, 0x540d) openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000002c0001000000000000650000020000000c00010008000000", @ANYRES32=0x0], 0x20}}, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000080)) [ 230.738030][ T8257] netlink: 16 bytes leftover after parsing attributes in process `syz-executor4'. [ 230.771392][ T8259] netlink: 16 bytes leftover after parsing attributes in process `syz-executor4'. 14:15:58 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:15:58 executing program 0: syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x2, 0x2) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x58200, 0x29) r1 = openat$cgroup_ro(r0, &(0x7f0000000200)='pids.ev\x00\b\xe3s\x00', 0x2761, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4030582a, &(0x7f0000000000)) 14:15:58 executing program 3: ioctl$EVIOCGPROP(0xffffffffffffffff, 0xc004743e, &(0x7f00000019c0)=""/246) sched_setaffinity(0x0, 0xfffffffffffffcbf, &(0x7f00000000c0)=0x8000009) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:15:58 executing program 1: r0 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f00000000c0)=""/74) setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.capability\x00', 0x0, 0x0, 0x0) execve(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) openat$cgroup_ro(r0, &(0x7f0000000080)='io.stat\x00', 0x0, 0x0) 14:15:58 executing program 4: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) ioctl$VIDIOC_DV_TIMINGS_CAP(r2, 0xc0905664, &(0x7f0000000200)={0x0, 0x0, [], @raw_data=[0x5f, 0x7, 0x5c, 0x8, 0xfffffffffffffffe, 0xa8, 0x8, 0x3, 0x5, 0x6, 0x2e, 0x1, 0x8, 0xa0, 0x3, 0x1, 0x5, 0xd8d, 0x0, 0x80000001, 0x9, 0x401, 0xf011, 0x39, 0x8233, 0x9, 0x2cd, 0x157e60000000, 0xf1, 0xb1, 0x8, 0x4]}) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) close(r1) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 14:15:58 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x15, 0x5, 0x0) ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000140)=@add_del={0x3, &(0x7f0000000100)='syzkaller0\x00', 0x1}) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e21, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000003580)=[{{0x0, 0x0, &(0x7f0000003400)=[{&(0x7f0000003340)="5ebdd93a121007ae3467bdcef4077615ca944d9f61e392f3ddbeb7b90ae802731b64d124408ecc5e313c55578468ae479ebea2b9698d44f8a00bbb9ebe2deef1f6136ee2340ee5c39ca2b2f27b4cf1e092223dc114bfe77982f2249082494fcf0e1dca44081ad1f7cd8be547e5e73accbe30d4079a98ca68381e6e367c2037b53c1f9497dc0fcc8aade7a4d78b8397ecae5e5a0d730054c6ce22630b89ad5122f54c", 0xa2}], 0x1, &(0x7f0000003440), 0x0, 0x20040801}, 0xde7}], 0x1, 0x1) r1 = accept(r0, &(0x7f0000000180)=@pptp={0x18, 0x2, {0x0, @broadcast}}, &(0x7f0000000200)=0x80) shutdown(r0, 0x4) setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000240), 0x4) recvfrom$netrom(r1, &(0x7f0000000600)=""/189, 0xbd, 0x20, &(0x7f00000006c0)={{0x3, @default, 0x7}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48) r2 = syz_open_dev$media(&(0x7f0000000480)='/dev/media#\x00', 0x4, 0x100) ioctl$TIOCMGET(r2, 0x5415, &(0x7f00000004c0)) connect$inet(r0, &(0x7f00000005c0)={0x2, 0x0, @rand_addr=0x5}, 0x10) sendto$inet(r0, &(0x7f0000000140), 0x0, 0x0, 0x0, 0x0) close(r0) r3 = syz_open_dev$adsp(&(0x7f0000000280)='/dev/adsp#\x00', 0x200, 0x80000) r4 = request_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x3}, &(0x7f0000000580)='/dev/adsp#\x00', 0xfffffffffffffffe) keyctl$setperm(0x5, r4, 0x4000000) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) [ 233.412579][ T8278] Invalid argument reading file caps for ./file0 14:15:58 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:15:58 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x1000000000001, 0x1c1, 0xec2, 0x6, 0x0, 0x1}, 0x2c) r0 = bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x2c) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, r0, 0x1}, 0x2c) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x200000, 0x0) sendmmsg$alg(r1, &(0x7f0000001240)=[{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000100)="9945be352778640e06ebf424ff552aac54ee7bc2c5f9ee1ac4675a364c331482dc50f00c5d4a93cc790925b35bc9c83db3931430c1e8ce39b68ba5509730dd4fc4f15f32db780dba9a24e3b653753b8082dea3142993d19364289866f69c230f7a1902a76ddda00bcd569896b6025fab9eff92bc81bb59070b64bdacd3612df2e284c358fa66e0fbbb255814afcf426438058a0f79109dae64caa59b76f301c46e1fbfd956b5da06e96883b17041ceb1ccae852f7f", 0xb5}, {&(0x7f0000000040)="230af8b419fceda7f0bd45c55be402c8", 0x10}, {&(0x7f0000000080)="c8c7053669f8655ceefba2bd32983f3e677e", 0x12}, {&(0x7f00000001c0)="1793b63f30b27b87f8019b8c7b35366d15f25f9eb26e4d0c20a1960cfc703821ca237e52ec29df0d7d1b4b0435dfad9209f3ba9d55fc8443689a95fa9d49e6ee7e6ecb30a8da20b7a9ccea3248576d55e72f32e1ec624d6c9a5bbfd97881283f81cd77e4750af486019bb720c6af67144b526e31479166a4451ead397299142fb22062123e628a0e1a8c789a690dec80c0ee1dcb07b68364fe2d14332432b9aa915d5a31bbf0a31a137783838e4031f123de7809bc3cdc5570e6878f6fa43a47540e", 0xc2}, {&(0x7f00000002c0)="c1ae3c8eb68435478739b5d4017979b5c85fa7467008b6f0ec0b394704561c78ca175ff0218d2cab0b140e51be24c7b8aa886e199329934b94b756f7297f092096cccd0eafd7d0a7ee3fd88a02a73ec3604e04cc9b7d7c1c3b1cfc", 0x5b}, {&(0x7f0000000340)="6e784ffda548ad84c16602e30fc57eff35a1a90462c037af6f98bcfc86df69c3b34d7ec42025c21530aa285216a366c984f836294b424c51beb5d993d2663d8be1c9679dbc289cc7c158c967d9a2e7ae0c86627a792a38cd14bc5e65005a0a8795aaab9f6c903943ad8e9c46691e2de2280b2c7d4f7675c2c4cd7e90c9d1b0fa7a169b82fd6e23e170fcec6f6c3da58e1c1a8a2959a6b8c71bb46b90f6e282105482c9f77679549ddb04aa24bc26f823a47b2c541265271d7ad26b97b3cfd6a8e75756d32dfede06beb85097a939dac0d8d7d2d223c4adce608ed9fdf7", 0xdd}], 0x6, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18}, @op={0x18}], 0x48, 0x1}, {0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000540)="b34a4ec4a9b3adf849dcfef49e66386d504ceebeebede8abeb775d01af6021b040629dbd54aad4cc0a435a19a472cf62d3ff7675cf25f4eb3b58bf550bb15d6063299437dbeb6aaa5aa5f93773bd224dddd9ccf3eb46a8c5c6db3e4f1773be5dbfa9c43291ea32fc203a9a366670f894753d02f369f16ef414a8dd922eef08072534e0f6748bc5d7e95d8b022ce4271c60a70b1c3bd377", 0x97}, {&(0x7f0000000600)="e7dd63071d582dfc5af1252cf03ab58a04260e102bf55dd98eca1c80dc4951b458e5e86e3c95278d107418d9d6dd880b6107063b6f9eddc18788beeb57a2eca2af9ddbbad15b13112bf171fa2807940b7cc97aece59a47315ca1c0ca20d50b1fd25b0aee172b1b01177c9dd54efed76a94bac7fbd3e71ce891d6fe5f87ae71c391c65346ada875063ddac92435ed0207ef", 0x91}, {&(0x7f00000006c0)="51423d6d0da9d163fb92f1d2fc05", 0xe}, {&(0x7f0000000700)="638c664b0b2d251d1e6a45785521d8bf0c3834d18276b3766c5298695986778abeca5af5080fe8acf1a234548e4dbdbb6be28010c715a0afb1fc56db443ac8312f43e5d5beeff0d0d8b8c8f65b564f15ca1c56de09498b2f2ba16d56c12b7726736d1e5de4af0e3ab584e55b4f7a1f30ba20ee552359ffced8e8c21066a0873a64c27195ed301ddae6d0e75e", 0x8c}, {&(0x7f00000007c0)="fe76d8d41badbb81f704bfb0178e8555b1e561a28f051888bc079d67b84b20d928f53c830e1861de38cd96b02606f2d4929e6262e6c831b6ada3e65fa19c5281686bc8f605c1a05afc46217be5c10eda60fb0596", 0x54}, {&(0x7f0000000840)="b22e5e57591be79981448baf34be8d71725e0faedbdec2fa3bd2ff119efbe7a7c9f611a910ff95ace6a6ff0b64c9d9041d819f57635f379a5270725786f87a3524acc049508c07c0bee4db0bb918e0f6f8939769003503ef6e6dfccd7f3d6471e96dbaf557707fb60a2b042fba", 0x6d}, {&(0x7f00000008c0)="e4db0c30771d010cb4b078f4b18dbaf5b33689d09aa5c97f4ec5044c3a12492b58d30190c23573c2387cef63e421e60e8cfbef1283f876d7991cb0a1c464ffde9f11ef8eae798df38c5b24aab9cb90398059e0614bb34372ac71128d6dbecbd99080c09985441c533e3156f1967534445218ed589ad634171dc9f077f12d02480dffff573e458a0b8f168ff8d96b1d9b773784518383ebfd7e793dbc8c1f79e8c4541b0107f6f7a26bdc579dda2530889a7af21b2ba459aee0d61a306e3fbbb2c89f02307c6c0a84c311c20022e167af531c5809eb1d27326e3a8c5be95cf6dabdd21e84", 0xe4}, {&(0x7f00000009c0)="4d6d665ae24893e1052be5959f59284e1240b1aa69db290fc86d7c5f8cf25c1292436db76b7ac587ca01024651a9cc3fdacbc0e8acc533046d6b2088213af42b410a0c8f5e41422131d8497635e55182307ea45f7073ac3686be3df845eec7333f08c96095778354efaf77c9b78509d0dd0856787a89c3141b68acfa4eb70cdfbb991fdf31ea516dd9144505a6f4d4bf3b83f8514447bacf33132a01af680177bc51828b620dde5e1f23f4d0e7b642c9de0a05ef631486279f937bf73569110841ae64dbe04c913801a5ccf282ba5217d0cb6019dbabf2860ec16810a2413196", 0xe0}, {&(0x7f0000000ac0)="387d173671725f6b8562d218bf8bec2edab906e482c1ab9a3ed4eead2c0193693f2316e6caa8081c2a779fc2b06192f9158ea1d60554633a94707e1b2389e53fc24865c2d1d8bf7e256f8c8809f93842781b3554caa54ba159a9b0e166924a3e186ea54069281a2b69d9ae41b5e926e517487622381ac570b2766be840f1", 0x7e}, {&(0x7f0000000b40)="dfadd81d20f479324fb56d7e3d6a0df81aef1c6839cbbca841d58615858e814a290843b8c852f17d94f4818c2d809d6c1943337dc6ad15d6c8db6897f7b8735b36662dc95b2f023d84a8dfd810d8022350c70dbdfd3112837e614436553a2eafa92fa4bfa8f874dd42e9ac84b4b3c1f148", 0x71}], 0xa, &(0x7f0000000c80)=[@iv={0x80, 0x117, 0x2, 0x66, "6577c6d6a555022151af50df37d826afc0aa797549b4f632f629ab197f7f725fc3c3a75c244ea27b27b4252480f9f930ecc257daaaab7bd125cb4290cf8ffd231d316d97651b3dea96f0b4d15f9fcf5555bf14d7c90360ff70318821759977c1afa2dc960ccc"}, @op={0x18}], 0x98, 0x20000000}, {0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000d40)="c7d714d4ccd79901cb9c1a27fb38af44f08e8f235080c760dc582764005a0f0b9fbafb81a248e54d08bca08b9d530625acc8ffc1ab217873df77e7693b110d510d1461e146", 0x45}], 0x1, &(0x7f0000000e00)=[@assoc={0x18, 0x117, 0x4, 0x9}, @iv={0xd0, 0x117, 0x2, 0xb7, "891fc3963a10fbae5c6565550f234bbb195e99159b17e3cfe29cb4889827472b4cdc1ee1da38979bd31bfc6c74fbca088831223facb3a8386c44c02754f2c3954fc8671ed492f2dc9a0cf07f0e880d5a4c8511294d5466986a1f134a03285f29acf1329b36829404080939a37442467a05713b2e5492df3b3a4cc31374f06655d45f1b590f56b1725d7a92745bf0a6d7838467307b56c642e33bdf2007dff896f1ab050b82987c8767fa93d505fc2482bb9b22f8fbe6b4"}, @iv={0x98, 0x117, 0x2, 0x7f, "5eafb7007899f3f3d9a73d0bfab0e89545234325af4f06a0f0221d660f6937e1ad8a9e94cb8d26c343e0c065914a10da955f0ac2c392adb5c23803233daec8a91c320b95bbbe3273a7ab1f5ee5d351c736cb4f52b4c1f83f09e97b525972d0957f2ac6c19ab7a45a4f37910df691a700bda801cb77fd98ca1a89eed35387b7"}, @assoc={0x18, 0x117, 0x4, 0x6}, @iv={0xa8, 0x117, 0x2, 0x8f, "9db7b0c0f7ddb17c250d1219d187b716dbf6e8bb41ac350f18d29e95e550e8c2e37dc99ca98accc6347b424c40ac070884010b9d5ad25c11c5066bb5f7c1a7be3cc7765c043b0fe0faf4bc8852324f015814ce1a019f4f89c94315dbc0676dae29da6a52cd0616211a1306d0c78a720c3a60fc3d79c228a1e77a0534c9c0ccdedfe9c474229ad96eff7857dfa3c2cf"}], 0x240}, {0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000001040)="40b724424661571de66cbc2e0cb356c33a96817cdff454e065f0c6a4e030961a6c85730d21ba659f29b982ce3346be3a4acbc7ded7b5db829646487382", 0x3d}], 0x1, &(0x7f00000010c0)=[@op={0x18}, @assoc={0x18, 0x117, 0x4, 0x401}, @assoc={0x18, 0x117, 0x4, 0x100000001}], 0x48, 0x4000}, {0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000001140)="dbf180765aff4e478b5afc07f024c6988bc5aa674632fe9fa590d9366e49b4f07ffd27ee083bbe2d49f5ed2c8911d6da7131f8b7ef099a746de1c1e1a06a465cf919e180786d697bbc146a946cf8e42765dc4434f5a5780e327b667fff4ad9e17b7329053ca853a02248ae4be782186976e8610ddd395c7a48529de81bb4f3bf5227beb86671363564172e2ff036633ed5967ed27dca31da8aee487a43c63d", 0x9f}], 0x1, 0x0, 0x0, 0x80}], 0x5, 0x4850) 14:15:58 executing program 3: ioctl$EVIOCGPROP(0xffffffffffffffff, 0xc004743e, &(0x7f00000019c0)=""/246) sched_setaffinity(0x0, 0xfffffffffffffcbf, &(0x7f00000000c0)=0x8000009) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:15:58 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000004c0)="0adc1f023c123f3188a070") r1 = socket$inet(0x10, 0x2, 0xc) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0) ioctl$sock_bt_cmtp_CMTPCONNDEL(r2, 0x400443c9, &(0x7f0000000040)={{0x5, 0x7, 0x3, 0x7, 0x0, 0x8}}) sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000080)="24000000010907041dfffd946fa2830020200a0009000200001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) [ 233.478761][ T8278] Invalid argument reading file caps for ./file0 14:15:58 executing program 1: setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ab553fec9424", 0x6) r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) write$UHID_INPUT2(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000500)={0x0}, &(0x7f0000000540)=0xc) ptrace$pokeuser(0x6, r1, 0x0, 0x1) r2 = socket$unix(0x1, 0x3, 0x0) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0x200002, 0x0) mkdirat$cgroup(0xffffffffffffffff, 0x0, 0x1ff) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x10400, 0x0) setsockopt$RDS_FREE_MR(r4, 0x114, 0x3, &(0x7f0000000180)={{0x2, 0x586b}, 0x11}, 0x10) fchdir(r3) mkdir(&(0x7f00000002c0)='./file1\x00', 0x100) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r2, &(0x7f0000000140)={0x20000000}) faccessat(r3, 0x0, 0x10, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x18040, 0x0) r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_SET_PHYS(r6, 0x4008556c, 0x0) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000440)={0x0}}, 0x0) r7 = syz_open_dev$admmidi(&(0x7f00000001c0)='/dev/admmidi#\x00', 0x1, 0x82200) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r7, 0x84, 0x20, &(0x7f0000000240), &(0x7f0000000400)=0x4) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r7, 0x84, 0x18, &(0x7f0000000340)={0x0, 0x3}, &(0x7f0000000380)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000740)={r8, @in6={{0xa, 0x4e22, 0x3000000000, @empty, 0x400}}, 0x8000, 0x4, 0x5, 0x80000001, 0x40}, &(0x7f00000005c0)=0x98) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r5, 0x84, 0x70, &(0x7f0000000640)={0x0, @in={{0x2, 0x4e20, @rand_addr=0x4308a0a9}}, [0x2, 0x1, 0x7, 0x200, 0xffff, 0x3f, 0x27, 0x8, 0x7, 0x200, 0x400, 0x0, 0x1, 0x1, 0x20]}, &(0x7f0000000580)=0x100) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r7, 0x84, 0x17, &(0x7f0000000800)=ANY=[@ANYBLOB="0200f5008fd7adfd1e0f98d9d0be0285659cd34d3660263bd7580f34d1a06324498aae976becae49928f390585ed031e76dde88d73a79ac853aeaf0debaef4e5ee66de802c11112f2725cbe285429f9aa1f621316d5223196d2f9eb1cecb331e6bed29708f76a68c93a5452105234595656c411955b9f8712e017b650da36382b2d50b77b9625d7db13e70f82a39ac10c65834fa1c97d99202a8c6add9de346d0453472764a7ff08539c88c2d86e37ea6ab70ed2474075a82481e1eca68f6da3dbac2aa937a5b956256bd94dd6225b139c3347e711b9aa38d1c595c0d0137180a2b4bff2b40028baa45bee"], 0x1) 14:15:58 executing program 5: r0 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)=ANY=[@ANYBLOB="01e8000024f0fcb73bbce65b4784dd8bbe518881088616f3efd553ccfa73bd5262e6001a62fc0a63d01d2d8d999738dbf28518d513788ea3442ddf15c69bd39d7cbf29d4e265cd78e75973f59eb0f2a9361f1b91c96bb95be941dc873f86af3a793c2a923abe5ec8b4eca0da1d29ea2848c19f0a4f99a2343323fc4758b340c84a0f42d8a6a211c164b26284b2eb9530f8a637a3187427de132bc437647967027966efb409f5cd9cbdb625ce4df8d7e6d8def464bb77cf52b176db26263a11bcb9fff59295c22216e01a188e64b0abed7f4d7dce2294d5b574b329", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @rand_addr=0x5c}}, 0x5, 0xa83, 0x0, 0xffff, 0x401}, &(0x7f0000000280)=0x98) socket$inet6_sctp(0xa, 0x800000000000004, 0x84) getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f00000002c0)=@assoc_value={0x0, 0x7}, &(0x7f0000000300)=0x8) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000340)='/dev/sequencer\x00', 0x408000, 0x0) connect$vsock_stream(r2, &(0x7f0000000380)={0x28, 0x0, 0xffffffff}, 0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000000)={r1, @in={{0x2, 0x4e23, @multicast1}}, 0x8}, 0x90) 14:15:58 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) r1 = semget$private(0x0, 0x4, 0x20) semctl$GETVAL(r1, 0x3, 0xc, &(0x7f0000000240)=""/92) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000001240)="2e0000002a00815fe45ac187185095cf0600b0eba0b4d65cdbaa98cbb30007fff00000000000000051894d5d1dac", 0x2e}], 0x1}, 0x0) recvmsg$kcm(r0, &(0x7f0000005380)={0x0, 0x0, 0x0}, 0x0) 14:15:58 executing program 4: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x7c, 0x0, 0x7, 0x0, 0x0, 0x1ff, 0x2, 0xdca3, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc)) r3 = syz_open_pts(r2, 0x2) r4 = fcntl$dupfd(r2, 0x0, r2) r5 = dup3(r3, r2, 0x0) write(r2, &(0x7f0000c34fff), 0xffffff0b) ioctl$TIOCSBRK(r5, 0x5427) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x4) timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) tkill(r1, 0x1000000000016) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000000)) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x52, 0x800) [ 233.600037][ T8306] netlink: 5 bytes leftover after parsing attributes in process `syz-executor4'. [ 233.618491][ T8306] netlink: 20 bytes leftover after parsing attributes in process `syz-executor4'. 14:15:59 executing program 3: ioctl$EVIOCGPROP(0xffffffffffffffff, 0xc004743e, &(0x7f00000019c0)=""/246) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:15:59 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = semget(0x3, 0x7, 0xc0) semctl$IPC_RMID(r0, 0x0, 0x0) r1 = socket$kcm(0x10, 0x3, 0x0) sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)}, 0x0) 14:15:59 executing program 5: semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000180)=[0x8001]) r0 = msgget$private(0x0, 0x200) msgctl$MSG_STAT(r0, 0xb, &(0x7f0000002580)=""/4096) r1 = syz_open_dev$dspn(&(0x7f00000001c0)='/dev/dsp#\x00', 0x1, 0x40) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000200)={0x0, 0x0, 0x40, 0x1, 0xffff}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) r3 = getgid() getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000011c0)={{{@in6=@ipv4={[], [], @dev}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@dev}}, &(0x7f00000012c0)=0xe8) quotactl(0x9, &(0x7f0000001440)='./file1\x00', r4, &(0x7f0000001480)="2526a282561bb5fe4831877e2a55e625e98c64cbb7d6203b0824a8171936db468fcc2efafdc9483cb2a14855b65b5b81024d362ee3cc0cb81eb40fbb4b973eb9126527284738d6087450969f5d7255b68b94ba51be843f2c325d3b42403305fb0dce21e3e813317e4c28bd156dc7e9d052e9c2d4581948e9280e84c23a6fadd629f3396736c454cd7688e6498934869cc1ecf620360a1a7b9c5e01d0a710f04de386f7c058d8604de79d15130b3cfed8442398e893df691fb40774c5f2a882d2aadfc3eb97e4aa285eaf67603b7d6c124ee4918e995eb5a11d25") getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001300)={0x0, 0x0, 0x0}, &(0x7f0000001340)=0xc) r6 = gettid() ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000001380)=0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f00000013c0)={{0x6, r2, r3, r4, r5, 0x40}, 0xffffffff, 0x7ff, 0x0, 0x7fffffff, 0x4, 0x4, r6, r7}) r8 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x200, 0x0) ioctl$UI_END_FF_UPLOAD(r8, 0x406855c9, &(0x7f0000000040)={0xf, 0x74, {0x57, 0x2c92, 0x9, {0x4, 0x2}, {0x1, 0xff}, @rumble={0x1, 0xff}}, {0x55, 0x1, 0x0, {0x31c, 0x81}, {0x5b0e453a, 0x8}, @ramp={0x80000001, 0x2, {0x2, 0x401, 0x20}}}}) 14:15:59 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:01 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:01 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0) connect$pppoe(r1, &(0x7f0000000040)={0x18, 0x0, {0x4, @remote, 'caif0\x00'}}, 0x1e) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x100000000) fcntl$setstatus(r0, 0x4, 0x4800) 14:16:01 executing program 0: r0 = pkey_alloc(0x0, 0x3) pkey_free(r0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x141005, 0x0) ioctl$TUNSETVNETLE(0xffffffffffffffff, 0x400454dc, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) sched_setaffinity(0x0, 0xffffffffffffffcd, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f00000001c0)='./file0\x00', r3, r4) mount$bpf(0x0, 0x0, &(0x7f0000000080)='bpf\x00', 0x20040, &(0x7f00000004c0)={[{@mode={'mode', 0x3d, 0xff}}, {@mode={'mode', 0x3d, 0xc6a2}}], [{@euid_eq={'euid', 0x3d, r3}}, {@uid_gt={'uid>', r3}}, {@audit='audit'}, {@obj_role={'obj_role', 0x3d, 'tmpfs\x00'}}]}) lsetxattr$system_posix_acl(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='system.posix_acl_access\x00', &(0x7f0000000940)={{}, {}, [{0x2, 0x2, r3}], {0x4, 0x7}, [{0x8, 0x0, r4}, {0x8, 0x2, r4}, {0x8, 0x4, r4}, {0x8, 0x0, r4}], {0x10, 0x2}, {0x20, 0x1}}, 0x4c, 0x1) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6) chdir(&(0x7f0000000340)='./file0\x00') delete_module(0x0, 0x200) symlink(&(0x7f0000000800)='./file0/file0\x00', &(0x7f00000007c0)='./file0\x00') sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000080}, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f00000008c0), 0xffffffffffffffff) lstat(&(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000680)) r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cpuset.memory_pressure\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r5, 0x0, 0x5) r6 = gettid() ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000240)={{0x0, 0x1, 0x80, 0x46, '\x00', 0x1}, 0x0, 0x20000160, 0x9, r6, 0x7, 0x2, 'syz1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x03\x00', &(0x7f0000000440)=['/proc/sys/net/ipv4/vs/snat_reroute\x00', ']\x00', '^lowlan0vboxnet0\x00', 'selinux@\x00', 'bdev\x00', '\x00', 'ip6gre0\x00'], 0x4d, [], [0x3, 0x800000000000, 0x3, 0x8000000000100]}) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000ac0)={{{@in=@remote, @in6}}, {{@in6=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000040)=0xfffffffffffffd65) bind$inet(0xffffffffffffffff, &(0x7f0000b9bff0)={0x2, 0x2004e21}, 0x10) getgid() socket$nl_generic(0xa, 0x5, 0x84) 14:16:01 executing program 4: ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, &(0x7f0000000380)) r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x4, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205649, &(0x7f0000000100)={0x0, 0x1, 0x0, [], &(0x7f00000000c0)={0x98f905, 0x4, [], @ptr=0x740210}}) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x1, 0x0, 0x3}) 14:16:01 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpu.stat\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000140)) write$cgroup_int(r0, &(0x7f0000000080), 0xffffff19) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000001c0)={0x2, 0x2b000, 0x3, 0x0, 0x49249249249254c}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x2000004, 0x20010, r0, 0x0) 14:16:01 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:01 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000280)=0x6700000000000000) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffffffffffe}) r1 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x200400, 0x80) setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000180)=@int=0x8, 0x4) r2 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x8, 0x106) prctl$PR_GET_SECUREBITS(0x1b) getsockopt$bt_sco_SCO_CONNINFO(r2, 0x11, 0x2, &(0x7f0000000040)=""/13, &(0x7f00000000c0)=0xd) 14:16:01 executing program 5: r0 = socket$inet6(0xa, 0x6, 0x4) close(r0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vhci\x00', 0x6) r2 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000000000)={0x6, 0x0, 0x1, 0x1}) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e22, 0x2, @rand_addr="29783d3c4b300a3caba12c130bbc090b", 0x7}}}, &(0x7f0000000280)=0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000002c0)={r4, 0x800, 0x200}, 0x8) r5 = semget$private(0x0, 0x4, 0x9) semctl$GETPID(r5, 0x3, 0xb, &(0x7f0000000340)=""/233) ioctl$DRM_IOCTL_AGP_FREE(r2, 0x40206435, &(0x7f0000000040)={0x1020, r3, 0x1, 0x401}) readv(r1, &(0x7f0000000080)=[{&(0x7f0000000180)=""/217, 0xd9}], 0x1) ioctl$PPPIOCSMRU1(r0, 0x40047452, &(0x7f0000000440)=0xbe) write$P9_RLERRORu(r2, &(0x7f0000000740)=ANY=[@ANYBLOB="ff80"], 0x2) sendfile(r0, r2, 0x0, 0x2) 14:16:02 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:02 executing program 0: clone(0x3502001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(r0, 0x0, 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x8040000000000028) prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000000)) ptrace$cont(0x18, r0, 0x0, 0x3) clock_adjtime(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x28}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r0, 0x0, 0x0) 14:16:02 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:02 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:02 executing program 0: r0 = socket(0x400000000010, 0x3, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000000)={{{@in=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f0000000100)=0xe8) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000140)={@mcast2, 0x40, r1}) write(r0, &(0x7f0000000e00)="2400000021002551075c0165ff0ffc020200010000100f0007e1000c0800020016000000", 0x24) 14:16:02 executing program 4: r0 = socket$inet(0x2, 0x3, 0x800000000000b) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000140)=@nat={'nat\x00', 0x19, 0x2, 0x340, [0x20000800, 0x0, 0x0, 0x20000830, 0x20000a68], 0x90, 0x0, &(0x7f0000000800)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x3, 0x0, 0x0, 'team_slave_1\x00', 'vlan0\x00', 'veth1_to_team\x00', 'dummy0\x00', @local, [], @empty, [], 0x1d8, 0x1d8, 0x208, [@statistic={'statistic\x00', 0x18}, @comment={'comment\x00', 0x100}]}}, @common=@AUDIT={'AUDIT\x00', 0x8}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x1, [{{{0x11, 0x0, 0x0, '\x03\x00sf0\x00\x00\x10\x00', 'dummy0\x00', 'ifb0\x00', 'lo\x00', @broadcast, [], @broadcast, [], 0x70, 0x70, 0xa8}}, @snat={'snat\x00', 0x10, {{@dev, 0xffffffffffffffff}}}}]}]}, 0x3b8) 14:16:02 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:02 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 237.053989][ T8418] kernel msg: ebtables bug: please report to author: Wrong nr. of counters requested 14:16:02 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:02 executing program 0: syz_mount_image$msdos(&(0x7f0000000340)='msdos\x00', &(0x7f0000000280)='./file0\x00', 0xe800, 0x1, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000480)='./file0\x00', 0x42042, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$P9_RREADDIR(0xffffffffffffffff, 0x0, 0x0) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000200)=0x1) write(r1, &(0x7f0000000840)="fc015002a2a55e34dab67b751776", 0xe) sendfile(r1, r1, &(0x7f00000000c0), 0x8080ffffff10) setxattr$security_smack_entry(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='security.SMACK64IPIN\x00', &(0x7f0000000240)='ppp0#\x00', 0x6, 0x2) syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x8000000000a, 0x5) 14:16:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) r1 = socket$inet(0xa, 0x4, 0x528) connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) listen(r1, 0x8) r2 = accept4(r1, 0x0, 0x0, 0x0) connect$pptp(r2, &(0x7f0000000040)={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14, 0x17}}}, 0x1e) sendto$inet(r2, &(0x7f0000000000)='y', 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x5}, 0x8) 14:16:03 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$CAPI_CLR_FLAGS(0xffffffffffffffff, 0x80044325, &(0x7f00000000c0)) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000080)={@mcast2, 0x0}, &(0x7f00000001c0)=0x14) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f00002bf000)='syzkaller\x00', 0x1, 0xb7, &(0x7f0000000240)=""/183, 0x0, 0x0, [], r1}, 0xfffffffffffffd69) r3 = socket$kcm(0x29, 0x1000000000002, 0x0) write$binfmt_aout(r0, &(0x7f0000000040)=ANY=[@ANYRESOCT], 0x337) ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000100)={r0, r2}) recvmmsg(r3, &(0x7f0000002300)=[{{0x0, 0xfffffe19, 0x0, 0x0, 0x0, 0x7e}}], 0x2fd, 0x400002fd, 0x0) 14:16:03 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2000000000000002, 0x70, 0x28, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={0xffffffffffffffff, 0x0}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='/group.sta\x9f\xd4t\x00+\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0Wm\x1d\x0e\xbf\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1f', 0x2761, 0x0) mknod(&(0x7f0000000000)='./file0\x00', 0xc000, 0x5) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) 14:16:03 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:03 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:03 executing program 4: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x37010, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) getsockopt$netlink(r0, 0x10e, 0xe, &(0x7f0000000040)=""/227, &(0x7f0000000140)=0xe3) madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x3) madvise(&(0x7f000066c000/0x2000)=nil, 0x2000, 0x9) fsetxattr$security_smack_entry(r0, &(0x7f0000000180)='security.SMACK64MMAP\x00', &(0x7f00000001c0)='nodev\\\x00', 0x7, 0x1) 14:16:03 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:03 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c12a41d88b070") r1 = socket$can_bcm(0x1d, 0x2, 0x2) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x8000, 0x0) connect(r1, &(0x7f0000002000)=@ethernet, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r3 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r3, &(0x7f0000010ff0), 0x10) recvmmsg(r3, &(0x7f0000000080), 0xffffffff00000013, 0x0, 0x0) sendmsg$can_bcm(r1, &(0x7f00000000c0)={&(0x7f0000007ff0)={0x1d, r2}, 0x10, &(0x7f0000002ff0)={&(0x7f000000afb8)={0x1, 0x3, 0x0, {0x0, 0x2710}, {0x0, 0x7530}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "8e15adecfc04aba1"}}, 0xfcd8}}, 0x0) ioctl$SIOCGSTAMP(r3, 0x8906, 0x0) 14:16:03 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:03 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:03 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) pipe2(&(0x7f0000000040), 0x84800) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x1fe, 0x0) write$binfmt_aout(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="00001a9c54e71f3be4002b6e15a7de114f"], 0x11) perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000180)='./bus\x00', 0x9) unlink(&(0x7f0000001e00)='./bus\x00') mkdir(&(0x7f0000001540)='./file0\x00', 0x0) [ 238.323084][ T26] audit: type=1804 audit(1549203363.630:34): pid=8451 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/45/file0/file0" dev="sda1" ino=16547 res=1 14:16:03 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0xd) ptrace$cont(0x18, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 14:16:03 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x102, 0x50200) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000040)) 14:16:03 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:03 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x10000, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='broadcast-link\x00', r1}, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') ioctl$VIDIOC_STREAMOFF(r1, 0x40045613, &(0x7f00000000c0)=0x6) sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r2, 0xc17, 0x0, 0x0, {{}, 0x0, 0x410c, 0x0, {0x14, 0x14, 'broadcast-link\x00'}}}, 0x30}}, 0x0) 14:16:03 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept4$unix(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x100000, 0x0) mount(&(0x7f0000000380)=ANY=[@ANYBLOB="64c6a46631d03431c7e4305809ec86b8f3a22ccbe4f5915f21c6d659b6d6d5c360692b66ae828eb9941c2ac530e26cc3dc34cf1545621c3b4339356dabc05157e910663b4dd77f3f966b8b622104001ba98704e65b108b"], &(0x7f0000000180)='./file0\x00', 0x0, 0x3080, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x3080, 0x0) mount(&(0x7f0000000240)=ANY=[@ANYBLOB="341ae0ce1e95ece676000067e6dd2d31e6ef1ee15fd022b0513cb2f5a4192fe458049c1e9f6e34982119c3fe2afb01836ee341db9516cce55dcdd97476489bb3bd761a420498a6b046fe085cf954ae"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) umount2(&(0x7f0000000400)='./file0\x00', 0x0) mount(&(0x7f00000006c0)=ANY=[@ANYRESOCT=r2], &(0x7f0000002d40)='.', 0x0, 0x5010, 0x0) sendto(r1, &(0x7f0000000100)="a76cfd204cb9294fb6411daed65682e60b40c9b633707d4e0986904f350d62677afe25e830501f479f1b394d5065c37092bf8b717c2cea2ac2ce8a7384a63af48929503b013721523a17adbc33e00d96bd84ec412d4ac7fb0d8ca29b1009d90ced67e6dc085522daf8b4d18dfcd68b4e9bbf0403e65424", 0x77, 0x881, &(0x7f00000001c0)=@sco={0x1f, {0x2, 0x9, 0xfff, 0x0, 0x2, 0x9}}, 0x80) sendmsg(r1, &(0x7f0000001cc0)={&(0x7f0000000440)=@nl=@proc={0x10, 0x0, 0x25dfdbfe, 0x4}, 0x80, &(0x7f0000000680)=[{&(0x7f00000004c0)="9ae7be9e97479939db89cb033d7aeb864291fade34259a2f0e243e6a881096222e6e45d3d4f00752df3aec744fbcebb3e2cbb1430d5b3cabb018e58ebbab1a9d30291139fc7a15e9eaf5405ee5c1fb278e2808756a471f6553c8fa9c62ef2e46a74d9fb85edfb9e78af3b0db0f19e9c3a326c78288b5769cb55e8d1384", 0x7d}, {&(0x7f0000000580)="741dd9eddd52ba35496483cf093c46e3dfc20c6468d2046fe895cbef5b84f10903453644c46c8c655002cff50113659c55fe8fa012825e5242e5b227d7c7968bd1a4b0f22d84aef5e310133f0b4f80aa0850e6fd5991b7fddc663c553aa1d6bb392c05e159cdffc95ab18d540f6baae54a4b7aded833cbe1c6c833dbc24c8996df4c05a779efb78198d91a8a048877fc7165d5b7c3a0d8e7cbfe86f0d19f7caabc24ad2ef915f4b8c5fb0ab433b8787cff5ca02bc3f3d2662302ea3eb101b18fcd12b00947a97a5c1ae5b107a87ea9449831ac801c3d55aa00b6da9e2bbe3572702adbc5eb858923fdf978409b6b4c279b55befbe6", 0xf5}, {&(0x7f0000000700)="88b063f8893786fa90240eebb61cd25f04713013d265f06eb1e1b6da2dc14a8bf0338809e4749a2a7694ffb9e1fb6161e75a0a7f458f0b7634846a46a3bd7dcfb3d1e6604b70f114c0dea90822ac18d280933512dc3c8e3af10275e424f569de4eecfd9af7fff1ad75ec46775d7a578d57933c12199a0a0121e8ae949aeeea288e8a93f917eca079fb8fae961a1c6d014e71888532ab5cefd22d24215101f49ddca9644c841ea05b7b5ed9a1ce8818a2660a95f27c33c0e3a6d02b8b50c43ad066f8c9519addc94f4189cea2175ae8d2fd78692238", 0xd5}], 0x3, &(0x7f0000000800)=[{0x70, 0x116, 0x8000, "a14e59fc442b56cf43c8b5763133cbb91818174578046b0810eb86b497483c630150318e7a96e02993ecee912b0f7525b2b575eb68c642671b47f2c88278e9ffecbfec022097c31ab25442ab358031926dcadf9b28527e096a000060b429"}, {0xe0, 0x100, 0x98, "265da508c264adf5793533953b876031bd9948ce310ea6b988bb320258cbf05237df2ab243d1bb07d73de2d06f8150ae4a61ea4022238298970ba40d47572c730027533a2a5e80950d7c89f6788b30c118786eb0e60098604cc8372d93821f51a6fff7d7adf0e9709b05c8a8ac615c32328586f508a360cf9352eefa0facb18558508d9481f44dd8bc44c3139abc68a7d6e23baf9b30542c6ec12ec2103e778170e5134a5148b16229c5566daa010d93e4a09c412fbabc8ab795c1019db19a0225df3f7a9252f197b9"}, {0x1010, 0x19b, 0x1, "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"}, {0x70, 0x111, 0x9, "5684b8555fda9d332effdb8327553b3357376bc529bf04b36ef366cb41cfea9ec045170a5f961f7f9ae0542aebdcfeb46bfe8f3401d65b989145677e18cd8bb8b323d019e2461103a04b1cec07a968cd4123e4c0ed8f2df477819efd08733c"}, {0xb0, 0x10c, 0x7fff, "f32e9cd99cd29da0146dc2a086206fdcd757330ac8cddc3aada92b767dc68bd07c739eb70fb1e884cb4df03640fc72709e037694959ec0278ba0293b77862b38310fdbb5cc1d8d29ea857e15d8e3593a5466c6db32dbe7af2e83925596c9c974439c2262b5cba7ac2b53c1feaf56b750bb9da4d55af63a73ef50f50157ae1bb7c1ce10005d446b96f18b66a179a59f415e47756b15fdf177e873"}, {0xd8, 0x0, 0x3, "90f94cb8d2575c88b45d2f3d461bdb2df5cdc8848aa13082e4a2b6b04dd9871e05856ac73e097a929ddbee2c6ae3a400eba118f383fe53d154ea5840321478d0a9ee81e5b89fcbc4d35ff4dc78bcb3f452532918b75caf99d25cdef2f138b07511d69a398f78fc1a4fb62e64c19ff7aa1229fceb71f9c98f07d3a4ac19f58d8946af7ca3e41dc8383d35869f5349eee0454a82ea1fab2aeb9b26f5f2c44536db22400d4167e35aabfcf0c0c793193864c245c730ccccf671383fcdafd5c56b7284"}, {0x20, 0x13f, 0x9, "ef486955f4bb47f267de15"}, {0x58, 0x118, 0x6, "ad62bf07b5f1d6b6010f3896793b19568cfef27b35568011a5832bb6db639c36eceb8e9075139a858b85e2fb9a5c34c74a4f68d78b3c3fddb7594cf8488d84cdb42d"}, {0xe0, 0x108, 0x8, "bb4d2a9a832a4bbb351d1313fcb597761b77c4f11c4669e6412a0f946810a29541fa0944069e0efea662068ef4b8fce4082f85aa60837c856e9e85cad259bc797f60b097e0519ad89339ce500eb9ec8bd4a9c794fa7ba6faa0eba065e913980e5a14ff629f74fd000f4941d6d1bc40519748128ba6cee098ba18909d7790c24daa17578c04b1c36a1f5ea4fa5bbac1b6120195e368453a8e96f859afaa872cf8763b52053a2b0ff0a1461dadd7cfeba9a6571b3d788795e39d1e11a7ee9b40f8455ddabae8cd4e8bfa7f3b"}], 0x14b0}, 0x8000) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001d00)='/dev/autofs\x00', 0x0, 0x0) ioctl$GIO_FONT(r3, 0x4b60, &(0x7f0000001d40)=""/4096) umount2(&(0x7f0000000340)='./file0\x00', 0x2) 14:16:03 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) pipe2(&(0x7f0000000200)={0xffffffffffffffff}, 0x80000) ioctl$RTC_AIE_OFF(r1, 0x7002) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x1000000004e23, 0x0, @loopback}, 0x1c) listen(r0, 0xfffffffffffffe14) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000180)={0x0, 0x0, 0x3, 0x0, 0x0, 0x6}, 0x14) pipe(0x0) setsockopt$RXRPC_SECURITY_KEYRING(0xffffffffffffffff, 0x110, 0x2, 0x0, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000000080)='X', 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000364000/0x2000)=nil, 0x2000) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000040), 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f00000001c0)={0x5, 0x2ac, 0x9, 0x302}) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000140)=0xfffffc46, 0x0) r3 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x9c02, 0x800) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f00000000c0)={0x6, 0x0, 0x10003, 0x6}) ioctl$DRM_IOCTL_AGP_FREE(r3, 0x40206435, &(0x7f0000000100)={0x200, r4, 0x10001, 0x9}) ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000080)={0x7, 0x107007}) [ 238.350844][ T26] audit: type=1804 audit(1549203363.630:35): pid=8451 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/45/file0/file0" dev="sda1" ino=16547 res=1 14:16:03 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0xd) ptrace$cont(0x18, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 14:16:03 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus640-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendto(r2, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r2}], 0x1, &(0x7f00000001c0)={0x0, 0x1c9c380}, 0x0, 0xfffffffffffffecb) 14:16:03 executing program 1: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x400c0, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r0, 0x10f, 0x83, &(0x7f00000001c0), &(0x7f0000000340)=0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0af51f023c123f3188a070") bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000200)=""/249, 0x108, 0xf9}, 0x20) r2 = socket(0x400020000000010, 0x2, 0x0) write(r2, &(0x7f0000000300)="1f0054000d0000000000fc07ff1b070400003b0059985c946fcb0005000000", 0x1f) ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000380)=""/230) 14:16:03 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0xd) ptrace$cont(0x18, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 14:16:03 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:03 executing program 4: recvmsg(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=""/148, 0x94}, 0x0) r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xffffffffffffff33, 0x1) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x20b, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x40) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) ioctl$SIOCX25SCUDMATCHLEN(r0, 0x89e7, &(0x7f00000001c0)={0x5}) 14:16:03 executing program 5: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000a80)='/dev/full\x00', 0x80, 0x0) ioctl$ASHMEM_GET_PROT_MASK(r0, 0x7706, &(0x7f0000000ac0)) socketpair$unix(0x1, 0x16, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) r3 = syz_open_dev$sndpcmc(&(0x7f00000001c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) setsockopt$bt_BT_SECURITY(r3, 0x112, 0x4, &(0x7f0000000000)={0x6, 0x1326c6d7}, 0x2) io_setup(0x8, &(0x7f0000000140)=0x0) getsockname(r1, &(0x7f0000000040)=@nfc, &(0x7f00000000c0)=0x80) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r3, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000580)={0x0, 0x0, 0x0}, &(0x7f00000005c0)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000640)={{{@in=@empty, @in6=@ipv4={[], [], @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000000740)=0xe8) r12 = getegid() write$FUSE_DIRENTPLUS(r3, &(0x7f0000000780)={0x2d0, 0x0, 0x6, [{{0x4, 0x0, 0x5, 0x9, 0x7db9, 0x99b, {0x3, 0x7ff, 0x41e, 0xc45d, 0x6, 0x401, 0x1, 0x3, 0x9, 0x7f, 0x1, r5, r6, 0x1, 0x6}}, {0x0, 0xfffffffffffffffa, 0x12, 0x0, '/dev/snd/pcmC#D#c\x00'}}, {{0x3, 0x3, 0x1, 0x3, 0x23, 0x3, {0x6, 0x72, 0x7f, 0x100000000, 0x4, 0x6, 0x800, 0x9, 0x1f, 0x9, 0x0, r7, r8, 0x9, 0xfffffffffffffeff}}, {0x4, 0x10001, 0x12, 0xfffffffffffffffd, '/dev/snd/pcmC#D#c\x00'}}, {{0x5, 0x0, 0x0, 0x2ac, 0x199d2112, 0x1, {0x1, 0x9, 0x81, 0x6, 0x10000, 0x8, 0x1, 0x1, 0x6, 0x8001, 0x6, r9, r10, 0x7, 0x6}}, {0x2, 0xe6f8, 0x12, 0x10000, '/dev/snd/pcmC#D#c\x00'}}, {{0x5, 0x1, 0x5, 0x2, 0x8, 0x5, {0x2, 0x101, 0x80, 0x0, 0x200, 0x4e, 0x10001, 0x7ff, 0x2, 0xffffffffffffffff, 0x5, r11, r12, 0x1, 0x7}}, {0x2, 0x20, 0x12, 0xbaa, '/dev/snd/pcmC#D#c\x00'}}]}, 0x2d0) io_submit(r4, 0x1, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0}]) 14:16:03 executing program 2: r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:03 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cachefiles\x00', 0x101000, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f00000003c0)={0x6, 0x0, 0x0, 0x5}) ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000400)={0x0, r1}) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(twofish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000100)="b7f2288a911993f0265df5cf1cdd8b55", 0x10) r3 = accept$alg(r2, 0x0, 0x0) sendmsg$alg(r3, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x239, &(0x7f00000002c0)=[@assoc={0x18, 0x117, 0x4, 0x3}], 0x18}, 0x0) r4 = socket$inet_udp(0x2, 0x2, 0x0) accept4(r3, &(0x7f0000000440)=@pptp, &(0x7f00000004c0)=0x80, 0x80800) setsockopt$IP_VS_SO_SET_EDITDEST(r4, 0x0, 0x489, &(0x7f0000000140)={{0x3a, @multicast2, 0x4e24, 0x4, 'none\x00', 0x0, 0x4, 0x6f}, {@multicast2, 0x4e22, 0x1, 0x1, 0x5, 0x2}}, 0x44) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f0000000200)={&(0x7f0000000000), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4000001) recvmmsg(r3, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000001540)=""/165, 0xa5}], 0x1}}], 0x1, 0x0, 0x0) pipe2(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) bind$ax25(r5, &(0x7f0000000300)={{0x3, @bcast, 0x7}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000000000000a0000009f000000010000000500000003000000090000000700001000000000000000000000000001000000200c00000700000001800000090000000900000000000080000000000000000000000000"]) 14:16:04 executing program 0: io_setup(0x3e, &(0x7f0000000100)=0x0) r1 = socket(0x2, 0x803, 0x3) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10) io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, 0x0, 0x3cb}]) 14:16:04 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0101080001000a00000008d29efb1465250c0c7a330e06a5955d000500ea3fc17b"], 0x28}}, 0x0) r2 = openat$cgroup_ro(r0, &(0x7f0000000040)='cpuacct.usage_user\x00', 0x0, 0x0) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f0000000080), 0x4) ioctl$VIDIOC_SUBDEV_G_EDID(r2, 0xc0285628, &(0x7f0000000100)={0x0, 0x7, 0x0, [], &(0x7f00000000c0)=0x100000001}) 14:16:04 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x42e7}}, 0x0, 0x0, 0xffffffffffffff9c, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000840)=""/148, 0x94}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs\x00') preadv(r0, &(0x7f0000000700), 0x31f, 0x0) [ 238.793413][ T8574] IPVS: set_ctl: invalid protocol: 58 224.0.0.2:20004 14:16:04 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:04 executing program 2: r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:04 executing program 4: r0 = syz_open_dev$midi(&(0x7f0000000240)='/dev/midi#\x00', 0x86e, 0x800) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfc}, 0xc) r1 = syz_open_dev$loop(&(0x7f0000000180)='/dev/loop#\x00', 0x6696, 0x0) r2 = dup(0xffffffffffffffff) r3 = memfd_create(&(0x7f0000000400)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r4 = dup2(0xffffffffffffffff, r3) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f00000000c0)={0x0, 0x0, {}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600000000000000]}) chmod(&(0x7f00000000c0)='./control\x00', 0x9c32f69e6caa24eb) renameat(r4, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file1\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000680)={{{@in=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@remote}}, &(0x7f0000000780)=0xe8) setsockopt$packet_drop_memb(r4, 0x107, 0x2, &(0x7f00000007c0)={r5, 0x1, 0x6, @local}, 0x10) sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) setsockopt$TIPC_SRC_DROPPABLE(r2, 0x10f, 0x80, &(0x7f0000000640)=0x6, 0x4) r6 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@local, @in6=@remote}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xe8) bind$nfc_llcp(0xffffffffffffffff, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "df5a4ee9efcbc0f6ea2d95a622971554175b370849b488649394688e97a1fa14893c44bb591f5c60b3fe73c2ac6a0f5e28df3ee68efd30df5e01784c0aea39"}, 0x60) write(r6, &(0x7f0000000400)="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", 0x200) sendfile(r6, r7, 0x0, 0x10000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) r8 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) ioctl$BLKTRACESTART(r1, 0x1274, 0x0) ioctl$SIOCX25GFACILITIES(r8, 0x89e2, &(0x7f0000000600)) 14:16:04 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newlink={0x3c, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0xc, 0x2, [@IFLA_BOND_UPDELAY={0x8, 0x8, 0xf0ffffffffffff}]}}}]}, 0x3c}}, 0x0) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000100)=@req={0x28, &(0x7f00000000c0)={'ip6gretap0\x00', @ifru_data=&(0x7f0000000080)="f80a65615133a0cb1991953074b6b25dafc2b2545afd0de23175b56905b95c01"}}) 14:16:04 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) prctl$PR_SET_PTRACER(0x59616d61, r1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x0, 0x204002) ioctl$KDSETMODE(r2, 0x4b3a, 0x7) r3 = inotify_init1(0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x101000, 0x0) ioctl$PPPIOCSDEBUG(r4, 0x40047440, &(0x7f00000000c0)=0xbf) fcntl$setown(r3, 0x8, 0xffffffffffffffff) fcntl$getownex(r3, 0x10, &(0x7f0000000080)={0x0, 0x0}) ptrace$setopts(0x4206, r5, 0x0, 0x0) ptrace(0x4207, r5) ptrace$setopts(0x4200, r1, 0x8, 0x712000) 14:16:04 executing program 2: r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 238.978888][ T8574] IPVS: set_ctl: invalid protocol: 58 224.0.0.2:20004 [ 239.020243][ T26] audit: type=1800 audit(1549203364.320:36): pid=8602 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor4" name="file0" dev="sda1" ino=16739 res=0 14:16:04 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:04 executing program 2: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 239.116868][ T26] audit: type=1804 audit(1549203364.320:37): pid=8602 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/38/file0" dev="sda1" ino=16739 res=1 14:16:04 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000003800)={'vcan0\x00', 0x0}) connect(r0, &(0x7f0000000300)=@hci={0x1f, r1}, 0x2b) sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x1, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "85cd0fca3406c790"}}, 0x48}}, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x0, 0x0) ioctl$TUNDETACHFILTER(r3, 0x401054d6, 0x0) ioctl(r2, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") sendmsg$can_bcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1, 0x0, 0x0, {}, {}, {0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "9b5117f117e9a7f4"}}, 0x48}}, 0x0) 14:16:04 executing program 5: sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="02080000000000000000000000000000"], 0x10}}, 0x0) r0 = socket$inet6(0xa, 0x3, 0x3f) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000380)={{{@in6, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6, 0x0, 0x33}, 0x0, @in=@dev, 0x0, 0x0, 0x0, 0x10006}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) 14:16:04 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:04 executing program 5: r0 = socket(0x12, 0x2, 0x0) sendto(r0, &(0x7f0000000180)="120000001200e7ef007b1a3fcd0000df07a1", 0x12, 0x0, 0x0, 0x0) 14:16:04 executing program 0: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x0) close(r0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x101, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/full\x00', 0x4400, 0x0) ioctl$SIOCRSSCAUSE(r1, 0x89e1, &(0x7f0000000700)) 14:16:04 executing program 1: r0 = socket$inet(0x2, 0x80800, 0x10000000) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000025c0)=0x204, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='lp\x00', 0x3) bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23}, 0x10) r1 = openat$zero(0xffffffffffffff9c, 0x0, 0x220200, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, &(0x7f00000002c0)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0x7) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ubi_ctrl\x00', 0x4000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000018000)={0x0, 0x0, &(0x7f0000013ff1)={&(0x7f0000000080)={0x20, 0x18, 0x301, 0x0, 0x0, {0x16}, [@typed={0xc, 0x3, @u64}]}, 0x20}}, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vsock\x00', 0x0, 0x0) ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000800)={0x0, @in={{0x2, 0x4e24, @local}}, 0x2, 0x4, 0x101, 0x1, 0xfffffffffffffc0e}, &(0x7f0000000400)=0x98) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f00000000c0)={r4, 0x9, 0x5}, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000002640)=@assoc_value, &(0x7f0000002680)=0xf7) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, 0x0, &(0x7f0000002d80)) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000003980)={r4, @in6={{0xa, 0x4e23, 0x1, @loopback}}, [0x8, 0xb9, 0x7fff, 0x0, 0x0, 0x8, 0x0, 0x6, 0x5, 0x81, 0xffff, 0x1, 0x1f, 0x5, 0x9]}, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000006ac0)={0x0, 0xca}, &(0x7f0000006b00)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) close(0xffffffffffffffff) syslog(0xf, &(0x7f0000000900)=""/4096, 0x1000) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100)=0x3e0, 0x4) ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000000)={0x0, 0x704, 0x3, 0xb2f, 0x10001}) prctl$PR_CAPBSET_DROP(0x18, 0x5) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1}, 0x100) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 239.448014][ T8643] netlink: 'syz-executor1': attribute type 3 has an invalid length. [ 239.523570][ T8643] netlink: 'syz-executor1': attribute type 3 has an invalid length. [ 239.772952][ T26] audit: type=1804 audit(1549203365.080:38): pid=8660 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/38/file0" dev="sda1" ino=16739 res=1 14:16:05 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) fsetxattr$security_smack_transmute(r0, &(0x7f0000000180)='security.SMACK64TRANSMUTE\x00', &(0x7f00000001c0)='TRUE', 0x4, 0x1) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffff9c) ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f00000000c0)={0x12, 0x23, &(0x7f0000000080)="fcb93f1d438c18e4e63758a2361ad6e2dc9ac63bd7dab39e01b3d9cd1dd6be18bf5d70"}) bind$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x5, {0xab2, 0x8, 0x4dc, 0x6, 0xfff, 0x1}, 0xacf, 0x400}, 0xe) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x8, &(0x7f0000000040)=0x2, 0x4) getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x8, 0x0, &(0x7f0000000140)) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000000)={0x80000000, 0x9, 0x1, 0x3, 0x1f, 0x6}) 14:16:05 executing program 2: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:05 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:05 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x4, 0x480) r1 = socket(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000480)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000500], 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000000000000ffffffff0000080000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000070000fcffffff000000000000000000000000000000000000"]}, 0x108) 14:16:05 executing program 5: r0 = socket$rds(0x15, 0x5, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000000), 0x4) close(r0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x9, 0x10000) setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000180)=0x39, 0x4) epoll_pwait(r3, &(0x7f00000000c0)=[{}, {}], 0x2, 0x7, &(0x7f0000000100)={0xd666}, 0x8) setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f0000000040)=0x5, 0x4) 14:16:05 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) r1 = socket(0x1f, 0x3, 0x100000000) accept$inet6(r1, &(0x7f0000000000), &(0x7f0000000040)=0x1c) select(0x40, &(0x7f00000000c0)={0x8, 0x2, 0x5, 0xb60, 0xe}, 0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000300)={0x6, @local, 0xfffffffffffffffe, 0xffffffffdfffffff, 'dh\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x9e\x00', 0x15, 0x8, 0x14}, 0x2c) 14:16:05 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x91f, 0x4000) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f0000000040)={0x0, 0x8, 0xe7, 0x20, 0x2, 0x3}, &(0x7f0000000080)=0x14) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={r1, 0x9}, 0x8) 14:16:05 executing program 5: mincore(&(0x7f0000fff000/0x1000)=nil, 0x1000, &(0x7f0000000000)=""/4096) clone(0x18202900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000001000)='/dev/full\x00', 0x220001, 0x0) ioctl$SIOCAX25OPTRT(r0, 0x89e7, &(0x7f0000001040)={@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2, 0x20}) [ 240.006629][ T8675] kernel msg: ebtables bug: please report to author: bad policy [ 240.045979][ T8681] kernel msg: ebtables bug: please report to author: bad policy 14:16:05 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) lgetxattr(0x0, 0x0, 0x0, 0xca4381b) ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000340)={@local={0xfe, 0x80, [0x1aa88, 0xfeff0000]}, @dev={0xfe, 0x80, [], 0x1b}, @loopback}) syz_init_net_socket$rose(0xb, 0x5, 0x0) 14:16:05 executing program 0: rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000080)={0xfffffffffffffffc, 0x2, 0x40}) 14:16:05 executing program 2: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:05 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(0x0, &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:05 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x2c) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xa0003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffc, 0x0, 0x820000, 0x0, 0x0, [0x8000000000000000]}, 0x2c) fsetxattr$security_selinux(r0, &(0x7f0000000000)='security.selinux\x00', &(0x7f0000000040)='system_u:object_r:devicekit_var_run_t:s0\x00', 0x29, 0x2) bpf$MAP_CREATE(0x0, 0x0, 0x0) 14:16:05 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) close(r0) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='vcan0\x00', 0x10) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x3de) sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000380)={0x0, 0x34000, &(0x7f0000000340)={&(0x7f0000000280)={0x14}, 0x9b8}}, 0x5000000) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400000, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) ioctl$NBD_SET_SOCK(r2, 0xab00, r3) 14:16:05 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(0x0, &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:05 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) lgetxattr(0x0, 0x0, 0x0, 0xca4381b) ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000340)={@local={0xfe, 0x80, [0x1aa88, 0xfeff0000]}, @dev={0xfe, 0x80, [], 0x1b}, @loopback}) syz_init_net_socket$rose(0xb, 0x5, 0x0) 14:16:05 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:05 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x580, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000b85fe4)={0xa, 0x4e24, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x8, &(0x7f0000000040)=0x8, 0x4) recvmsg(r1, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/36, 0x12}, 0x2000) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000001c, 0x0) r2 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x4, 0x80000) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000140)={0x5, 0x5}) 14:16:05 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:05 executing program 0: openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) clone(0x13102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() syz_execute_func(&(0x7f0000000000)="460f0d700df04380033bc4a37904fe35c4e3b15cd2ff6440d97a008f8808858a0010000200c4c3957d3fcb660f3a449002000000e6660f381e196746c027b9") wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1b) r1 = semget$private(0x0, 0x2, 0x8) semctl$SETVAL(r1, 0x3, 0x10, &(0x7f0000000040)=0xa9) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x3}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r0, 0x0, 0x0) 14:16:05 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(0x0, &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:05 executing program 0: r0 = accept(0xffffffffffffff9c, &(0x7f0000000040)=@l2, &(0x7f00000000c0)=0x80) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000100)={{{@in6=@ipv4={[], [], @dev}, @in6=@dev}}, {{@in=@multicast1}, 0x0, @in=@loopback}}, &(0x7f0000000200)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="b70078cd819d6576ba570000000000000700000000e0e293ae0562499178849226770078b98e0cc14f1e032d24"], &(0x7f0000001740)='\xbe\x11\xca(', 0x5, 0x3d8, &(0x7f000000cf3d)=""/195}, 0x48) 14:16:05 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000080)={0x1000, 0x8, 0x1}) ioctl(r0, 0xfffffbfffff3ffa7, &(0x7f0000000140)) 14:16:05 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) lgetxattr(0x0, 0x0, 0x0, 0xca4381b) ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000340)={@local={0xfe, 0x80, [0x1aa88, 0xfeff0000]}, @dev={0xfe, 0x80, [], 0x1b}, @loopback}) syz_init_net_socket$rose(0xb, 0x5, 0x0) 14:16:05 executing program 1: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in6={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, 0x100000001}], 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000049f4a6b5fef0972785dd6dae1bd7c10407c915ec893f57513fc719f3363cafb4a700823944cdcdf95cdd3996b90f40bf", @ANYRES32=0x0], &(0x7f0000000180)=0xf860) r2 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_G_PRIORITY(r2, 0x80045643, 0x3) setrlimit(0x7, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0xeb672bff7671d5bf, 0x0) ioctl$VIDIOC_ENUM_FREQ_BANDS(r3, 0xc0405665, &(0x7f0000000080)={0xffffffff, 0x0, 0x81, 0x1, 0x8, 0x77c, 0x8}) flistxattr(r3, &(0x7f0000000c00)=""/147, 0x93) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x10, &(0x7f0000000140)={r1}, &(0x7f000095c000)=0x8) r4 = fcntl$getown(r3, 0x9) process_vm_writev(r4, &(0x7f0000000600)=[{&(0x7f00000001c0)=""/101, 0x65}, {&(0x7f0000000240)=""/236, 0xec}, {&(0x7f0000000340)=""/221, 0xdd}, {&(0x7f0000000440)=""/178, 0xb2}, {&(0x7f0000000500)=""/127, 0x7f}, {&(0x7f0000000580)=""/75, 0x4b}], 0x6, &(0x7f0000000980)=[{&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000740)=""/78, 0x4e}, {&(0x7f0000000100)=""/28, 0x1c}, {&(0x7f00000007c0)=""/27, 0x1b}, {&(0x7f0000000800)=""/247, 0xf7}, {&(0x7f0000000900)=""/89, 0x59}], 0x6, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000a40)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DAEMON(r3, &(0x7f0000000bc0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000a80)={0xcc, r5, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}]}, @IPVS_CMD_ATTR_DEST={0x5c, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1000}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xffffffff}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x39}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@ipv4={[], [], @remote}}]}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8000}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}]}, 0xcc}, 0x1, 0x0, 0x0, 0xc0}, 0x20008010) 14:16:06 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:06 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:06 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x9, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800fe000000000000000000000006009500000100000000"], &(0x7f0000000140)='syzkaller\x00', 0x1, 0xfb, &(0x7f00000003c0)=""/251}, 0x48) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000040)={r0, 0x0, 0x0}, 0x10) 14:16:06 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) lgetxattr(0x0, 0x0, 0x0, 0xca4381b) ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000340)={@local={0xfe, 0x80, [0x1aa88, 0xfeff0000]}, @dev={0xfe, 0x80, [], 0x1b}, @loopback}) syz_init_net_socket$rose(0xb, 0x5, 0x0) 14:16:06 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', 0x0, 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:06 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:06 executing program 0: timer_delete(0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x800, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r1, 0x28, 0x0, &(0x7f0000000180)=0x9, 0x8) shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil) shmget$private(0x0, 0x12000, 0x210, &(0x7f0000002000/0x12000)=nil) r2 = shmget$private(0x0, 0x2000, 0x400, &(0x7f000000b000/0x2000)=nil) shmctl$SHM_LOCK(r2, 0xb) connect$l2tp(0xffffffffffffffff, 0x0, 0x0) semctl$GETPID(0x0, 0x0, 0xb, 0x0) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000)) r3 = dup3(r0, 0xffffffffffffffff, 0x80000) socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000300)) syslog(0x5, 0x0, 0x0) mlock2(&(0x7f0000008000/0x2000)=nil, 0x2000, 0x0) fstat(0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f}}, 0x12d) write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe800000]}}, {0xa, 0x4e24, 0x0, @mcast1}, r5}}, 0x48) syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0xff, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, 0x0, 0x0) openat$proc_capi20(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x9) 14:16:06 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000080)={0x1000, 0x8, 0x1}) ioctl(r0, 0xfffffbfffff3ffa7, &(0x7f0000000140)) 14:16:06 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', 0x0, 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:06 executing program 4: readlink(0x0, 0x0, 0x0) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x400000, 0x0) ioctl$PPPIOCSDEBUG(r0, 0x40047440, &(0x7f0000000040)=0x1f) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) exit_group(0x0) r1 = socket(0x10, 0x3, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x700, 0x70bd29, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x81}, 0x20008000) sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0xd00000000000000, &(0x7f0000000080)={&(0x7f0000000100)=@ipv6_getmulticast={0x14, 0x3a, 0x305}, 0x14}}, 0x0) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000140)={0x0, {0x2, 0x4e20, @local}, {0x2, 0x4e20, @empty}, {0x2, 0x0, @remote}, 0x204, 0x0, 0x0, 0x0, 0x1, 0x0, 0x401, 0x7fff, 0x8}) [ 241.024779][ T8787] sctp: [Deprecated]: syz-executor1 (pid 8787) Use of struct sctp_assoc_value in delayed_ack socket option. [ 241.024779][ T8787] Use struct sctp_sack_info instead 14:16:06 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', 0x0, 0x3, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x0, &(0x7f0000000200)) openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x404, 0x0) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000740), &(0x7f0000000780)=0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$RTC_PIE_OFF(r1, 0x7006) r2 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000880)={@un=@abs={0x1}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300), 0x3}, 0xa0) syz_open_dev$sndctrl(&(0x7f0000000280)='/dev/snd/controlC#\x00', 0xffff, 0x40000) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}}, &(0x7f0000000380)) r3 = socket(0x40000040015, 0x5, 0x2) setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000007c0)=0x800000000000002, 0x4) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00006dbffc), 0x4) bind$inet(r3, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10) ioctl$int_in(r3, 0x5421, &(0x7f0000000900)=0x6) setsockopt$RDS_CONG_MONITOR(r3, 0x114, 0x6, &(0x7f0000000080), 0x4) sendto$inet(r3, &(0x7f0000000a00)="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", 0x481, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000003c0)={{{@in=@multicast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f00000004c0)=0xe8) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000500)={r4, 0x1, 0x6, @local}, 0x10) r5 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x5}) mq_timedsend(r5, &(0x7f0000000040), 0x0, 0x0, 0x0) ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f00000002c0)={0x2d2b, 0x5, 0x4, 0x10000000006}) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x8000, 0x0) ioctl$GIO_SCRNMAP(r2, 0x4b40, &(0x7f0000000200)=""/122) mq_timedsend(r5, &(0x7f0000000080), 0x0, 0x0, 0x0) mq_timedreceive(r5, &(0x7f0000000100)=""/24, 0x18, 0x0, 0x0) getcwd(&(0x7f0000000180)=""/118, 0x76) unshare(0x800) sendto$inet(r3, &(0x7f00004b3fff), 0x0, 0x0, 0x0, 0x0) 14:16:06 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:06 executing program 0: futex(0xffffffffffffffff, 0x8c, 0x0, 0x0, 0x0, 0x2) 14:16:06 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000100)=@generic={0x1, 0x1f, 0x7fffffff}) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x800, 0x0) getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x17, &(0x7f0000000180)=""/228, &(0x7f00000000c0)=0xe4) getsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f0000000040)={@local}, &(0x7f0000000080)=0x14) syz_emit_ethernet(0x418, &(0x7f0000000280)={@link_local={0x1, 0x80, 0xc2, 0x3a000000}, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "093a06", 0x8, 0x3a, 0x0, @remote, @mcast2, {[], @udp={0x300, 0x0, 0x8}}}}}}, 0x0) 14:16:06 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f00000018c0)=[{&(0x7f0000001800)="1b328668860180f90da67fe9acfd3ce31ef6c4be3f571b1839e8c1057ee4a2a0992fb88c0e4efced6c56d63a82ad99a66223526db4226c6a97f5c1d182281c971fa6beffe4f1fd3019a66bdc316b6b7bfed4849983c5bf13e1c412c84dbeab297875a10309431696f3a2a871299b190770c2cbf35f019c2f9e551aca1fe771955cda415440ea237b540b060ce94c2363ac51b6ff", 0x94, 0x8}], 0x8000, 0x0) 14:16:06 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x100000000, 0x8800) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r1, 0xc058534f, &(0x7f00000000c0)={{0x23, 0x4}, 0x1, 0x9, 0x4, {0x9, 0x1ff}, 0x8001, 0x1000}) syz_emit_ethernet(0x207843, &(0x7f0000000000)={@local, @empty=[0x2], [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x300008, 0x0, 0x0, @ipv4={[0x207835, 0x0, 0x28], [], @multicast2}, @mcast2={0xff, 0x3}, {[], @icmpv6=@time_exceed={0x2b, 0x0, 0x0, 0x0, [0x9, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [], @broadcast}, @ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}}}}}}, 0x0) [ 241.556147][ T8787] sctp: [Deprecated]: syz-executor1 (pid 8787) Use of struct sctp_assoc_value in delayed_ack socket option. [ 241.556147][ T8787] Use struct sctp_sack_info instead 14:16:06 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:06 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x80000000012, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000100)) socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r1, 0x6, 0x1f, &(0x7f0000000080), &(0x7f00000000c0)=0x4) write$uinput_user_dev(r0, &(0x7f0000000ac0)={'syz0\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x0) 14:16:07 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") r1 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x49, &(0x7f0000000040)={@ipv4={[], [], @multicast2}}, 0x20) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000080)='tls\x00', 0x4) 14:16:07 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:07 executing program 4: syz_open_dev$sndtimer(&(0x7f0000000100)='/dev/snd/timer\x00', 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x8102, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) bind$bt_l2cap(r2, &(0x7f0000000100), 0xe) listen(r2, 0x10000000000000) close(0xffffffffffffffff) getuid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000ac0), &(0x7f0000000b00)=0xc) geteuid() getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000600)={{{@in6=@mcast1, @in=@multicast2}}, {{}, 0x0, @in=@broadcast}}, &(0x7f0000000200)=0xfffffffffffffde1) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000280)='system.posix_acl_access\x00', &(0x7f0000000380)=ANY=[], 0x0, 0x0) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000180)={0x1f, {0x1, 0x1, 0x91, 0x1, 0xb000000000000000}}, 0x8) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f00000000c0)={'bond_slave_1\x00', {0x2, 0x4e20, @local}}) write$cgroup_subtree(r1, &(0x7f0000001380)={[{0x0, 'rdma'}, {0x0, 'memory'}, {0x0, 'rdma'}, {0x2b, 'rdma'}]}, 0x1a) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r4 = request_key(&(0x7f00000002c0)='dns_resolver\x00', &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='/dev/null\x00', 0x0) r5 = add_key$keyring(&(0x7f0000000a00)='keyring\x00', &(0x7f0000000a40)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$instantiate_iov(0x14, r4, &(0x7f0000000940)=[{&(0x7f00000023c0)="a69772b0a26ef2afea2a4bf20ca3f45f9a2ac4c1e1d4953acdab7747b9daae0c6a7ed7c6ebf4ea5cb1f82fb5ea703d24f0b3ee328bd3fcf29f01ce4d4fe3d7d1a4be295b572fa39188a49ecf18f99db7b83a36d02fb4a646d12d60ce5384067123b16756c29a5f6906d407d0b6d46c8a41af1e3710c5f01e4ababdadb41efdb7157a4c9607ffcd28fac6b61e84cdddf4e61ae20e90c4e9e65f6d2ad61063a9a1ba6a118ca4a5ae0c4e1b398b3a912419e317f18b89209e040faac0db0f15403d5a1c7b55575ed0be723ba2474d3b91e2fcdcc7e90de81adbaf940f39364083a0462de11a1f5eef011c41d5284b93e6993dff54273d0355738375c0ab5894a2bb0eb87cb8e4fc7cf998850e9331aef20629051ad1425282e6eea9f9948bb90693e27cfd478d52f4090c5b6064c87ebe4111506f98d205ec4585fb0b1f7bd11f008e280eb41e340bd71844c53e438bc6b4bdb31b8549335d895d455e8ed551e32e9a81b2524b3bf9d084446f1b2889ccc12bd9f6fa8fdd778260ff105dec4a9a522d7b18e679a733446ba81a3b3754c2fa5e5d5be00792f1cd913b463f28fc63a0131b56e9e413146d3ad3f5857d210620cb0bd20a108d19a40819d3c92873338135b149716df0aa2ad97f57c9d11b2c79ce976731a34d9ef477d824ff423b9c29ce936451332f6ae12e33a39674da91523d0b761cad254acc752236838e6a642aab534b47e713e816bd9ff2aa7c2654e8c6f8a7d593b93c7ed341359e52820b8dc6a8ab1caab0951e97cadbf875d0310899e0485d380eee229e59061d37fcc28eb4c950ba9ba9d60d03a822b95a4fb58dcbd240250041603e11fb61e4a62f3c6d4b3063bef33ce347b4a8386b32cab07d585e439427e076c67bfc8b29f5d795363f039fe1ef7a39287a8fb4fbcd2a6f8b051cada4ba759ad3453af66a1e0f2667b987b9b210ab237a722f0a5f39c6b31bdb4aeb869e8a5ae69b9aa2490a849329d1326295a470f620790fea8a9d95fd753053e859375e0ef4e5962c0ce7ced341f41b2e6e30717698ba2ef6a9cd20308343b1a1f5151c16c94f580ab4f91d7c4cbd4e981bc25b3199e8aead7114b28348429cdfd5678517f8c17e7b01c0bc64ae04424efe336478afba768883dae46507698e91b904c48b45b3a7031138f87077367afa68bc270f0a63738152b01d95ff8e08f08dbef01c5982c4547b4dfd0bc346488b25217c3bf9c31f8f9392983665736501a5107623d1f0ad3dc425385d93fa56a5d1e61bea8222db6053a7b418a687af9b72e7dbbfbf2486af30ccec2afdb414d0cbd8c64cb2170b7939f5e5c3e31ad50c03e66d3581c0d1bee0b01cf54e9d8d9d36c2975ade2a0ab5cbd2d645be02c82df2721bf257208a6dd7d538e82bf0483a62016ba27a9d00d16361aac9319f4ffc3601223f07d3006e1fa530c0449e9a9b85082a8a509d45de88d5ff3e47589058a9a8db003ab3bc77d6e44734b9fa8b0e4cc512b0f07719474c1dec3632466b74f24bd158f087df75cbbf760d349acedfc4e86fa6b979563d78ecca4bad83ad97a78d06f4852d9af70fbc15484053d94fd8a0a607daf8756fd0a1a2e6d1bced1e1edf5efb0f3bf9bde1169e26fc0e1e82ab56a695bb9ccba5b2955641f77342b3dddfd53d89db28f997506942cd70d76a371bbde9c36846400a80827af6d0f539d10d39045dad79ef1f6832520e137e93ff40c9b4e929f93cf0aa619a4dace021c417385dd6dab634aba2680c85c2a2a91c6cac446de6d5853a0144c3ed479decf5d79b3fe8b4936aef72871282b858010ce2249cb136de5fa7e6594b9b8e89213a10621025ea3f8ee80c6828107abb25fd199ffc7a4a9d46146ce2bd640ce3e546aad3069687a3262f1af02e2a4d74daa563c169131e7e8943ebeffa51e63cc3f4e1ff38f612830a3796681608fc1cc85903bf9fdc33db0c0cc1405e8add32aeb75db89ec95874762f8d0651ea140bec5183570db685c47d97c57ba58f8b9fd7876fe1eb4863a0dddeab05ce77726eaa6f05efdfa1fd5c7aa9b5e669d0d66165282838176c87bcc18e088b46c03f5b1a5a4d4833c87d3c0d82b89e98c5741524a476649ba59767bd622908f494a352b208df01bb80b13b0adb60bb0e94355d1491f82c6b68f4950552272c4277011869c5bb244e56f32dcc60d4356b2c58c45be77918a55d82f5bf10c4dba7e9292bc0e3d16b413a30a00a60be52272bd8a7ad98190bf61c04b7741b4d540dadad4645e6b14d4da496580787d9e422cd7a49aadbc7a3c83d138d9e2e73ac3398eb82c1cb1e6b4fd53bf00be036d4af6f9854c5713503fa5398abb2f054f6f95816eb7f74ca0ea915e2a0c0941cc338975689fd3723dc479495fb8f3d0ed3b0405d6a64c0f6169a659fa019c9a8f6b3522509163876fa740d3cf46b37bffe27bcaa263905cf2f1310e1f68c6330ee5d02ae5e7af9b848576fc23a1e2320de9ba6e4f6c07a4b0b1f38713d1953b86aff68d6573091de1d8a96a8aad35b45a3897f6b9f95304ee2efd3af34a086d4a123136c3ae976ffbf81fbd0e34d359227447faaebc49bb12e01cf56bfe569715e2953ca4befd81b2f411cf1644cacc9cbd7e9ce82c41a445d79ddf18af276601142554a9a3c1c82f036023800487a0feb66db257c558d006454ff1c73358487bf47c2220dbcd22e2f913a14cad918495fe42a2abe51de10317e44f0dfc01ed3115a063cfb312a47d1a431b908cfdb844aee860b312e61f98def66131e3e7b2c082496", 0x7b0}], 0x1, r5) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000000)=0x800) getpid() r6 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000340)="a801f59e174f9fb539fcebfafe8afa7a5495c971a5e895ea52f244395bb4d00272ec75f070f99789f1734060", 0x2c, 0xfffffffffffffff9) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000004c0)={0x0, 0xff, "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"}, 0x0) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r7, 0x72cd1f6c}, 0x8) keyctl$instantiate(0xc, r6, &(0x7f0000000a80)=ANY=[@ANYBLOB="6c6f616420656372797074667320747275736f2f86f8a79dec0616cff27298727920303030303030303030305fb2abb9d167d8271fb7cee471303030ba95"], 0x1, 0xfffffffffffffffc) epoll_create1(0x0) syz_open_pts(r3, 0x0) close(r3) 14:16:07 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x7, 0x80000) getsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000440), &(0x7f0000000480)=0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000000400)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x1ec, r2, 0x100, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x14, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}]}, @TIPC_NLA_MEDIA={0xc, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}, @TIPC_NLA_NODE={0x8, 0x6, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_BEARER={0x68, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x3, @local, 0xffffffff}}, {0x14, 0x2, @in={0x2, 0x4e22, @remote}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_BEARER={0x48, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x9, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x9f8, @ipv4={[], [], @multicast1}, 0x6d9}}}}]}, @TIPC_NLA_MEDIA={0x34, 0x5, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}]}, @TIPC_NLA_MEDIA={0xcc, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2d9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}]}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x962}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xdb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x10}, 0x20000000) bind$alg(r0, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58) r3 = accept$alg(r0, 0x0, 0x0) sendmmsg(r3, &(0x7f0000007f00)=[{{&(0x7f00000056c0)=@can, 0x3000, &(0x7f00000000c0)}}, {{&(0x7f0000005900)=@pppoe={0x18, 0x0, {0x0, @link_local, 'syzkaller0\x00'}}, 0x80, &(0x7f0000007ac0), 0x73, &(0x7f0000007b00)}}], 0x3fffffffffffe0d, 0x0) [ 241.761211][ T8859] input: syz0 as /devices/virtual/input/input13 [ 241.813516][ T8864] input: syz0 as /devices/virtual/input/input14 14:16:07 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x7) ioctl$sock_SIOCETHTOOL(r0, 0x8947, &(0x7f0000000100)={'bond0:\x00', 0x0}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1fd, &(0x7f0000000000)=[{0x401, 0x2, 0x9, 0xffffffffffffff39}, {0xffffffff, 0x401, 0x7ffe, 0xfffffffffffffff9}, {0x3, 0xffffffff80000001, 0x1, 0x9}, {0x400, 0x8, 0xacff, 0x100}, {0x8000, 0xff, 0x100, 0x8}, {0x1, 0x5, 0x101, 0xf7}]}, 0x10) 14:16:07 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:07 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:07 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x0, 0x0) dup(r0) socket$inet_tcp(0x2, 0x1, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x10000014c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200)={0x0, r3+30000000}, 