007f6b8b559020 R09: 0000000020000080
[  839.803306] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  839.810563] R13: 00000000200000c0 R14: 00007f6b8b558fe0 R15: 0000000020002700
[  839.817833] CPU: 1 PID: 23346 Comm: syz-executor.2 Not tainted 4.14.286-syzkaller #0
[  839.825718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[  839.835074] Call Trace:
[  839.837665]  dump_stack+0x1b2/0x281
[  839.841294]  panic+0x1f9/0x42d
[  839.844486]  ? add_taint.cold+0x16/0x16
[  839.848468]  ? kill_block_super+0xbe/0xe0
[  839.852617]  ? __warn.cold+0x5/0x44
[  839.856252]  ? kill_block_super+0xbe/0xe0
[  839.860409]  __warn.cold+0x20/0x44
[  839.863957]  ? ist_end_non_atomic+0x10/0x10
[  839.868283]  ? kill_block_super+0xbe/0xe0
[  839.872435]  report_bug+0x208/0x250
[  839.876075]  do_error_trap+0x195/0x2d0
[  839.879974]  ? math_error+0x2d0/0x2d0
[  839.883820]  ? retint_kernel+0x2d/0x2d
[  839.887728]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  839.892583]  invalid_op+0x1b/0x40
[  839.896044] RIP: 0010:kill_block_super+0xbe/0xe0
[  839.901069] RSP: 0018:ffff8880aad67bc8 EFLAGS: 00010246
[  839.906436] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc90007cce000
[  839.913713] RDX: 0000000000040000 RSI: ffffffff8187617e RDI: ffff88809030acb0
[  839.920985] RBP: ffff888091db2500 R08: ffffffff8b9baea8 R09: 0000000000000001
[  839.928274] R10: 0000000000000000 R11: ffff8880b538a580 R12: ffff88809030a800
[  839.935808] R13: ffffffff890ae230 R14: ffffffff88f45760 R15: dffffc0000000000
[  839.943095]  ? kill_block_super+0xbe/0xe0
[  839.947257]  ? kill_block_super+0xbe/0xe0
[  839.951413]  deactivate_locked_super+0x6c/0xd0
[  839.956005]  sget_userns+0x9c4/0xc10
[  839.959728]  ? set_bdev_super+0x110/0x110
[  839.963886]  ? ns_test_super+0x50/0x50
[  839.967781]  ? set_bdev_super+0x110/0x110
[  839.971937]  ? ns_test_super+0x50/0x50
[  839.975823]  sget+0xd1/0x110
[  839.978824]  mount_bdev+0xcd/0x360
[  839.982342]  ? bfs_iget+0xae0/0xae0
[  839.985952]  mount_fs+0x92/0x2a0
[  839.989302]  vfs_kern_mount.part.0+0x5b/0x470
[  839.993781]  do_mount+0xe65/0x2a30
[  839.997366]  ? __do_page_fault+0x159/0xad0
[  840.001592]  ? retint_kernel+0x2d/0x2d
[  840.005458]  ? copy_mount_string+0x40/0x40
[  840.009674]  ? memset+0x20/0x40
[  840.013143]  ? copy_mount_options+0x1fa/0x2f0
[  840.017617]  ? copy_mnt_ns+0xa30/0xa30
[  840.021496]  SyS_mount+0xa8/0x120
[  840.024939]  ? copy_mnt_ns+0xa30/0xa30
[  840.028809]  do_syscall_64+0x1d5/0x640
[  840.032683]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  840.037849] RIP: 0033:0x7fcd83ff463a
[  840.041626] RSP: 002b:00007fcd82967f88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[  840.049762] RAX: ffffffffffffffda RBX: 0000000020002600 RCX: 00007fcd83ff463a
[  840.057009] RDX: 0000000020000080 RSI: 00000000200000c0 RDI: 00007fcd82967fe0
[  840.064271] RBP: 00007fcd82968020 R08: 00007fcd82968020 R09: 0000000020000080
[  840.071523] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000020000080
[  840.078784] R13: 00000000200000c0 R14: 00007fcd82967fe0 R15: 0000000020002700
[  840.086398] Kernel Offset: disabled
[  840.090095] Rebooting in 86400 seconds..