0x0) vmsplice(r1, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r2, 0x28, 0x6, &(0x7f0000000040)={r4, r5/1000+10000}, 0x10) 14:16:07 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:07 executing program 4: rseq(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x8001, 0x10000) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x8) 14:16:07 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 14:16:07 executing program 5: setsockopt$netrom_NETROM_T1(0xffffffffffffffff, 0x103, 0x2, &(0x7f0000000100)=0x3, 0x4) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm_plock\x00', 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={0x0, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e22, @multicast2}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x8, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x9, 0x8}) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000000), 0x4) dup(r0) 14:16:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x2, 0x2) ioctl$VIDIOC_QUERY_EXT_CTRL(r1, 0xc0e85667, &(0x7f00000000c0)={0x40000000, 0x103, "615c48b1dabc71a0ffdb78ceb6cc45390989928372f4cdef03cae0d527c98981", 0x3, 0x0, 0x6, 0x1, 0x9, 0x20, 0x0, 0xa5, [0x5, 0x3, 0x7fffffff, 0x4]}) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0x1, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'ip6_vti0\x00'}, 0x18) setsockopt$X25_QBITINCL(r2, 0x106, 0x1, &(0x7f00000004c0), 0x4) 14:16:07 executing program 4: r0 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x0, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000001100)) 14:16:07 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f0000000180)='/dev/vcsa#\x00', 0x0, 0x200) ioctl$sock_ax25_SIOCADDRT(r0, 0x890b, &(0x7f00000001c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}) perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket(0x9, 0x804, 0x200000000005) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'gre0\x00\x00\x00\x00\x00\xfc\xff\x00', 0x0}) bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r2, 0x1, 0x89c, 0x6, @link_local}, 0x14) sendmmsg$inet_sctp(r1, &(0x7f0000871fc8), 0x71, 0x0) r3 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x3, 0x2) ioctl$EVIOCGABS20(r3, 0x80184560, &(0x7f0000000140)=""/38) socket$inet6_udplite(0xa, 0x2, 0x88) 14:16:07 executing program 4: capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000480)={'bond_slave_1\x00', &(0x7f0000000000)=@ethtool_sfeatures}) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x80, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000080)={@loopback, 0x7fffffff, 0x1, 0x0, 0x7, 0x8, 0xffff}, &(0x7f00000000c0)=0x20) 14:16:07 executing program 1: clone(0x13102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0x2b}) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x151200, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x8) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r0, 0x0, 0x0) [ 242.267246][ T8918] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000) 14:16:07 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 14:16:07 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000080)=0x74, 0x4) bind$inet(r2, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) prctl$PR_GET_FPEMU(0x9, &(0x7f0000000000)) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000440)={0x0, @initdev, @multicast1}, &(0x7f0000000480)=0xc) r4 = syz_open_procfs(0x0, &(0x7f0000000d40)='net/l2cap\x00') bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000d80)={&(0x7f0000000d00)='./file0\x00', r4}, 0x10) sendmmsg(r1, &(0x7f0000000c00)=[{{&(0x7f0000000200)=@l2={0x1f, 0x3ff, {0xffff, 0x7, 0x7, 0x3, 0xda9, 0x9}, 0x21c0, 0xddd}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000280)="26d4c11e742f854c81c9b3f615a2d8f83c2777590402865e3783a4c40d7aa75d832f953bacc9778fd7fb961eec03bc186ce440c44e05b79747083736235b4e68aeec42cbf20b6d1dc275d028fd02f5e15f6e500bdc46cd8004b141a0e043df35c8addadf3f2bc76c3a2ca3fcde41654980cdd212121d0cf3b976e1dc9068c3", 0x7f}, {&(0x7f0000000040)="754405447b98734dd2cd6d303b471e813b5b200062f093acc1277ea563c024908cbcc930c1a146526aa5de44837560a129e98a46033abde262e45db2d263", 0x3e}, {&(0x7f0000000300)="aeac7d97963ee5cfcc1140b5f4e123fa3b516cc3c77f8d44c72fb5847510a6fb46b05045696ed9154fb34b03fceca4b8e0669352348bfca235a62114ea17343d8d06f3b301a0fc75b8258cbf534da86010deb6694437398a076d5451b7fafb409239eb51d90af0888808fddc3738d12f1c59765f0f646bc6b8ec40eb98c9da1b8fc6ae740eddac4e", 0x88}, {&(0x7f00000003c0)="20c296d1eb17d0a77eabb684a1", 0xd}], 0x4}, 0x78a}, {{&(0x7f00000004c0)=@can={0x1d, r3}, 0x80, &(0x7f0000000b40)=[{&(0x7f0000000540)="2402514a8e6e50c10d08c16439c5480063f68d6e259f779937b9c356d055b413147c1acafaf40f2d8a3a148aecbdf3ffbdfcfc86f72bf6e2d2c78686547539b3bb5abbc47e823d95c37f2c5a45f3065d22a1113eadfc2ca0d0b4d4008be9be775cacddcaf37aff59c454e3951df2aae10a87227bf2405d9d35527d6e1b0c520a5d199cae55f1b4f87a4f68119a7f5780a8f2b3845c3725383be833cf34875145c8d853c5a966f1f84d7d6c8d74098e314d953c13b9b95121ff1ae45d30ff31f28c0ff2ffc6f3e60d1fdbe1378a86aa235b42a2087948503497", 0xd9}, {&(0x7f0000000640)="332c111aba71b48c469658f0604656f4ff746a7ab61ff5623dbcf5118110d971a62a96dcc201ed73932f98dcee06ef8704c516a4c627bf69b672ae150f12bf59ac42fc7e23bf45f61c12e2438c4227e1184525dd101671fb2968451b0ad107958f9dff94df00dc314fa506d621fe8ef2c081193591fcc005444b544fa8e08c2014bbd4e2ee8a64d1a4ec7270a614306d74d9bc8ce58ce725e874b55b79c5b7d428cab3d15fb0eae39f82cd196766131eb56e77f8e9a19d110ff61b9d83c053a2cf7ce23bde5bc5162efdc0d3e5b980c90e19561d56088d48a7cc602d49ba4133", 0xe0}, {&(0x7f0000000740)="5560031ab22360b497d24f5f4dcc0a1480a6d813efec6babc773b32e16c28728dfc97d568d1fad86de3a8ab6b48130a1ca40463007d9eff768ce16b09b2b38ff72e80b71ac5c38fc884b6d61b27c", 0x4e}, {&(0x7f0000000800)="e4c0de25ac645eb5366566feeb708cce9107135733918e3edbbe87cd3658", 0x1e}, {&(0x7f0000000840)="31df078ceefef91334c0d2979de7a3fa7a17057ae2e6536d1d40ae87a65286daf50fdc35f0e7434e192b5872465b3d38e3474e73950d62576944c5e55cbb37d97cf88a711c85a92a696b00c228ecd008ff57e11af8a240958e4fa3921cc970ce5c37e20e9564", 0x66}, {&(0x7f00000008c0)="ed6894ef213253a5661b934c8cde1db01b9895d5da04dcef9973135a9e9088baba0bb3cd91b2c934d381c2a62525812d4f5e25b7e259dd837e0df281fdeaea4fbe7b591e15729a428668e0a0642516dbc4c9951907d1d27c02b2c545e6c1c66e5aea3bd27569a2930cda6ecbe745e53aa324a5b96a4c07251e2a65ae5afba22fcb92b1ad89402ed7bfa41892717e91179cf1859594e810340f8ca083c625418f9ebbf948734b3a1bbd269ee4de5e406928c04702179dc2efdc55c270f46863468ee7d81d831588c869a30bcdccd54a3da0301d88eb2164f74dfec122ab1c7517c3f108e1dadff61f73159d535f", 0xed}, {&(0x7f00000015c0)="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", 0x1000}, {&(0x7f00000009c0)="12108dfead3908bd4ed09e7adeee78be339032142e49a83b35f13476531f7376dbba06a7de7907a174feac15c92303594f0861f28536ea8ce6ac0f1357364cef8d7452ba342843d905b76904fd035ccc14c34c8df126540e5165fd0198678758cae7c66b60375787682958b11f225aa91044dada9288081ed9d7e513f8b80c11d209024ce8e1fe3b0270880cce9a61b4d9", 0x91}, {&(0x7f0000000a80)="e3246a78d146d64c4ca3e6d7d2e6f552cd1ea38cacccf0a4a26ff2fd3359a116133f8ba0a1d5678bcc3554a29a10a51a5bf67971fa269e706978bc5bede8a1845ff649540d8535ef431a8aafd4bbb755faf839119be3314bd1f46d5143cccbf853cb0fcd9f30a79877fb1e645991016072a72bdc8d382fac23b5e3d5cc4e6b4357c1", 0x82}], 0x9, &(0x7f00000025c0)=ANY=[@ANYBLOB="10010000000000001d01000020000000006c2e60bef3b731d1ecd24bafd4fd2318672ad4632acaa539fee55dc7dcfc6a0d7a5755455a5f29153a3ed71ec2db6bfc0e02e53fe1f4a45171bbb18605b72efc7f6864fe3d3b1a663d8a16ad05d769ae80879865d69ed6a3b4576cc10a5c6eb9c25a9c86205209e55e97b0c3fb5498b5e71d01385cafb478a6e9d342c66a4a120fe2c88391fa2a5dbcf9c9b26357e816cc6f792b977098498cbf4a45c738d192e28260086528f8ac67225eabdbd76dc7d513857a43ac66291e8967200f34c66b9c6047f8503c435ff5a9f3713f415a390ae2da2f4acfed8505da7aad95db33f56a90f2f9292fa9533039ed377e06f6a311eb52d958cb70440000000000000030000000000000001701000006000000b3f0d4d6dcc6e10b0e97eb229a9059aa15d81701d7472da1eb0ed8f846180000c0000000000000000c01000006000000f2898aee1d38640611fd68bb284accd6cbfce4284adea0601dd06c628502edc5b54f606a32709dda525caf9041f790bd8b7fdf0b237e34ad2ffaa12ff3bcb85e474147fb9f6f69afde579ef973d3ea6bf8249772ba9f870636600b808d6a356133ecbf596374dfca1bf8818328a3bf34139aae6f7ff5c82a4ab9ca4259d09924d85041f06cb96773011d350a7f7025aa93bcd6a8c9469c9148dd0d1a03811ae904339e3f3ce3379445f3221b32db0000d8000000000000001701000000000000d566d4963ff87ec55f844bed41de0793757f679d378ac343d088cc31a12cb761f4d68fa11ec5d14e393e9fa992941bdb0448a88605ccdc2b9e83295acea340806cfadb7828eeb0c97dbf77eafee5de219ab4667b5568112ac6e03d8776b6102e8dc11bbd8140b163ed2ce92257ae1e9dae4fcc99932e9192832e9c628da664baaf974635f7e25e77d533a0155084955bb14ec153f5b4c40e076cd8384bf1ac476320a6749fde68fadab17d3c3ef13a1862e93ec2c7731d06365ebf0d3e50c50c7d0000000000000048000000000000001f010000ff00000020fe2c71bdc5cb7ff840fd56b304d7c3e0544e46ad210567c88e6f51df15fb8e029d2774b1555f016bee6a024ea902a543c993680000000010100000000000001f010000ffffffff3c557b23b2cd6fa9faa65599c13cec275f73f0e817160e929833499c04d35d353d528b603416ac18248904d57c381cb462646c6a2217e072d0f0b1d73663e5173dc651ce2ec0dc9b0a99c9ba78b39d692259ab9f8c5e6553c203c5e938ba2d359a716629ecd8a66a9b3074a9ba4850c888908d4e4964008b66a18493ff761ee59f6bfab8fbc6c277c294230522bda92b8b6b8414fffb39663c377f2a04a68978cd1caf60a2c579b5c6a0b79efbdc44ec886cad2bc58b986a51503b5124d9e6c842a873b4b71ede640476678c9b2c44969f2b5c4dd1b5594c7ee31e3938f6cd14a8a92201cf83c110f27982d530a29c4b97f3a71d8a4c24b8ac5c1f43277d930a83d402bd6a487addc88a5c92f68075b5a8069b17b4fbab7cc4fd277082c56f8a669c57277d5c0a31adca0ee7e14330431b24295fde06d06e02dde881663d0e8289f9a464e9e77665bdbe328fdfc9d8647edbfedb92729165673c3af672daa874f8c4787170da98a3f26b96590514be75de2077320617772a94f5ff17ea3bb54aa400b87bff12e1c00350a069722011d24c1bc162c9258ca3b5490bd916504b6a4649ecc5c663e966505f8e2e49a255d94466afddf13449a852282d5e03b68bdc33be648f8a3c60cc0b66a1bfe6808a348a959e2879c6254b3d3cc25939e28f643c13cb3bb6cc8f0ac9ba220f745059b7526a71961ed5b920d000b8d39a3c1fe57a8f0b03bc536d81374522b0e8a8c49d0ecedc424530537d716aba90b3f5ade7736ed11a10f5f80130c8d4ea50d713b53888a1bef00bcb5b10c3c59de97f6ba5f571832bcacd70d3bdace08dc530d076cbe0f0ecc190a681502b0a1f49beca15bafaffb0a9011c8b0bbdd5fb325f0108e7e8ad8f877f6c30d73b079a2c624afcc86a80ac49b22f9cb399cb7b5006ef18af106adb92e085b2b1b427d7cc57374e999eeaf022a6c0973c7e04848db4b96ec3f2e878242cb6ab6a1548c7e876d7ef4baa909cb6979fe4d9c6d2e8a6547f136cc00daef38ac8c66e8ff9a03605662aa0844e99ee3b3ee8e06141e416e20e1bd0c128cb37ef33cb4149e426b5fec926d301ca135b988b7fc1879fb4afde29a85228bbd08e55bebed272974789ce70074681839461249557f4d8f755bcf78b4c12d0bca3cf694277e54e020de11eebbc5f5b8a7041b21cbed59398f53f86cb03989c8f0d78ef861d30dcf0070b593b544acd9e5b343c6d6e0cacbe00a0bf74721b5611b4ac547ee088322d58c1a2ea68a43e102aec92b01afae623e9de5da56620f2c95fb31a2132799b1a31b95e897911537554c309454371e34406a1a5bcb62a977a7c62b30b28d47774775e3628b1323c635953bccfa916006e4edba6ecb50fc2dd97b32dc133dad8debd235c9e2413253c0cc0d54bcb160ef96cc147d8b34661e617bf7adff332eb3a5835624c5564bc86ef2e2055832bd0782ec90ad70d8d83dfbb48a541dda8efe5a36a3bba5c66b6b7450def21ca2573327ec81403fa9de4a9fc5a876fd294b63130384c5cc860dd0b72705f740c31075e765e3ad53e26d1f1a946fad2ecbf8d6633325f6c4592a4a04b61e571bd62528dd8afd0f649222710e38c88baded9c63c71f64da6e8e1ed7122a9a555aea95d1d7e30d55823f146fd0036b8eec0ddc0830d6849029ad8a31d942c24eddfde5929e0618ad55459024036e4698b956e7b038dc56bba77b02948237d7f3f16e5aa73a7d7603e109adfcbebd8c0eca6e51e9a9bb026a3b51f906f2749e3c975cda5542ec313754e347e00cfec4688fc803ee5c5c4f9967151305209be80121b723770c80ceed010474d35aa1be5cbc098739760a4a0fa23b81d1f9553e7891aa47ad78cf7ea4f261c7464abd0d5b690591f1468832e3fa37feb7d9838986f4f34d69b481247672c8988a84261a32ab655162e13742761a93ff1e54d41d17a94745e4116115b08be6e4e742ea01fa4432ffa9a17a620d73ccba6bb720822e0aeb7d01cf969819ab8b89d91418cec1c3bfdab6aff9c1b91b77e7bb63eb35276c35376b5c394334c9b3767b19683b2411dbccf6135399cde1f22f75e747352d797412d7ca34d3aded6cec2ddf477fc60c74913023449c1c8e34faa09b77e89dae78d090879f9568cc3a7e9ef22416b154310e8d60e8d4d8d87a2a9d2c3d83189f9dfc445866a80afc108cbacb4bdc9a8e692e7afcefe35a0024caba68866ea8fe2c007c27307915609e696b4d3c3151b64f38237fbe9960e634c598025801ca0cc9e528bd5b05be1850565033d12188ca13b6e2ed0aa5f9ccce90f77d762b7005586ce45f71e4c35ee2d1fad2df283ae22835a01ac52ccb76e742594811ec2e9c9b76178622caa1b742075a316f977f57465e8005546c549fa96c31001a000f84e435b22c83a7259b8897024fc39863f3551baa9e8230079df3fd7b3137cf46fa4704aa710052fe6014633dbebfd2d31b15d7e9f72f1f322bfc33fe58799cdab092467913209a1e4b9294cab3f706c4ab8a7101770c2fbf06467c57d1b462e4bf49c3ac8389862a2e689e2e0b72c64c7f875e3520bf125f860eb50ee2a34fce08e90058e862e3c453be218977f49539174015ba37299aa46769a55bdfeb68d8ae80947b1fb0f5ee442e24c286d6b0818210b84184fce46cc33b5576ec1bd2433fed9ab363abf7b6fe4191eba92bc2e77c0c91d2ee998196fed0c4db501147c9d539c5be6f896a1f3d4e2d9d16556d45243e9cbcafb916b4e9a609e0ddbae69c7294a0131139caef1d3833f0571a5cbb64e65716f96f09b1c99a96ebd66ceb31ab49492d0bb432bbee72eb306543320389f9e0a624e31dd6bb1a702a5e30ddddbe8817a7808f48bacda5d55807173b608a8b58f662e4e9a596335e08b5e92e62f9d2e5dd4aba40f9728cc195b00cd884c07c3fd6f01d47782c4dde857530904fb0925f2869f45d0fbc623c945662694c42aa1923ad747f71f94e5ebd01508233a1f7e09d49cc8266ded5f8978ff6acbd09bd0e0563e489ce586ecb40f009ff502f8e5500a83d07e08d5fe620c2c8b660bc6e5887a3570607dbb90c0a7217d4b1138c88b90357bef235583c12078162fe091d5d457cf8fa4043f2d63ff5181f7a1f19674a17b5673f0530063db20f43b0a039779d2db72397adae3fb166829cc203d1caa698ee3258a49b9579cb0e97dd59d0e953f2387fb9a330dc23524171deaef01166c8ef84d528c274a189f5b025141d181cfbecd3e86429e6d5621716c054b04d758a0a0a853e3d359dcc4e4d21c8058d845f7ab1eefd6ff7f2cd7f53d2cbc516b0e7530ba79c9f8b8d354813ab55987c4657892688fbf050850df34d29ee89132c543792cb149e1912b408252dbe12f957a9798b98ad5b3dca4bf2eb5c06dd69818eea0ea836f69cd6c3b6466ed77db375cfca8c9def325ec8d40286bf49bcc740ea972b59b60d4283ff0740fc012936bfe2adfc165bdab41bfd605a118ead986d0662e73e7e78b55d06a5a9918ac75aec46fc223a6a6ab6f2498452739e3afceb49157e11d94f99d8ed397a18dea5a4a9402a7521296966e58b12c87d072f9f48ed5c47bd07d0cde278cf96960d3bbcc11fdf946e7b22a3526c608222b9c4202956c6cbe110a82a4dffcec28ba6abd746e483cbc42fd5291bfab77ff86b013299389226a061d8a06d35ff82ddccac6b4b940539c6c21cb9e9ce0325c2336d300cd59043e43ed148679c4953c7a5378f86013ded38fe6296cf0be27b1f00a3f03401fa62fe157ee0edd72477abd836a4699ed6623af6157c020763f606f136962d7a1cca48f02bc6a52b4d5ec96952e064c56a1924a814ba43e4814ae2e3e1c6808c7504daec546234029a2d53de8cb2fc5180313fad39b9a5670605c91fefd803295eecaf8a408b89baffe50ee1f6c290424f1d59dae54a0be0c1fa9d95576eb800ff1caa89657b7e66fe10d18a64650c41d7ac9bafde00c30a8849a5bf7485d476871ea9ae71605551a021326c31614de07a5e799f505980d09c90c65d6152703516dc606fb54ee42a9284c9c9546534c1b84bc9d13dfc02bea7ce31ddee13342b28da628936ce33df7e3839ef4b8a3be9a988b81e15b6ba7ea309a887f2bd09901bb31b663400630d490433248e284fbeb3d9606e1d61be6d3af74370fee79bccaa7e0eca81a2a15a2b1f5b9f7d8cedb6a0a5c64950a0d4a868673d528c7f34ac58252db2b1277e4c09bf0905ed396ffa081db2361a2ebe26edf62421381e31e6603878363a008d6bbd64dd46d36597ddb5ecdbd1e9195f9c41bf2ebba937ad376d98c3571d69491321ce0bc6dc0741560d0578853d8178dec10f9f8f12d16b7f39161b04653b1768a419d47d1a60dcd098c179046563a9e9a423bf7d592caa635e9c27b9292946ca4aa56f7bf21a92aaba4805d9d69aca06f30f8be9689d42811965539aaf2074c2454ddb7d9aaf3313cf8755952c893aa46190e20e0f64d0f2a59aa9503853a679413eb0546f49918d5befd2f08f4ffb1a7d317f34671760d1d5543b390e7aa7bde008c3efec3a8b90f661402b746b60b47ffd42b8df7a528dfa84d4a781c84d2dfc300c64d21280728981239049702350c728bfacf6214b5a6d0633211707f5d29e99ce5ad591bd08489b2e8da24c17e161c46613ecf0dfb4a80eecf7a89e449ceb0b28819c0e0d17408240d801615dda5e14b1fd8d5c83c66ae7f1cce76184130c24de2c320f22fbb078b344ce1aa21d7e7d39b4551d8a3bbd385bb99fef2ea9dea305b63ff97ef970a8771d03351a08c4e83ab6daba1b81b764c17b554501b817c499f05e74ef2a2da51521ab622afd1bfafd4ff36f15ca226935c6f581eaeac593fd236f5d455b412f29f9b9c924430a078c11a6ef7ea869cc4f983f736a9d9f470ac3a99be9192daf35793511294f7c11e6b2031055a47b58ea76e9b84adeecb9dc9e431b63fc16a2a2fa5e3c36f037a4c80f11eba29c35a4f75790bc7d7c64fa4d4dd545d00f33cd644082d56530d9e20abd42715e67865755a02053a63300bd53e390daa7706a7e483da87d36bcf4186da4f0d0aa554c7e34f20f8fbd5789571a9f36fd469bd41d1e1bfb959872092056164a73e5832428aefd555b866f824bb40d29fcfb3018891a34d2ff8b60690d6ebefded20dc9243ff94865c484bc6c0af06ce1c1018973fe9fefcde23c2c7b753bcc1c9f4184048b98a6cc2dadf16e06817a0d03fbe8b9b7d9b3aaf7b8f1e8501565019b0a3f778d85322f0937ee879838e2c498a28e07fa61623097a5d9d2b307360fc2cf28e7139d499a9d37e9d578f81513634153bc0ee1700246cac7fdec7dbf3240e1996b002eb4e04b5882ee8093748b3790e7c189576a79bc6fabde43eb4654627a5637f0672cb2a835539add1e6e7ce1254c8c672da1b811826205376336de358a2053f15ca05e59b32ed008d4fb7815333e6600e8e7232d0747048f410b07257b392073e3513f178270bd78b3ba7f78c3e2e52a651497d4ce823f85f910e09a1934f0570c2d3178c767b818f0accfaf4715ed32c00f5d426965078be3c6341d27af0990cc16080e12fe7a5e385cbf4b5a490f38d87a51ed0495c50a4cd253b0bfcf6e7551d8a69494a32143b414fcf03214c6e95eb883d09585723205e3847db418db1eafb6b34b19222372b8ee850165aa7a3a2e546c4a6ff699aa782f076f0568e6197e398eb0f22407d022739487f5f38c0b9cca46247cf8faaf9a016c76bd2dacba0d4ea02296641b8a7d8404e5f454498e83b8"], 0x1330}, 0xfffffffffffffffc}], 0x2, 0x40000) sendto$inet(r2, &(0x7f00000001c0)="94", 0x1, 0x0, 0x0, 0x0) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000c80)={0x0, @dev}, &(0x7f0000000cc0)=0xc) sendmmsg(r2, &(0x7f0000007c40)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000fc0)="4e6bdee7e9cc6e38c8f4663bcb34190cbb7918b6b53653605f46e6a5f85c472ef14ad2eb37e4441b6b44ccd37f208a500f1c285f8ab09f463520511c87beb92f75b0037e06836641e28320a3d936e7def9bc2db3574ef2eddd6a1e1eede7bd7b5974106afcdfaca1e87614375829ab63b9ac64ce79df5cb756bc0f34f8145918957e239ec5fc05c207a9c0aa5765b3196f7ed8eff46743d686d7167269231bac107cc9aa6e439c4dcae56f7bc11e3850ef2c3d16283cc0f7d3a3c1a05ead379f37af1dca8db4db7f7e050715a4968ca1aad1e8ff0cfec7e4c00dd8a38525812412b843041344d17fb2538b63ad1867c988af4fd580ea939ff1045553ed88dd99ddca8d2ef29cf5238fa769c45a164fe260b6aa82f10e0d73fae733c49d4711d4fd8f67fc3fa250baabfee8b5f2eb952ec48d79148774d9c2d91f4e575035c080e9303d85e7a74b5d263d1ad0a45716bf17c842b336b9b0a904bd6e1a5dfca6ed6e6d38b968350ad146a79e31c8ae4a645f3d1166b417c20719a07443668d5755e53ba56ebb52430d31eaaf387addbac65581a6f1a0d3253726c2c031960348122889cf37d36abd14ab267c43ad9a6294d8a050d0cf71cbe60188696c417b9a34e71dca303af54f432b10dae9c531666efafb9dd19cd4f5e9484d9f9894453df22be9f1aef601fb6d9808327bb74f30bb8fabaec0c1ce17c4113e14294c9d61b867ea9df3b3b8a5f35d5dc0bd9101903940f65c1a2ba78e23ee65f4ce5525002469bff22d87b3ef28a6efe3af566212c058e0f8296b02143158781d297e74a4e45839a57e41c6389b2f845fa7a4be5752dca34a803aedf3d54e75fc5187d9ba642af5b02b7fa5f1799d6af9394f760862668624eeefbc9569172d4c978d10dc3caf3228484bf8322e4ce574f363f1dd66720e9a2f1e5b99792e820636f7330d307658ffac74071507ba47659a687de241ce553c2786c6589b7ec944692b6a16bb08e80a4daf7c13b35c15c0c195edde54e14cec430f97aca6003b44d3fe1e49fbec1e9963cea296fc9309f8f7fd485eac7003d9e5153ad78245af7b9c9fd2fb403758561c045d1ce1aa80b9d64784ed51e4a400c52f73b079961efd1f6bc9a0c7e85ec1eace06270c29f67a9964e2c7abf552bfff2b4f98b0367f9369d5d78725799be40c6e3c81c684e4dbca42e53d2c93a70e2669d4652a9f85d74c2f8158341d6ad23c1d2f10837cb8395767d7bc1a1bd578a23a8d19ec60d02f9681604b05f1ce8264914076416800e23f83233ea0c92947b0bd24bb0c4d9b3dc4282472c696b09482d769b8bfb74852ab8e0df324f9b80b356625b019c52962c3960e6a50af070fa45c90979f421cfa0c1776cf76f91a4fbf6472842c54d058274fec43c48f86bba89653a4dd90af74beb0b9e59f7c920f3a37f3d9bdbf533b8efb465a8735403aac50d34e82a8c1f228360166d3e08828268ecf431d6a13ecfb51e2b8d56fafd53aba7fb7dc897108c250d1379ac386305dbec3f06f5ac98e0fdea2d4f294e600b60127bc31b869fa4ab8069217d0275ca6db86009204990d2767a49ea417309ac1df0ec8c2876043694dc0ba982b7984fde3ab53ffe971868f7c68fb25da0d02005529b6bfdc448085f99421a3e5eaf8ed66a571cfba852a61b3270896da6fa78976f6c0eb90ad42e18380764e6ae130ce6fcb3f0734b399d98449711d1aa9e38bdb589e4e84be63b13a9e71d1d7d4f5ff61f2f9afcc8fb4881cf4b27fa821629ab897a0d011c8c3bc192c53b6d22ab6d9032fcdd25f97e66bf2bee95bf77c3f83414cfb930524eda30bdd8728dd7268c072a96ecc4ced2b1e934cbd6fbcebd5d8a2a182a0332ad482e8303699225bf3e5d16725b717ce4407e19acd23b85ceafe0055c0837952c08c583d4e45f56dcc16f0d8aa01e03306991db347ca6f27446004f767aa13be6f55ac55f5824917f6c9358f885fe1857faf32ee88a3f7ec6352040ab87cf5630aeb714313f0779a0d2e4fedd9ec3e6fad565c81b99a3fcaf7662ae76bf6b395506c46f1549b3de895105edc205f7168fa7262dbb493b83d1d4dfd804ebbc06e0b01b040648cf2934b1e18f444ff1fb355e41285a463a05a388640d73362b0afce37ac", 0x5ed}], 0x1}}], 0x1, 0x0) r5 = fcntl$dupfd(r0, 0x0, r1) ioctl$VIDIOC_S_DV_TIMINGS(r5, 0xc0845657, &(0x7f00000000c0)={0x0, @reserved}) [ 242.447505][ T8949] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000) 14:16:08 executing program 0: r0 = semget$private(0x0, 0x5, 0x0) r1 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x8001, 0x200480) r2 = getpid() ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000200)={{0x5, 0x2, 0x6, 0x2, 'syz0\x00', 0x1}, 0x6, 0x20000000, 0x3, r2, 0x3, 0x0, 'syz0\x00', &(0x7f0000000100)=['%}^#\x00', '+proc\')ppp0}\x00', '\\vboxnet1&.GPLlomime_type6nodevem0\x00'], 0x35, [], [0xf101, 0x0, 0x4, 0x4]}) semop(r0, &(0x7f000002efe2)=[{0x0, 0x6}], 0x1) semop(r0, &(0x7f000001a000)=[{}, {}], 0x2) semtimedop(r0, &(0x7f0000036ff4)=[{}, {}], 0x2, &(0x7f0000036ff0)={0x77359400}) semctl$GETZCNT(r0, 0x3, 0xf, &(0x7f0000000180)=""/97) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0xc) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r6 = fanotify_init(0x51, 0x1001) kcmp(r3, r4, 0x2, r5, r6) [ 243.159785][ T8967] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 243.159785][ T8967] The task syz-executor0 (8967) triggered the difference, watch for misbehavior. 14:16:10 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:10 executing program 5: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x200002, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) connect$inet6(r1, &(0x7f0000000240)={0xa, 0x4e22, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) perf_event_open(&(0x7f0000000600)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000280)=0xff, 0x4) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000040)={0x4506, {{0xa, 0x4e20, 0x4, @rand_addr="90fae0e7e1bda5c82018817edf1b3d42", 0x4}}}, 0x88) sendmmsg(r1, &(0x7f00000002c0), 0x4000000000000ce, 0x0) 14:16:10 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 14:16:10 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000040), 0xfb01cbdd028b9044) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x13, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mmap(&(0x7f0000000000/0x237000)=nil, 0x237000, 0x2, 0x32, 0xffffffffffffffff, 0x0) personality(0x10) r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) ioctl$VIDIOC_G_AUDIO(r1, 0x80345621, &(0x7f0000000040)) 14:16:10 executing program 0: socketpair(0x3, 0x3, 0x957, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x240000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@gettaction={0x78, 0x32, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@action_gd=@TCA_ACT_TAB={0x5c, 0x1, [{0x10, 0x13, @TCA_ACT_INDEX={0x8, 0x3, 0x20}}, {0x10, 0x18, @TCA_ACT_INDEX={0x8, 0x3, 0x13a6}}, {0x10, 0x1d, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0x14, 0x9, @TCA_ACT_KIND={0xc, 0x1, 'csum\x00'}}, {0x14, 0x10, @TCA_ACT_KIND={0xc, 0x1, 'csum\x00'}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x18}]}, 0x78}, 0x1, 0x0, 0x0, 0x40004}, 0x24000000) r1 = syz_init_net_socket$ax25(0x3, 0x3, 0x0) ioctl$sock_ax25_SIOCADDRT(r1, 0x89e9, 0x0) [ 245.156881][ T8976] syz-executor0 uses old SIOCAX25GETINFO [ 245.176234][ T8977] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000) 14:16:10 executing program 0: socket$alg(0x26, 0x5, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0xbd1b) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, 0x90) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0) delete_module(&(0x7f0000000000)='mime_typevmnet1em0\xd2posix_acl_access&system!ppp1eth0cgroupvmnet1&bdev\x00', 0x800) 14:16:10 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x1d) bind$netlink(r0, &(0x7f0000a0cff4)={0x4400000010, 0x0, 0x0, 0x70a0}, 0xc) write$binfmt_elf64(r0, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x3f, 0x1c, 0x0, 0x101, 0x2, 0x2, 0x7, 0x5, 0x255, 0x40, 0x2f5, 0xf1, 0x8, 0x38, 0x2, 0x5, 0xffff, 0x9}, [{0x70000005, 0x4, 0x0, 0x6, 0x1, 0x8000000000ef7, 0x8001, 0x7}, {0x6, 0x5af, 0x9, 0x1, 0x6, 0x8, 0x4, 0x599e0113}], "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", [[], [], [], [], []]}, 0x6ac) 14:16:10 executing program 3 (fault-call:1 fault-nth:0): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:10 executing program 1: r0 = socket(0x18, 0x0, 0x1) io_setup(0x6, &(0x7f0000000000)=0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/sys/net/ipv4/vs/sync_ref\xdfesh_period\x00\xce\xddH\x923\xb7F8\xa1\x10\xa7\x89\xac\xe3\xee\xffd\xcd\xfe1y\xb0|\xce\xc4(\xa0\xf7\x19\x93:\xcc\x80\x9e\x030fJ,k\xddDN;\xf3\x1e\xb18\x00d\xb1\xb8\xdc\xbbT[\x80Y\x01Wa\xec\x94\xe6\xf5m\xfe\xb9g\x98\x8c&\xb5\r\xa9K<&_\xf6\a9y\xf6\x825\xe6\x93\xf3G\xb8\xb2\x00w\xdf', 0x2, 0x0) ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f0000000040)) io_submit(r1, 0x1, &(0x7f0000000080)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000080)}]) ioctl$TIOCNXCL(r2, 0x540d) 14:16:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REINJECT_CONTROL(r1, 0x8010aebc, &(0x7f0000000080)) [ 245.415665][ T9003] FAULT_INJECTION: forcing a failure. [ 245.415665][ T9003] name failslab, interval 1, probability 0, space 0, times 1 14:16:10 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x240202, 0x0) ioctl$SIOCX25SCALLUSERDATA(r2, 0x89e5, &(0x7f0000000300)={0x31, "567630756f6a1b10b3b62ae5e9bda4d80ff02cfd397d8d4dd5cdb763f67937778bbc4f4bae0ec6862a46899a17e546f2b01ea5d29ad71fc1f7e45d50a777912fb8dde6bffeafd7c9bcf5b27d9085e1e57cd15d0911bcb49d3c4578f4b274148fedb4cb1911c28fe013eab36a0fe22375e6127abf8e19bd857916d8fbdc643c8e"}) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="feb77403850000002e000000450000000400007795000000639ee6a4850627167a0e7c98ef7894975f3fd5ef5cc00bdb7e2ef681193cddfd1125863203"], &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0x348, &(0x7f0000000480)=""/195, 0x0, 0x0, [0x42]}, 0x48) dup(r0) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000000)={0x0}) r4 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x8000, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f0000000080)={r3, 0x80000, r4}) [ 245.535666][ T9003] CPU: 1 PID: 9003 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 245.545122][ T9003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.545129][ T9003] Call Trace: [ 245.545224][ T9003] dump_stack+0x172/0x1f0 [ 245.545323][ T9003] should_fail.cold+0xa/0x15 [ 245.545343][ T9003] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 245.567613][ T9003] ? ___might_sleep+0x163/0x280 [ 245.567653][ T9003] __should_failslab+0x121/0x190 [ 245.583306][ T9003] should_failslab+0x9/0x14 [ 245.587838][ T9003] __kmalloc+0x2dc/0x740 [ 245.587875][ T9003] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 245.598297][ T9003] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 245.598313][ T9003] ? strnlen_user+0x1f0/0x280 [ 245.598379][ T9003] ? __x64_sys_memfd_create+0x13c/0x470 [ 245.609203][ T9003] __x64_sys_memfd_create+0x13c/0x470 [ 245.609216][ T9003] ? memfd_fcntl+0x1550/0x1550 [ 245.609263][ T9003] ? do_syscall_64+0x26/0x610 [ 245.629651][ T9003] ? lockdep_hardirqs_on+0x418/0x5d0 14:16:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket(0xa, 0x1, 0x0) fstat(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r2) r3 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setgroups(0x0, 0x0) setresuid(0x0, r4, 0x0) shmget$private(0x0, 0x2000, 0x180d, &(0x7f0000ffa000/0x2000)=nil) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2000009, 0x40020011, 0xffffffffffffffff, 0x20000000000) syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) [ 245.629675][ T9003] ? trace_hardirqs_on+0x67/0x230 [ 245.639938][ T9003] do_syscall_64+0x103/0x610 [ 245.644531][ T9003] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 245.650415][ T9003] RIP: 0033:0x457e39 [ 245.654296][ T9003] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 245.654305][ T9003] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 245.654319][ T9003] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000457e39 [ 245.654326][ T9003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bce47 [ 245.654339][ T9003] RBP: 000000000073bf00 R08: 0000000000008000 R09: 00000000fbad8001 [ 245.682301][ T9003] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0908a6d4 [ 245.682310][ T9003] R13: 00000000004c658d R14: 00000000004db990 R15: 0000000000000004 [ 245.752046][ T9019] hugetlbfs: syz-executor0 (9019): Using mlock ulimits for SHM_HUGETLB is deprecated 14:16:13 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:13 executing program 3 (fault-call:1 fault-nth:1): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x48f, &(0x7f0000000500)={0x0, @rand_addr, 0x0, 0x0, 'mh\x00\x00\x00\x00\x00\x00\x00\x8f\x00\x00\x00\x00\x00 '}, 0x2c) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x60040, 0x0) ioctl$BLKGETSIZE(r1, 0x1260, &(0x7f0000000040)) 14:16:13 executing program 5: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000007c0)=""/246) ioctl$PPPIOCSMRU1(r0, 0x8010743f, &(0x7f0000000000)) 14:16:13 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000080)=0x30) r1 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x20000) getsockopt$packet_buf(r1, 0x107, 0x5, &(0x7f0000000180)=""/198, &(0x7f0000000280)=0xc6) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000000)={0x4, 0x100000001, 0x200, 0x80, 0x200, 0xcb, 0x4, 0x2, 0x0}, &(0x7f00000000c0)=0x20) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000100)={r2, 0x8}, 0x8) 14:16:13 executing program 0: sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, 0x0, 0x0, 0x70bd29, 0x25dfdbfd, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x6}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) r0 = open(0x0, 0x111800, 0x101) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_TIMERSLACK(0x1d, 0x101) fchdir(0xffffffffffffffff) clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000180)=ANY=[@ANYPTR=&(0x7f0000000780)=ANY=[@ANYRES32=r0, @ANYRESOCT=r0]]) quotactl(0x2080000201, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) timer_create(0x0, 0x0, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000600)='fou\x00') bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000040)={0xffffffffffffff9c, 0x10, &(0x7f0000000000)={&(0x7f0000000640)=""/134, 0x86, 0x0}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=r1, 0x4) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, 0x0, 0x20000000) ioctl$PPPIOCATTCHAN(0xffffffffffffffff, 0x40047438, 0x0) r2 = openat$cgroup_ro(r0, &(0x7f00000000c0)='memory.current\x00', 0x0, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000200)={0xaa4, 0xffffffffffffbfe2, 0x494e, 0xb19f, 0x14, 0x1, 0x3, 0x2, 0x200, 0xfff, 0xffff, 0x9}) r3 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r3, &(0x7f0000022ff0)={0x2, 0x4e20, @loopback}, 0x10) sendmsg(r3, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f000000a000)='\f', 0x1}], 0x1}, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10) fcntl$setsig(r0, 0xa, 0x3a) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000500)={0x963, 0x2, 0x10001, 0x0, 0x0}, &(0x7f0000000540)=0x10) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000580)={r4, 0x3}, &(0x7f00000005c0)=0x8) sendmsg(0xffffffffffffffff, &(0x7f000001afc8)={0x0, 0x0, &(0x7f0000007f80)=[{&(0x7f000000a000)='\f', 0x1}], 0x1}, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x2080, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, 0x0, &(0x7f0000000080)='system_u:object_r:crack_db_t:s0\x00', 0x20, 0x2) sendmsg$nl_crypto(r2, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="2801000012000a022bbd7000fddbdf25647262675f70725f7368613338340000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000240000002000000000000000000000080001000004000008000100070000000800010004000000080001000200000008000100090000000800010008000000080001000000000008000100ff07000008000100460d0000"], 0x128}}, 0x20000041) connect$unix(r0, &(0x7f0000000700)=@abs={0x0, 0x0, 0x4e24}, 0x6e) [ 248.214641][ T9029] FAULT_INJECTION: forcing a failure. [ 248.214641][ T9029] name failslab, interval 1, probability 0, space 0, times 0 [ 248.259296][ T9029] CPU: 0 PID: 9029 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 248.268246][ T9029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 248.278296][ T9029] Call Trace: [ 248.281587][ T9029] dump_stack+0x172/0x1f0 [ 248.285921][ T9029] should_fail.cold+0xa/0x15 [ 248.290518][ T9029] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 248.296341][ T9029] ? lock_downgrade+0x880/0x880 [ 248.301191][ T9029] ? ___might_sleep+0x163/0x280 14:16:13 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 248.306045][ T9029] __should_failslab+0x121/0x190 [ 248.310982][ T9029] should_failslab+0x9/0x14 [ 248.315482][ T9029] kmem_cache_alloc+0x2be/0x710 [ 248.320332][ T9029] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 248.325789][ T9029] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 248.325809][ T9029] ? lockdep_hardirqs_on+0x418/0x5d0 [ 248.325828][ T9029] ? retint_kernel+0x2d/0x2d [ 248.336616][ T9029] ? shmem_destroy_callback+0xc0/0xc0 [ 248.346463][ T9029] shmem_alloc_inode+0x1c/0x50 [ 248.351240][ T9029] alloc_inode+0x66/0x190 [ 248.355571][ T9029] new_inode_pseudo+0x19/0xf0 [ 248.360242][ T9029] new_inode+0x1f/0x40 [ 248.364303][ T9029] shmem_get_inode+0x84/0x780 [ 248.368984][ T9029] __shmem_file_setup.part.0+0x7e/0x2b0 [ 248.374539][ T9029] shmem_file_setup+0x66/0x90 [ 248.379216][ T9029] __x64_sys_memfd_create+0x2a2/0x470 [ 248.384588][ T9029] ? memfd_fcntl+0x1550/0x1550 [ 248.389345][ T9029] do_syscall_64+0x103/0x610 [ 248.393915][ T9029] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 248.399780][ T9029] RIP: 0033:0x457e39 [ 248.403673][ T9029] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 248.423298][ T9029] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 248.431696][ T9029] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000457e39 [ 248.439653][ T9029] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bce47 [ 248.447599][ T9029] RBP: 000000000073bf00 R08: 0000000000008000 R09: 00000000fbad8001 14:16:13 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000340)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x2c) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x8, 0x2, 0x0, 0x1000000000, 0x0, 0x0, 0x1, 0xa0003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffc, 0x0, 0x820000, 0x0, 0x0, [0x8000000000000000]}, 0x2c) bpf$MAP_CREATE(0x0, 0x0, 0x0) 14:16:13 executing program 0: openat$ashmem(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ashmem\x00', 0x4002000, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x0) ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x41007701, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x10001}, &(0x7f0000000240)=0x8) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000200)={r1, 0xffffffff}, &(0x7f0000000540)=0xffffffffffffff49) r3 = socket$alg(0x26, 0x5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000700)=[@in={0x2, 0x4e21, @multicast2}, @in6={0xa, 0x4e23, 0xffffffffffffff1e, @local, 0x9}, @in={0x2, 0x4e22, @remote}, @in6={0xa, 0x4e24, 0x6, @empty, 0x8}], 0x58) bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) r4 = accept4(r3, 0x0, &(0x7f0000000000), 0x0) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000100)="c7da5f1a", 0x4) r5 = syz_open_procfs(0x0, &(0x7f00000002c0)='pagemap\x00') getsockopt$IPT_SO_GET_REVISION_MATCH(r5, 0x0, 0x42, 0x0, &(0x7f0000000480)) sendfile(r4, r5, &(0x7f0000000040)=0x500, 0x10000000000443) madvise(&(0x7f000079c000/0x800000)=nil, 0x800000, 0xc) close(r2) ioctl$sock_TIOCINQ(r4, 0x541b, &(0x7f0000000640)) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f0000000600)={0x3ff, 0x62, 0x6, 0x535, 0x7}) sigaltstack(&(0x7f0000804000/0x1000)=nil, &(0x7f0000000000)) writev(r4, &(0x7f00000006c0)=[{&(0x7f0000000600), 0x60020}], 0x1) r6 = syz_genetlink_get_family_id$net_dm(&(0x7f00000001c0)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(r5, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000340)={0x14, r6, 0x100, 0x70bd2c, 0x25dfdbfd, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0) read(r4, &(0x7f00000003c0)=""/72, 0x100000104) sendmsg$xdp(r4, &(0x7f0000000300)={&(0x7f0000000140), 0x10, &(0x7f0000000280)=[{&(0x7f0000000180)="9d", 0x1}], 0x1}, 0x0) [ 248.455545][ T9029] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0908a6d4 [ 248.463504][ T9029] R13: 00000000004c658d R14: 00000000004db990 R15: 0000000000000004 14:16:13 executing program 3 (fault-call:1 fault-nth:2): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:13 executing program 4: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mkdir(&(0x7f0000000280)='./file1\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="751f709c68038535961516db4d2765726469723d3b2f66696c657765726469723d2e2f66696c65306bd011"]) [ 248.589466][ T9061] FAULT_INJECTION: forcing a failure. [ 248.589466][ T9061] name failslab, interval 1, probability 0, space 0, times 0 14:16:13 executing program 5: pipe2(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84800) bind$bt_rfcomm(r1, &(0x7f0000000040)={0x1f, {0x3, 0xff, 0x0, 0x8, 0x9, 0x4}, 0xfffffffffffffff7}, 0xa) getsockopt$inet6_udp_int(r0, 0x11, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_FPU(0xffffffffffffffff, 0x41a0ae8d, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timerfd_settime(0xffffffffffffffff, 0x1, 0x0, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000640), 0x8, 0x800) clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000008, &(0x7f00000001c0)) r2 = gettid() timer_create(0x0, &(0x7f0000ee4000)={0x0, 0x14}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000e04000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r2, 0x1000000000012) pipe(&(0x7f0000000100)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) r5 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000080)=[@sack_perm], 0x1) dup3(r3, r4, 0x0) [ 248.636298][ T9065] overlayfs: unrecognized mount option "upœh…5–ÛM'erdir=;/filewerdir=./file0kÐ" or missing value [ 248.673491][ T9061] CPU: 1 PID: 9061 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 248.682444][ T9061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 248.692488][ T9061] Call Trace: [ 248.695791][ T9061] dump_stack+0x172/0x1f0 [ 248.700125][ T9061] should_fail.cold+0xa/0x15 [ 248.704719][ T9061] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 248.710525][ T9061] ? lock_downgrade+0x880/0x880 [ 248.716124][ T9061] ? ___might_sleep+0x163/0x280 [ 248.720976][ T9061] __should_failslab+0x121/0x190 [ 248.725909][ T9061] should_failslab+0x9/0x14 [ 248.730407][ T9061] kmem_cache_alloc+0x2be/0x710 [ 248.735253][ T9061] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 248.740796][ T9061] __d_alloc+0x2e/0x8c0 [ 248.744950][ T9061] ? retint_kernel+0x2d/0x2d [ 248.749538][ T9061] d_alloc_pseudo+0x1e/0x30 [ 248.754046][ T9061] alloc_file_pseudo+0xe2/0x280 [ 248.758900][ T9061] ? alloc_file+0x4d0/0x4d0 [ 248.763407][ T9061] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 248.769871][ T9061] __shmem_file_setup.part.0+0x108/0x2b0 [ 248.774524][ T9072] overlayfs: unrecognized mount option "upœh…5–ÛM'erdir=;/filewerdir=./file0kÐ" or missing value [ 248.775507][ T9061] shmem_file_setup+0x66/0x90 [ 248.791071][ T9061] __x64_sys_memfd_create+0x2a2/0x470 [ 248.796428][ T9061] ? memfd_fcntl+0x1550/0x1550 [ 248.796442][ T9061] ? do_syscall_64+0x26/0x610 [ 248.796457][ T9061] ? lockdep_hardirqs_on+0x418/0x5d0 [ 248.796472][ T9061] ? trace_hardirqs_on+0x67/0x230 [ 248.796497][ T9061] do_syscall_64+0x103/0x610 [ 248.820750][ T9061] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 248.826649][ T9061] RIP: 0033:0x457e39 14:16:14 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = fanotify_init(0x0, 0x0) readv(r1, &(0x7f0000004740)=[{&(0x7f0000000500)=""/149, 0x95}], 0x1) r2 = fcntl$getown(r0, 0x9) ptrace$setopts(0x4206, r2, 0x0, 0x100000) r3 = socket$inet6(0xa, 0x80806, 0x0) r4 = dup3(r3, r1, 0x0) prctl$PR_SET_FPEMU(0xa, 0x1) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) shutdown(r4, 0x0) r5 = getgid() lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setresgid(r5, r6, r7) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) tkill(0x0, 0x1000000000016) syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x2, 0x10400) 14:16:14 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000140)={0x18, 0x0, {0x6, @local, 'bridge0\x00'}}, 0x1e) sendmmsg(r0, &(0x7f000000d180), 0x4000000000000eb, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e22, 0x4000000000000, @empty, 0x6}}, 0x1, 0x5}, &(0x7f0000000100)=0x90) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={r1, 0x4, 0x100, 0x400}, 0x10) r2 = socket(0x11, 0x3, 0x0) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000788000)=0x2, 0x4) ioctl$KDGKBLED(r2, 0x4b64, &(0x7f0000000000)) bind$packet(r2, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) setsockopt(r2, 0x107, 0x5, &(0x7f0000001000), 0x35e) mlockall(0x0) lseek(0xffffffffffffffff, 0x0, 0x0) 14:16:14 executing program 3 (fault-call:1 fault-nth:3): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 248.830543][ T9061] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 248.850137][ T9061] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 248.850150][ T9061] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000457e39 [ 248.850159][ T9061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bce47 [ 248.850167][ T9061] RBP: 000000000073bf00 R08: 0000000000008000 R09: 00000000fbad8001 [ 248.850175][ T9061] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0908a6d4 [ 248.850183][ T9061] R13: 00000000004c658d R14: 00000000004db990 R15: 0000000000000004 [ 248.896416][ T9077] FAULT_INJECTION: forcing a failure. [ 248.896416][ T9077] name failslab, interval 1, probability 0, space 0, times 0 [ 248.921907][ T9077] CPU: 1 PID: 9077 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 248.930859][ T9077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 248.940894][ T9077] Call Trace: [ 248.944179][ T9077] dump_stack+0x172/0x1f0 [ 248.948503][ T9077] should_fail.cold+0xa/0x15 [ 248.953078][ T9077] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 248.958864][ T9077] ? lock_downgrade+0x880/0x880 [ 248.963695][ T9077] ? ___might_sleep+0x163/0x280 [ 248.968613][ T9077] __should_failslab+0x121/0x190 [ 248.973532][ T9077] should_failslab+0x9/0x14 [ 248.978018][ T9077] kmem_cache_alloc+0x2be/0x710 [ 248.982858][ T9077] ? current_time+0x6b/0x140 [ 248.987487][ T9077] ? ktime_get_coarse_real_ts64+0xf0/0x2b0 [ 248.993276][ T9077] ? lockdep_hardirqs_on+0x418/0x5d0 [ 248.998537][ T9077] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 249.004770][ T9077] ? timespec64_trunc+0xf0/0x180 [ 249.009690][ T9077] __d_alloc+0x2e/0x8c0 [ 249.013842][ T9077] d_alloc_pseudo+0x1e/0x30 [ 249.018324][ T9077] alloc_file_pseudo+0xe2/0x280 [ 249.023155][ T9077] ? alloc_file+0x4d0/0x4d0 [ 249.027635][ T9077] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 249.033860][ T9077] __shmem_file_setup.part.0+0x108/0x2b0 [ 249.039497][ T9077] shmem_file_setup+0x66/0x90 [ 249.044154][ T9077] __x64_sys_memfd_create+0x2a2/0x470 [ 249.049507][ T9077] ? memfd_fcntl+0x1550/0x1550 [ 249.054254][ T9077] ? do_syscall_64+0x26/0x610 [ 249.058909][ T9077] ? lockdep_hardirqs_on+0x418/0x5d0 [ 249.064184][ T9077] ? trace_hardirqs_on+0x67/0x230 [ 249.069191][ T9077] do_syscall_64+0x103/0x610 [ 249.073763][ T9077] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 249.079647][ T9077] RIP: 0033:0x457e39 [ 249.083519][ T9077] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 249.103204][ T9077] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 249.111606][ T9077] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000457e39 [ 249.119556][ T9077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bce47 [ 249.127504][ T9077] RBP: 000000000073bf00 R08: 0000000000008000 R09: 00000000fbad8001 [ 249.135472][ T9077] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0908a6d4 [ 249.143423][ T9077] R13: 00000000004c658d R14: 00000000004db990 R15: 0000000000000004 14:16:14 executing program 3 (fault-call:1 fault-nth:4): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 249.268647][ T9090] FAULT_INJECTION: forcing a failure. [ 249.268647][ T9090] name failslab, interval 1, probability 0, space 0, times 0 [ 249.281630][ T9090] CPU: 0 PID: 9090 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 249.290556][ T9090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.300599][ T9090] Call Trace: [ 249.303889][ T9090] dump_stack+0x172/0x1f0 [ 249.308223][ T9090] should_fail.cold+0xa/0x15 [ 249.312820][ T9090] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 249.318626][ T9090] ? lock_downgrade+0x880/0x880 [ 249.323491][ T9090] ? ___might_sleep+0x163/0x280 [ 249.328351][ T9090] __should_failslab+0x121/0x190 [ 249.333290][ T9090] should_failslab+0x9/0x14 [ 249.337792][ T9090] kmem_cache_alloc+0x2be/0x710 [ 249.342639][ T9090] ? __alloc_file+0x27/0x300 [ 249.347287][ T9090] ? rcu_read_lock_sched_held+0x110/0x130 [ 249.353003][ T9090] ? kmem_cache_alloc+0x341/0x710 [ 249.358118][ T9090] security_file_alloc+0x39/0x170 [ 249.363153][ T9090] __alloc_file+0xac/0x300 [ 249.367566][ T9090] alloc_empty_file+0x72/0x170 [ 249.372330][ T9090] alloc_file+0x5e/0x4d0 [ 249.376583][ T9090] alloc_file_pseudo+0x189/0x280 [ 249.381524][ T9090] ? alloc_file+0x4d0/0x4d0 [ 249.386028][ T9090] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 249.392277][ T9090] __shmem_file_setup.part.0+0x108/0x2b0 [ 249.397911][ T9090] shmem_file_setup+0x66/0x90 [ 249.402607][ T9090] __x64_sys_memfd_create+0x2a2/0x470 [ 249.407979][ T9090] ? memfd_fcntl+0x1550/0x1550 [ 249.412741][ T9090] ? do_syscall_64+0x26/0x610 [ 249.417418][ T9090] ? lockdep_hardirqs_on+0x418/0x5d0 [ 249.422737][ T9090] ? trace_hardirqs_on+0x67/0x230 [ 249.427766][ T9090] do_syscall_64+0x103/0x610 [ 249.432360][ T9090] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 249.438244][ T9090] RIP: 0033:0x457e39 [ 249.442134][ T9090] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 14:16:14 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) sysinfo(&(0x7f00000007c0)=""/154) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x11b400, 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(r1, 0xc018643a, &(0x7f00000001c0)={0x0, 0x6, 0x3}) ioctl$BLKPG(r0, 0x1269, &(0x7f00000006c0)={0x1, 0x0, 0x0, &(0x7f0000000800)}) getsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f0000000300), &(0x7f0000000480)=0x4) connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs={0x1}, 0x6e) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x20000004e23, @dev}, 0x10) r2 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, &(0x7f0000000340)=0x1c) ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f0000000040)={0x18b5, 0xcd, 0x5, 0x42fc}) ioctl$SIOCX25GCALLUSERDATA(r1, 0x89e4, &(0x7f00000003c0)={0x42, "fe60485dbc92f62a55feed501492a99c91e78687e82967dec76748ce59c4f34fcb8729ae5665ca6e9254efdd7bc136c6008c02e25f4cc71c829f6549787e80fbc324251b9fd1b1ea626017bdc2323caae4064dba7c24772818aa0d31c5b5ef146bc744065eaa7f3c50154c6bc80a58ea3100f8fe7e3490358a68399d3ae822ef"}) write$binfmt_aout(r0, &(0x7f0000000880)=ANY=[@ANYBLOB="0f011f056e0200003e020000ef000000a5010000fdffffff00000000000000004c022dc5871d1846fde67fe29e98f4e5e473f6feeb912ef5c9979c1901ee963c2874881b49e09d2c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x94b) getsockopt$IP6T_SO_GET_ENTRIES(r2, 0x29, 0x41, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r0], 0x0) gettid() bind$vsock_dgram(r0, &(0x7f00000004c0)={0x28, 0x0, 0x2710, @hyper}, 0x10) write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x101, 0x12) request_key(&(0x7f0000000200)='dns_resolver\x00', &(0x7f0000000180)={'sy.'}, &(0x7f0000000240)='syz', 0xffffffffffffffff) getsockopt$inet6_dccp_buf(r2, 0x21, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000380)={0xa, 0x0, 0x0, @empty, 0xc}, 0x1c) openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x410000, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000080)={{{@in=@remote, @in=@local}}, {{@in=@loopback}, 0x0, @in=@loopback}}, &(0x7f0000000180)=0xe8) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r1, 0x0, 0x0, 0x44, 0x0, &(0x7f0000001a40)=""/68, 0x5}, 0x28) setsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, &(0x7f0000000200), 0x4) [ 249.461736][ T9090] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 249.470155][ T9090] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000457e39 [ 249.478114][ T9090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bce47 [ 249.486064][ T9090] RBP: 000000000073bf00 R08: 0000000000008000 R09: 00000000fbad8001 [ 249.494038][ T9090] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0908a6d4 [ 249.502009][ T9090] R13: 00000000004c658d R14: 00000000004db990 R15: 0000000000000004 14:16:14 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x84) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x7, 0x10c00) ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000000080)=0x2) connect$inet6(r0, &(0x7f0000000100), 0x1c) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20) setsockopt$llc_int(r0, 0x10c, 0x2, &(0x7f0000000000)=0xffffffff7fffffff, 0x4) 14:16:16 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:16 executing program 3 (fault-call:1 fault-nth:5): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:16 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = timerfd_create(0x0, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm_plock\x00', 0x400000, 0x0) ioctl$UFFDIO_WAKE(r2, 0x8010aa02, &(0x7f00000003c0)={&(0x7f0000fff000/0x1000)=nil, 0x1000}) r3 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vfio/vfio\x00', 0x10000, 0x0) ioctl$KVM_SET_FPU(r3, 0x41a0ae8d, &(0x7f0000000200)={[], 0xffff, 0x6, 0x0, 0x0, 0x401, 0x6000, 0x6000, [], 0x3}) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) timerfd_gettime(r3, 0x0) r4 = dup3(r0, r1, 0x80000) ioctl$SNDRV_TIMER_IOCTL_STATUS(r4, 0x80605414, &(0x7f0000000000)=""/242) getsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0) 14:16:16 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0) mmap(&(0x7f0000da3000/0x2000)=nil, 0x2000, 0x1, 0x100010, 0xffffffffffffffff, 0x0) ioctl$VHOST_GET_FEATURES(r1, 0x80044dfe, &(0x7f0000000080)) 14:16:16 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x2, 0x3) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000200}, 0xffffffffffffff2c, &(0x7f0000000180)={&(0x7f0000000080)={0x2c, r1, 0x202, 0x70bd2d, 0xc6d, {{}, 0x0, 0x4109, 0x0, {0xadb508313a39afc, 0x18, {0x0, @bearer=@l2={'eth', 0x3a, 'lo\x00'}}}}, ["", ""]}, 0xe9}, 0x1, 0x0, 0x0, 0x800}, 0x4000880) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$LOOP_GET_STATUS(r0, 0x4c07, 0x0) [ 251.364196][ T9112] FAULT_INJECTION: forcing a failure. [ 251.364196][ T9112] name failslab, interval 1, probability 0, space 0, times 0 [ 251.394089][ T9112] CPU: 0 PID: 9112 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 251.403252][ T9112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.413307][ T9112] Call Trace: [ 251.416614][ T9112] dump_stack+0x172/0x1f0 [ 251.420954][ T9112] should_fail.cold+0xa/0x15 [ 251.425566][ T9112] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 251.431366][ T9112] ? lock_downgrade+0x880/0x880 [ 251.436213][ T9112] ? ___might_sleep+0x163/0x280 [ 251.441058][ T9112] __should_failslab+0x121/0x190 [ 251.445999][ T9112] should_failslab+0x9/0x14 [ 251.450503][ T9112] kmem_cache_alloc+0x2be/0x710 [ 251.455363][ T9112] ? __alloc_file+0x27/0x300 [ 251.459957][ T9112] ? rcu_read_lock_sched_held+0x110/0x130 [ 251.465676][ T9112] ? kmem_cache_alloc+0x341/0x710 [ 251.470702][ T9112] security_file_alloc+0x39/0x170 [ 251.475718][ T9112] __alloc_file+0xac/0x300 [ 251.480110][ T9112] alloc_empty_file+0x72/0x170 [ 251.484910][ T9112] alloc_file+0x5e/0x4d0 [ 251.489143][ T9112] alloc_file_pseudo+0x189/0x280 [ 251.494075][ T9112] ? alloc_file+0x4d0/0x4d0 [ 251.498555][ T9112] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 251.504785][ T9112] __shmem_file_setup.part.0+0x108/0x2b0 [ 251.510417][ T9112] shmem_file_setup+0x66/0x90 [ 251.515069][ T9112] __x64_sys_memfd_create+0x2a2/0x470 [ 251.520430][ T9112] ? memfd_fcntl+0x1550/0x1550 [ 251.525575][ T9112] ? do_syscall_64+0x26/0x610 [ 251.530238][ T9112] ? lockdep_hardirqs_on+0x418/0x5d0 [ 251.535628][ T9112] ? trace_hardirqs_on+0x67/0x230 [ 251.540633][ T9112] do_syscall_64+0x103/0x610 [ 251.545212][ T9112] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.551098][ T9112] RIP: 0033:0x457e39 [ 251.554964][ T9112] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 251.574540][ T9112] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 251.582930][ T9112] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000457e39 [ 251.590887][ T9112] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bce47 [ 251.598836][ T9112] RBP: 000000000073bf00 R08: 0000000000008000 R09: 00000000fbad8001 [ 251.606788][ T9112] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbe0908a6d4 [ 251.614755][ T9112] R13: 00000000004c658d R14: 00000000004db990 R15: 0000000000000004 14:16:17 executing program 5: perf_event_open(&(0x7f0000005240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000240)=ANY=[@ANYBLOB="0180c200000000000000000086dd60093a0600083a00fe8000000000000000000000000000bbff0200000000000000000000000000010000000000089078e396d3f5315f32383fdfce54d4929242bd7e2ba44eae11ffed2a4cdf543ba598aacdaedb6a189cc282bb20a24882945666493f04bf8b49750d74"], 0x0) r0 = syz_open_dev$swradio(&(0x7f00000002c0)='/dev/swradio#\x00', 0x0, 0x2) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e23, 0x2, @mcast2, 0x1}}, 0x0, 0xe00000000, 0x0, "93e7a5b25eadef133665c6a1b183f99c4fdc7a1586e4f6fb21272f0016b8d02cf84a46d7a4abb41fee7f8a334b5bea48a681a7fac7fe7ecdad49b1434a4be2805a56c2905c2be3d35ae91ecade0af645"}, 0xd8) mkdir(&(0x7f0000000000)='./file1\x00', 0x0) r1 = accept$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @broadcast}, &(0x7f0000000080)=0x10) setxattr$trusted_overlay_nlink(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='trusted.overlay.nlink\x00', &(0x7f0000000200)={'L-', 0x6424}, 0x28, 0x1) setsockopt$inet_tcp_buf(r1, 0x6, 0x1f, &(0x7f00000000c0)="606daf29d087c4fa0cc83bd108dd053129c851721527a327d98fa7004c21fea36e8f6e6f2c07a36f48e2c763086db4252b3c04410ccbf4e33e034fdb91347aa404aade6bc5a00ca91b9a450b2955e0ed8c652c97a22ef8a5230eb9a9dd4924a46d9ed6e9dd9c236a7f515dc7347788689cc37fabd9be40430876f34f54e6e51b790bfec5a5530773dd573051b9bf4a74a0e9b29b59cb2155c543a215779d72b74a12b28eea93a8", 0xa7) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000640)={0x3f}, 0x1) getresuid(&(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)=0x0) mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ffd000/0x2000)=nil) mount$9p_fd(0x0, &(0x7f0000000400)='./file1\x00', &(0x7f0000000440)='9p\x00', 0x1000, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@debug={'debug', 0x3d, 0x6}}, {@uname={'uname', 0x3d, 'trusted.overlay.nlink\x00'}}, {@afid={'afid', 0x3d, 0x1000}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@euid_gt={'euid>', r2}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@fsname={'fsname', 0x3d, 'trusted.overlay.nlink\x00'}}]}}) 14:16:17 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$nfs4(&(0x7f0000000000)='nfs4\x00', &(0x7f0000000040)='./file0\x00', 0x1288, 0x1, &(0x7f0000000100)=[{&(0x7f0000000200)="138070bfae6aa40f546f3084ce8b424379e840fcfe1204536e93883ff69ed2725030addb8bdb13d78ac40930791c3bbe6c73f9adfd6cd69f388be95cb8a7e0717a5f0b23319ffb26bcb383953057d30e7d04521c14ee85817ac4405ac1f5568438585418f3073bc3f973c5dfb7f116aa8651a0d93b39a4f3d35751e4b4fa45d5e24a816ac75495beac6839ab2b92f4f3c9a7d6dba90a71ab8b873f68b94cbfd3029efd7e491f584ee90ee50777dbcb4a99ce7631fee6a0161bdd7c5b1fa59c8129328e671bdec4e318637676fc2aec0cabdd6a5179ef4a6ee97f820ceac997b29861abf1ab54d16245d4bbe4626ad59be159421aa554e929", 0xf8, 0x9}], 0x2000000, &(0x7f0000000180)='\xacsecuritymd5sum@+[\appp1selinux,.wlan0\x00') ioctl(r1, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-ssse3\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x80800) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$pppoe(0x18, 0x1, 0x0) r5 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r5, &(0x7f0000000040)={0x18, 0x0, {0x3, @local, 'syz_tun\x00'}}, 0x1e) connect$pppoe(r4, &(0x7f0000000100)={0x18, 0x0, {0x3, @empty, 'bridge_slave_0\x00'}}, 0x1e) dup2(r4, r5) recvmmsg(r2, &(0x7f0000002480), 0x120, 0x0, &(0x7f00000001c0)={0x77359400}) 14:16:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='setgroups\x00') r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe48) ioctl$KVM_SET_NESTED_STATE(r3, 0x4080aebf, &(0x7f0000000200)={0x0, 0x0, 0x2080, {0x0, 0x103000}, [], "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", "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"}) write$UHID_GET_REPORT_REPLY(r0, &(0x7f0000000000), 0xa) 14:16:17 executing program 3 (fault-call:1 fault-nth:6): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x8b6, 0x22200) r3 = socket$key(0xf, 0x3, 0x2) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000040)={r3}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, 0x0) [ 251.715993][ T9134] FAULT_INJECTION: forcing a failure. [ 251.715993][ T9134] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 251.729309][ T9134] CPU: 0 PID: 9134 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 251.738231][ T9134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.748281][ T9134] Call Trace: [ 251.751560][ T9134] dump_stack+0x172/0x1f0 [ 251.755874][ T9134] should_fail.cold+0xa/0x15 [ 251.760445][ T9134] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 251.766242][ T9134] ? mark_held_locks+0xf0/0xf0 [ 251.771038][ T9134] should_fail_alloc_page+0x50/0x60 [ 251.776216][ T9134] __alloc_pages_nodemask+0x1a1/0x7e0 [ 251.781578][ T9134] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 251.787288][ T9134] ? find_held_lock+0x35/0x130 [ 251.792047][ T9134] cache_grow_begin+0x9c/0x850 [ 251.796793][ T9134] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 251.803043][ T9134] ? check_preemption_disabled+0x48/0x290 [ 251.808763][ T9134] kmem_cache_alloc+0x645/0x710 [ 251.813593][ T9134] ? retint_kernel+0x2d/0x2d [ 251.818169][ T9134] getname_flags+0xd6/0x5b0 [ 251.822653][ T9134] getname+0x1a/0x20 [ 251.826528][ T9134] do_sys_open+0x2c9/0x5d0 [ 251.830928][ T9134] ? filp_open+0x80/0x80 [ 251.835153][ T9134] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 251.840590][ T9134] ? do_syscall_64+0x26/0x610 [ 251.845249][ T9134] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.851294][ T9134] ? do_syscall_64+0x26/0x610 [ 251.855957][ T9134] __x64_sys_open+0x7e/0xc0 [ 251.860443][ T9134] do_syscall_64+0x103/0x610 [ 251.865105][ T9134] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 251.870974][ T9134] RIP: 0033:0x411f21 [ 251.874848][ T9134] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 251.894427][ T9134] RSP: 002b:00007fbe09089a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 251.902814][ T9134] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000411f21 [ 251.910761][ T9134] RDX: 00007fbe09089afa RSI: 0000000000000002 RDI: 00007fbe09089af0 [ 251.918711][ T9134] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 251.926667][ T9134] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000005 [ 251.934617][ T9134] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:17 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f023c123f3188a070") r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4000000010101d20ed003b0e0000007f0000000000000000", @ANYRES32=0x0, @ANYBLOB="000000008e25010008000a00", @ANYRES32=0x6, @ANYBLOB="1800120008000100767469000c000200080005c0e0000002"], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x800) syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x6, 0x40) 14:16:17 executing program 3 (fault-call:1 fault-nth:7): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 252.191807][ T9161] FAULT_INJECTION: forcing a failure. [ 252.191807][ T9161] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 252.205131][ T9161] CPU: 0 PID: 9161 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 252.214058][ T9161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.224102][ T9161] Call Trace: [ 252.224123][ T9161] dump_stack+0x172/0x1f0 [ 252.224145][ T9161] should_fail.cold+0xa/0x15 [ 252.224164][ T9161] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 252.224190][ T9161] ? mark_held_locks+0xf0/0xf0 [ 252.224208][ T9161] should_fail_alloc_page+0x50/0x60 [ 252.224222][ T9161] __alloc_pages_nodemask+0x1a1/0x7e0 [ 252.224240][ T9161] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 252.224251][ T9161] ? find_held_lock+0x35/0x130 [ 252.224276][ T9161] cache_grow_begin+0x9c/0x850 [ 252.231865][ T9161] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 252.278901][ T9161] ? check_preemption_disabled+0x48/0x290 [ 252.284601][ T9161] kmem_cache_alloc+0x645/0x710 [ 252.289428][ T9161] ? notify_change+0x6d5/0xfb0 [ 252.294186][ T9161] ? do_sys_ftruncate+0x41e/0x550 [ 252.299203][ T9161] getname_flags+0xd6/0x5b0 [ 252.303685][ T9161] ? lockdep_hardirqs_on+0x418/0x5d0 [ 252.308947][ T9161] getname+0x1a/0x20 [ 252.312827][ T9161] do_sys_open+0x2c9/0x5d0 [ 252.317234][ T9161] ? filp_open+0x80/0x80 [ 252.321496][ T9161] __x64_sys_open+0x7e/0xc0 [ 252.325976][ T9161] ? do_syscall_64+0x5b/0x610 [ 252.330643][ T9161] do_syscall_64+0x103/0x610 [ 252.335225][ T9161] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 252.341091][ T9161] RIP: 0033:0x411f21 [ 252.344964][ T9161] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 252.364601][ T9161] RSP: 002b:00007fbe09089a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 252.373009][ T9161] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000411f21 [ 252.380967][ T9161] RDX: 00007fbe09089afa RSI: 0000000000000002 RDI: 00007fbe09089af0 [ 252.388923][ T9161] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 252.396876][ T9161] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000005 [ 252.404822][ T9161] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:19 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:19 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp6\x00') bind$alg(r0, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00005ec000)="366521ab415b7ac7", 0x8) r2 = accept$alg(r0, 0x0, 0x0) ioctl$TIOCCONS(r1, 0x541d) sendfile(r2, r1, 0x0, 0x400) 14:16:19 executing program 0: syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x20e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x6, 0x7fffffff) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/sequencer2\x00', 0x141080, 0x0) ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000480)={&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1}) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r3, 0x8991, &(0x7f00000005c0)={'bond0\x00\x00\x00\x00\x00\x00\x00!\x00', @ifru_names='bond_slave_1\x00'}) ioctl$VIDIOC_ENCODER_CMD(r2, 0xc028564d, &(0x7f0000000680)={0x1, 0x1, [0xfff, 0x101, 0x3ff, 0x40, 0x0, 0xfffffffffffffffb, 0x8, 0x4f]}) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f00000004c0)) r4 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x20a800, 0x0) ioctl$KDSKBSENT(r4, 0x4b49, &(0x7f0000000740)="e2da5cdea423495c8b5663b2d9e462f4e65c25cc8b2ba5e1349cd9ae758d94c045f53f48860fd0b3d8013a69034f6ac0d6e1e98dfe38d2d9e2e2c54d473c67bfa22bbf07fadb6002cda4dd466bf8b4ac1fd7837039b702b9d0fa204a8e5df87c3de67d40844e3ddd3c120aee61b90f3b98210922d8d4271c6df39457ffa88a8a1c33837414408c58e56e3fc11ec40ec466928864d45fe30bbdca4189941c975bc6fe8fb0e6bf8e2a58131d1b5d088066c68b8a6ee0c4e1fea78983de57627ebf6f449a310f966c64391d936f99802fb9320ae1cc") r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/sequencer2\x00', 0x40042, 0x0) sendto$inet(r1, &(0x7f0000000a00)="8dec431bb44aff53a310b4eabef65b9ca28574570c8753d962784ce7563c1f448215fd237bf4c9159a98e9205a38a1fef116825d2a67dccc355557378e26b4e71c9ead8245ce8f8727e4d5e348d6b048462955248e97e362bb149adcd5ad849873b82111c2ecfa383140f9d4c99f525041a886277a6592dbc6b9108911e88a440b93f5c0fae544676b44a19bf06aa255a549db9cb0a9221a90f33fec43b1d074bf", 0xa1, 0x1, 0x0, 0x0) r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000580)='fou\x00') sendmsg$FOU_CMD_DEL(r5, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000600)={&(0x7f00000006c0)=ANY=[@ANYBLOB="c3d1c79f", @ANYRES16=r6, @ANYRESHEX=r1], 0x3}, 0x1, 0x0, 0x0, 0x20044000}, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000b00)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xfffffffffffffd34, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="520f020000000000000020fb00000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x8050}, 0x40) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x25d1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) keyctl$session_to_parent(0x12) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x200) r7 = dup2(r0, r5) openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0xc81, 0x0) r8 = socket$inet_tcp(0x2, 0x1, 0x0) syz_open_dev$midi(&(0x7f00000002c0)='/dev/midi#\x00', 0x3, 0x40100) getsockopt$inet_pktinfo(r8, 0x0, 0x8, &(0x7f0000000300)={0x0, @remote, @loopback}, &(0x7f0000000340)=0x7) sendmsg$nl_route(r7, &(0x7f0000000400)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000c80)=ANY=[]}}, 0x4008000) ioctl$sock_proto_private(r8, 0x80089ec, &(0x7f0000000140)="039625617620978a4df541244054545eefb285b44d2198c37642636f3bd6084339c6e79154e7a4e1e8a3a316d5a4d756fa828508c3eaae4df2759d4d16de576413772f248c74aae160e44749d604a7af5290efc74ba837ec71ff4bfb5f9a2d51403ecc6b5a4bb2dab710e3367549b45cd0b3fed1c251372400872f340ee3b348964d022f3224519d06adad720a5650c9b04292955ae6fd364adebee641bc911bcdd907f409e8200d95b946789c69b1d8876c") r9 = syz_open_dev$usb(&(0x7f0000000200)='/dev/bus/usb/00#/00#\x00', 0xff, 0x80000) syz_open_dev$sndtimer(&(0x7f0000000500)='/dev/snd/timer\x00', 0x0, 0x4080) ioctl$VT_GETMODE(r9, 0x5601, &(0x7f0000000240)) 14:16:19 executing program 1: r0 = socket$unix(0x1, 0x3, 0x0) bind$unix(r0, &(0x7f00000001c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e) r1 = socket$unix(0x1, 0x8000000000000005, 0x0) bind$unix(r1, &(0x7f0000000340)=@abs={0x1, 0x0, 0x4e24}, 0x6e) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") socketpair(0xa, 0x0, 0x2, &(0x7f0000000000)) r3 = socket$netlink(0x10, 0x3, 0x4) writev(r3, &(0x7f0000000140)=[{&(0x7f00000000c0)="480000001400199009004b0101048c01010000ebbd2e2ab90d530000632379eb000000000000551f5f0028213ee20607000000000000003f666674a8ffff00c7e5ed5e00000000c8", 0x48}], 0x1) 14:16:19 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000002480)='/dev/mISDNtimer\x00', 0x0, 0x0) write$P9_RFLUSH(r1, &(0x7f0000000000)={0x7, 0x6d, 0x2}, 0x7) write$binfmt_misc(r0, &(0x7f00000001c0)={'syz0', "4e570b8e188d1b30c82b60eff45b5ab27476877d5a2aaf4cfc0751b5ed3b81725f039040dc49da101a369509f2a8a76fa964f807b511024c1ca9563ec025f55e4a1f81bb4bbb8cd8a018eceb0293ac28d08a52fc475b74211e1d16a82d38bef70812a78186d1f22c22ec09df07aef486d03a19c5871eaab8c2282c7b420da78bb3d1bea6bef89fadb16b3e4eed65eefbb381359440742a8f20206efb80003540dc91a382f769e290720743eb1996318b6af6663350763ee039cafab34bb372ef2d5d048c6b21dcc8224389c85f0cac48b5cc8751f22fb805c3802c5e48e9f590d966638ec7ff42dcb55b7490"}, 0xf0) socket$rds(0x15, 0x5, 0x0) read(r1, &(0x7f0000000440)=""/4096, 0x20001440) ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)) fgetxattr(r1, &(0x7f0000000040)=@known='user.syz\x00', &(0x7f0000000100)=""/136, 0x88) 14:16:19 executing program 3 (fault-call:1 fault-nth:8): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:19 executing program 5: r0 = memfd_create(&(0x7f0000000040)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x1) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x22, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}], 0xffffff76) [ 254.446183][ T9177] FAULT_INJECTION: forcing a failure. [ 254.446183][ T9177] name failslab, interval 1, probability 0, space 0, times 0 [ 254.491432][ T9177] CPU: 1 PID: 9177 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 254.500398][ T9177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.500403][ T9177] Call Trace: [ 254.500423][ T9177] dump_stack+0x172/0x1f0 [ 254.500444][ T9177] should_fail.cold+0xa/0x15 [ 254.500461][ T9177] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 254.500475][ T9177] ? lock_downgrade+0x880/0x880 [ 254.500493][ T9177] ? ___might_sleep+0x163/0x280 [ 254.513832][ T9177] __should_failslab+0x121/0x190 [ 254.513851][ T9177] should_failslab+0x9/0x14 [ 254.513864][ T9177] kmem_cache_alloc+0x2be/0x710 [ 254.513881][ T9177] ? __alloc_file+0x27/0x300 [ 254.522754][ T9177] ? rcu_read_lock_sched_held+0x110/0x130 [ 254.522769][ T9177] ? kmem_cache_alloc+0x341/0x710 [ 254.522793][ T9177] security_file_alloc+0x39/0x170 [ 254.552665][ T9177] __alloc_file+0xac/0x300 [ 254.552685][ T9177] alloc_empty_file+0x72/0x170 [ 254.552701][ T9177] path_openat+0xef/0x46e0 [ 254.552717][ T9177] ? __lock_acquire+0x54b/0x4790 [ 254.552734][ T9177] ? getname+0x1a/0x20 [ 254.552747][ T9177] ? do_sys_open+0x2c9/0x5d0 [ 254.552757][ T9177] ? __x64_sys_open+0x7e/0xc0 [ 254.552776][ T9177] ? do_syscall_64+0x103/0x610 [ 254.563061][ T9177] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 254.563087][ T9177] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 254.563101][ T9177] ? __lock_is_held+0xb6/0x140 [ 254.563124][ T9177] ? __alloc_fd+0x430/0x530 [ 254.563141][ T9177] do_filp_open+0x1a1/0x280 [ 254.563156][ T9177] ? may_open_dev+0x100/0x100 14:16:19 executing program 5: r0 = socket$inet6(0xa, 0x80003, 0x80000000000004a) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x1a\x00', 0x0}) r3 = syz_open_dev$mouse(&(0x7f00000012c0)='/dev/input/mouse#\x00', 0x400, 0x200080) ioctl$VIDIOC_G_CTRL(r3, 0xc008561b, &(0x7f0000001300)={0xffffffff00000001, 0x6}) recvmsg(r0, &(0x7f0000000100)={&(0x7f0000000180)=@x25={0x9, @remote}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000200)=""/185, 0xb9}], 0x1, &(0x7f00000002c0)=""/4096, 0x1000}, 0x10000) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000001300290a000000000020000007000200", @ANYRES32=r2, @ANYBLOB="000000000000000008000c0002000000"], 0x3}}, 0x800) [ 254.563171][ T9177] ? lock_downgrade+0x880/0x880 [ 254.563190][ T9177] ? kasan_check_read+0x11/0x20 [ 254.573246][ T9177] ? do_raw_spin_unlock+0x57/0x270 [ 254.573264][ T9177] ? _raw_spin_unlock+0x2d/0x50 [ 254.573278][ T9177] ? __alloc_fd+0x430/0x530 [ 254.573306][ T9177] do_sys_open+0x3fe/0x5d0 [ 254.573325][ T9177] ? filp_open+0x80/0x80 [ 254.609810][ T9177] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 254.609825][ T9177] ? do_syscall_64+0x26/0x610 [ 254.609842][ T9177] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 254.609858][ T9177] ? do_syscall_64+0x26/0x610 [ 254.621271][ T9177] __x64_sys_open+0x7e/0xc0 [ 254.621288][ T9177] do_syscall_64+0x103/0x610 [ 254.621307][ T9177] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 254.621320][ T9177] RIP: 0033:0x411f21 [ 254.712057][ T9177] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 2a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 73 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 254.731633][ T9177] RSP: 002b:00007fbe09089a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 14:16:20 executing program 3 (fault-call:1 fault-nth:9): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 254.740016][ T9177] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000411f21 [ 254.747966][ T9177] RDX: 00007fbe09089afa RSI: 0000000000000002 RDI: 00007fbe09089af0 [ 254.755956][ T9177] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 254.763902][ T9177] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000005 [ 254.771884][ T9177] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 [ 254.783578][ T9180] bond0: Releasing backup interface bond_slave_1 [ 254.833340][ T9209] FAULT_INJECTION: forcing a failure. [ 254.833340][ T9209] name failslab, interval 1, probability 0, space 0, times 0 [ 254.847730][ T9209] CPU: 1 PID: 9209 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 254.856662][ T9209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.866723][ T9209] Call Trace: [ 254.870017][ T9209] dump_stack+0x172/0x1f0 [ 254.874351][ T9209] should_fail.cold+0xa/0x15 [ 254.878951][ T9209] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 254.884758][ T9209] ? lock_downgrade+0x880/0x880 [ 254.889600][ T9209] ? ___might_sleep+0x163/0x280 [ 254.894450][ T9209] __should_failslab+0x121/0x190 [ 254.899469][ T9209] ? loop_info64_to_compat+0x6d0/0x6d0 [ 254.904923][ T9209] should_failslab+0x9/0x14 [ 254.909427][ T9209] kmem_cache_alloc_trace+0x2d1/0x760 [ 254.914793][ T9209] ? lockdep_init_map+0x10c/0x5b0 [ 254.919818][ T9209] ? loop_info64_to_compat+0x6d0/0x6d0 [ 254.925313][ T9209] __kthread_create_on_node+0xf2/0x460 [ 254.930768][ T9209] ? lock_acquire+0x16f/0x3f0 [ 254.935437][ T9209] ? kthread_parkme+0xb0/0xb0 [ 254.940130][ T9209] ? mutex_trylock+0x1e0/0x1e0 [ 254.944888][ T9209] ? loop_info64_to_compat+0x6d0/0x6d0 [ 254.950342][ T9209] kthread_create_on_node+0xbb/0xf0 [ 254.955530][ T9209] ? __kthread_create_on_node+0x460/0x460 [ 254.961284][ T9209] ? lockdep_init_map+0x10c/0x5b0 [ 254.966299][ T9209] ? lockdep_init_map+0x10c/0x5b0 [ 254.971352][ T9209] lo_ioctl+0xafb/0x20d0 [ 254.975589][ T9209] ? lo_rw_aio+0x1530/0x1530 14:16:20 executing program 4: socket$kcm(0x11, 0x400000009, 0x300) ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x13}, 0x2c) openat$cgroup(0xffffffffffffffff, &(0x7f00000002c0)='syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000000)="743d7d516f5b0e95", 0x0}, 0x28) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='cgroup.type\x00', 0x2, 0x0) r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000000)) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000000c0), 0x10) socketpair(0x0, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000100)=""/5, 0x5}, {&(0x7f00000003c0)=""/110, 0x6e}], 0x2, &(0x7f0000000440)=""/228, 0xe4}, 0x1) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) socketpair(0x18, 0x6, 0x9, &(0x7f0000000540)) r2 = perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x90e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close(r2) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000580)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000240)={0xffffffffffffffff}, 0x13f, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000005c0)={0x7, 0x8, 0xfa00, {r3, 0x15b7e5fb8000000}}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x50, &(0x7f0000000300)}, 0x10) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000001880)={0x0, 0x0, &(0x7f00000017c0), 0x0, &(0x7f0000001840)=""/33, 0x21}, 0x0) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000600)) [ 254.980236][ T9209] blkdev_ioctl+0xee8/0x1c40 [ 254.984819][ T9209] ? blkpg_ioctl+0xa90/0xa90 [ 254.989397][ T9209] ? find_held_lock+0x35/0x130 [ 254.994157][ T9209] ? debug_check_no_obj_freed+0x211/0x444 [ 254.999877][ T9209] ? kasan_check_write+0x14/0x20 [ 255.004808][ T9209] ? __fget+0x340/0x540 [ 255.008970][ T9209] ? find_held_lock+0x35/0x130 [ 255.013735][ T9209] ? __fget+0x340/0x540 [ 255.017941][ T9209] block_ioctl+0xee/0x130 [ 255.022270][ T9209] ? blkdev_fallocate+0x410/0x410 [ 255.027296][ T9209] do_vfs_ioctl+0xd6e/0x1390 [ 255.031877][ T9209] ? ioctl_preallocate+0x210/0x210 [ 255.036965][ T9209] ? __fget+0x367/0x540 [ 255.041101][ T9209] ? ksys_dup3+0x3e0/0x3e0 [ 255.045513][ T9209] ? do_sys_open+0x31d/0x5d0 [ 255.050234][ T9209] ? security_file_ioctl+0x93/0xc0 [ 255.055322][ T9209] ksys_ioctl+0xab/0xd0 [ 255.059464][ T9209] __x64_sys_ioctl+0x73/0xb0 [ 255.064034][ T9209] do_syscall_64+0x103/0x610 [ 255.068608][ T9209] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 255.074470][ T9209] RIP: 0033:0x457ca7 [ 255.078344][ T9209] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 255.097926][ T9209] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 255.106312][ T9209] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 255.114259][ T9209] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 255.122212][ T9209] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a 14:16:20 executing program 1: socketpair$unix(0x1, 0x4000000000001, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x26e1, 0x0) process_vm_readv(0x0, 0x0, 0x170, &(0x7f00000003c0)=[{&(0x7f0000001400)=""/188, 0xbc}, {&(0x7f0000001640)=""/4096, 0x1000}], 0x2, 0x0) readv(r1, &(0x7f0000000340)=[{&(0x7f0000000100)=""/63}, {&(0x7f0000000140)=""/175}, {&(0x7f0000000200)=""/156}, {&(0x7f00000002c0)=""/86}, {&(0x7f0000001580)=""/137}, {&(0x7f0000003640)=""/158}], 0x1000000000000187) pwritev(r1, &(0x7f0000000040), 0x17a, 0x0) [ 255.130168][ T9209] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 255.138114][ T9209] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:20 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IP_VS_SO_SET_TIMEOUT(0xffffffffffffffff, 0x0, 0x48a, 0x0, 0x0) socket$inet(0x2, 0x4, 0x7ff) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x74, 0x4) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) socket$l2tp(0x18, 0x1, 0x1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x1, &(0x7f00000002c0)={0x2, 0x4e23, @local}, 0xfffffe8d) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x400, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffff9c, 0xc008640a, &(0x7f0000000240)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000280)={0x0, r2}) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x20400, 0x0) write$ppp(r3, &(0x7f00000001c0)="95f17a0e6e83f7c75d310e477123ce4171a0ccb07e37d57de43fae06a1483a2733862318c6df56da5a7a096bcf045e2c96875d0e55e813603caeeb11a98cb495b86333568eafddac98d93b912bd43a48c6711d1ba08e72ccfb246e8f6d2f43d0924db49262fea3561a88feb2846d1bced32539042a7cd9f7173b9be6b8a04b", 0x7f) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000140)=0x1, 0x4) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0xff5a) 14:16:22 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:22 executing program 3 (fault-call:1 fault-nth:10): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:22 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'bond0\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="4c000000000004000000000000000002"]}) getresuid(&(0x7f0000000080), &(0x7f0000000100), &(0x7f0000000140)=0x0) r2 = getgid() lchown(&(0x7f0000000040)='./file0\x00', r1, r2) 14:16:22 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x26, 0x44}}, &(0x7f0000000480)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2'}, 0x48) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x3f, 0x10) 14:16:22 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x10000, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000000080)=0x870, 0x4) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000000)=0xffffffffffffffff) ioctl$int_in(r2, 0x800000005452, &(0x7f0000000100)=0xc8) shutdown(r3, 0x8000000000000001) 14:16:22 executing program 5: r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) bind$x25(r0, &(0x7f0000000240)={0x9, @null=' \x00'}, 0x12) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x111001, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000001c0)={0x0, 0x1}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000280)={r3, 0x386b}, &(0x7f00000002c0)=0x8) socket$pptp(0x18, 0x1, 0x2) ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f00000000c0)={'veth1\x00', 0x800}) sched_getaffinity(r1, 0x8, &(0x7f0000000040)) bind$x25(r0, 0x0, 0x0) ptrace$setsig(0x4203, r1, 0x4, &(0x7f0000000300)={0x17, 0x5, 0xe27}) getpeername(r0, &(0x7f0000000100)=@generic, &(0x7f0000000180)=0x80) tgkill(r1, r1, 0x4) 14:16:22 executing program 0: getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000180)={0x251f}, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) inotify_init1(0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x20000c) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000001c0)) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x65, 0x4) bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e23, @broadcast}, 0x10) get_thread_area(&(0x7f0000000180)={0x0, 0x0, 0x1000, 0x0, 0x0, 0x800005, 0x2, 0x8, 0x1f, 0xd41}) setsockopt$inet_tcp_int(r1, 0x6, 0xa, &(0x7f0000000000)=0x3f8, 0x4) setsockopt$inet_sctp_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, 0x0, 0x0) pipe(&(0x7f0000000340)={0xffffffffffffffff}) r3 = syz_open_dev$admmidi(&(0x7f0000000240)='/dev/admmidi#\x00', 0xfffffffffffffff9, 0x400000) ioctl$SG_EMULATED_HOST(r3, 0x2203, &(0x7f00000003c0)) fcntl$setpipe(r0, 0x407, 0xcf) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0xd470041877f0fcc9) sendto$inet(r1, 0x0, 0x0, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local}, 0x10) shutdown(r1, 0x1) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000180)="0a5cc80700315f85715070") memfd_create(&(0x7f00000002c0)='\x10', 0x0) syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x20005) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$VIDIOC_G_CTRL(r2, 0xc008561b, &(0x7f0000000300)={0x6, 0x7}) 14:16:22 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f00000000c0)={0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) perf_event_open$cgroup(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffe, 0x2, @perf_config_ext={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000a00)=[{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)="61ba88ec348cecb09a58a1c23c809030640c024069fee717", 0x18}, {&(0x7f0000000140)="b050e9603e8ff82c78a6a3d50e", 0xd}, {&(0x7f0000000180)="bf4c6e9a7161d87d7817c3683825ea941f14594c3f656ca83d82c76304ecad97b0a610957448662ad9dacb865959ee1d56359c2a2a65e360ae94b36b04f23c97fc4b35cb48ed2b710eb22298280f532f711d8010a490749a85501776a1a27e0fbc2bc03dd61a5ce52177ec1608a756db232a18f47aa1fce636cebf83859e18ac364c95c6673b59848e403cbdd869cf68f8f551094716f16493825058ccd83f5ae0d32bb43409b520922cf1bdddbc50167c2a0f8926fc16563b2c1ce142f5548807f0d72b0a24fdf9d7cf08", 0xcb}, {&(0x7f0000000280)="8756ba0a56b755f3f1d2715e4fa2e513ea84dd079310b4623ccaa223c996de5942c74b263487464267591fe9bf3ca73d3f4f58cfd2a4acfa1cd0cc91928ed8a254009b499f6be1cdd5fa9b952d6b9570e4e29c31bcdbd2115799ca2a8ba76bb3e13468eabfd61d93f31eec020646c966017ad127f342e92305911219d2015969e1384a7e81c90cbd18bb922f201e182845940b03c003080e73040d8c93029038d3097ab391f48e4c583d1feb729f62bc1a4509802ea4609c7dc509795887e2924b606102d4e6b997f45f480f6d9b06c15e60415e58e0d146", 0xd8}, {&(0x7f0000000380)="eff6e12641af4b767ab19047789c76c222eef144741c9923be", 0x19}], 0x5, &(0x7f0000000440)=[@op={0x18}, @assoc={0x18, 0x117, 0x4, 0x2}, @iv={0xb8, 0x117, 0x2, 0xa2, "a6e99fed5d7590735472c6ca257b4c15e5c66021295fe7a7433811333cb504f3eb31b1e45e947733323e7f62e4943fa286f1d5d884a60d9adff6b68042f5d81bf4c169877509bf786eea0fbb7be8e8cfd54368ad67432df8888d04d4a7eee8e46c0ad53c8c9944ce57163b41c454a370e87bef3a29953387eae91e91bb73b2caba8831d2e14f7e37b6eee1a93134a084b918f22be43b90d25597584303bd64a9654f"}, @iv={0x90, 0x117, 0x2, 0x75, "b6b086d4f098ef3dd084af8a49053df4763217ea72cbf951d9707ba6ab590a44fd2b59bce55c7a1f2947ac96ce1dd4e40902116ba796aa5af1d07dc26efd7145e0de1e31659884a4506c7636b887aaa35dbdeeae39f7999a503fc33bb21e86b8381d5c95e33fe197428788386d51db47e204d1b012"}, @assoc={0x18, 0x117, 0x4, 0xe9}], 0x190}, {0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)="9c04e9729696d81fa065bb997f26a425ef1c3cb3fb106ab10f17d2eedae13ab6c139acd5cafcc9f320cb8d856fe18e81ff38e842d2a3f3268d985b9f39b48b482a7218bf2ccbf0777dbe3779573c6797edf595848b9fcaa570c132a282b51d4726905bd00acb819c5f342ceeb21c0fca45c784fd32d0ea2325fac001dfd625ffc12cc827e65a9565402111c00e81da127b5c4bd072386f6f606699301363341d313b31fbcbab986ee9947d0fd50f452cbe3ec55b5774c62d60dadaed9f9c313289c0beefeefdd33ec5760ce44aed6bb233f5d157aeca1f072b46d402e07da9604e9cb3b3e059c0f1e012ba037e4197b41cc6d12cf8a38a5d", 0xf8}, {&(0x7f0000000700)="cfa72a133e4b180d8efaced19b47bf54d0e2a7e160dac34699bd0c1089afe8dd5710414892173390594c1ece0d97cb69b97db142f3f941cefc116da3b3920d280315e2350148c95d638fe888ba87afc1ba86e0f8c45a5eaecec41fb72129611dcbf08b6ea51750d929c42d26bc7a4846d8b01d9514fea7d350a926c04205e6aa35ae2b8af9d900426ce602a62d8bd361032ed85fb30496d4b710cac7a03a7dadaa04ddd8f14dbd209f74e220ea5f9b902f649b4d1d3cc2f6a5ad956620a0bb76cd8d0dc6340e686ffafcdb2dde208bbf157d71f1c98bcdc47c539862223e2eebc395d1c25c4b2333a1", 0xe9}, {&(0x7f0000000800)="680d693b4b34f8681b2b47ed8d245bff6b4bea56b72fd8fe7c1097e5fa74a43a587af40bf2d2b895bbd4f673fe5e78904099b90535ae01d847f85e6896063443c911598c3b15feef828ab0cee1980f59812c1d84", 0x54}], 0x3, &(0x7f00000008c0)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x4}, @iv={0x90, 0x117, 0x2, 0x77, "64ead6d14f77c8fec34fadf0d995c944d145649c3e5887e4fb9cf295b05ec15403d53a2edf35d34d3721b9ead4564dab7c9e4d7219e00e936c19163dac8a31c2431510d92834c6e7729ab8b9218a251c5500820042445e72f604e66b74c6e7e241ac3f3f8791ac913d13e481e374ae979301702f32c655"}, @assoc={0x18, 0x117, 0x4, 0x4b8c}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x8}], 0x120}], 0x2, 0x4000000) [ 257.477554][ T9242] FAULT_INJECTION: forcing a failure. [ 257.477554][ T9242] name failslab, interval 1, probability 0, space 0, times 0 [ 257.503018][ T9242] CPU: 1 PID: 9242 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 257.512058][ T9242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.522193][ T9242] Call Trace: 14:16:22 executing program 1: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xfffffffffffffffb, 0x8000) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000100)={{{@in=@loopback, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@broadcast}}, &(0x7f0000000040)=0xe8) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x1, 0x6001, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) sendmsg$can_bcm(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x1d, r1}, 0x10, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="01000000040000040700000000000000", @ANYRES64=0x0, @ANYRES64=0x7530, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000e001000000020000e00c0200002101a5ce3755aaa5786661c2d32bddd80c3537600af92abed8a664850ab5990775bf7f2aee4806ad2f5d47386596152292825a16b81bc0a6192ae985f4f11677"], 0x80}, 0x1, 0x0, 0x0, 0x800}, 0x4) r2 = getpgrp(0xffffffffffffffff) r3 = syz_open_procfs(r2, &(0x7f0000000340)='net/rpc\x00') getdents64(r3, &(0x7f0000000400)=""/183, 0x6bd8ef4f3e22c01f) r4 = syz_open_dev$sg(&(0x7f0000000300)='/dev/sg#\x00', 0x4, 0x202500) getdents64(r3, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000600)=0x1) statx(r4, &(0x7f0000000380)='./file0\x00', 0x5000, 0xa5, &(0x7f00000004c0)) [ 257.525764][ T9242] dump_stack+0x172/0x1f0 [ 257.530098][ T9242] should_fail.cold+0xa/0x15 [ 257.534691][ T9242] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 257.540504][ T9242] ? lock_downgrade+0x880/0x880 [ 257.545340][ T9242] ? ___might_sleep+0x163/0x280 [ 257.550174][ T9242] __should_failslab+0x121/0x190 [ 257.555095][ T9242] should_failslab+0x9/0x14 [ 257.559586][ T9242] kmem_cache_alloc+0x2be/0x710 [ 257.564433][ T9242] ? __schedule+0x1387/0x1cc0 [ 257.569191][ T9242] __kernfs_new_node+0xef/0x690 [ 257.574026][ T9242] ? _raw_spin_unlock_irq+0x28/0x90 [ 257.579209][ T9242] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 257.584660][ T9242] ? __lock_acquire+0x54b/0x4790 [ 257.589576][ T9242] ? _raw_spin_unlock_irq+0x5e/0x90 [ 257.594762][ T9242] ? __schedule+0x1387/0x1cc0 [ 257.599518][ T9242] kernfs_new_node+0x99/0x130 [ 257.604182][ T9242] kernfs_create_dir_ns+0x52/0x160 [ 257.609304][ T9242] internal_create_group+0x7f8/0xc40 [ 257.614572][ T9242] ? bd_set_size+0x89/0xb0 [ 257.618977][ T9242] ? remove_files.isra.0+0x190/0x190 [ 257.624251][ T9242] sysfs_create_group+0x20/0x30 [ 257.629083][ T9242] lo_ioctl+0xf8f/0x20d0 [ 257.633318][ T9242] ? lo_rw_aio+0x1530/0x1530 [ 257.637898][ T9242] blkdev_ioctl+0xee8/0x1c40 [ 257.642474][ T9242] ? blkpg_ioctl+0xa90/0xa90 [ 257.647044][ T9242] ? find_held_lock+0x35/0x130 [ 257.651789][ T9242] ? debug_check_no_obj_freed+0x211/0x444 [ 257.657490][ T9242] ? kasan_check_write+0x14/0x20 [ 257.662409][ T9242] ? __fget+0x340/0x540 [ 257.666540][ T9242] ? find_held_lock+0x35/0x130 [ 257.671305][ T9242] ? __fget+0x340/0x540 [ 257.675448][ T9242] block_ioctl+0xee/0x130 [ 257.679764][ T9242] ? blkdev_fallocate+0x410/0x410 [ 257.684771][ T9242] do_vfs_ioctl+0xd6e/0x1390 [ 257.689347][ T9242] ? ioctl_preallocate+0x210/0x210 [ 257.694947][ T9242] ? __fget+0x367/0x540 [ 257.699192][ T9242] ? ksys_dup3+0x3e0/0x3e0 [ 257.703597][ T9242] ? do_sys_open+0x31d/0x5d0 [ 257.708174][ T9242] ? security_file_ioctl+0x93/0xc0 [ 257.713267][ T9242] ksys_ioctl+0xab/0xd0 [ 257.717406][ T9242] __x64_sys_ioctl+0x73/0xb0 [ 257.721982][ T9242] do_syscall_64+0x103/0x610 [ 257.726559][ T9242] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 257.732431][ T9242] RIP: 0033:0x457ca7 [ 257.736313][ T9242] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 257.755895][ T9242] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.764288][ T9242] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 257.772243][ T9242] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 257.780202][ T9242] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 257.788156][ T9242] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 257.796112][ T9242] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:23 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = dup2(r1, r0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f00000000c0)={r3, 0x6, 0x3, 0x2}, &(0x7f0000000100)=0x10) 14:16:23 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) fdatasync(r0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="0000000040000002fa54e72d5d345018a35e678fdf2fd40a37d61c0c7ef4938a6daf421a7846819748fd98a87ec6994b620253b36303bbb6f158108b9ac8871a9c317d4fb65082b3b24134ae9af28cf5631f661ef5b03b67e6cdd6ba0bb7beb2ad76c1c50aa5f6157b7bf8eda423c1dce16010ce7e466fe5f7a67af87f5ed0841f92cbcea3f8e25bc51e6c358a2160c4cd36a3cb157a3c4d0970360500000000000000c8ecc6be2b605903b6ab96f3a5da4bcdb4cfa6994eae681599575d43b8380000000000"], 0x1}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) r4 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r5 = socket$inet_dccp(0x2, 0x6, 0x0) listen(r5, 0x6) setsockopt(r5, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r6 = accept(r4, 0x0, &(0x7f0000000080)=0xfe0f) sendmsg$alg(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000980)="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", 0xca9}], 0x1}, 0x800) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x2710}, 0x10) r7 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x101, 0x40000) fcntl$getown(r1, 0x9) getgid() getpgid(0xffffffffffffffff) fcntl$getownex(r2, 0x10, &(0x7f0000000300)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000940), &(0x7f00000022c0)=0xc) ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000002300)) fstat(r5, &(0x7f00000000c0)) fcntl$getown(r2, 0x9) getgroups(0x3, &(0x7f00000023c0)=[0xee00, 0xee00, 0xffffffffffffffff]) getpgrp(0xffffffffffffffff) lstat(&(0x7f0000002400)='./file0\x00', &(0x7f0000002440)) sendmmsg(r5, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) sendfile(r6, r3, &(0x7f0000000180), 0x10000014e) 14:16:23 executing program 3 (fault-call:1 fault-nth:11): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 258.162978][ T9281] FAULT_INJECTION: forcing a failure. [ 258.162978][ T9281] name failslab, interval 1, probability 0, space 0, times 0 [ 258.178037][ T9281] CPU: 1 PID: 9281 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 258.186978][ T9281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.197024][ T9281] Call Trace: [ 258.200307][ T9281] dump_stack+0x172/0x1f0 [ 258.204666][ T9281] should_fail.cold+0xa/0x15 [ 258.209256][ T9281] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 258.215058][ T9281] ? lock_downgrade+0x880/0x880 [ 258.219905][ T9281] ? ___might_sleep+0x163/0x280 [ 258.224755][ T9281] __should_failslab+0x121/0x190 [ 258.229863][ T9281] should_failslab+0x9/0x14 [ 258.234374][ T9281] kmem_cache_alloc+0x2be/0x710 [ 258.239222][ T9281] ? lock_downgrade+0x880/0x880 [ 258.244070][ T9281] __kernfs_new_node+0xef/0x690 [ 258.248918][ T9281] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 258.254374][ T9281] ? wait_for_completion+0x440/0x440 [ 258.259673][ T9281] ? mutex_unlock+0xd/0x10 [ 258.264096][ T9281] ? kernfs_activate+0x192/0x1f0 [ 258.269024][ T9281] kernfs_new_node+0x99/0x130 [ 258.273680][ T9281] __kernfs_create_file+0x51/0x340 [ 258.278765][ T9281] sysfs_add_file_mode_ns+0x222/0x560 [ 258.284130][ T9281] internal_create_group+0x35b/0xc40 [ 258.289385][ T9281] ? bd_set_size+0x89/0xb0 [ 258.293786][ T9281] ? remove_files.isra.0+0x190/0x190 [ 258.299049][ T9281] sysfs_create_group+0x20/0x30 [ 258.303879][ T9281] lo_ioctl+0xf8f/0x20d0 [ 258.308108][ T9281] ? lo_rw_aio+0x1530/0x1530 [ 258.312684][ T9281] blkdev_ioctl+0xee8/0x1c40 [ 258.317253][ T9281] ? blkpg_ioctl+0xa90/0xa90 [ 258.321819][ T9281] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 258.327269][ T9281] ? retint_kernel+0x2d/0x2d [ 258.331840][ T9281] block_ioctl+0xee/0x130 [ 258.336145][ T9281] ? blkdev_fallocate+0x410/0x410 [ 258.341144][ T9281] do_vfs_ioctl+0xd6e/0x1390 [ 258.345746][ T9281] ? ioctl_preallocate+0x210/0x210 [ 258.350833][ T9281] ? __fget+0x367/0x540 [ 258.354966][ T9281] ? ksys_dup3+0x3e0/0x3e0 [ 258.359368][ T9281] ? do_sys_open+0x31d/0x5d0 [ 258.363939][ T9281] ? security_file_ioctl+0x93/0xc0 [ 258.369024][ T9281] ksys_ioctl+0xab/0xd0 [ 258.373154][ T9281] __x64_sys_ioctl+0x73/0xb0 [ 258.377720][ T9281] do_syscall_64+0x103/0x610 [ 258.382294][ T9281] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 258.388162][ T9281] RIP: 0033:0x457ca7 [ 258.392036][ T9281] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 258.411613][ T9281] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 258.420001][ T9281] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 258.427988][ T9281] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 258.436037][ T9281] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 258.443982][ T9281] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 258.451941][ T9281] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:25 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:25 executing program 1: r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x2, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x0, 0x1, 0x2, "ea7399cebf7ddc702e14861892cd878a08549fbe93ef0eb6b66506f345a384c0", 0x3}) socket$bt_bnep(0x1f, 0x3, 0x4) 14:16:25 executing program 5: mkdirat$cgroup(0xffffffffffffffff, 0x0, 0x1ff) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002", 0x11}], 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x8b, 0x10800) write$ppp(r0, &(0x7f00000000c0)="e7e17f", 0x3) 14:16:25 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ifb0\x00', 0x100000000002}) ioctl$SIOCGIFHWADDR(r0, 0x801054db, &(0x7f0000000000)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000040)='/dev/net/tun\x00'}, 0x30) r2 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000240)={0x2, [0x0, 0x0]}, &(0x7f0000000280)=0xc) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000002c0)={r3, 0x4}, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000140)=0x0) kcmp(r1, r4, 0x0, r0, r0) 14:16:25 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x8}, 0x2c) socketpair(0x1, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) socket$nl_generic(0x10, 0x3, 0x10) write$cgroup_int(r1, &(0x7f0000000980), 0xffffff4d) sendmsg$kcm(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000009c0)="26330a8bf5189fc5bb9779ff4d7bc49267f6a34129572c05807ead334cef26a4af866911da692ba5efc938d6457d6b6d49cb10e80ff4bd339a800f492b1d22c919b04aede7e1e4128775cd479e8a8bd59f6166697a123de4324d0a6cdd5d43b9d1ba4b14ab401fccf1723373b72518cf8167b1655e0ed9b503679dd21d818015fc31e8e4605b7c0fa0b8b55db1de43bc6430a6c466f0d180b1978c07d5836ae615c3197c751b3477e64d289e105beae1ed56098b995732620317ba8d0d7812c6ac1caa0f796d6eb6721f53ce013441fa15b59ebbc0cac43196ecff36b58adcfc9b4ce256ab7848baadfa55231a1a4acff1bb21e2d47c5a7b3bff0d2843bdff9773a31b981010626b88c9461d5f55ab29b06e942225de39560951ccf25ca49e5bbb36b9ea62a8ac0a0f46b2e8378dcba860bdcf7c870be7ddad574404b636942a3f9c3b7dc6986b8c7398a81340ff17f449b3dad0f9274d4c263710630fdd33bec1e2017e528bab835999c25a88d751118c4a592ab77f41bfe55f4a0b5b88ba4f3f078e41b4e173cbe4cdbcce0d0a714099e2594f7bf19c936da3072e5614c5da49b40388517ab7ba1b3cc34a4fc713382cc48b81b6cbdf1519b0b31d024061be1ed049cf6119ae689ce37b9d89b4dc8802b5cc5add8a95feb88c6c402f301fa6a2263bbdaafb647d0c81202e77b5ed8b196cb3003d3315ed5643e896191ab444955785919169a848971914f99f144203e9f229a84a2ee9ab5a8242a416ce3055ef10562cb7b4af2b4a4bc1479714abaacfc8873601f2186e6615fd0cc55e2c1712e721fb47dbd45be75df1b19e97b76753a24fa9cb2e4ac0988cddd03f8f963e27543fcfe999ed09e39f365ddfd3709ab464242bd67e902c0206cd0e49af7b0198f65c3394e32430891e369089c7f5031a50f09d3571150e4cf416e8ec2fd48af0e3d04030600324093aeaa5b8e2e9643cb01e7e9a8e5ee90825a8a0a79281e5f378d937c1d597d0884c236b421b0fe325d035a8de3acfb1d03ab5991f09cad8baeb992cb6599a36b76ee91d1e72ed84d749eba1ae7c7c16149888f6b2e19c024f32e9291b71aafb3b7fe2f9f104fca29b9ee21ee9c3cbab5f51a62171b1daee1f9301a216b9e55bcbae5044d957c9450b8dcb16f67ce54618498177d2731046f6b21e33ae4aacc568bb381827102d1dd233caf678a157105af485356e9e2f2b0a6e3a5fb92d9ad389dea93c25eab847adbc7665ae22eff65aaf9192027d2f2bd06e4f86d48388a073b4ef049c1557dbbe6773e33e7bc0d287ce22edc61ef1359f56ceb635a0fe89a6f40856e804231e3ecbb4c9687ead295b199efa82eba1ab473d2f70094612b883ca803177f9a30d304da290b602957d30d3587ef4fc6b4febb311ea895206b47f8c09c2a4904a63bb133a151e53ed07d9be9c4032e34d3639dad13d1b65379752d7e2d8bdc61ac8c7dab49ff4fa86c4abef9ce53952c21b72e56e4338972c688edbef2fd64d3adda4ecedde2dabb89de738ee8075f9fd6b6b464b76125bf9f1c83978f82cbffe2ab3aab25b66c338030951515132dc55c27458c55b5f20eaee296fee2549b1a1181d3317858ea3d9f556cc83bf0a553fa75703e92e195e4e39411cf728a7ae28fff358a45178ecf2eeb570c1b562c92c6ac2e063babf13d7a72f797fc1857e8545d7eeff99e58061961583c547e67e424b727d9a9e63558790c992777dcef38556106c6905ee9a7314bf50d9c9e0f2fb3b048c803773db331e9b6663e146e90086a0db50465b9f6052a89675f5f2791a3b478b546b752177f642c46355221c4889e757586ccc7a4f3fbdfa778a6a3fab0e40a01276758ccb0e10cf5bde004936e7eba88d4c7e0749fca344740e39a026f4c93e18a438c7e26f0bd1550df3627dd4b457e7f9f38e710e8a502f2bd9c9c14d5d9cd3cecc11bf7482eb4a42552f7ef1615776ae1f2bcc4940cf9060d724a0c1ac1fd62d3e73ffa4a4a7105c16d49b4a35231ae0aaffa56783c393ca9bb8f41fb1118b539c25b25baaed88e8c590e7ff9d8cd7db5c1623319cb5afed5fb4aa90b4114eb8c77f53ea75bec0ea319ec5f008e9e349c1524ce1405b257afbfd1e56c460f23d89773ae6c9ae5575df38ceb9a37770bfb334adbbecbe542a00371f9fdc6e9286e75a280647b0ed5dfa16975906fc55bce9224bd310e1bee640c3c890c716c762b2de33d2093d2bef840e4cdc5be330c9790a09fbe1684e4fdb6b99219afc92179e85bbc889ac07199f8304e208035336f725cfbb2ea81188f14099b6af8594035e2a26c4e56d29edf1f4928928113cc8c952d56b631fd18495184af0d6cf9aaf454b935b242ffe66ad110244ad9afd03d9f710e7dc92278555143f079180992d3ba4f16da0fcbbc0899ae2a8c9646df116d429bcadfc3fbbc41b525c5762e836fc46044ca08adaf89f00ccc8c3cb97dd5ca174a9b6f87ecb4071451cf3f117fca7108c8efe3883cc2824fd12ae69b16b2a7b66f0568a64b83e0ba2919a06312fd28adbdd346b7fd9a8857df68edb08770748f03e8a0cf8d3db3d6109d7a19ab91270b31566885f8cdac619d8fc301cb5fd26f3f223e3070ce27f4a5168db1ba4a4ac28a462454a9438dbf139fdeb43eeb6fed7645ffea2f992b9be4b6e5c6ec9586f1c128091fd33a439ca800d08f1607dad69e4be5df7942c9d02d3293a87b1549461e53abefdd1cdcbff3698631b19b78e4836a0993e3707d406cb82c63e36cabb661cb832a01ae7d2e9f35e78798cbcadb27bbdd027958a4be83f449d323903d648aba8f73e95eb430cb3b3ce110761c990441c31eab11c3fc278e79af9d5505b451850c755949fdbbb7b400ed1c2fc4c770f5191021f851d43ae243abc4e91ddd710dedf732a48250a3f1e71e28e45f6bc7892e359df8d53153108dd94d0f65a3366fd4af62971a02d6af2baea5c0b5e52f4708c025b8af81dde38ef6ea52c380cbca17958e644b039eec8d89bced952671562b66f4acb577acda78f722a48df051e154c5b9c0f2913c448c41958eba4432df33f783ef76cca9197d46ba43eb0807322ea4d7ca279795db75a0300bc5e90424e880dd93d67ed9a332b7bb99f7257d2e3a7b2ddbb0bb70ecfd6fc365c997795c4c9ba915b80899879f27bd8b6e27198e8e6be188a1cd410518165fb8cd841accb797cd4ad3633e3824e7d5653f524b5741b9898c31f836f13e59dd3cc614222ab784caaa9dee24dfbd93b0d66edb9180b0d528bba67c50c13912cd323ba99840c1d9b38459b8161a206a8dfd44a435d026ddcf8df5a1bd9fc9fbaf0716b04ea5f7b15379ab7bd215c0ab7926c97ec502cf4592b7f870bcc47ea5b982193286347053197f2e642d3f5fa086e59b42f9c81e28f18d0484e09a9b0077973391d8f2b0d1f37d97133ea66e37d2bc89fb9a9b653cc52051145c6c2b38a68cb32a3a4562af72ffbedcae239d2ffa8ade503f287981d46b42ea0ea86771931b876d7b6d185a144977957256a3d9f55a579acf827c1fd5fca250097a16b52f98620c730f6e07aeab68ceffd4bd933ba90edbe7c6ac94b4a9fad6ccc479e6734e59c2cc44eb2529f6dc9ea0635511b678e337efb544b92337d92d241c57566f8bb186877e833a2dcd7a2a70aaa45cb2fa96c66417c4bb2867b524e3530b30e0aa8658f5f8eed1ff937a1d30273f6740a4cb78455b1b410b4135632fd2f2dccb3dee3a73ee22f13de48c23630070439ec76f8a30643ba2f7abdfd266045d7884e64162cc280dbc11d6be57a56e63d80fdd4a69f1ad9213790d807db26a4503f888a1b932a36b8ae564b22f07db63059b7a1d7ee441daf103bdf34dc92bbd5a1d8fa14fa65a8f7e3e89e2ffc487af8a16111bd95ec022d22b06eaa3e9fe983958afae8a69f379f00f5cc94b7976c0c1091aa0793e91b435c1d642feaa6584fd9ef1820300c0478a288b18d47a0f7c25806a73d6e106c01900daa24d7b9dc3287770106c842c40fdceeb4072b4b33414e1dda2cb0515ea64b2cf8acb3f88b0f415808eb1831bbf81f5fbcaf35d183ad0a61ffcd1a047a2685e218bb11e6e710c9416c8fd930cdfd5eb993f6a32ed76b3b32a198fbb34b34bbcd460dce49c133d75ca60f7cb024def375153f5fc967edb75d98a8732f2f5cd3a17787bf77f5a02ef169d890ff96ef59d147962837305ce3ab20776bc01e8fe32ddd57ef386811c97b4aca3b364a4f4703222208d18dc343fb8d2ab07c48380fb331ed38a5f88171159b2e4dc0fa2164fc22a194a48366af5e2ab4925df203f20506115b794bf675dbc44dabea131272570b2e11247957f886d41b12b8a521bf56b75178ce1711f4107d7ef43f950d452787014a42f77b882df1adfeef04c16fa714b59eccb7863bd43da15da632d99101b9e8a9ffd1bec9d146c66782fa0642bf0c297c7c6febe2f0fd2c9268b6cdc6f3ac03c2463803785875ea8a2e7c6031dc4b663769a43d63f64b0a10e4e6ed119270ed17788f8d6381c80c51f9fcd6646fc764748f7d75f75fc22807021c4e560b434a89336d6aab7aa8ed2e42b3a6a46d287a945865fc10c18ec8b54df0316e2cef1487f63ca1fd3f73eed17ef07ac9050048824da91511a811baed315709557b99ac431fe3787f46bb3b4927e231b23d03fec839f5c2ef3979bedec815a05a3d27f78f12aaa4ae16b2b292c999244e528ce7c1ccfa1a2ff29bce81bbaf880a5d86b39af2c6b97305ce136bf76cb7beb4d1c5a133c68d068215974d368f04b63b3ccb4c0ad8", 0xd41}], 0x1, 0x0, 0x0, 0x4}, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000000040)=@ax25, 0x2, &(0x7f0000000000)=[{&(0x7f0000000080)=""/151, 0xffffff77}], 0x1, &(0x7f00000001c0)=""/17, 0xffda}, 0x3f00) recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0) 14:16:25 executing program 3 (fault-call:1 fault-nth:12): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 260.519191][ T9289] FAT-fs (loop5): invalid media value (0x00) [ 260.522623][ T9296] FAULT_INJECTION: forcing a failure. [ 260.522623][ T9296] name failslab, interval 1, probability 0, space 0, times 0 [ 260.540040][ T9296] CPU: 1 PID: 9296 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 260.548983][ T9296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.551286][ T9289] FAT-fs (loop5): Can't find a valid FAT filesystem [ 260.559028][ T9296] Call Trace: 14:16:25 executing program 1: r0 = syz_open_procfs(0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000340)={{0x0, 0x1, 0x8, 0x0, 'syz1\x00', 0x7fff}, 0x1, [0x5, 0x1, 0x2c958657, 0x8000, 0x2, 0x4, 0x0, 0x6, 0x9, 0x20, 0x0, 0x100, 0x0, 0x1000, 0xffffffffffffffff, 0xbbf, 0x8, 0x37, 0x9, 0x7, 0x400, 0x6, 0x0, 0x0, 0x7, 0x4, 0x10001, 0x42a7, 0x4, 0x78a100000000, 0x4, 0x1ff, 0xffffffff, 0x2, 0x400, 0x0, 0x4, 0x1, 0x100000000, 0x1, 0x0, 0x400, 0x81, 0xc6, 0x0, 0x7fff, 0x3f, 0xf8b, 0x9, 0x0, 0x0, 0xffff, 0x1, 0x5, 0xffffffffffffff1f, 0x7a, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x601f, 0x0, 0x8001, 0x0, 0x0, 0x10001, 0x3, 0x0, 0x0, 0x5, 0x1, 0x86, 0x8, 0x0, 0x8, 0xfffffffffffeffff, 0x3ff, 0x23, 0x7, 0xa413, 0x6, 0x75f5, 0x1, 0x8000, 0x3, 0x0, 0xe9e, 0x2, 0x1, 0x7d, 0x4, 0x0, 0xfff, 0x34e5, 0x0, 0x5, 0x3, 0x100000000, 0x8, 0xc63, 0x8, 0x5, 0x0, 0x1, 0x9, 0x4, 0x0, 0xc0000000000, 0x40, 0x79e7, 0x7, 0x1fef00000, 0x1, 0xfff, 0x5, 0x3896, 0x80, 0xb019, 0x7, 0x4, 0x6, 0x5, 0x100], {0x77359400}}) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32", 0x8) r1 = accept$alg(0xffffffffffffffff, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) write$UHID_INPUT2(0xffffffffffffffff, &(0x7f0000000800)=ANY=[], 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000500)={0x0}, 0x0) syz_mount_image$bfs(&(0x7f00000001c0)='bfs\x00', &(0x7f0000000200)='./file1\x00', 0x6, 0x5, &(0x7f0000000b00)=[{&(0x7f0000000840)="35de84d3e994cb532e1301cee92db349105350c45c41a13b194fe4923f023e4a085944a3004dddd09f54de19e87c294d84b42c298f387f2ef61355823ca1dcf1de69c397e4c290c466d15d4596d7af3fb4533b24d6a8f95947800695d0d987992d314018113d804c93234b486db381c0180d289ea7e4cc2734243aa5d44efa9c5249565c8e623692ee88ee4372bab0d5", 0x90, 0x14ee}, {&(0x7f0000000240)="69982636f154d61986ed9d3f7e8d683a1e42f6f66ee7eb4b8b989fab10c5aef50388bfd2c3d75a", 0x27, 0x1}, {&(0x7f0000000900)="3f8911f179b13e749e1f89a0cd9a032833e6a766fd747f188c3c02439e6e7a9901546826eefacd8c346b97627f7e2d1d9239bc7ad0d4ea44510d9cc3aa4572b78a7fa68f084acdc55dc353494acf4de4d3910a2f581847a8fa69d5a703feed7bc16a4b3775ab12536f61d8f44156aa0977205d3ba87873fd32d7bf96c6675ba96ba5ce243708", 0x86, 0x5}, {&(0x7f00000009c0)="495bc273bd44014af02d75a91a9f6ec9b8c03bea301ff44855eb673707cad8c6377d39d2ad9806b3692d5a928cad153c6dc0c2a21877e31c88299e12557561e837f5245de0762b2c1cd4b7f1e152b5fd30ff8907c4def9ef9a58c74f0f950c7b29df5d9c6c0f83b8b7aece858e8a2acdc7f29c70e4185d81f182", 0x7a, 0x1000}, {&(0x7f0000000a40)="091a92a057298702d80fb201a66e9c1debcc0d638c76ee0a61537f9333a3b3300aed28071e9cd0a3f6a433b9854c3f6fb4f436a665160dc0c27d6e430520854c9f386f685a3508c3d9cc3b1a0c1e347f14e1021742a77233935d728164f3719e53361c93fdd9e056955f91ceb5466a268b0c4c418a95d1a516cbd2a486709f65969b505f59158c6a6e1809511a8e4b29aca1708e129e41f1d2ebbcdb88199d527bec6e6afda19a8e6784e59a781b1596214ed6e68b689556e9cb0bdb0b50c343", 0xc0, 0x7}], 0x0, 0x0) ptrace$pokeuser(0x6, r2, 0x0, 0x1) r3 = socket$unix(0x1, 0x3, 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0x200002, 0x0) mkdirat$cgroup(r4, &(0x7f0000000340)='syz0\x00', 0x1ff) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x10400, 0x0) prctl$PR_GET_FP_MODE(0x2e) setsockopt$RDS_FREE_MR(r5, 0x114, 0x3, &(0x7f0000000180)={{0x2, 0x586b}, 0x11}, 0x10) fchdir(r4) ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000000b80)={0x7e00000000000, "21db71d98c90e29f9f7427cb4feecf9cc6e04d766a5ab25ef2029770bfdfb4b0", 0x104, 0x94, 0x7, 0x6, 0x4}) mkdir(&(0x7f00000002c0)='./file1\x00', 0x0) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r3, &(0x7f0000000140)={0x20000000}) faccessat(0xffffffffffffffff, 0x0, 0x10, 0x0) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) umount2(&(0x7f0000000280)='./file0\x00', 0x800000000000) recvmmsg(r1, 0x0, 0xfffffffffffffe8f, 0x40000000, 0x0) ioctl$UI_SET_PHYS(0xffffffffffffffff, 0x4008556c, 0x0) [ 260.559050][ T9296] dump_stack+0x172/0x1f0 [ 260.559072][ T9296] should_fail.cold+0xa/0x15 [ 260.559091][ T9296] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 260.559104][ T9296] ? lock_downgrade+0x880/0x880 [ 260.559123][ T9296] ? ___might_sleep+0x163/0x280 [ 260.593276][ T9296] __should_failslab+0x121/0x190 [ 260.598212][ T9296] should_failslab+0x9/0x14 [ 260.602693][ T9296] kmem_cache_alloc+0x2be/0x710 [ 260.607530][ T9296] ? find_held_lock+0x35/0x130 [ 260.612288][ T9296] ? kernfs_activate+0x192/0x1f0 [ 260.617216][ T9296] __kernfs_new_node+0xef/0x690 [ 260.622045][ T9296] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 260.627480][ T9296] ? lock_downgrade+0x880/0x880 [ 260.632310][ T9296] ? kasan_check_write+0x14/0x20 [ 260.637225][ T9296] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 260.642749][ T9296] ? wait_for_completion+0x440/0x440 [ 260.648025][ T9296] kernfs_new_node+0x99/0x130 [ 260.652681][ T9296] __kernfs_create_file+0x51/0x340 [ 260.657774][ T9296] sysfs_add_file_mode_ns+0x222/0x560 [ 260.663129][ T9296] internal_create_group+0x35b/0xc40 [ 260.668389][ T9296] ? bd_set_size+0x89/0xb0 [ 260.672792][ T9296] ? remove_files.isra.0+0x190/0x190 [ 260.678061][ T9296] sysfs_create_group+0x20/0x30 [ 260.682890][ T9296] lo_ioctl+0xf8f/0x20d0 [ 260.687120][ T9296] ? lo_rw_aio+0x1530/0x1530 [ 260.691710][ T9296] blkdev_ioctl+0xee8/0x1c40 [ 260.696419][ T9296] ? blkpg_ioctl+0xa90/0xa90 [ 260.700989][ T9296] ? find_held_lock+0x35/0x130 [ 260.705733][ T9296] ? debug_check_no_obj_freed+0x211/0x444 [ 260.711465][ T9296] ? kasan_check_write+0x14/0x20 [ 260.716402][ T9296] ? __fget+0x340/0x540 [ 260.720557][ T9296] ? find_held_lock+0x35/0x130 [ 260.725297][ T9296] ? __fget+0x340/0x540 [ 260.729438][ T9296] block_ioctl+0xee/0x130 [ 260.733739][ T9296] ? blkdev_fallocate+0x410/0x410 [ 260.738741][ T9296] do_vfs_ioctl+0xd6e/0x1390 [ 260.743306][ T9296] ? ioctl_preallocate+0x210/0x210 [ 260.748391][ T9296] ? __fget+0x367/0x540 [ 260.752533][ T9296] ? ksys_dup3+0x3e0/0x3e0 [ 260.756957][ T9296] ? do_sys_open+0x31d/0x5d0 [ 260.761528][ T9296] ? security_file_ioctl+0x93/0xc0 [ 260.766617][ T9296] ksys_ioctl+0xab/0xd0 [ 260.770772][ T9296] __x64_sys_ioctl+0x73/0xb0 [ 260.775340][ T9296] do_syscall_64+0x103/0x610 [ 260.779950][ T9296] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 260.785817][ T9296] RIP: 0033:0x457ca7 [ 260.789688][ T9296] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 260.809265][ T9296] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 14:16:26 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 260.817652][ T9296] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 260.825613][ T9296] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 260.833575][ T9296] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 260.841525][ T9296] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 260.849472][ T9296] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:26 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000000540)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x200, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r2, 0x84, 0x1c, &(0x7f0000000080), &(0x7f00000000c0)=0x4) connect$l2tp(r1, &(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x32) 14:16:26 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, 0x1, &(0x7f0000000100)=[{&(0x7f0000000080)="800000001000000019000300e60100006c0000000000000a0000000001000000004000000040000080000000000000006d5ebe5a0000ffff53ef", 0x3a, 0x3fd}], 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0xa0800, 0x0) accept(0xffffffffffffffff, &(0x7f0000000140)=@xdp={0x2c, 0x0, 0x0}, &(0x7f00000001c0)=0x80) sendmsg$can_bcm(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x1d, r1}, 0x10, &(0x7f00000002c0)={&(0x7f0000000240)={0x3, 0x10, 0x63, {0x77359400}, {}, {0x3, 0x3ff, 0x20, 0x8}, 0x1, @canfd={{0x2, 0x0, 0x100, 0x46d}, 0xe, 0x3, 0x0, 0x0, "d85ef4ba93a9d51201d058c6126e1ca8474ee29268befe99363b16c7097aeb86b6132761f196cc020fdc05197bdb7f81c84c80cf764b5dfb0c1f95e5cef23cda"}}, 0x80}, 0x1, 0x0, 0x0, 0x4044040}, 0x1) 14:16:26 executing program 3 (fault-call:1 fault-nth:13): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 261.093771][ T9311] BFS-fs: bfs_fill_super(): No BFS filesystem on loop1 (magic=26986900) [ 261.110719][ T9327] EXT4-fs (loop5): unable to read superblock [ 261.150049][ T9332] FAULT_INJECTION: forcing a failure. [ 261.150049][ T9332] name failslab, interval 1, probability 0, space 0, times 0 [ 261.166168][ T9332] CPU: 1 PID: 9332 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 261.175122][ T9332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 261.185175][ T9332] Call Trace: [ 261.188472][ T9332] dump_stack+0x172/0x1f0 [ 261.192813][ T9332] should_fail.cold+0xa/0x15 [ 261.197416][ T9332] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 261.203223][ T9332] ? lock_downgrade+0x880/0x880 [ 261.208076][ T9332] ? ___might_sleep+0x163/0x280 [ 261.212930][ T9332] __should_failslab+0x121/0x190 [ 261.217870][ T9332] should_failslab+0x9/0x14 [ 261.222385][ T9332] kmem_cache_alloc+0x2be/0x710 [ 261.227249][ T9332] ? lock_downgrade+0x880/0x880 [ 261.232097][ T9332] ? kasan_check_read+0x11/0x20 [ 261.236973][ T9332] __kernfs_new_node+0xef/0x690 [ 261.241829][ T9332] ? kernfs_dop_revalidate+0x3c0/0x3c0 14:16:26 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x6, 0x10010, r0, 0x20000000000000) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000004fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x3}) r2 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_int(r2, 0x29, 0x10000000038, 0x0, &(0x7f0000013000)) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f00000000c0)={0xbf47, 0x4, 0x0, 0x1, 0x0}, &(0x7f0000000100)=0x10) write$uinput_user_dev(r3, &(0x7f0000000200)={'syz0\x00', {0x4, 0x2448, 0x1b, 0x37a}, 0x18, [0x2, 0x80, 0x6, 0x1000, 0xffffffff, 0x8000, 0xcd, 0x6, 0x6, 0xffffffff80000001, 0xffffffff, 0x2, 0x6, 0x617, 0x10001, 0x70f5, 0x7, 0xff, 0x9, 0x3, 0x81, 0x3, 0x7fff, 0x5, 0x3, 0x3ff, 0x800, 0x8, 0x2, 0x1353, 0x2, 0x4, 0x0, 0x7ff, 0x1f, 0x1a2a0000000, 0x5, 0x5, 0x4, 0xfffffffffffffff8, 0x5, 0x0, 0x26, 0x1, 0x1, 0x45a, 0x2, 0x7, 0x2, 0x76, 0x7, 0x40, 0x4, 0x400, 0x8, 0x8001, 0x101, 0x101, 0xfffffffffffffffc, 0x0, 0x2, 0x3c5, 0x6, 0x7], [0x3, 0x5, 0x7fff, 0xce59, 0x6, 0xb3ec, 0x7, 0x6, 0x0, 0xea, 0x40, 0x401, 0x5, 0xffffffffffff7fff, 0x9, 0x7, 0x3, 0x9, 0x100000, 0x5, 0x4, 0x3f, 0x3, 0xbf94, 0x1, 0x7, 0x4, 0x244, 0xf40e, 0x6, 0x9086, 0x1000, 0x11, 0x8001, 0xffff, 0x101, 0x7, 0x0, 0x1, 0x0, 0x83df, 0x81, 0x80000000, 0x9, 0x81, 0x0, 0xc, 0x4, 0x6, 0x6, 0x1a1, 0x4, 0x5, 0x335, 0x3, 0x4, 0x7, 0x2, 0x7fffffff, 0x3f, 0x6ad15c7f, 0x8001, 0x9, 0x7], [0x40, 0x88, 0x3, 0xf1ae, 0x3, 0x9, 0x4, 0x0, 0x5, 0x20, 0x8000, 0x100, 0x1ff, 0x8, 0x6, 0x0, 0xdd9, 0x6, 0x7fffffff, 0x8001, 0xec37, 0x7ff, 0x1, 0x4, 0x0, 0x541, 0x7b0, 0xffff, 0x5, 0x5, 0x7, 0x7, 0x9, 0x3ff, 0x5, 0x1, 0x101, 0x7, 0x4, 0x80, 0x312, 0x8, 0x1, 0x10000, 0x6, 0x10000, 0x0, 0x441, 0x1f, 0x1, 0xffffffff, 0x9c4, 0x7fff, 0x7, 0x6, 0xf4e6, 0x3e09, 0x7, 0x7, 0x4, 0x5, 0x1, 0x8000, 0x2], [0x0, 0x2, 0x5, 0x1, 0xfffffffffffffffb, 0x401, 0x9, 0x800000000000000, 0x800, 0x2, 0x5, 0x6, 0xff, 0x2, 0x101, 0x20, 0x1000, 0xccc4, 0x1f, 0x7, 0x7ff, 0x5, 0x77, 0x3f, 0x8000, 0x7fff, 0x1, 0xffffffff, 0x7, 0x4, 0x4, 0x58f, 0x9, 0x9, 0x6, 0xffffffff, 0x0, 0xb80, 0x5, 0x100000001, 0x9, 0xfffffffffffffff7, 0x7f2, 0x9, 0x1, 0xe77f, 0x1f, 0x0, 0x3, 0x0, 0x9, 0x3ff, 0x5000000000000000, 0x10000000000, 0x8000, 0x58a0501c, 0x7, 0x6, 0x80000001, 0x129, 0x6, 0x3, 0x8000, 0x100000000]}, 0x45c) setsockopt$inet_sctp6_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={r4, 0x8}, 0x8) mmap(&(0x7f0000000000/0xfe3000)=nil, 0xfe3000, 0x3, 0x32, 0xffffffffffffffff, 0x0) close(r1) r5 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x410080) ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0x9) [ 261.247287][ T9332] ? wait_for_completion+0x440/0x440 [ 261.252573][ T9332] ? mutex_unlock+0xd/0x10 [ 261.256987][ T9332] ? kernfs_activate+0x192/0x1f0 [ 261.261916][ T9332] kernfs_new_node+0x99/0x130 [ 261.266596][ T9332] __kernfs_create_file+0x51/0x340 [ 261.271713][ T9332] sysfs_add_file_mode_ns+0x222/0x560 [ 261.277099][ T9332] internal_create_group+0x35b/0xc40 [ 261.282385][ T9332] ? bd_set_size+0x89/0xb0 [ 261.286787][ T9332] ? remove_files.isra.0+0x190/0x190 [ 261.292079][ T9332] sysfs_create_group+0x20/0x30 [ 261.296915][ T9332] lo_ioctl+0xf8f/0x20d0 [ 261.301156][ T9332] ? lo_rw_aio+0x1530/0x1530 [ 261.305724][ T9332] blkdev_ioctl+0xee8/0x1c40 [ 261.310306][ T9332] ? blkpg_ioctl+0xa90/0xa90 [ 261.314884][ T9332] ? find_held_lock+0x35/0x130 [ 261.319653][ T9332] ? debug_check_no_obj_freed+0x211/0x444 [ 261.325350][ T9332] ? kasan_check_write+0x14/0x20 [ 261.330269][ T9332] ? __fget+0x340/0x540 [ 261.334416][ T9332] ? find_held_lock+0x35/0x130 [ 261.339153][ T9332] ? __fget+0x340/0x540 [ 261.343287][ T9332] block_ioctl+0xee/0x130 [ 261.347591][ T9332] ? blkdev_fallocate+0x410/0x410 [ 261.352612][ T9332] do_vfs_ioctl+0xd6e/0x1390 [ 261.357180][ T9332] ? ioctl_preallocate+0x210/0x210 [ 261.362274][ T9332] ? __fget+0x367/0x540 [ 261.366412][ T9332] ? ksys_dup3+0x3e0/0x3e0 [ 261.370891][ T9332] ? do_sys_open+0x31d/0x5d0 [ 261.375482][ T9332] ? security_file_ioctl+0x93/0xc0 [ 261.380570][ T9332] ksys_ioctl+0xab/0xd0 [ 261.384706][ T9332] __x64_sys_ioctl+0x73/0xb0 [ 261.389276][ T9332] do_syscall_64+0x103/0x610 [ 261.393848][ T9332] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 261.399718][ T9332] RIP: 0033:0x457ca7 [ 261.403589][ T9332] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 261.423168][ T9332] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 261.431565][ T9332] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 261.439514][ T9332] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 261.447462][ T9332] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 261.455412][ T9332] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 261.463359][ T9332] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:26 executing program 0: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x1, @rand_addr=0x80}}, 0x1e) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$int_in(r0, 0xa00000c0045006, &(0x7f0000000040)=0x4000000000000) ioctl$KDENABIO(r0, 0x4b36) 14:16:27 executing program 3 (fault-call:1 fault-nth:14): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 261.663707][ T9327] EXT4-fs (loop5): unable to read superblock [ 261.702646][ T9311] BFS-fs: bfs_fill_super(): No BFS filesystem on loop1 (magic=26986900) 14:16:27 executing program 5: r0 = syz_open_dev$sndmidi(&(0x7f0000000380)='/dev/snd/midiC#D#\x00', 0xe440, 0x1) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/btrfs-control\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0x3c00000000000, 0x3, [0x9, 0x5, 0x0]}, &(0x7f0000000200)=0xe) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000240)={r2, 0xed, "f1cd53f844ea5c64c05b596ac613825144bfdf0cc7f0756e31b542844f83cd3db2b7a4177b02930c31b856d7dfd00fe1a312088cf2c03ac497aaf31f68e39bd8e80edc11f396873e181d4ddd339993f09d159302a1f1d3032d112edf0507be177b5a993cdfcab5e2db6aad5844a7a432f21b2dbd7e4acc36151edc4dac946d4cc4d18942eda1ae08e74e21a8050a9578d6dfbdc6b11ae6145af3ef842e01e8d5e12d7cf8fc7fa72610b87181535586fffd36ee29605432d5042a3670260683d4a1502b52bdd7632a929c11e7e95e04303cfd0bedc020c3933971f760c749d50ed71361443a5dd3181996bf1031"}, &(0x7f0000000340)=0xf5) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0xc0305710, &(0x7f0000000040)) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r3) close(r0) 14:16:27 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x1, 0x40000) ioctl$TIOCLINUX6(r2, 0x541c, &(0x7f0000000100)={0x6, 0x1}) mmap(&(0x7f00009bc000/0x3000)=nil, 0x3000, 0x0, 0x30, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, 0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_REGISTER(r1, 0xc028aa03, &(0x7f0000000080)={{&(0x7f00005e3000/0x800000)=nil, 0x800000}, 0x200000}) ioctl$VIDIOC_QUERYSTD(r2, 0x8008563f, &(0x7f0000000140)) 14:16:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4cf6ea00", @ANYRES16=r1, @ANYBLOB="1d0500000000000000000200000004000100"], 0x18}}, 0x0) 14:16:27 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) close(r0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'veth1Tto_bond\x00', 0x3802}) 14:16:27 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000040)=ANY=[@ANYBLOB="2f6465762f6e62cd50ce5a4a5cf74f876f4e76ea6420fbdec1df5a970915"], &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)='gfs2\x00', 0x0, 0x0) ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) [ 261.939505][ T9368] FAULT_INJECTION: forcing a failure. [ 261.939505][ T9368] name failslab, interval 1, probability 0, space 0, times 0 [ 261.961871][ T9368] CPU: 0 PID: 9368 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 261.970816][ T9368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 261.970824][ T9368] Call Trace: [ 261.970846][ T9368] dump_stack+0x172/0x1f0 [ 261.970871][ T9368] should_fail.cold+0xa/0x15 [ 261.970905][ T9368] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 261.970920][ T9368] ? lock_downgrade+0x880/0x880 [ 261.970939][ T9368] ? ___might_sleep+0x163/0x280 [ 261.970959][ T9368] __should_failslab+0x121/0x190 [ 261.970976][ T9368] should_failslab+0x9/0x14 [ 261.970992][ T9368] kmem_cache_alloc+0x2be/0x710 [ 261.971010][ T9368] ? lock_downgrade+0x880/0x880 [ 261.984325][ T9368] ? kasan_check_read+0x11/0x20 [ 261.984348][ T9368] __kernfs_new_node+0xef/0x690 [ 261.984372][ T9368] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 261.993261][ T9368] ? wait_for_completion+0x440/0x440 [ 261.993287][ T9368] ? mutex_unlock+0xd/0x10 [ 261.993307][ T9368] ? kernfs_activate+0x192/0x1f0 [ 261.993326][ T9368] kernfs_new_node+0x99/0x130 [ 262.003939][ T9368] __kernfs_create_file+0x51/0x340 [ 262.003960][ T9368] sysfs_add_file_mode_ns+0x222/0x560 [ 262.003987][ T9368] internal_create_group+0x35b/0xc40 [ 262.013717][ T9368] ? bd_set_size+0x89/0xb0 [ 262.013744][ T9368] ? remove_files.isra.0+0x190/0x190 [ 262.013771][ T9368] sysfs_create_group+0x20/0x30 [ 262.013791][ T9368] lo_ioctl+0xf8f/0x20d0 [ 262.023111][ T9368] ? lo_rw_aio+0x1530/0x1530 [ 262.023131][ T9368] blkdev_ioctl+0xee8/0x1c40 [ 262.023149][ T9368] ? blkpg_ioctl+0xa90/0xa90 [ 262.023168][ T9368] ? trace_hardirqs_on_caller+0x6a/0x220 [ 262.032832][ T9368] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 262.032851][ T9368] ? __fget+0x340/0x540 [ 262.032868][ T9368] ? find_held_lock+0x35/0x130 [ 262.032887][ T9368] ? __fget+0x340/0x540 [ 262.043267][ T9368] block_ioctl+0xee/0x130 [ 262.043281][ T9368] ? blkdev_fallocate+0x410/0x410 [ 262.043306][ T9368] do_vfs_ioctl+0xd6e/0x1390 [ 262.043324][ T9368] ? ioctl_preallocate+0x210/0x210 [ 262.043341][ T9368] ? __fget+0x367/0x540 [ 262.052993][ T9368] ? ksys_dup3+0x3e0/0x3e0 [ 262.053011][ T9368] ? do_sys_open+0x31d/0x5d0 [ 262.053035][ T9368] ? security_file_ioctl+0x93/0xc0 [ 262.053058][ T9368] ksys_ioctl+0xab/0xd0 [ 262.062646][ T9368] __x64_sys_ioctl+0x73/0xb0 [ 262.062665][ T9368] do_syscall_64+0x103/0x610 [ 262.062687][ T9368] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 262.062703][ T9368] RIP: 0033:0x457ca7 [ 262.073133][ T9368] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 262.073142][ T9368] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 262.073157][ T9368] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 262.073166][ T9368] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 262.073174][ T9368] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 262.073183][ T9368] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 262.073195][ T9368] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:29 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:29 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x11, 0x4, 0x4, 0x7}, 0x2c) timer_create(0x2, &(0x7f0000000000)={0x0, 0x1b, 0x4}, &(0x7f0000000040)=0x0) timer_settime(r1, 0x0, &(0x7f0000000080)={{0x77359400}}, &(0x7f00000000c0)) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000c88000)={r0, 0x0, &(0x7f000089b000)}, 0x18) 14:16:29 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) ioctl$int_in(r0, 0x0, &(0x7f0000000040)=0xc27d) sendto$inet6(r0, &(0x7f00000000c0)="ab", 0x1, 0x0, 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x20000, 0x0) read$eventfd(r1, &(0x7f0000000100), 0x8) recvmsg(r0, &(0x7f0000000380)={&(0x7f0000000140)=@can, 0x80, 0x0}, 0x0) seccomp(0x0, 0x1, &(0x7f0000000200)={0x4, &(0x7f00000001c0)=[{0x24, 0x1000, 0x0, 0x1}, {0x2, 0x401, 0xfffffffffffffff9, 0x4}, {0x10001, 0xffffffffffff537d, 0x100000001}, {0x3a, 0x2, 0xab, 0x5}]}) 14:16:29 executing program 1: r0 = syz_open_dev$vcsn(0x0, 0x0, 0x2) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_TSC_KHZ(r0, 0xaea3) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000480)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[&\xe5\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ}\xb7\xf3\xfe\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4', 0x2761, 0x0) write$cgroup_pid(r1, &(0x7f0000000100), 0xda4fff08) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x660c, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000000), 0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3ff, 0x6, 0x7, 0x2, 0x8000}, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x3) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=ANY=[@ANYBLOB="00002dbd700000000000100000002c000500080001006962000008000100657468000800010065"], 0x1}}, 0x2000c0c4) getrlimit(0xa, &(0x7f0000000240)) 14:16:29 executing program 0: syz_mount_image$minix(&(0x7f00000000c0)='minix\x00', &(0x7f0000000080)='./file0\x00', 0x6c000000, 0x1, &(0x7f0000000240)=[{&(0x7f0000000100)="600084e002000a00900cda40ff1ad5c98f13", 0x12, 0x400}], 0x3, 0x0) r0 = creat(&(0x7f0000000140)='./file0\x00', 0xe8) ioctl$TIOCSCTTY(r0, 0x540e, 0x3) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x420000, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000040)=0x800, 0x8) 14:16:29 executing program 3 (fault-call:1 fault-nth:15): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:29 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 264.091060][ T9402] FAULT_INJECTION: forcing a failure. [ 264.091060][ T9402] name failslab, interval 1, probability 0, space 0, times 0 [ 264.116802][ T9399] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 264.117662][ T9402] CPU: 1 PID: 9402 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 14:16:29 executing program 4: ioctl$VIDIOC_G_JPEGCOMP(0xffffffffffffffff, 0x808c563d, &(0x7f00000000c0)) r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000180)={0x8001, 0x20, 0x100000001}) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000040)={0x0, 0x7ff, 0x0, 0x6, 0x1}, &(0x7f0000000080)=0x18) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f00000001c0)={r2, 0x81, 0x30, 0x9, 0x1ff}, &(0x7f0000000200)=0x18) ioctl$sock_SIOCETHTOOL(r1, 0x89f2, &(0x7f0000000240)={'rose0\x00', &(0x7f0000000200)=ANY=[]}) [ 264.134161][ T9402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.144222][ T9402] Call Trace: [ 264.147517][ T9402] dump_stack+0x172/0x1f0 [ 264.151859][ T9402] should_fail.cold+0xa/0x15 [ 264.156450][ T9402] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 264.162239][ T9402] ? lock_downgrade+0x880/0x880 [ 264.165030][ T9399] minix_free_inode: bit 1 already cleared [ 264.167084][ T9402] ? ___might_sleep+0x163/0x280 [ 264.167109][ T9402] __should_failslab+0x121/0x190 [ 264.167131][ T9402] should_failslab+0x9/0x14 [ 264.187141][ T9402] kmem_cache_alloc+0x2be/0x710 [ 264.191995][ T9402] ? lock_downgrade+0x880/0x880 [ 264.196848][ T9402] ? kasan_check_read+0x11/0x20 [ 264.201707][ T9402] __kernfs_new_node+0xef/0x690 [ 264.206560][ T9402] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 264.212113][ T9402] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 264.217571][ T9402] ? lockdep_hardirqs_on+0x418/0x5d0 [ 264.222853][ T9402] ? retint_kernel+0x2d/0x2d [ 264.227436][ T9402] ? trace_hardirqs_on_caller+0x6a/0x220 [ 264.233078][ T9402] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 264.238558][ T9402] kernfs_new_node+0x99/0x130 [ 264.243239][ T9402] __kernfs_create_file+0x51/0x340 [ 264.248352][ T9402] sysfs_add_file_mode_ns+0x222/0x560 [ 264.253740][ T9402] internal_create_group+0x35b/0xc40 [ 264.259023][ T9402] ? bd_set_size+0x89/0xb0 [ 264.263447][ T9402] ? remove_files.isra.0+0x190/0x190 [ 264.268741][ T9402] sysfs_create_group+0x20/0x30 [ 264.273598][ T9402] lo_ioctl+0xf8f/0x20d0 [ 264.278276][ T9402] ? lo_rw_aio+0x1530/0x1530 [ 264.282873][ T9402] blkdev_ioctl+0xee8/0x1c40 [ 264.287466][ T9402] ? blkpg_ioctl+0xa90/0xa90 14:16:29 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r0, 0x0) mbind(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000000), 0x45, 0x2) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x1, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000002c0)={0xffffffffffffffff}, 0x111, 0xf}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000340)={0x13, 0x10, 0xfa00, {&(0x7f00000000c0), r2}}, 0x18) [ 264.292050][ T9402] ? find_held_lock+0x35/0x130 [ 264.296848][ T9402] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 264.302292][ T9402] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 264.307742][ T9402] ? lockdep_hardirqs_on+0x418/0x5d0 [ 264.313027][ T9402] ? retint_kernel+0x2d/0x2d [ 264.317609][ T9402] ? __fget+0x340/0x540 [ 264.321775][ T9402] ? find_held_lock+0x35/0x130 [ 264.326535][ T9402] ? __fget+0x340/0x540 [ 264.330692][ T9402] block_ioctl+0xee/0x130 [ 264.335020][ T9402] ? blkdev_fallocate+0x410/0x410 [ 264.340045][ T9402] do_vfs_ioctl+0xd6e/0x1390 [ 264.344645][ T9402] ? ioctl_preallocate+0x210/0x210 [ 264.349770][ T9402] ? __fget+0x367/0x540 [ 264.353924][ T9402] ? ksys_dup3+0x3e0/0x3e0 [ 264.358342][ T9402] ? do_sys_open+0x31d/0x5d0 [ 264.362935][ T9402] ? security_file_ioctl+0x93/0xc0 [ 264.368043][ T9402] ksys_ioctl+0xab/0xd0 [ 264.372207][ T9402] __x64_sys_ioctl+0x73/0xb0 [ 264.376800][ T9402] do_syscall_64+0x103/0x610 [ 264.381399][ T9402] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 264.387286][ T9402] RIP: 0033:0x457ca7 [ 264.391175][ T9402] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 264.410767][ T9402] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 264.419173][ T9402] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 264.427153][ T9402] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 264.435117][ T9402] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 264.443101][ T9402] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 264.451078][ T9402] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:29 executing program 3 (fault-call:1 fault-nth:16): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 264.648828][ T9399] MINIX-fs: mounting unchecked file system, running fsck is recommended 14:16:30 executing program 4: r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ppoll(&(0x7f00000000c0)=[{r0, 0x41}], 0x1, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0x80, 0x2, 0x40, 0x3, 0x3, 0x3, 0x5, 0x1d1, 0x40, 0x387, 0x40, 0x3, 0x38, 0x1, 0x6, 0x4, 0x5}, [{0x2, 0x1, 0x401, 0x99b, 0x4, 0x0, 0x6, 0x8001}], "f1f428514a3a08dee440e5d4c462ead3ad21e6e478eaacd35beb89b1fb5d5002be064af5b601a4e712a0115a03d3bdad94587e80b0a7836274db55ff9032997a8b535ec732edd3cf41b44ba6a51d4645575343c1ce2124c85db90b4ceac25a773bc1b3f5f4ce60afd0a9ad21328bdf073e6de73ba958583f03c285a23c19ae01592a5507d9462a07ce24a8b91d52e604cb6a5a2f355d601b2d807114e2c871181cf0", [[], [], [], [], []]}, 0x61a) 14:16:30 executing program 5: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x14) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0x5, 0x800000008, 0x7fff, 0x8000000001}, 0x2c) ioctl$SIOCGETLINKNAME(r0, 0x89e0, &(0x7f0000000040)={0x7, 0x1}) r2 = bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x1d0) mmap(&(0x7f0000dff000/0x200000)=nil, 0x200000, 0x0, 0x11, r2, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x10, r1, 0x0) mkdirat$cgroup(r0, &(0x7f00000000c0)='syz0\x00', 0x1ff) [ 264.729310][ T9399] minix_free_inode: bit 1 already cleared [ 264.781092][ T9438] FAULT_INJECTION: forcing a failure. [ 264.781092][ T9438] name failslab, interval 1, probability 0, space 0, times 0 [ 264.794325][ T9438] CPU: 1 PID: 9438 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 264.803255][ T9438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.813304][ T9438] Call Trace: [ 264.816601][ T9438] dump_stack+0x172/0x1f0 [ 264.820935][ T9438] should_fail.cold+0xa/0x15 [ 264.825529][ T9438] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 264.831342][ T9438] ? lock_downgrade+0x880/0x880 [ 264.836195][ T9438] ? ___might_sleep+0x163/0x280 [ 264.841051][ T9438] __should_failslab+0x121/0x190 [ 264.845987][ T9438] should_failslab+0x9/0x14 [ 264.850490][ T9438] kmem_cache_alloc+0x2be/0x710 [ 264.855341][ T9438] ? lock_downgrade+0x880/0x880 [ 264.860187][ T9438] ? kasan_check_read+0x11/0x20 [ 264.865054][ T9438] __kernfs_new_node+0xef/0x690 [ 264.869907][ T9438] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 264.875368][ T9438] ? wait_for_completion+0x440/0x440 [ 264.880661][ T9438] ? mutex_unlock+0xd/0x10 [ 264.885077][ T9438] ? kernfs_activate+0x192/0x1f0 [ 264.890021][ T9438] kernfs_new_node+0x99/0x130 [ 264.894710][ T9438] __kernfs_create_file+0x51/0x340 [ 264.899834][ T9438] sysfs_add_file_mode_ns+0x222/0x560 [ 264.905221][ T9438] internal_create_group+0x35b/0xc40 [ 264.910504][ T9438] ? bd_set_size+0x89/0xb0 [ 264.914909][ T9438] ? remove_files.isra.0+0x190/0x190 [ 264.920191][ T9438] sysfs_create_group+0x20/0x30 [ 264.925035][ T9438] lo_ioctl+0xf8f/0x20d0 [ 264.929265][ T9438] ? lo_rw_aio+0x1530/0x1530 [ 264.933841][ T9438] blkdev_ioctl+0xee8/0x1c40 [ 264.938415][ T9438] ? blkpg_ioctl+0xa90/0xa90 [ 264.943000][ T9438] ? find_held_lock+0x35/0x130 [ 264.947753][ T9438] ? debug_check_no_obj_freed+0x211/0x444 [ 264.953461][ T9438] ? kasan_check_write+0x14/0x20 [ 264.958378][ T9438] ? __fget+0x340/0x540 [ 264.962509][ T9438] ? find_held_lock+0x35/0x130 [ 264.967283][ T9438] ? __fget+0x340/0x540 [ 264.971417][ T9438] block_ioctl+0xee/0x130 [ 264.975725][ T9438] ? blkdev_fallocate+0x410/0x410 [ 264.980725][ T9438] do_vfs_ioctl+0xd6e/0x1390 [ 264.985293][ T9438] ? ioctl_preallocate+0x210/0x210 [ 264.990379][ T9438] ? __fget+0x367/0x540 [ 264.994533][ T9438] ? ksys_dup3+0x3e0/0x3e0 [ 264.998924][ T9438] ? do_sys_open+0x31d/0x5d0 [ 265.003499][ T9438] ? security_file_ioctl+0x93/0xc0 [ 265.008587][ T9438] ksys_ioctl+0xab/0xd0 [ 265.012726][ T9438] __x64_sys_ioctl+0x73/0xb0 [ 265.017314][ T9438] do_syscall_64+0x103/0x610 [ 265.021890][ T9438] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 265.027759][ T9438] RIP: 0033:0x457ca7 [ 265.031637][ T9438] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 265.051216][ T9438] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 265.059617][ T9438] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 265.067569][ T9438] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 14:16:30 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000040)=0x9, 0x4) sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x0) bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0x0, 0x0) timer_create(0x0, &(0x7f00000001c0)={0x0, 0x38, 0x7, @thr={&(0x7f0000000780)="757b056d3655811fdb774f070348a5657683549866b337d8f22965aedc8bf397125dcda89d4a35233403b2fb744f685c564e2131d99e0a758625ac7757214a7ea4d27c4a4b8a019c5ec49132648fa98e080a74df2e0964af8d3c5c2442ba7c10a9cb16d1e3712e5cf5416934e5b6f819501bfbcbebc562465770206080e87f2dab21af7714452be97d59ee92037f5c0ff72a4009a48344f82117e167b106a91d91069139e9cf8aa225d6405ff08ab419e713d9f3823affe3c6a8075b44671e9311aa723119980fd7c3b7d18e", &(0x7f0000000880)="5b87aedde44a8c9c3888cc8755f93f1b1742dec3a774490615ef8e56da041b34b345e62988edafad6898e7d2448fee6f9fe812500846e32939abaf7774e395659c72cd19c297906546c3478485f74486af59bf06ab2ce6d4432ad96d0e6862ac0b486e3cfa75119fec152766d27e557575ccaaba2bd4b0cf7af67ecd37056cf4af25891f67fbfec205456955736339e5771aee7f3db62f641f2f9edcc590e57f30187583dbfae7ab1114416d74e480"}}, &(0x7f0000000240)=0x0) timer_getoverrun(r0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x4200, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000003c0)={0x0, 0x7c1a, 0x10}, &(0x7f0000000540)=0xc) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000680)=ANY=[@ANYBLOB="8cd5e1f4c69c65720c70aa7546930a0754a97f08daad8b9a91380fd55456de71e293186465c58ea87df606077d16ba44b9b30ad24881914bd50fde7386509672aca6d703fffa6b5ec533b4472392d274d48139a9bb617cb21d61631233ce32554caff290d3763e1165bc61e22ac1b9a62b13872a6c91f9bc36b29b399af7ceae9798de57dbf9add40f54ca43743294b4e3a7e58e356823938f3bdf69f5c4e770d26a072d08e5df85bb02025b0586d2dcc74a91803d189d1d18b10452d00ec61a58cc689b54f5757358bf4975a82e71959f69bbd32479bec29dc4e4c5"], 0x0) r3 = syz_open_dev$loop(&(0x7f0000000400)='/dev/loop#\x00', 0x0, 0x182) io_setup(0x100000000, &(0x7f0000000140)) io_setup(0x0, &(0x7f0000000300)) io_setup(0x200, &(0x7f0000000440)) io_setup(0x6, &(0x7f0000000480)) io_setup(0x7, &(0x7f00000004c0)) io_setup(0x6, &(0x7f0000000600)) io_setup(0x5, 0x0) io_setup(0x100, 0x0) io_destroy(0x0) r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) add_key$user(&(0x7f0000000280)='user\x00', &(0x7f00000002c0), &(0x7f0000000180)="7dd76e437497d4e876da61", 0xb, 0xfffffffffffffffb) sendfile(r3, r4, &(0x7f0000000380)=0x4, 0x2000005) ioctl$LOOP_CLR_FD(r3, 0x4c01) socket(0x0, 0x0, 0x10001) ioctl$LOOP_SET_FD(r3, 0x4c00, r4) [ 265.077513][ T9438] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 265.085458][ T9438] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 265.093505][ T9438] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:30 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000200)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000140), 0x1c) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x484400, 0x0) connect$ax25(r1, &(0x7f0000000240)={{0x3, @bcast, 0x5}, [@null, @null, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) ioctl$int_in(r0, 0x5421, &(0x7f0000000380)=0x801) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x11a) r2 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={[], [], @dev}}, 0x1c) bind$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100), 0x28) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') bind$vsock_stream(r1, &(0x7f00000001c0)={0x28, 0x0, 0x2711, @reserved}, 0x10) sendfile(r0, r3, &(0x7f0000000600)=0xb00, 0x10000) 14:16:30 executing program 3 (fault-call:1 fault-nth:17): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:30 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x500, 0x0) r3 = socket(0x8, 0x800, 0xc8) ioctl$NBD_SET_SOCK(r2, 0xab00, r3) connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast2}, 0x10) r4 = socket(0xa, 0x1, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r4, 0x0, 0x2a, &(0x7f00000001c0)={0x2, {{0x2, 0x0, @multicast2}}}, 0xcf) setsockopt$inet_mreqn(r1, 0x0, 0x21, &(0x7f00000002c0)={@empty, @local}, 0xb) 14:16:30 executing program 5: r0 = socket(0x2000000000000021, 0x2, 0x2) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1400000000000000100100000d00000077000000"], 0x14}}], 0x1, 0x0) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000000)=@get={0x1, &(0x7f0000000100)=""/4096, 0x80000000}) [ 265.367629][ T9466] FAULT_INJECTION: forcing a failure. [ 265.367629][ T9466] name failslab, interval 1, probability 0, space 0, times 0 [ 265.392448][ T9466] CPU: 1 PID: 9466 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 265.401399][ T9466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 265.411441][ T9466] Call Trace: [ 265.414726][ T9466] dump_stack+0x172/0x1f0 [ 265.419057][ T9466] should_fail.cold+0xa/0x15 [ 265.423640][ T9466] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 265.429436][ T9466] ? lock_downgrade+0x880/0x880 [ 265.434283][ T9466] ? ___might_sleep+0x163/0x280 [ 265.439129][ T9466] __should_failslab+0x121/0x190 [ 265.444066][ T9466] should_failslab+0x9/0x14 [ 265.448563][ T9466] kmem_cache_alloc_trace+0x2d1/0x760 [ 265.453943][ T9466] kobject_uevent_env+0x2fb/0x1030 [ 265.459063][ T9466] kobject_uevent+0x20/0x26 [ 265.463560][ T9466] lo_ioctl+0x100b/0x20d0 [ 265.467884][ T9466] ? lo_rw_aio+0x1530/0x1530 [ 265.472478][ T9466] blkdev_ioctl+0xee8/0x1c40 [ 265.477062][ T9466] ? blkpg_ioctl+0xa90/0xa90 [ 265.481652][ T9466] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 265.487107][ T9466] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 265.492562][ T9466] ? lockdep_hardirqs_on+0x418/0x5d0 [ 265.497836][ T9466] ? retint_kernel+0x2d/0x2d [ 265.502413][ T9466] ? trace_hardirqs_on_caller+0x6a/0x220 [ 265.508041][ T9466] ? __fget+0x340/0x540 [ 265.512197][ T9466] ? find_held_lock+0x35/0x130 [ 265.516967][ T9466] ? __fget+0x340/0x540 [ 265.521130][ T9466] block_ioctl+0xee/0x130 [ 265.525652][ T9466] ? blkdev_fallocate+0x410/0x410 [ 265.530676][ T9466] do_vfs_ioctl+0xd6e/0x1390 [ 265.535264][ T9466] ? __fget+0x462/0x540 [ 265.539421][ T9466] ? ioctl_preallocate+0x210/0x210 [ 265.544528][ T9466] ? __fget+0x367/0x540 [ 265.548669][ T9466] ? ksys_dup3+0x3e0/0x3e0 [ 265.553071][ T9466] ? do_sys_open+0x31d/0x5d0 [ 265.557645][ T9466] ? security_file_ioctl+0x93/0xc0 [ 265.562748][ T9466] ksys_ioctl+0xab/0xd0 [ 265.566887][ T9466] __x64_sys_ioctl+0x73/0xb0 [ 265.571453][ T9466] do_syscall_64+0x103/0x610 [ 265.576024][ T9466] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 265.581888][ T9466] RIP: 0033:0x457ca7 [ 265.585758][ T9466] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 265.605335][ T9466] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 14:16:30 executing program 1: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x4000, 0x0) mq_timedsend(r0, &(0x7f0000000340)="90ca382dc142fdc37ae906d2dbeecd4c28a9688f4879e7ffc8edcf0a90bd0210350c33e3d23768a0ef975e3ede722fb4f995ac4ae20ace20093ee5ff8be7e362b4e9a4506582899aec2e1beb496f49e19d16ac5fce77dd270543f22db61567ae3d7c170d31137481046b146faaac9b28c4ca2d5121622eea4ed844781f110e08407107c5821232deab9640f9b2d30e40d274a9d0ac40cbd8c9854f95806d0d56e3443671d73706efc320e5ee4a6f9275829845b1b0848fbba9f00a3b647ba0d04a8cb7906badecffc6d88115", 0xcc, 0xffffffff, &(0x7f00000001c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0xfffffffffffffdce}, 0xfffffffffffffd9f) r1 = socket$kcm(0xa, 0x5, 0x0) personality(0x0) sendmsg(r1, &(0x7f00000006c0)={&(0x7f0000000100)=@in={0xa, 0x0, @local={0xac, 0x2c0}}, 0xffd6, &(0x7f0000000640), 0x98, &(0x7f0000000280)=ANY=[@ANYBLOB="2000002923001000ffff00002829e43d2a59aa27dbea2dc16253216872473c09000000da75945ebdc623e4150ff57927f122258db77e8a7f6eff65c88daf0b2c97f08bebe8cd682c70590bd0fd81c06082237c08f80036dba60df601122e08a465bdbaa75f6e20c479d59500000000f97a3e82859c3c9dd8000000eeff0000475d8d5218f196edec3423359ca121f6959d6f46c76254a6858eb3ebb5b669dc6e7255e78600bdcd"], 0x20}, 0x0) ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, &(0x7f0000000080)={'team0\x00', {0x2, 0x4e23, @multicast2}}) r2 = socket(0x5, 0x801, 0xb45) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000000)={0xffffffff}, 0x1) connect$rds(r2, &(0x7f00000000c0)={0x2, 0x4e21, @local}, 0x10) [ 265.613745][ T9466] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 265.621702][ T9466] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 265.629647][ T9466] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 265.637601][ T9466] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 265.645559][ T9466] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:32 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:32 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000200)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000140), 0x1c) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x484400, 0x0) connect$ax25(r1, &(0x7f0000000240)={{0x3, @bcast, 0x5}, [@null, @null, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) ioctl$int_in(r0, 0x5421, &(0x7f0000000380)=0x801) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x11a) r2 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={[], [], @dev}}, 0x1c) bind$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local}, 0x14) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100), 0x28) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') bind$vsock_stream(r1, &(0x7f00000001c0)={0x28, 0x0, 0x2711, @reserved}, 0x10) sendfile(r0, r3, &(0x7f0000000600)=0xb00, 0x10000) 14:16:32 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x9, 0xfffffffffffffffd) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000006c0)="0af51f023c123f3188a070") ioctl$SG_IO(r0, 0x2285, &(0x7f0000000340)={0x53, 0xfffffffe, 0x6, 0x0, @scatter={0x0, 0x2, 0x0}, &(0x7f0000000080)="a939206c7748", 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x5, 0x2) ioctl$EVIOCGKEYCODE_V2(r2, 0x80284504, &(0x7f00000000c0)=""/210) 14:16:32 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x7, 0x1, 0x4c}]}, &(0x7f0000000040)='syzkaller\x00', 0x1, 0xfb, &(0x7f0000002880)=""/251}, 0x48) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x2002, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x7) 14:16:32 executing program 3 (fault-call:1 fault-nth:18): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:32 executing program 4: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x200000, 0x0) chdir(&(0x7f0000000000)='./file0\x00') perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x25, 0x8000010, r0, 0x0) sched_yield() [ 267.548831][ T9502] FAULT_INJECTION: forcing a failure. [ 267.548831][ T9502] name failslab, interval 1, probability 0, space 0, times 0 [ 267.580425][ T9502] CPU: 0 PID: 9502 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 14:16:32 executing program 5: socketpair(0x1000000000003, 0x4, 0xff, &(0x7f0000002000)={0x0, 0x0}) close(r1) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x894c, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x4e23, 0x9, @ipv4={[], [], @rand_addr=0x100000000}, 0x10000}]}, &(0x7f0000000240)=0x10) openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x100, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={r2, 0x200}, &(0x7f00000002c0)=0x8) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0xb703, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000000)={0xc5d6, 0xfffffffffffffffd, 0x1, 0xfff, 0x7f, 0x7, 0xfffffffffffffff9, 0xff}, &(0x7f0000000040)={0x80000000, 0x80000001, 0x0, 0x8, 0x3, 0x4, 0x6, 0x101}, &(0x7f0000000080)={0x101, 0xd23, 0x8, 0x4, 0x2, 0x0, 0x6}, &(0x7f0000000100)={r3, r4+30000000}, &(0x7f0000000180)={&(0x7f0000000140)={0x2}, 0x8}) 14:16:32 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f00000000c0)=0xc) setgroups(0x1, &(0x7f0000000140)=[r1]) r2 = socket$l2tp(0x18, 0x1, 0x1) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000)=0x80000000, 0x4) connect$l2tp(r2, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) r3 = syz_open_dev$cec(&(0x7f00000001c0)='/dev/cec#\x00', 0x0, 0x2) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000200)={0x8, 0x0, 0x0, 0x401}) ioctl$DRM_IOCTL_AGP_BIND(r3, 0x40106436, &(0x7f0000000240)={r4, 0x3}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1400000029001fff0000000081d4000004000000"], 0x14}}, 0x0) 14:16:32 executing program 1: socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$kcm(0x10, 0x7, 0x10) sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="2e0000001d008100100f80ecdb4cb9047ec8650407000000000000fb120012010e0005000a0019a9060015000000", 0x2e}], 0x1}, 0x0) [ 267.589358][ T9502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 267.599406][ T9502] Call Trace: [ 267.602697][ T9502] dump_stack+0x172/0x1f0 [ 267.607116][ T9502] should_fail.cold+0xa/0x15 [ 267.611713][ T9502] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 267.617510][ T9502] ? lock_downgrade+0x880/0x880 [ 267.622353][ T9502] ? ___might_sleep+0x163/0x280 [ 267.627218][ T9502] __should_failslab+0x121/0x190 [ 267.632153][ T9502] should_failslab+0x9/0x14 [ 267.636651][ T9502] kmem_cache_alloc_trace+0x2d1/0x760 [ 267.642015][ T9502] ? kobject_uevent_env+0xea/0x1030 [ 267.647288][ T9502] kobject_uevent_env+0x2fb/0x1030 [ 267.652470][ T9502] kobject_uevent+0x20/0x26 [ 267.656947][ T9502] lo_ioctl+0x100b/0x20d0 [ 267.661248][ T9502] ? lo_rw_aio+0x1530/0x1530 [ 267.665814][ T9502] blkdev_ioctl+0xee8/0x1c40 [ 267.670379][ T9502] ? blkpg_ioctl+0xa90/0xa90 [ 267.674970][ T9502] ? debug_smp_processor_id+0x1c/0x20 [ 267.680318][ T9502] ? perf_trace_lock_acquire+0xf5/0x580 [ 267.685838][ T9502] ? __fget+0x340/0x540 [ 267.689971][ T9502] ? find_held_lock+0x35/0x130 [ 267.694980][ T9502] ? __fget+0x340/0x540 [ 267.699132][ T9502] block_ioctl+0xee/0x130 [ 267.703436][ T9502] ? blkdev_fallocate+0x410/0x410 [ 267.708433][ T9502] do_vfs_ioctl+0xd6e/0x1390 [ 267.713009][ T9502] ? ioctl_preallocate+0x210/0x210 [ 267.718098][ T9502] ? __fget+0x367/0x540 [ 267.722229][ T9502] ? ksys_dup3+0x3e0/0x3e0 [ 267.726620][ T9502] ? do_sys_open+0x31d/0x5d0 [ 267.731197][ T9502] ? security_file_ioctl+0x93/0xc0 [ 267.736285][ T9502] ksys_ioctl+0xab/0xd0 [ 267.740416][ T9502] __x64_sys_ioctl+0x73/0xb0 [ 267.744983][ T9502] do_syscall_64+0x103/0x610 [ 267.749550][ T9502] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 267.755420][ T9502] RIP: 0033:0x457ca7 [ 267.759289][ T9502] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 267.778977][ T9502] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 267.787359][ T9502] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 267.795306][ T9502] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 267.803249][ T9502] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 267.811192][ T9502] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 267.819163][ T9502] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:33 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0af51f023c123f3188a070") r1 = socket$rds(0x15, 0x5, 0x0) syz_open_dev$rtc(&(0x7f00000000c0)='/dev/rtc#\x00', 0x6, 0x400000) socket$vsock_dgram(0x28, 0x2, 0x0) bind$rds(r1, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) sendmsg$rds(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="580000000000000014010000090000000000000000000000", @ANYPTR=&(0x7f0000000e80)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000007fffffff000000000000000000000000"], 0x58}, 0x0) 14:16:33 executing program 4: r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) clone(0x2102005ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$TUNSETVNETHDRSZ(r3, 0x400454d8, &(0x7f0000000040)=0x1ff) exit(0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) recvmmsg(r2, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) r5 = dup2(r1, r2) fcntl$setown(r5, 0x8, r0) tkill(r0, 0x16) 14:16:33 executing program 0: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\a/expire_nodest_conn\x00', 0x2, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IP_VS_SO_SET_TIMEOUT(0xffffffffffffffff, 0x0, 0x48a, 0x0, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x74, 0x4) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, 0x0, 0x162) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080)=0xda9, 0x4) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000280)={0x80000001, 0x0, 0x0, 0x0, 0x0}, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pkey_alloc(0x0, 0x0) r3 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000078c0)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000007700)=[{{&(0x7f0000000340)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f0000001980)=[{&(0x7f00000003c0)=""/223, 0xdf}, {&(0x7f00000004c0)=""/96, 0x60}, {&(0x7f00000005c0)=""/78, 0x4e}, {&(0x7f0000000640)=""/153, 0x99}, {&(0x7f0000000700)=""/73, 0x49}, {&(0x7f0000000780)=""/108, 0x6c}, {&(0x7f0000000800)=""/114, 0x72}, {&(0x7f0000000880)=""/196, 0xc4}, {&(0x7f0000000980)=""/4096, 0x1000}], 0x9, &(0x7f0000001a40)=""/254, 0xfe}, 0x10001}, {{&(0x7f0000001b40)=@caif=@util, 0x80, &(0x7f0000003000)=[{&(0x7f0000000240)=""/42, 0x2a}, {&(0x7f0000001bc0)=""/249, 0xf9}, {&(0x7f0000000540)=""/3, 0x3}, {&(0x7f0000001cc0)=""/46, 0x2e}, {&(0x7f0000001d00)=""/196, 0xc4}, {&(0x7f0000001e00)=""/216, 0xd8}, {&(0x7f0000001f00)=""/4096, 0x1000}, {&(0x7f0000002f00)=""/245, 0xf5}], 0x8}, 0x800}, {{0x0, 0x0, &(0x7f0000003440)=[{&(0x7f0000003080)=""/61, 0x3d}, {&(0x7f00000030c0)=""/87, 0x57}, {&(0x7f0000003140)=""/233, 0xe9}, {&(0x7f0000003240)=""/34, 0x22}, {&(0x7f0000003280)=""/239, 0xef}, {&(0x7f0000003380)=""/55, 0x37}, {&(0x7f00000033c0)=""/67, 0x43}], 0x7, &(0x7f00000034c0)}, 0x81}, {{&(0x7f0000003500), 0x80, &(0x7f0000004800)=[{&(0x7f0000003580)=""/18, 0x12}, {&(0x7f00000035c0)=""/82, 0x52}, {&(0x7f0000003640)=""/249, 0xf9}, {&(0x7f0000003740)=""/179, 0xb3}, {&(0x7f0000003800)=""/4096, 0x1000}], 0x5, &(0x7f0000004880)=""/164, 0xa4}, 0x7}, {{&(0x7f0000004940)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000004d00)=[{&(0x7f00000049c0)=""/199, 0xc7}, {&(0x7f0000004ac0)=""/223, 0xdf}, {&(0x7f0000004bc0)=""/42, 0x2a}, {&(0x7f0000004c00)=""/221, 0xdd}], 0x4, &(0x7f0000004d40)=""/147, 0x93}, 0x6}, {{&(0x7f0000004e00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000006340)=[{&(0x7f0000004e80)=""/169, 0xa9}, {&(0x7f0000004f40)=""/30, 0x1e}, {&(0x7f0000004f80)=""/200, 0xc8}, {&(0x7f0000005080)=""/141, 0x8d}, {&(0x7f0000005140)=""/137, 0x89}, {&(0x7f0000005200)=""/4096, 0x1000}, {&(0x7f0000006200)=""/4, 0x4}, {&(0x7f0000006240)=""/200, 0xc8}], 0x8, &(0x7f00000063c0)=""/230, 0xe6}, 0x7ff}, {{&(0x7f00000064c0)=@alg, 0x80, &(0x7f00000076c0)=[{&(0x7f0000006540)=""/251, 0xfb}, {&(0x7f0000006640)=""/62, 0x3e}, {&(0x7f0000006680)=""/4096, 0x1000}, {&(0x7f0000007680)}], 0x4}, 0x8}], 0x7, 0x2, &(0x7f0000007900)={r4, r5+30000000}) setsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000007940)={r6, @rand_addr=0x3, @local}, 0xc) ioctl$NBD_SET_SOCK(0xffffffffffffffff, 0xab00, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0xff5a) ioctl$PERF_EVENT_IOC_QUERY_BPF(0xffffffffffffffff, 0xc008240a, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$EVIOCGSND(r3, 0x8040451a, &(0x7f00000001c0)=""/111) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x101, 0xfffffffffffffffe, 0x8206, 0x8bd, 0x0, 0x0, 0x0, 0x3, r2}, 0x20) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000580), &(0x7f0000000300)=0x8) [ 268.002641][ T9526] atomic_op 000000007532a2e6 conn xmit_atomic (null) 14:16:35 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:35 executing program 1: mknod$loop(&(0x7f0000000040)='./file1\x00', 0x6003, 0x1) r0 = open(&(0x7f0000000000)='./file1\x00', 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000140)={{{@in=@local, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@initdev}}, &(0x7f0000000240)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@broadcast}}, &(0x7f0000000380)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0)={0x0, 0x0}, &(0x7f0000000400)=0xc) stat(&(0x7f0000000440)='./file1\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000500)='./file1\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000005c0)={{{@in=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@initdev}}, &(0x7f00000006c0)=0xe8) lstat(&(0x7f0000000700)='./file1\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f00000007c0)={{}, {0x1, 0x5}, [{0x2, 0x6, r1}, {0x2, 0x0, r2}, {0x2, 0x1, r3}, {0x2, 0x4, r4}, {0x2, 0x4, r5}, {0x2, 0x5, r6}], {}, [{0x8, 0x3, r7}], {0x10, 0x6}, {0x20, 0x6}}, 0x5c, 0x1) ioctl$BLKSECTGET(r0, 0x1260, &(0x7f0000000080)) 14:16:35 executing program 3 (fault-call:1 fault-nth:19): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:35 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="b40000000000000055000000000000009500000000000000ccaee31474aea582103a4ad70811cddd475006431ece6d07121d5ac2a598ede714bd08c2f2413da933b69135122311696d08d353"], &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0x348, &(0x7f0000000480)=""/195, 0x0, 0x0, [0x42]}, 0x48) recvmmsg(0xffffffffffffffff, &(0x7f0000007bc0)=[{{&(0x7f0000000080)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @local}}, 0x80, &(0x7f0000001600)=[{&(0x7f0000000180)=""/101, 0x65}, {&(0x7f0000000200)=""/46, 0x2e}, {&(0x7f0000000300)=""/48, 0x30}, {&(0x7f0000000340)=""/18, 0x12}, {&(0x7f0000000380)=""/187, 0xbb}, {&(0x7f0000000580)=""/72, 0x48}, {&(0x7f0000000600)=""/4096, 0x1000}], 0x7}, 0x4}, {{0x0, 0x0, &(0x7f0000002880)=[{&(0x7f0000001680)=""/128, 0x80}, {&(0x7f0000001700)=""/173, 0xad}, {&(0x7f0000000440)=""/5, 0x5}, {&(0x7f00000017c0)=""/4096, 0x1000}, {&(0x7f00000027c0)=""/145, 0x91}], 0x5, &(0x7f0000002900)=""/166, 0xa6}, 0x9}, {{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f00000029c0)=""/5, 0x5}, {&(0x7f0000002a00)=""/54, 0x36}, {&(0x7f0000002a40)=""/239, 0xef}, {&(0x7f0000002b40)=""/247, 0xf7}], 0x4, &(0x7f0000002c80)=""/232, 0xe8}, 0x401}, {{&(0x7f0000002d80)=@nl=@proc, 0x80, &(0x7f0000005100)=[{&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000003e00)=""/4096, 0x1000}, {&(0x7f0000004e00)=""/238, 0xee}, {&(0x7f0000004f00)=""/190, 0xbe}, {&(0x7f0000004fc0)=""/211, 0xd3}, {&(0x7f00000050c0)=""/7, 0x7}], 0x6, &(0x7f0000005180)=""/112, 0x70}, 0x401}, {{&(0x7f0000005200)=@tipc=@id, 0x80, &(0x7f0000006280)=[{&(0x7f0000005280)=""/4096, 0x1000}], 0x1, &(0x7f00000062c0)=""/69, 0x45}, 0x28000000}, {{&(0x7f0000006340)=@rc, 0x80, &(0x7f00000073c0)=[{&(0x7f00000063c0)=""/4096, 0x1000}], 0x1, &(0x7f0000007400)=""/171, 0xab}, 0x5}, {{&(0x7f00000074c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000007580)=[{&(0x7f0000007540)=""/56, 0x38}], 0x1, &(0x7f00000075c0)=""/68, 0x44}, 0xffffffff}, {{&(0x7f0000007640)=@ipx, 0x80, &(0x7f0000007ac0)=[{&(0x7f00000076c0)=""/37, 0x25}, {&(0x7f0000007700)=""/249, 0xf9}, {&(0x7f0000007800)=""/229, 0xe5}, {&(0x7f0000007900)=""/173, 0xad}, {&(0x7f00000079c0)=""/244, 0xf4}], 0x5, &(0x7f0000007b40)=""/100, 0x64}, 0x9}], 0x8, 0x2000, &(0x7f0000007dc0)) setsockopt(r0, 0x20, 0x6, &(0x7f0000007e00)="034fbd2cc2aea4a614bb8b6f4556389fe40da7d2a5427fed50965f6b618a3d21be7e977de550b2f0d35f19a1ca9fc02111a08fcceb2e35a7e90cca0b955e2fa3", 0x40) 14:16:35 executing program 4: r0 = memfd_create(&(0x7f0000000040)='\x00\x00\x06\x00\x00\x00\x00\x00\x00\x00', 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x5, 0x181000) ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000140)={0x3, &(0x7f00000000c0)=[{}, {}, {}]}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200)={0x3ff}) write$binfmt_elf64(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="99ee0000f85e546994c7c99a3006ccfc4e1ff7ac93c7345b664d695ca3a0e56931989214fcff3e6d3644b25c2babdc52fd3eb282439ab63d26296f3ccf340212a66b1ce416902f97e46f34396a2a2bf656bc7d1e9e7c957059bb099e5bfa6e86e6f0ed085649944db850847c918ee61e2026300bdf14c73de2c44dddbd2514f8c20a25c82455bd1ee6b2a8a32f439f1ebf84b4b882d3bc9693429e7c5a14a5bd3dc25800e4dc40cf0b974012b33439ade0ba69e9abdfab6c16fa2bc788636c317f50fc4cf4e4"], 0xc6) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execveat(r0, &(0x7f0000000100)='\x00', 0x0, 0x0, 0x1000) 14:16:35 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r0, 0x8982, &(0x7f0000000000)={0x0, 0x0}) 14:16:35 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:35 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) io_setup(0x3254, 0x0) r0 = syz_open_dev$audion(&(0x7f0000000780)='/dev/audio#\x00', 0x7ff, 0x0) ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f00000007c0)=""/11) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) symlink(0x0, &(0x7f0000000140)='.//ile0\x00') syz_mount_image$msdos(&(0x7f0000000340)='msdos\x00', &(0x7f0000000280)='./file0\x00', 0xe800, 0x1, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0) r1 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, 0x0) ioctl$sock_inet6_SIOCADDRT(r3, 0x89a0, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000400)) lsetxattr$security_ima(0x0, &(0x7f0000000240)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="02b9017868a3a9fd95d400f2e66975cf03b0353cdaac30c479f360"], 0x1, 0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'ifb0\x00', 0x200}) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f0000000640)={0xbc, 0xffff, 0x100, 0x0, 0x0, [], [], [], 0x2, 0x2}) socket$l2tp(0x18, 0x1, 0x1) sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) getsockopt$kcm_KCM_RECV_DISABLE(r2, 0x119, 0x1, &(0x7f0000000800), 0x4) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) close(0xffffffffffffffff) write(r4, &(0x7f0000000400)="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", 0x1f8) lsetxattr$trusted_overlay_redirect(&(0x7f00000002c0)='.//ile0\x00', &(0x7f00000003c0)='trusted.overlay.redirect\x00', &(0x7f0000000600)='./bus\x00', 0x6, 0x1) sendfile(r4, r5, 0x0, 0x10000) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) 14:16:35 executing program 5: mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, 0x0) chdir(&(0x7f0000000000)='./file0\x00') r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x100, 0x0) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r0, 0x28, 0x6, &(0x7f0000000240)={r1, r2/1000+30000}, 0x10) ioctl$SIOCX25GDTEFACILITIES(0xffffffffffffffff, 0x89ea, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000700)='./bus\x00', 0x0) open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000cc0)) ftruncate(r3, 0x208200) r4 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x602200, 0x7ffffe, 0x4002011, r4, 0x0) ioctl$TIOCSCTTY(r4, 0x540e, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000140)=""/177) [ 270.583996][ T9547] FAULT_INJECTION: forcing a failure. [ 270.583996][ T9547] name failslab, interval 1, probability 0, space 0, times 0 [ 270.628742][ T9547] CPU: 0 PID: 9547 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 270.637715][ T9547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.647772][ T9547] Call Trace: [ 270.651070][ T9547] dump_stack+0x172/0x1f0 [ 270.655501][ T9547] should_fail.cold+0xa/0x15 [ 270.660130][ T9547] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 270.665947][ T9547] ? lock_downgrade+0x880/0x880 [ 270.670801][ T9547] ? ___might_sleep+0x163/0x280 [ 270.675660][ T9547] __should_failslab+0x121/0x190 [ 270.680606][ T9547] should_failslab+0x9/0x14 [ 270.685221][ T9547] __kmalloc+0x2dc/0x740 [ 270.689468][ T9547] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 270.695631][ T9547] ? rcu_read_lock_sched_held+0x110/0x130 [ 270.701357][ T9547] ? kobject_get_path+0xc4/0x1b0 [ 270.706312][ T9547] kobject_get_path+0xc4/0x1b0 [ 270.711073][ T9547] kobject_uevent_env+0x31f/0x1030 [ 270.716188][ T9547] kobject_uevent+0x20/0x26 [ 270.720771][ T9547] lo_ioctl+0x100b/0x20d0 [ 270.725087][ T9547] ? lo_rw_aio+0x1530/0x1530 [ 270.729654][ T9547] blkdev_ioctl+0xee8/0x1c40 [ 270.734230][ T9547] ? blkpg_ioctl+0xa90/0xa90 [ 270.738805][ T9547] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 270.744331][ T9547] ? retint_kernel+0x2d/0x2d [ 270.748902][ T9547] ? do_vfs_ioctl+0xca/0x1390 [ 270.753570][ T9547] block_ioctl+0xee/0x130 [ 270.757884][ T9547] ? blkdev_fallocate+0x410/0x410 [ 270.762887][ T9547] do_vfs_ioctl+0xd6e/0x1390 [ 270.767480][ T9547] ? ioctl_preallocate+0x210/0x210 [ 270.772585][ T9547] ? __fget+0x367/0x540 [ 270.776755][ T9547] ? ksys_dup3+0x3e0/0x3e0 [ 270.781156][ T9547] ? do_sys_open+0x31d/0x5d0 [ 270.785724][ T9547] ? security_file_ioctl+0x93/0xc0 [ 270.790818][ T9547] ksys_ioctl+0xab/0xd0 [ 270.794964][ T9547] __x64_sys_ioctl+0x73/0xb0 [ 270.799659][ T9547] do_syscall_64+0x103/0x610 [ 270.804247][ T9547] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 270.810115][ T9547] RIP: 0033:0x457ca7 [ 270.813997][ T9547] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 270.833597][ T9547] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 270.841999][ T9547] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 270.849947][ T9547] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 270.857895][ T9547] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 270.865842][ T9547] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 14:16:36 executing program 0: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x3, @local, 'syz_tun\x00'}}, 0x1e) r1 = socket$pppoe(0x18, 0x1, 0x0) r2 = socket$pppoe(0x18, 0x1, 0x0) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r2, 0x4008af23, &(0x7f0000000000)={0x3, 0x8}) connect$pppoe(r2, &(0x7f0000000180)={0x18, 0x0, {0x3, @local, 'vcan0\x00'}}, 0x1e) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x4, @link_local, 'veth0\x00'}}, 0x1e) [ 270.873800][ T9547] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:36 executing program 1: getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, 0x0, &(0x7f00000000c0)) sched_setaffinity(0x0, 0x2, &(0x7f0000000140)) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, 0x0, 0x0) clone(0x4000002102001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'\x00?\b', 0xffffffffffffffff, 0x4c00000000006800}, &(0x7f0000001fee)='R\trist\xe3cpsgrVid:De', 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x6, 0x400) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f0000000180)) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f00000001c0)=0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r1, 0xc1105518, &(0x7f0000000240)={{0x4, 0x1, 0x20, 0x800, 'syz1\x00', 0x5}, 0x2, 0x0, 0x8000, r2, 0x7, 0x2, 'syz0\x00', &(0x7f0000000200)=['\x00', '/dev/dmmidi#\x00', '\x00', '/dev/dmmidi#\x00', '\x00', 'asymmetric\x00', '\\nodev/\x00'], 0x30, [], [0x8, 0x3, 0x5, 0x3]}) geteuid() getresuid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)) [ 270.975348][ T26] audit: type=1804 audit(1549203396.280:39): pid=9578 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor5" name="/root/syzkaller-testdir512902026/syzkaller.vRxTTv/69/bus" dev="sda1" ino=16960 res=1 14:16:36 executing program 0: r0 = perf_event_open(&(0x7f0000aaa000)={0x8000000000002, 0x70, 0x0, 0x411c7ed6, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000000)=@req={0x1000, 0x4, 0x1000, 0x4}, 0xac) r2 = dup2(r0, r1) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000040)={0x27f, 0x5, 0x8000, 0x0, 0x8000, 0x7, 0x6, 0x4, 0x0}, &(0x7f0000000080)=0x20) pread64(r2, &(0x7f0000000140)=""/25, 0x19, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000000c0)={r3, 0x3, 0x30}, &(0x7f0000000100)=0xc) 14:16:36 executing program 3 (fault-call:1 fault-nth:20): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 271.130801][ T26] audit: type=1804 audit(1549203396.280:40): pid=9578 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor5" name="/root/syzkaller-testdir512902026/syzkaller.vRxTTv/69/bus" dev="sda1" ino=16960 res=1 14:16:36 executing program 1: r0 = socket(0xa, 0x3, 0x8) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000200)={@ipv4={[], [], @remote}}, 0x14) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, 0x0) 14:16:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00') sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={0x0, 0x0, &(0x7f0000000540)}, 0x0) preadv(r1, &(0x7f00000017c0), 0x191, 0x400000000000) r2 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10003, 0x80011, r2, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x200000000000000, 0x0, 0x0) [ 271.258545][ T9607] FAULT_INJECTION: forcing a failure. [ 271.258545][ T9607] name failslab, interval 1, probability 0, space 0, times 0 [ 271.278050][ T26] audit: type=1804 audit(1549203396.280:41): pid=9578 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor5" name="/root/syzkaller-testdir512902026/syzkaller.vRxTTv/69/bus" dev="sda1" ino=16960 res=1 [ 271.306428][ T26] audit: type=1800 audit(1549203396.320:42): pid=9584 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor4" name="file0" dev="sda1" ino=16942 res=0 [ 271.310531][ T9607] CPU: 1 PID: 9607 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 271.326762][ T26] audit: type=1804 audit(1549203396.320:43): pid=9584 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/76/file0" dev="sda1" ino=16942 res=1 [ 271.335509][ T9607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 271.335514][ T9607] Call Trace: [ 271.335536][ T9607] dump_stack+0x172/0x1f0 [ 271.335556][ T9607] should_fail.cold+0xa/0x15 [ 271.335576][ T9607] ? fault_create_debugfs_attr+0x1e0/0x1e0 14:16:36 executing program 1: ioctl$sock_rose_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000000c0)={@dev, 0x4, @null, @rose={'rose'}, 0x0, [@rose, @remote, @netrom, @default, @default, @netrom, @netrom, @bcast]}) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x80100, 0x0) recvmsg$kcm(r0, &(0x7f0000000380)={&(0x7f0000000140)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/98, 0x62}], 0x1, 0xfffffffffffffffe}, 0x140) clock_gettime(0x0, &(0x7f0000000400)={0x0, 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000500)={&(0x7f00000003c0)={0x1d, r1}, 0x10, &(0x7f00000004c0)={&(0x7f0000000440)={0x3, 0x0, 0x81, {r2, r3/1000+30000}, {0x0, 0x2710}, {0x4, 0xfffffffffffffffe, 0x4, 0x101}, 0x1, @can={{0x1, 0xff, 0x10001, 0x8001}, 0x6, 0x3, 0x0, 0x0, "a48fecfced2e3939"}}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x10) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000340)=0x0) tkill(r4, 0x1d) ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000040)=[0xd14, 0x78]) syz_emit_ethernet(0x1, &(0x7f0000000240)=ANY=[@ANYPTR64=&(0x7f0000000580)=ANY=[@ANYRES64=0x0, @ANYRES32=r0, @ANYRESHEX=r1, @ANYRESHEX=r0, @ANYPTR=&(0x7f0000000540)=ANY=[@ANYRES16=r1, @ANYPTR64, @ANYRESHEX=r1, @ANYRES32=r2]]], 0x0) ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000280)=r4) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000300)={0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000940)={0x21, 0x0, &(0x7f0000000b00)=[@decrefs, @acquire_done={0x40106309, r5, 0x4}, @exit_looper, @increfs_done={0x40106308, r5, 0x2}, @transaction_sg={0x40486311, {{0x2, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=[@ptr={0x70742a85, 0x0, &(0x7f00000009c0), 0x0, 0x4, 0x31}, @ptr={0x70742a85, 0x0, &(0x7f0000000a00), 0x0, 0x4, 0xb}], &(0x7f0000000ac0)=[0x0, 0x38, 0xb60e24f0bc8fbb36]}}}, @increfs={0x40046304, 0x2}], 0x100000062, 0x0, &(0x7f0000000780)="92c29788ed0245e73e8b42244a526a727b76c00b068b398633fd739e3064b8274d85e099465abbcc801f56df21"}) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000640)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000000000000000005d0000002510a7eae3219ea461ce5cac5305922acd7d47be98f3a159077f513a23b62036b39d43f231e733e66e8c47d4634d1aaa741ff80e2e2f4055eeca770696965112f70569f6b78be571f6378d53b6db00000000000000000000000000000054fddfedfa571795824dc79187f870d2a3fac0cc5730cc15f76c351ba7410a5ada95166c70ab0141f8bc1f292d187615f1876545581de893ceeabcde482fdfcda1eccf4a65df9cc8a3a86425bdf5d1d3ff19a40b1ccafd8c3a3455afa58f108afdb07ba5f32d548caf34f9f58c6d710ce21e74a4ad3d0075df56c24a0d477242ece281c7928c018eb9"], &(0x7f00000005c0)=0x81) [ 271.359928][ T26] audit: type=1804 audit(1549203396.470:44): pid=9584 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/76/file0" dev="sda1" ino=16942 res=1 [ 271.369875][ T9607] ? lock_downgrade+0x880/0x880 [ 271.369893][ T9607] ? ___might_sleep+0x163/0x280 [ 271.369910][ T9607] __should_failslab+0x121/0x190 [ 271.369930][ T9607] should_failslab+0x9/0x14 [ 271.373273][ T26] audit: type=1804 audit(1549203396.490:45): pid=9575 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/76/file0" dev="sda1" ino=16942 res=1 [ 271.377502][ T9607] kmem_cache_alloc_node+0x265/0x710 [ 271.377518][ T9607] ? find_held_lock+0x35/0x130 [ 271.377636][ T9607] __alloc_skb+0xd5/0x5e0 [ 271.382160][ T26] audit: type=1804 audit(1549203396.540:46): pid=9589 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor5" name="/root/syzkaller-testdir512902026/syzkaller.vRxTTv/69/bus" dev="sda1" ino=16960 res=1 [ 271.387971][ T9607] ? skb_trim+0x190/0x190 [ 271.387990][ T9607] ? kasan_check_read+0x11/0x20 [ 271.388009][ T9607] alloc_uevent_skb+0x83/0x1e2 [ 271.388028][ T9607] kobject_uevent_env+0xa63/0x1030 [ 271.412374][ T26] audit: type=1804 audit(1549203396.540:47): pid=9578 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor5" name="/root/syzkaller-testdir512902026/syzkaller.vRxTTv/69/bus" dev="sda1" ino=16960 res=1 [ 271.417126][ T9607] kobject_uevent+0x20/0x26 [ 271.417142][ T9607] lo_ioctl+0x100b/0x20d0 [ 271.417162][ T9607] ? lo_rw_aio+0x1530/0x1530 [ 271.550134][ T9607] blkdev_ioctl+0xee8/0x1c40 [ 271.554705][ T9607] ? blkpg_ioctl+0xa90/0xa90 [ 271.559271][ T9607] ? find_held_lock+0x35/0x130 [ 271.564012][ T9607] ? debug_check_no_obj_freed+0x211/0x444 [ 271.569707][ T9607] ? kasan_check_write+0x14/0x20 [ 271.574618][ T9607] ? __fget+0x340/0x540 [ 271.578760][ T9607] ? find_held_lock+0x35/0x130 [ 271.583511][ T9607] ? __fget+0x340/0x540 [ 271.587648][ T9607] block_ioctl+0xee/0x130 [ 271.591965][ T9607] ? blkdev_fallocate+0x410/0x410 [ 271.596989][ T9607] do_vfs_ioctl+0xd6e/0x1390 [ 271.601574][ T9607] ? ioctl_preallocate+0x210/0x210 [ 271.606662][ T9607] ? __fget+0x367/0x540 [ 271.610798][ T9607] ? ksys_dup3+0x3e0/0x3e0 [ 271.615193][ T9607] ? do_sys_open+0x31d/0x5d0 [ 271.619764][ T9607] ? security_file_ioctl+0x93/0xc0 [ 271.624852][ T9607] ksys_ioctl+0xab/0xd0 [ 271.628990][ T9607] __x64_sys_ioctl+0x73/0xb0 [ 271.633558][ T9607] do_syscall_64+0x103/0x610 [ 271.638134][ T9607] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 271.643999][ T9607] RIP: 0033:0x457ca7 [ 271.647871][ T9607] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 271.667447][ T9607] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 271.675829][ T9607] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 271.683775][ T9607] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 271.691721][ T9607] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 271.699670][ T9607] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 14:16:37 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0xb, 0x0, 0x0, 0x5, 0x1, 0x1}, 0x2c) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x40000, 0x0) ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[0xfffffffffffffff6]}) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000140)=0x0) lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r3 = gettid() sendmsg$netlink(r0, &(0x7f0000000980)={&(0x7f00000000c0)=@proc={0x10, 0x0, 0x25dfdbfe, 0x4000000}, 0xc, &(0x7f0000000900)=[{&(0x7f0000000240)={0x28, 0x1a, 0x21, 0x70bd27, 0x25dfdbff, "", [@typed={0x8, 0x52, @pid=r1}, @nested={0x10, 0x18, [@typed={0x4, 0x8}, @typed={0x8, 0x2d, @uid=r2}]}]}, 0x28}, {&(0x7f0000000280)={0x20, 0x11, 0x810, 0x70bd29, 0x25dfdbfb, "", [@typed={0x10, 0x72, @str='/dev/dsp\x00'}]}, 0x20}, {&(0x7f00000002c0)={0x30, 0x29, 0xe38, 0x70bd2a, 0x25dfdbff, "", [@generic="e5e96e2d2924bde97c1c5978169bee50746384df66bb6889462eeb3046d1b1"]}, 0x30}, {&(0x7f0000000300)={0x4fc, 0x2c, 0x704, 0x70bd2a, 0x25dfdbfc, "", [@generic="e6f797064c15046c45e699efdc50fc34dfb2dc8fb6fa63ac3bf43d9ccbd216423470f5778183943db2e93bb96c70e67ec37cbad5d40e6a4dc30e7896d5c6f0b95896453cfa633a0fbb5f687b6cfdfdd5d20113e0157d9140743a28c8e7c4037a5c77ef35aa2490ec6a3cb8c5ea7838926664183262752cc4d12d7402cb6962caa3f7c1dcf926ce669b1072f6fb54356d763116384605fd0cdef4f0a2703bbb017ad6b7cd01f2d202bccd08c1528393f7c623820b803f9f2c9e28e555e621bfc4359eb452925330afe167b7c32225711fe30e457e968aedea05bf7fa4872f23e72a37ead500ebd141f7b802b8d91e5b58965f", @typed={0x8, 0x8f, @u32=0x5}, @generic="292d902c4bbfbf0aa0edbe6036de142c3ef058e01002", @typed={0x10, 0x33, @str='/dev/dsp\x00'}, @nested={0x244, 0x84, [@typed={0x4, 0x61}, @generic="343931ae46e558bbc2d01d61a623465b3a30dccaecdb3759f243220bfe878e635ff63638c5e1bc7f1c56fc0a890bc8a0a4ec523ac31b0845730b27b64dccd73a064e95b2cd441ac7715006c0351c828b8310f019841ffe1904e68f92de38844094fa1142222b7d875b637175fba0fbf502339dbd08bff155c67023477133e3a3c6ce8b3d00baa9feed06f5b2636f6abd12a27e4bf4527ab08959c0af7d96e1baf7f3b2fa528389", @generic="3720082681178e5a5f2202b8bd", @typed={0x4, 0x9}, @typed={0x8, 0x4b, @pid=r3}, @generic="f649404c30a82d38ca117c49b3fb6da5548c4730846528f5a3c11577a17cf90aa740d8804eab70866f9589fb79fb2fa2fc5a683ca550aba6ed7b946098738cdf5a8f4dda0d4ffa7f778e394131c7e31601e0a39ed8dd12e74f84c34311d2c5efbf4568bb109499d55c220ad414e2c9bc46b045f85c47e022beb256fd83096a86dbae688b7fc99d96fb0d3be31a562d13e7590ed5634e", @generic="355a12950df157a0bdbdfc958c3a5dbfa375517a23d2672d50debf0229e832ea6c76092be6bd9f76e76ecf1a7af87dccd235610a645b451b20e04c99ccb7abd1cb4e30290aeb40578096d9c2fdd99144e2829165122c23f58abf1539769c1371f533d667fd888267c59bfef7c0e47499805936f58651fdea27f921b4e86c505e3b315f58f87a043042774cf00409af25c7a93faf8c52faf67881cf38506449a5caee1f5adf7c81bc89b622913b6d72ee63f9a46aae9cba7086db0d9918f0e73ed7c417565e06d46ee2f0a542ee1a18943ce01251ec323315dec9fa35", @typed={0x8, 0x86, @ipv4=@empty}]}, @nested={0x8, 0x93, [@typed={0x4, 0x23}]}, @nested={0xc, 0x11, [@typed={0x8, 0x59, @u32=0x1}]}, @nested={0x174, 0x30, [@generic="255f4762a3b5e6ee6f73c4eae7b977b40a2473c49eddb402ba3e58bfd6dbb014ff5755465223e87a433424c6dc2cabef2f115f48426b2c16bededbf94b37f8798c39e5b52f", @generic="154a51303981e8d0f714bc0162a5fe432c65b3a1f3a92353df5693fcb4417ba3789bb152e26365023118332512524afd8d2b108483110d30303c56039fd18e0ab84fe5f0abfa3fc684b50f6a9c5d07a2f01b5891b020b32e07efbbcba2d5449303b0d30cb6c750baf9ba217812c4045b60b512750b6ae4bed9a9b4818e4bf6da74ee5e18a6a50bc03ff735306e30d7ae8e36f5a2ea47e045d621c67f03bb11aadf2c717f88a361e64f16997833a4fa44eaeedf242f0a569c175183a6230ebc92197cdaeaa89275716730335c456d712d9eb56b2131c7dc36676022f6ce08638fb122cad8887472ab223a3b6f", @generic="cfd452098815e62b87258a24f55634c3ccd37bda70858594b71d028b5fd8018a483cf30a535a21b3d23c6d1ee7e72045752b9b34ce1c", @typed={0x8, 0x44, @fd=r0}]}]}, 0x4fc}, {&(0x7f0000000800)=ANY=[@ANYBLOB="dc0000002b0000022abd7000ffdbdf25f5839578651e66470eb0bbb88c766825df6e688c1a505294954cae6125b052f3d32fbafcd288f42217aff62a1a79708cc9359dd702037a151a0a8582e9640ee146ec52f5be97680aefb18b2e169010eab294384458879e58bacfa8d0c6312d9f758131bb3a0b97788b9fbd142eefd639786826db9422134a22ead9f763d4d3dc7978bc9e66586ff93ce3ac1ea33591f7a13ee69b4f075b8822699c4ef051281e594226235a73b9f8364f0269a6fc54df8980101fa401f66279b9c7badb6cc22807d8ecad90d4109bcbba1700"], 0xdc}], 0x5, 0x0, 0x0, 0x40000}, 0x40000) [ 271.707620][ T9607] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 [ 271.722380][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 271.728202][ C0] protocol 88fb is buggy, dev hsr_slave_1 14:16:37 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='mountinfo\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000000)=""/148, 0xffffffffffffff1f}], 0x5e, 0x0) preadv(r0, &(0x7f0000000480), 0x1000000000000156, 0x0) [ 271.775105][ T9621] sched: DL replenish lagged too much 14:16:39 executing program 3 (fault-call:1 fault-nth:21): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:39 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:39 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000800)={0xa, 0x4e21, 0x0, @ipv4={[], [], @local}}, 0x1c) utime(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0xfffffffffffffffa, 0x2}) writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000840)="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", 0x5ad}], 0x1) 14:16:39 executing program 0: perf_event_open(&(0x7f00004e7000)={0x2, 0x70, 0x20000000cd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rfkill\x00', 0x383100, 0x0) bind$nfc_llcp(r0, &(0x7f0000000240)={0x27, 0x0, 0x0, 0x5, 0xfffffffffffffffe, 0x5, "a6c019bedb2bb72881d39df27d4c3d7dcd83a5bdf46143c5418265c83954df485d04fdd2c99317a07e02832e424d57c4605b524be337dfb3a96ca7e81cedc4", 0x5}, 0x60) r1 = socket$kcm(0x10, 0x2, 0x10) r2 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$get_keyring_id(0x0, r2, 0x9) r3 = socket$inet_sctp(0x2, 0x5, 0x84) fgetxattr(r3, &(0x7f0000000140)=@random={'security.', 'syz'}, &(0x7f0000000180)=""/1, 0x1) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e000000220005000000c187185095cf0400b0eba0b4d65c0000000051894d5d1dac000000000000000000000000", 0x2e}], 0x1}, 0x0) 14:16:39 executing program 1: r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0x3e4) ioctl(r0, 0x4147, 0x0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_SOCK_GET(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, r1, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x28, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xffffffffffffffff}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) setns(r0, 0x20000) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000200)={0x6, 0x7, 0x1, {0x6, @pix_mp={0x1, 0x10000, 0x32315241, 0x5, 0x4, [{0x9, 0x2}, {0x4, 0x4}, {0x1, 0x3}, {0x3df}, {0x0, 0x27fe477}, {0x3, 0x34f}, {0x5, 0x80000001}, {0x400, 0x100}], 0x4, 0x7, 0x4, 0x3, 0x1}}}) 14:16:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00') sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={0x0, 0x0, &(0x7f0000000540)}, 0x0) preadv(r1, &(0x7f00000017c0), 0x191, 0x400000000000) r2 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10003, 0x80011, r2, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x200000000000000, 0x0, 0x0) [ 273.984675][ T9647] FAULT_INJECTION: forcing a failure. [ 273.984675][ T9647] name failslab, interval 1, probability 0, space 0, times 0 [ 273.993998][ T9646] netlink: 26 bytes leftover after parsing attributes in process `syz-executor0'. [ 274.001874][ T9644] syz-executor5 (9644) used greatest stack depth: 22584 bytes left [ 274.025411][ T9647] CPU: 0 PID: 9647 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 274.034354][ T9647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 274.034359][ T9647] Call Trace: [ 274.034381][ T9647] dump_stack+0x172/0x1f0 [ 274.034404][ T9647] should_fail.cold+0xa/0x15 [ 274.034430][ T9647] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 274.047745][ T9647] ? lock_downgrade+0x880/0x880 [ 274.047764][ T9647] ? ___might_sleep+0x163/0x280 [ 274.047783][ T9647] __should_failslab+0x121/0x190 [ 274.067286][ T9647] should_failslab+0x9/0x14 14:16:39 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 274.067307][ T9647] kmem_cache_alloc_node+0x265/0x710 [ 274.077056][ T9647] ? find_held_lock+0x35/0x130 [ 274.077082][ T9647] __alloc_skb+0xd5/0x5e0 [ 274.077099][ T9647] ? skb_trim+0x190/0x190 [ 274.077120][ T9647] ? kasan_check_read+0x11/0x20 [ 274.086866][ T9647] alloc_uevent_skb+0x83/0x1e2 [ 274.086886][ T9647] kobject_uevent_env+0xa63/0x1030 [ 274.086912][ T9647] kobject_uevent+0x20/0x26 [ 274.086927][ T9647] lo_ioctl+0x100b/0x20d0 [ 274.086948][ T9647] ? lo_rw_aio+0x1530/0x1530 [ 274.128330][ T9647] blkdev_ioctl+0xee8/0x1c40 [ 274.132908][ T9647] ? blkpg_ioctl+0xa90/0xa90 [ 274.137474][ T9647] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 274.142916][ T9647] ? retint_kernel+0x2d/0x2d [ 274.147488][ T9647] block_ioctl+0xee/0x130 [ 274.151792][ T9647] ? blkdev_fallocate+0x410/0x410 [ 274.156798][ T9647] do_vfs_ioctl+0xd6e/0x1390 [ 274.161375][ T9647] ? ioctl_preallocate+0x210/0x210 [ 274.166482][ T9647] ? __fget+0x367/0x540 [ 274.170625][ T9647] ? ksys_dup3+0x3e0/0x3e0 [ 274.175021][ T9647] ? do_sys_open+0x31d/0x5d0 [ 274.179606][ T9647] ? security_file_ioctl+0x93/0xc0 [ 274.184703][ T9647] ksys_ioctl+0xab/0xd0 [ 274.188838][ T9647] __x64_sys_ioctl+0x73/0xb0 [ 274.193413][ T9647] do_syscall_64+0x103/0x610 [ 274.197988][ T9647] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.203863][ T9647] RIP: 0033:0x457ca7 [ 274.207744][ T9647] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 274.227321][ T9647] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 14:16:39 executing program 1: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) creat(&(0x7f0000000340)='./file1/file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000040)) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(0xffffffffffffffff, 0xc1105518, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="75707065726469723d2e2f66696c65302c6c6f7765726469723d2e2f66696c65312c776f726b6469723d2e2f66696c653100d5"]) stat(&(0x7f00000001c0)='./file1/file0\x00', &(0x7f00000003c0)) setxattr$system_posix_acl(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000380)='system.posix_acl_access\x00', &(0x7f0000000cc0)={{}, {}, [{}, {}, {0x2, 0x2}], {}, [{}, {0x8, 0x1}], {}, {0x20, 0x4}}, 0x4c, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x80101, 0x0) chdir(&(0x7f0000000280)='./file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x526, 0x0) statfs(&(0x7f0000000100)='./file0\x00', &(0x7f00000002c0)=""/125) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) creat(&(0x7f0000000100)='./file0\x00', 0x0) 14:16:39 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 274.235705][ T9647] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 274.243652][ T9647] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 274.251607][ T9647] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 274.259564][ T9647] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 274.267512][ T9647] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:39 executing program 3 (fault-call:1 fault-nth:22): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 274.414156][ T9667] netlink: 26 bytes leftover after parsing attributes in process `syz-executor0'. [ 274.424506][ T9668] overlayfs: filesystem on './bus' not supported as upperdir 14:16:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00') sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={0x0, 0x0, &(0x7f0000000540)}, 0x0) preadv(r1, &(0x7f00000017c0), 0x191, 0x400000000000) r2 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10003, 0x80011, r2, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x200000000000000, 0x0, 0x0) 14:16:39 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 274.507427][ T9671] FAULT_INJECTION: forcing a failure. [ 274.507427][ T9671] name failslab, interval 1, probability 0, space 0, times 0 [ 274.526661][ T9671] CPU: 1 PID: 9671 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 274.535610][ T9671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 274.545661][ T9671] Call Trace: [ 274.548954][ T9671] dump_stack+0x172/0x1f0 [ 274.553294][ T9671] should_fail.cold+0xa/0x15 [ 274.557891][ T9671] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 274.563702][ T9671] ? lock_downgrade+0x880/0x880 [ 274.568552][ T9671] ? ___might_sleep+0x163/0x280 [ 274.573408][ T9671] __should_failslab+0x121/0x190 [ 274.578345][ T9671] should_failslab+0x9/0x14 [ 274.582847][ T9671] kmem_cache_alloc_node_trace+0x270/0x720 [ 274.588652][ T9671] ? __alloc_skb+0xd5/0x5e0 [ 274.593165][ T9671] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 274.599320][ T9671] __kmalloc_node_track_caller+0x3d/0x70 [ 274.604954][ T9671] __kmalloc_reserve.isra.0+0x40/0xf0 [ 274.610326][ T9671] __alloc_skb+0x10b/0x5e0 [ 274.614746][ T9671] ? skb_trim+0x190/0x190 [ 274.619078][ T9671] ? kasan_check_read+0x11/0x20 [ 274.623936][ T9671] alloc_uevent_skb+0x83/0x1e2 [ 274.628701][ T9671] kobject_uevent_env+0xa63/0x1030 [ 274.633824][ T9671] kobject_uevent+0x20/0x26 [ 274.638330][ T9671] lo_ioctl+0x100b/0x20d0 [ 274.642663][ T9671] ? lo_rw_aio+0x1530/0x1530 [ 274.647253][ T9671] blkdev_ioctl+0xee8/0x1c40 [ 274.651844][ T9671] ? blkpg_ioctl+0xa90/0xa90 [ 274.656431][ T9671] ? find_held_lock+0x35/0x130 [ 274.661197][ T9671] ? debug_check_no_obj_freed+0x211/0x444 [ 274.666922][ T9671] ? kasan_check_write+0x14/0x20 [ 274.671856][ T9671] ? __fget+0x340/0x540 [ 274.676005][ T9671] ? find_held_lock+0x35/0x130 [ 274.680766][ T9671] ? __fget+0x340/0x540 [ 274.684926][ T9671] block_ioctl+0xee/0x130 [ 274.689252][ T9671] ? blkdev_fallocate+0x410/0x410 [ 274.694786][ T9671] do_vfs_ioctl+0xd6e/0x1390 [ 274.699378][ T9671] ? ioctl_preallocate+0x210/0x210 [ 274.704486][ T9671] ? __fget+0x367/0x540 [ 274.708644][ T9671] ? ksys_dup3+0x3e0/0x3e0 [ 274.713060][ T9671] ? do_sys_open+0x31d/0x5d0 [ 274.717658][ T9671] ? security_file_ioctl+0x93/0xc0 [ 274.722775][ T9671] ksys_ioctl+0xab/0xd0 [ 274.726930][ T9671] __x64_sys_ioctl+0x73/0xb0 [ 274.731524][ T9671] do_syscall_64+0x103/0x610 [ 274.736116][ T9671] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.742019][ T9671] RIP: 0033:0x457ca7 [ 274.745924][ T9671] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 274.765523][ T9671] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 274.773931][ T9671] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457ca7 [ 274.781903][ T9671] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 274.789870][ T9671] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 274.797841][ T9671] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 274.805805][ T9671] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:40 executing program 3 (fault-call:1 fault-nth:23): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:40 executing program 0: r0 = socket$inet(0x2, 0x800, 0xffff) getpgrp(0xffffffffffffffff) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/fib_trie\x00') getgid() fstat(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000240)=0x8, &(0x7f0000000280)=0x2) getgroups(0x1, &(0x7f0000000340)=[0xee01]) listxattr(0x0, &(0x7f0000000500)=""/168, 0xa8) setgroups(0x6, &(0x7f0000000480)=[0x0, 0x0, r3, 0x0, r4, 0x0]) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f00000005c0)) sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[]}, 0x0) r5 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000000000)={@local, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x8) ioctl$FS_IOC_FSGETXATTR(r5, 0x801c581f, &(0x7f0000000200)={0x4, 0x100000000, 0x32e, 0x8, 0x100000000}) setsockopt$inet6_tcp_buf(r1, 0x6, 0x1f, &(0x7f0000000140)="d070c8a27c2d84d8edcdc37885", 0xd) chown(&(0x7f00000000c0)='./file0\x00', r2, r3) ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000600)={0x0, 0x5, 0x9, 0x1000}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f00000017c0), 0x1fe, 0x400000000000) [ 274.952077][ T9661] overlayfs: './file0' not a directory [ 275.037490][ T9683] FAULT_INJECTION: forcing a failure. [ 275.037490][ T9683] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 275.050707][ T9683] CPU: 0 PID: 9683 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 275.059622][ T9683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.069657][ T9683] Call Trace: [ 275.072931][ T9683] dump_stack+0x172/0x1f0 [ 275.077252][ T9683] should_fail.cold+0xa/0x15 [ 275.081825][ T9683] ? lo_ioctl+0x188/0x20d0 [ 275.086225][ T9683] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 275.092017][ T9683] should_fail_alloc_page+0x50/0x60 [ 275.097195][ T9683] __alloc_pages_nodemask+0x1a1/0x7e0 [ 275.102550][ T9683] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 275.107987][ T9683] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 275.113686][ T9683] ? find_held_lock+0x35/0x130 [ 275.118438][ T9683] cache_grow_begin+0x9c/0x850 [ 275.123184][ T9683] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 275.129406][ T9683] ? check_preemption_disabled+0x48/0x290 [ 275.135115][ T9683] kmem_cache_alloc+0x645/0x710 [ 275.139948][ T9683] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 275.145388][ T9683] getname_flags+0xd6/0x5b0 [ 275.149872][ T9683] do_mkdirat+0xa0/0x2a0 [ 275.154106][ T9683] ? __ia32_sys_mknod+0xb0/0xb0 [ 275.158942][ T9683] __x64_sys_mkdir+0x5c/0x80 [ 275.163513][ T9683] do_syscall_64+0x103/0x610 [ 275.168086][ T9683] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.173962][ T9683] RIP: 0033:0x457257 [ 275.177838][ T9683] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 275.197421][ T9683] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 275.205808][ T9683] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 275.213759][ T9683] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 275.221710][ T9683] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 275.229659][ T9683] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 14:16:40 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0x12, 0xc0, 0x4, 0x400000000078}, 0x2c) r1 = socket$inet_udplite(0x2, 0x2, 0x88) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={r0, 0x28, &(0x7f0000000000)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r2}, 0xc) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") close(r0) [ 275.237608][ T9683] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:40 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:40 executing program 3 (fault-call:1 fault-nth:24): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:40 executing program 4: r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) bind$x25(r0, &(0x7f00000001c0)={0x9, @null=' \x00'}, 0x12) connect$x25(r0, &(0x7f0000000080)={0x9, @remote}, 0x12) ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "12dec128aa32209c61f75ad489f943f6d001294c", "659946a63889332ac4e098e05a9b171fd444ffa6"}) 14:16:40 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$9p(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000800)={0x0, r0, 0x0, 0xf, &(0x7f0000000400)='systemvboxnet0\x00'}, 0x30) process_vm_writev(r1, &(0x7f0000001cc0)=[{&(0x7f0000000840)=""/250, 0xfa}, {0x0}, {&(0x7f0000001940)=""/205, 0xcd}, {&(0x7f0000001a40)=""/21, 0x15}, {&(0x7f0000001a80)=""/171, 0xab}, {&(0x7f0000001b80)=""/240, 0xf0}, {&(0x7f0000001c80)=""/13, 0xd}], 0x7, &(0x7f0000001f00)=[{&(0x7f0000001d40)=""/31, 0x1f}, {&(0x7f0000001d80)=""/169, 0xa9}, {&(0x7f0000001e40)=""/83, 0x53}, {&(0x7f0000001ec0)}], 0x4, 0x0) fstat(r0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0}) clone(0x2902001ffb, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff) ftruncate(r0, 0x0) rt_sigtimedwait(&(0x7f0000000040), 0x0, &(0x7f0000000180)={0x0, 0x1c9c380}, 0x8) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x4000, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f00000001c0)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f0000000200)=0x10) r4 = getpid() sched_yield() accept$inet(0xffffffffffffffff, &(0x7f0000000680)={0x2, 0x0, @local}, &(0x7f0000000780)=0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r4, r0, 0x0, 0x0, 0x0}, 0x30) rt_tgsigqueueinfo(r4, r4, 0x16, &(0x7f0000000100)) r6 = syz_open_dev$usbmon(&(0x7f0000000280)='/dev/usbmon#\x00', 0x5, 0x105000) getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, 0x0, &(0x7f0000000540)) ioprio_get$uid(0x0, r2) io_setup(0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000300)={0x0, 0x0}) syz_genetlink_get_family_id$ipvs(&(0x7f0000000640)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r5, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='( \x00\x00'], 0x1}, 0x1, 0x0, 0x0, 0xc4}, 0x0) ioctl$DRM_IOCTL_GET_SAREA_CTX(r6, 0xc010641d, &(0x7f00000003c0)={0x0, &(0x7f0000000340)=""/73}) ptrace(0x10, r4) ptrace$pokeuser(0x6, r4, 0x388, 0xffffffffffffffff) 14:16:40 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) userfaultfd(0x80800) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[&\xe5\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ}\xb7\xf3\xfe\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4', 0x2761, 0x0) write$cgroup_pid(r0, &(0x7f0000000100), 0xda4fff08) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) accept$alg(r1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x660c, 0x0) [ 275.441244][ T9698] FAULT_INJECTION: forcing a failure. [ 275.441244][ T9698] name failslab, interval 1, probability 0, space 0, times 0 [ 275.485962][ T9698] CPU: 0 PID: 9698 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 275.494915][ T9698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.504964][ T9698] Call Trace: [ 275.508258][ T9698] dump_stack+0x172/0x1f0 [ 275.512595][ T9698] should_fail.cold+0xa/0x15 [ 275.517186][ T9698] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 275.523402][ T9698] ? kasan_check_read+0x11/0x20 [ 275.528263][ T9698] ? ___might_sleep+0x163/0x280 [ 275.533115][ T9698] __should_failslab+0x121/0x190 [ 275.533144][ T9698] should_failslab+0x9/0x14 [ 275.533162][ T9698] kmem_cache_alloc+0x2be/0x710 [ 275.542603][ T9698] ? __save_stack_trace+0x8a/0xf0 [ 275.552443][ T9698] ? ratelimit_state_init+0xb0/0xb0 [ 275.557650][ T9698] ext4_alloc_inode+0x1f/0x640 [ 275.562420][ T9698] ? ratelimit_state_init+0xb0/0xb0 [ 275.567615][ T9698] alloc_inode+0x66/0x190 [ 275.571947][ T9698] new_inode_pseudo+0x19/0xf0 [ 275.576625][ T9698] new_inode+0x1f/0x40 [ 275.580757][ T9698] __ext4_new_inode+0x37e/0x5450 [ 275.585708][ T9698] ? lockdep_hardirqs_on+0x418/0x5d0 [ 275.590998][ T9698] ? ext4_free_inode+0x1450/0x1450 [ 275.596159][ T9698] ? dqget+0x10d0/0x10d0 [ 275.600449][ T9698] ext4_mkdir+0x3d5/0xdf0 [ 275.604798][ T9698] ? ext4_init_dot_dotdot+0x520/0x520 [ 275.610173][ T9698] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 275.616413][ T9698] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 275.622648][ T9698] ? security_inode_permission+0xd5/0x110 [ 275.622664][ T9698] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 275.622683][ T9698] ? security_inode_mkdir+0xee/0x120 [ 275.639865][ T9698] vfs_mkdir+0x433/0x690 [ 275.644121][ T9698] do_mkdirat+0x234/0x2a0 [ 275.648458][ T9698] ? __ia32_sys_mknod+0xb0/0xb0 [ 275.653313][ T9698] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 275.658775][ T9698] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.664845][ T9698] ? do_syscall_64+0x26/0x610 [ 275.669525][ T9698] ? lockdep_hardirqs_on+0x418/0x5d0 [ 275.674810][ T9698] __x64_sys_mkdir+0x5c/0x80 [ 275.679404][ T9698] do_syscall_64+0x103/0x610 [ 275.684004][ T9698] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.689893][ T9698] RIP: 0033:0x457257 [ 275.694035][ T9698] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 275.713642][ T9698] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 275.722058][ T9698] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 275.730025][ T9698] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 275.738002][ T9698] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 275.745971][ T9698] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 275.753940][ T9698] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:42 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:42 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:42 executing program 1: 14:16:42 executing program 3 (fault-call:1 fault-nth:25): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:42 executing program 0: 14:16:42 executing program 4: 14:16:42 executing program 1: 14:16:42 executing program 4: [ 277.429435][ T9731] FAULT_INJECTION: forcing a failure. [ 277.429435][ T9731] name failslab, interval 1, probability 0, space 0, times 0 14:16:42 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x400000009) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000c80), 0xdf1fd48b9a0b66, 0x0) [ 277.505686][ T9731] CPU: 1 PID: 9731 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 277.514652][ T9731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 277.524943][ T9731] Call Trace: [ 277.528246][ T9731] dump_stack+0x172/0x1f0 [ 277.532591][ T9731] should_fail.cold+0xa/0x15 [ 277.537190][ T9731] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 277.543004][ T9731] ? kasan_check_read+0x11/0x20 [ 277.547839][ T9731] ? ___might_sleep+0x163/0x280 [ 277.552673][ T9731] __should_failslab+0x121/0x190 [ 277.557592][ T9731] should_failslab+0x9/0x14 [ 277.562076][ T9731] kmem_cache_alloc+0x2be/0x710 [ 277.566912][ T9731] ? __save_stack_trace+0x8a/0xf0 [ 277.571919][ T9731] ? ratelimit_state_init+0xb0/0xb0 [ 277.577095][ T9731] ext4_alloc_inode+0x1f/0x640 [ 277.581837][ T9731] ? ratelimit_state_init+0xb0/0xb0 [ 277.587012][ T9731] alloc_inode+0x66/0x190 [ 277.591321][ T9731] new_inode_pseudo+0x19/0xf0 [ 277.595980][ T9731] new_inode+0x1f/0x40 [ 277.600028][ T9731] __ext4_new_inode+0x37e/0x5450 [ 277.604947][ T9731] ? filename_create+0x26f/0x4f0 [ 277.609864][ T9731] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 277.615919][ T9731] ? d_splice_alias+0x6c1/0xcc0 [ 277.620753][ T9731] ? debug_check_no_obj_freed+0x211/0x444 [ 277.626456][ T9731] ? ext4_free_inode+0x1450/0x1450 [ 277.631549][ T9731] ? lock_downgrade+0x880/0x880 [ 277.636383][ T9731] ? dqget+0x10d0/0x10d0 [ 277.640608][ T9731] ? __lock_is_held+0xb6/0x140 [ 277.645353][ T9731] ? check_preemption_disabled+0x48/0x290 [ 277.651056][ T9731] ext4_mkdir+0x3d5/0xdf0 [ 277.655375][ T9731] ? ext4_init_dot_dotdot+0x520/0x520 [ 277.660730][ T9731] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 277.666950][ T9731] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 277.673168][ T9731] ? security_inode_permission+0xd5/0x110 [ 277.678877][ T9731] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 277.685097][ T9731] ? security_inode_mkdir+0xee/0x120 [ 277.690886][ T9731] vfs_mkdir+0x433/0x690 [ 277.695115][ T9731] do_mkdirat+0x234/0x2a0 [ 277.699425][ T9731] ? __ia32_sys_mknod+0xb0/0xb0 [ 277.704258][ T9731] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 277.709701][ T9731] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 277.715749][ T9731] ? do_syscall_64+0x26/0x610 [ 277.720405][ T9731] ? lockdep_hardirqs_on+0x418/0x5d0 [ 277.725673][ T9731] __x64_sys_mkdir+0x5c/0x80 [ 277.730245][ T9731] do_syscall_64+0x103/0x610 [ 277.734821][ T9731] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 277.740688][ T9731] RIP: 0033:0x457257 [ 277.744566][ T9731] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 277.764148][ T9731] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 277.772536][ T9731] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 277.780487][ T9731] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 277.788436][ T9731] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 277.796384][ T9731] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 14:16:43 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:43 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) truncate(&(0x7f00000000c0)='./bus\x00', 0x1000) r1 = open(&(0x7f0000000480)='./bus\x00', 0x0, 0x0) lseek(r0, 0x0, 0x2) sendfile(r0, r1, 0x0, 0x4fff0) 14:16:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="2f696f202f70640f34"], 0x9) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 277.804335][ T9731] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 [ 277.880444][ T26] audit: type=1804 audit(1549203403.180:48): pid=9750 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/84/bus" dev="sda1" ino=16563 res=1 [ 278.137502][ T26] audit: type=1804 audit(1549203403.440:49): pid=9750 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor4" name="/root/syzkaller-testdir245968024/syzkaller.nyiK4g/84/bus" dev="sda1" ino=16563 res=1 14:16:45 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:45 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:45 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)="fb74c24201c90c473ff778b65614206ed10dcebc5dc8df08bc08a5fe31aa37c152b893120d77bec90d2aae52a8054b3b89a9502297c4aad679225e731df04c0d178cdc8bac2fe5253046a8cbe16ccf3b248b4f01bc67fedaddb4823cc9167f9adbeb3182f262787a0b1cf92c019ae1aa53d30a9e5f09a7c092e247e0192114af38556bc0c5ee9804171895c0db174163851771c2799d31c300bd3663d7e1cca8cb153f", 0xa3, 0xfffffffffffffffb) keyctl$invalidate(0x15, r0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syslog(0x0, 0x0, 0x0) 14:16:45 executing program 3 (fault-call:1 fault-nth:26): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:45 executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0x12, 0xc0, 0x4, 0x400000000078}, 0x2c) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") close(r0) 14:16:45 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4543(gcm(aes-generic)))\x00'}, 0x58) [ 280.478441][ T9770] FAULT_INJECTION: forcing a failure. [ 280.478441][ T9770] name failslab, interval 1, probability 0, space 0, times 0 [ 280.517442][ T9770] CPU: 1 PID: 9770 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 280.526402][ T9770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.536449][ T9770] Call Trace: [ 280.539741][ T9770] dump_stack+0x172/0x1f0 [ 280.544084][ T9770] should_fail.cold+0xa/0x15 [ 280.548683][ T9770] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 280.554495][ T9770] ? ___might_sleep+0x163/0x280 [ 280.559354][ T9770] __should_failslab+0x121/0x190 [ 280.564301][ T9770] should_failslab+0x9/0x14 [ 280.568808][ T9770] __kmalloc+0x2dc/0x740 [ 280.573055][ T9770] ? ext4_find_extent+0x76e/0x9d0 14:16:45 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:45 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x1, 0x0) ioctl$INOTIFY_IOC_SETNEXTWD(r0, 0x40044900, 0x1f) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000000)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/icmp\x00') preadv(r1, &(0x7f00000017c0), 0x10000000000001f7, 0x0) 14:16:45 executing program 4: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000180)={r0}) setsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000300)={0x76, 0x1, 0xf683, 0x3}, 0xfffffffffffffe99) r2 = socket(0x10, 0x80000, 0x194def6e) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c) listen(r0, 0x3) r3 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r4 = accept4(r0, 0x0, 0x0, 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) sendmmsg(r4, 0x0, 0x0, 0x20000000) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname$inet(r5, &(0x7f0000000140)={0x2, 0x0, @loopback}, &(0x7f0000000200)=0x10) write(r6, &(0x7f0000000340), 0x10000014c) sendto(r4, &(0x7f00000000c0)="5bda613838079cd915772a6818823c075c414a5c6fe7a4b2df80f73bcf5f45e09a8f48bb0198b3bd3fa8726a2dad17a1da1d90e13058e1c998a21c0baf269df32a8739eed82603f58a3428394756fd06a00657492cdfbce05be7fc4c8ed671c89f08976df48860f7e656f037c1bc83b7fba3988b4bd661", 0x77, 0x44, 0x0, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r4, 0x10e, 0x1, &(0x7f0000000280)=0x18, 0x4) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000900)=0x8000, 0x4) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, 0x0, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(r4, 0x84, 0x11, &(0x7f0000000340), 0x0) recvmmsg(r4, &(0x7f0000004e00)=[{{&(0x7f0000000680)=@nfc_llcp, 0x80, 0x0}, 0xfffffffffffffffd}, {{&(0x7f0000001100)=@vsock={0x28, 0x0, 0x0, @reserved}, 0x80, 0x0, 0x0, &(0x7f0000001380)=""/245, 0xf5}}, {{&(0x7f0000001a80)=@nl, 0x80, &(0x7f0000004d40)=[{&(0x7f0000001b00)=""/4096, 0x1000}, {&(0x7f0000002b00)=""/3, 0x3}, {0x0}, {&(0x7f0000003b40)=""/221, 0xdd}, {&(0x7f0000003c40)=""/230, 0xe6}, {&(0x7f0000003d40)=""/4096, 0x1000}], 0x6}, 0x7033}], 0x3, 0x2, &(0x7f0000004fc0)) ppoll(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdc4) write$cgroup_type(r6, &(0x7f00000002c0)='threaded\x00', 0x9) syz_genetlink_get_family_id$tipc(0x0) sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x8804) vmsplice(r5, 0x0, 0x0, 0x0) sendmmsg(r4, &(0x7f0000000c00), 0x4000000000001e6, 0x0) write(r3, &(0x7f0000000040)="6a1a316416c5d20e77e9c8d096435ed0ecf8cec86fb54f847bfe31b520dbb99023c1b6a10f79a4daf7c0e5cc0be79e4d9573aebba239f3c79c12371014d70f", 0x3f) [ 280.578083][ T9770] ext4_find_extent+0x76e/0x9d0 [ 280.582940][ T9770] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 280.589100][ T9770] ext4_ext_map_blocks+0x1cc/0x4e50 [ 280.594315][ T9770] ? ext4_ext_release+0x10/0x10 [ 280.599173][ T9770] ? __lock_is_held+0xb6/0x140 [ 280.603949][ T9770] ? lock_acquire+0x16f/0x3f0 [ 280.608641][ T9770] ? ext4_map_blocks+0x3fd/0x1a00 [ 280.613679][ T9770] ext4_map_blocks+0xebb/0x1a00 [ 280.618538][ T9770] ? ext4_issue_zeroout+0x190/0x190 [ 280.623741][ T9770] ? kasan_check_write+0x14/0x20 14:16:45 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 280.628735][ T9770] ? __brelse+0x95/0xb0 [ 280.632899][ T9770] ext4_getblk+0xc4/0x510 [ 280.637233][ T9770] ? ext4_iomap_begin+0xfe0/0xfe0 [ 280.642262][ T9770] ? ext4_free_inode+0x1450/0x1450 [ 280.647381][ T9770] ext4_bread+0x8f/0x230 [ 280.651633][ T9770] ? ext4_getblk+0x510/0x510 [ 280.656233][ T9770] ext4_append+0x155/0x370 [ 280.660656][ T9770] ext4_mkdir+0x61b/0xdf0 [ 280.665002][ T9770] ? ext4_init_dot_dotdot+0x520/0x520 [ 280.670379][ T9770] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.676632][ T9770] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.682871][ T9770] ? security_inode_permission+0xd5/0x110 [ 280.688602][ T9770] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.695370][ T9770] ? security_inode_mkdir+0xee/0x120 [ 280.700661][ T9770] vfs_mkdir+0x433/0x690 [ 280.704911][ T9770] do_mkdirat+0x234/0x2a0 [ 280.709246][ T9770] ? __ia32_sys_mknod+0xb0/0xb0 [ 280.714099][ T9770] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 280.719560][ T9770] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 14:16:46 executing program 0: socketpair$unix(0x1, 0x0, 0x0, 0x0) symlink(0x0, &(0x7f0000000140)='./bus\x00') syz_mount_image$msdos(&(0x7f0000000340)='msdos\x00', &(0x7f0000000280)='./file0\x00', 0xe800, 0x1, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000001c0)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x40, 0x3}, 0x20) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000640)={{{@in6=@empty, @in6=@ipv4={[], [], @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@empty}}, &(0x7f0000000080)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000740)={{{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@local}}, &(0x7f0000000240)=0xe8) setreuid(r2, r3) r4 = open$dir(&(0x7f0000000600)='./file0\x00', 0x4000, 0x0) write(r1, &(0x7f0000000400)="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", 0x200) sendfile(r1, r4, 0x0, 0x10000) setsockopt$IP_VS_SO_SET_DELDEST(0xffffffffffffffff, 0x0, 0x488, 0x0, 0x0) ioctl$IOC_PR_CLEAR(0xffffffffffffffff, 0x401070cd, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'teql0\x00'}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000002c0)=[0x0], 0x1}) bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) [ 280.725642][ T9770] ? do_syscall_64+0x26/0x610 [ 280.730323][ T9770] ? lockdep_hardirqs_on+0x418/0x5d0 [ 280.735622][ T9770] __x64_sys_mkdir+0x5c/0x80 [ 280.740220][ T9770] do_syscall_64+0x103/0x610 [ 280.744822][ T9770] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.750715][ T9770] RIP: 0033:0x457257 [ 280.754617][ T9770] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 280.774219][ T9770] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 280.776162][ T9795] overlayfs: failed to resolve './file1': -2 [ 280.782627][ T9770] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 280.782684][ T9770] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 280.782693][ T9770] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 280.782701][ T9770] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 14:16:46 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 280.782710][ T9770] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 [ 280.858502][ T26] audit: type=1800 audit(1549203406.160:50): pid=9801 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor0" name="file0" dev="sda1" ino=17004 res=0 [ 280.959392][ T9807] overlayfs: failed to resolve './file1': -2 [ 280.979042][ T26] audit: type=1804 audit(1549203406.220:51): pid=9801 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/88/file0" dev="sda1" ino=17004 res=1 [ 281.020616][ T26] audit: type=1800 audit(1549203406.220:52): pid=9801 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor0" name="file0" dev="sda1" ino=17004 res=0 [ 281.549197][ T9818] dccp_close: ABORT with 63 bytes unread [ 281.556652][ T9818] dccp_close: ABORT with 119 bytes unread [ 281.653463][ T26] audit: type=1804 audit(1549203406.960:53): pid=9814 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/88/file0" dev="sda1" ino=17004 res=1 [ 281.678968][ T26] audit: type=1804 audit(1549203406.960:54): pid=9824 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/88/file0" dev="sda1" ino=17004 res=1 [ 281.704324][ T26] audit: type=1800 audit(1549203407.010:55): pid=9824 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor0" name="file0" dev="sda1" ino=17004 res=0 14:16:48 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:48 executing program 3 (fault-call:1 fault-nth:27): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:48 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) prctl$PR_SET_FPEMU(0xa, 0x2) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = dup2(r1, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x131f64) setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000000000009a37955692d7fe7b257718379b2d2f101e2e5803ff29cc1c19fcbd37f0c88c04abfc2a3115b2b86e17f04b2be7d32e2948e626"], 0x8) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet6_opts(r2, 0x29, 0x3b, &(0x7f0000000100)=@srh, 0x8) setsockopt$inet_int(r2, 0x0, 0x0, 0x0, 0xc7) ioctl$TCSBRKP(r2, 0x5425, 0x2) 14:16:48 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:48 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000080)=0xffff7ffffffffffd, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000005c0)={0xa, 0x4e22}, 0x19) listen(r2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x4e22}, 0x1c) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000001c0)={0x80001, 0x10000}, 0x8) r3 = getuid() stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000280)={{{@in=@broadcast, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in=@dev}}, &(0x7f0000000380)=0xe8) r7 = geteuid() stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x8, &(0x7f0000000480)=[0xee01, 0xee00, 0x0, 0x0, 0xee00, 0x0, 0xffffffffffffffff, 0xee01]) stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000580)=0x0, &(0x7f0000000600), &(0x7f0000000640)) lstat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000740)={0x0, 0x0, 0x0}, &(0x7f0000000780)=0xc) r14 = getgid() r15 = getegid() setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000020004000000000600000000", @ANYRES32=r3, @ANYBLOB="02000600", @ANYRES32=r4, @ANYBLOB="02000300", @ANYRES32=r5, @ANYBLOB="02000400", @ANYRES32=r6, @ANYBLOB="02000200", @ANYRES32=r7, @ANYBLOB="02000400", @ANYRES32=r8, @ANYBLOB="040003000000000008000400", @ANYRES32=r9, @ANYBLOB="08000200", @ANYRES32=r10, @ANYBLOB="08000600", @ANYRES32=r11, @ANYBLOB="08000200", @ANYRES32=r12, @ANYBLOB="08000600", @ANYRES32=r13, @ANYBLOB="08000400", @ANYRES32=r14, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r15, @ANYBLOB="10000500000000002000040000000000"], 0x8c, 0x1) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000880)=ANY=[@ANYBLOB="73656375726974730000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x58) close(r0) 14:16:48 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f00000006c0)='/dev/snd/pcmC#D#c\x00', 0x100000000, 0x400) fsetxattr(r0, &(0x7f0000000000)=@known='com.apple.system.Security\x00', &(0x7f0000000040)='selfcgroup\\]-{\x00', 0xf, 0x1) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000140), &(0x7f0000000100)=0x8) r1 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000080)={0x10000009, 0xffffffffffffffff}) [ 283.473679][ T9832] overlayfs: failed to resolve './file1': -2 [ 283.488235][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 14:16:48 executing program 4: r0 = socket$pppoe(0x18, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x89f2, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00']}) [ 283.545939][ T9836] FAULT_INJECTION: forcing a failure. [ 283.545939][ T9836] name failslab, interval 1, probability 0, space 0, times 0 14:16:48 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 283.622884][ T9836] CPU: 0 PID: 9836 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 283.631851][ T9836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.642004][ T9836] Call Trace: [ 283.645302][ T9836] dump_stack+0x172/0x1f0 [ 283.649744][ T9836] should_fail.cold+0xa/0x15 [ 283.654359][ T9836] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 283.660179][ T9836] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 283.665882][ T9836] ? ___might_sleep+0x163/0x280 [ 283.670736][ T9836] __should_failslab+0x121/0x190 [ 283.675690][ T9836] should_failslab+0x9/0x14 [ 283.680190][ T9836] __kmalloc+0x2dc/0x740 [ 283.684462][ T9836] ? retint_kernel+0x2d/0x2d [ 283.689059][ T9836] ? ext4_find_extent+0x76e/0x9d0 [ 283.694378][ T9836] ext4_find_extent+0x76e/0x9d0 [ 283.699236][ T9836] ext4_ext_map_blocks+0x1cc/0x4e50 [ 283.704441][ T9836] ? ext4_ext_release+0x10/0x10 [ 283.709701][ T9836] ? retint_kernel+0x2d/0x2d [ 283.714410][ T9836] ? lock_acquire+0x1ea/0x3f0 [ 283.719256][ T9836] ext4_map_blocks+0xebb/0x1a00 [ 283.724112][ T9836] ? ext4_issue_zeroout+0x190/0x190 [ 283.729333][ T9836] ? kasan_check_write+0x14/0x20 [ 283.734278][ T9836] ? __brelse+0x95/0xb0 [ 283.738444][ T9836] ext4_getblk+0xc4/0x510 [ 283.742774][ T9836] ? ext4_iomap_begin+0xfe0/0xfe0 [ 283.747804][ T9836] ? ext4_free_inode+0x1450/0x1450 [ 283.752919][ T9836] ext4_bread+0x8f/0x230 [ 283.757162][ T9836] ? ext4_getblk+0x510/0x510 [ 283.761747][ T9836] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 283.767202][ T9836] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 283.772804][ T9836] ext4_append+0x155/0x370 [ 283.777228][ T9836] ext4_mkdir+0x61b/0xdf0 [ 283.781579][ T9836] ? ext4_init_dot_dotdot+0x520/0x520 [ 283.786952][ T9836] ? security_inode_mkdir+0x20/0x120 [ 283.786970][ T9836] ? __sanitizer_cov_trace_pc+0x26/0x50 [ 283.786988][ T9836] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.787003][ T9836] ? security_inode_mkdir+0xee/0x120 [ 283.787023][ T9836] vfs_mkdir+0x433/0x690 [ 283.797826][ T9836] do_mkdirat+0x234/0x2a0 [ 283.817843][ T9836] ? __ia32_sys_mknod+0xb0/0xb0 [ 283.822888][ T9836] __x64_sys_mkdir+0x5c/0x80 [ 283.827467][ T9836] do_syscall_64+0x103/0x610 [ 283.832044][ T9836] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.837920][ T9836] RIP: 0033:0x457257 [ 283.841796][ T9836] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.861378][ T9836] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 14:16:49 executing program 4: prctl$PR_SET_MM_MAP(0x21, 0xe, &(0x7f0000000340)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fed000/0x13000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000300)}, 0x68) [ 283.869770][ T9836] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 283.878160][ T9836] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 283.886116][ T9836] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 283.894074][ T9836] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 283.902036][ T9836] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:49 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x0, 0x0) fallocate(r0, 0x40, 0x100000000, 0xffff) ioctl$KVM_SET_NESTED_STATE(r0, 0x4080aebf, &(0x7f0000000740)={0x3, 0x0, 0x2080, {0xf004, 0xd002, 0x2}, [], "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", "e9861563458464721d47732524e71c577b8b7abd810d0bfa664e1e4b0961a1a25953393965ea8a9b1518bd9f50feb4a9942f86fa1d189c8a84aaf48c5360d327b6651dc864b4124a2388c42920f3b6d45c298983baf43307792238893881ce0383830aa1743b6d890c821f0c56c7479f33a9115d49b02e79cef8670fff6e0a899afb6169f854cd1aa1315bb47bc28f2d0c403039a1c02652924559a9f10318c026272a1c0c07ac0707f14e25238f672dbd799a2e47ada00468548e718462228652db56d8d3b6aa2d1c64b78a220e710562b8bfdec95c8d4e37d858919c83caf0caa81c8f2bf83bb5148c4b400739b752375c418e2d77bfe234230cf8290e15a7cf2ec8d2392e2c1e357f2c32b9254e192b310427af798601b123e8885dee88cf97b9af7d49749d9ccac2dfe1878bd60e515bd98ef614385219516290fd9c7028cf1be0ad3ba0db6f38f477a84e3847fd2ca2082dd6f41eaf48ca55913b94135aff356b455622ffbde14bd98c73e95d17ff392e7f363111d93610c837c18283f029dd20496ac9a8e5d1fdd19f5b6e394bcb8b293b412cf1b04d8bec3a814df275269068dd1a1323c9cd291142170f12098ce849e4563b939919a9ee00f7aa5592ac60efb89e10abe18bef916233a7b225e7de0145f02df04c5899f2c52e04b19efddd48eff17f3fbdea22e23fdefcf0161b3e8b700c9215c999a06ed12162dd639e7349b1272bf3f632fb2956c74649216d455bb8417cb4ffe491129f0bf1a39f06768048991f914530395df9c27ddfd37387334f34695648347f9e4f79ddb98691c695854357386a3fcc1567f401012ceced94abf62de40c8540e529cbc9bc308341064db13b673cf7bcef7a7958eb8fe679f2ed52621d660cff96e3ee148cb66a39739469c1cd26f2f3af1835752c1820b0d73d6107532d8fc68a25ff2e95efb0e9538def5377153811b40d2e38224f9fb01322d14d1b9deb05b249c4e512958c9789be1fc3c59f1b39b644c83e49893bbdbe3868cc8a79d9f3fe90d13e304c204947f99abe47927db34d6e87be31bedf2e16e9b017d2d10343ccd343f6bd163e455a9878b89a1dbae7c5926088909bdc39a1915ec82f5b4bc16caeb8eacd9cfcc41d2f6eeca9d1639b1c34ad7cf70658c55449a4266dc91e89cafa7c8d6eaa7c8f165f486f1f6bd47fc0a5883130f1e2d254c3fc02396d8e4cc43e760aa9d15bb4bfceda234b1a8bb2739e4e1ae2e8618869b5c6383d195fdf444c680128834895f73c61f0ffe828ebe11e6fc522dd1244c76aa9a214e6785484acb5a69efb33005e12de3d778b22076ed85e462cc192b9162a820e03c0df8ea3f0a1429321850af56a45d10afde8c591253321fd12cfbb16c0f0319dfcafe47077c74b2f73665c06290111b15c77ab9259fe0a89fbd8498489268c6e951d6aeecfbc7a34584f480b30fdd3e09ffa1585e3e2560049ff8829b0d30b52b3c6a8e7bd3cb61b3cfccbf13fa10aa9bb4adc249f556b0fb47afe0a0e5c5f38016a56604a385f1bf5e3a1b546c9e3e458ec00c8a8f76ca489e8080022f15d38b80b4350e1086694cf642c837ceeeff96c68b7a28c85bf2c1716b66c004a8e2230ab9e527e90f2b9e85ee1d002d4587e6d52bdd807ca48d59b0a7ce52ca5b8383367c63a5afc284bb3a3a7c90bc1e10d53b38dbc79aeb6d38ae9c8ac5440c349fccc07303aa21a76b0039806c865ea4bfa7ccf091c488cd1799b78f848cc633817fd7fa87f3abfd8674c434f8082be578ff05ffda6edf36450243e9a6830553e412201d0918893f93ae42cd774dc9da1a7a6d1771d08decad308626bdd7e1970cca4ad5e4ac9f5eb8de18946497399ab6eed7dedaffc863f57f9ba045a0b2c8483ae496df5de85b830fec2f8a4cca4f1b5b5b7c4e8096a1efb23fa8b655d9bb5e79bb8d40c9fb482e2ce42a078db8c7af39fd1d5b1699801700805bde2441d4b452ed5655b76525b29db34e6dbecf45f85cbc7d3fffb88f812aeb32b742842229df61db7549438f3522b20db2d9bc4230cb2276cc38b2c192e86f86ac60efb4f9ba077cc328358872e3ea89686778cddd5af3fa67e548503d8386c4dcd00a203abd9c11b721e700f1a0e93b45a38cb4b6002de9d17445c9deaab13adf82296a5d0e4740cb24d8bef9751825179a5a7e1604891da2ed7b5558bf3fb565983e05d813549c2185f9b004fdefeccb0ae8917589236d2926cc608bb48f74a377a10955b525df5b4fb2cf9a6b3ffe3066bbd88fc2f40a36cff6781907a834b1e303b390e20a48781623ec36d432f2b88383e3bb0fd219cb6629ffe816af8f374842e40419b868e126884d4fe3bfa455fedeed896215275bbc68606d627e642423a25f6c9dc2c120c5f177ddbb363f9f5580c9b0e9dbfc6aec038c2dc5a2b43cd8bd47c2f500309742920fc7e5b0a7459b60868b853420351f2af6f9ee5aaa9e1159abc887401bd37710e6e61b9096f22257f105668b2c8e6baf40c1a96f4bf5a1271ffb3273d39994090104192751f6fda2fea585ea1edba692116d860fdd7913cefa3ad6879cb7d494e665824fac3bc43cfdada503f660aa531149cc8d6469914e7a014d73ab50c52442e54ff9878ccf6d2a086ba4f04e3a85f7c1ee44e67145caafeaafdffd12c00f9a266bc51f728bcd2e2e0e097c28f602d12cbcfae0da9a2a90bdf5d5b6b65ac4e2ddf0bb141660d2f9c2dbf89368a98a8dbcdb94055518b717286df8f4853417eb704981f8a0fe72bdbac81a0141c767d12a1d53ec957910ef436c671cb6563431a911ffaa31e5a05c71c0025b4720d2b90048319edb976014d968db89d7aa34dd84ad3cb8596d5742088504701b9bf69201c15e57d9765481c077320065d1fae46373a72215a1f367db1db9400c5c55abf9639fd3b2d6a2acb8acf2ad37112f1505481f7844e1e19c553ed0ff820024c269ec572c7c45f477ab49b6cb1857bb54b232f7c307f655f47a2f37452fa69ef2fda68ac919a639ba285fac601526e98f7cda035c70dbb3d0b473cd82ea9e15585966112ab7b081a531829a2b0222a607cf1c99c5fbc32b9019d1530eed82bb40a75d755e9bc77a38bef8bb43d31b7914e8fcd9c47c10e136da1c783fb48bbc20e3188e43ebb4a213afb500822775a39ea56d000c70196ccbef15762282e0561c58589126f284d9a4763a28f371cf7e129ccffc978daa74f986fe803746401aa230031150ec0bbcb3efcb4635360d03d44d4800fdbd6a40056bac739cec795e18aa1637d40ac2f9c65ceb4e4082ae5c2d81aa1ad56f136d2e21ecdd37cc521828f35ff2ad899e9daa23954ab46692f70aee0a83495ed436f9de26763526c7988cfe217eed743f064136fe02c0e928b7a30c14f871b6cca4df40126e8816b73847157cb77c703fc5feb73c0085678f847aea99025cfee4ae3f4a35790ad55533ffc45c7103573a3d3ced9d8cb3d401d5909090e4f21df8e1829463f9097e59133af33de34b0a36b0dbe6ba198affb415d29ca837f0cfb8d2c011b92139882a46c05ba05ddaa69aba1ab1c4dc3c8d57c3240d036cb797d57eac706ecd91ad0c4d3afe20d541a044b1ad678fe3156b5e2b8afbc20bb25f5eb9677bf9dc97fcadde3de1a1249666ce499371d2c939f310bb072a99c079c9bb2f6b866f36957155675c65c338e66cdf3836970d76a4d1f13facd620185c1ae0e0962f280556406d2508dc4c625ccfa355f7711026dc0711ac0bf09553849f6796e16ee03e1f1d4ed4a116abf8bb5869695d8c32cfa5a945cc3d9f24e4fc6e61dc1b2d882b82858c51ee6741b58e92e36c4988f100815290a9f622cc2f88f9bd3eb75c14e2ac6a7304c3371b5a0e9857b319d240d41e2067d88015069a5416ce17654fb44d0429151c7f48add2efb1515e1442abd4335c3e2215dcf576499dd23ac3fc14d3c9bf38a86a817251f87f120e3d952bb290ad16113637c7f54152918b8bb9dfbf9791178f1e937a05f776f162692c8c8bf40d903c839af1bd94afd38a38b8e8054c1a493d035fcbc0b2fea35f95a5bf52b864ff77f41c525ac680e1d8cf252734bce4fca37fafe780f457c794c051755d4b5354317240dd3a1fc71fb8c1a3e4bd1355653a562238796e57893df3ccbd30c0bd796c564b217157deb5979b3a597a8c07b16ebf9d81d27e9b0c0bffb0783c92158c974ff8ea8b0452d9ed3a7fff363748fb1da81791a993c7fffe65a56ee5cbd5121610e83f8d10cb4d36f33c40d8eac568beee0ccc830a93ecbccea14039a483ad8ff7084b0ac1d46f809859bba6b988902df6625df8dd83db0f286178c8b7db84d938fb66747ff16094a2918e2530f9c05114641b130f78036d7245c36aaf4bb6fa1bc6cb7ad5a059c184125db6141e44609833e8dc543f69ee3c0d951482a3ed6d4a16cc7358887d4fd00463410fc4a23a6624f1a40b1b328f304f083ca00b10779f31bba9e053013f10ca2e0d59e931822313656390de00b32a946d1ea034006c54efe2a2431976f4b4530342a22614c5d2198407ee3716fc2ea8a10e5c8d375e34efa5dded5f7b923b27c5ce8cff3a85638c5b475ab7b8d15e5aa6db3d48f4f71e4d6b26490b6ee16d55e37e031aa9b33cbcd0eae58a249ab335fbe6723081a65e12e1c8f17c6007ea56dcc2cf30e59bf738cdc99db530a909895a4d094a328640c281e6f28ab2825b4d5425232ad058105455650cc7a48a76f365ac55a8d240662b0e7f39cd8f78ad2682d783b4582632c999bb2c26fe6e043ff6811242405a4d8daa327a267a2dea50d15ed3cb5c47eebc78b4f26a96aad50bc703fe15e5e8623e2a32f69ca6ce49000eafcdc78a2f0b0947a310d1c57a5b9d56120afa25c52d14d10a136458396c1299b938f96113cc10b09590e6691caa73b5cba7919e18e234744a88d00fd61145ed5df34920a70e2c70aa35a4f43be3a0850121d130acc630b66b0e7a707a754307ca20a2834b2946b6c97dc23952ae1a86b42b7c770ffe5e3e38c99b21cfc51ca077fe33af4133dfe56053fd786fb852937ed84bc82584e1c3d22c67926b2908bf8185f467ea9de26c25aee2892837ba33200a4540f1305fe1763049fe97b6c7dc5061be57c04d32ae1903168a5e29ed60275b31445f3e8dc46b8f8ba796b7cfd6a009a27046bc9b7677b64525a29f6329892a58a495435520e8a6630f494c6331080dbe66fa5c8d5129ab09fa19040c6abdfb84b1a5e5d6841d436a93498ca9536a304f5abdf915f135497d52943701371c5d1656ab3a8894092e0e2649211dc4c58059cc044dd3d87f65cb5f302529829d6903b0bfe8b9c650fd46e4050611bddeea636353c03b9457491f2dab0ed261b7fe311ed83b0bf8f9d2e4c6fdb5a16d28ea4042492982661c6fd0974078761afcf52591e420e9bdc2bfcf8fb3877e11106e12c12ba1d0392e99d548f0c5cfd3fcda7afb86280908a5210dd3e67e2b38363aa3f87dbe114ac6f054e4a1dda2be4e90e364b5d33efb9f85631e64b4f6b02f6840cd4b980c476220b034b110120cdffa4c38b1094e8268f278c780efe3885cb40aa0b4e998ca3da05aed863cb20f86a0e00edd155afc8af73a82a74f96d3fe7253baf46f8f81b03441c8a779733a75bc70a9983b93486b6bc3ab4ce518500ae7a95e4567a34d8673b4b90b44f811b2db66323e426806df0c0c89984023d95054f332cbc9305cd732b2b14fa25c23b8c9102880789135a7cb915899bda88b9aa16f54daf8eb9199d04bf161717b6d14ca7869247d9dc"}) mprotect(&(0x7f0000181000/0x4000)=nil, 0x4000, 0x0) ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f00000000c0)={0x15, 0x3b, 0xc, 0x19, 0x8, 0x401, 0x2, 0xbc}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000080)=0x0) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='/exe\x00\x00\x00\x00\x00\x00') io_setup(0x1, &(0x7f0000000700)=0x0) io_submit(r3, 0x1, &(0x7f0000000100)=[&(0x7f0000000000)={0x4000, 0x0, 0x7, 0x0, 0x0, r2, &(0x7f0000000200), 0xfffffdcc}]) 14:16:49 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:49 executing program 3 (fault-call:1 fault-nth:28): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 284.193604][ T9869] FAULT_INJECTION: forcing a failure. [ 284.193604][ T9869] name failslab, interval 1, probability 0, space 0, times 0 [ 284.242441][ T9869] CPU: 0 PID: 9869 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 284.251407][ T9869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.261672][ T9869] Call Trace: [ 284.264974][ T9869] dump_stack+0x172/0x1f0 [ 284.269323][ T9869] should_fail.cold+0xa/0x15 [ 284.273930][ T9869] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 284.279743][ T9869] ? ___might_sleep+0x163/0x280 [ 284.284604][ T9869] __should_failslab+0x121/0x190 [ 284.289554][ T9869] should_failslab+0x9/0x14 [ 284.294062][ T9869] __kmalloc+0x2dc/0x740 [ 284.298310][ T9869] ? ext4_find_extent+0x76e/0x9d0 [ 284.303340][ T9869] ext4_find_extent+0x76e/0x9d0 [ 284.308211][ T9869] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 284.314377][ T9869] ext4_ext_map_blocks+0x1cc/0x4e50 [ 284.319609][ T9869] ? ext4_ext_release+0x10/0x10 [ 284.324479][ T9869] ? error_exit+0xb/0x20 [ 284.328741][ T9869] ? lock_acquire+0x16f/0x3f0 [ 284.333415][ T9869] ? ext4_map_blocks+0x3fd/0x1a00 [ 284.338448][ T9869] ext4_map_blocks+0xebb/0x1a00 [ 284.343313][ T9869] ? ext4_issue_zeroout+0x190/0x190 [ 284.348513][ T9869] ? kasan_check_write+0x14/0x20 [ 284.353458][ T9869] ? __brelse+0x95/0xb0 [ 284.357718][ T9869] ext4_getblk+0xc4/0x510 [ 284.362048][ T9869] ? ext4_iomap_begin+0xfe0/0xfe0 [ 284.367075][ T9869] ? ext4_free_inode+0x1450/0x1450 [ 284.372188][ T9869] ext4_bread+0x8f/0x230 [ 284.376435][ T9869] ? ext4_getblk+0x510/0x510 [ 284.381041][ T9869] ext4_append+0x155/0x370 [ 284.385470][ T9869] ext4_mkdir+0x61b/0xdf0 [ 284.389814][ T9869] ? ext4_init_dot_dotdot+0x520/0x520 [ 284.395203][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.401442][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.407842][ T9869] ? security_inode_permission+0xd5/0x110 [ 284.413562][ T9869] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.419810][ T9869] ? security_inode_mkdir+0xee/0x120 [ 284.425102][ T9869] vfs_mkdir+0x433/0x690 [ 284.429337][ T9869] do_mkdirat+0x234/0x2a0 [ 284.433651][ T9869] ? __ia32_sys_mknod+0xb0/0xb0 [ 284.438483][ T9869] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 284.443939][ T9869] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.450073][ T9869] ? do_syscall_64+0x26/0x610 [ 284.454733][ T9869] ? lockdep_hardirqs_on+0x418/0x5d0 [ 284.460231][ T9869] __x64_sys_mkdir+0x5c/0x80 [ 284.464814][ T9869] do_syscall_64+0x103/0x610 [ 284.469391][ T9869] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.475272][ T9869] RIP: 0033:0x457257 [ 284.479152][ T9869] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.498751][ T9869] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 284.507143][ T9869] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 284.515276][ T9869] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 284.523409][ T9869] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 284.531360][ T9869] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 284.539324][ T9869] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:51 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:51 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:51 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:51 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x0, 0x0) fallocate(r0, 0x40, 0x100000000, 0xffff) ioctl$KVM_SET_NESTED_STATE(r0, 0x4080aebf, &(0x7f0000000740)={0x3, 0x0, 0x2080, {0xf004, 0xd002, 0x2}, [], "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", "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"}) mprotect(&(0x7f0000181000/0x4000)=nil, 0x4000, 0x0) ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f00000000c0)={0x15, 0x3b, 0xc, 0x19, 0x8, 0x401, 0x2, 0xbc}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000080)=0x0) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='/exe\x00\x00\x00\x00\x00\x00') io_setup(0x1, &(0x7f0000000700)=0x0) io_submit(r3, 0x1, &(0x7f0000000100)=[&(0x7f0000000000)={0x4000, 0x0, 0x7, 0x0, 0x0, r2, &(0x7f0000000200), 0xfffffdcc}]) 14:16:51 executing program 3 (fault-call:1 fault-nth:29): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:51 executing program 0: clock_getres(0xfffffffffffffff0, 0x0) r0 = socket$inet_smc(0x2b, 0x1, 0x0) recvmsg(r0, 0x0, 0x2000) socket$key(0xf, 0x3, 0x2) openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x440000000002011, 0xffffffffffffffff, 0x0) r1 = socket$can_raw(0x1d, 0x3, 0x1) arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x5) fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000000)=0x200, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000440)='highspeed\x00', 0xa) bind$inet(r2, &(0x7f00000003c0)={0x2, 0x200000000004e23, @rand_addr=0x2}, 0x10) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x67, &(0x7f0000000340), 0x0) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0xd) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000100), 0x4) socket$nl_route(0x10, 0x3, 0x0) recvmsg(r2, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) prctl$PR_CAP_AMBIENT(0x2f, 0x0, 0x0) write$binfmt_elf64(r2, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 286.549144][ T9887] FAULT_INJECTION: forcing a failure. [ 286.549144][ T9887] name failslab, interval 1, probability 0, space 0, times 0 [ 286.562404][ T9887] CPU: 1 PID: 9887 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 286.571338][ T9887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.581472][ T9887] Call Trace: [ 286.584763][ T9887] dump_stack+0x172/0x1f0 [ 286.589102][ T9887] should_fail.cold+0xa/0x15 [ 286.593696][ T9887] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 286.599499][ T9887] ? save_stack+0xa9/0xd0 [ 286.603929][ T9887] ? __es_tree_search.isra.0+0x1bf/0x230 [ 286.609565][ T9887] __should_failslab+0x121/0x190 [ 286.614504][ T9887] should_failslab+0x9/0x14 [ 286.619014][ T9887] kmem_cache_alloc+0x47/0x710 [ 286.623786][ T9887] ? ext4_es_scan+0x6f0/0x6f0 [ 286.628470][ T9887] ? do_raw_write_lock+0x124/0x290 [ 286.633594][ T9887] __es_insert_extent+0x2cc/0xf20 [ 286.638624][ T9887] ext4_es_insert_extent+0x2b7/0xa40 [ 286.643913][ T9887] ? ext4_es_scan_clu+0x50/0x50 [ 286.648771][ T9887] ? rcu_read_lock_sched_held+0x110/0x130 [ 286.654498][ T9887] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 286.660744][ T9887] ? ext4_es_find_extent_range+0xff/0x600 [ 286.666728][ T9887] ext4_ext_put_gap_in_cache+0xfe/0x150 [ 286.672273][ T9887] ? ext4_rereserve_cluster+0x240/0x240 [ 286.677827][ T9887] ? ext4_find_extent+0x76e/0x9d0 [ 286.682853][ T9887] ? ext4_find_extent+0x6a6/0x9d0 [ 286.687881][ T9887] ext4_ext_map_blocks+0x216a/0x4e50 [ 286.693619][ T9887] ? ext4_ext_release+0x10/0x10 [ 286.698487][ T9887] ? __lock_is_held+0xb6/0x140 [ 286.703259][ T9887] ? lock_acquire+0x16f/0x3f0 [ 286.707934][ T9887] ? ext4_map_blocks+0x3fd/0x1a00 [ 286.712964][ T9887] ext4_map_blocks+0xebb/0x1a00 [ 286.717829][ T9887] ? ext4_issue_zeroout+0x190/0x190 [ 286.723029][ T9887] ? kasan_check_write+0x14/0x20 [ 286.727971][ T9887] ? __brelse+0x95/0xb0 [ 286.732124][ T9887] ext4_getblk+0xc4/0x510 [ 286.736465][ T9887] ? ext4_iomap_begin+0xfe0/0xfe0 [ 286.741495][ T9887] ? ext4_free_inode+0x1450/0x1450 14:16:52 executing program 1: r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001480)='/dev/mISDNtimer\x00', 0x0, 0x0) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x2, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f0000000080)=@fragment={0x5c, 0x0, 0x800, 0x0, 0x0, 0x9, 0x65}, 0x8) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x0, 0x0) dup2(r2, r0) [ 286.746606][ T9887] ext4_bread+0x8f/0x230 [ 286.750845][ T9887] ? ext4_getblk+0x510/0x510 [ 286.755443][ T9887] ext4_append+0x155/0x370 [ 286.759867][ T9887] ext4_mkdir+0x61b/0xdf0 [ 286.764209][ T9887] ? ext4_init_dot_dotdot+0x520/0x520 [ 286.769582][ T9887] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 286.775826][ T9887] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 286.782076][ T9887] ? security_inode_permission+0xd5/0x110 [ 286.787790][ T9887] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 286.794033][ T9887] ? security_inode_mkdir+0xee/0x120 14:16:52 executing program 5: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 286.799330][ T9887] vfs_mkdir+0x433/0x690 [ 286.803685][ T9887] do_mkdirat+0x234/0x2a0 [ 286.808011][ T9887] ? __ia32_sys_mknod+0xb0/0xb0 [ 286.812862][ T9887] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 286.818312][ T9887] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.824371][ T9887] ? do_syscall_64+0x26/0x610 [ 286.829026][ T9887] ? lockdep_hardirqs_on+0x418/0x5d0 [ 286.834305][ T9887] __x64_sys_mkdir+0x5c/0x80 [ 286.838885][ T9887] do_syscall_64+0x103/0x610 [ 286.843461][ T9887] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.849337][ T9887] RIP: 0033:0x457257 [ 286.853220][ T9887] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.872820][ T9887] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 286.881218][ T9887] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 286.889168][ T9887] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 286.897155][ T9887] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 286.905117][ T9887] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 286.913071][ T9887] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:52 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/132) r1 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140)='/dev/capi20\x00', 0x0, 0x0) ioctl$CAPI_REGISTER(r1, 0xc0404309, &(0x7f0000000100)={0x4}) 14:16:52 executing program 3 (fault-call:1 fault-nth:30): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000080)=ANY=[@ANYBLOB="05000000000100000d000075d60000a90000000000fa00000000004000030000010000000000000025000000fff0ffff04040000000000000a00000006"]) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x390, 0x0, 0xfffffffffffffffb}]}) 14:16:52 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000025c0)=0x204, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='lp\x00', 0x3) bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23, @rand_addr=0x2}, 0x10) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={0x0, 0x5dc3}, &(0x7f0000000340)=0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x3, 0x7) r2 = openat$vsock(0xffffffffffffff9c, 0x0, 0x2200, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x399, 0xfffffffffffffbff}, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000002640)=@assoc_value, &(0x7f0000002680)=0x3a1) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, 0x0, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000006ac0)={0x0, 0xca}, &(0x7f0000006b00)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000006d40)={0x0, 0x0, 0x1, [0x0]}, &(0x7f0000006d80)=0xa) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1}, 0x100) finit_module(r1, &(0x7f00000000c0)='lp\x00', 0x3) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 287.171366][ T9914] FAULT_INJECTION: forcing a failure. [ 287.171366][ T9914] name failslab, interval 1, probability 0, space 0, times 0 [ 287.184382][ T9914] CPU: 0 PID: 9914 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 287.193314][ T9914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.193377][ T9914] Call Trace: [ 287.193398][ T9914] dump_stack+0x172/0x1f0 [ 287.193421][ T9914] should_fail.cold+0xa/0x15 [ 287.193436][ T9914] ? retint_kernel+0x2d/0x2d [ 287.193454][ T9914] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 287.193480][ T9914] __should_failslab+0x121/0x190 [ 287.193496][ T9914] should_failslab+0x9/0x14 [ 287.193514][ T9914] kmem_cache_alloc+0x47/0x710 [ 287.240214][ T9914] __es_insert_extent+0x2cc/0xf20 [ 287.240233][ T9914] ext4_es_insert_extent+0x2b7/0xa40 [ 287.250509][ T9914] ? ext4_es_scan_clu+0x50/0x50 [ 287.250523][ T9914] ? retint_kernel+0x2d/0x2d [ 287.250546][ T9914] ext4_map_blocks+0xb7b/0x1a00 [ 287.264767][ T9914] ? ext4_issue_zeroout+0x190/0x190 [ 287.269957][ T9914] ? kasan_check_write+0x14/0x20 [ 287.274884][ T9914] ? __brelse+0x95/0xb0 [ 287.274903][ T9914] ext4_getblk+0xc4/0x510 [ 287.274923][ T9914] ? ext4_iomap_begin+0xfe0/0xfe0 [ 287.288395][ T9914] ? lockdep_hardirqs_on+0x418/0x5d0 [ 287.293680][ T9914] ? retint_kernel+0x2d/0x2d [ 287.298266][ T9914] ? trace_hardirqs_on_caller+0x6a/0x220 [ 287.303881][ T9914] ext4_bread+0x8f/0x230 [ 287.308115][ T9914] ? ext4_getblk+0x510/0x510 [ 287.312682][ T9914] ? retint_kernel+0x2d/0x2d [ 287.317261][ T9914] ext4_append+0x155/0x370 [ 287.321661][ T9914] ext4_mkdir+0x61b/0xdf0 [ 287.325997][ T9914] ? ext4_init_dot_dotdot+0x520/0x520 [ 287.331456][ T9914] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.337675][ T9914] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.343894][ T9914] ? security_inode_permission+0xd5/0x110 [ 287.349595][ T9914] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.355814][ T9914] ? security_inode_mkdir+0xee/0x120 [ 287.361079][ T9914] vfs_mkdir+0x433/0x690 [ 287.365304][ T9914] do_mkdirat+0x234/0x2a0 [ 287.369610][ T9914] ? __ia32_sys_mknod+0xb0/0xb0 [ 287.374442][ T9914] __x64_sys_mkdir+0x5c/0x80 [ 287.379012][ T9914] do_syscall_64+0x103/0x610 [ 287.383580][ T9914] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.389449][ T9914] RIP: 0033:0x457257 [ 287.393323][ T9914] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.412902][ T9914] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 287.421301][ T9914] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 287.429250][ T9914] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 [ 287.437212][ T9914] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 287.445182][ T9914] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 287.453133][ T9914] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:54 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:54 executing program 5: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") unshare(0x4000400) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) ioctl$sock_SIOCINQ(r1, 0x8906, 0x0) r2 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0xf3f, 0x10000) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e23, @multicast2}}}, &(0x7f0000000100)=0x84) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000240)={r3, 0x3}, 0x8) 14:16:54 executing program 1: socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, 0x0}) close(r0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x0, 0x0, 0x3, 0x10001}, 0xffffff43) setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x127) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x8001, 0x101400) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000040)={0x3, 0x80000000}) sendmsg$tipc(r1, &(0x7f0000001740)={&(0x7f0000001600)=@name, 0x10, 0x0}, 0x1) 14:16:54 executing program 3 (fault-call:1 fault-nth:31): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:54 executing program 4: r0 = socket$kcm(0x10, 0x4000000002, 0x10) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x80000, 0x0) ioctl$VT_DISALLOCATE(r1, 0x5608) sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)="2e0000002b00812de45ae087185082cf0124b0eba06ec4410100000000000800000000000000000051894dd65b2f", 0x2e}], 0x1}, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x400, 0x0) [ 289.593917][ T9935] FAULT_INJECTION: forcing a failure. [ 289.593917][ T9935] name failslab, interval 1, probability 0, space 0, times 0 [ 289.606650][ T9935] CPU: 1 PID: 9935 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 289.615664][ T9935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.625712][ T9935] Call Trace: [ 289.629013][ T9935] dump_stack+0x172/0x1f0 [ 289.633349][ T9935] should_fail.cold+0xa/0x15 [ 289.637940][ T9935] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 289.643746][ T9935] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 289.649482][ T9935] ? __es_tree_search.isra.0+0x1bf/0x230 [ 289.655124][ T9935] __should_failslab+0x121/0x190 [ 289.660064][ T9935] should_failslab+0x9/0x14 [ 289.664566][ T9935] kmem_cache_alloc+0x47/0x710 [ 289.669330][ T9935] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 289.675042][ T9935] ? ext4_es_can_be_merged+0x1a3/0x2a0 [ 289.680499][ T9935] ? ext4_es_scan+0x6f0/0x6f0 [ 289.685179][ T9935] ? do_raw_write_lock+0x124/0x290 14:16:55 executing program 0: socket$nl_netfilter(0x10, 0x3, 0xc) openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x1, 0x9) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'veth1_to_team\x00', 0x8}, 0x18) sendmsg$rds(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000080)=""/211, 0xd3}, {&(0x7f0000000180)=""/71, 0x47}, {&(0x7f0000000200)=""/163, 0xa3}, {&(0x7f00000002c0)=""/211, 0xd3}, {&(0x7f00000003c0)=""/139, 0x8b}, {&(0x7f0000000480)=""/89, 0x59}, {&(0x7f0000000500)=""/249, 0xf9}], 0x7, &(0x7f0000000e00)=[@rdma_args={0x48, 0x114, 0x1, {{0xc00000000, 0x9}, {&(0x7f0000000680)=""/245, 0xf5}, &(0x7f0000000a40)=[{&(0x7f0000000780)=""/219, 0xdb}, {&(0x7f0000000880)=""/186, 0xba}, {&(0x7f0000000940)=""/55, 0x37}, {&(0x7f0000000980)=""/56, 0x38}, {&(0x7f00000009c0)=""/86, 0x56}], 0x5, 0x48, 0x2}}, @cswp={0x58, 0x114, 0x7, {{0x8, 0x3}, &(0x7f0000000ac0)=0x7fff, &(0x7f0000000b00)=0x1, 0x800, 0xffff, 0x0, 0x202000000000000, 0x9, 0x3}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x800}, @zcopy_cookie={0x18, 0x114, 0xc, 0x3}, @mask_fadd={0x58, 0x114, 0x8, {{0x6, 0x8}, &(0x7f0000000b40)=0x2, &(0x7f0000000b80)=0x4, 0x6, 0x7fffffff, 0x0, 0x1000, 0xc, 0x7}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x6}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f0000000bc0)=""/72, 0x48}, &(0x7f0000000c40), 0x1b}}, @mask_cswp={0x58, 0x114, 0x9, {{0x42402c81, 0x7ff}, &(0x7f0000000c80)=0xffffffff7fffffff, &(0x7f0000000cc0), 0x3ff, 0x4, 0x649, 0x9, 0x20, 0x9}}, @fadd={0x58, 0x114, 0x6, {{0xffffffff00000000, 0x3f}, &(0x7f0000000d00)=0x9, &(0x7f0000000d40)=0x2, 0x2, 0x6, 0x68, 0x7f, 0x10, 0x5}}, @mask_fadd={0x58, 0x114, 0x8, {{0x580, 0x7fffffff}, &(0x7f0000000d80)=0x8e9, &(0x7f0000000dc0)=0x3, 0x7fff, 0x6, 0x5aae, 0x1, 0x1, 0x100000001}}], 0x278, 0x40000}, 0x40844) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) ioctl(r0, 0x8916, &(0x7f0000000000)) ioctl(r0, 0x8936, &(0x7f0000000000)) 14:16:55 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) setsockopt$inet_mreqn(r1, 0x0, 0x23, 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/uhid\x00', 0x802, 0x0) read(r3, 0x0, 0x0) ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f0000000040)=0x6) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f00000002c0)=""/4096, &(0x7f0000000080)=0x1000) 14:16:55 executing program 5: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 289.690835][ T9935] __es_insert_extent+0x2cc/0xf20 [ 289.695867][ T9935] ext4_es_insert_extent+0x2b7/0xa40 [ 289.701151][ T9935] ? ext4_es_scan_clu+0x50/0x50 [ 289.701182][ T9935] ext4_map_blocks+0xb7b/0x1a00 [ 289.710858][ T9935] ? ext4_issue_zeroout+0x190/0x190 [ 289.716060][ T9935] ? kasan_check_write+0x14/0x20 [ 289.720997][ T9935] ? __brelse+0x95/0xb0 [ 289.725164][ T9935] ext4_getblk+0xc4/0x510 [ 289.729492][ T9935] ? ext4_iomap_begin+0xfe0/0xfe0 [ 289.729512][ T9935] ? ext4_free_inode+0x1450/0x1450 [ 289.729532][ T9935] ext4_bread+0x8f/0x230 14:16:55 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='/\x00~WM\x00\x030\x80\x90\"\xcf\xde&U]\xc9\xec\xfe\x19t@n\xda\xd3\x83dx-c\xb6a(T\xb9\xe4\x9d\xbd\xca\xefq\x81\x97\xe3~\x87\n0\x8b\x1e:y\x8f\xa7\x88\xa4m0%\xef\x93>Q\x82\x8a\xb6u\x06N*\xdb\xe9\x12d#\xb4\xa7=h\xfb\xe9\x9cm\xb2\xf1`\xd4\x9c\xb6\xcc\xe7l\'(\x9aO\x9d\tsT\xaa\xa5\x86\r#\x83\xdf\x87Rk\xaa\x18M\x90\xbbw)6l\x17\xbc3\xd7e\xe9\xbc/\x88*\x13\xf3\xa9\xc1\xf6\x06`\xbdO\xd2\xfa1\xd2\xc0\xa7u$\"\x89\xbc\xe0b\xd1\r$\xde\xd5@i\x18\xa6k,u\xc4?\xe1\xffE\x8a\xe5\xcd\x9f\xecc\x03\x9b\xa5\xa7\xb6j`\xed\xe5\xcc\xda\xbc~\xe7v`\xef#X\xcc\xdf\xf0\"&\x02\x13\x84\xb0\xc25\xf1\x14\xed\x9a\xde\x92vz\xec\xc2V\xac\xde\xb6\x10\xdfB\xe7\x16\x9f$\x03W\xf75\xae_\xe2\x90\x17\xe5\x1e\'%/H\xb9[\xfb\xbb:\x86U5)\x8b\xdc6\xd7\x1d\xb65\xf4\x1cWw\x1d\xb7z\xea\xff\x88?\xeb=\xc3\xcc$\xbd<\x03n9j\xd3\xaf7\x94PX\x83\x9e\x81\"p\xbc@\x90\x1f\xa6T\xe7\xcc2\x92\xa8/\xc8\f7M\xc0qB\xa1\xc2\xe9\xd3\xe2R\x8eO\xda\xc3+\xca\xef\xe9\x10\xeb\xd3\xb9H\xa3\xbf\xeb\xef_\xa8\xd8$s\xc7\xfb\xf3\xec', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) fcntl$notify(0xffffffffffffffff, 0x402, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000400)) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @multicast2}, 0x10) getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000005c0)={'nat\x00'}, &(0x7f00000003c0)=0x54) sendto$inet(r2, 0x0, 0x0, 0x200007fa, &(0x7f0000000140)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000200)='sit0\x00', 0x10) r3 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x4, 0x105082) r4 = syz_open_dev$sndpcmp(&(0x7f00000002c0)='/dev/snd/pcmC#D#p\x00', 0x2, 0x8040) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000300)={0x0, 0x1ff}) add_key(&(0x7f0000000440)='pkcs7_test\x00', &(0x7f0000000480)={'syz'}, 0x0, 0x0, 0xfffffffffffffffb) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x7, 0x10}, &(0x7f0000000580)=0xc) getegid() getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000180)={r5, 0xa6}, &(0x7f0000000240)=0x8) ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r3) getsockopt$IP_VS_SO_GET_DESTS(r2, 0x0, 0x484, &(0x7f00000004c0)=""/170, &(0x7f0000000380)=0xaa) ioctl$TIOCGETD(r4, 0x5424, &(0x7f0000000340)) geteuid() ioctl$UI_END_FF_ERASE(r4, 0x400c55cb, &(0x7f0000000280)={0x4, 0x2}) pwritev(0xffffffffffffffff, &(0x7f0000f50f90)=[{&(0x7f0000000640)="a8", 0x1}], 0x1, 0x81003) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, 0xffffffffffffffff) sendfile(r3, r1, 0x0, 0x102000002) fcntl$notify(r0, 0x402, 0x22) fcntl$notify(r1, 0x402, 0x0) [ 289.743845][ T9935] ? ext4_getblk+0x510/0x510 [ 289.748442][ T9935] ext4_append+0x155/0x370 [ 289.752862][ T9935] ext4_mkdir+0x61b/0xdf0 [ 289.757227][ T9935] ? ext4_init_dot_dotdot+0x520/0x520 [ 289.762604][ T9935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.768837][ T9935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.775086][ T9935] ? security_inode_permission+0xd5/0x110 [ 289.780800][ T9935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.787038][ T9935] ? security_inode_mkdir+0xee/0x120 [ 289.787059][ T9935] vfs_mkdir+0x433/0x690 [ 289.787075][ T9935] do_mkdirat+0x234/0x2a0 [ 289.787090][ T9935] ? __ia32_sys_mknod+0xb0/0xb0 [ 289.805718][ T9935] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 289.811179][ T9935] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.817252][ T9935] ? do_syscall_64+0x26/0x610 [ 289.821946][ T9935] ? lockdep_hardirqs_on+0x418/0x5d0 [ 289.827234][ T9935] __x64_sys_mkdir+0x5c/0x80 [ 289.831827][ T9935] do_syscall_64+0x103/0x610 [ 289.831849][ T9935] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.831860][ T9935] RIP: 0033:0x457257 [ 289.831875][ T9935] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 289.831888][ T9935] RSP: 002b:00007fbe09089a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 289.874205][ T9935] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000457257 [ 289.874214][ T9935] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 0000000020000100 14:16:55 executing program 0: syz_emit_ethernet(0x6e, &(0x7f0000000080)={@local, @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x7, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @rand_addr=0x1c00000, {[@rr={0x7, 0x3, 0x276c}, @rr={0x7, 0x3}]}}, @gre}}}}, 0x0) syz_extract_tcp_res(&(0x7f0000000000), 0x100, 0x9) [ 289.874221][ T9935] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 289.874234][ T9935] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000005 [ 289.906082][ T9935] R13: 0000000000000000 R14: 00000000004db990 R15: 0000000000000004 14:16:55 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) clone(0x13102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(r1, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x1b) ptrace$cont(0x18, r1, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x3}) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000140)={0x0, 0x0, 0x4, 0x0, [], [{0x3, 0x655, 0x8, 0x0, 0x1, 0xfffffffffffffff9}, {0x3, 0xed, 0x4, 0x4}], [[], [], [], []]}) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)={0x0, 0x74ca000000000000, 0xfffffffffffffff7}) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r1, 0x0, 0x0) [ 289.978522][ T9962] IPVS: length: 170 != 24 [ 290.009998][ T9971] IPVS: length: 170 != 24 14:16:57 executing program 3 (fault-call:1 fault-nth:32): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:57 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xffffffffffffffff, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:16:57 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000000)={'raw\x00'}, &(0x7f0000000080)=0x54) bind$bt_hci(r0, &(0x7f0000000040), 0x3e) close(r0) poll(&(0x7f00000000c0)=[{r1, 0x4010}, {r1}, {r1, 0x4002}, {r1, 0x1000}, {r0}, {r0, 0x40c0}, {r0, 0x4000}, {r0, 0xd030}], 0x8, 0x4) 14:16:57 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x8400, 0x0) bind$pptp(r1, &(0x7f0000000080)={0x18, 0x2, {0x0, @remote}}, 0x1e) ioctl$SCSI_IOCTL_STOP_UNIT(r1, 0x6) ioctl$sock_bt_cmtp_CMTPCONNDEL(r0, 0x800443d2, &(0x7f0000000000)={{0x401}}) 14:16:57 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:57 executing program 1: inotify_init1(0x7fffc) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x41395527) socket$vsock_dgram(0x28, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000100)=@get={0x1, &(0x7f0000000080)=""/23, 0x5}) r3 = semget(0x2, 0x1, 0x400) semctl$SETALL(r3, 0x0, 0x11, &(0x7f0000000180)=[0x80000001, 0x1, 0x1a, 0xfff, 0x1, 0x0]) clock_gettime(0x0, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7}, &(0x7f0000000200), 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 14:16:58 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:58 executing program 4: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xe, 0x4, 0x4, 0xa94, 0x0, 0xffffffffffffffff, 0x0, [0x7, 0x0, 0x0, 0x0, 0x320]}, 0x2c) syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x6, 0x10a00) [ 292.775306][ T9993] FAULT_INJECTION: forcing a failure. [ 292.775306][ T9993] name failslab, interval 1, probability 0, space 0, times 0 [ 292.792416][ T9993] CPU: 1 PID: 9993 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 292.801356][ T9993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 292.811408][ T9993] Call Trace: [ 292.814704][ T9993] dump_stack+0x172/0x1f0 [ 292.819038][ T9993] should_fail.cold+0xa/0x15 [ 292.823635][ T9993] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 292.829444][ T9993] ? lock_downgrade+0x880/0x880 [ 292.834303][ T9993] ? ___might_sleep+0x163/0x280 [ 292.839154][ T9993] __should_failslab+0x121/0x190 [ 292.844093][ T9993] should_failslab+0x9/0x14 [ 292.848597][ T9993] __kmalloc_track_caller+0x2d8/0x740 [ 292.853969][ T9993] ? strndup_user+0x77/0xd0 [ 292.858472][ T9993] memdup_user+0x26/0xb0 [ 292.862737][ T9993] strndup_user+0x77/0xd0 [ 292.867066][ T9993] ksys_mount+0x3c/0x150 [ 292.871312][ T9993] __x64_sys_mount+0xbe/0x150 [ 292.875994][ T9993] do_syscall_64+0x103/0x610 [ 292.880586][ T9993] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.886474][ T9993] RIP: 0033:0x45a8aa [ 292.890377][ T9993] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 292.909973][ T9993] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 292.918377][ T9993] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa 14:16:58 executing program 0: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r1, 0x0, 0x0, 0x1000f4) open(&(0x7f0000000400)='./bus\x00', 0x0, 0x0) mlockall(0x1) ioctl$CAPI_REGISTER(0xffffffffffffffff, 0x400c4301, 0x0) lseek(r1, 0x0, 0x4) msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000080)=""/77) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6, 0x0) readv(r0, &(0x7f0000000340)=[{&(0x7f0000000240)=""/217, 0xb4}], 0x36) gettid() 14:16:58 executing program 4: userfaultfd(0x0) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000200), 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000000)={0x0, @in={{0x2, 0x4e23, @loopback}}, 0x7, 0x10000}, &(0x7f0000000100)=0x90) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000000140)=r2, 0x4) preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/42, 0x2a}, {&(0x7f00000002c0)=""/135, 0x87}, {&(0x7f00000001c0)=""/29, 0x1d}, {&(0x7f0000000240)=""/14, 0xe}, {&(0x7f0000000380)=""/58, 0x3a}], 0x5, 0x0) [ 292.926357][ T9993] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 292.934323][ T9993] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 292.942284][ T9993] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 292.950332][ T9993] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 293.047624][ T26] audit: type=1804 audit(1549203418.350:56): pid=10012 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/96/bus" dev="sda1" ino=16595 res=1 14:16:58 executing program 3 (fault-call:1 fault-nth:33): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:16:58 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:16:58 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x1, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)={0x0, 0x0}) ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000140)=r1) utimensat(r0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={{0x77359400}}, 0x0) clone(0x42302001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x1b) ptrace$cont(0x18, r2, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x20000000, 0xca}) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) creat(&(0x7f0000000000)='./file0\x00', 0x0) ptrace$cont(0x1f, r2, 0x0, 0x0) [ 293.234048][T10025] FAULT_INJECTION: forcing a failure. [ 293.234048][T10025] name failslab, interval 1, probability 0, space 0, times 0 [ 293.294468][T10025] CPU: 0 PID: 10025 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 293.303738][T10025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.303743][T10025] Call Trace: [ 293.303764][T10025] dump_stack+0x172/0x1f0 [ 293.303785][T10025] should_fail.cold+0xa/0x15 [ 293.303803][T10025] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 293.303819][T10025] ? lock_downgrade+0x880/0x880 [ 293.303834][T10025] ? ___might_sleep+0x163/0x280 [ 293.303851][T10025] __should_failslab+0x121/0x190 [ 293.303867][T10025] should_failslab+0x9/0x14 [ 293.303886][T10025] kmem_cache_alloc_trace+0x2d1/0x760 [ 293.326073][T10025] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 293.326088][T10025] ? _copy_from_user+0xdd/0x150 [ 293.326107][T10025] copy_mount_options+0x5c/0x440 [ 293.326124][T10025] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 293.378497][T10025] ksys_mount+0xa7/0x150 [ 293.382733][T10025] __x64_sys_mount+0xbe/0x150 [ 293.387406][T10025] do_syscall_64+0x103/0x610 [ 293.392004][T10025] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 293.397888][T10025] RIP: 0033:0x45a8aa [ 293.401778][T10025] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 293.421378][T10025] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 293.429780][T10025] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 293.437749][T10025] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 293.445721][T10025] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 293.453694][T10025] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 293.461664][T10025] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 293.809167][ T26] audit: type=1804 audit(1549203419.110:57): pid=10019 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/96/bus" dev="sda1" ino=16595 res=1 [ 293.838362][ T26] audit: type=1804 audit(1549203419.110:58): pid=10041 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/96/bus" dev="sda1" ino=16595 res=1 14:17:01 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xffffffffffffffff, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:01 executing program 5: socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:01 executing program 4: recvmsg$kcm(0xffffffffffffffff, 0x0, 0xd6e1009cf3c9964f) r0 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x10000, 0x8000) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100), 0x10) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x44500, 0x0) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00') setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000dc0)=[@in6={0xa, 0x4e22, 0x40, @remote, 0x1000}, @in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e20, @local}, @in={0x2, 0x4e24, @multicast1}], 0x4c) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000140)={0x0, @loopback, @empty}, &(0x7f0000000180)=0xc) ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f00000001c0)={'nlmon0\x00', 0x0}) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000200)={@dev, @dev, 0x0}, &(0x7f0000000240)=0xc) r6 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r6, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") r7 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000002c0)={'lo\x00\x00\x00\x00\x02\x00', 0x0}) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000080)={r8, 0x3, 0x6, @dev}, 0x10) close(r7) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}}}, &(0x7f00000003c0)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000440)={{{@in=@empty, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0x11) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x14, &(0x7f0000000580)={@remote, 0x0}, &(0x7f00000005c0)=0x14) accept4$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000640)=0x14, 0x80800) recvmsg(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000680)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000700)=""/255, 0xff}, {&(0x7f0000000800)=""/162, 0xa2}], 0x2, &(0x7f0000000900)=""/212, 0xd4}, 0x140) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000d00)={0x3, 0x1, 0xffffffff7fffffff, 0x4}) sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000d80)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000a40)=ANY=[@ANYBLOB="cc020000", @ANYRES16=r2, @ANYBLOB="00042bbd7000fec4df25e9ffffff08000100", @ANYRES32=r3, @ANYBLOB="c00002003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r4, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004000300000008000600", @ANYRES32=r5, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004000700000008000600", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="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", @ANYRES32=r11, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="3c00020038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000800030003000000080004000900000008000100", @ANYRES32=r13, @ANYBLOB="7800020038000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000080003000300000008000400080000003c000100240001006d6f64650000000000000000000000000000000000000000000000000000000008000300050000000c00040072616e646f6d0000"], 0x2cc}, 0x1, 0x0, 0x0, 0x4000040}, 0x800) getsockopt$packet_int(r7, 0x107, 0x11, &(0x7f0000000280), &(0x7f0000000400)=0x4) 14:17:01 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x8000, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='cdg\x00', 0x4) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu\x00', 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000000)='cpuset.cpus\x00', 0x2, 0x0) sendfile(r2, r2, 0x0, 0xf9f4) 14:17:01 executing program 3 (fault-call:1 fault-nth:34): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:01 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000000240)='/dev/snd/pcmC#D#p\x00', 0x4, 0x2000) ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000140)={0x80000000, 0x9}) r1 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x0, 0x0) ioctl$VIDIOC_ENUM_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000040)) 14:17:01 executing program 0: r0 = userfaultfd(0x0) munmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x3c}) read(r0, &(0x7f0000000000)=""/128, 0x80) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000004fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1e, 0x8031, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000003c0)={{&(0x7f0000ffb000/0x3000)=nil, 0x3000}, 0x1}) socket$can_raw(0x1d, 0x3, 0x1) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x81, 0x0) setxattr$trusted_overlay_origin(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='trusted.overlay.origin\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x0) ioctl$VIDIOC_ENUMAUDOUT(r1, 0xc0345642, &(0x7f00000000c0)={0x3, "09531984251f0ed1b91ab6567e9f998f6f85737f9e7319d77f82d9ec9b3cbc6b", 0x0, 0x1}) [ 295.774018][T10045] device lo entered promiscuous mode [ 295.785026][T10056] FAULT_INJECTION: forcing a failure. [ 295.785026][T10056] name failslab, interval 1, probability 0, space 0, times 0 [ 295.805400][T10045] device lo left promiscuous mode 14:17:01 executing program 5: socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:01 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xffffffffffffffff, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 295.860116][T10056] CPU: 1 PID: 10056 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 295.869166][T10056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.879229][T10056] Call Trace: [ 295.882524][T10056] dump_stack+0x172/0x1f0 [ 295.886868][T10056] should_fail.cold+0xa/0x15 [ 295.891471][T10056] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 295.897285][T10056] ? lock_downgrade+0x880/0x880 [ 295.902140][T10056] ? ___might_sleep+0x163/0x280 [ 295.902161][T10056] __should_failslab+0x121/0x190 [ 295.911916][T10056] should_failslab+0x9/0x14 [ 295.911934][T10056] __kmalloc_track_caller+0x2d8/0x740 [ 295.911955][T10056] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 295.911974][T10056] ? strndup_user+0x77/0xd0 [ 295.911993][T10056] memdup_user+0x26/0xb0 [ 295.936745][T10056] strndup_user+0x77/0xd0 [ 295.941068][T10056] ksys_mount+0x7b/0x150 [ 295.945312][T10056] __x64_sys_mount+0xbe/0x150 [ 295.949985][T10056] do_syscall_64+0x103/0x610 [ 295.954562][T10056] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 295.960446][T10056] RIP: 0033:0x45a8aa [ 295.964331][T10056] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 295.984018][T10056] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 295.992428][T10056] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 296.000391][T10056] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 296.008442][T10056] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 296.016407][T10056] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 296.024375][T10056] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:01 executing program 4: recvmsg$kcm(0xffffffffffffffff, 0x0, 0xd6e1009cf3c9964f) r0 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x10000, 0x8000) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100), 0x10) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x44500, 0x0) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00') setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000dc0)=[@in6={0xa, 0x4e22, 0x40, @remote, 0x1000}, @in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e20, @local}, @in={0x2, 0x4e24, @multicast1}], 0x4c) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000140)={0x0, @loopback, @empty}, &(0x7f0000000180)=0xc) ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f00000001c0)={'nlmon0\x00', 0x0}) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000200)={@dev, @dev, 0x0}, &(0x7f0000000240)=0xc) r6 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r6, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") r7 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000002c0)={'lo\x00\x00\x00\x00\x02\x00', 0x0}) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000080)={r8, 0x3, 0x6, @dev}, 0x10) close(r7) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}}}, &(0x7f00000003c0)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000440)={{{@in=@empty, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0x11) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x14, &(0x7f0000000580)={@remote, 0x0}, &(0x7f00000005c0)=0x14) accept4$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000640)=0x14, 0x80800) recvmsg(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000680)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000700)=""/255, 0xff}, {&(0x7f0000000800)=""/162, 0xa2}], 0x2, &(0x7f0000000900)=""/212, 0xd4}, 0x140) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000d00)={0x3, 0x1, 0xffffffff7fffffff, 0x4}) sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000000d80)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000a40)=ANY=[@ANYBLOB="cc020000", @ANYRES16=r2, @ANYBLOB="00042bbd7000fec4df25e9ffffff08000100", @ANYRES32=r3, @ANYBLOB="c00002003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000008000300060000000400040008000600", @ANYRES32=r4, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004000300000008000600", @ANYRES32=r5, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004000700000008000600", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="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", @ANYRES32=r11, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="3c00020038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000800030003000000080004000900000008000100", @ANYRES32=r13, @ANYBLOB="7800020038000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000080003000300000008000400080000003c000100240001006d6f64650000000000000000000000000000000000000000000000000000000008000300050000000c00040072616e646f6d0000"], 0x2cc}, 0x1, 0x0, 0x0, 0x4000040}, 0x800) getsockopt$packet_int(r7, 0x107, 0x11, &(0x7f0000000280), &(0x7f0000000400)=0x4) 14:17:01 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="cfdea22c6d2763a103fb2bbd010000801400000000000000000000010000000000000000897784c320c335b1cfd9e6d15c639979af12e30a51e195b1e5ec2062bd18ec2736a781a68f94b896144903da91bdb1e672358175f7b7c5565faf135d3d4a5c834a70d389a4e9523c0ec55efc4788fe37753a74198410e0bcd9b0dc6301960f5629c5dbcba1c49d171c379434a1d8a5"], &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0xc3, &(0x7f0000000300)=""/195, 0x0, 0x0, [0x42]}, 0x48) r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2) getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000040)=@assoc_id=0x0, &(0x7f0000000080)=0x4) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000000c0)={r1, 0xffffffff00000001}, 0x8) 14:17:01 executing program 3 (fault-call:1 fault-nth:35): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 296.181808][T10078] device lo entered promiscuous mode [ 296.213587][T10078] device lo left promiscuous mode [ 296.255656][T10085] FAULT_INJECTION: forcing a failure. [ 296.255656][T10085] name failslab, interval 1, probability 0, space 0, times 0 [ 296.284730][T10085] CPU: 0 PID: 10085 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 296.293889][T10085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.303955][T10085] Call Trace: [ 296.307258][T10085] dump_stack+0x172/0x1f0 [ 296.311593][T10085] should_fail.cold+0xa/0x15 [ 296.316206][T10085] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 296.322011][T10085] ? lock_downgrade+0x880/0x880 [ 296.326868][T10085] ? ___might_sleep+0x163/0x280 [ 296.331740][T10085] __should_failslab+0x121/0x190 [ 296.336687][T10085] should_failslab+0x9/0x14 [ 296.341204][T10085] kmem_cache_alloc_trace+0x2d1/0x760 [ 296.346580][T10085] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 14:17:01 executing program 5: socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:01 executing program 1: mount(&(0x7f0000000000)=@sg0='ubi7!dg0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='ubifs\x00\xfe\x8d\xcb\x92+l\xfe\x91\xa30\x7f\x1f\x92Y\x05\xae\x8a\xc0\x13\xce\xd7@\xeb\xa8e\xf6\x85\xf5r\xed\xf4\xc1\x1ePy\x02\xd1A\x03\x96i\x9d\xc66\x0e\xf7\x97\xf0\xa0`\x9fn\xf8\x8ez\xa2\x9e6\x0f\x9e\xe2\xfb\xf7\x05\x9e\xb7Ij\xc8\xec\xfb\xac\xbc\xe9w', 0x0, 0x0) 14:17:01 executing program 1: r0 = syz_open_dev$sndctrl(&(0x7f0000000640)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000b80)=""/4096) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x2f0080, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r4, &(0x7f0000000100)={0x2, 0x2}, 0x10) ioctl$sock_FIOSETOWN(r4, 0x8901, &(0x7f0000000580)=0xffffffffffffffff) ioctl$int_in(r4, 0x5452, &(0x7f0000000040)=0x19b) sendto$inet(r4, 0x0, 0x0, 0x900000020000000, &(0x7f0000000000)={0x2, 0x2, @local}, 0x10) sendto$inet(r4, &(0x7f00000001c0)="a5fe9e7be7060850100792f46b647308d3e2a67328969288734cc698158a84b40408261762639ee5e5881d4fb471fcb9639d30513ab42a04f920d8c1fa0c6ed49b0028fda44d1e69121bd2ff68125d42c7beccab2998e3392614583dd729cd341292ded369a34c4c75e12e8e0f519531fc8f11e74b74f2e5ad24cd0ab65395a2307394f48438306edcbb2ad2261f7535abea9833df32f75d92d392390b4fef75c9923a1745b53c", 0xa7, 0x8801, 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=0x0) r6 = geteuid() fstat(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ENTRY(r1, &(0x7f0000000280)={0x90, 0xffffffffffffffda, 0x5, {0x2, 0x1, 0x8, 0x9, 0x1ff, 0x3, {0x3, 0x0, 0x5, 0x7, 0xfffffffffffffffe, 0x0, 0x326b, 0x1f, 0x6, 0x6, 0x3a6, r6, r7, 0x0, 0x10001}}}, 0x90) fcntl$lock(r3, 0x6, &(0x7f0000000080)={0x0, 0x2, 0xc701, 0x6, r5}) openat$tun(0xffffffffffffff9c, &(0x7f0000000380)='/dev/net/tun\x00', 0x0, 0x0) syz_open_dev$dri(&(0x7f0000001080)='/dev/dri/card#\x00', 0x0, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) quotactl(0x0, 0x0, 0x0, 0x0) r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x4dc) ioctl$RTC_AIE_ON(r8, 0x7001) ioctl$RTC_AIE_OFF(r8, 0x7002) connect$inet(0xffffffffffffffff, 0x0, 0x0) add_key(&(0x7f00000001c0)='cifs.srgoL\xba]\xa4bLWD\xd3a\x1ed', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000380)="9b68d05fd2c86ce86915964bea150d31254488764f7f8929a86f7737ff750f4f8ebc5074d5ac0ca066a76e7094c3e3ba85350e7e6a1f59694241e09759cd523fe3cb0eb798", 0x45, 0xfffffffffffffffc) ioctl$RTC_PIE_OFF(r8, 0x7006) prctl$PR_GET_DUMPABLE(0x3) timer_create(0x0, &(0x7f0000000440)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, 0x0) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000001b80)=""/4096) [ 296.352825][T10085] ? _copy_from_user+0xdd/0x150 [ 296.357685][T10085] copy_mount_options+0x5c/0x440 [ 296.362620][T10085] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 296.368859][T10085] ksys_mount+0xa7/0x150 [ 296.373110][T10085] __x64_sys_mount+0xbe/0x150 [ 296.377788][T10085] do_syscall_64+0x103/0x610 [ 296.382376][T10085] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 296.388260][T10085] RIP: 0033:0x45a8aa [ 296.392157][T10085] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 296.411774][T10085] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 296.420194][T10085] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 296.428191][T10085] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 296.436176][T10085] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 296.444155][T10085] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 14:17:01 executing program 4: close(0xffffffffffffffff) syz_open_dev$video4linux(0x0, 0x0, 0x0) socketpair(0x1, 0x1, 0x0, 0x0) r0 = socket$inet6(0xa, 0x3, 0xfb) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x10000, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) socketpair(0x3, 0x5, 0x80, 0x0) sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000003c0), 0x10, &(0x7f0000000480)={&(0x7f00000005c0)=ANY=[@ANYBLOB], 0x1}, 0x1, 0x0, 0x0, 0xc000}, 0x4000810) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7f}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vsock\x00', 0x0, 0x0) ioctl$TIOCCONS(r2, 0x541d) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x2, 0x0) ioctl$int_in(r3, 0x800000c0045002, &(0x7f0000000580)=0x100040000) ioctl$SIOCGETNODEID(0xffffffffffffffff, 0x89e1, 0x0) clock_gettime(0x0, &(0x7f0000000140)) r4 = fcntl$dupfd(r1, 0x0, r1) socket$bt_rfcomm(0x1f, 0x1, 0x3) dup2(0xffffffffffffffff, 0xffffffffffffffff) splice(r4, &(0x7f0000000080), r4, &(0x7f0000000240), 0x766, 0xb) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000100)={'bond0\x00'}) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@ax25, 0x80, &(0x7f0000000000), 0x0, &(0x7f00000001c0)=""/17, 0x11}, 0x3f00) [ 296.452129][T10085] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 296.537422][T10103] Unknown ioctl 21533 14:17:01 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:01 executing program 3 (fault-call:1 fault-nth:36): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 296.637766][T10111] FAULT_INJECTION: forcing a failure. [ 296.637766][T10111] name failslab, interval 1, probability 0, space 0, times 0 [ 296.651174][T10111] CPU: 1 PID: 10111 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 296.660207][T10111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.670261][T10111] Call Trace: [ 296.673550][T10111] dump_stack+0x172/0x1f0 [ 296.677919][T10111] should_fail.cold+0xa/0x15 [ 296.682516][T10111] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 296.688323][T10111] ? lock_downgrade+0x880/0x880 [ 296.693202][T10111] ? ___might_sleep+0x163/0x280 [ 296.698072][T10111] __should_failslab+0x121/0x190 [ 296.703009][T10111] should_failslab+0x9/0x14 [ 296.707516][T10111] kmem_cache_alloc_trace+0x2d1/0x760 [ 296.712889][T10111] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 296.719129][T10111] ? _copy_from_user+0xdd/0x150 [ 296.724000][T10111] copy_mount_options+0x5c/0x440 [ 296.728950][T10111] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 296.735192][T10111] ksys_mount+0xa7/0x150 [ 296.739437][T10111] __x64_sys_mount+0xbe/0x150 [ 296.744127][T10111] do_syscall_64+0x103/0x610 [ 296.748731][T10111] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 296.754617][T10111] RIP: 0033:0x45a8aa [ 296.758515][T10111] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 296.778110][T10111] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 296.786522][T10111] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 296.794490][T10111] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 296.802455][T10111] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 296.810517][T10111] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 296.818485][T10111] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 296.832388][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 296.838198][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 296.973633][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 296.980104][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 296.987013][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 296.993313][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 297.292376][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 297.298315][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 297.322005][T10120] Unknown ioctl 21533 14:17:02 executing program 0: r0 = socket$inet(0x2, 0xf7b1eecc7cd289ea, 0x8) syz_open_dev$sg(0x0, 0x0, 0x5) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000700)='./\xe8_\x02\xde\x10\xb5\x14\xb9v\xbf8p\xeb\x11\x96\xd6$\x14p\x8cZ\x0f\xfc*\xa3kj\x01:\xcd{R\x97\xbd\x05&\xad\x13\xfcW#>\\I&m\x96W\x02\xb33X\x16Z\x82\xd7\x8a(n\xbc\x82gOEc\xd8V\x1b\xc8\\\xb4\atjsf\xf0:\xd5\xc2_\xf3f6\xfc\xb0\x06\xf9\f\xb5\xd4#\xf9J\xf0\xd8\xfe_\x1c\xff\xe0\"8\xdf\xf5^\\\xd6\x13\x85or#\xf38\xd9\xeeh\xb0%\xcc\xf7\xe5.\x8c\xa3\x7f\x84\x17l\r\x18\xd1\xea\x14\xa0\xcc\xd9\xb5\xc3_\x84\x93\xd1UG\xb3\x88*\x8a\xc7I\bD\riO\xe4\r\xfd\xbf\x98\xbd%\xc9(\xbe\xcd\b\x1b\x14\x8a\\\xdd\xd0\x86\x89\xed\xe9\xb09\xa3\xf4F%@&w\x89(\xb1\xeei\xf7\xde\xa1\xee\xbbj\xeb\x12', 0x200002, 0x0) perf_event_open(&(0x7f0000000540)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x4000, 0x28) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x42, 0x12) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000600)={0x1b2, 0x8000, 0x2, 0xfff, 0x0, 0x8, 0x6, 0x8, 0x0}, &(0x7f0000000640)=0x20) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000680)={0xc8, 0x7, 0x4, 0x1, 0x3ff, 0x0, 0x9, 0x0, r3}, &(0x7f00000006c0)=0x20) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x0) write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, 0x0, 0x0) keyctl$join(0x1, &(0x7f00000005c0)) r4 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x0, 0x880) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/syz0\x00', 0x1ff) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, &(0x7f0000000040)=0x6, 0x4) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000500)={0xa, &(0x7f00000003c0)=[{0x5, 0x1, 0x2, 0x2}, {0x200, 0x401, 0x99, 0x7}, {0x1, 0x5, 0x2, 0x3}, {0x2, 0x3, 0x0, 0x9}, {0x4, 0x7, 0x7, 0x5}, {0x7, 0x200, 0x4, 0x81}, {0x6, 0xfffffffffffffffb, 0x5, 0x8}, {0x7, 0x11, 0x100000000, 0x8}, {0x6, 0xfffffffffffffbb2, 0x4, 0xffffffff}, {0x80000000, 0x4, 0x3, 0xc5}]}, 0x10) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6) socket$inet_smc(0x2b, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x14) sched_yield() ioctl$LOOP_CTL_ADD(r5, 0x4c80, 0x0) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000800)={0x118, r7, 0x300, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x34, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast1}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x18}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x9}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x54, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@dev={0xfe, 0x80, [], 0x25}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x16}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xc}]}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20, 0x1}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x28}}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x84}, 0x4) getsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f0000000340)=0x9e0b, &(0x7f0000000380)=0x1) 14:17:02 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:04 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:04 executing program 3 (fault-call:1 fault-nth:37): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:04 executing program 4: r0 = socket$kcm(0x10, 0x100000002, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x40000, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="230000001e0081aee4050c00000f00fe070101000000000063dac37b7403242189c609", 0x23}], 0x1}, 0x0) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000200)=@buf={0xfb, &(0x7f0000000100)="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"}) r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/tcp\x00') setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f00000002c0)={'filter\x00', 0x7, 0x4, 0x678, 0x430, 0x218, 0x0, 0x590, 0x590, 0x590, 0x4, &(0x7f0000000280), {[{{@uncond, 0xf0, 0x218}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x6, 'system_u:object_r:devicekit_exec_t:s0\x00'}}}, {{@uncond, 0xf0, 0x218}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x4462, 'system_u:object_r:agp_device_t:s0\x00'}}}, {{@arp={@empty, @rand_addr=0x4, 0xff000000, 0xff000000, @empty, {[0xff, 0xff, 0x0, 0x0, 0xff]}, @empty, {[0xff, 0xff, 0xff, 0xff]}, 0x7, 0x8000, 0x100000000, 0x7fffffff, 0x401, 0xe4, 'lo\x00', 'rose0\x00', {}, {0xff}, 0x0, 0x88}, 0xf0, 0x160}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x3ff, 0xf3, 0x497, 0x1, 0x0, "e2897b6bcc178806274a4c2d141563564ec99a381361bdf5cc1ad68c8d9cc39e2a9bf16ee591deb8d002b304ff3bf5a08b4f82c421f7d052d524c09b2834349f"}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x6c8) 14:17:04 executing program 1: r0 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c) ioctl$PPPIOCCONNECT(r0, 0x4004743a, &(0x7f0000000000)=0x1) r1 = socket$kcm(0x10, 0x4000000003, 0x10) sendmsg$kcm(r1, &(0x7f0000000a40)={&(0x7f0000000040)=@pppoe={0x18, 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'ip6_vti0\x00'}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000180)="c1b955827769f3d01d43cabee48523f675093a2feb688ecea0f419b409cf5796d62f371c4858e2ce7de97d8e3f56f1f7a0729a6c74dd55c08c797697f92001cca88f79da264d7b33fc6805da06b20a1faf8f1c9f95f0adf611b5a158230b217d6bcbdc0a02aacf05631476d403f239dcf65729452f8fe51467a618be6c3e3fe3a498d6c0e99f26b31de304d44c59ce973ff33a25dcfdcc2245d0a11cd1c7e1dd956f934c7b957f40f2d0ba7b0580dd793d7f873caf95fa8257fd989bdac9d521eb479ef53494d73e66c8b283ddc071bdf4fd976310b23d56c4baa68a743b41f1245fdf", 0xe3}, {&(0x7f0000000280)="0c132e3b57f3c40a19176a5a6c91b77c6a3b64c7500b41fbde855c702ea0970c98f125cd733bc1d8dc7208c37fa6dd00d25ed8df9e9b7d1f9c0a3596bed083e5d7ac21dfcff314e0c73065561c79f313a41d89ef24fcf485b9eeb27df00b46630633c7e924d0013ab54efac764de7e5b4d7a7443c9c8dd39f262890595b3d100f62961b3db675ed84ca0d09bf3d22fb93b914c4ad2253667da156219c82c08326a7818c91ec3", 0xa6}, {&(0x7f0000000340)="78fdd0aac6fed13f0b6e86162d3a82b621a618292e8b4a104a4e627f93b93e53ef", 0x21}, {&(0x7f0000000380)="da1aeae93c8d01f9e1131dd91e864a1ae280eb57e9d2fdb4dc9a6ba0391efd712b126612bb56b9cb0dc4a96c398b1a48f1feb3d87b9edadee4aa3f02c390afbc25cdc1c79bca13d73a0b0738a107b769a1eccba89a0908139f3ec4b016856fa9cb7237bc1738e0bd3800c1e362d4b73f7b60c0e06ec9fc65753a3f3ab3fa25d97934311d8d0da26b38e19c5a5e3664691d5cb3b478", 0x95}], 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x590}, 0x0) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000ac0)='fou\x00') sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x34, r2, 0x0, 0x70bd29, 0x25dfdbff, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0xff}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e24}]}, 0x34}}, 0x20000801) sendmsg$kcm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)="2e0000002b00672de45ae087185082cf0124b0eba06ec44105000000000000140000000000008d0051894dd65b2f", 0x2e}], 0x1}, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000bc0)=[@in={0x2, 0x4e20, @rand_addr=0x7}, @in={0x2, 0x4e20, @rand_addr=0x6}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x10}}, @in={0x2, 0x4e23, @empty}], 0x40) 14:17:04 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:04 executing program 0: r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x9, 0x20c002) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f0000000040)=0xcb1) ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000080)={0x3, 0x1ff}) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f00000000c0)=0x5) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f0000000100)=0x6) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f0000000140)=0x9) ioctl$VIDIOC_DQEVENT(r0, 0x80885659, &(0x7f0000000180)={0x0, @frame_sync}) ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000240)) ioctl$SCSI_IOCTL_START_UNIT(r0, 0x5) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f00000002c0)) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000300)='/dev/video35\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000340)={0xffffffffffffffff}, 0x0, 0x7}}, 0x20) write$RDMA_USER_CM_CMD_REJECT(r0, &(0x7f00000003c0)={0x9, 0x108, 0xfa00, {r2, 0x6f, "5c658b", "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"}}, 0x110) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) r3 = fcntl$getown(r1, 0x9) fcntl$setown(r1, 0x8, r3) getsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000500)={@dev, @multicast1}, &(0x7f0000000540)=0x8) r4 = getuid() setuid(r4) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000001640)={0x2d, 0xb31, 0x44, 0x48, &(0x7f0000000580)=""/72, 0x1000, &(0x7f0000000600)=""/4096, 0x1a, &(0x7f0000001600)=""/26}) syz_genetlink_get_family_id$nbd(&(0x7f0000001680)='nbd\x00') syz_mount_image$hfsplus(&(0x7f00000016c0)='hfsplus\x00', &(0x7f0000001700)='./file0\x00', 0xfffffffffffeffff, 0x1, &(0x7f00000017c0)=[{&(0x7f0000001740)="f138eb96be987c89b885e3ba14a0889bc63e2ef84885ad2e652762e9c9fea0cd61e8a00eb2f518809dad80e919a4a69747720d8a8b3311d55be1b79282a081d2709dd55f975b47cd7d8dafd3cbfe041ccdd561fb45fdc0cb5800753cf6618fa1f561f56f60", 0x65, 0x4}], 0x20, &(0x7f0000001800)={[{@creator={'creator', 0x3d, "84ceca91"}}, {@type={'type', 0x3d, "eefedde3"}}], [{@dont_measure='dont_measure'}, {@fsmagic={'fsmagic', 0x3d, 0x9}}, {@fsmagic={'fsmagic', 0x3d, 0x60}}, {@uid_eq={'uid', 0x3d, r4}}]}) ioctl$SNDRV_TIMER_IOCTL_STATUS(r0, 0x80605414, &(0x7f0000001880)=""/134) r5 = socket$packet(0x11, 0x2, 0x300) ioctl$CAPI_GET_ERRCODE(r0, 0x80024321, &(0x7f0000001940)) getsockopt$IP_VS_SO_GET_SERVICES(r5, 0x0, 0x482, &(0x7f0000001980)=""/218, &(0x7f0000001a80)=0xda) ioctl$TIOCNXCL(r0, 0x540d) ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000001ac0)=[0x4, 0x8001]) [ 298.929587][T10149] netlink: 3 bytes leftover after parsing attributes in process `syz-executor4'. [ 298.947076][T10151] FAULT_INJECTION: forcing a failure. [ 298.947076][T10151] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 298.960289][T10151] CPU: 1 PID: 10151 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 298.969297][T10151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.979339][T10151] Call Trace: [ 298.982631][T10151] dump_stack+0x172/0x1f0 [ 298.986983][T10151] should_fail.cold+0xa/0x15 [ 298.991586][T10151] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 298.997393][T10151] ? mark_held_locks+0xf0/0xf0 [ 299.002172][T10151] should_fail_alloc_page+0x50/0x60 [ 299.007477][T10151] __alloc_pages_nodemask+0x1a1/0x7e0 [ 299.010473][T10162] netlink: 3 bytes leftover after parsing attributes in process `syz-executor4'. [ 299.012848][T10151] ? __alloc_pages_slowpath+0x28b0/0x28b0 14:17:04 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:04 executing program 4: r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x5, 0x280) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) move_pages(r1, 0x9, &(0x7f0000000100)=[&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000fec000/0x12000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fed000/0x13000)=nil, &(0x7f0000ffd000/0x3000)=nil], 0x0, &(0x7f0000000180)=[0x0, 0x0], 0x2) syz_mount_image$ceph(&(0x7f00000001c0)='ceph\x00', &(0x7f0000000200)='./file0\x00', 0x32, 0x1, &(0x7f0000000280)=[{&(0x7f0000000240)="bd94b0bd2c2e7884efb377e199d27452c31461f276a12df2deb9c2b2853be0199b1824f08e9e7da6163c5e895ef825686a", 0x31, 0x8}], 0x4012, &(0x7f00000002c0)='/dev/audio#\x00') ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000340)={&(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa}) ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000380)) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/fuse\x00', 0x2, 0x0) ioctl$VIDIOC_G_OUTPUT(r0, 0x8004562e, &(0x7f0000000400)) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000440)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000004c0)={0x7, 0x8, 0xfa00, {r3, 0x40}}, 0x10) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000500)) getsockopt$inet6_buf(r0, 0x29, 0x2f, &(0x7f0000000540)=""/75, &(0x7f00000005c0)=0x4b) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000600)={0x7, [0x1, 0x3, 0x1300000, 0xfffffffffffffffc, 0x0, 0xfffffffffffffffe, 0x1]}, 0x12) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000680)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000640)=0x2ddf, r3, 0x0, 0x0, 0x1}}, 0x20) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000006c0)={0x0, 0x3}, &(0x7f0000000700)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000740)={r4, 0x3}, 0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000780)={r4, 0xffffffffffffff91, 0x5}, &(0x7f00000007c0)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000880)={r4, 0x54, &(0x7f0000000800)=[@in6={0xa, 0x4e20, 0x98e3, @rand_addr="8897bb7767aecc22ba1138f2d370e819", 0xbcb}, @in6={0xa, 0x4e22, 0x6, @rand_addr="74cbe37b21de8a00af23ac4ece4717e3", 0x100000001}, @in6={0xa, 0x4e21, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x16}}, 0xfffffffffffffffb}]}, &(0x7f00000008c0)=0x10) flistxattr(r2, &(0x7f0000000900)=""/9, 0x9) ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000000940)) write$FUSE_POLL(r0, &(0x7f00000009c0)={0x18, 0x0, 0x5, {0x1}}, 0x18) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000a00)={r4, 0x81}, 0x8) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000a40)={0x57, 0xd412, 0x1ff, {0xe9, 0x7}, {0x40, 0x3f}, @ramp={0x0, 0x6, {0x7fff, 0x8, 0xff, 0x7}}}) mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000ac0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000c00)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x90, r5, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x3c, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xffffffff}, @IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x741b}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xffffffffffffff35}]}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team0\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7fff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x59a}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1000}]}, 0x90}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000c80)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x200100}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x34, r6, 0x0, 0x70bd27, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x20, 0x4, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x801) 14:17:04 executing program 1: r0 = syz_open_dev$mouse(&(0x7f0000000a40)='/dev/input/mouse#\x00', 0x1d, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000780)={{{@in=@multicast1, @in6=@loopback}}, {{@in6=@ipv4={[], [], @local}}, 0x0, @in=@remote}}, &(0x7f0000000880)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x10, 0x1, &(0x7f0000000680)=@raw=[@generic={0x10001, 0xeea, 0x9, 0x401}], &(0x7f00000006c0)='GPL\x00'}, 0x48) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) r1 = socket$kcm(0xa, 0x40122000000003, 0x11) setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f00000001c0), 0x4) sendmsg$kcm(r1, &(0x7f0000003840)={&(0x7f0000000040)=@un=@abs={0x200000000000000, 0x0, 0xff00}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000100)="f4001100002b2c25e994efd1000000000009110000000000003a00000000f68ab928abffb7a8d4f32ebdbed828847bbaeb", 0x31}], 0x1}, 0xff00000000000000) ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f0000000400)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}) socket$kcm(0x2, 0x8000000501fffc, 0x2) perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x9bd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9000, 0x0, 0x0, 0x552, 0x0, 0x0, 0xffffffffffff8681, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0xb3, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x401}, 0x4, 0x0, 0x3000, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0x7, 0xffffffffffffffff, 0x2) mkdir(&(0x7f00000003c0)='./file0\x00', 0x80) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vcs\x00', 0x12002, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, 0x0) write$cgroup_int(r0, 0x0, 0x0) open$dir(&(0x7f0000000940)='./file0\x00', 0x202000, 0xe5) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snapshot\x00', 0x8000, 0x0) write$P9_RWSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x4) connect(r1, &(0x7f0000000480)=@un=@abs={0x0, 0x0, 0x4e20}, 0x80) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000280)='nbd\x00') sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10002}, 0xc, &(0x7f0000000300)={&(0x7f0000000500)={0x88, r4, 0xd24, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2c, 0x7, [{0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r0}, {0x8, 0x1, r3}, {0x8, 0x1, r0}]}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x7}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x2}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x4}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xfffffffffffeffff}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7}]}, 0x88}, 0x1, 0x0, 0x0, 0x40004}, 0x8000) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000100), 0x4) openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x7, 0x20, 0x0, 0xb, 0x8000, 0x0, "b62a9f3e6552d34269889a94a3a619eb4e7a7f2f818ed3af0ae824a60d765212ab2781951e763fa113773caf77f5b023b6638289adf3064a2690c5521e31eed5", "1cbe2dc0ae12df4765ad03e198261d13c005aa96b6cc47f58ca10e871926425646f2b0e29cd111347ae5761eed79be5019a54aa4b8833bba659f203f43f7591d", "6baf7af632c48ad298c6278acd8d5e26fe82bfe5deedbc537efa8b9a607bea90", [0x2, 0x4]}) [ 299.012863][T10151] ? find_held_lock+0x35/0x130 [ 299.012896][T10151] cache_grow_begin+0x9c/0x850 [ 299.037183][T10151] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 299.043426][T10151] ? check_preemption_disabled+0x48/0x290 [ 299.049153][T10151] kmem_cache_alloc+0x645/0x710 [ 299.054009][T10151] ? cache_grow_end+0xa4/0x190 [ 299.058777][T10151] getname_flags+0xd6/0x5b0 [ 299.063280][T10151] user_path_at_empty+0x2f/0x50 [ 299.068140][T10151] do_mount+0x150/0x2c40 [ 299.072388][T10151] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 299.078536][T10151] ? copy_mount_string+0x40/0x40 [ 299.083456][T10151] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.089673][T10151] ? copy_mount_options+0x30e/0x440 [ 299.094868][T10151] ksys_mount+0xdb/0x150 [ 299.099112][T10151] __x64_sys_mount+0xbe/0x150 [ 299.103806][T10151] do_syscall_64+0x103/0x610 [ 299.108403][T10151] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.114268][T10151] RIP: 0033:0x45a8aa [ 299.118140][T10151] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 299.137729][T10151] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 299.146130][T10151] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 299.154162][T10151] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 299.162108][T10151] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 299.170056][T10151] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 299.178000][T10151] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 299.192421][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 299.198212][ C0] protocol 88fb is buggy, dev hsr_slave_1 14:17:04 executing program 3 (fault-call:1 fault-nth:38): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 299.276114][T10167] ceph: device name is missing path (no : separator in /dev/loop4) 14:17:04 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:04 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xfffffffffffffffe, 0x4040) poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0) socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x400040000000001, 0x0) bind$unix(r1, &(0x7f0000003000)=@abs={0x1}, 0x8) listen(r1, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x204440}, 0xc, &(0x7f0000000500)={&(0x7f00000003c0)={0x128, r2, 0x600, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x34, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x16}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xc76}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x13}]}, @TIPC_NLA_NET={0x2c, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x800}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x81}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x90}]}, @TIPC_NLA_MEDIA={0xb4, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7b473992}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x87a2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2e1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x43}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x890}, 0x8040) socket$unix(0x1, 0x5, 0x0) pipe(&(0x7f0000000180)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000080)={0x7, 0xb, 0x4, 0x0, {0x77359400}, {0x0, 0x0, 0x1, 0xfffffffffffff7cb, 0x7fff, 0x9, "fd92115d"}, 0x3a4, 0x3, @fd=r0, 0x4}) syz_open_dev$vcsn(&(0x7f0000000300)='/dev/vcs#\x00', 0x3, 0x10000) clone(0x8010000, &(0x7f0000000100)="555eed8f2e64f60b2fbb9a61e9f312686051eafe463cacd66e36dc6e54c48986737e801050494b7c994fbb3377426f488d48f8bc0eade49b09f31a9556aceb25c3dddddd11bf72544e62f195907e760b7263bae1392785d210", &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="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") [ 299.426515][T10181] FAULT_INJECTION: forcing a failure. [ 299.426515][T10181] name failslab, interval 1, probability 0, space 0, times 0 [ 299.451669][T10186] ceph: device name is missing path (no : separator in /dev/loop4) [ 299.536141][T10181] CPU: 0 PID: 10181 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 299.545189][T10181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.555237][T10181] Call Trace: [ 299.558533][T10181] dump_stack+0x172/0x1f0 [ 299.562872][T10181] should_fail.cold+0xa/0x15 [ 299.567469][T10181] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 299.573270][T10181] ? lock_downgrade+0x880/0x880 [ 299.578110][T10181] ? ___might_sleep+0x163/0x280 [ 299.582953][T10181] __should_failslab+0x121/0x190 [ 299.587888][T10181] should_failslab+0x9/0x14 [ 299.592396][T10181] kmem_cache_alloc_trace+0x2d1/0x760 [ 299.597788][T10181] alloc_fs_context+0x5a/0x640 [ 299.602555][T10181] fs_context_for_mount+0x25/0x30 [ 299.607565][T10181] do_mount+0x13d7/0x2c40 [ 299.611887][T10181] ? copy_mount_string+0x40/0x40 [ 299.616801][T10181] ? copy_mount_options+0x1de/0x440 [ 299.621979][T10181] ? __sanitizer_cov_trace_pc+0x26/0x50 [ 299.627505][T10181] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.633730][T10181] ? copy_mount_options+0x30e/0x440 [ 299.638919][T10181] ksys_mount+0xdb/0x150 [ 299.643164][T10181] __x64_sys_mount+0xbe/0x150 [ 299.647834][T10181] ? do_syscall_64+0xfe/0x610 [ 299.652522][T10181] do_syscall_64+0x103/0x610 [ 299.657114][T10181] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.663010][T10181] RIP: 0033:0x45a8aa [ 299.666898][T10181] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 299.686484][T10181] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 299.695110][T10181] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 299.703076][T10181] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 299.711029][T10181] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 299.718971][T10181] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 299.726917][T10181] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:07 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) shmget$private(0x0, 0x1000, 0x7c000000, &(0x7f0000ffe000/0x1000)=nil) fallocate(r0, 0x12, 0x73, 0x3) r1 = socket(0x10, 0x802, 0x0) write(r1, &(0x7f0000000000)="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", 0xfc) ioctl$EVIOCGKEY(0xffffffffffffffff, 0x80404518, &(0x7f0000000140)=""/72) 14:17:07 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:07 executing program 0: lsetxattr$security_ima(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f0000000100)=@v2={0x5, 0x0, 0xa, 0x6, 0x8f, "2986b44855aa21f89885763204ce2f78c8c7ec2bf143b7bd951b5bc63b4fc2f555af15d60dccff10d65287b6e2e7ee73d8a6f405d27998bcc60f8f6bc393c720cf5b9c3a653ec0893b698a4c580992859f63774ba7ef89ebee1041c5114857bcb5670f12e271505a9fb1005e62d78b03d26eedc69002306e551c99307a561e127fe6acdb59b5ee0140bd19931ea3ba"}, 0x99, 0x1) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000), 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x103, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4004ae99, &(0x7f0000000000)) 14:17:07 executing program 4: r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x6287, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x3, @raw_data="a6acd25f077a4334294fb12f0816d39788a9d3c96720b237471d5ac02d62323c651f4f2a633080b4a8d51be161cbf142f9828ca70afe284bc476a888e5d3ae5f83180b41ba203cf1b48871b19ffd5734ac82c0f3adaf74b940cc0908b2e0e94cc484b890a29795584ff7ceb1d0175be963ebc5445733dfe2bedd07432fa76121d23dfd7c442ac448cfd41ace5989a996b29c493e2d3abb44265d92a9205bbba3fdf0d65934f97193ebf02111afee11e062a3be64b6c2f51a120ebc8ce9503bcc7b15113f6373d77f"}) syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x100, 0xf8511c45e988747a) 14:17:07 executing program 3 (fault-call:1 fault-nth:39): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 302.033783][T10222] netlink: 188 bytes leftover after parsing attributes in process `syz-executor1'. [ 302.042954][T10208] FAULT_INJECTION: forcing a failure. [ 302.042954][T10208] name failslab, interval 1, probability 0, space 0, times 0 [ 302.072793][T10208] CPU: 0 PID: 10208 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 302.081823][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.091873][T10208] Call Trace: [ 302.095181][T10208] dump_stack+0x172/0x1f0 [ 302.099517][T10208] should_fail.cold+0xa/0x15 [ 302.099539][T10208] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 302.099560][T10208] ? lock_downgrade+0x880/0x880 [ 302.109924][T10208] ? ___might_sleep+0x163/0x280 [ 302.119579][T10208] __should_failslab+0x121/0x190 [ 302.124530][T10208] should_failslab+0x9/0x14 [ 302.129038][T10208] kmem_cache_alloc_trace+0x2d1/0x760 [ 302.134411][T10208] ? refcount_dec_and_mutex_lock+0x90/0x90 [ 302.140211][T10208] ? rcu_read_lock_sched_held+0x110/0x130 [ 302.140230][T10208] ? kmem_cache_alloc_trace+0x354/0x760 [ 302.140255][T10208] legacy_init_fs_context+0x48/0xe0 [ 302.140271][T10208] ? generic_parse_monolithic+0x200/0x200 [ 302.140286][T10208] alloc_fs_context+0x365/0x640 [ 302.140308][T10208] fs_context_for_mount+0x25/0x30 [ 302.162524][T10208] do_mount+0x13d7/0x2c40 [ 302.162549][T10208] ? copy_mount_string+0x40/0x40 [ 302.162567][T10208] ? copy_mount_options+0x223/0x440 [ 302.162584][T10208] ? copy_mount_options+0x223/0x440 [ 302.162600][T10208] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 302.162616][T10208] ? copy_mount_options+0x30e/0x440 [ 302.162650][T10208] ksys_mount+0xdb/0x150 [ 302.172480][T10208] __x64_sys_mount+0xbe/0x150 [ 302.172501][T10208] do_syscall_64+0x103/0x610 [ 302.172523][T10208] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 302.172534][T10208] RIP: 0033:0x45a8aa [ 302.172548][T10208] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 302.172555][T10208] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 302.172573][T10208] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 302.262651][T10208] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 302.270610][T10208] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 14:17:07 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x7ff) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @ipv4={[], [], @loopback}}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x800010b, 0x0) clock_gettime(0x0, &(0x7f00000099c0)) 14:17:07 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(0x0, 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 302.278576][T10208] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 302.286536][T10208] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 302.296516][T10224] netlink: 188 bytes leftover after parsing attributes in process `syz-executor1'. 14:17:07 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(twofish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="b7f2288a911993f0265df5cf1cdd8b55", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) pipe2(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000200)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4000001) recvmmsg(r1, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000001540)=""/165, 0xa5}], 0x1}}], 0x1, 0x0, 0x0) r3 = syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x2, 0x2) ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000180)={'eql\x00', 0xf520}) 14:17:07 executing program 1: close(0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={0x0, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000200)='\x00', 0xffffffffffffffff}, 0x30) perf_event_open(&(0x7f0000000680)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x4, 0x0, 0x0, 0x6, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x3e6, 0x0, 0x0, 0xffffffffffffffe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x1ffffffff, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x800000000000000, @perf_bp, 0xffffffffffffffff, 0x0, 0x0, 0x8}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000340)='pids.events\x00', 0x0, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f0000000400)='io.stat\x00', 0x0, 0x0) r4 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TUNGETSNDBUF(r2, 0x800454d3, &(0x7f0000000480)) close(r4) r5 = socket$kcm(0x2, 0x1, 0x2) ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x8981, &(0x7f00000000c0)=0x5) sendmsg(r3, &(0x7f0000000080)={&(0x7f0000000600)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000000980), 0xfffffffffffff60, &(0x7f0000000400), 0x0, 0x8004}, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x24000, 0x0) ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe9\xdc\x00', 0x200082}) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000100)={r2, r2, 0x4, 0x2}, 0x10) ioctl$sock_kcm_SIOCKCMATTACH(r5, 0x89e0, &(0x7f0000000440)={r3}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x89f1, &(0x7f0000000080)='ip6tnl0\x00') bpf$MAP_CREATE(0x0, &(0x7f0000000240)={0x0, 0x9, 0x0, 0x100000000, 0x22, r7}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0xd, 0x2e, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x0}, 0x48) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r8 = perf_event_open(&(0x7f00004e7000)={0x2, 0x307, 0xdf, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xbb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x40082406, &(0x7f0000000400)='cpu&0&&!\t\x00\x01\x00\x00\x01\x9c\xd3\x0e5\xa0\x1d=\x04\n\x1c`fo\x8d\xccm\\v\xfd.\x9e\tbk1\xde\xea\x1b\r;\x81\x84\x87-X\xb6,\xc5\xb4\"7&\xb5yt\x82\xfb\x1d\x83\xf8.- \x00\x00\x00(\xe9`D\x01i\\\x8dl\x86lh\xa8\xfc\x80\xde,Kt\xf4#\xc5]Y;\xc16v\xf9\x89\t\x06\xbe*\xaa&\xbd\x16xQ\x8e\xf3\xd6\x1a\xfd\xd0\x04\'y\x9b|\xe4\xb7\bE\xed\x97\x80s\x19W\xb7[\xf0%>MM\xf5\x98\xbe^=q!\xa6\x0fp\x012\x00\xbb\xbe\x9dX5\xafep\x10R\v&\xaf\xa8$\x7f7V\xedLJ4\xcf\a\x01\xd5T\n\xca\xc2\x86_\xc1\xce\x8d\xedbS\x8d\xe9t\x82\xf41zwr\xe6o\x88\xe5\xe3\xe7Gcx\xc0\x91I\x01\x00\x00\x00\x01\x00\x00\x00K\x9e\xe5[\xa0\n\x0f\x04\xa6\xb0sE)\x8a\xd0R\xc3\xc1,b \x1c#IRz6\xfeJ~\xda\xd7_\xfe\x1f\xe5\x86\xb1xu&\xfb\xf2\xbf\xe8\x7f\x91\x93\xab\x05\x004\x85\x86l\x8d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='/group.stat\x00<#\xfbW*\x1f\x02\x94\xe6\xf3x\xb4\x1a\xd5KM\x9d\x9a\x1fc\xf8xZ\xd1\x88\xa7\xe1\xc8\x88u\xe0[\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ\x7f\xa2\xf3\xfd\xf6\xe04\xd8\x04\xe5\xf0\xdfK\x1d\xeeH;\x15v$\xc5\x9c\x01\x00\xe8\x9ej5|\x00\x00\x00', 0x2761, 0x0) r9 = getpid() socketpair$nbd(0x2, 0x1, 0x0, &(0x7f0000000080)) perf_event_open(&(0x7f0000000540)={0x7, 0x70, 0x0, 0xbf7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x81, 0x0, 0x0, 0x7, 0x17400000000, 0xfff, 0x0, 0x3f, 0xfffffffffffffffe, 0x0, 0xfff, 0x0, 0x2, 0x2, 0x10001, 0xffe, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x85, 0xe67, 0x0, 0x7fa5, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x800}, r9, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={0xffffffffffffffff, 0x28}, 0x10) socket$kcm(0x29, 0x5, 0x0) 14:17:07 executing program 3 (fault-call:1 fault-nth:40): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 302.486852][T10238] overlayfs: failed to resolve './file1': -2 14:17:07 executing program 4: r0 = socket$inet6(0xa, 0x80000000003, 0x1) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x400002, 0x0) ioctl$KDDELIO(r1, 0x4b35, 0x4) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c) r3 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)="4ebd287f8c04cb972b5c74a7ea8866c3c0", 0x11, 0xfffffffffffffffb) keyctl$read(0xb, r3, &(0x7f0000000140)=""/138, 0x8a) ioctl$EVIOCSREP(r2, 0x40084503, &(0x7f0000000240)=[0x40, 0x7ff]) sendto$inet6(r0, &(0x7f0000000000), 0xff77, 0x0, 0x0, 0x4d97) [ 302.601324][T10243] FAULT_INJECTION: forcing a failure. [ 302.601324][T10243] name failslab, interval 1, probability 0, space 0, times 0 [ 302.620614][T10246] QAT: Invalid ioctl [ 302.679931][T10246] QAT: Invalid ioctl [ 302.687181][T10243] CPU: 0 PID: 10243 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 302.696207][T10243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.706260][T10243] Call Trace: [ 302.709553][T10243] dump_stack+0x172/0x1f0 [ 302.713901][T10243] should_fail.cold+0xa/0x15 [ 302.718496][T10243] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 302.724298][T10243] ? lock_downgrade+0x880/0x880 [ 302.724317][T10243] ? ___might_sleep+0x163/0x280 [ 302.724336][T10243] __should_failslab+0x121/0x190 [ 302.724355][T10243] should_failslab+0x9/0x14 [ 302.724370][T10243] __kmalloc_track_caller+0x2d8/0x740 [ 302.724390][T10243] ? legacy_init_fs_context+0x48/0xe0 [ 302.724407][T10243] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 302.724418][T10243] ? vfs_parse_fs_string+0xe8/0x170 [ 302.724437][T10243] kmemdup_nul+0x31/0xa0 [ 302.743511][T10243] vfs_parse_fs_string+0xe8/0x170 [ 302.743530][T10243] ? vfs_parse_fs_param+0x4b0/0x4b0 [ 302.743549][T10243] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 302.743568][T10243] ? alloc_fs_context+0x3bb/0x640 [ 302.760420][T10243] do_mount+0x6e9/0x2c40 [ 302.760438][T10243] ? retint_kernel+0x2d/0x2d [ 302.760459][T10243] ? copy_mount_string+0x40/0x40 [ 302.760479][T10243] ? copy_mount_options+0x223/0x440 [ 302.769886][T10243] ? write_comp_data+0x17/0x70 [ 302.769905][T10243] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 302.769921][T10243] ? copy_mount_options+0x30e/0x440 [ 302.769958][T10243] ksys_mount+0xdb/0x150 [ 302.769975][T10243] __x64_sys_mount+0xbe/0x150 [ 302.769997][T10243] do_syscall_64+0x103/0x610 [ 302.780177][T10243] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 302.780188][T10243] RIP: 0033:0x45a8aa [ 302.780203][T10243] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 302.780211][T10243] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 302.780223][T10243] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 302.780236][T10243] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 302.810328][T10243] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 302.810337][T10243] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 302.810345][T10243] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:10 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:10 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(0x0, 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:10 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000080)=0x14) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000f40a000000000000000003000600000000000200ee00e0000054d81458186fe8b90002000100000000000000020200044a7b030005000000000002000000e0003f010000000000fca0d9"], 0x60}}, 0x0) 14:17:10 executing program 3 (fault-call:1 fault-nth:41): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x800, 0x4002) ioctl$IOC_PR_RELEASE(r3, 0x401070ca, &(0x7f0000000140)={0x0, 0x4}) ioctl$PERF_EVENT_IOC_QUERY_BPF(r3, 0xc008240a, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000000000000000000000"]) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x4000}) ioctl$VIDIOC_G_FMT(r3, 0xc0d05604, &(0x7f0000000500)={0xb, @pix_mp={0x9, 0xffffffffb6e263be, 0x0, 0x4, 0x0, [{0x1, 0x5}, {0xfffffffffffeffff, 0x748}, {0x7fff, 0xf966}, {0x100, 0x8}, {0x490, 0x5}, {0x1, 0x60}, {0x2, 0x1}, {0x7fffffff, 0xbfde}], 0x3, 0x7, 0x0, 0x1, 0x2}}) chroot(&(0x7f0000000200)='./file0\x00') ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000000)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000000180)=0x1010040, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000040)={0xffffffffffffff9c}) ioctl$sock_inet6_tcp_SIOCATMARK(r4, 0x8905, &(0x7f0000000080)) r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@broadcast, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6}}, &(0x7f00000003c0)=0xe8) lstat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f0000000240)='./file0/file0\x00', r6, r7) 14:17:10 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x3, 0x3c) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@mcast1, 0x5000500, 0x0, 0x3}, 0x2e) ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, 0x0) semtimedop(0x0, &(0x7f00000001c0)=[{}], 0x1, 0x0) semctl$GETVAL(0x0, 0x0, 0xc, &(0x7f0000000680)=""/4096) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, 0x0, 0x0) semctl$GETVAL(0x0, 0x0, 0xc, 0x0) ioctl$VT_SETMODE(0xffffffffffffffff, 0x5602, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000001c40)='/dev/snd/pcmC#D#p\x00', 0x9682, 0x8000) ioctl$NBD_SET_SIZE_BLOCKS(0xffffffffffffffff, 0xab07, 0x7) getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f0000000000), &(0x7f00000000c0)=0x8) creat(0x0, 0x0) ioctl$UI_SET_KEYBIT(0xffffffffffffffff, 0x40045565, 0x0) 14:17:10 executing program 1: r0 = socket$caif_stream(0x25, 0x1, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000000)=0x0) r3 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x400, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f06cc3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0x0, 0xffffffffffffffff, 0x0) dup2(r3, r1) timer_create(0x0, 0x0, 0x0) r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mISDNtimer\x00', 0x0, 0x0) r5 = dup2(r4, r0) r6 = fcntl$getown(r4, 0x9) r7 = getpid() kcmp(r6, r7, 0x0, r5, r4) [ 305.077527][T10264] FAULT_INJECTION: forcing a failure. [ 305.077527][T10264] name failslab, interval 1, probability 0, space 0, times 0 [ 305.106906][T10274] overlayfs: failed to resolve './file1': -2 [ 305.152594][T10264] CPU: 0 PID: 10264 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 305.161640][T10264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.171690][T10264] Call Trace: [ 305.174982][T10264] dump_stack+0x172/0x1f0 [ 305.179314][T10264] should_fail.cold+0xa/0x15 [ 305.179331][T10264] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 305.179349][T10264] ? lock_downgrade+0x880/0x880 [ 305.189722][T10264] ? ___might_sleep+0x163/0x280 [ 305.189740][T10264] __should_failslab+0x121/0x190 [ 305.189757][T10264] should_failslab+0x9/0x14 [ 305.208802][T10264] __kmalloc_track_caller+0x2d8/0x740 [ 305.214162][T10264] ? legacy_init_fs_context+0x48/0xe0 [ 305.219517][T10264] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 305.225658][T10264] ? vfs_parse_fs_string+0xe8/0x170 [ 305.230855][T10264] kmemdup_nul+0x31/0xa0 [ 305.235076][T10264] vfs_parse_fs_string+0xe8/0x170 [ 305.240087][T10264] ? vfs_parse_fs_param+0x4b0/0x4b0 [ 305.245274][T10264] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 305.251515][T10264] ? alloc_fs_context+0x3bb/0x640 [ 305.256528][T10264] do_mount+0x6e9/0x2c40 [ 305.260754][T10264] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 305.266894][T10264] ? copy_mount_string+0x40/0x40 [ 305.271837][T10264] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 305.278054][T10264] ? copy_mount_options+0x30e/0x440 [ 305.283241][T10264] ksys_mount+0xdb/0x150 [ 305.287467][T10264] __x64_sys_mount+0xbe/0x150 [ 305.292136][T10264] do_syscall_64+0x103/0x610 [ 305.296713][T10264] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 305.302587][T10264] RIP: 0033:0x45a8aa [ 305.306466][T10264] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 305.326049][T10264] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 305.334446][T10264] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 305.342397][T10264] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 14:17:10 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, 0x0) ptrace$cont(0x7, r0, 0x0, 0x0) [ 305.350357][T10264] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 305.358422][T10264] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 305.366374][T10264] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:10 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(0x0, 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 305.488108][T10297] overlayfs: failed to resolve './file1': -2 14:17:10 executing program 3 (fault-call:1 fault-nth:42): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:10 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:11 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 305.698675][T10315] FAULT_INJECTION: forcing a failure. [ 305.698675][T10315] name failslab, interval 1, probability 0, space 0, times 0 [ 305.763167][T10315] CPU: 1 PID: 10315 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 305.772207][T10315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.782253][T10315] Call Trace: [ 305.785539][T10315] dump_stack+0x172/0x1f0 [ 305.789871][T10315] should_fail.cold+0xa/0x15 [ 305.794470][T10315] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 305.800359][T10315] ? lock_downgrade+0x880/0x880 [ 305.805221][T10315] ? ___might_sleep+0x163/0x280 [ 305.810089][T10315] __should_failslab+0x121/0x190 [ 305.815035][T10315] should_failslab+0x9/0x14 [ 305.819539][T10315] kmem_cache_alloc_trace+0x2d1/0x760 [ 305.824909][T10315] ? kasan_check_write+0x14/0x20 [ 305.829846][T10315] ? lock_downgrade+0x880/0x880 [ 305.834686][T10315] alloc_super+0x55/0x890 [ 305.839000][T10315] ? kasan_check_read+0x11/0x20 [ 305.843837][T10315] ? test_single_super+0x10/0x10 [ 305.848757][T10315] sget_userns+0xf1/0x560 [ 305.853073][T10315] ? kill_litter_super+0x60/0x60 [ 305.857999][T10315] ? test_single_super+0x10/0x10 [ 305.862914][T10315] ? kill_litter_super+0x60/0x60 [ 305.867831][T10315] sget+0x10c/0x150 [ 305.871623][T10315] mount_bdev+0xff/0x3c0 [ 305.875907][T10315] ? bfs_iget+0xb60/0xb60 [ 305.880219][T10315] bfs_mount+0x35/0x40 [ 305.884268][T10315] ? bfs_statfs+0x3d0/0x3d0 [ 305.888843][T10315] legacy_get_tree+0xf2/0x200 [ 305.893528][T10315] vfs_get_tree+0x123/0x450 [ 305.898022][T10315] do_mount+0x1436/0x2c40 [ 305.902343][T10315] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 305.908486][T10315] ? copy_mount_string+0x40/0x40 [ 305.913410][T10315] ? _copy_from_user+0xdd/0x150 [ 305.918247][T10315] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 305.924469][T10315] ? copy_mount_options+0x30e/0x440 [ 305.929655][T10315] ksys_mount+0xdb/0x150 [ 305.933883][T10315] __x64_sys_mount+0xbe/0x150 [ 305.938546][T10315] do_syscall_64+0x103/0x610 [ 305.943122][T10315] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 305.948994][T10315] RIP: 0033:0x45a8aa [ 305.952874][T10315] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 305.972475][T10315] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 305.980868][T10315] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 305.988827][T10315] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 305.996777][T10315] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 306.004729][T10315] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 14:17:11 executing program 1: r0 = socket$caif_stream(0x25, 0x1, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000000)=0x0) r3 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x400, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f06cc3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0x0, 0xffffffffffffffff, 0x0) dup2(r3, r1) timer_create(0x0, 0x0, 0x0) r4 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mISDNtimer\x00', 0x0, 0x0) r5 = dup2(r4, r0) r6 = fcntl$getown(r4, 0x9) r7 = getpid() kcmp(r6, r7, 0x0, r5, r4) 14:17:11 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 306.012687][T10315] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:11 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000080)=0x14) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000f40a000000000000000003000600000000000200ee00e0000054d81458186fe8b90002000100000000000000020200044a7b030005000000000002000000e0003f010000000000fca0d9"], 0x60}}, 0x0) 14:17:11 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, 0x0, &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:11 executing program 0: r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) pwritev(r0, &(0x7f0000001380)=[{&(0x7f0000000100)="02", 0x1}], 0x1, 0x0) fallocate(r0, 0x20, 0x0, 0xffffffff000) getsockname(r0, &(0x7f00000002c0)=@ax25={{0x3, @netrom}, [@default, @netrom, @remote, @netrom, @remote, @rose, @remote, @null]}, &(0x7f0000000340)=0x80) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="0cecd7d6ae715de851f59e5f00526a9fef7f42ab8b4f6430a8d534dcd69e7b9c22701c7b33a3e4c45b0154e21017157d2316b89ad7b8645286cf32a84828d8a3d461164f14ddaa9e7f964ab0bb4cb93044ac9ac6b2319e9b7fc1981e529e5e7b0d9f73f62fa0688114510e67d93349e3d606a073ef44aae00b88dbf47570664b", 0x80, 0xfffffffffffffffc) r2 = request_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x8bkeyring\x00', 0xfffffffffffffffd) keyctl$reject(0x13, r1, 0x3, 0x3, r2) lstat(&(0x7f0000000200)='./bus\x00', &(0x7f0000000240)) 14:17:11 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, 0x0, &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:11 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000080)=0x14) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c0000000000002000000000020009004000f40a000000000000000003000600000000000200ee00e0000054d81458186fe8b90002000100000000000000020200044a7b030005000000000002000000e0003f010000000000fca0d9"], 0x60}}, 0x0) 14:17:13 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, 0x0) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:13 executing program 3 (fault-call:1 fault-nth:43): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:13 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, 0x0, &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:13 executing program 4: r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x0, 0x0) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r0, 0xc0305615, &(0x7f0000000240)={0x1000000}) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0xc000, 0x0) write$P9_RSYMLINK(r1, &(0x7f0000000080)={0x14, 0x11, 0x2, {0xa, 0x4, 0x8}}, 0x14) 14:17:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x2, 0x2) ioctl$NBD_SET_BLKSIZE(r1, 0xab01, 0x8a1) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0xfffffffffffffffd) 14:17:13 executing program 1: r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x1, 0x101000) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0x4) sendmsg$key(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)={0x2, 0xf, 0xdbf, 0x9, 0x20f, 0x0, 0x70bd2d, 0x25dfdbfb, [@sadb_x_sec_ctx={0x201, 0x18, 0x5, 0x64ba, 0x1000, "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"}, @sadb_sa={0x2, 0x1, 0x4d3, 0x9c, 0x7, 0x74, 0x0, 0x20000000}, @sadb_address={0x5, 0x6, 0x0, 0xa0, 0x0, @in6={0xa, 0x4e24, 0x1, @empty, 0xfffffffffffff893}}, @sadb_x_filter={0x5, 0x1a, @in6=@mcast2, @in6=@mcast1, 0x8, 0x0, 0x14}]}, 0x1078}}, 0x8850) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000011c0)=r0, 0x4) sendmsg$key(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000001200)={0x2, 0x3, 0xf92f, 0x0, 0x1f, 0x0, 0x70bd29, 0x25dfdbfb, [@sadb_x_sa2={0x2, 0x13, 0x2, 0x0, 0x0, 0x70bd27, 0x3505}, @sadb_spirange={0x2, 0x10, 0x4d4, 0x4d4}, @sadb_key={0x14, 0x9, 0x490, 0x0, "bd68d872adeefebb8d1529bb0bb4aca1a589cb9aa0b4277c7e601ca8c42493f3392e0d5a679041e34321c29ba35ac0a51f0daa8eb8b4a3f7e0a4eb689313fa00db7808e9e10287cb47f9b95686a35ecd3acb3f91dba90c69c581abe355132e28f65a76a619cc49b6aedae8702ca65dc81da030075adb60ccffd746f470a3a91810f5fa6d6b6bc5628d1a3c3b445c7ade3ed6"}, @sadb_x_sa2={0x2, 0x13, 0x5, 0x0, 0x0, 0x70bd26, 0x3503}, @sadb_address={0x3, 0x5, 0x33, 0x80, 0x0, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, 0xf8}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000001380)={0x3, 0x2, 0x80, 0x0, 0x21}) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/dsp\x00', 0x101000, 0x0) syz_open_dev$dri(&(0x7f0000001400)='/dev/dri/card#\x00', 0x24, 0x200) timer_create(0x0, &(0x7f0000001540)={0x0, 0x11, 0x4, @thr={&(0x7f0000001440)="7ad5f3b55cf6814066d03994cc87306e131e799dcd4dc2cefe8ae17a732de476f83ccc645b", &(0x7f0000001480)="8ded7f670b21267d8f18b7d008623db7d3d0fea1914e5a250019c4856a3292ecb3b94ab247d593b68f590320180fe47bf2b88cc0e1d870d5a4843d86a61da29bcba8b8a5b990172f44e204c10e871e2f0c3924896c132ca82720ab5ac482e3a13f7fae5d5e49faa3900b4f846f7aa388d5f678a42959a4a0dae6ad1b363231ee827667a117533c0a074f016eb645fa729f22ffaee3634d2b"}}, &(0x7f0000001580)) fgetxattr(r1, &(0x7f00000015c0)=@random={'system.', '/dev/dri/card#\x00'}, &(0x7f0000001600)=""/237, 0xed) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001740)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000001840)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001800)={&(0x7f0000001780)={0x78, r2, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_DAEMON={0x48, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x10001}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'rose0\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x48080}, 0x80) ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0) write$evdev(r1, &(0x7f0000001880)=[{{}, 0x0, 0x1, 0x3}], 0x18) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f00000018c0)=[@in6={0xa, 0x4e20, 0x3, @remote, 0x4}], 0x1c) ioctl$UI_BEGIN_FF_ERASE(r1, 0xc00c55ca, &(0x7f0000001900)={0xf, 0x300000000000000, 0x6}) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000001a00)={&(0x7f0000001940)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000019c0)={&(0x7f0000001980)={0x1c, r2, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xe10}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000000}, 0xc0) connect$unix(r1, &(0x7f0000001a40)=@file={0x1, './file0\x00'}, 0x6e) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000001ac0)={0x0, 0x0, 0x1}) listxattr(&(0x7f0000001b00)='./file0\x00', &(0x7f0000001b40)=""/152, 0x98) setsockopt$netrom_NETROM_N2(r1, 0x103, 0x3, &(0x7f0000001c00)=0x100000001, 0x4) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000001c40)={0x0, 0xb8, "574cbedc969a56ad140b28e2fe1f473456ed2fd66a76ac3c3316c4367cf1ba8a50096ba9483d16298e9d3b8bf33c1fce3143ab74df9278578761e1d59cfb9dc19c5dd2d2b01b7d88c296d9eb8cd74d1df54095420ebdb5a63ad1fd77d59c67db7af08c34f8128c7f0f93268e6f5e4c25263f6d8803e6d6923824b638c03c479a7bb274ebef9ffbc516687e5c5afbf85411560658e64263ebca225dd70be029733f7cd8e6ffb995412d9464286658cffc2f17efdc9d4df03e"}, &(0x7f0000001d00)=0xc0) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f0000001d40)={r3, 0x5}, 0x8) clock_gettime(0x0, &(0x7f0000001d80)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000001dc0)={0x0, 0x0}) write$evdev(r1, &(0x7f0000001e00)=[{{}, 0x16, 0x3, 0x8eb}, {{0x77359400}, 0x3, 0x2, 0x200}, {{r4, r5/1000+10000}, 0x15, 0x4, 0x1}, {{}, 0x1f, 0x6, 0x5}, {{r6, r7/1000+10000}, 0x12, 0x80000000}, {{0x77359400}, 0x17, 0x602d, 0xfffffffffffffffa}, {{0x0, 0x2710}, 0x0, 0x2, 0x6}], 0xa8) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000001ec0)={0x60003, 0x0, [0x4, 0x9, 0x1, 0x7fff, 0x34c, 0x3, 0x1, 0x9]}) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001f80)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_SET(r1, &(0x7f00000021c0)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0x90}, 0xc, &(0x7f0000002180)={&(0x7f0000001fc0)={0x190, r8, 0x712, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x2c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x7ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}]}, @TIPC_NLA_NET={0x28, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x68000000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3ff}]}, @TIPC_NLA_BEARER={0x3c, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x4, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x8}}, {0x14, 0x2, @in={0x2, 0x4e21, @remote}}}}]}, @TIPC_NLA_BEARER={0x74, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xc9}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1000}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'gre0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'ipddp0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x81}]}, @TIPC_NLA_MON={0x4c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x200}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffffffff3a27}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x43}]}, @TIPC_NLA_BEARER={0x2c, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'caif0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7ff}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x4804}, 0x80) prctl$PR_SVE_GET_VL(0x33, 0x1e843) 14:17:13 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', 0x0, 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:13 executing program 0: socket$inet6(0xa, 0x6, 0x3) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") r1 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000180)={{0x2}}) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x8501, 0x0) setsockopt$netrom_NETROM_T1(r2, 0x103, 0x1, &(0x7f0000000080)=0x7fffffff, 0x4) 14:17:13 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfffffffffffff028}, {0x6}]}, 0x10) [ 308.519145][T10370] FAULT_INJECTION: forcing a failure. [ 308.519145][T10370] name failslab, interval 1, probability 0, space 0, times 0 [ 308.542854][T10370] CPU: 1 PID: 10370 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 308.551892][T10370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 308.561929][T10370] Call Trace: [ 308.561973][T10370] dump_stack+0x172/0x1f0 [ 308.561994][T10370] should_fail.cold+0xa/0x15 [ 308.562013][T10370] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 308.579962][T10370] ? lock_downgrade+0x880/0x880 [ 308.584821][T10370] ? ___might_sleep+0x163/0x280 [ 308.589701][T10370] __should_failslab+0x121/0x190 [ 308.594666][T10370] should_failslab+0x9/0x14 [ 308.599163][T10370] __kmalloc+0x2dc/0x740 [ 308.603391][T10370] ? lockdep_init_map+0x10c/0x5b0 [ 308.608396][T10370] ? prealloc_shrinker+0xd6/0x330 [ 308.613403][T10370] prealloc_shrinker+0xd6/0x330 [ 308.618232][T10370] alloc_super+0x707/0x890 [ 308.622627][T10370] ? test_single_super+0x10/0x10 [ 308.627542][T10370] sget_userns+0xf1/0x560 [ 308.631853][T10370] ? kill_litter_super+0x60/0x60 [ 308.636785][T10370] ? test_single_super+0x10/0x10 [ 308.641705][T10370] ? kill_litter_super+0x60/0x60 [ 308.646618][T10370] sget+0x10c/0x150 [ 308.650405][T10370] mount_bdev+0xff/0x3c0 [ 308.654624][T10370] ? bfs_iget+0xb60/0xb60 [ 308.658934][T10370] bfs_mount+0x35/0x40 [ 308.663088][T10370] ? bfs_statfs+0x3d0/0x3d0 [ 308.667570][T10370] legacy_get_tree+0xf2/0x200 [ 308.672232][T10370] vfs_get_tree+0x123/0x450 [ 308.676720][T10370] do_mount+0x1436/0x2c40 [ 308.681036][T10370] ? copy_mount_string+0x40/0x40 [ 308.685960][T10370] ? copy_mount_options+0x1de/0x440 [ 308.691589][T10370] ? copy_mount_options+0x214/0x440 [ 308.696767][T10370] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 308.702986][T10370] ? copy_mount_options+0x30e/0x440 [ 308.708165][T10370] ksys_mount+0xdb/0x150 [ 308.712387][T10370] __x64_sys_mount+0xbe/0x150 [ 308.717064][T10370] ? do_syscall_64+0x5b/0x610 [ 308.721736][T10370] do_syscall_64+0x103/0x610 [ 308.726309][T10370] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 308.732178][T10370] RIP: 0033:0x45a8aa [ 308.736079][T10370] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 308.755659][T10370] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 14:17:14 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, 0x0) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:14 executing program 1: r0 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendto$rose(r0, &(0x7f0000000180)="43d462e5c582465d2330269d97730efe121ded3cb331170fef992a186851c275804446f1d5", 0x25, 0x4000800, 0x0, 0x0) prctl$PR_SET_THP_DISABLE(0x29, 0x1) mkdir(&(0x7f0000000240)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) r1 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0xffff, 0x0) write$cgroup_subtree(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="00003801fc872c9f8adf9298559170ebb42a5eeb3551dad9569c3a5b3f172b577257180ed36a31eb46f09bcf27b258530f667ad8c9da4311c9a2492048e1c6d66f676535b9206e80db002beb23c046b422439cac457a708d5ba2002900000000"], 0x5) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getresuid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)) getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040), &(0x7f0000000280)=0x8) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0) [ 308.764054][T10370] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 308.772003][T10370] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 308.779951][T10370] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 308.787901][T10370] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 308.795849][T10370] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:14 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', 0x0, 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:14 executing program 1: r0 = socket$packet(0x11, 0x40800000000003, 0x300) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'gretap0\x00', 0x0}) bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14) setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000000)=0x9, 0x4) ioctl$void(r0, 0xc0045c78) 14:17:14 executing program 3 (fault-call:1 fault-nth:44): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:14 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', 0x0, 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:14 executing program 0: r0 = syz_open_dev$amidi(&(0x7f0000000200)='/dev/amidi#\x00', 0x100000001, 0x101100) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000240)={@dev={0xfe, 0x80, [], 0x10}, 0x3ff, 0x1, 0x0, 0x4, 0x80, 0x5}, &(0x7f0000000280)=0x20) r1 = inotify_init1(0x0) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f0000000180)={0x0, 0x0}) ptrace$setopts(0x4206, r2, 0x0, 0x0) ptrace(0x4207, r2) r3 = memfd_create(&(0x7f00000000c0)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb9\x00a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write$cgroup_pid(r3, &(0x7f0000000040), 0x12) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) r4 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x1, 0x101000) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r4, 0x84, 0x1c, &(0x7f0000000140), &(0x7f00000001c0)=0x4) ptrace$getregset(0x4205, r2, 0x7, &(0x7f0000000000)={0x0, 0xfffffffffffffd22}) 14:17:14 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x4bffe, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0xc3, 0xd0200) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000180)=""/133) ioctl$RTC_PIE_ON(r3, 0x7005) mmap$perf(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xc, 0x10, r2, 0x0) r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x1, 0x0) ioctl$NBD_SET_FLAGS(r4, 0xab0a, 0xfff) r5 = dup2(r1, r0) bind$bt_rfcomm(r5, &(0x7f0000000300)={0x1f, {0x0, 0x0, 0x0, 0x0, 0x0, 0xef2a}}, 0xa) connect$bt_l2cap(r1, &(0x7f0000000100)={0x1f, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}}, 0xe) connect$netlink(r4, &(0x7f00000000c0)=@kern={0x10, 0x0, 0x0, 0x4000000}, 0xc) 14:17:14 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, 0x0) 14:17:14 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x8e, 0x2001) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ftruncate(r1, 0x2008000) sendfile(r0, r1, 0x0, 0x80000000000d) syz_mount_image$nfs4(&(0x7f0000000000)='nfs4\x00', &(0x7f0000000040)='./file0\x00', 0x101, 0x5, &(0x7f0000000380)=[{&(0x7f00000000c0)="0eb4fb12d1e603258bceed342ddc5db36a1aa80c70a74bb96948bdca04d7c7a1b27ceb2601d8", 0x26, 0x7f}, {&(0x7f0000000100)="61dfc0f1296b70352938d86fce912914663259c4e25bc1799bb4372b9871fb2eb96d83631f6889d9f49e1572dc59f68bb4f6b689b573e40aae35ed5cb0bcc4b4111c738425b899dd9e22112e179f664287371d0a3dc04fd1955b98ac15c125f59c5cc7bd94afb1c2a13bb3c2084a1a7761a81d8f5c93efbf6d330be258a62371be007953b275eada4f69aa6e64deb6ed2d039653e5c5c853bd3cf7b46923d46d0da8821bd57bbb102a560a69fd417c91c85df7933bf7f6594d03bff55c3b9d0b582981c2b27ec1c3d60a3027af1eca19ed9a73", 0xd3, 0x10001}, {&(0x7f0000000200)="42f5256e387025b189385dad215c28f167a6d231b9ae680fe84ac562313734d56fe68ea9438ed03956db7f758a890bd67ea1759ff51dfdd69dddb166658499eeea4cd2492b73ce24745a7d2273af33a4cc915a3e8898fc44458eadb023626eb2d6c82c4f009b9884c7f47118a64788ba9ed4d9d41bc241b000f9925da394e57f3563ac82470cb0f9b2cd1e44176c05ac22", 0x91, 0x7}, {&(0x7f00000002c0)="df915d4a1d4db670b9", 0x9, 0x5}, {&(0x7f0000000300)="008d3262f130c003ef1258bfeea1bc71e9dd40e2fd9a031529c044d3750319334704d98efd81392c983d2bda27e6472aa182d06ead10ad5ffa89bd1b8bde3be1ac2b17c31fc7f7d7b35802ad6578c6249d27b362b8d7d3657153eedf6b3f6feb26cdf3f17b6511b1093a5be2", 0x6c, 0x80000001}], 0x1, &(0x7f0000000400)='/dev/amidi#\x00') 14:17:14 executing program 0: r0 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x100, 0x28040) sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f00000002c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x17ffd}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[]}, 0x1, 0x0, 0x0, 0x10}, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$isdn_base(0x22, 0x3, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) r5 = socket$l2tp(0x18, 0x1, 0x1) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) syz_read_part_table(0xffffffffffff0000, 0x3, &(0x7f0000000400)=[{&(0x7f0000000300)="81ec6f39", 0x4, 0x1}, {&(0x7f0000000340)="9b79e740a202f06ea4a37f8a69d21338690411efbaab56c3a436248b409077f79998bfb1849de58dc3d44204e1e0d284018e6907536c7a7d80f95aa9cab779e96cef58707e7c3b3f4c9a4eedb781cab53c5d0ac900604d4798c71e27af7e334547a510f0212fc04a257e3c99cfb31ac1e68c638a2a9d2b6cfa4bfda5ac61cc59602d90d78d0894b95a4be022ccf4da714d54c04c1ea01791e8adda9483cb9e7fc3f5a58ed328682abb5e5f5d", 0xac, 0x3}, {&(0x7f0000000580)="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", 0xfd, 0x7fffffff}]) connect$l2tp(r5, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, 0x0, 0x0) sendmmsg(r5, &(0x7f0000005fc0), 0xa9, 0x0) ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x1) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f00000001c0)={{0xa, 0x4e23, 0x40, @local, 0x400}, {0xa, 0x4e24, 0x40, @loopback, 0x9}, 0x3ff, [0x7, 0x0, 0x7, 0x1d, 0x9, 0x40, 0x3, 0x8]}, 0x5c) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000240)={0x1f, 0xbb, &(0x7f0000000480)="3bcdd8123b562c93f504c3c84ceec93f94cc4b26e3a1c0914f652e1b4339b14f0eb1c202a67e3e411b25976a67c44f5573fc82ead7e4847a7598971aa68032dbacf9a76c22f5e8c34023db9dd02ff71508329eb8c537c71ad813c4b9832c7f32a12871439d8b67bb26c8b5b0b4567ba8c12bf77f3fd15908d283775210b738a4f2bb7a3a5eda9e35531d9ef52f4d3883db04799548a3d384f4c1a5195013dc3bc532c20690691346f19fa04e120282ebcb8df66f7505470d1a07fc"}) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000080)=0xffffffffffffff00, 0x4) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000100)=0x7, 0x4) fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000140)='trusted.overlay.opaque\x00', &(0x7f0000000180)='y\x00', 0x2, 0x1) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r5, 0x111, 0x3, 0x0, 0x4) ioctl$IMGETCOUNT(r2, 0x80044943, &(0x7f0000000000)) [ 309.171911][T10425] FAULT_INJECTION: forcing a failure. [ 309.171911][T10425] name failslab, interval 1, probability 0, space 0, times 0 14:17:14 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fffffff81004e22000000006b000b4824ca945f64009400050028925aa8000000000000008000f0fffeffe80900f36fa5e24beb0d431000010002040800411c00000000dd9d", 0x58}], 0x1) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f00000000c0)={0x1, 0x0, 0x8000, 0xfffffffffffffffa}) syz_open_dev$admmidi(&(0x7f00000002c0)='/dev/admmidi#\x00', 0x7, 0x200300) writev(r1, &(0x7f0000000280)=[{&(0x7f0000000100)="7d0820265d7715f87ca20ddc4ce636bc405f12b1f72b31993fbbe26bbb027615f4ba0f6e6135749ff7a73dba938e5eeeae0f75fe3f90da4e9f8c60f6c5daaef8f04979b2f8c7e72aa562fdd0594269660c3ccb10d2b82e7a6f1898b00833fb19572ef19be758fcf0bbc40c0acc12f8c544a7eba0c2490f", 0x77}, {&(0x7f0000000180)="738e6d6af79ccf17050546cd0bac39f3dfb1eb176feab1b726f4ba959cd3e434e8cb05f66665667e09516b061af85435327fe4", 0x33}, {&(0x7f00000001c0)="a9c3c1b980bc3a8432304e8a9af7c488ae179473ec296d9d7b7e0412e9320ad651df2d1ff3e499bb34411f252bd404b2fc62b0bb69afb6905a1981e1be927fd0d74effd3c2d47904dcca51f885b3c9579ccb794066f2a3b685f14aae69f2ed00de09ad563a192b9fee52af8d3f5e61be0bf0dceba1896b28d6a952d215ba3290b0e56e67101571ac38a92e58c397adc53cf5874591ca7429b711b9f9af22f2382370743f24d0ffb7dcd7d429bc0e6cc852418da6", 0xb4}], 0x3) [ 309.245771][T10436] overlayfs: missing 'lowerdir' [ 309.251003][T10425] CPU: 1 PID: 10425 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 309.260029][T10425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.270096][T10425] Call Trace: [ 309.273393][T10425] dump_stack+0x172/0x1f0 [ 309.277733][T10425] should_fail.cold+0xa/0x15 [ 309.282343][T10425] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 309.288153][T10425] ? lock_downgrade+0x880/0x880 [ 309.293014][T10425] ? ___might_sleep+0x163/0x280 [ 309.297867][T10425] __should_failslab+0x121/0x190 [ 309.302810][T10425] should_failslab+0x9/0x14 [ 309.307317][T10425] __kmalloc+0x2dc/0x740 [ 309.311576][T10425] ? lockdep_init_map+0x10c/0x5b0 [ 309.316701][T10425] ? prealloc_shrinker+0xd6/0x330 [ 309.321730][T10425] prealloc_shrinker+0xd6/0x330 [ 309.326582][T10425] alloc_super+0x707/0x890 [ 309.331009][T10425] ? test_single_super+0x10/0x10 [ 309.335947][T10425] sget_userns+0xf1/0x560 [ 309.340275][T10425] ? kill_litter_super+0x60/0x60 [ 309.345213][T10425] ? test_single_super+0x10/0x10 [ 309.350147][T10425] ? kill_litter_super+0x60/0x60 [ 309.355078][T10425] sget+0x10c/0x150 [ 309.358887][T10425] mount_bdev+0xff/0x3c0 [ 309.363126][T10425] ? bfs_iget+0xb60/0xb60 [ 309.367464][T10425] bfs_mount+0x35/0x40 [ 309.371534][T10425] ? bfs_statfs+0x3d0/0x3d0 [ 309.376035][T10425] legacy_get_tree+0xf2/0x200 [ 309.380732][T10425] vfs_get_tree+0x123/0x450 [ 309.385241][T10425] do_mount+0x1436/0x2c40 [ 309.389573][T10425] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 309.395736][T10425] ? copy_mount_string+0x40/0x40 [ 309.400685][T10425] ? _copy_from_user+0xdd/0x150 [ 309.405539][T10425] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 309.411786][T10425] ? copy_mount_options+0x30e/0x440 [ 309.416999][T10425] ksys_mount+0xdb/0x150 [ 309.421242][T10425] __x64_sys_mount+0xbe/0x150 [ 309.425924][T10425] do_syscall_64+0x103/0x610 [ 309.430521][T10425] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 309.436497][T10425] RIP: 0033:0x45a8aa [ 309.440387][T10425] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 309.459994][T10425] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 309.468405][T10425] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 309.476379][T10425] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 309.484353][T10425] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 309.492320][T10425] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 309.500287][T10425] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 309.651546][T10434] __loop_clr_fd: partition scan of loop0 failed (rc=-22) 14:17:17 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) 14:17:17 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, 0x0) 14:17:17 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x101000, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x810000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x0, 0x70bd26, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, 0x0, 0x800) sendmsg$nl_generic(r2, &(0x7f00000000c0)={0x0, 0x48000000, &(0x7f0000000100)={&(0x7f00000006c0)={0x14, 0x1d, 0x2000000000001, 0x0, 0x0, {0x7e}}, 0x14}, 0x1, 0x0, 0x0, 0x2}, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x64, &(0x7f0000000240)=[@in6={0xa, 0x4e20, 0x2, @loopback, 0xbe}, @in6={0xa, 0x4e21, 0x101, @dev={0xfe, 0x80, [], 0x19}, 0x9}, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e23, 0xbc, @local}]}, &(0x7f0000000300)=0x10) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000340)=@sack_info={r3, 0x1ff, 0x7f}, 0xc) 14:17:17 executing program 3 (fault-call:1 fault-nth:45): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:17 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x980, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f0000000300)=""/223, &(0x7f0000000080)=0xdf) bind$isdn_base(r1, &(0x7f00000000c0)={0x22, 0x4, 0x2, 0x0, 0x329}, 0x6) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x106}}, 0x20) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r3, &(0x7f0000000140)={0x12, 0x10, 0xfa00, {&(0x7f0000000100), r2, r0}}, 0x18) 14:17:17 executing program 4: socket$inet_udplite(0x2, 0x2, 0x88) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040), 0x4) [ 311.894113][T10467] FAULT_INJECTION: forcing a failure. [ 311.894113][T10467] name failslab, interval 1, probability 0, space 0, times 0 [ 311.915526][T10466] overlayfs: missing 'lowerdir' [ 311.932148][T10467] CPU: 1 PID: 10467 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 14:17:17 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0xfffffffffffffffa, 0x0) ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f0000000180)={0x9, 0x100000001, 0xfb3}) r2 = socket$inet_sctp(0x2, 0x0, 0x84) connect$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x3, {0x0, 0x0, 0x1}}, 0x10) getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000040)={0x0, 0x101, 0x2360000000000, 0x800, 0x4, 0x100}, &(0x7f0000000080)=0x14) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000200)={r3, 0x1, 0x800000000000009f, [0x100000001, 0x6, 0x5]}, &(0x7f00000001c0)=0xe) 14:17:17 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) [ 311.941177][T10467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 311.951323][T10467] Call Trace: [ 311.954626][T10467] dump_stack+0x172/0x1f0 [ 311.958964][T10467] should_fail.cold+0xa/0x15 [ 311.963564][T10467] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 311.969368][T10467] ? lock_downgrade+0x880/0x880 [ 311.974216][T10467] ? ___might_sleep+0x163/0x280 [ 311.979064][T10467] __should_failslab+0x121/0x190 [ 311.983999][T10467] should_failslab+0x9/0x14 [ 311.988528][T10467] __kmalloc+0x2dc/0x740 [ 311.992798][T10467] ? lockdep_init_map+0x10c/0x5b0 [ 311.992812][T10467] ? prealloc_shrinker+0xd6/0x330 [ 311.992829][T10467] prealloc_shrinker+0xd6/0x330 [ 312.002831][T10467] alloc_super+0x707/0x890 [ 312.002850][T10467] ? test_single_super+0x10/0x10 [ 312.002867][T10467] sget_userns+0xf1/0x560 [ 312.002882][T10467] ? kill_litter_super+0x60/0x60 [ 312.002900][T10467] ? test_single_super+0x10/0x10 [ 312.002911][T10467] ? kill_litter_super+0x60/0x60 [ 312.002926][T10467] sget+0x10c/0x150 [ 312.012150][T10467] mount_bdev+0xff/0x3c0 14:17:17 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, 0x0) [ 312.012165][T10467] ? bfs_iget+0xb60/0xb60 [ 312.012183][T10467] bfs_mount+0x35/0x40 [ 312.012197][T10467] ? bfs_statfs+0x3d0/0x3d0 [ 312.012212][T10467] legacy_get_tree+0xf2/0x200 [ 312.012231][T10467] vfs_get_tree+0x123/0x450 [ 312.021458][T10467] do_mount+0x1436/0x2c40 [ 312.021476][T10467] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 312.021498][T10467] ? copy_mount_string+0x40/0x40 [ 312.021519][T10467] ? _copy_from_user+0xdd/0x150 [ 312.021539][T10467] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 312.070607][T10467] ? copy_mount_options+0x30e/0x440 [ 312.070630][T10467] ksys_mount+0xdb/0x150 [ 312.070650][T10467] __x64_sys_mount+0xbe/0x150 [ 312.070671][T10467] do_syscall_64+0x103/0x610 [ 312.070692][T10467] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 312.086566][T10467] RIP: 0033:0x45a8aa [ 312.086582][T10467] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 14:17:17 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = socket$inet6(0xa, 0x6, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x90482, 0x0) ioctl$PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x10000, 0x8, 0x5, 0x9}]}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r3, r4) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000d4b000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x3, [{{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @mcast1}}]}, 0x210) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000080)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) 14:17:17 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r0, 0x0, 0x1, 0x0, 0x0}, 0x20) fcntl$addseals(r0, 0x409, 0x8) r1 = semget(0x1, 0x3, 0x288) semctl$IPC_INFO(r1, 0x1, 0x3, &(0x7f0000000000)=""/164) fcntl$setpipe(r0, 0x407, 0x3118) [ 312.086590][T10467] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 312.086605][T10467] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 312.086614][T10467] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 312.086624][T10467] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 312.086632][T10467] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 312.086645][T10467] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 312.110714][T10489] overlayfs: missing 'lowerdir' [ 312.175010][T10462] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 14:17:17 executing program 3 (fault-call:1 fault-nth:46): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:17 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}]}) [ 312.246438][T10484] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 312.283649][T10462] syz-executor1 (10462) used greatest stack depth: 21072 bytes left [ 312.362500][T10510] overlayfs: missing 'lowerdir' [ 312.374429][T10508] FAULT_INJECTION: forcing a failure. [ 312.374429][T10508] name failslab, interval 1, probability 0, space 0, times 0 [ 312.399124][T10508] CPU: 1 PID: 10508 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 14:17:17 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = dup(r0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_hci_HCI_FILTER(r1, 0x0, 0x2, 0x0, 0x0) r2 = request_key(&(0x7f0000000000)='cifs.spnego\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='em0/#\x00', 0x0) keyctl$set_timeout(0xf, r2, 0x6) socket$isdn(0x22, 0x3, 0x0) 14:17:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) r1 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x6, 0x20000) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f00000000c0)=@add_del={0x2, &(0x7f0000000080)='bond0\x00'}) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000300)={0x53, 0xffffffffffffffff, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$binfmt_elf64(r0, &(0x7f0000000300)=ANY=[], 0xf6) read(r0, 0x0, 0x3e8) 14:17:17 executing program 0: r0 = socket$l2tp(0x18, 0x1, 0x1) r1 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x5, 0x40) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000200)={0x10001, 0x0, 0x2, 0x7}) ioctl$DRM_IOCTL_SG_ALLOC(r1, 0xc0106438, &(0x7f0000000240)={0x7b, r2}) r3 = accept4(r0, &(0x7f0000000000)=@vsock={0x28, 0x0, 0x0, @host}, &(0x7f0000000080)=0x80, 0x80800) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000000c0)={0x2, [0x0, 0x0]}, &(0x7f0000000100)=0xc) getsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000140)={r4, 0x3}, &(0x7f0000000180)=0x8) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0xfffffffffffffffc, 0x4) [ 312.408143][T10508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 312.418185][T10508] Call Trace: [ 312.421478][T10508] dump_stack+0x172/0x1f0 [ 312.425828][T10508] should_fail.cold+0xa/0x15 [ 312.430426][T10508] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 312.436231][T10508] ? lock_downgrade+0x880/0x880 [ 312.441083][T10508] ? ___might_sleep+0x163/0x280 [ 312.445935][T10508] __should_failslab+0x121/0x190 [ 312.450881][T10508] should_failslab+0x9/0x14 [ 312.455399][T10508] __kmalloc+0x2dc/0x740 14:17:17 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x3d7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x25, &(0x7f0000000340)) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00') preadv(r1, &(0x7f0000000480), 0x10000000000002a1, 0x0) getsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000080)=0x8) [ 312.459711][T10508] ? __list_lru_init+0xd5/0x6e0 [ 312.464562][T10508] __list_lru_init+0xd5/0x6e0 [ 312.469233][T10508] alloc_super+0x759/0x890 [ 312.473729][T10508] ? test_single_super+0x10/0x10 [ 312.478711][T10508] sget_userns+0xf1/0x560 [ 312.483039][T10508] ? kill_litter_super+0x60/0x60 [ 312.488082][T10508] ? test_single_super+0x10/0x10 [ 312.493017][T10508] ? kill_litter_super+0x60/0x60 [ 312.497959][T10508] sget+0x10c/0x150 [ 312.501774][T10508] mount_bdev+0xff/0x3c0 [ 312.506019][T10508] ? bfs_iget+0xb60/0xb60 [ 312.510354][T10508] bfs_mount+0x35/0x40 [ 312.514420][T10508] ? bfs_statfs+0x3d0/0x3d0 [ 312.518929][T10508] legacy_get_tree+0xf2/0x200 [ 312.523604][T10508] vfs_get_tree+0x123/0x450 [ 312.528110][T10508] do_mount+0x1436/0x2c40 [ 312.532433][T10508] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 312.538592][T10508] ? copy_mount_string+0x40/0x40 [ 312.543529][T10508] ? _copy_from_user+0xdd/0x150 [ 312.548384][T10508] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 312.554720][T10508] ? copy_mount_options+0x30e/0x440 14:17:17 executing program 0: r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x7, 0x0) getsockopt(r0, 0x7f, 0x4, &(0x7f0000000040)=""/17, &(0x7f0000000080)=0x11) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000000c0), &(0x7f0000000140)=0x4) sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000049a75b78e4217a58000000000001100000"], 0x14}}, 0x0) [ 312.559928][T10508] ksys_mount+0xdb/0x150 [ 312.564193][T10508] __x64_sys_mount+0xbe/0x150 [ 312.568872][T10508] do_syscall_64+0x103/0x610 [ 312.573470][T10508] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 312.579349][T10508] RIP: 0033:0x45a8aa [ 312.583230][T10508] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 312.583238][T10508] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 14:17:17 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}]}) [ 312.583255][T10508] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 312.619181][T10508] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 312.627136][T10508] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 312.627148][T10508] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 312.643046][T10508] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 312.729620][T10534] overlayfs: missing 'lowerdir' 14:17:20 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) 14:17:20 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x29e) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000400)={0xa, 0x0, 0x0, @mcast2, 0x1000000000000005}, 0x1c) setsockopt$packet_int(r1, 0x107, 0x40000000011, &(0x7f0000000080)=0xfffffffffffffffd, 0x4) r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xea2, 0x100) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r3, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000402}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r4, 0x400, 0x70bd2d, 0x25dfdbff, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="6800000098a998631c00bdbf63d8ca341f7c789aaf5782900971369c9c19a071187f04b2a05bab1b241a7eaacab80edb518c33374785d8039c1179", @ANYRES16=r5, @ANYBLOB="00012cbd7000fddbdf25010000000000000009410000004c0018000000006574680000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x48004}, 0x240000c0) r6 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000480)='/dev/mixer\x00', 0x82000, 0x0) ioctl$VHOST_SET_VRING_NUM(r6, 0x4008af10, &(0x7f00000004c0)={0x0, 0x5}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000280)={0x0, 0xdd3, 0x9, &(0x7f0000000240)=0x7}) sendmmsg(r2, &(0x7f0000000300), 0x0, 0x0) chdir(&(0x7f0000000500)='./file0\x00') 14:17:20 executing program 4: ioctl$KVM_GET_DEBUGREGS(0xffffffffffffffff, 0x8080aea1, &(0x7f00000001c0)) syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x9, 0x0) ioctl$ASHMEM_SET_NAME(0xffffffffffffffff, 0x41007701, &(0x7f00000001c0)='/dev/usbmon#\x00') connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev}, 0x1c) openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000080)='cgroup.type\x00', 0x2, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000005fc0), 0x8000000000000fc, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$l2tp(0xffffffffffffffff, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x2e) setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000340), 0x4) modify_ldt$read(0x0, &(0x7f0000000380)=""/190, 0xbe) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="020300090c000000000000000000000002001300020000000000000000000000030006000000000002000000e0000001000000000000007202000100000000000000000200000000030005000000000002000000e00000010000000000000000e909585cb3797bbbb3912dfc60b31bffd7b61cef0b3ca23bf9a3c2e39814793ac4cfe936962585bd2c65744dafe7b17faf123ef02385c8249d85"], 0x60}}, 0x0) 14:17:20 executing program 3 (fault-call:1 fault-nth:47): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:20 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}]}) 14:17:20 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x2) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x72}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000002fe0)={{&(0x7f0000909000/0x4000)=nil, 0x4000}, 0x1}) mremap(&(0x7f0000909000/0x2000)=nil, 0x2000, 0x2000, 0xffffffffffffffff, &(0x7f0000ffc000/0x2000)=nil) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000080)=0x0) r2 = getpid() setpgid(r1, r2) clone(0x0, &(0x7f0000000080), &(0x7f0000000000), &(0x7f0000915ffc), &(0x7f0000000180)) read(r0, &(0x7f0000009f9c)=""/100, 0x64) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000100)={'bond_slave_0\x00\x00\x00\x02', {0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x8001, 0x0) statx(r3, &(0x7f0000000140)='./file0\x00', 0x1000, 0x60, &(0x7f0000000180)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd) [ 315.026480][T10547] FAULT_INJECTION: forcing a failure. [ 315.026480][T10547] name failslab, interval 1, probability 0, space 0, times 0 [ 315.039288][T10547] CPU: 1 PID: 10547 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 315.048303][T10547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 315.048310][T10547] Call Trace: [ 315.048331][T10547] dump_stack+0x172/0x1f0 [ 315.048352][T10547] should_fail.cold+0xa/0x15 [ 315.048373][T10547] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 315.076372][T10547] ? lock_downgrade+0x880/0x880 [ 315.081216][T10547] ? ___might_sleep+0x163/0x280 [ 315.086068][T10547] __should_failslab+0x121/0x190 [ 315.086407][T10551] overlayfs: missing 'lowerdir' [ 315.090999][T10547] should_failslab+0x9/0x14 [ 315.091015][T10547] kmem_cache_alloc_trace+0x2d1/0x760 [ 315.091030][T10547] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 315.091049][T10547] __memcg_init_list_lru_node+0x8a/0x1e0 [ 315.117127][T10547] __list_lru_init+0x3d3/0x6e0 [ 315.121891][T10547] alloc_super+0x759/0x890 [ 315.126306][T10547] ? test_single_super+0x10/0x10 [ 315.131241][T10547] sget_userns+0xf1/0x560 [ 315.135572][T10547] ? kill_litter_super+0x60/0x60 [ 315.140507][T10547] ? test_single_super+0x10/0x10 [ 315.145435][T10547] ? kill_litter_super+0x60/0x60 [ 315.150369][T10547] sget+0x10c/0x150 [ 315.154182][T10547] mount_bdev+0xff/0x3c0 [ 315.158424][T10547] ? bfs_iget+0xb60/0xb60 [ 315.162762][T10547] bfs_mount+0x35/0x40 [ 315.166841][T10547] ? bfs_statfs+0x3d0/0x3d0 [ 315.171342][T10547] legacy_get_tree+0xf2/0x200 [ 315.176018][T10547] vfs_get_tree+0x123/0x450 [ 315.180519][T10547] do_mount+0x1436/0x2c40 [ 315.184850][T10547] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 315.191003][T10547] ? copy_mount_string+0x40/0x40 [ 315.195935][T10547] ? _copy_from_user+0xdd/0x150 [ 315.200787][T10547] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 315.207017][T10547] ? copy_mount_options+0x30e/0x440 [ 315.212217][T10547] ksys_mount+0xdb/0x150 [ 315.216546][T10547] __x64_sys_mount+0xbe/0x150 [ 315.221226][T10547] do_syscall_64+0x103/0x610 [ 315.225814][T10547] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 315.231691][T10547] RIP: 0033:0x45a8aa [ 315.235576][T10547] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 315.255171][T10547] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 315.263578][T10547] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa 14:17:20 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:20 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x8060, 0x0) fcntl$setsig(r1, 0xa, 0x11) fcntl$setlease(r1, 0x400, 0x1) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000001300)='./file0\x00', 0x0, 0x0) setxattr$security_ima(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.ima\x00', &(0x7f0000000100)=@v2={0x0, 0x1, 0x11, 0x9, 0xa8, "e33068181c3e6e8d840848869b85389d8dff4334d6d23ad532c7161f651de714883b51718d09067e1451bd9efeba12631b6d05fc8e03c3b857b2a21bb6e64309df6c26114b4428fd510170ccec9526621111b92855f4f3de7879ee9ad1ebe2dab7ce0978f37f72b1d69d0450940e3d43983e768b31a6f90e40643c9faaac783a2a2bbecd4856c207c19167a2174d9ce9446ae33413ac6af325380120d6def90bb6fd86e59053d603"}, 0xb2, 0x8ac7fdc753946084) [ 315.271537][T10547] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 315.279495][T10547] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 315.287463][T10547] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 315.295423][T10547] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:20 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 14:17:20 executing program 4: socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000480)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[&\xe5\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ}\xb7\xf3\xfe\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4', 0x2761, 0x0) write$cgroup_pid(r0, &(0x7f0000000100), 0xda4fff08) ioctl$TUNATTACHFILTER(r0, 0x401054d5, 0x0) r1 = perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0x20, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x40000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$net_dm(&(0x7f00000000c0)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(r0, 0x0, 0x48004) r2 = perf_event_open(&(0x7f0000001d00)={0x0, 0x70, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5c5, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x80000000, 0x0, 0xe9d6, 0x1, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r1) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x480000, 0x0) signalfd(r2, &(0x7f0000000040)={0x3}, 0x8) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x660c, 0x2000000000004) 14:17:20 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x4) ioctl$VIDIOC_G_TUNER(r2, 0xc054561d, &(0x7f0000000040)={0x8ddb, "f265aca30fffe24e07836e7ab90e4d65d2a1a236a0664e9e03058bc17209d26a", 0x5, 0x1020, 0x0, 0xf3f, 0x2, 0x4, 0x692, 0x400}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008aec1, &(0x7f0000000380)={0x7b}) [ 315.382535][T10567] overlayfs: missing 'workdir' 14:17:20 executing program 3 (fault-call:1 fault-nth:48): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:20 executing program 0: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) setsockopt$netrom_NETROM_T2(r2, 0x103, 0x2, &(0x7f00000000c0)=0x8263, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000100)={'security\x00'}, &(0x7f00000001c0)=0x54) r3 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @loopback, 0x0, 0x0, 'lblc\x00'}, 0x2c) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000000)={0x80011, @multicast1, 0x0, 0x0, 'lblcr\x00'}, 0x2c) setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0) [ 315.565835][T10586] overlayfs: missing 'workdir' 14:17:20 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 315.644719][T10591] FAULT_INJECTION: forcing a failure. [ 315.644719][T10591] name failslab, interval 1, probability 0, space 0, times 0 14:17:21 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00001bf000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0) mmap(&(0x7f00001bd000/0x3000)=nil, 0x3000, 0x0, 0x20011, r0, 0x0) 14:17:21 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 315.717382][T10601] overlayfs: missing 'workdir' [ 315.719468][T10591] CPU: 0 PID: 10591 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 315.731278][T10591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 315.741327][T10591] Call Trace: [ 315.744607][T10591] dump_stack+0x172/0x1f0 [ 315.744629][T10591] should_fail.cold+0xa/0x15 [ 315.744646][T10591] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 315.744670][T10591] ? lock_downgrade+0x880/0x880 [ 315.764142][T10591] ? ___might_sleep+0x163/0x280 [ 315.768994][T10591] __should_failslab+0x121/0x190 [ 315.773950][T10591] should_failslab+0x9/0x14 [ 315.778472][T10591] kmem_cache_alloc_trace+0x2d1/0x760 [ 315.783843][T10591] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 315.789648][T10591] __memcg_init_list_lru_node+0x8a/0x1e0 [ 315.795279][T10591] __list_lru_init+0x3d3/0x6e0 [ 315.795296][T10591] alloc_super+0x759/0x890 [ 315.795312][T10591] ? test_single_super+0x10/0x10 [ 315.795328][T10591] sget_userns+0xf1/0x560 [ 315.813738][T10591] ? kill_litter_super+0x60/0x60 [ 315.818678][T10591] ? test_single_super+0x10/0x10 [ 315.823606][T10591] ? kill_litter_super+0x60/0x60 [ 315.828551][T10591] sget+0x10c/0x150 [ 315.832352][T10591] mount_bdev+0xff/0x3c0 [ 315.836596][T10591] ? bfs_iget+0xb60/0xb60 [ 315.840932][T10591] bfs_mount+0x35/0x40 [ 315.844999][T10591] ? bfs_statfs+0x3d0/0x3d0 [ 315.849501][T10591] legacy_get_tree+0xf2/0x200 [ 315.854185][T10591] vfs_get_tree+0x123/0x450 [ 315.858703][T10591] do_mount+0x1436/0x2c40 [ 315.863033][T10591] ? copy_mount_string+0x40/0x40 14:17:21 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 315.867966][T10591] ? copy_mount_options+0x234/0x440 [ 315.873160][T10591] ? copy_mount_options+0x23a/0x440 [ 315.878349][T10591] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 315.884590][T10591] ? copy_mount_options+0x30e/0x440 [ 315.889875][T10591] ksys_mount+0xdb/0x150 [ 315.894131][T10591] __x64_sys_mount+0xbe/0x150 [ 315.898798][T10591] do_syscall_64+0x103/0x610 [ 315.903404][T10591] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 315.909414][T10591] RIP: 0033:0x45a8aa [ 315.913287][T10591] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 315.932864][T10591] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 315.941245][T10591] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 315.949206][T10591] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 315.957152][T10591] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 315.965097][T10591] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 315.973041][T10591] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:21 executing program 3 (fault-call:1 fault-nth:49): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 316.110397][T10612] FAULT_INJECTION: forcing a failure. [ 316.110397][T10612] name failslab, interval 1, probability 0, space 0, times 0 [ 316.142425][T10612] CPU: 0 PID: 10612 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 316.151557][T10612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 316.161605][T10612] Call Trace: [ 316.164901][T10612] dump_stack+0x172/0x1f0 [ 316.169235][T10612] should_fail.cold+0xa/0x15 [ 316.173827][T10612] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 316.179636][T10612] ? lock_downgrade+0x880/0x880 [ 316.184480][T10612] ? ___might_sleep+0x163/0x280 [ 316.189338][T10612] __should_failslab+0x121/0x190 [ 316.194279][T10612] should_failslab+0x9/0x14 [ 316.198779][T10612] kmem_cache_alloc_trace+0x2d1/0x760 [ 316.204146][T10612] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 316.209952][T10612] __memcg_init_list_lru_node+0x8a/0x1e0 [ 316.215578][T10612] __list_lru_init+0x3d3/0x6e0 [ 316.220336][T10612] alloc_super+0x759/0x890 [ 316.224751][T10612] ? test_single_super+0x10/0x10 [ 316.229674][T10612] sget_userns+0xf1/0x560 [ 316.233988][T10612] ? kill_litter_super+0x60/0x60 [ 316.238918][T10612] ? test_single_super+0x10/0x10 [ 316.243846][T10612] ? kill_litter_super+0x60/0x60 [ 316.248773][T10612] sget+0x10c/0x150 [ 316.252572][T10612] mount_bdev+0xff/0x3c0 [ 316.256810][T10612] ? bfs_iget+0xb60/0xb60 [ 316.261131][T10612] bfs_mount+0x35/0x40 [ 316.265187][T10612] ? bfs_statfs+0x3d0/0x3d0 [ 316.269684][T10612] legacy_get_tree+0xf2/0x200 [ 316.274372][T10612] vfs_get_tree+0x123/0x450 [ 316.278866][T10612] do_mount+0x1436/0x2c40 [ 316.283190][T10612] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 316.289336][T10612] ? copy_mount_string+0x40/0x40 [ 316.294290][T10612] ? _copy_from_user+0xdd/0x150 [ 316.299131][T10612] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 316.305379][T10612] ? copy_mount_options+0x30e/0x440 [ 316.310569][T10612] ksys_mount+0xdb/0x150 [ 316.314812][T10612] __x64_sys_mount+0xbe/0x150 [ 316.319490][T10612] do_syscall_64+0x103/0x610 [ 316.324079][T10612] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 316.329956][T10612] RIP: 0033:0x45a8aa [ 316.333841][T10612] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 316.353445][T10612] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 316.361849][T10612] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 316.369809][T10612] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 316.377769][T10612] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 316.385730][T10612] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 316.393691][T10612] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:21 executing program 1: r0 = socket$inet(0x10, 0x10000000003, 0xc) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000010a07121dfffd946fa2830020200a00030001001e1d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x24000, 0x0) accept$unix(r1, &(0x7f0000000100), &(0x7f0000000180)=0x6e) [ 316.555213][T10627] netlink: 16 bytes leftover after parsing attributes in process `syz-executor1'. [ 316.583869][T10629] netlink: 16 bytes leftover after parsing attributes in process `syz-executor1'. 14:17:23 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 14:17:23 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:23 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x6000000, 0x3, 0x6000000, 0x3}, 0x1c) setsockopt$packet_int(r0, 0x107, 0x13, &(0x7f00000000c0), 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0xffffbfffffffffff, &(0x7f0000000000)="1745fa1f8dbd7c8d6bea641a9fcf334ceb159cb4fdd1b5791e10db93e7") 14:17:23 executing program 3 (fault-call:1 fault-nth:50): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:23 executing program 4: socket$nl_route(0x10, 0x3, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000200)={'bridge_slave_0\x00', 0x79}) r1 = socket(0xa, 0x0, 0x2) r2 = socket$inet(0x10, 0x3, 0xc) ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000340)) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000240)={0x0, 0x5}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000380)={r3, 0x1100, 0x30}, &(0x7f00000001c0)=0xc) sendmsg(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000024000)=[{&(0x7f0000000100)="24000000100007031dff22946fa2830020200a0009000300001d85687f0000000400ff7e28000000000a43ba5d806055b6fdd80b40000000090001000029ec2400020cd37e99d69cda45a95e", 0x23}], 0x1b8}, 0x0) r4 = openat$ubi_ctrl(0xffffffffffffff9c, 0xfffffffffffffffe, 0x81, 0x0) ioctl$TIOCSSOFTCAR(r4, 0x541a, &(0x7f0000000300)=0x817b) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYPTR64=&(0x7f0000000000)=ANY=[@ANYRESDEC, @ANYRESHEX=r1, @ANYBLOB="9ae0938a8c3f4ab7119a4cdaefeb7b958e93f3ec930000b2bb88683303e0eddb0283f564bba04b7544fd0693c60e1d8504b51313f7576a8633fad3919d44eac4019bdd4fcfb54f4e9d72c836d2deecd23cbce0873096", @ANYRES64=r2], @ANYPTR, @ANYRESOCT=r2]], 0x3}, 0x9}], 0x1, 0x0) 14:17:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000030000/0x18000)=nil, 0x0, 0xfffffffffffffe22, 0x20, 0x0, 0xfffffffffffffc89) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000380)={0x3, 0x0, 0x2080, {0x0, 0x0, 0x1}, [], "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", "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"}) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x2, 0xdde1}) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x200000, 0x0) [ 318.504446][T10643] FAULT_INJECTION: forcing a failure. [ 318.504446][T10643] name failslab, interval 1, probability 0, space 0, times 0 [ 318.558062][T10643] CPU: 1 PID: 10643 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 318.567093][T10643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 318.577129][T10643] Call Trace: [ 318.580423][T10643] dump_stack+0x172/0x1f0 [ 318.584763][T10643] should_fail.cold+0xa/0x15 [ 318.589358][T10643] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 318.595175][T10643] ? lock_downgrade+0x880/0x880 [ 318.600026][T10643] ? ___might_sleep+0x163/0x280 [ 318.604879][T10643] __should_failslab+0x121/0x190 [ 318.609829][T10643] should_failslab+0x9/0x14 [ 318.614324][T10643] kmem_cache_alloc_node_trace+0x270/0x720 [ 318.620120][T10643] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 318.620150][T10643] __kmalloc_node+0x3d/0x70 [ 318.620173][T10643] kvmalloc_node+0x68/0x100 [ 318.620190][T10643] __list_lru_init+0x4aa/0x6e0 [ 318.630813][T10643] alloc_super+0x759/0x890 [ 318.644420][T10643] ? test_single_super+0x10/0x10 [ 318.644432][T10643] sget_userns+0xf1/0x560 [ 318.644483][T10643] ? kill_litter_super+0x60/0x60 [ 318.653669][T10643] ? test_single_super+0x10/0x10 [ 318.653683][T10643] ? kill_litter_super+0x60/0x60 [ 318.653696][T10643] sget+0x10c/0x150 [ 318.653712][T10643] mount_bdev+0xff/0x3c0 [ 318.653728][T10643] ? bfs_iget+0xb60/0xb60 [ 318.680855][T10643] bfs_mount+0x35/0x40 [ 318.684924][T10643] ? bfs_statfs+0x3d0/0x3d0 [ 318.689929][T10643] legacy_get_tree+0xf2/0x200 [ 318.694615][T10643] vfs_get_tree+0x123/0x450 [ 318.699116][T10643] do_mount+0x1436/0x2c40 [ 318.703464][T10643] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 318.709622][T10643] ? copy_mount_string+0x40/0x40 [ 318.714558][T10643] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 318.720786][T10643] ? copy_mount_options+0x30e/0x440 [ 318.725964][T10643] ksys_mount+0xdb/0x150 [ 318.730184][T10643] __x64_sys_mount+0xbe/0x150 [ 318.734856][T10643] do_syscall_64+0x103/0x610 [ 318.739473][T10643] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 318.745340][T10643] RIP: 0033:0x45a8aa [ 318.749237][T10643] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 318.768813][T10643] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 318.777197][T10643] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 318.785152][T10643] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 318.793099][T10643] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 318.801045][T10643] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 14:17:24 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 14:17:24 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:24 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xe4, 0xfc, 0x2, {"c39dc6ee50ffa9298031339708f8850cf56bedccebd3eac449aa92ca1bdcf6eecec80ce0c451fc89a57f015f7183161986a4b2ec3414147cb606d50322a0e620eb64df7204572ec9e1c2693d91ee86901b37dba2bd72fb0149b95f00f5a6f6974d3d8353cc44989a06f457bfc5b2fa005118f3dedb3b8941d5c409fb6ba9fdefd9bd6b14a40fec6e4d66d7b58bf83f6eb0bc32c0829c98b6f8ba5892389b2e9dae346dd1228739efc8f5b74e95ae666ebe2f1a57ce9f3d855fc5bd48665e4064d552c89ec60d0298078cc044d31c0b76a9af8432a8265dd0fbd97afca4273faf95"}}, {0x1a0ffffffff, "97502a938157a5"}}, &(0x7f0000000040)=""/174, 0x105, 0xae, 0x1}, 0x20) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001680)='/dev/dlm_plock\x00', 0x1, 0x0) sendmsg$unix(r0, &(0x7f00000027c0)={&(0x7f00000016c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002780)=[{&(0x7f0000001740)="673cdf7c144e", 0x6}, {&(0x7f0000001780)="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", 0x1000}], 0x2, 0x0, 0x0, 0x4805}, 0x4c080) [ 318.808994][T10643] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:24 executing program 3 (fault-call:1 fault-nth:51): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:24 executing program 4: setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000000c0)='ip6gre0\x00', 0x10) r0 = syz_open_dev$dmmidi(&(0x7f00000002c0)='/dev/dmmidi#\x00', 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000dec000)='smaps\x00') setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000000)=0x5) ioctl$DRM_IOCTL_DROP_MASTER(0xffffffffffffffff, 0x641f) madvise(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x10200000008) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, &(0x7f00000019c0)=""/4096, 0x1000}, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f00000001c0)='memory.high\x00f\xe0\a\xbc\x19W\x95\bY\xe6\x1a\x10L\x84Q\xcd\xf5\xa1c\x8f\xe9I5R=\xad\xfa\x9c\aY\xef\x01,\xc25K\x8b\xf9\x0e\x90\xff<\x00\xa9\xe0x\xfaq\xd7-Z\f\x85&\"<\xb8Y\x8aD\xc7\x00\xe7\xe4 \xa2\xb6g(Z\xd5w\x84\xd1\x99X\xdaQ+-\xf1\v$\xcdv\xe6`\\\xc4\xdf\x1eN\x8c\\\x9c\xe8T\x06\x8eLk\x88\x9d2d\xe0:3S\xef\x8b\x10\xa8\x89\xa4\xfe\xea\x01\x05\xfb\x81\x7f\x15\xe4b\xf0\x9c[\x91\x1d \xc0>\xaeg\xaa\r\xe5\r\xc7x.\x8c8\x83\x8eIO\xb8\\N1#H\xf2\x8f\x03V\xcf\xdb\xc8\xda\xa7)\x7f\xe6\xe3[\xf3', 0x2, 0x0) writev(r2, &(0x7f0000000700), 0x10000000000000ed) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 318.892369][ C0] net_ratelimit: 2 callbacks suppressed [ 318.892382][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 318.903896][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 318.909700][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 318.915489][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 318.975973][T10670] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 319.025719][T10670] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 319.035555][T10676] FAULT_INJECTION: forcing a failure. [ 319.035555][T10676] name failslab, interval 1, probability 0, space 0, times 0 [ 319.063970][T10676] CPU: 0 PID: 10676 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 319.072994][T10676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.083033][T10676] Call Trace: [ 319.086322][T10676] dump_stack+0x172/0x1f0 [ 319.090665][T10676] should_fail.cold+0xa/0x15 [ 319.095261][T10676] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 319.101064][T10676] ? lock_downgrade+0x880/0x880 [ 319.105919][T10676] ? ___might_sleep+0x163/0x280 [ 319.110897][T10676] __should_failslab+0x121/0x190 [ 319.115831][T10676] should_failslab+0x9/0x14 [ 319.120331][T10676] kmem_cache_alloc_trace+0x2d1/0x760 [ 319.125710][T10676] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 319.131526][T10676] __memcg_init_list_lru_node+0x8a/0x1e0 [ 319.137154][T10676] __list_lru_init+0x3d3/0x6e0 [ 319.141916][T10676] alloc_super+0x759/0x890 [ 319.146332][T10676] ? test_single_super+0x10/0x10 [ 319.151274][T10676] sget_userns+0xf1/0x560 [ 319.155602][T10676] ? kill_litter_super+0x60/0x60 [ 319.160538][T10676] ? test_single_super+0x10/0x10 [ 319.165485][T10676] ? kill_litter_super+0x60/0x60 [ 319.170416][T10676] sget+0x10c/0x150 [ 319.174227][T10676] mount_bdev+0xff/0x3c0 [ 319.178462][T10676] ? bfs_iget+0xb60/0xb60 [ 319.182784][T10676] bfs_mount+0x35/0x40 [ 319.186846][T10676] ? bfs_statfs+0x3d0/0x3d0 [ 319.191341][T10676] legacy_get_tree+0xf2/0x200 [ 319.196026][T10676] vfs_get_tree+0x123/0x450 [ 319.200525][T10676] do_mount+0x1436/0x2c40 [ 319.204853][T10676] ? copy_mount_string+0x40/0x40 [ 319.209786][T10676] ? copy_mount_options+0x234/0x440 [ 319.214980][T10676] ? copy_mount_options+0x23a/0x440 [ 319.220254][T10676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.226473][T10676] ? copy_mount_options+0x30e/0x440 [ 319.231652][T10676] ksys_mount+0xdb/0x150 [ 319.235870][T10676] __x64_sys_mount+0xbe/0x150 [ 319.240526][T10676] do_syscall_64+0x103/0x610 [ 319.245100][T10676] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.250971][T10676] RIP: 0033:0x45a8aa [ 319.254842][T10676] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 14:17:24 executing program 1: r0 = getpid() perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfffffffffffffffd, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, 0xffffffffffffffff, &(0x7f0000000080)) 14:17:24 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 319.274506][T10676] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 319.282892][T10676] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 319.290842][T10676] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 319.298786][T10676] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 319.306748][T10676] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 319.314693][T10676] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:24 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000018000)={0x0, 0x0, &(0x7f0000013ff1)={&(0x7f0000000000)=ANY=[@ANYBLOB="141b19b16340e402850bc21974a6a7a2320000001c000100"], 0x14}}, 0x0) [ 319.526804][T10695] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 319.552992][T10695] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 319.852383][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 319.858266][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 320.092347][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 320.098141][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 320.103983][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 320.109827][ C0] protocol 88fb is buggy, dev hsr_slave_1 14:17:26 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'ifb0\x00', 0x2}) socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x600, 0x0) ioctl$PPPIOCSNPMODE(r2, 0x4008744b, &(0x7f0000000080)={0xc27f, 0x3}) ioctl$VIDIOC_G_AUDIO(r2, 0x80345621, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000140)={0x1, &(0x7f00000002c0)=[{0x16, 0x80}]}) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r2, 0xc1205531, &(0x7f0000000300)={0x7, 0x9, 0x1650, 0x10001, [], [], [], 0x39, 0x1f, 0x400, 0x8, "19a10b88d3e3a76fde20128cb63594bf"}) 14:17:26 executing program 1: r0 = memfd_create(&(0x7f0000000280)='\x00', 0x0) fsetxattr$security_capability(r0, &(0x7f0000000100)='security.capability\x00', &(0x7f0000000480)=@v2, 0x14, 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x2, 0x0) write$vnet(r1, &(0x7f00000005c0)={0x1, {&(0x7f00000003c0)=""/167, 0xa7, &(0x7f00000004c0)=""/194, 0x3, 0x4}}, 0x68) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) writev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)="59bd56e53af145da3469cfd3d710a67565a1b1a7f6821e832b523a8498c51c3d01b93bdac26ff81ebfb86913549899089530c322f3ec3295884b505594adf415f1e096f40f863285f108579151c97a7955d77af9ca482615ffba9fe6fb9e8cb3910b5307ce7aff786c73827349afa52b371648b4075fbb7f37c316240046a0e62f2ad00ec86202bb34d392a22021ab92d72c53c1587372792ec7057406dbfe991ade2f046323ff1ae2c4a602b29aebee8232e771741ceaa62285a03f"}, {&(0x7f00000002c0)="7a738b850aac29dea022f9e94b51d18a34a6e667d42d922807a2dd975144d03fc8175c74bf48803dacb27c5730c9becbebffcdaf9deb92d27d0f54a40e35acb98e8536553d9454eb5bfa6e1a039f4b27eace12e6abd92ecfbe542203a1beb9ea5d446e19a4276834f4202fa3ce93d608b57c77456c81bc7e3982fc5814bfccd3c43354"}, {&(0x7f0000000080)="b6f3f426efed68a330973880d514a9a0797a57bef3282e6f4ad43176dcbd0a4da14b145cff814940a37b8cd3800744706d6c7f48e9c18d1bd0b461699bf5f2630008a949092e048dbc0e46189ac19b3e85c72a61b72b084373c4c7398c8c614c68000b57e36f2fd749add2023398ccaa3648f5abff11382368"}, {&(0x7f0000000200)="1f2c6e26b2c4dab41d84bc135493b28c5c6fc64bc1ef8c29d446b69840e0804c102882037a6be32963a14619adb7443fb53b8c5327b65ae1263066a9f4eefd2dfdff0c7feb23101cc8619ae9ccefdcfb73a4108eaf6e9cbfaa3bb2f046f2c91dcc6d3efeaf0996364049ecccfe96f6"}], 0x27f) 14:17:26 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x7ff) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x13}}}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000000)={0x0, 0x1f}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f0000000080)={r3, 0x23}, 0x8) sendmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x4, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2000000000002) sendto$packet(r2, 0x0, 0x0, 0x0, 0x0, 0x0) 14:17:26 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 320.893657][T10704] mmap: syz-executor4 (10704) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 320.929568][T10701] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 320.944045][T10701] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent 14:17:27 executing program 1: r0 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x2, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x100, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={0x0, 0x7}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000140)={0x6, 0x1, 0x8000, 0x9, 0x7, 0x200, 0x5, 0xfffffffffffffd51, r2}, &(0x7f0000000180)=0x20) ioctl$EVIOCSKEYCODE(r0, 0x40084503, &(0x7f0000000080)=[0x0, 0xffffffffffffffff]) 14:17:27 executing program 3 (fault-call:1 fault-nth:52): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:27 executing program 2 (fault-call:8 fault-nth:0): clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:27 executing program 5 (fault-call:4 fault-nth:0): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:27 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x2, 0x10000) ioctl$LOOP_GET_STATUS64(r0, 0x301, 0x0) 14:17:27 executing program 4: socket$netlink(0x10, 0x3, 0x0) close(0xffffffffffffffff) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='pids.events\x00', 0x0, 0x0) openat$cgroup_ro(r1, &(0x7f0000000400)='io.stat\x00', 0x0, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f00000002c0)={&(0x7f0000000280)='./file0\x00', 0x0, 0x8}, 0x10) close(0xffffffffffffffff) r2 = socket$kcm(0x2, 0x8000000003, 0x2) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x8981, &(0x7f0000000040)) sendmsg(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000380)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000000980), 0x0, &(0x7f0000000400), 0x0, 0x20000001}, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x24000, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe9\xdc\x00', 0x200082}) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_sys\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000240)={0xffffffffffffffff, r4}) ioctl$TUNSETVNETBE(r3, 0x400454de, &(0x7f00000004c0)=0x1) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00') bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x8d4, 0x20}, 0x2c) ioctl$TUNSETVNETBE(r4, 0x400454de, &(0x7f0000000440)) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0xd, 0x1a, &(0x7f0000000780)=ANY=[@ANYBLOB="1800fbb74700d85236b3af2b07a705b20fe91a80ff030000000000009a6db7d787151b55d20300c3393fa5f6f0545729f6150e1edf000000000000000000f6ffffffffff45e4c70cdd40ba580bbc28674b6eb166efc587f2f8ef4b02437a70bf4de4c704f4bfacb24ab7d5eb7ceb2838add2da421ca33486091729886d51c58f1ebbfcf76c8b9656756d2eed7ea95132d9391fb14653f39ecebb081b4c179801007e72dd97ecac6376a022fa88ecad69797a8433a8bf6e408fbe878f4bde517ce8f5f9cc84ba864298134cc23af84aa9d1e0319a"], &(0x7f0000000000)='GPL\x00', 0x0, 0xfb, &(0x7f00001a7f05)=""/251}, 0x48) close(r7) openat$cgroup_procs(r0, &(0x7f0000000100)='tasks\x00', 0x2, 0x0) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='+[vboxnet0trusted\x00', 0xffffffffffffff9c}, 0x10) openat$cgroup_ro(r4, &(0x7f0000000300)='pids.current\x00', 0x0, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'yam0\x00', 0x200}) bpf$MAP_CREATE(0x0, &(0x7f0000000480)={0x4, 0x8, 0x7, 0x20, 0xfdffffffff7fffff, 0x1}, 0x18e) r9 = getpid() write$cgroup_pid(r5, &(0x7f0000000500)=r9, 0x12) [ 321.882343][T10724] FAULT_INJECTION: forcing a failure. [ 321.882343][T10724] name failslab, interval 1, probability 0, space 0, times 0 [ 321.899715][T10721] FAULT_INJECTION: forcing a failure. [ 321.899715][T10721] name failslab, interval 1, probability 0, space 0, times 0 [ 321.922476][T10724] CPU: 1 PID: 10724 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 321.931499][T10724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.941548][T10724] Call Trace: [ 321.944854][T10724] dump_stack+0x172/0x1f0 [ 321.949178][T10724] should_fail.cold+0xa/0x15 [ 321.953759][T10724] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 321.959555][T10724] ? lock_downgrade+0x880/0x880 [ 321.964394][T10724] ? ___might_sleep+0x163/0x280 [ 321.970885][T10724] __should_failslab+0x121/0x190 [ 321.975929][T10724] should_failslab+0x9/0x14 [ 321.980428][T10724] kmem_cache_alloc_trace+0x2d1/0x760 [ 321.985787][T10724] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 321.991623][T10724] __memcg_init_list_lru_node+0x8a/0x1e0 [ 321.997256][T10724] __list_lru_init+0x3d3/0x6e0 [ 322.002007][T10724] alloc_super+0x759/0x890 [ 322.006424][T10724] ? test_single_super+0x10/0x10 [ 322.011424][T10724] sget_userns+0xf1/0x560 [ 322.015727][T10724] ? kill_litter_super+0x60/0x60 [ 322.020645][T10724] ? test_single_super+0x10/0x10 [ 322.025557][T10724] ? kill_litter_super+0x60/0x60 [ 322.030468][T10724] sget+0x10c/0x150 [ 322.034264][T10724] mount_bdev+0xff/0x3c0 [ 322.038486][T10724] ? bfs_iget+0xb60/0xb60 [ 322.042795][T10724] bfs_mount+0x35/0x40 [ 322.046849][T10724] ? bfs_statfs+0x3d0/0x3d0 [ 322.051334][T10724] legacy_get_tree+0xf2/0x200 [ 322.055993][T10724] vfs_get_tree+0x123/0x450 [ 322.060479][T10724] do_mount+0x1436/0x2c40 [ 322.064811][T10724] ? copy_mount_string+0x40/0x40 [ 322.069738][T10724] ? __sanitizer_cov_trace_const_cmp4+0xd/0x20 [ 322.075871][T10724] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 322.082086][T10724] ? copy_mount_options+0x30e/0x440 [ 322.087266][T10724] ksys_mount+0xdb/0x150 [ 322.091496][T10724] __x64_sys_mount+0xbe/0x150 [ 322.096157][T10724] do_syscall_64+0x103/0x610 [ 322.100855][T10724] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.106718][T10724] RIP: 0033:0x45a8aa [ 322.110597][T10724] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 14:17:27 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x4008550c, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x4, 0x200000) ioctl$KVM_PPC_ALLOCATE_HTAB(r0, 0xc004aea7, &(0x7f0000000040)=0x4) [ 322.130177][T10724] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 322.138564][T10724] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 322.146515][T10724] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 322.154463][T10724] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 322.162412][T10724] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 322.170467][T10724] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:27 executing program 0: r0 = syz_open_dev$binder(&(0x7f0000008ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$UI_DEV_DESTROY(r0, 0x5502) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x10a00, 0x0) fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000200)='trusted.overlay.upper\x00', &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0xf8, 0x1) ioctl$RTC_WIE_ON(r1, 0x700f) fcntl$dupfd(r0, 0x406, r1) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) name_to_handle_at(r1, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0xaa, 0x428, "0a7ac871a3c4d258592e265f1dffc960734d5c6482b14c7ac7d838b637b947020394a631dae54104c5c99ce8fb09c316f9cccd936ef72881ad12b42c04213e1cfdc9728052056d79b4e8ca4aa171f38d42a96609842c2b331b05fbd4cf66c4cb7865f8c5268ec1a41f82e1a70dd3dba13ecc50b3466c45588df6283392fdd22f794987f0ab475b4b88eaa5564d0d64064cbd8fe15c5ae5ad0e4fb5855cdde4363212"}, &(0x7f0000000580), 0x400) r2 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000000)={0xfffffffffffffe3d, 0x0, &(0x7f0000000040)=ANY=[@ANYPTR64=&(0x7f0000000080)=ANY=[@ANYRESHEX=r2, @ANYRES64]], 0x0, 0x0, 0x0}) r3 = dup2(r2, r0) setsockopt$MISDN_TIME_STAMP(r3, 0x0, 0x1, &(0x7f0000000100), 0x4) ioctl$VIDIOC_S_EXT_CTRLS(r3, 0xc0205648, &(0x7f0000000180)={0x9a0000, 0x3, 0x5, [], &(0x7f0000000140)={0x9b097d, 0xfffffffffffffffc, [], @value=0x8000}}) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x10, 0x0, &(0x7f00000000c0)=[@request_death={0x400c630e, 0x3}], 0x0, 0x0, 0x0}) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1000) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000340)={{0x7, 0xfffffffffffffff8}, 'port1\x00', 0x4, 0x100000, 0x9, 0x2, 0x9, 0x1c25, 0x6, 0x0, 0x1, 0x7}) [ 322.189656][T10721] CPU: 0 PID: 10721 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 322.198685][T10721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.208954][T10721] Call Trace: [ 322.212241][T10721] dump_stack+0x172/0x1f0 [ 322.214998][T10739] binder: 10738:10739 ioctl 5502 0 returned -22 [ 322.216571][T10721] should_fail.cold+0xa/0x15 [ 322.216592][T10721] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 322.227387][T10739] binder: 10738:10739 ioctl c0205648 20000180 returned -22 [ 322.233173][T10721] ? lock_downgrade+0x880/0x880 [ 322.233191][T10721] ? ___might_sleep+0x163/0x280 [ 322.233208][T10721] __should_failslab+0x121/0x190 [ 322.233224][T10721] should_failslab+0x9/0x14 [ 322.233237][T10721] __kmalloc_track_caller+0x2d8/0x740 [ 322.233251][T10721] ? __sb_end_write+0xd9/0x110 [ 322.233268][T10721] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 322.233280][T10721] ? strndup_user+0x77/0xd0 [ 322.233296][T10721] memdup_user+0x26/0xb0 [ 322.233310][T10721] strndup_user+0x77/0xd0 [ 322.233325][T10721] ksys_mount+0x3c/0x150 [ 322.233341][T10721] __x64_sys_mount+0xbe/0x150 [ 322.233358][T10721] do_syscall_64+0x103/0x610 [ 322.233375][T10721] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.233391][T10721] RIP: 0033:0x457e39 [ 322.241503][T10739] binder: 10738:10739 BC_REQUEST_DEATH_NOTIFICATION invalid ref 3 14:17:27 executing program 5 (fault-call:4 fault-nth:1): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:27 executing program 0: r0 = syz_open_dev$vcsn(0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000080)=0x8000, 0x4) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_TSC_KHZ(0xffffffffffffffff, 0xaea3) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000480)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[&\xe5\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ}\xb7\xf3\xfe\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4', 0x2761, 0x0) write$cgroup_pid(r1, &(0x7f0000000100), 0xda4fff08) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x660c, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000000), 0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000140)={0x0, 0xf7b1, 0x0, 0x3ff, 0x6, 0x7, 0x2, 0x8000}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000000)=0x5, 0x4) sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=ANY=[@ANYBLOB="00002dbd700000000000100000002c0005000800010069"], 0x1}}, 0x2000c0c4) getrlimit(0xa, &(0x7f0000000240)) [ 322.245403][T10721] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 322.245411][T10721] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 322.245424][T10721] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 322.245432][T10721] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 322.245440][T10721] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 322.245447][T10721] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 322.245454][T10721] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 322.260723][T10739] binder: 10738:10739 ioctl 5502 0 returned -22 [ 322.303957][T10742] binder: 10738:10742 ioctl c0205648 20000180 returned -22 [ 322.326589][T10741] binder: 10738:10741 BC_REQUEST_DEATH_NOTIFICATION invalid ref 3 14:17:27 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10) r1 = socket$inet6(0xa, 0x7ff, 0x80000001) r2 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x0, 0x3, [0x8, 0x0, 0x0]}, &(0x7f00000002c0)=0xe) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x264, 0x3ef, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8]}, 0x75, r3}) ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000080)={@ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x17}}, 0x1d, r3}) pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(r4, &(0x7f0000000500)='./file0\x00', &(0x7f0000000480)={0x20, 0x7f, "d3483303cf2cd5e54a2a20bd62fa42bd4ddeeb3f3c2d4d3a"}, &(0x7f00000004c0), 0x1400) r5 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r5, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) ioctl$sock_inet6_SIOCADDRT(r2, 0x89a1, &(0x7f0000000100)={@local, @empty, @loopback, 0x3, 0x0, 0x0, 0x0, 0x100000000, 0x1c0270, r3}) r6 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x2) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000340)=ANY=[@ANYBLOB="6c80dee22064ecc2e1a0f2bc4df55a7f4ee9b0d78c9e3fb08476e7c97b207cc059cb1ff0c49f962332426fa0b1501af6d8dfeb908d5536ea067a5659b04086344f5d2f19", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000300)=0xb) r7 = semget(0x3, 0x0, 0x2e2) semtimedop(r7, &(0x7f00000001c0)=[{0x4, 0x80, 0x1000}, {0x3, 0x1, 0x800}, {0x7, 0x6, 0x1000}, {0x0, 0x80000000, 0x800}, {0x7, 0x100000001, 0x1000}, {0x1, 0xffffffffffffff00, 0x800}, {0x7, 0x845}, {0x6, 0x1, 0x1800}], 0x8, &(0x7f0000000200)) ioctl(r2, 0x80000001, &(0x7f0000000040)="0a5cc80700315f85715070") r8 = syz_open_dev$sndseq(&(0x7f0000042000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r8, 0x80045300, &(0x7f0000000000)) setsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000440)=@int=0x8, 0x4) perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8, 0x3, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x1) write$nbd(r8, &(0x7f0000000680)=ANY=[@ANYBLOB="67446698010000000200030001000000780850bbf145962d6db8c3e44c8238f3186579c72d7fd4ece5444956c37bea26c85951d961fe7566784c032ec94e540de64778de8f860efc19b364401a081e0ebc6e64e53f9ebad5376c203529fe73edfb1573bf75e2a6fe8006cd12d2b9d0afd5557c830511691a7e1d4c72e25f2affba68ae94396997212f7df0d6e7e58eebdd5b2e8edacc143c6af38785a37349a35c7e21a24fe40a31dde617ced0ff9d982419c589ff0b6fbee57c97c553ab409b2d4586e7ca164174615536887f0155ee3557ece3c48c402d12afd2f2c733b1b99fc8d1074643c093af6378a8c5c4308e0138a1b846a340"], 0x1) ioctl$IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, &(0x7f0000002c40)) syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./file0\x00', 0x5ffc, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000080)="c8c3822642625609b35166ff86bece4e45ba6e005099e00c82bdac3b201a408072834a9bbed1b4a4e84e0d066b072850e40603039b89d9074cb408aa9e52279ed93cbd8582417995a1ca953b93d0efcc01dc97feffed33aa51ab2919cf77737c30201fa2d8c34f498f8b3da940010c474919ca49da47085eb42c36ff67aa1c0c02cef0f5fafc1f6f59b35f0e59016ffcac91f68dae5fa3cc0248fc776124e52125c11bc7282eab83fd9dbc4763e52e94a2bc634e7f29e1c73d153af853d8", 0xbe, 0x8}], 0x20000, &(0x7f0000000200)=ANY=[]) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vga_arbiter\x00', 0x111000, 0x0) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000280)=0x5, 0x4) 14:17:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) ioctl$FS_IOC_ENABLE_VERITY(r1, 0x6685) r4 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x8, 0x0) getresuid(&(0x7f0000000440)=0x0, &(0x7f0000000480), &(0x7f00000004c0)) lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@mcast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@remote}}, &(0x7f00000006c0)=0xe8) eventfd(0xffffffff) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r4, 0x40a85321, &(0x7f00000007c0)={{0xffff, 0x4}, 'port0\x00', 0x8, 0x0, 0xd2e, 0xfffffffffffffff8, 0xfffffffffffffffe, 0x2, 0x6, 0x0, 0x0, 0x5}) write$FUSE_OPEN(r4, &(0x7f0000000880)={0x20, 0xfffffffffffffffe, 0x1, {0x0, 0x2}}, 0x20) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x6, 0x3, &(0x7f00000003c0)=[{&(0x7f0000000200)="17514c3aa7c6f9a7e81903f1d1a650e160671cea7d6a5da782bf785a541fed53ab22cef86583", 0x26, 0x1}, {&(0x7f0000000240)="fa3568ea9b7b1a7fbb369e4878c046d39b61acebd31528f8334ffaf0d4f7d009ec4b7fe96abbe9703c5cd5b1ca34d996115eedd2ca7d409d4beb233cc4111856bd4fe4e606dc172bc5279199bca0aa077ec6c26548c93db83062b6140b9d5ef481219e33334ffc9d4adb8d1ad88ba05d48f10698b0b1f7ab2c0afbfbf7dda4d04d38cf4b9fdd72711dedd4a7f68bce76fc62464189de6a94de2a434d4027c41ac1c623bbb0ac4c26ac84566db47d127eb36a0c1058265ff07158426a8165e1b40502b26b1f259c165b4a34234d27d8caa90a513fce2f1dd506561e5acc192e95112d34d852", 0xe5, 0x4}, {&(0x7f0000000340)="448a442bd5319ef45fce04705f8cb290811c9b65677713ee6ae8013e68a37d3f98bca8e0d7c0380636e8bb96d6b462074fb2ad5f31a6d234d47f527c201a088d5e8f849a469ac667bed3a89012e9192c6b3733db86dc0eb772023772a11bfe3a51237b3287cc48a38e8a95030fad9f", 0x6f, 0x2}], 0x80004, &(0x7f0000000700)={[{@subvol={'subvol', 0x3d, '}ppp1loeth1ppp0vboxnet1(vmnet1'}}, {@clear_cache='clear_cache'}, {@check_int_data='check_int_data'}, {@acl='acl'}, {@check_int='check_int'}], [{@euid_lt={'euid<', r5}}, {@hash='hash'}, {@uid_eq={'uid', 0x3d, r6}}, {@euid_eq={'euid', 0x3d, r7}}]}) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x6, 0xffffffffffffff6c, 0x2a2, 0x10001, 0x0, 0x8, 0x20002, 0xb, 0x7fffffff, 0x5, 0x5, 0x9, 0x800, 0x0, 0x80000000, 0x8000, 0x800, 0x2, 0x7, 0x200, 0x9, 0x9d, 0x3, 0x6, 0x9d, 0xffffffff, 0x213, 0x40, 0x400, 0xffffffff, 0x101, 0x80000000, 0x4, 0x68, 0x6, 0x400, 0x0, 0x4, 0x6, @perf_config_ext={0x2, 0xfffffffffffffffe}, 0x50, 0x200, 0x1, 0xe, 0x7ff}, r3, 0xffffffffffffffff, r4, 0x1) fstat(r4, &(0x7f00000008c0)) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000080)={0x3, 0x2}) 14:17:27 executing program 3 (fault-call:1 fault-nth:53): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 322.488012][T10749] FAULT_INJECTION: forcing a failure. [ 322.488012][T10749] name failslab, interval 1, probability 0, space 0, times 0 [ 322.559259][T10758] FAULT_INJECTION: forcing a failure. [ 322.559259][T10758] name failslab, interval 1, probability 0, space 0, times 0 [ 322.582856][T10758] CPU: 1 PID: 10758 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 322.591880][T10758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.601936][T10758] Call Trace: [ 322.605232][T10758] dump_stack+0x172/0x1f0 [ 322.609583][T10758] should_fail.cold+0xa/0x15 [ 322.614178][T10758] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 322.620010][T10758] ? lock_downgrade+0x880/0x880 [ 322.624856][T10758] ? ___might_sleep+0x163/0x280 [ 322.629700][T10758] __should_failslab+0x121/0x190 [ 322.634626][T10758] should_failslab+0x9/0x14 [ 322.639114][T10758] kmem_cache_alloc_trace+0x2d1/0x760 [ 322.644472][T10758] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 322.650264][T10758] __memcg_init_list_lru_node+0x8a/0x1e0 [ 322.655888][T10758] __list_lru_init+0x3d3/0x6e0 [ 322.660657][T10758] alloc_super+0x759/0x890 [ 322.665061][T10758] ? test_single_super+0x10/0x10 [ 322.669987][T10758] sget_userns+0xf1/0x560 [ 322.674304][T10758] ? kill_litter_super+0x60/0x60 [ 322.679248][T10758] ? test_single_super+0x10/0x10 [ 322.684183][T10758] ? kill_litter_super+0x60/0x60 [ 322.689112][T10758] sget+0x10c/0x150 [ 322.692912][T10758] mount_bdev+0xff/0x3c0 [ 322.697151][T10758] ? bfs_iget+0xb60/0xb60 [ 322.701473][T10758] bfs_mount+0x35/0x40 [ 322.706056][T10758] ? bfs_statfs+0x3d0/0x3d0 [ 322.710553][T10758] legacy_get_tree+0xf2/0x200 [ 322.715218][T10758] vfs_get_tree+0x123/0x450 [ 322.719729][T10758] do_mount+0x1436/0x2c40 [ 322.724052][T10758] ? copy_mount_string+0x40/0x40 [ 322.728982][T10758] ? copy_mount_options+0x1de/0x440 [ 322.734166][T10758] ? __sanitizer_cov_trace_pc+0x3f/0x50 [ 322.739697][T10758] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 322.745925][T10758] ? copy_mount_options+0x30e/0x440 [ 322.751117][T10758] ksys_mount+0xdb/0x150 [ 322.755355][T10758] __x64_sys_mount+0xbe/0x150 [ 322.760029][T10758] do_syscall_64+0x103/0x610 [ 322.764628][T10758] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.770507][T10758] RIP: 0033:0x45a8aa [ 322.774396][T10758] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 322.793980][T10758] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 322.802374][T10758] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 322.810330][T10758] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 322.818300][T10758] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 322.826269][T10758] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 322.834260][T10758] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 322.851334][T10749] CPU: 1 PID: 10749 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 322.860360][T10749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.870427][T10749] Call Trace: [ 322.873704][T10749] dump_stack+0x172/0x1f0 [ 322.878023][T10749] should_fail.cold+0xa/0x15 [ 322.882608][T10749] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 322.888405][T10749] ? lock_downgrade+0x880/0x880 [ 322.893250][T10749] ? ___might_sleep+0x163/0x280 [ 322.898094][T10749] __should_failslab+0x121/0x190 [ 322.903028][T10749] should_failslab+0x9/0x14 [ 322.907529][T10749] __kmalloc_track_caller+0x2d8/0x740 [ 322.912902][T10749] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 322.919139][T10749] ? strndup_user+0x77/0xd0 [ 322.923636][T10749] memdup_user+0x26/0xb0 [ 322.927871][T10749] strndup_user+0x77/0xd0 [ 322.932192][T10749] ksys_mount+0x7b/0x150 [ 322.936429][T10749] __x64_sys_mount+0xbe/0x150 [ 322.941109][T10749] do_syscall_64+0x103/0x610 [ 322.945701][T10749] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.951691][T10749] RIP: 0033:0x457e39 [ 322.955583][T10749] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 322.975175][T10749] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 322.983573][T10749] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 322.991643][T10749] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 322.999605][T10749] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 14:17:28 executing program 5 (fault-call:4 fault-nth:2): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 323.007564][T10749] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 323.015530][T10749] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 323.113224][T10765] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 14:17:28 executing program 3 (fault-call:1 fault-nth:54): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 323.258592][T10774] FAULT_INJECTION: forcing a failure. [ 323.258592][T10774] name failslab, interval 1, probability 0, space 0, times 0 [ 323.281524][T10774] CPU: 1 PID: 10774 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 323.290547][T10774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.300601][T10774] Call Trace: [ 323.300623][T10774] dump_stack+0x172/0x1f0 [ 323.300642][T10774] should_fail.cold+0xa/0x15 [ 323.300659][T10774] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 323.318697][T10774] ? lock_downgrade+0x880/0x880 [ 323.323557][T10774] ? ___might_sleep+0x163/0x280 [ 323.328412][T10774] __should_failslab+0x121/0x190 [ 323.333348][T10774] should_failslab+0x9/0x14 [ 323.337848][T10774] kmem_cache_alloc_trace+0x2d1/0x760 [ 323.343217][T10774] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 323.349454][T10774] ? _copy_from_user+0xdd/0x150 [ 323.354324][T10774] copy_mount_options+0x5c/0x440 [ 323.359261][T10774] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 323.365505][T10774] ksys_mount+0xa7/0x150 [ 323.369744][T10774] __x64_sys_mount+0xbe/0x150 [ 323.374419][T10774] do_syscall_64+0x103/0x610 [ 323.379012][T10774] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.385008][T10774] RIP: 0033:0x457e39 [ 323.388899][T10774] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 323.408489][T10774] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 323.417003][T10774] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 323.424969][T10774] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 323.432933][T10774] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 323.440895][T10774] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 323.448856][T10774] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 323.547328][T10784] FAULT_INJECTION: forcing a failure. [ 323.547328][T10784] name failslab, interval 1, probability 0, space 0, times 0 [ 323.602385][T10784] CPU: 0 PID: 10784 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 323.611407][T10784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.621440][T10784] Call Trace: [ 323.624722][T10784] dump_stack+0x172/0x1f0 [ 323.629031][T10784] should_fail.cold+0xa/0x15 [ 323.633606][T10784] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 323.639386][T10784] ? lock_downgrade+0x880/0x880 [ 323.644215][T10784] ? ___might_sleep+0x163/0x280 [ 323.649042][T10784] __should_failslab+0x121/0x190 [ 323.653958][T10784] should_failslab+0x9/0x14 [ 323.658440][T10784] kmem_cache_alloc_trace+0x2d1/0x760 [ 323.663792][T10784] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 323.669592][T10784] __memcg_init_list_lru_node+0x8a/0x1e0 [ 323.675209][T10784] __list_lru_init+0x3d3/0x6e0 [ 323.679956][T10784] alloc_super+0x759/0x890 [ 323.684354][T10784] ? test_single_super+0x10/0x10 [ 323.689546][T10784] sget_userns+0xf1/0x560 [ 323.693857][T10784] ? kill_litter_super+0x60/0x60 [ 323.698776][T10784] ? test_single_super+0x10/0x10 [ 323.703695][T10784] ? kill_litter_super+0x60/0x60 [ 323.708608][T10784] sget+0x10c/0x150 [ 323.712397][T10784] mount_bdev+0xff/0x3c0 [ 323.716618][T10784] ? bfs_iget+0xb60/0xb60 [ 323.720926][T10784] bfs_mount+0x35/0x40 [ 323.724982][T10784] ? bfs_statfs+0x3d0/0x3d0 [ 323.729461][T10784] legacy_get_tree+0xf2/0x200 [ 323.734120][T10784] vfs_get_tree+0x123/0x450 [ 323.738603][T10784] do_mount+0x1436/0x2c40 [ 323.742921][T10784] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 323.749058][T10784] ? copy_mount_string+0x40/0x40 [ 323.753977][T10784] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 323.760195][T10784] ? copy_mount_options+0x30e/0x440 [ 323.765379][T10784] ksys_mount+0xdb/0x150 [ 323.769601][T10784] __x64_sys_mount+0xbe/0x150 [ 323.774260][T10784] do_syscall_64+0x103/0x610 [ 323.778830][T10784] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.784698][T10784] RIP: 0033:0x45a8aa [ 323.788568][T10784] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 323.808146][T10784] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 323.816535][T10784] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 323.824488][T10784] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 323.832438][T10784] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 323.840389][T10784] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 323.848341][T10784] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:30 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:30 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xb, &(0x7f0000000100)='+system^\x9e$\x00'}, 0x30) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2, 0x10, r3, 0x0) 14:17:30 executing program 5 (fault-call:4 fault-nth:3): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:30 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) r2 = socket$l2tp(0x18, 0x1, 0x1) sendmmsg(r0, &(0x7f0000005fc0), 0x8000000000000fc, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key(&(0x7f0000000200)='rxrpc\x00', 0x0, 0x0, 0x0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000003fff, 0x0) ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, 0x0) connect$l2tp(0xffffffffffffffff, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, 0x0) r3 = dup2(r2, r1) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e21, 0x6, @empty, 0xa3e4}}, [0x7e, 0x7, 0x101, 0x9, 0x8, 0x9, 0x5, 0xfff, 0x9080d1d, 0x2, 0x4, 0x1, 0x100000001, 0x2, 0x5]}, &(0x7f0000000140)=0x100) getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000180)={r4, 0x9, 0x7ff, 0x4e3c573e, 0x921e, 0x20}, &(0x7f00000001c0)=0x14) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000000)={0x0, 0x8001}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000080)={r5}, &(0x7f0000000100)=0x8) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0) 14:17:30 executing program 3 (fault-call:1 fault-nth:55): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:30 executing program 1: ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000000)=0x0) capget(&(0x7f0000000100)={0x0, r0}, &(0x7f0000000140)={0x2, 0x6, 0x8, 0x1ff, 0x401, 0x80000001}) semop(0x0, 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000600)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_pts(r1, 0x0) write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0x35b) ioctl$TCSETA(r1, 0x5406, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x100000009b4b62b}) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000040)={0x17, 0x5b03}) openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) [ 324.911860][T10800] FAULT_INJECTION: forcing a failure. [ 324.911860][T10800] name failslab, interval 1, probability 0, space 0, times 0 [ 324.927782][T10800] CPU: 1 PID: 10800 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 324.936807][T10800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 324.946854][T10800] Call Trace: [ 324.950145][T10800] dump_stack+0x172/0x1f0 [ 324.954501][T10800] should_fail.cold+0xa/0x15 [ 324.959089][T10800] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 324.964907][T10800] ? lock_downgrade+0x880/0x880 [ 324.969741][T10800] ? ___might_sleep+0x163/0x280 [ 324.974585][T10800] __should_failslab+0x121/0x190 [ 324.979507][T10800] should_failslab+0x9/0x14 [ 324.983992][T10800] kmem_cache_alloc+0x2be/0x710 [ 324.988826][T10800] ? kmem_cache_alloc_trace+0x5a4/0x760 [ 324.994355][T10800] ? find_held_lock+0x35/0x130 [ 324.999104][T10800] getname_flags+0xd6/0x5b0 [ 325.003597][T10800] ? kasan_check_write+0x14/0x20 [ 325.008538][T10800] user_path_at_empty+0x2f/0x50 [ 325.013382][T10800] do_mount+0x150/0x2c40 [ 325.017607][T10800] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 325.023743][T10800] ? copy_mount_string+0x40/0x40 [ 325.028666][T10800] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.034886][T10800] ? copy_mount_options+0x30e/0x440 [ 325.040067][T10800] ksys_mount+0xdb/0x150 [ 325.044293][T10800] __x64_sys_mount+0xbe/0x150 [ 325.048960][T10800] do_syscall_64+0x103/0x610 [ 325.053553][T10800] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.059433][T10800] RIP: 0033:0x457e39 [ 325.063307][T10800] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 325.082906][T10800] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 325.091293][T10800] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 325.099245][T10800] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 325.107195][T10800] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 325.115143][T10800] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 325.123112][T10800] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 14:17:30 executing program 5 (fault-call:4 fault-nth:4): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 325.186712][T10809] FAULT_INJECTION: forcing a failure. [ 325.186712][T10809] name failslab, interval 1, probability 0, space 0, times 0 [ 325.231657][T10809] CPU: 0 PID: 10809 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 325.240683][T10809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 325.250732][T10809] Call Trace: [ 325.254018][T10809] dump_stack+0x172/0x1f0 [ 325.258348][T10809] should_fail.cold+0xa/0x15 [ 325.262934][T10809] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 325.268748][T10809] ? lock_downgrade+0x880/0x880 [ 325.273600][T10809] ? ___might_sleep+0x163/0x280 [ 325.278475][T10809] __should_failslab+0x121/0x190 [ 325.283427][T10809] should_failslab+0x9/0x14 [ 325.287933][T10809] kmem_cache_alloc_trace+0x2d1/0x760 [ 325.293306][T10809] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 325.299114][T10809] __memcg_init_list_lru_node+0x8a/0x1e0 [ 325.304754][T10809] __list_lru_init+0x3d3/0x6e0 [ 325.309554][T10809] alloc_super+0x759/0x890 [ 325.313969][T10809] ? test_single_super+0x10/0x10 [ 325.318904][T10809] sget_userns+0xf1/0x560 [ 325.323230][T10809] ? kill_litter_super+0x60/0x60 [ 325.328163][T10809] ? test_single_super+0x10/0x10 [ 325.333097][T10809] ? kill_litter_super+0x60/0x60 [ 325.338027][T10809] sget+0x10c/0x150 [ 325.341833][T10809] mount_bdev+0xff/0x3c0 [ 325.346088][T10809] ? bfs_iget+0xb60/0xb60 [ 325.350412][T10809] bfs_mount+0x35/0x40 [ 325.354474][T10809] ? bfs_statfs+0x3d0/0x3d0 [ 325.358969][T10809] legacy_get_tree+0xf2/0x200 [ 325.363646][T10809] vfs_get_tree+0x123/0x450 [ 325.368149][T10809] do_mount+0x1436/0x2c40 [ 325.372494][T10809] ? copy_mount_string+0x40/0x40 [ 325.377438][T10809] ? copy_mount_options+0x1de/0x440 [ 325.382636][T10809] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 325.388176][T10809] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.394416][T10809] ? copy_mount_options+0x30e/0x440 [ 325.399614][T10809] ksys_mount+0xdb/0x150 [ 325.403872][T10809] __x64_sys_mount+0xbe/0x150 [ 325.408555][T10809] do_syscall_64+0x103/0x610 [ 325.413143][T10809] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.419022][T10809] RIP: 0033:0x45a8aa [ 325.419036][T10809] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 325.419044][T10809] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 325.419057][T10809] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 325.419065][T10809] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 325.419079][T10809] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 14:17:30 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xe, &(0x7f0000000040)=0x100080001, 0x4) r2 = add_key(&(0x7f0000000000)='ceph\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000140), 0x0, 0xfffffffffffffff9) keyctl$clear(0x7, r2) gettid() r3 = syz_open_procfs(0x0, 0x0) ioctl$TIOCMSET(r3, 0x5418, &(0x7f0000000100)=0x81) r4 = geteuid() fstat(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0}, &(0x7f0000000380)=0xc) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000003c0)={{{@in6=@mcast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@dev}}, &(0x7f00000004c0)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000500)={{{@in6=@mcast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f0000000600)=0xe8) getresuid(&(0x7f00000006c0), &(0x7f0000000700)=0x0, &(0x7f0000000740)) r10 = getuid() r11 = geteuid() getgroups(0x3, &(0x7f0000000780)=[0xee00, 0xffffffffffffffff, 0xee00]) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000007c0)={0x0, 0x0, 0x0}, &(0x7f0000000800)=0xc) setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='system.posix_acl_default\x00', &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000001e805000000000002000700", @ANYRES32=r4, @ANYBLOB="02000200fb8819b09f9f4aedf4402bf3cadbc8f21987a9cf", @ANYRES32=r5, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="02000300", @ANYRES32=r7, @ANYBLOB="02000600", @ANYRES32=r8, @ANYBLOB="0224ec06532ea909c80051660c50168aa9a4180ec529a6907d", @ANYRES32=0x0, @ANYBLOB="02000400", @ANYRES32=r9, @ANYBLOB="02000000f3969cab9e08f89a42c20b036cb1f40d34ccb4b7a099f65ead2076e97ecfdee14653e56459d21ff36aa097c163e583b54c773fb3a839bf42a59ab958bf04754237ad2b27157a", @ANYRES32=r10, @ANYBLOB="02000700", @ANYRES32=r11, @ANYBLOB="040001000000000008000100", @ANYRES32=r12, @ANYBLOB="08000400", @ANYRES32=r13, @ANYBLOB="10000600000000002000040000000000"], 0x7c, 0x0) syz_open_dev$video4linux(0x0, 0x0, 0x0) r14 = syz_open_dev$dmmidi(&(0x7f0000000640)='/dev/dmmidi#\x00', 0x3, 0xfffffffffffffffe) getsockopt$inet_int(r14, 0x0, 0x1f, &(0x7f0000000180), &(0x7f0000000200)=0x4) pipe(&(0x7f0000000880)={0xffffffffffffffff, 0xffffffffffffffff}) write(r16, &(0x7f0000000340), 0x10000014c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x4, &(0x7f00000001c0)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) fchmod(0xffffffffffffffff, 0x0) vmsplice(r15, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) [ 325.442563][T10809] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 325.442572][T10809] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 325.494406][T10820] FAULT_INJECTION: forcing a failure. [ 325.494406][T10820] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 325.507598][T10820] CPU: 0 PID: 10820 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 325.507608][T10820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 325.507613][T10820] Call Trace: 14:17:30 executing program 0: ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)=@null) [ 325.507631][T10820] dump_stack+0x172/0x1f0 [ 325.507650][T10820] should_fail.cold+0xa/0x15 [ 325.507680][T10820] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 325.527080][T10820] ? mark_held_locks+0xf0/0xf0 [ 325.527098][T10820] should_fail_alloc_page+0x50/0x60 [ 325.527112][T10820] __alloc_pages_nodemask+0x1a1/0x7e0 [ 325.527123][T10820] ? find_held_lock+0x35/0x130 [ 325.527139][T10820] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 325.570724][T10820] ? find_held_lock+0x35/0x130 [ 325.575475][T10820] cache_grow_begin+0x9c/0x850 [ 325.580398][T10820] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 325.586618][T10820] ? check_preemption_disabled+0x48/0x290 [ 325.592316][T10820] kmem_cache_alloc+0x645/0x710 [ 325.597165][T10820] ? __schedule+0x81f/0x1cc0 [ 325.601730][T10820] ? find_held_lock+0x35/0x130 [ 325.606478][T10820] getname_flags+0xd6/0x5b0 [ 325.610955][T10820] ? retint_kernel+0x2d/0x2d [ 325.615527][T10820] user_path_at_empty+0x2f/0x50 [ 325.620362][T10820] do_mount+0x150/0x2c40 [ 325.624584][T10820] ? retint_kernel+0x2d/0x2d [ 325.629151][T10820] ? copy_mount_string+0x40/0x40 [ 325.634065][T10820] ? copy_mount_options+0x244/0x440 [ 325.639260][T10820] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.645477][T10820] ? copy_mount_options+0x30e/0x440 [ 325.650659][T10820] ksys_mount+0xdb/0x150 [ 325.654880][T10820] __x64_sys_mount+0xbe/0x150 [ 325.659533][T10820] do_syscall_64+0x103/0x610 [ 325.664126][T10820] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.669995][T10820] RIP: 0033:0x457e39 [ 325.673882][T10820] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 325.693738][T10820] RSP: 002b:00007fec028dec78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 325.702130][T10820] RAX: ffffffffffffffda RBX: 00007fec028dec90 RCX: 0000000000457e39 [ 325.710075][T10820] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 325.718021][T10820] RBP: 000000000073bfa0 R08: 0000000020000380 R09: 0000000000000000 [ 325.725968][T10820] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec028df6d4 [ 325.733927][T10820] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000003 14:17:31 executing program 5 (fault-call:4 fault-nth:5): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:31 executing program 3 (fault-call:1 fault-nth:56): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:31 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x96, &(0x7f0000000100)="0a1e0d3f3188a070") r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x20) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x8, &(0x7f0000000000)=[{0x3, 0x7ff, 0x9}, {0x7, 0x2, 0x100, 0xda}, {0x9086, 0x1f, 0xb9c}, {0x6, 0x101, 0x800, 0x6e}, {0x10000, 0x10000, 0x1, 0x5}, {0x87b, 0x8, 0x1, 0x7fffffff}, {0x40, 0x1, 0x1, 0xc78}, {0x4, 0x7f, 0x0, 0x1ff}]}, 0x10) fchown(r0, 0xee01, 0x0) fcntl$setlease(r1, 0x400, 0x0) [ 325.940580][T10836] FAULT_INJECTION: forcing a failure. [ 325.940580][T10836] name failslab, interval 1, probability 0, space 0, times 0 [ 325.958461][T10843] FAULT_INJECTION: forcing a failure. [ 325.958461][T10843] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 325.971660][T10843] CPU: 0 PID: 10843 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 325.980671][T10843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 325.990718][T10843] Call Trace: [ 325.994011][T10843] dump_stack+0x172/0x1f0 [ 325.998341][T10843] should_fail.cold+0xa/0x15 [ 326.002922][T10843] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 326.008720][T10843] ? mark_held_locks+0xf0/0xf0 [ 326.013496][T10843] should_fail_alloc_page+0x50/0x60 [ 326.018687][T10843] __alloc_pages_nodemask+0x1a1/0x7e0 [ 326.024054][T10843] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 326.029772][T10843] ? find_held_lock+0x35/0x130 [ 326.034548][T10843] cache_grow_begin+0x9c/0x850 [ 326.039307][T10843] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 326.045570][T10843] ? check_preemption_disabled+0x48/0x290 [ 326.051286][T10843] kmem_cache_alloc+0x645/0x710 [ 326.056126][T10843] ? cache_grow_end+0xa4/0x190 [ 326.060889][T10843] getname_flags+0xd6/0x5b0 [ 326.065394][T10843] user_path_at_empty+0x2f/0x50 [ 326.070236][T10843] do_mount+0x150/0x2c40 [ 326.074479][T10843] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 326.080630][T10843] ? copy_mount_string+0x40/0x40 [ 326.085565][T10843] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.091815][T10843] ? copy_mount_options+0x30e/0x440 [ 326.097005][T10843] ksys_mount+0xdb/0x150 [ 326.101243][T10843] __x64_sys_mount+0xbe/0x150 [ 326.105914][T10843] do_syscall_64+0x103/0x610 [ 326.110514][T10843] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 326.116413][T10843] RIP: 0033:0x457e39 [ 326.120298][T10843] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 326.139888][T10843] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 326.148302][T10843] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 326.156260][T10843] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 326.164220][T10843] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 326.172178][T10843] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 326.180139][T10843] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 326.188121][T10836] CPU: 1 PID: 10836 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 326.197135][T10836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 326.197140][T10836] Call Trace: [ 326.197158][T10836] dump_stack+0x172/0x1f0 [ 326.197177][T10836] should_fail.cold+0xa/0x15 [ 326.197196][T10836] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 326.225168][T10836] ? lock_downgrade+0x880/0x880 [ 326.230012][T10836] ? ___might_sleep+0x163/0x280 [ 326.234857][T10836] __should_failslab+0x121/0x190 [ 326.239786][T10836] should_failslab+0x9/0x14 [ 326.239801][T10836] kmem_cache_alloc_trace+0x2d1/0x760 [ 326.239818][T10836] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 326.255422][T10836] __memcg_init_list_lru_node+0x8a/0x1e0 [ 326.261054][T10836] __list_lru_init+0x3d3/0x6e0 [ 326.265817][T10836] alloc_super+0x759/0x890 [ 326.270239][T10836] ? test_single_super+0x10/0x10 [ 326.275171][T10836] sget_userns+0xf1/0x560 [ 326.279498][T10836] ? kill_litter_super+0x60/0x60 [ 326.284433][T10836] ? test_single_super+0x10/0x10 [ 326.289374][T10836] ? kill_litter_super+0x60/0x60 [ 326.294301][T10836] sget+0x10c/0x150 [ 326.298104][T10836] mount_bdev+0xff/0x3c0 [ 326.302335][T10836] ? bfs_iget+0xb60/0xb60 [ 326.306672][T10836] bfs_mount+0x35/0x40 [ 326.310732][T10836] ? bfs_statfs+0x3d0/0x3d0 [ 326.315253][T10836] legacy_get_tree+0xf2/0x200 [ 326.319933][T10836] vfs_get_tree+0x123/0x450 [ 326.324437][T10836] do_mount+0x1436/0x2c40 [ 326.328869][T10836] ? retint_kernel+0x2d/0x2d [ 326.333463][T10836] ? copy_mount_string+0x40/0x40 [ 326.338397][T10836] ? copy_mount_options+0x255/0x440 [ 326.343601][T10836] ? write_comp_data+0x1e/0x70 [ 326.348357][T10836] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.354593][T10836] ? copy_mount_options+0x30e/0x440 [ 326.359795][T10836] ksys_mount+0xdb/0x150 [ 326.364035][T10836] __x64_sys_mount+0xbe/0x150 [ 326.368711][T10836] do_syscall_64+0x103/0x610 [ 326.373306][T10836] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 326.379188][T10836] RIP: 0033:0x45a8aa [ 326.383079][T10836] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 326.402758][T10836] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 326.411168][T10836] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 326.419131][T10836] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 326.427110][T10836] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 326.435178][T10836] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 326.443147][T10836] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:33 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f0000000140)=""/155) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:33 executing program 0: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x40, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000040)={'tunl0\x00'}) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x0, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000080)={{0x6, 0x10001}, 0x24}, 0x10) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4000fffffff5) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000240)={0x0, 0x65a1}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000002c0)=ANY=[@ANYRES32=r2, @ANYBLOB="14ffa12b01000000335a420000000000000000000000000000"], &(0x7f0000000300)=0x1d) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000100)={0x3f, 0x8001, 0x7, 0x8000000003d, [], [], [], 0xffff, 0x4, 0x10004, 0x2, "79496b8ba9e1780200"}) 14:17:33 executing program 1: r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video36\x00', 0x2, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x7, 0x80000) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffff9c, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x40}, &(0x7f0000000080)=0x8) ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f0000000280)) ioctl$SIOCAX25OPTRT(r1, 0x89e7, &(0x7f00000002c0)={@null, @default, 0x2, 0x44}) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f00000000c0)={r2, 0x3, 0x8, 0x26}, &(0x7f0000000100)=0x10) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000180)={0x0, 0x1000, 0x2, {0x2, @pix={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff442}}}) 14:17:33 executing program 5 (fault-call:4 fault-nth:6): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:33 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'nlmon0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="440000000000009de6f157a79a71f0c3b0df0000000000043ace00000fba0000000000"]}) 14:17:33 executing program 3 (fault-call:1 fault-nth:57): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:33 executing program 1: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB='upperdi\a\x00\x00\x00file0,loWerdir=./file1,workdir=./file1']) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.capability\x00', 0x0, 0x0, 0x0) [ 327.957838][T10861] FAULT_INJECTION: forcing a failure. [ 327.957838][T10861] name failslab, interval 1, probability 0, space 0, times 0 [ 327.984265][T10862] FAULT_INJECTION: forcing a failure. [ 327.984265][T10862] name failslab, interval 1, probability 0, space 0, times 0 14:17:33 executing program 0: r0 = gettid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x280, 0x0) ioctl$LOOP_GET_STATUS64(r1, 0x4c05, &(0x7f0000000180)) syz_mount_image$xfs(&(0x7f0000000140)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f0000010000)="5846534200001000000000000000100000000000000000000000000000000000984f0b5042b64b06bc86cba3e6cc3f80000000000000004000001000000000800000000000000081000000000000008200000001000010000000000100000000000006c0b4a40200010000100000000000000000000000000c0908040c", 0x7d}], 0x0, 0x0) [ 328.005824][T10861] CPU: 0 PID: 10861 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 328.014954][T10861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.014962][T10861] Call Trace: [ 328.014983][T10861] dump_stack+0x172/0x1f0 [ 328.015004][T10861] should_fail.cold+0xa/0x15 [ 328.015024][T10861] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 328.043032][T10861] ? lock_downgrade+0x880/0x880 [ 328.047893][T10861] ? ___might_sleep+0x163/0x280 [ 328.052756][T10861] __should_failslab+0x121/0x190 [ 328.052776][T10861] should_failslab+0x9/0x14 [ 328.052791][T10861] kmem_cache_alloc_trace+0x2d1/0x760 [ 328.052805][T10861] ? refcount_dec_and_mutex_lock+0x90/0x90 [ 328.052818][T10861] ? rcu_read_lock_sched_held+0x110/0x130 [ 328.052835][T10861] ? kmem_cache_alloc_trace+0x354/0x760 [ 328.067708][T10861] legacy_init_fs_context+0x48/0xe0 [ 328.067724][T10861] ? generic_parse_monolithic+0x200/0x200 [ 328.067743][T10861] alloc_fs_context+0x365/0x640 [ 328.089941][T10861] fs_context_for_mount+0x25/0x30 [ 328.089960][T10861] do_mount+0x13d7/0x2c40 [ 328.089975][T10861] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 328.089995][T10861] ? copy_mount_string+0x40/0x40 [ 328.120997][T10861] ? _copy_from_user+0xdd/0x150 [ 328.125848][T10861] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.132081][T10861] ? copy_mount_options+0x30e/0x440 [ 328.137289][T10861] ksys_mount+0xdb/0x150 [ 328.141529][T10861] __x64_sys_mount+0xbe/0x150 [ 328.146206][T10861] do_syscall_64+0x103/0x610 [ 328.150794][T10861] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.156673][T10861] RIP: 0033:0x457e39 [ 328.160562][T10861] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 328.180151][T10861] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 328.188566][T10861] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 328.196537][T10861] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 328.204504][T10861] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 328.212462][T10861] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 328.220420][T10861] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 328.228398][T10862] CPU: 1 PID: 10862 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 328.237415][T10862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.245196][T10882] overlayfs: unrecognized mount option "upperdi" or missing value [ 328.247463][T10862] Call Trace: [ 328.258597][T10862] dump_stack+0x172/0x1f0 [ 328.262929][T10862] should_fail.cold+0xa/0x15 [ 328.267513][T10862] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 328.273311][T10862] ? lock_downgrade+0x880/0x880 [ 328.278247][T10862] ? ___might_sleep+0x163/0x280 [ 328.281126][T10884] overlayfs: unrecognized mount option "upperdi" or missing value [ 328.283099][T10862] __should_failslab+0x121/0x190 [ 328.283116][T10862] should_failslab+0x9/0x14 [ 328.283130][T10862] kmem_cache_alloc_node_trace+0x270/0x720 14:17:33 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000200)={0x82033d, 0x20000000209, 0x0, 0xffffffffffffffff}) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000000)=0x2) r3 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x9, 0x140c0) write$P9_RCREATE(r3, &(0x7f00000000c0)={0x18, 0x73, 0x2, {{0x90, 0x4, 0xa37}, 0x8}}, 0x18) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000100)={0x0, 0x8, 0xc, 0x80000000, 0xfffffffffffffdfd, 0x7}, &(0x7f0000000140)=0x14) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000180)={r4, 0xfffffffffffffffe, 0x5, 0xfff, 0x7ff, 0x1}, 0x14) 14:17:33 executing program 5 (fault-call:4 fault-nth:7): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 328.283144][T10862] ? kmem_cache_alloc_trace+0x354/0x760 [ 328.283160][T10862] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 328.283177][T10862] __kmalloc_node+0x3d/0x70 [ 328.283199][T10862] kvmalloc_node+0x68/0x100 [ 328.322027][T10862] __list_lru_init+0x4aa/0x6e0 [ 328.322044][T10862] alloc_super+0x759/0x890 [ 328.331273][T10862] ? test_single_super+0x10/0x10 [ 328.331288][T10862] sget_userns+0xf1/0x560 [ 328.331311][T10862] ? kill_litter_super+0x60/0x60 [ 328.349855][T10862] ? test_single_super+0x10/0x10 [ 328.354785][T10862] ? kill_litter_super+0x60/0x60 [ 328.359716][T10862] sget+0x10c/0x150 [ 328.363541][T10862] mount_bdev+0xff/0x3c0 [ 328.363556][T10862] ? bfs_iget+0xb60/0xb60 [ 328.363574][T10862] bfs_mount+0x35/0x40 [ 328.363588][T10862] ? bfs_statfs+0x3d0/0x3d0 [ 328.363605][T10862] legacy_get_tree+0xf2/0x200 [ 328.363640][T10862] vfs_get_tree+0x123/0x450 [ 328.363672][T10862] do_mount+0x1436/0x2c40 [ 328.394220][T10862] ? copy_mount_string+0x40/0x40 [ 328.394240][T10862] ? copy_mount_options+0x248/0x440 [ 328.394262][T10862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.394277][T10862] ? copy_mount_options+0x30e/0x440 [ 328.394294][T10862] ksys_mount+0xdb/0x150 [ 328.394314][T10862] __x64_sys_mount+0xbe/0x150 [ 328.415798][T10862] ? __sanitizer_cov_trace_pc+0x3f/0x50 [ 328.430310][T10862] do_syscall_64+0x103/0x610 [ 328.434898][T10862] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.440770][T10862] RIP: 0033:0x45a8aa [ 328.444652][T10862] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 328.464259][T10862] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 328.472653][T10862] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 328.480615][T10862] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 328.488575][T10862] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 328.496547][T10862] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 14:17:33 executing program 1: r0 = socket$inet6(0xa, 0x8080f, 0x800) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x13}, 0x9}, 0x1c) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x1, 0x0) inotify_add_watch(r1, &(0x7f0000000040)='./file0\x00', 0x10) ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r1, 0xc010641d, &(0x7f0000000180)={r2, &(0x7f00000000c0)=""/89}) [ 328.504503][T10862] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 328.562874][T10888] FAULT_INJECTION: forcing a failure. [ 328.562874][T10888] name failslab, interval 1, probability 0, space 0, times 0 [ 328.596889][ T3421] ion_buffer_destroy: buffer still mapped in the kernel [ 328.632454][T10888] CPU: 0 PID: 10888 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 328.641494][T10888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.651544][T10888] Call Trace: [ 328.654859][T10888] dump_stack+0x172/0x1f0 [ 328.659191][T10888] should_fail.cold+0xa/0x15 [ 328.663781][T10888] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 328.669582][T10888] ? lock_downgrade+0x880/0x880 [ 328.674441][T10888] ? ___might_sleep+0x163/0x280 14:17:33 executing program 3 (fault-call:1 fault-nth:58): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 328.674460][T10888] __should_failslab+0x121/0x190 [ 328.674477][T10888] should_failslab+0x9/0x14 [ 328.674494][T10888] kmem_cache_alloc_trace+0x2d1/0x760 [ 328.674510][T10888] ? refcount_dec_and_mutex_lock+0x90/0x90 [ 328.684251][T10888] ? rcu_read_lock_sched_held+0x110/0x130 [ 328.684266][T10888] ? kmem_cache_alloc_trace+0x354/0x760 [ 328.684289][T10888] legacy_init_fs_context+0x48/0xe0 [ 328.684303][T10888] ? generic_parse_monolithic+0x200/0x200 [ 328.684317][T10888] alloc_fs_context+0x365/0x640 [ 328.684335][T10888] fs_context_for_mount+0x25/0x30 [ 328.700376][T10888] do_mount+0x13d7/0x2c40 [ 328.700393][T10888] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 328.700411][T10888] ? copy_mount_string+0x40/0x40 [ 328.700431][T10888] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.711642][T10888] ? copy_mount_options+0x30e/0x440 [ 328.711663][T10888] ksys_mount+0xdb/0x150 [ 328.711682][T10888] __x64_sys_mount+0xbe/0x150 [ 328.711699][T10888] do_syscall_64+0x103/0x610 [ 328.711721][T10888] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.718443][T10904] FAULT_INJECTION: forcing a failure. [ 328.718443][T10904] name failslab, interval 1, probability 0, space 0, times 0 [ 328.722577][T10888] RIP: 0033:0x457e39 [ 328.722607][T10888] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 328.722615][T10888] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 328.722630][T10888] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 328.722639][T10888] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 328.722648][T10888] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 328.722657][T10888] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 328.722665][T10888] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 328.769969][T10904] CPU: 1 PID: 10904 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 328.779021][T10904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.779026][T10904] Call Trace: [ 328.779043][T10904] dump_stack+0x172/0x1f0 [ 328.779064][T10904] should_fail.cold+0xa/0x15 [ 328.779080][T10904] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 328.779097][T10904] ? lock_downgrade+0x880/0x880 [ 328.795550][T10904] ? ___might_sleep+0x163/0x280 [ 328.795569][T10904] __should_failslab+0x121/0x190 [ 328.795586][T10904] should_failslab+0x9/0x14 [ 328.795600][T10904] kmem_cache_alloc_trace+0x2d1/0x760 [ 328.795618][T10904] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 328.831553][T10904] __memcg_init_list_lru_node+0x8a/0x1e0 [ 328.831572][T10904] __list_lru_init+0x3d3/0x6e0 [ 328.831590][T10904] alloc_super+0x759/0x890 [ 328.831604][T10904] ? test_single_super+0x10/0x10 [ 328.831619][T10904] sget_userns+0xf1/0x560 [ 328.847520][T10904] ? kill_litter_super+0x60/0x60 [ 328.847538][T10904] ? test_single_super+0x10/0x10 [ 328.847552][T10904] ? kill_litter_super+0x60/0x60 [ 328.847564][T10904] sget+0x10c/0x150 [ 328.847580][T10904] mount_bdev+0xff/0x3c0 [ 328.847593][T10904] ? bfs_iget+0xb60/0xb60 [ 328.847608][T10904] bfs_mount+0x35/0x40 [ 328.847624][T10904] ? bfs_statfs+0x3d0/0x3d0 [ 328.863519][T10904] legacy_get_tree+0xf2/0x200 [ 328.863539][T10904] vfs_get_tree+0x123/0x450 [ 328.863557][T10904] do_mount+0x1436/0x2c40 [ 328.863579][T10904] ? copy_mount_string+0x40/0x40 [ 328.863596][T10904] ? copy_mount_options+0x1de/0x440 [ 328.863610][T10904] ? copy_mount_options+0x1e3/0x440 [ 328.863626][T10904] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 329.025312][T10904] ? copy_mount_options+0x30e/0x440 [ 329.030494][T10904] ksys_mount+0xdb/0x150 [ 329.034808][T10904] __x64_sys_mount+0xbe/0x150 [ 329.039467][T10904] do_syscall_64+0x103/0x610 [ 329.044041][T10904] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 329.049909][T10904] RIP: 0033:0x45a8aa [ 329.053780][T10904] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 329.073360][T10904] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 329.081762][T10904] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 329.089729][T10904] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 329.097677][T10904] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 329.105624][T10904] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 329.113593][T10904] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 329.137970][T10880] XFS (loop0): Mounting V4 Filesystem [ 329.146695][T10880] XFS (loop0): totally zeroed log [ 329.152937][T10880] XFS (loop0): Failed to read root inode 0x100000000080, error 22 14:17:36 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:36 executing program 4: pipe(&(0x7f0000000080)={0xffffffffffffffff}) ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000000)={{0x2, 0x2, 0x6, 0x80000001, 0x9, 0x3}, 0xe0e1}) statx(r0, &(0x7f00000001c0)='\x00', 0x1000, 0x0, &(0x7f00000002c0)) 14:17:36 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSCTTY(r0, 0x540e, 0x8) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x80, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = open(&(0x7f0000000080)='./bus\x00', 0x1fe, 0x0) write$binfmt_aout(r2, &(0x7f0000000940)=ANY=[@ANYPTR=&(0x7f0000000880)=ANY=[@ANYPTR=&(0x7f0000000700)=ANY=[@ANYBLOB='C', @ANYRESOCT]], @ANYPTR64], 0x10) write$capi20_data(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unlink(&(0x7f0000000300)='./bus\x00') sendfile(r2, r2, &(0x7f0000000000), 0x8080fffffffe) mkdir(&(0x7f0000001540)='./file0\x00', 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x0, &(0x7f0000000180)={@dev, 0x0}, &(0x7f00000001c0)=0x14) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000240)={@loopback, 0x34, r3}) 14:17:36 executing program 5 (fault-call:4 fault-nth:8): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:36 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x7, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000004b11e3e0b364b35246c44057c629bb73aee1aae4df60423aceb1c6f629e96248db4deca9dcc67ee5746f5400000003bb8154923f39a328fcaffec6425b64b2165ec8e95d3a4d99930100000014bd4375ce02237c7fb3799b1ae64792875d0a1fc53375d241ddb3ba592dfa3274f568673a856fd75e6bcdefefffeec706d6dd5221280ece7696caa978f2295920f66dcd46e733c2b0f2a8c3b364e09dc19b362776"], &(0x7f0000000240)='GPL\x00', 0x2, 0x2e6, &(0x7f00001a7f05)=""/251}, 0x48) rt_sigreturn() 14:17:36 executing program 3 (fault-call:1 fault-nth:59): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:36 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x32, @dev={0xac, 0x14, 0x14, 0x20}, 0x4e22, 0x3, 'lblc\x00', 0xc, 0x0, 0x11}, 0x2c) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40086602, 0x400007) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='+Hmemvends\x00', 0x7a05, 0x1700) ioctl(r1, 0x1, &(0x7f0000000040)="5eb7b940") [ 331.021118][T10928] FAULT_INJECTION: forcing a failure. [ 331.021118][T10928] name failslab, interval 1, probability 0, space 0, times 0 [ 331.042139][T10926] FAULT_INJECTION: forcing a failure. [ 331.042139][T10926] name failslab, interval 1, probability 0, space 0, times 0 [ 331.057683][T10928] CPU: 0 PID: 10928 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 14:17:36 executing program 4: r0 = gettid() getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, 0x0, 0x0) r1 = openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r1, 0xc02c564a, &(0x7f00000007c0)={0x0, 0x52424752, 0x1, @stepwise={0x0, 0x1e3, 0x1d7, 0x0, 0x8, 0x2}}) io_setup(0x0, 0x0) io_setup(0x6, &(0x7f0000000700)) io_setup(0x0, 0x0) io_setup(0x200, &(0x7f0000000840)) io_pgetevents(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snapshot\x00', 0x20601, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000680)={'nr0\x00', {0x2, 0xfff, @dev}}) getresuid(&(0x7f0000000100), &(0x7f0000000240), &(0x7f0000000300)=0x0) stat(0x0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_CREATE_OPEN(r2, &(0x7f00000005c0)={0xa0, 0xfffffffffffffff5, 0x5, {{0x5, 0x2, 0x0, 0x5, 0x0, 0xfff, {0x5, 0x80000001, 0x807c, 0x6, 0x0, 0x0, 0x0, 0x9, 0xcb1, 0x7, 0x3ff, r5, r6, 0xa320, 0x8}}, {0x0, 0x2}}}, 0xa0) kcmp(r0, r0, 0x0, r3, r4) bind$nfc_llcp(r2, &(0x7f0000000080)={0x27, 0x1, 0x0, 0x7, 0xfffffffffffffff8, 0x80000000, "553b90c2e21b85d4f5b0cf566e38676664fe0db08e7bf1ead1244227a74312fea71ef473885eca671a7be1c73f96a61663e89298d6a846e3d2dd5ea1edf15e"}, 0x60) ioctl$KIOCSOUND(0xffffffffffffffff, 0x4b2f, 0x3f) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000780)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000), 0x13f, 0x100d}}, 0x20) r7 = add_key$keyring(&(0x7f0000000140)='keyring\x00', 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffa) keyctl$revoke(0x3, r7) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast1, @in6=@local}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f00000002c0)=0xe8) write$RDMA_USER_CM_CMD_MIGRATE_ID(r2, &(0x7f0000000280)={0x12, 0x10, 0xfa00, {&(0x7f0000000040)}}, 0x18) wait4(r0, &(0x7f0000000200), 0x8, 0x0) close(r2) set_thread_area(&(0x7f0000000800)={0x9, 0x20000000, 0x5000, 0x1, 0x1000, 0x9, 0x7, 0x0, 0xffffffffffffffc0}) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, 0x0, &(0x7f0000000380)) 14:17:36 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001280)={&(0x7f0000001240)='*'}, 0x10) r2 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000) dup3(r1, r2, 0x80000) wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x6, &(0x7f0000000000)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 331.066809][T10928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.076856][T10928] Call Trace: [ 331.080148][T10928] dump_stack+0x172/0x1f0 [ 331.084481][T10928] should_fail.cold+0xa/0x15 [ 331.089067][T10928] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 331.094978][T10928] ? lock_downgrade+0x880/0x880 [ 331.099841][T10928] ? ___might_sleep+0x163/0x280 [ 331.104693][T10928] __should_failslab+0x121/0x190 [ 331.109633][T10928] should_failslab+0x9/0x14 [ 331.114144][T10928] kmem_cache_alloc_trace+0x2d1/0x760 [ 331.119524][T10928] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 331.125332][T10928] __memcg_init_list_lru_node+0x8a/0x1e0 [ 331.130981][T10928] __list_lru_init+0x3d3/0x6e0 [ 331.135744][T10928] alloc_super+0x759/0x890 [ 331.140144][T10928] ? test_single_super+0x10/0x10 [ 331.145095][T10928] sget_userns+0xf1/0x560 [ 331.149400][T10928] ? kill_litter_super+0x60/0x60 [ 331.154316][T10928] ? test_single_super+0x10/0x10 [ 331.159233][T10928] ? kill_litter_super+0x60/0x60 [ 331.164156][T10928] sget+0x10c/0x150 [ 331.167948][T10928] mount_bdev+0xff/0x3c0 [ 331.172169][T10928] ? bfs_iget+0xb60/0xb60 [ 331.176480][T10928] bfs_mount+0x35/0x40 [ 331.180530][T10928] ? bfs_statfs+0x3d0/0x3d0 [ 331.185021][T10928] legacy_get_tree+0xf2/0x200 [ 331.189700][T10928] vfs_get_tree+0x123/0x450 [ 331.194193][T10928] do_mount+0x1436/0x2c40 [ 331.198509][T10928] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 331.204647][T10928] ? copy_mount_string+0x40/0x40 [ 331.209567][T10928] ? _copy_from_user+0xdd/0x150 [ 331.214400][T10928] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.220619][T10928] ? copy_mount_options+0x30e/0x440 [ 331.225799][T10928] ksys_mount+0xdb/0x150 [ 331.230032][T10928] __x64_sys_mount+0xbe/0x150 [ 331.234702][T10928] do_syscall_64+0x103/0x610 [ 331.239278][T10928] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 331.245147][T10928] RIP: 0033:0x45a8aa [ 331.249024][T10928] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 331.268603][T10928] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 331.276999][T10928] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 331.284952][T10928] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 331.292904][T10928] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 331.300852][T10928] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 331.308802][T10928] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 331.338558][T10926] CPU: 1 PID: 10926 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 331.347604][T10926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.357658][T10926] Call Trace: [ 331.360937][T10926] dump_stack+0x172/0x1f0 [ 331.365274][T10926] should_fail.cold+0xa/0x15 [ 331.369868][T10926] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 331.375679][T10926] ? lock_downgrade+0x880/0x880 [ 331.380530][T10926] ? ___might_sleep+0x163/0x280 [ 331.385379][T10926] __should_failslab+0x121/0x190 [ 331.390310][T10926] should_failslab+0x9/0x14 [ 331.394815][T10926] __kmalloc_track_caller+0x2d8/0x740 [ 331.400188][T10926] ? legacy_init_fs_context+0x48/0xe0 [ 331.405556][T10926] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 331.411702][T10926] ? vfs_parse_fs_string+0xe8/0x170 [ 331.416902][T10926] kmemdup_nul+0x31/0xa0 [ 331.421159][T10926] vfs_parse_fs_string+0xe8/0x170 [ 331.426175][T10926] ? vfs_parse_fs_param+0x4b0/0x4b0 [ 331.426195][T10926] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.426209][T10926] ? alloc_fs_context+0x3bb/0x640 [ 331.426234][T10926] do_mount+0x6e9/0x2c40 [ 331.426248][T10926] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 331.426266][T10926] ? copy_mount_string+0x40/0x40 [ 331.458238][T10926] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.464488][T10926] ? copy_mount_options+0x30e/0x440 [ 331.469688][T10926] ksys_mount+0xdb/0x150 [ 331.473946][T10926] __x64_sys_mount+0xbe/0x150 [ 331.478626][T10926] do_syscall_64+0x103/0x610 [ 331.483211][T10926] entry_SYSCALL_64_after_hwframe+0x49/0xbe 14:17:36 executing program 0: pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = perf_event_open(&(0x7f000001d000)={0x800000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x1, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000100)={0xffffffffffffffff}, 0x0, 0x100d}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f0000000380)={0x7, 0x8, 0xfa00, {r3}}, 0x10) ioctl$int_in(r2, 0x800000c004500a, &(0x7f0000000040)) ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000340)) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0xffffffffffffffd3, 0x5, 0x100000000000d00, {0x200000000000000, 0x0, 0xa00}}, 0xfffffefd) getrusage(0x0, &(0x7f0000000500)) dup2(r1, r2) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000400)) setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0) fcntl$setown(r2, 0x8, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) clock_getres(0x31ef1c98f90b025, &(0x7f0000000740)) [ 331.483221][T10926] RIP: 0033:0x457e39 [ 331.483232][T10926] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 331.483244][T10926] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 331.493000][T10926] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 331.493008][T10926] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 331.493016][T10926] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 331.493023][T10926] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 331.493031][T10926] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 14:17:36 executing program 3 (fault-call:1 fault-nth:60): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:37 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() prctl$PR_GET_FPEMU(0x9, &(0x7f0000000000)) wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) syz_open_procfs(r0, &(0x7f0000000040)='personality\x00') ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) pipe(&(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:37 executing program 4: r0 = gettid() getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, 0x0, 0x0) r1 = openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r1, 0xc02c564a, &(0x7f00000007c0)={0x0, 0x52424752, 0x1, @stepwise={0x0, 0x1e3, 0x1d7, 0x0, 0x8, 0x2}}) io_setup(0x0, 0x0) io_setup(0x6, &(0x7f0000000700)) io_setup(0x0, 0x0) io_setup(0x200, &(0x7f0000000840)) io_pgetevents(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snapshot\x00', 0x20601, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000680)={'nr0\x00', {0x2, 0xfff, @dev}}) getresuid(&(0x7f0000000100), &(0x7f0000000240), &(0x7f0000000300)=0x0) stat(0x0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_CREATE_OPEN(r2, &(0x7f00000005c0)={0xa0, 0xfffffffffffffff5, 0x5, {{0x5, 0x2, 0x0, 0x5, 0x0, 0xfff, {0x5, 0x80000001, 0x807c, 0x6, 0x0, 0x0, 0x0, 0x9, 0xcb1, 0x7, 0x3ff, r5, r6, 0xa320, 0x8}}, {0x0, 0x2}}}, 0xa0) kcmp(r0, r0, 0x0, r3, r4) bind$nfc_llcp(r2, &(0x7f0000000080)={0x27, 0x1, 0x0, 0x7, 0xfffffffffffffff8, 0x80000000, "553b90c2e21b85d4f5b0cf566e38676664fe0db08e7bf1ead1244227a74312fea71ef473885eca671a7be1c73f96a61663e89298d6a846e3d2dd5ea1edf15e"}, 0x60) ioctl$KIOCSOUND(0xffffffffffffffff, 0x4b2f, 0x3f) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000780)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000), 0x13f, 0x100d}}, 0x20) r7 = add_key$keyring(&(0x7f0000000140)='keyring\x00', 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffa) keyctl$revoke(0x3, r7) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast1, @in6=@local}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f00000002c0)=0xe8) write$RDMA_USER_CM_CMD_MIGRATE_ID(r2, &(0x7f0000000280)={0x12, 0x10, 0xfa00, {&(0x7f0000000040)}}, 0x18) wait4(r0, &(0x7f0000000200), 0x8, 0x0) close(r2) set_thread_area(&(0x7f0000000800)={0x9, 0x20000000, 0x5000, 0x1, 0x1000, 0x9, 0x7, 0x0, 0xffffffffffffffc0}) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x15, 0x0, &(0x7f0000000380)) [ 331.760806][T10962] FAULT_INJECTION: forcing a failure. [ 331.760806][T10962] name failslab, interval 1, probability 0, space 0, times 0 14:17:37 executing program 5 (fault-call:4 fault-nth:9): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 331.883400][T10962] CPU: 1 PID: 10962 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 331.892567][T10962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.902607][T10962] Call Trace: [ 331.905884][T10962] dump_stack+0x172/0x1f0 [ 331.910201][T10962] should_fail.cold+0xa/0x15 [ 331.914774][T10962] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 331.920562][T10962] ? lock_downgrade+0x880/0x880 [ 331.925410][T10962] ? ___might_sleep+0x163/0x280 [ 331.930244][T10962] __should_failslab+0x121/0x190 [ 331.935161][T10962] should_failslab+0x9/0x14 [ 331.939654][T10962] kmem_cache_alloc_trace+0x2d1/0x760 [ 331.945021][T10962] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 331.950811][T10962] __memcg_init_list_lru_node+0x8a/0x1e0 [ 331.956426][T10962] __list_lru_init+0x3d3/0x6e0 [ 331.961171][T10962] alloc_super+0x759/0x890 [ 331.965570][T10962] ? test_single_super+0x10/0x10 [ 331.970484][T10962] sget_userns+0xf1/0x560 [ 331.974791][T10962] ? kill_litter_super+0x60/0x60 [ 331.979709][T10962] ? test_single_super+0x10/0x10 [ 331.984657][T10962] ? kill_litter_super+0x60/0x60 [ 331.989572][T10962] sget+0x10c/0x150 [ 331.993363][T10962] mount_bdev+0xff/0x3c0 [ 331.997583][T10962] ? bfs_iget+0xb60/0xb60 [ 332.001893][T10962] bfs_mount+0x35/0x40 [ 332.005948][T10962] ? bfs_statfs+0x3d0/0x3d0 [ 332.010431][T10962] legacy_get_tree+0xf2/0x200 [ 332.015107][T10962] vfs_get_tree+0x123/0x450 [ 332.019600][T10962] do_mount+0x1436/0x2c40 [ 332.023914][T10962] ? copy_mount_string+0x40/0x40 [ 332.028841][T10962] ? copy_mount_options+0x244/0x440 [ 332.034017][T10962] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.040235][T10962] ? copy_mount_options+0x30e/0x440 [ 332.045415][T10962] ksys_mount+0xdb/0x150 [ 332.049639][T10962] __x64_sys_mount+0xbe/0x150 [ 332.054297][T10962] do_syscall_64+0x103/0x610 [ 332.058876][T10962] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.064747][T10962] RIP: 0033:0x45a8aa [ 332.068619][T10962] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 332.088197][T10962] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 332.096582][T10962] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 332.104548][T10962] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 332.112495][T10962] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 332.120459][T10962] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 332.128499][T10962] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:37 executing program 1: r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)=0x0) r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, 0x9, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3, 0xffffffffffffffff, 0x0, 0xbb}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)={0x10b, 0x6, 0x209e1e, 0x3, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000b40)={r0, &(0x7f0000000040), 0x0, 0x1}, 0x20) r4 = fcntl$dupfd(r3, 0x0, r3) setsockopt$netlink_NETLINK_RX_RING(r4, 0x10e, 0x6, &(0x7f00000005c0)={0x2, 0x7fffffff, 0x5f29, 0x7fff}, 0x10) unlink(&(0x7f0000000900)='./file0/file0\x00') r5 = syz_open_dev$binder(&(0x7f0000000400)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r6 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r6, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r2, 0xc018620b, &(0x7f00000006c0)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r5, 0xc018620b, &(0x7f0000000640)={r7}) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000140)={0x3, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00'], 0x0, 0x0, 0x0}) ioctl$BINDER_SET_CONTEXT_MGR(r6, 0x40046207, 0x0) shutdown(r0, 0xfffffffffffffffe) prctl$PR_SET_NAME(0xf, &(0x7f0000000380)='/group.stat\x00') ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000440)={0x8, 0x0, &(0x7f0000000300)=ANY=[@ANYPTR=&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000002c0)={0x3b, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="f7fed6e115ef51d46f4156f971a4fab5d716cdcffabec44ca0327b97a748baf61b2c649c335b10d04becbffb278b78a9f577a421ac5df184c229ed"], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000000500)=[@release={0x40046306, 0x1}], 0x0, 0x0, &(0x7f0000000680)}) creat(&(0x7f00000000c0)='./file0\x00', 0x0) r8 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='/group.stat\x00', 0x2761, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getpid() lsetxattr$security_capability(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='security.capability\x00', &(0x7f0000000540)=@v1={0x1000000, [{0xffffffffffff6488, 0x6b71}]}, 0xc, 0x1) fallocate(r2, 0x0, 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, 0x0, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0xe, 0x0, &(0x7f0000000680)=[@acquire_done], 0xfffffffffffffeb3, 0x0, &(0x7f00000007c0)}) memfd_create(&(0x7f00000007c0)='bdevppp0ppp1ppp1\x00', 0x1) ioctl$ASHMEM_SET_SIZE(r8, 0x40087703, 0x400) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000400)={'veth=\xb2}\xd4_b\x85idge\x00', 0x100}) 14:17:37 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000140)={{{@in=@empty, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@multicast1}}, &(0x7f0000000040)=0xe8) r3 = syz_open_dev$radio(&(0x7f0000003140)='/dev/radio#\x00', 0x0, 0x2) accept$packet(0xffffffffffffffff, &(0x7f0000004780)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000047c0)=0x14) sendmmsg(r1, &(0x7f0000009080)=[{{&(0x7f0000000240)=@hci={0x1f, r2, 0x3}, 0x80, &(0x7f0000000440)=[{&(0x7f00000002c0)="3077fdd662a9f8e5c640083cc69901e112791d1d48a73197c3b58cdf4eb99141a9814d529872d0650a63a9764197d980b96de8af1551d4b0ed308bf3d2b53300a7d9249d76b419d9ac0dd1e3f6a696b593da91ed5d396e0f9bafb9f50c92bcdb76afe2fa0265eb05ea3e67f823f6fe1e8c94a141d9424e75ed2f6953c0851f7d413a86bff7e783dce0b14a3dbf33ff0614371e45fe327f998e735ad5da6a08b10fc1feab53b9cdd8e04f7daf84228948839b464b40710d9e835cafb17c7c08f8d18300be754d310a76823b0dcb036408118331a10d2cd96f0913ad778bd5ebc119f12a3609fe163628f47f6f", 0xec}, {&(0x7f00000003c0)="400712eab32f497b7e1c538a0157f6f1c28d772fc67809468c22d182072e75d0ff4c56fac98acbc42aa439607193576f1a67aef63b8d5f59eb8f870cf5297232098f8f789f58c468cbad8b7fbf60b7bfd830149e0785edfaf42f5cfce68a75db4ab4ef320bc6e66e6b1b", 0x6a}, {&(0x7f0000000080)="f7f02bfa11f7641bea7df16fd2", 0xd}], 0x3, &(0x7f0000000480)=[{0xf8, 0x10c, 0x311, "221d67a82c23ddf42e257924c519960c7f0bb3ba89c207dcb9d3d4aa0d47180cbce523cd139a6e6308cc8bc6fa3edfbf7d26194fa8cdc5b3aa71b2645f408eef6ae9c2268c01242bac49a1ca57055aee7ccbe4fc0c16897ef0e75d16fa9a5f5f48bea475e44bd42bcd5855ad488e74825d33a6f797546b81c2b88f734b353559ed1b802c894c6878b0d2688008bcccd27a11dce39824ea0974f7c2d6e7330400f4cb440a2250cc38951d4e8b4aef8ad4dcb18db967b7f1fe9868ddb5ad9706aedc5a61dbb9707ab88407f0bc6b2b928022c9d83e7f4af600eb5a85464a041ff5f2"}, {0xd0, 0xff, 0xfe, "cc35ab240d41a6f9d23d732e15acc31b14b5245fff5f07a8b4b5760d8dd606fd04adb5a75864b54129e691c5a443774dd5b349210052c1e7bb309c2c793088ee83b955eaefb28bba83a77500506606fad695ee98b489b8d52b1f7ca7aeacd79d69497ef6e88ddfc0441896c66c868cf0404534c3413d50037a4e51103de8cfe0f3da4baa9c07f2a47bf883f271cb8bd447d701ce58389dafa9a6166a2d16715d4b2c85b208713e09750de8afc4f043751e8c197c83f68ee4dc6aa7ebc7e945"}, {0xc0, 0x118, 0x8, "1233d4fdd9a24a28fb5402384b6886797b81a91c35a266f3ecd68b851e9fabcc1bc183656bb4506c3a887f1d817abfc9010cc126c76463cbd36dd5a1fd2198d39aae62bb7b506079ea716e0c95a09916143aec6a6aa20c1c07a33c305429d239b24344eeade59a6ec8b1393566b81b741959fa2fcc2a317241040f46088ac79c316f1fce384016f6599e8ad1f8e7a3b7b4949fd91b3ae3f769a8b6ffe7cbfbc3caeb5aba3bdb4a7aef"}, {0x1010, 0x0, 0x7ff, "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"}, {0x1010, 0x10c, 0x7f, "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"}, {0x98, 0x11f, 0x0, "b8be255512829aabd1b960192405a63f144acebe488f644d3ca386e656ebeee390fe5d6d47659637105aa0f994c69830342188d2c05db94024e32ad91b5af79bfc3928735488270a9ee4e4c3c8fd2374d1b55c111f4bee9cc8ca03a59ba8f9210bdf58a75969dd2d260cc780d00d33eba964037026232ffcd8785275c55b4489f6bff0f724"}, {0x70, 0x1, 0x0, "626457cee1b4d82678cdbbe56bc115d13f0bc76c64ce7a468372961e118e01bdb4380335a3de797da25ec5789150909017c9110d2e3d60ae4015c8d386e99a46b23581f847a656ea944dda3b98b7573f04c9a33699c43a4c7afe6866da"}, {0x28, 0x102, 0x1, "dcbdb575624ced6c45cf3ebd2866300eca4d2fbdecf3"}, {0x90, 0x1, 0x3ff, "9f02ab814e9945232b4fbfaa7700e77ba9551f6a6c98f0225a8bbe3a24a4e70c39a62df2a7e50749c1170bc117639c111f85cf56d0a885bb8eb58e3e0270f6ecc2f1572ca7fa0f081eb06735d329e66b3ec9b035df1e3dd875a477847f30f68ac504af9ac561eb30517b8f2fd7025fba259ebad1196df42d4aea7f2f22d6cfb0"}, {0x110, 0x11f, 0xdf33, "2e60d30c16e73ce3888e9c06562e8612997917887cc29e25e2150dd3968378df4475362edc5d64d351e062cfa93acfdc9d6b7f8a591cb2397be5d7349fe4938160b4fe7c84e0e2a54379f8f0cdaecfbb042f41fd40a7c16a9440aaa5a0287c4fe1b750fb0e712fc27808838b1690a75e1cb2fdd82e39ee59d1a0d2cd575dcf8de57dc8ceef2314db1fd62c388df97a1e62682a0ec0bd8347ebe5790b836d80871e4ffeacc841326106d4e66fb6dbb497b3d7fa588b012702136d4d63588378866dc2118cc01f15af5ec5b103927275d08b0553bbc67428c6583475e2ec775b21fc15093bbef6b2c881afb0b7aac3bd7465c39efbf3894e24e5"}], 0x2578}, 0x1ff}, {{&(0x7f0000002a00)=@in6={0xa, 0x4e20, 0x3, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x5}, 0x80, &(0x7f0000003080)=[{&(0x7f0000002a80)="bf86de084dcfd1118b791043bda7a8db1dee89a3a1b9a85c479f52c7cd91ea5557911ea92979159dd3b3b8e8770a0c4e1b9a693e9ab121b00be65dbe48f453", 0x3f}, {&(0x7f0000002ac0)="528c416576a298754d8319a51eada62fe14b9f01478b8916b2c8773fe873e58683c2c87fa18f53991a73ad4863dabfb96085476218a5c30dc5fcc846f51dcbcf0490cb0ae8d4705785215f2b35fd", 0x4e}, {&(0x7f0000002b40)="180e10711f2e3a167e8028e3549fcbcc005a6c03f18ac70031d9227a31ef10abd1e44a646e083cb1eb0d1bcaeff671ecace8cfb48493591ac9f9b1024eefbcef4208b7cad343c71354bce34244bb944781af1704b223e9294e82ed492e410fbe5d67aa3aea09b9b6cf594a6287cad64914892835ad89129eeb39749b13da84e8ca399e4a6040637c70fee34662ad375c7dd0eca3288c69762277d85bcabff355aa08888fec29afa005d170396c2228b1517b7d3ab04c123c8b455a8dcc4422ca142b67478caf6b0bd1fcf8ea94e4d50b3fb0725227ee59bfec9853dd54f36fdf9f7501fb86668738fe072ea9", 0xec}, {&(0x7f0000002c40)="3e4168eca6929eb3da74cc834a245ec90fac52359e287e15f8ad9eae0dec4d7cab5d48d0897aa3ba51a725df45965178f906eeb33ea3c4581e5e0166", 0x3c}, {&(0x7f0000002c80)="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", 0xfa}, {&(0x7f0000002d80)="522a1cd53bc2869043913ddecbcc", 0xe}, {&(0x7f0000002dc0)="c7b15b434730fe652d48603d92f25a4949021e95feb417042bf183c03bb37f7d50ee38b49341e689ecd9d131fd18eca835e50b1479b5aba3b53901b91bcf403a49", 0x41}, {&(0x7f0000002e40)="b428d784113c4df859441019ccd9c732858df1d514c33d36f8c649a8606d0c574b9546d564c1254cca2370b6049d482adafdd0a7f5750b33828ec47d2fd34d6ab98d6f75652f2fe2f6f70030d106e10e638c165f0ce0be2dfa5fbebd74d13aed64b72e5db8378230adacbf07823fdeeb489a9c815c033d639865d94e67283abb2090a877c97ed924412142809fec6394f6562c3beac4b486b87df6ecf6083dc4", 0xa0}, {&(0x7f0000002f00)="5587a2aa9d950b3d514089286e78bdb0b7496c50431b1cc4624699fc74b0c38117aa1976ddd3fa507e1a03f09cab34d79104e123d40a163c7ea71211cae83453408240ea315fe9c06ccbcc9996fc63ca602da62b7957dc5d83", 0x59}, {&(0x7f0000002f80)="11032df34f670e585fbb81d63835071cb9867492121f5306f85d86c34333d10c7161b5488bd3b39fc58079959bf5fcf23dcdb553e58f173f14551db98bf519bd92d28c2942a77cb7b8f98be9d0bdfda32bddcf966e11717b582820ce680c58a39f4bb40d808178e0d37454d16fda8914186a66d7296fb044c25d20f5c9092a6bc4b73c6c27634102dedee6539ddd747a1cf0acec1ef0dc1b86c2ea27721798c6c676a8d8fa5b2c85a0a96218433e193355a87d312c5b475173163ae045d3ae01d667d18d4a7e8a8cdec19fc5fa4757b2048e3c635050c88926e7e67814305d", 0xdf}], 0xa}, 0x20}, {{&(0x7f0000003180)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x11}}, 0x0, 0x1, 0x1, 0x2}}, 0x80, &(0x7f0000004580)=[{&(0x7f0000003200)="5b7f9199eab8cf0d4651670a2679b9737d5774da79fff7e6892eb1857fb33f3fbf61493d2d42c6ef70002e36477e2fdf7ba836d2873ac633eca89d5754b554a8ab5e6ad49d393a9a41d48a282d3c8a2243beafd99abefd31dce7e160aeb03b3ceb94fc0ee6ced7f967525545c287e3619d6e74856da36482702adf33a95f21524d20bf127dc21bf979f8a629528d07e4db195a7f0067208c157906970cd7dae963dd78fe1fd6416285b29a49700353e94dbbee25439bed2c228213d39537b32d", 0xc0}, {&(0x7f00000032c0)="ca472966170193f1751fbb72bd4dbe860cc43315be2a2e1de91b3507932c89eb7009c16d86feb0690da1a543084942c6450f25c875219c449a6519ab1b9e0224ad1f579fdca1da2cf698c016dea27e539bb027367720581c4f3e79ba3cb46888d3c43a6cc2b222c4ade94a146ce5eadaa01a8ac5c09e501232643bcd97edd307f1545e73fb3b086124cce7c873fbb256c75a607c6d6c4d46ebde75c85ed6e3842f533059f22ece25ae150196cb542aa9522ca059cc1324e427d1ebc98ade54266e10577322801356bd0340ce32c4c878e7334b2b28511d98f2de600e895dbbeccfd3d1d7fa162a9270fee400", 0xec}, {&(0x7f00000033c0)="a0d51f149f4b8df0775186dc2bb62a509acd0c9738caa19d9f037f8255a409ebb0afb56f9c7eb0c75a681df8b6cde9d25f306fdc7654d75d83c5674c6262db7dfc02aaea074135ff86d0df2eefc193d62087e4d41f0fcdd4a1d2d6c86afce327280b93976ccf3920a3bc2d6a4a20def7c590c5784928cf89bbf8004b03998a8e660cef0aaff4bd4706b93aa82805ef0fde3a064a12659087f1a9c6d5c059ddc7f80e1316fb5d8c85", 0xa8}, {&(0x7f0000003480)="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", 0x1000}, {&(0x7f0000004480)="c318cee697c05de084cc283b458f51c6e58d466da73f1c2b7be50b953dd02e348a60b2005ab39f558a08cfd1e3f713a78c77abb7d14366c788ec00f490aaac5248984030a5f26efac03edc508e3ce788e54f93a604a8eb4fdd3436244656e7670cf53cab663866bba6904d83b199336d6b1319b4e94aeaa37c8cc94564642bd8ad0be8dbe43812e2bc5913ef87378003125e73e89c9152c8b8e21cc907f88cea7d5246aad8d830b78a1f5c85ee4d3e7ec58c7328123fc74adc243ddcdf4c40de433a5f92897f1199ff7031bd1b3d1dd04189678fee00a81449b662e897eb7f", 0xdf}], 0x5, &(0x7f0000004600)=[{0x90, 0x0, 0x5, "cc98d9e7b0c21bdb9c0d2b33d63c78b9994c284494b7e59994d149800ddb1257580cb6f72f26bf843c112c57b483be9bd0a76875bfd771224dc09f846888f81ae7e883e00cdfd0eeeb50d9214abcd1c8697d8589a748c7b4b9be099bbd9624655764da9c1e6d787a2e519545fdce1c6c32658467fa85fbab317fb9d7e56c"}, {0xe0, 0x1, 0x2, "f75a890f028bc119c194da6a55eb0939217fdfe3109b835c794fbd14e00037b72eff01441c45427d117fc949c30911d555e0165b645f57873dbde9d93e1cef89c7bb76c9d1adbb072125ce6fe9570d89bcb8feb3d61672329adb98c8812729df21d7760257628c5a0498107d83131d187ac1da7ddfc7979a42360d43d093bb6a019449d2ad03621cf565616efd65c69d2f2f62a10d7c4b00b5eecce80c0e952efd91b41619dc0feee3c4bf569ec352eddb8e951463ca431ed17a294691ad8faa8e4d1fdbad7fbe431c"}], 0x170}, 0xd34}, {{&(0x7f0000004800)=@hci={0x1f, r4, 0x3}, 0x80, &(0x7f0000005ac0)=[{&(0x7f0000004880)="af75cac9f758b1c2b74a4c87cb6953719ce552ca77435e8d7978461cc6ca510e28658d9490eaa48bed12e163b5f1f2c345ab998883500af96a67299877e8d4f16f3edc841ece9fbcb0d2a958a47b598802aa42948eac8413d0414a122c342ef4dc84773d088ad3bf02dd546a263da603e85753a33b78fe3fc3a02f3212bb051088e513bba04a8bd090819671910017522c4597a9b3644a2f992d4de60114da6c7a893722bfa1e4b3a0edc2f239c5416e2aebeaa089dd953a0dc64f49f5c08711c6b0194c40acfe01dd26e04dba7cca8e3d28ac81a6076865a916e4a36063884ce97f8f133d10b502535184f88afc", 0xee}, {&(0x7f0000004980)="5e7f324aafed266878459b0a9442e5cb4f6ae3d2a407465b49e11fbb78703e4664f98865c7ff19387621bdaa1929f3f5046e4be55f2be26d8658170bb11a2a3073215f5cfa682a15945aa9176eb0fb5e0242beeedbb5e59689d4a213a53969376d0df9f05133", 0x66}, {&(0x7f0000004a00)="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", 0x1000}, {&(0x7f0000005a00)="99b69e834d8b1cf42e041e3d6bd199effdd9e163c9bbb6f1d9adbb4982391dc5276cdf063e978633b333bd71cb9c373c1244f2ede675f57ba75bd910319047f9e1e4a23e43784dd9948e3844fc1013aad9c42aabe415729ff466994522ee12279945dcb45134d713a75bd2c86d1b851328ad3ce590517fd1dbc45f1fffec172ab2df2188ddaf86260cdf7713e5a8d5d79c6cc80a9feebe2ddc5ba8e91b8aeef3033831d0edd6de2c1a0bbf08fc9f", 0xae}], 0x4, &(0x7f0000005b00)=[{0xa8, 0x1, 0xfffffffffffffff8, "b27d2db29ee4a2e4496cfda85861cbe1b549c2b5f6e5e3f1cb06d74e0b95e891ddd6e6c25bb2d8778763d7847b4fe979e9ac43dc797cb3215bfbb452294946cc358ffbe29563e013d96e89dbb324cf7170e519ac18238c75f50a31abaabb23bb3436ed75deb85224fdc09b0c21e9247abbd2f6e61e5f047df8ea5c17baad12c1d3d9f9923d3c177483fe843866b89cd7261a"}], 0xa8}, 0x3ff}, {{&(0x7f0000005bc0)=@ax25={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @bcast, @null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @null]}, 0x80, &(0x7f0000006d40)=[{&(0x7f0000005c40)="0d1d152380e2d28a723ef72be1cfb8a58748b9b0626a2d1b17fd5edcbd25c15b6cabfe74a08b74227787f21b8b81da35d4848235acd238e68fbfb984f8c0a0eaf2a1800be22b49d895f8d546ed7b2cb0f04db3a44e0908deab47a7ba68235151a93d5648bdbf16255b5a3ffa2f5b6da0711a8938839318e2e2adbab83be991168efa6fa43c09d99f02bff3766ba686a0c42fe6ef82d9f28123c61c6c8d71b9a2724b75b16de4bad26686897311c7c5f529bfd78ca191d8cc8138abbd797b5ded88fc9a274c6bcfb6c7da3ac3d60a2125f98e40e29c26cb837e0f27098a4557cd4f", 0xe1}, {&(0x7f0000005d40)="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", 0x1000}], 0x2, &(0x7f0000006d80)=[{0x28, 0x101, 0x5ec, "cc62c330c4de87bbb31dfec7961455fdee9e0c35faa6"}, {0x1010, 0x117, 0x0, "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"}, {0xc8, 0x6, 0x7f, "416120465253b6370c43bf0465e0a8cda5eb664162ae34293f96b9162cdd7d0046ca4ca5a4be2362f427a3acf7fbace6fed1070afebfe4a3b690813f0fe6964ddb05f2361e6a8f15c5ad890b8abb840f2fe4ee90bb550bd22c87878da4fae43f7088b5148e1eb801ab6db7352ff5d39286efa6f631e31f73bd549128441b3690e14b9c00f130b93c40ee22e29076ce867d111e7555f37779aef6e2413985cd48078de791dd1091f23e560d4a4f3eedba28d259484b"}, {0xc0, 0x118, 0x61e, "1567b6d59ba88d9dc718399d068253b43032d21892be4e979beff6c602f7a919b8f148c12e149cf610e82f9149e6e97df706c5494f3ffcb4128b93a9a5d7c4dd500ba7b196c8a48b29c7ee11f1979c28ebd95183002352cbad2a6829afba379360486d73b26dea529c3ac1e3acb3a2f5a4e3eb0534cde1a9512d4d16d90bfa2ddf9f93a351b4caf79531cf7dfa65c43f31576e1262ef6ab090802942bcf8b892fd5e03dfd9cc8570698526a0"}, {0x58, 0x116, 0x9, "44de0a554343d4e3f439018a554c04adfc8222c2019029bacc20c868d765a55094f79496a8907d12a5bcd9c83fad50753cdfcb5629f57e93621feb5c5f480de63844d657416949"}, {0xb0, 0x102, 0x4, "982dc25319dae91872268eaf3db482df515333b7a15351487a21e27e929c461bb474bac039b91591a7224b84c6773bf94a9f63fdae8a8559b5b36a3fddbad0640a0b68b5a5e9aa0442a23c818fa52f05268d18ec4f56890841ad35bbcd723ea2ae5fc23d59fb4c37231cf7515b824749a6f60e6592dc57095d473d818ba51b43491cacd3ee00ddbb98da56fb5a4e004843475c9282baafa6265f78aac1c9"}, {0x1010, 0x84, 0x10001, "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"}], 0x22d8}, 0x40}], 0x5, 0x4000001) tkill(r0, 0xd) ptrace$cont(0x1f, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ioctl$EVIOCGMASK(r3, 0x80104592, &(0x7f0000009280)={0x16, 0xad, &(0x7f00000091c0)="74d10d1bfe02513e11c8a67ed7f097176e28ac1432a3d283c89a494abdb8d613b21125f1ea4f174f9ca199a84a69cf3e4d1f2924b0656759f8a2fc55e3e3ffd073c1973c162032c30fc13b6eb8e0931916267e996b8294dc98bc1bcbd41e7996e948e7faf9fae69f05e2f1cd7597c79de453060b2af14ecaf04dd541b3acf417ea5a3a7b8892451e028e6f48123f0d5034d076190f1b9ef367c745daf75310282dae108dd67298bfeecbcb5b54"}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 332.199216][T10981] FAULT_INJECTION: forcing a failure. [ 332.199216][T10981] name failslab, interval 1, probability 0, space 0, times 0 14:17:37 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000400)={0x0, 0x10001}, &(0x7f0000000440)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000001c0)=@assoc_value={r2, 0xff}, 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) timer_create(0x0, 0x0, &(0x7f0000000200)=0x0) ioctl$TIOCSWINSZ(r1, 0x5414, &(0x7f0000000100)={0x6, 0x8d3, 0x3, 0x5}) timer_delete(r3) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000280)) openat$cgroup_procs(r1, &(0x7f0000000180)='tasks\x00', 0x2, 0x0) unshare(0x40000000) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000580)='/dev/snapshot\x00', 0x4, 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f00000000c0)={0x2}, 0x4) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, 0x0) clock_gettime(0x0, &(0x7f0000000080)) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$ASHMEM_SET_PROT_MASK(r4, 0x40087705, &(0x7f0000000040)={0x6, 0x9}) r5 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r6 = socket$key(0xf, 0x3, 0x2) ioctl$RNDZAPENTCNT(r1, 0x5204, &(0x7f0000000140)=0x7fff) sendmsg$key(r6, 0x0, 0x40081) fcntl$F_GET_FILE_RW_HINT(r5, 0x40d, 0x0) sendmsg$key(r6, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0203a2c4c7711c2d21dbf08856ec98093f5200030c0000000000002000000000020009004000f40a000000000000000003000600000000000200ee00a0000054d81458186fe8b90002000100000000000000020200044a7b030005000000000002000000e0003f010000000000fca0d90c3941921455f23074430e64eee335ecf84345ee0d186dd4a4c3a616849340e8beaabe7c55efdf3b082f6a1cdc06caa10d5321c331bffd43390edced"], 0x60}}, 0x0) ioctl$VT_DISALLOCATE(r4, 0x5608) prctl$PR_SET_KEEPCAPS(0x8, 0x400) [ 332.257267][T10981] CPU: 0 PID: 10981 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 332.266398][T10981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.276444][T10981] Call Trace: [ 332.279738][T10981] dump_stack+0x172/0x1f0 [ 332.284069][T10981] should_fail.cold+0xa/0x15 [ 332.288658][T10981] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 332.294461][T10981] ? lock_downgrade+0x880/0x880 [ 332.299312][T10981] ? ___might_sleep+0x163/0x280 [ 332.304165][T10981] __should_failslab+0x121/0x190 [ 332.304184][T10981] should_failslab+0x9/0x14 [ 332.304202][T10981] __kmalloc+0x2dc/0x740 [ 332.317831][T10981] ? lockdep_init_map+0x10c/0x5b0 [ 332.321877][T10985] binder: 10984:10985 unknown command 32 [ 332.322860][T10981] ? prealloc_shrinker+0xd6/0x330 [ 332.322876][T10981] prealloc_shrinker+0xd6/0x330 [ 332.322891][T10981] alloc_super+0x707/0x890 [ 332.322916][T10981] sget_userns+0xf1/0x560 [ 332.322930][T10981] ? get_anon_bdev+0xc0/0xc0 [ 332.322946][T10981] ? get_anon_bdev+0xc0/0xc0 [ 332.322956][T10981] sget+0x10c/0x150 [ 332.323082][T10981] ? ovl_show_options+0x550/0x550 [ 332.323096][T10981] mount_nodev+0x31/0x110 [ 332.323112][T10981] ovl_mount+0x2d/0x40 [ 332.323126][T10981] ? ovl_own_xattr_set+0x10/0x10 [ 332.323141][T10981] legacy_get_tree+0xf2/0x200 [ 332.323165][T10981] vfs_get_tree+0x123/0x450 [ 332.323183][T10981] do_mount+0x1436/0x2c40 [ 332.323199][T10981] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 332.323218][T10981] ? copy_mount_string+0x40/0x40 14:17:37 executing program 5 (fault-call:4 fault-nth:10): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 332.323240][T10981] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.323254][T10981] ? copy_mount_options+0x30e/0x440 [ 332.323273][T10981] ksys_mount+0xdb/0x150 [ 332.323289][T10981] __x64_sys_mount+0xbe/0x150 [ 332.323308][T10981] do_syscall_64+0x103/0x610 [ 332.323327][T10981] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.323337][T10981] RIP: 0033:0x457e39 [ 332.323351][T10981] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 332.323358][T10981] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 332.323371][T10981] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 332.323379][T10981] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 332.323387][T10981] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 332.323396][T10981] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 332.323403][T10981] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 332.400533][T10985] binder: 10984:10985 ioctl c0306201 20000140 returned -22 [ 332.435211][T10985] binder: 10984:10985 unknown command 536871488 [ 332.488866][T10988] FAULT_INJECTION: forcing a failure. [ 332.488866][T10988] name failslab, interval 1, probability 0, space 0, times 0 [ 332.536873][T10985] binder: 10984:10985 ioctl c0306201 20000440 returned -22 [ 332.544376][T10988] CPU: 1 PID: 10988 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 332.552782][T10991] IPVS: ftp: loaded support on port[0] = 21 [ 332.553388][T10988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.553393][T10988] Call Trace: [ 332.553410][T10988] dump_stack+0x172/0x1f0 [ 332.553432][T10988] should_fail.cold+0xa/0x15 [ 332.581505][T10988] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 332.581521][T10988] ? lock_downgrade+0x880/0x880 [ 332.581540][T10988] ? ___might_sleep+0x163/0x280 [ 332.581557][T10988] __should_failslab+0x121/0x190 [ 332.581571][T10988] should_failslab+0x9/0x14 [ 332.581583][T10988] __kmalloc+0x2dc/0x740 [ 332.597158][T10988] ? __list_lru_init+0xd5/0x6e0 [ 332.597176][T10988] __list_lru_init+0xd5/0x6e0 [ 332.606570][T10988] alloc_super+0x759/0x890 [ 332.606590][T10988] sget_userns+0xf1/0x560 [ 332.606603][T10988] ? get_anon_bdev+0xc0/0xc0 [ 332.606622][T10988] ? get_anon_bdev+0xc0/0xc0 [ 332.615656][T10988] sget+0x10c/0x150 [ 332.615676][T10988] ? ovl_show_options+0x550/0x550 [ 332.615690][T10988] mount_nodev+0x31/0x110 [ 332.615708][T10988] ovl_mount+0x2d/0x40 [ 332.615726][T10988] ? ovl_own_xattr_set+0x10/0x10 [ 332.624762][T10988] legacy_get_tree+0xf2/0x200 [ 332.624783][T10988] vfs_get_tree+0x123/0x450 [ 332.624801][T10988] do_mount+0x1436/0x2c40 [ 332.624821][T10988] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 332.633696][T10988] ? copy_mount_string+0x40/0x40 [ 332.633714][T10988] ? _copy_from_user+0xdd/0x150 [ 332.633739][T10988] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.647093][T10988] ? copy_mount_options+0x30e/0x440 [ 332.647116][T10988] ksys_mount+0xdb/0x150 14:17:38 executing program 3 (fault-call:1 fault-nth:61): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 332.647135][T10988] __x64_sys_mount+0xbe/0x150 [ 332.647155][T10988] do_syscall_64+0x103/0x610 [ 332.647177][T10988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.647191][T10988] RIP: 0033:0x457e39 [ 332.655546][T10988] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 332.655555][T10988] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 14:17:38 executing program 5 (fault-call:4 fault-nth:11): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:38 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x1ff, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 332.655569][T10988] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 332.655579][T10988] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 332.655587][T10988] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 332.655596][T10988] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 332.655605][T10988] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 332.661656][T10994] binder: 10984:10994 Release 1 refcount change on invalid ref 1 ret -22 [ 332.687009][T10985] binder: 10984:10985 BC_ACQUIRE_DONE u0000000000000000 no match [ 332.706850][T10992] binder: 10984:10992 unknown command -506003721 [ 332.706882][T10992] binder: 10984:10992 ioctl c0306201 200002c0 returned -22 [ 332.834328][T11003] FAULT_INJECTION: forcing a failure. [ 332.834328][T11003] name failslab, interval 1, probability 0, space 0, times 0 14:17:38 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x20000000802, 0x0) setsockopt$inet_tcp_buf(r2, 0x6, 0x1f, &(0x7f00000001c0)="e2022bc7c00274164c6500fd38783d532b3b34bdebe54822ca5f3b1ee5a21af85eb86ee288286fcc90e722a0b8694aa85031ba10a7e193638f4f84376c28fd22c38b4611ed3b0d39", 0x48) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=0x0) dup3(r0, r0, 0x80000) syz_read_part_table(0x1ff, 0x3, &(0x7f00000003c0)=[{&(0x7f0000000240)="e27b83050fa96772044490164f195a258ce72c962603961201ed8cecdf336d15af16e9526cfb40a009a327b6a6649612db8ac3faacade470ee12ae66934de1ec94e8a3c9c895012bdaa33114df3e09adad04af38", 0x54, 0xac8}, {&(0x7f00000002c0)="60faf0b9d09b4c1e9075a931c94fa8620831617081ed0139269afcc339b6fac2151c327590606f1a91f60a9166d0b00a6931088a6963687e5e66f6496cecbe6ea20cc1fc0219d6826830d61e9865cd8ed1cc80ddf2bc85b00849702b64dad785bb260c8bef5401cd70191136fa6db8a755a65fa97c7b7ca182", 0x79, 0x4}, {&(0x7f0000000340)="2e7f3f195a533413a1c3f127cecfc721d3d997454cc27156dd9e97da5d2d3dde15f613fed278890fb65f3763d5baa9f1197a65479b953fb7bad300d712caff0e20ac6179", 0x44, 0x1ff}]) capget(&(0x7f0000000040)={0x20071026, r3}, &(0x7f0000000080)={0x888, 0x7, 0x7, 0x3, 0x8, 0x1}) write(r2, 0x0, 0x0) write(r0, &(0x7f0000000100)="240000001a0025f00018000480ed0500800000e0d45cffffffffff0008000f0008000000", 0x34f) [ 332.882541][T11005] FAULT_INJECTION: forcing a failure. [ 332.882541][T11005] name failslab, interval 1, probability 0, space 0, times 0 [ 332.906541][T11003] CPU: 1 PID: 11003 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 332.915582][T11003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.915587][T11003] Call Trace: [ 332.915613][T11003] dump_stack+0x172/0x1f0 [ 332.915635][T11003] should_fail.cold+0xa/0x15 [ 332.915655][T11003] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 332.915673][T11003] ? lock_downgrade+0x880/0x880 [ 332.928975][T11003] ? ___might_sleep+0x163/0x280 [ 332.928992][T11003] __should_failslab+0x121/0x190 [ 332.929010][T11003] should_failslab+0x9/0x14 [ 332.943672][T11003] kmem_cache_alloc_trace+0x2d1/0x760 [ 332.943690][T11003] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 332.943713][T11003] __memcg_init_list_lru_node+0x8a/0x1e0 [ 332.943731][T11003] __list_lru_init+0x3d3/0x6e0 [ 332.943750][T11003] alloc_super+0x759/0x890 [ 332.943771][T11003] ? test_single_super+0x10/0x10 [ 332.953443][T11003] sget_userns+0xf1/0x560 [ 332.953459][T11003] ? kill_litter_super+0x60/0x60 [ 332.953478][T11003] ? test_single_super+0x10/0x10 [ 332.953499][T11003] ? kill_litter_super+0x60/0x60 [ 332.962993][T11003] sget+0x10c/0x150 [ 332.963010][T11003] mount_bdev+0xff/0x3c0 [ 332.963024][T11003] ? bfs_iget+0xb60/0xb60 [ 332.963049][T11003] bfs_mount+0x35/0x40 [ 332.974179][T11003] ? bfs_statfs+0x3d0/0x3d0 [ 332.974196][T11003] legacy_get_tree+0xf2/0x200 [ 332.974216][T11003] vfs_get_tree+0x123/0x450 [ 332.974234][T11003] do_mount+0x1436/0x2c40 [ 332.974250][T11003] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 332.974272][T11003] ? copy_mount_string+0x40/0x40 [ 332.984626][T11003] ? _copy_from_user+0xdd/0x150 [ 332.984646][T11003] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.984659][T11003] ? copy_mount_options+0x30e/0x440 [ 332.984679][T11003] ksys_mount+0xdb/0x150 [ 333.008217][T11003] __x64_sys_mount+0xbe/0x150 [ 333.008236][T11003] do_syscall_64+0x103/0x610 [ 333.008257][T11003] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 333.016977][T11003] RIP: 0033:0x45a8aa [ 333.016992][T11003] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 333.017000][T11003] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 333.017013][T11003] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 333.017027][T11003] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 333.025544][T11003] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 333.025553][T11003] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 333.025562][T11003] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 333.061429][T11005] CPU: 1 PID: 11005 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 333.070617][T11005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 333.089233][T11005] Call Trace: [ 333.098985][T11005] dump_stack+0x172/0x1f0 [ 333.099018][T11005] should_fail.cold+0xa/0x15 [ 333.099036][T11005] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 333.099051][T11005] ? lock_downgrade+0x880/0x880 [ 333.099066][T11005] ? ___might_sleep+0x163/0x280 [ 333.099084][T11005] __should_failslab+0x121/0x190 [ 333.150985][T11005] should_failslab+0x9/0x14 [ 333.151002][T11005] kmem_cache_alloc_trace+0x2d1/0x760 [ 333.166896][T11005] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 14:17:38 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000080)={&(0x7f0000000000)=""/104, 0x68}) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x6969, 0x20) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 333.166917][T11005] __memcg_init_list_lru_node+0x8a/0x1e0 [ 333.185946][T11005] __list_lru_init+0x3d3/0x6e0 [ 333.185963][T11005] alloc_super+0x759/0x890 [ 333.185980][T11005] sget_userns+0xf1/0x560 [ 333.186001][T11005] ? get_anon_bdev+0xc0/0xc0 [ 333.193562][T11005] ? get_anon_bdev+0xc0/0xc0 [ 333.193579][T11005] sget+0x10c/0x150 [ 333.193604][T11005] ? ovl_show_options+0x550/0x550 [ 333.203932][T11005] mount_nodev+0x31/0x110 [ 333.203959][T11005] ovl_mount+0x2d/0x40 [ 333.203973][T11005] ? ovl_own_xattr_set+0x10/0x10 [ 333.203986][T11005] legacy_get_tree+0xf2/0x200 [ 333.204008][T11005] vfs_get_tree+0x123/0x450 [ 333.223056][T11005] do_mount+0x1436/0x2c40 [ 333.223073][T11005] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 333.223092][T11005] ? copy_mount_string+0x40/0x40 [ 333.223114][T11005] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 333.223127][T11005] ? copy_mount_options+0x30e/0x440 [ 333.223146][T11005] ksys_mount+0xdb/0x150 [ 333.223163][T11005] __x64_sys_mount+0xbe/0x150 [ 333.223182][T11005] do_syscall_64+0x103/0x610 [ 333.234308][T11005] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 333.234318][T11005] RIP: 0033:0x457e39 [ 333.234328][T11005] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 333.234338][T11005] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 333.244692][T11005] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 333.244700][T11005] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 333.244707][T11005] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 333.244714][T11005] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 333.244722][T11005] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 333.259153][T10995] binder: 10995:10995 unknown command 1761607712 [ 333.291283][T10992] binder: BINDER_SET_CONTEXT_MGR already set [ 333.296616][T10992] binder: 10995:10992 ioctl 40046207 0 returned -16 [ 333.307165][T10995] binder: 10995:10995 ioctl c0306201 20000140 returned -22 [ 333.330117][T11024] capability: warning: `syz-executor4' uses deprecated v2 capabilities in a way that may be insecure [ 333.357977][T10997] IPVS: ftp: loaded support on port[0] = 21 [ 333.472583][T10994] binder: 10995:10994 unknown command -506003721 14:17:38 executing program 5 (fault-call:4 fault-nth:12): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 333.484161][T10992] binder: 10995:10992 unknown command 536871488 [ 333.490549][T10992] binder: 10995:10992 ioctl c0306201 20000440 returned -22 [ 333.498190][T10994] binder: 10995:10994 ioctl c0306201 200002c0 returned -22 [ 333.498675][T10995] binder: 10995:10995 Release 1 refcount change on invalid ref 1 ret -22 [ 333.500617][T10995] binder: 10995:10995 BC_ACQUIRE_DONE u0000000000000000 no match 14:17:38 executing program 1: r0 = syz_open_dev$dspn(&(0x7f00000001c0)='/dev/dsp#\x00', 0x4963, 0x20400) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={0xffffffffffffffff}, 0x13f, 0x100d}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000180)={0x10, 0x30, 0xfa00, {&(0x7f0000000000), 0x1, {0xa, 0x4e24, 0x6, @remote, 0x7}, r1}}, 0x38) rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000040)) syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x0, 0x0) unshare(0x8020000) semget$private(0x0, 0x4, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unshare(0x8020400) 14:17:39 executing program 3 (fault-call:1 fault-nth:62): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 333.724985][T11034] FAULT_INJECTION: forcing a failure. [ 333.724985][T11034] name failslab, interval 1, probability 0, space 0, times 0 [ 333.738466][T11034] CPU: 0 PID: 11034 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 333.747529][T11034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 333.757582][T11034] Call Trace: [ 333.760974][T11034] dump_stack+0x172/0x1f0 [ 333.765290][T11034] should_fail.cold+0xa/0x15 [ 333.769863][T11034] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 333.775649][T11034] ? lock_downgrade+0x880/0x880 [ 333.780477][T11034] ? ___might_sleep+0x163/0x280 [ 333.785307][T11034] __should_failslab+0x121/0x190 [ 333.790223][T11034] should_failslab+0x9/0x14 [ 333.794703][T11034] __kmalloc+0x2dc/0x740 [ 333.798927][T11034] ? __list_lru_init+0xd5/0x6e0 [ 333.803757][T11034] __list_lru_init+0xd5/0x6e0 [ 333.808429][T11034] alloc_super+0x759/0x890 [ 333.812836][T11034] sget_userns+0xf1/0x560 [ 333.817146][T11034] ? get_anon_bdev+0xc0/0xc0 [ 333.821718][T11034] ? get_anon_bdev+0xc0/0xc0 [ 333.826284][T11034] sget+0x10c/0x150 [ 333.830073][T11034] ? ovl_show_options+0x550/0x550 [ 333.835089][T11034] mount_nodev+0x31/0x110 [ 333.839399][T11034] ovl_mount+0x2d/0x40 [ 333.843450][T11034] ? ovl_own_xattr_set+0x10/0x10 [ 333.848392][T11034] legacy_get_tree+0xf2/0x200 [ 333.853073][T11034] vfs_get_tree+0x123/0x450 [ 333.857571][T11034] do_mount+0x1436/0x2c40 [ 333.861888][T11034] ? copy_mount_string+0x40/0x40 [ 333.866834][T11034] ? __sanitizer_cov_trace_const_cmp4+0xd/0x20 [ 333.872967][T11034] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 333.879273][T11034] ? copy_mount_options+0x30e/0x440 [ 333.884456][T11034] ksys_mount+0xdb/0x150 [ 333.888682][T11034] __x64_sys_mount+0xbe/0x150 [ 333.893346][T11034] do_syscall_64+0x103/0x610 [ 333.897931][T11034] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 333.903799][T11034] RIP: 0033:0x457e39 14:17:39 executing program 0: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) creat(&(0x7f0000000340)='./file1/file0\x00', 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=./file1,workdir=./file1']) chdir(&(0x7f0000000280)='./file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 333.907673][T11034] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 333.927351][T11034] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 333.935739][T11034] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 333.943714][T11034] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 333.951660][T11034] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 333.959617][T11034] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 333.967566][T11034] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 14:17:39 executing program 5 (fault-call:4 fault-nth:13): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 334.013735][T11023] Dev loop4: unable to read RDB block 10 [ 334.039363][T11044] FAULT_INJECTION: forcing a failure. [ 334.039363][T11044] name failslab, interval 1, probability 0, space 0, times 0 [ 334.039961][T11023] loop4: unable to read partition table [ 334.052644][T11044] CPU: 1 PID: 11044 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 334.067145][T11044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.067150][T11044] Call Trace: [ 334.067169][T11044] dump_stack+0x172/0x1f0 [ 334.067191][T11044] should_fail.cold+0xa/0x15 [ 334.089383][T11044] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 334.095188][T11044] ? lock_downgrade+0x880/0x880 [ 334.100034][T11044] ? ___might_sleep+0x163/0x280 [ 334.100054][T11044] __should_failslab+0x121/0x190 [ 334.100068][T11044] should_failslab+0x9/0x14 [ 334.100086][T11044] kmem_cache_alloc_trace+0x2d1/0x760 [ 334.119656][T11044] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 334.125444][T11044] __memcg_init_list_lru_node+0x8a/0x1e0 [ 334.131248][T11044] __list_lru_init+0x3d3/0x6e0 [ 334.135991][T11044] alloc_super+0x759/0x890 [ 334.140401][T11044] ? test_single_super+0x10/0x10 [ 334.145312][T11044] sget_userns+0xf1/0x560 [ 334.149618][T11044] ? kill_litter_super+0x60/0x60 [ 334.154543][T11044] ? test_single_super+0x10/0x10 [ 334.159455][T11044] ? kill_litter_super+0x60/0x60 [ 334.164380][T11044] sget+0x10c/0x150 [ 334.168190][T11044] mount_bdev+0xff/0x3c0 [ 334.172407][T11044] ? bfs_iget+0xb60/0xb60 [ 334.176736][T11044] bfs_mount+0x35/0x40 [ 334.180787][T11044] ? bfs_statfs+0x3d0/0x3d0 [ 334.185267][T11044] legacy_get_tree+0xf2/0x200 [ 334.189920][T11044] vfs_get_tree+0x123/0x450 [ 334.194401][T11044] do_mount+0x1436/0x2c40 [ 334.198867][T11044] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 334.204999][T11044] ? copy_mount_string+0x40/0x40 [ 334.209914][T11044] ? _copy_from_user+0xdd/0x150 [ 334.214745][T11044] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 334.220959][T11044] ? copy_mount_options+0x30e/0x440 [ 334.226138][T11044] ksys_mount+0xdb/0x150 [ 334.230356][T11044] __x64_sys_mount+0xbe/0x150 [ 334.235037][T11044] do_syscall_64+0x103/0x610 [ 334.239604][T11044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 334.245470][T11044] RIP: 0033:0x45a8aa [ 334.249342][T11044] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 334.268931][T11044] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 334.277318][T11044] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 334.285272][T11044] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 334.293223][T11044] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 334.301175][T11044] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 14:17:39 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x6100, 0x0) bind$vsock_dgram(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @my=0x0}, 0x10) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 334.309141][T11044] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 334.319881][T11023] loop4: partition table beyond EOD, truncated [ 334.347797][T11023] loop_reread_partitions: partition scan of loop4 () failed (rc=-5) [ 334.448384][T11023] __loop_clr_fd: partition scan of loop4 failed (rc=-22) 14:17:39 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) r1 = syz_open_dev$mice(&(0x7f00000001c0)='/dev/input/mice\x00', 0x0, 0x2) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={r2}) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={0x0, 0xfffffffffffffffe, 0x0, 0x10000, 0x80000000}, &(0x7f0000000080)=0x18) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000200)={r3, 0x3}, &(0x7f0000000240)=0xce) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 334.527854][ T26] audit: type=1804 audit(1549203459.830:59): pid=11061 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/132/file0/file0" dev="overlay" ino=37652 res=1 [ 334.538753][T11066] FAULT_INJECTION: forcing a failure. [ 334.538753][T11066] name failslab, interval 1, probability 0, space 0, times 0 14:17:39 executing program 4: r0 = socket$rxrpc(0x21, 0x2, 0x2) setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, &(0x7f0000000100)='syz', 0x3) [ 334.570904][T11066] CPU: 0 PID: 11066 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 334.576114][T11061] overlayfs: './file0' not a directory [ 334.579952][T11066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.579957][T11066] Call Trace: [ 334.579974][T11066] dump_stack+0x172/0x1f0 [ 334.579995][T11066] should_fail.cold+0xa/0x15 [ 334.605177][ T26] audit: type=1804 audit(1549203459.900:60): pid=11067 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/132/file0/file0" dev="overlay" ino=37652 res=1 [ 334.607620][T11066] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 334.607638][T11066] ? lock_downgrade+0x880/0x880 [ 334.643476][T11066] ? ___might_sleep+0x163/0x280 [ 334.647522][ T26] audit: type=1804 audit(1549203459.900:61): pid=11069 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor0" name="/root/syzkaller-testdir277013500/syzkaller.VlT27p/132/file0/file0" dev="overlay" ino=37652 res=1 [ 334.648323][T11066] __should_failslab+0x121/0x190 [ 334.648341][T11066] should_failslab+0x9/0x14 [ 334.682439][T11066] kmem_cache_alloc_trace+0x2d1/0x760 [ 334.687804][T11066] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 334.693601][T11066] __memcg_init_list_lru_node+0x8a/0x1e0 [ 334.699217][T11066] __list_lru_init+0x3d3/0x6e0 [ 334.703964][T11066] alloc_super+0x759/0x890 [ 334.708363][T11066] sget_userns+0xf1/0x560 [ 334.712666][T11066] ? get_anon_bdev+0xc0/0xc0 [ 334.717252][T11066] ? get_anon_bdev+0xc0/0xc0 [ 334.721815][T11066] sget+0x10c/0x150 [ 334.725612][T11066] ? ovl_show_options+0x550/0x550 [ 334.730617][T11066] mount_nodev+0x31/0x110 [ 334.734946][T11066] ovl_mount+0x2d/0x40 [ 334.738997][T11066] ? ovl_own_xattr_set+0x10/0x10 [ 334.743925][T11066] legacy_get_tree+0xf2/0x200 [ 334.748591][T11066] vfs_get_tree+0x123/0x450 [ 334.753078][T11066] do_mount+0x1436/0x2c40 [ 334.757390][T11066] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 334.763543][T11066] ? copy_mount_string+0x40/0x40 [ 334.768463][T11066] ? _copy_from_user+0xdd/0x150 [ 334.773297][T11066] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 334.779515][T11066] ? copy_mount_options+0x30e/0x440 [ 334.784704][T11066] ksys_mount+0xdb/0x150 [ 334.788941][T11066] __x64_sys_mount+0xbe/0x150 [ 334.793602][T11066] do_syscall_64+0x103/0x610 [ 334.798278][T11066] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 334.804150][T11066] RIP: 0033:0x457e39 [ 334.808025][T11066] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 14:17:40 executing program 0: creat(0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r1 = creat(&(0x7f0000000140)='./bus\x00', 0x0) sendfile(r1, r0, &(0x7f0000000040), 0x100000001) 14:17:40 executing program 3 (fault-call:1 fault-nth:63): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) [ 334.827607][T11066] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 334.835998][T11066] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 334.843946][T11066] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 334.851894][T11066] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 334.859845][T11066] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 334.867819][T11066] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 14:17:40 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(0x0, 0x0) r0 = memfd_create(&(0x7f0000000180)='F', 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 14:17:40 executing program 5 (fault-call:4 fault-nth:14): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:40 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x800000000000012, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, 0x0) [ 334.981248][T11080] FAULT_INJECTION: forcing a failure. [ 334.981248][T11080] name failslab, interval 1, probability 0, space 0, times 0 [ 335.006358][T11080] CPU: 0 PID: 11080 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 335.015386][T11080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.025430][T11080] Call Trace: [ 335.028714][T11080] dump_stack+0x172/0x1f0 [ 335.033043][T11080] should_fail.cold+0xa/0x15 [ 335.033061][T11080] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 335.033077][T11080] ? ___might_sleep+0x25/0x280 [ 335.033094][T11080] ? ___might_sleep+0x163/0x280 [ 335.053054][T11080] __should_failslab+0x121/0x190 [ 335.057995][T11080] should_failslab+0x9/0x14 [ 335.062485][T11080] kmem_cache_alloc_trace+0x2d1/0x760 [ 335.067837][T11080] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 335.073627][T11080] __memcg_init_list_lru_node+0x8a/0x1e0 [ 335.079270][T11080] __list_lru_init+0x3d3/0x6e0 [ 335.084012][T11080] alloc_super+0x759/0x890 [ 335.088414][T11080] ? test_single_super+0x10/0x10 [ 335.093764][T11080] sget_userns+0xf1/0x560 [ 335.098068][T11080] ? kill_litter_super+0x60/0x60 [ 335.102983][T11080] ? test_single_super+0x10/0x10 [ 335.107915][T11080] ? kill_litter_super+0x60/0x60 [ 335.112829][T11080] sget+0x10c/0x150 [ 335.116619][T11080] mount_bdev+0xff/0x3c0 [ 335.120845][T11080] ? bfs_iget+0xb60/0xb60 [ 335.125151][T11080] bfs_mount+0x35/0x40 [ 335.129366][T11080] ? bfs_statfs+0x3d0/0x3d0 [ 335.133855][T11080] legacy_get_tree+0xf2/0x200 [ 335.138508][T11080] vfs_get_tree+0x123/0x450 [ 335.143106][T11080] do_mount+0x1436/0x2c40 [ 335.147413][T11080] ? retint_kernel+0x2d/0x2d [ 335.151981][T11080] ? copy_mount_string+0x40/0x40 [ 335.156902][T11080] ? copy_mount_options+0x255/0x440 [ 335.162084][T11080] ? write_comp_data+0x68/0x70 [ 335.166827][T11080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 335.173050][T11080] ? copy_mount_options+0x30e/0x440 [ 335.178231][T11080] ksys_mount+0xdb/0x150 [ 335.182454][T11080] __x64_sys_mount+0xbe/0x150 [ 335.187115][T11080] do_syscall_64+0x103/0x610 [ 335.191688][T11080] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.197558][T11080] RIP: 0033:0x45a8aa [ 335.201434][T11080] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 335.221014][T11080] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 335.229405][T11080] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 335.237357][T11080] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 335.245308][T11080] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 335.253256][T11080] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 335.261202][T11080] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 14:17:40 executing program 2: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x101002) getsockopt$sock_buf(r0, 0x1, 0x3f, &(0x7f0000000040)=""/120, &(0x7f0000000140)=0x78) clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(r1, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0xd) ptrace$cont(0x18, r1, 0x0, 0x2) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r1, 0x0, 0x0) [ 335.309586][T11094] FAULT_INJECTION: forcing a failure. [ 335.309586][T11094] name failslab, interval 1, probability 0, space 0, times 0 [ 335.352415][T11094] CPU: 1 PID: 11094 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 335.361445][T11094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.361451][T11094] Call Trace: [ 335.361470][T11094] dump_stack+0x172/0x1f0 [ 335.361492][T11094] should_fail.cold+0xa/0x15 [ 335.361513][T11094] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 335.375014][T11094] ? lock_downgrade+0x880/0x880 [ 335.375031][T11094] ? ___might_sleep+0x163/0x280 [ 335.375049][T11094] __should_failslab+0x121/0x190 [ 335.375065][T11094] should_failslab+0x9/0x14 [ 335.375080][T11094] kmem_cache_alloc_trace+0x2d1/0x760 [ 335.375094][T11094] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 335.375114][T11094] __memcg_init_list_lru_node+0x8a/0x1e0 [ 335.383978][T11094] __list_lru_init+0x3d3/0x6e0 [ 335.383994][T11094] alloc_super+0x759/0x890 [ 335.384028][T11094] sget_userns+0xf1/0x560 [ 335.384043][T11094] ? get_anon_bdev+0xc0/0xc0 [ 335.384060][T11094] ? get_anon_bdev+0xc0/0xc0 [ 335.384072][T11094] sget+0x10c/0x150 [ 335.384089][T11094] ? ovl_show_options+0x550/0x550 [ 335.384103][T11094] mount_nodev+0x31/0x110 [ 335.394709][T11094] ovl_mount+0x2d/0x40 [ 335.394726][T11094] ? ovl_own_xattr_set+0x10/0x10 [ 335.394741][T11094] legacy_get_tree+0xf2/0x200 [ 335.394761][T11094] vfs_get_tree+0x123/0x450 [ 335.394780][T11094] do_mount+0x1436/0x2c40 [ 335.394795][T11094] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 335.394815][T11094] ? copy_mount_string+0x40/0x40 [ 335.404560][T11094] ? _copy_from_user+0xdd/0x150 [ 335.404579][T11094] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 335.404594][T11094] ? copy_mount_options+0x30e/0x440 [ 335.404638][T11094] ksys_mount+0xdb/0x150 [ 335.404657][T11094] __x64_sys_mount+0xbe/0x150 [ 335.414482][T11094] do_syscall_64+0x103/0x610 [ 335.414504][T11094] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.414516][T11094] RIP: 0033:0x457e39 [ 335.414530][T11094] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 335.414538][T11094] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 335.414551][T11094] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 335.414560][T11094] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 335.414573][T11094] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 335.425948][T11094] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 14:17:40 executing program 3 (fault-call:1 fault-nth:64): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:40 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x3, 0x2) ioctl$TCGETS(r1, 0x5401, &(0x7f0000000040)) 14:17:40 executing program 5 (fault-call:4 fault-nth:15): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 335.425957][T11094] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 14:17:40 executing program 1: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) creat(&(0x7f0000000340)='./file1/file0\x00', 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=./file1,workdir=./file1']) setxattr$system_posix_acl(&(0x7f0000000080)='./file1/file0\x00', &(0x7f0000000380)='system.posix_acl_access\x00', &(0x7f0000000cc0)={{}, {}, [{}], {}, [{}]}, 0x34, 0x0) chdir(&(0x7f0000000280)='./file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 335.694976][T11108] FAULT_INJECTION: forcing a failure. [ 335.694976][T11108] name failslab, interval 1, probability 0, space 0, times 0 14:17:41 executing program 4: getpid() perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x400000009) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000c80), 0xdf1fd48b9a0b66, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 14:17:41 executing program 0: [ 335.736604][T11113] FAULT_INJECTION: forcing a failure. [ 335.736604][T11113] name failslab, interval 1, probability 0, space 0, times 0 [ 335.763475][T11108] CPU: 1 PID: 11108 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 335.772517][T11108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.782669][T11108] Call Trace: [ 335.785964][T11108] dump_stack+0x172/0x1f0 [ 335.790296][T11108] should_fail.cold+0xa/0x15 [ 335.794886][T11108] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 335.800685][T11108] ? lock_downgrade+0x880/0x880 [ 335.805528][T11108] ? ___might_sleep+0x163/0x280 [ 335.810374][T11108] __should_failslab+0x121/0x190 [ 335.815309][T11108] should_failslab+0x9/0x14 [ 335.819810][T11108] kmem_cache_alloc_trace+0x2d1/0x760 [ 335.825176][T11108] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 335.830981][T11108] __memcg_init_list_lru_node+0x8a/0x1e0 [ 335.836624][T11108] __list_lru_init+0x3d3/0x6e0 [ 335.841375][T11108] alloc_super+0x759/0x890 [ 335.845784][T11108] ? test_single_super+0x10/0x10 [ 335.850715][T11108] sget_userns+0xf1/0x560 [ 335.855034][T11108] ? kill_litter_super+0x60/0x60 [ 335.860049][T11108] ? test_single_super+0x10/0x10 [ 335.864972][T11108] ? kill_litter_super+0x60/0x60 [ 335.869909][T11108] sget+0x10c/0x150 [ 335.873711][T11108] mount_bdev+0xff/0x3c0 [ 335.877945][T11108] ? bfs_iget+0xb60/0xb60 [ 335.882264][T11108] bfs_mount+0x35/0x40 [ 335.886325][T11108] ? bfs_statfs+0x3d0/0x3d0 [ 335.890909][T11108] legacy_get_tree+0xf2/0x200 [ 335.895583][T11108] vfs_get_tree+0x123/0x450 [ 335.900079][T11108] do_mount+0x1436/0x2c40 [ 335.904403][T11108] ? copy_mount_string+0x40/0x40 [ 335.909333][T11108] ? copy_mount_options+0x234/0x440 [ 335.914515][T11108] ? __sanitizer_cov_trace_pc+0x26/0x50 [ 335.920053][T11108] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 335.926281][T11108] ? copy_mount_options+0x30e/0x440 [ 335.931482][T11108] ksys_mount+0xdb/0x150 [ 335.935718][T11108] __x64_sys_mount+0xbe/0x150 [ 335.940383][T11108] do_syscall_64+0x103/0x610 [ 335.944965][T11108] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.950841][T11108] RIP: 0033:0x45a8aa [ 335.954736][T11108] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 335.974429][T11108] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 335.982820][T11108] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 335.990775][T11108] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 335.998732][T11108] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 336.006690][T11108] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 336.014648][T11108] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 336.022625][T11113] CPU: 0 PID: 11113 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 336.031661][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.041696][T11113] Call Trace: [ 336.041711][T11113] dump_stack+0x172/0x1f0 [ 336.041729][T11113] should_fail.cold+0xa/0x15 [ 336.041744][T11113] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 336.045670][ T26] audit: type=1804 audit(1549203461.070:62): pid=11123 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor1" name="/root/syzkaller-testdir602003605/syzkaller.aBTuEt/124/file0/file0" dev="overlay" ino=38284 res=1 [ 336.049310][T11113] ? lock_downgrade+0x880/0x880 [ 336.089248][T11113] ? ___might_sleep+0x163/0x280 [ 336.094074][T11113] __should_failslab+0x121/0x190 [ 336.099081][T11113] should_failslab+0x9/0x14 [ 336.103576][T11113] kmem_cache_alloc_trace+0x2d1/0x760 [ 336.108922][T11113] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 336.114706][T11113] __memcg_init_list_lru_node+0x8a/0x1e0 [ 336.120340][T11113] __list_lru_init+0x3d3/0x6e0 [ 336.125079][T11113] alloc_super+0x759/0x890 [ 336.129473][T11113] sget_userns+0xf1/0x560 [ 336.133778][T11113] ? get_anon_bdev+0xc0/0xc0 [ 336.138351][T11113] ? get_anon_bdev+0xc0/0xc0 [ 336.142916][T11113] sget+0x10c/0x150 [ 336.146702][T11113] ? ovl_show_options+0x550/0x550 [ 336.151705][T11113] mount_nodev+0x31/0x110 [ 336.156012][T11113] ovl_mount+0x2d/0x40 [ 336.160060][T11113] ? ovl_own_xattr_set+0x10/0x10 [ 336.164973][T11113] legacy_get_tree+0xf2/0x200 [ 336.169649][T11113] vfs_get_tree+0x123/0x450 [ 336.174133][T11113] do_mount+0x1436/0x2c40 [ 336.178443][T11113] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 336.184574][T11113] ? copy_mount_string+0x40/0x40 [ 336.189485][T11113] ? _copy_from_user+0xdd/0x150 [ 336.194314][T11113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 336.200536][T11113] ? copy_mount_options+0x30e/0x440 [ 336.205725][T11113] ksys_mount+0xdb/0x150 [ 336.209950][T11113] __x64_sys_mount+0xbe/0x150 [ 336.214604][T11113] do_syscall_64+0x103/0x610 [ 336.219171][T11113] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 336.225036][T11113] RIP: 0033:0x457e39 [ 336.228908][T11113] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 336.248491][T11113] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 336.256873][T11113] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 336.264831][T11113] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 336.272792][T11113] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 336.280741][T11113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 336.288706][T11113] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 [ 336.300650][T11121] overlayfs: './file0' not a directory 14:17:41 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) getpeername$unix(r0, &(0x7f0000000140), &(0x7f0000000080)=0x6e) r1 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0xd) ptrace$cont(0x18, r1, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r1, 0x0, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x36, 0x0, @tid=r1}, &(0x7f0000000040)) 14:17:41 executing program 5 (fault-call:4 fault-nth:16): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) [ 336.318793][ T26] audit: type=1804 audit(1549203461.620:63): pid=11127 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor1" name="/root/syzkaller-testdir602003605/syzkaller.aBTuEt/124/file0/file0" dev="overlay" ino=38284 res=1 14:17:41 executing program 1: 14:17:41 executing program 3 (fault-call:1 fault-nth:65): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:41 executing program 0: 14:17:41 executing program 1: 14:17:41 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x8d) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x5, 0x402000) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000140)={{0x6, 0x7, 0x4, 0x6, 'syz0\x00', 0x7fffffff}, 0x3, 0x400, 0xfffffffffffffffe, r0, 0x2, 0x2, 'syz0\x00', &(0x7f0000000040)=['\x00', '{}GPL@posix_acl_accessGPL\x00'], 0x1b, [], [0x8001, 0x100000001, 0x10000, 0x8001]}) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:41 executing program 1: 14:17:41 executing program 0: [ 336.637957][T11150] FAULT_INJECTION: forcing a failure. [ 336.637957][T11150] name failslab, interval 1, probability 0, space 0, times 0 14:17:42 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x2, 0x0, 0x0, 0xf6}) r1 = dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000140)={0x40, 0x40, &(0x7f0000000080), {0x7, 0xc7, 0x32755f55, 0xd, 0x2, 0xfffffffffffffff7, 0xf, 0x9}}) shutdown(r1, 0x1) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0xfffffffffffffffc) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x8, 0x80000) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}, 0x1}) [ 336.691433][T11150] CPU: 0 PID: 11150 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 336.700504][T11150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.710560][T11150] Call Trace: [ 336.713859][T11150] dump_stack+0x172/0x1f0 [ 336.718203][T11150] should_fail.cold+0xa/0x15 [ 336.722801][T11150] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 336.722820][T11150] ? lock_downgrade+0x880/0x880 [ 336.722839][T11150] ? ___might_sleep+0x163/0x280 [ 336.722859][T11150] __should_failslab+0x121/0x190 [ 336.739486][T11163] FAULT_INJECTION: forcing a failure. [ 336.739486][T11163] name failslab, interval 1, probability 0, space 0, times 0 [ 336.743240][T11150] should_failslab+0x9/0x14 [ 336.743256][T11150] kmem_cache_alloc_trace+0x2d1/0x760 [ 336.743273][T11150] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 336.743293][T11150] __memcg_init_list_lru_node+0x8a/0x1e0 [ 336.743311][T11150] __list_lru_init+0x3d3/0x6e0 [ 336.777121][T11150] alloc_super+0x759/0x890 [ 336.777141][T11150] ? test_single_super+0x10/0x10 [ 336.791210][T11150] sget_userns+0xf1/0x560 [ 336.795545][T11150] ? kill_litter_super+0x60/0x60 [ 336.800498][T11150] ? test_single_super+0x10/0x10 [ 336.805431][T11150] ? kill_litter_super+0x60/0x60 [ 336.810366][T11150] sget+0x10c/0x150 [ 336.814179][T11150] mount_bdev+0xff/0x3c0 [ 336.818414][T11150] ? bfs_iget+0xb60/0xb60 [ 336.822733][T11150] bfs_mount+0x35/0x40 [ 336.826795][T11150] ? bfs_statfs+0x3d0/0x3d0 [ 336.831290][T11150] legacy_get_tree+0xf2/0x200 [ 336.835993][T11150] vfs_get_tree+0x123/0x450 [ 336.840511][T11150] do_mount+0x1436/0x2c40 [ 336.844837][T11150] ? retint_kernel+0x2d/0x2d [ 336.849426][T11150] ? copy_mount_string+0x40/0x40 [ 336.854358][T11150] ? copy_mount_options+0x223/0x440 [ 336.859553][T11150] ? __sanitizer_cov_trace_pc+0x50/0x50 [ 336.865092][T11150] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 336.871324][T11150] ? copy_mount_options+0x30e/0x440 [ 336.876525][T11150] ksys_mount+0xdb/0x150 [ 336.880766][T11150] __x64_sys_mount+0xbe/0x150 [ 336.880789][T11150] do_syscall_64+0x103/0x610 [ 336.890028][T11150] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 336.895916][T11150] RIP: 0033:0x45a8aa [ 336.899805][T11150] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 336.919504][T11150] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 336.919518][T11150] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 336.919527][T11150] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 336.919537][T11150] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 336.919545][T11150] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 336.919554][T11150] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 336.977519][T11163] CPU: 1 PID: 11163 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 336.986641][T11163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.986647][T11163] Call Trace: [ 336.986667][T11163] dump_stack+0x172/0x1f0 [ 336.986688][T11163] should_fail.cold+0xa/0x15 [ 336.986706][T11163] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 337.014796][T11163] ? lock_downgrade+0x880/0x880 [ 337.019644][T11163] ? ___might_sleep+0x163/0x280 [ 337.024508][T11163] __should_failslab+0x121/0x190 [ 337.029449][T11163] should_failslab+0x9/0x14 [ 337.033952][T11163] kmem_cache_alloc_trace+0x2d1/0x760 [ 337.033970][T11163] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 337.033994][T11163] __memcg_init_list_lru_node+0x8a/0x1e0 [ 337.050930][T11163] __list_lru_init+0x3d3/0x6e0 [ 337.055699][T11163] alloc_super+0x759/0x890 [ 337.060117][T11163] sget_userns+0xf1/0x560 [ 337.064443][T11163] ? get_anon_bdev+0xc0/0xc0 [ 337.069042][T11163] ? get_anon_bdev+0xc0/0xc0 [ 337.073628][T11163] sget+0x10c/0x150 [ 337.077446][T11163] ? ovl_show_options+0x550/0x550 [ 337.082491][T11163] mount_nodev+0x31/0x110 [ 337.086824][T11163] ovl_mount+0x2d/0x40 [ 337.090988][T11163] ? ovl_own_xattr_set+0x10/0x10 [ 337.095929][T11163] legacy_get_tree+0xf2/0x200 [ 337.100621][T11163] vfs_get_tree+0x123/0x450 [ 337.105126][T11163] do_mount+0x1436/0x2c40 [ 337.109453][T11163] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 337.115620][T11163] ? copy_mount_string+0x40/0x40 [ 337.120567][T11163] ? _copy_from_user+0xdd/0x150 [ 337.125414][T11163] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 337.131648][T11163] ? copy_mount_options+0x30e/0x440 [ 337.136852][T11163] ksys_mount+0xdb/0x150 [ 337.141094][T11163] __x64_sys_mount+0xbe/0x150 [ 337.145770][T11163] do_syscall_64+0x103/0x610 [ 337.150355][T11163] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 337.156240][T11163] RIP: 0033:0x457e39 [ 337.160157][T11163] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 337.179747][T11163] RSP: 002b:00007fec028dec78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 14:17:42 executing program 4: 14:17:42 executing program 2: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x200000, 0x0) ioctl$RTC_PLL_GET(r1, 0x80207011, &(0x7f0000000040)) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:42 executing program 1: [ 337.188143][T11163] RAX: ffffffffffffffda RBX: 00007fec028dec90 RCX: 0000000000457e39 [ 337.196122][T11163] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 337.204095][T11163] RBP: 000000000073bfa0 R08: 0000000020000380 R09: 0000000000000000 [ 337.212056][T11163] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec028df6d4 [ 337.220014][T11163] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000003 14:17:42 executing program 5 (fault-call:4 fault-nth:17): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:42 executing program 0: 14:17:42 executing program 1: 14:17:42 executing program 3 (fault-call:1 fault-nth:66): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:42 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x0, 0x0) modify_ldt$read_default(0x2, &(0x7f00000011c0)=""/112, 0x70) ioctl$TCSETA(r1, 0x5406, &(0x7f0000001140)={0x3534d355, 0x0, 0x1, 0x17e9, 0x4, 0x1, 0xa00000000000000, 0x5, 0x3, 0x1}) wait4(0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpu.stat\x00', 0x0, 0x0) sendto$rxrpc(r2, &(0x7f0000000140)="a0cfd5ae88112b0fc0692e80b1d903998e2e799c586bbdc6c1864f9aedadaf9cbe22939e366423e55dcb0864ceb8477d68e595796a0fdedd887f49ff4e23d4d1f97f377dec09f7d9ab1288081d381e1a90c9b938d5cf16055238cb762010112bf6f57557b60f897776b9f59379ad6c62557bbbc6a1a4acec31995181aeebfaedf1b1651ad0ea370e90a16acb4870c60290330c4c13713eba902dbc35a85e4313b84be22c5c733328087084f16328759f444b120be8ddba557adca88127d1a4d23e7d5e7d7f190d5bf75a4771305d48d65c82d8807d7a8d8612289c0ac32c33675809c030e001d23eea6d5d9607618f892288713d211220e76933ff953d4258e52ded3256c07a01ac6cd2019b3a0ec9c60930474bc15751a5a6782c3e753e2c91f581bb7e558a186a5a682e7ec29ccfebf209daf764fa92decb36ae9053d4633eb20163b02cda41df12864a68b642b2c59c17cee5c7232d68cc55afa566a4bbbb876fd7174feadbc39c5c3ef4cdbb8a8784c2b776af0269b2ab98771acf1cb74f66adb9b7a5d79ea929b7023799853d44873f063e087d3187718d48487aa4330f33248c8fa44e85cdb047d2d6854e1f63c13a5da41a297755fffd74427ba7e59f6d737788396384af2aea18628977a413b71cc199a46153d02f7ab20f64d3d381413903be2ab075020a84fe4898f58df8c19a4243a1d56fd9afc1cc7eda9feb5abad8a90570b88f94785a8b91357e1038e12622b48cf71e06132828ff3bf55e65b2ff65d70a297ae08b98d93956caa847bf46c276430347d99b4a8b4abef4760f30638d0c0d3ec04591174fc197838d63346d9dc65cd468a5aa9eb2edd06aac539471c656f6f233edd2fad5607f693e49ea000b30830db19c4aecf72ba27d5848aa1761eddbd2e8c67db4fc45d317991f34fb2624c683b5272973b6515a6d5637c3bebcf347ff56dc99f995658199bec4d9ed5d625ebb54d8067cbdf3e6967a1659369113b4a4a0ed0ff590edf0e8093a1b293a182de650b5487c6bc64d846596c51d369184dc70e3719a45fa802bd563b44d86172f696a062fc6baa7a7dc094543a4c69fb7d4fd784933b22fa64f3f2fa6cce392e32a0d097120dcb363d9514fb640a4a1cd9a5216605a9a585c84ccbbe88a7fe35297b08d0827a29d658a3201507f76a27716413147f8e192ab4e7d9998a2a1af1e2d252a7890ac8d04f069ba5066c35e405d81d577ab3aecfb9a31b683dbbd87ae4798d966ff394a9eabfb33caa57f61ba9c770c05786ab9c871684b52850fc5e86eb1b3fc2c444f1a37554c2097ac52ff0763c7ae73db6d930d32f24f91a4841674682331489ffc0a3d544633b005ac4d397ef13544708baf701effd810ad41161e564c85860f5f09a7376fe8d5e0dff0cc8f796d4bb3044b8bc8ecd6cc5b3e0fb563e170b9e3c09fb43a098841dc2a66b5371b4e029c3ff6c63fcb7fa148e1c82e2afc75be752ed68cefaca21d551cf568da38f38a82652b08ed086b77da4903216a8290126aff2c30050df5eb49a993c79aba1206703a92f382f49c93c31778e6f0f0f31377bb3296a9377141a71167aec29e850422e10b15294be1721b50555f6394fea0aa76e25a00e3b5e8b2c7b1282823714038901547f2ba798d1bc3640175135690c329ad3e8199aedf911c04a9b343ca4ceedcd3a79b89b9be5d082767ad0d666160acd84060c66415e89a7749623a1d06a81f6648863e473fe188bafed6c9dd2c70120808b8c8163afd8813fee5d40182cce377a3c66b6b0ef9a763a5f4b9ed249c0e71a2c38bab93bfa23e6692fcdb061f64595e7813f7e5a33be5bb8d3d970cf682d670dc980111b5fd85681c39f106ab6516e0c60ad5dd368202461e23b55f50d0e9909eb225a1095f257304db1cd50dea2a0193ba5b7b037813fdcec981ccae17169c38c69863327aec765e3a24a6431e0b71c64f0454d38a3c75b834be61b785bb5c64df8c8514e9eaa875c3ef98f907faae16e86e34cb055f61b5314b13dd9e1b4849433af03093d9a533bd0c38236f782ad8193b4f8fb0492ad32cd377d9f2cc3c61ebf07d1c9e65a83d25b8a04d5c4609f6e3a2219c96e20f23c839575147ca617c51e4c6a09b25320adb4248e5398471530b4d2500e6f7c5b2e10145d1e61accefe7031761f8afc66da22cc9922f1ba495121d4f17d616a689c3457a0229a1aea4acc4fc92f07464acc2810897a5f2f56fb5a9af53cc1bdcb5a1c00166b50d4e4fafdfb6bc274f92bf8b6e68649c5cb27d757f80e0191489547595ff95ac9e650a1bfb37a6692e4a181ccc1d0ca4de5567b868e144faa81672d4f899d41aaafb1d696d5970c9f216adabbe41c6e28da865d05766ce170a552a05d659982537ffbb0bd4b7de5fccf91cc738bb4e70919d3ce5d6fd07a87ac99526d183f455062262495be261f65e0bc85830f559e408f588425e0bcd71fdc93d3bc663162fb746ecaccc55e94ebf0b32950872e8668fbd1cf5de008a059d9a45616c05719278060b02ebdf41048faa087d2eef22a58db556a8a5602089605cd3d3038c756a6f7c6bf92705ea8f2079e1a7caed9a687228ecebeba5854def4a2e89eef21aa0adabbe86efa73866ca00b1b6238de5dd58d3babbbed95d20cc434badb00a77d53f1f3d28093f221e80a786307bb464ef0a177801019e728c24bb87af28c2a0e314baee69ca1ddeca63c55064dba3ffebfa7105f246a4dc730f1139630b0f12b0732c5b8a7260c6f38b0e3047dbe344c327cbba1687d72ff15c9ac39d94e6d3640cca64d4490978f41ed903bacc14a1ffc6cc72679d2f6d9d6b163f87bae87a14416dd514c773f5b819728d2cd4bf6a11ddcd2f5ae1985a48b0753c7ea8e61103aed80156e60e9363aad158529a8f74eabd501f46527a8f8b2f63d7dbf407e2efe2efa14726c2ff86329d828c7351e9bb73655f0d1bc49ccd9e44411bff1b3565caef7ad1b28c41aa7ff92670d1d42b9f1201b60cabef8d2f2c7de2b2fcf573ffa947bbbdd21fd10ce63ae677764239927ad4315b78211539c50a6bcbab7ede069dafc33dfe948fe7f0d07e09b7c06792d8847097181de9f9a61866116641590d394a20e5a802cb2c06cf9ca7cb6fab6e62f0a1da0b537adb7ddf84c6467190e32831e7b54e2d405d3b75b78fbba08ab1ba7383ccb58e03210a91adfb54a12f4cfbe335dfc10ef860b319c2fec981ca08bda63e2c7b968aff0d447863866ce5a21099d90312bff72742cc3d743af756a3a1ebbed754edb70d2c40f829d58ee57a0d20997b29b370ee97f7bc07d14deceae56a310052f334fc4f6fd948ef8a81a00260112c6304125bd8d1d94a8ee782c422e6e559d23c91df45c55b93754366a3a51d03a1ebedf31dda34fa10a11e9a01b500f0611df2a93269ba0de904ebaca90ee5cd596063b036b2a7b135b945e7502e8a9bafe283e17e321e596dfbd260153e960a5f3e5084b4fa58ce8a9e4b1fb1e0f305debe0622986f517d4db14345ea8ea019ab192e71fa820310ff7aab609afaa133e854c1ba6519c325df525b839e6ca9dc4eea935867e65bf5899f538c29bd00d67b839e810871ed7cce0ddb313e341831b08d4189150e3e8b5347ca2f0c6dcaaf61da42b154c2056ad15b0d5b626d05bf07e0cce1d5e630fac53e778eab477f8736aa9750dc05d77f76ef4c622e58bb7ef97348ab4e6fdd9cad075a9b5f6e31bbf2c4bd4dc2d0154f82309fea319c233dcb6765a03cb09d17f523ea2d24f3c564551b7b782280b110ef18830e7cf0564716231c78dbcfeb47813aeea7200e6ef3e91dfc304e7af4c2b151eeaab13fa85c4d3b242d6078598f2a4126727316f4a2b54fcc80b032dc0aca80114ac9f99bb0d7fe901209d256c9f38febd5bfbec0fb91cc2f673704edcfbb7d58b1fe4abede317de3a8aa3598ccdd9fbaee5b23dc40f46bd48dff804d6c5ccbf861c574dee67f7e4fca88d80e94483db94a942ed6f33d03081c07f59204d2c4d7ae573e5580fe8f1ba0edc979952671e5bf16d5f1d27595e4edec66942b4e666dc3898f7c5f4845a3f704f5c8d548f7ba541fd596e7fa8ffe47b992e741231aedfcacf84834cdb2bbe58f8f0d8a897986428c1c5afb91b81f73cd7ca8c6ec8408643b448c408d088c6a0f1a3db9e13d046ef3e722569a0a5719c84aa933370bbb8faa81209a56ed2f57091f543e5098d4b3cd9824022e8acd037225d4ec046ea8ca189119968ea343e95be42cecabe91b13ffc9e9fccecaa7c27bc4df3fcedf3c94e4a48c195cf57c651adeb623890064a9e088e56dc1b55e62dac98f06c8b000cf2cf22d3c7f45f08887574fd70ba7eaa941b979bca585a1e73ad9555b468b82a3d93447810d6b75029e0b05917e7d2572a8f9723ed4bf4980bab0ee59e781f5842bbfb23fbd09ee4cd4475c1ecba2f397818966f8e3e6c6ac69f17196e22429f888380647753b191455f71e3a88ed49f96a77a8a90f0f6310a794fadee597d5e9b091dc62db5e9af55afd776d056412b3abbacbc3eb2559686fe799b4a92e9f33c7ae661bcae2b6a588a5e7563b91a61afddc3c135f133bf2281e6ed66ff083054ff0d5f06a942b09b3103dca0fee9cccbdddf56fb2091b666a0df51c052ff7970356100020eb438292670b607abc875da3539875375825cae00fa0677478aa16e989e433a9e5e2bfda3458ba48ee2274e62195e38b4bc6a0bb63621a581df2b4a3dd6a51bb3598abb990a349eb316142629930d94d3cd3ac078cdbc10fd72e23bc67d7a4bbb867f4b6527ccbf9a16f50a70800a6ab9196edcc21b4b9e9c303b90b5f70e57632b14e847886b9d49b6ebe275f2c434b7e582009e7fbf0ff609ba138bff7a6382bb051d9212a2050ca56ebbea26451f8c04c865bef29c6d472289b43281914088e1d5d5d38bce2ac6382bf085e9660abc8296f386fe60a70288e521345110ac61bf9ca8235a8f84ff6330f21aaec67a88908f8865cd72a4e1753d7114a1e83783e742b80a7c6d759099deb7f25acab0a78050bcd3b9a436c364c31dec4edee6366b02fea344df100492b77ae0e8b12bd76e955e5af205d28f0b93a0500b72386ce352185e7500e037330f27e8dda381b62f8146f99d0722828c645e7efb38ccec9a2ee8bbdaf64c174800faca2d49859191a42be4658457cf9719c43d5457fec9b1a1e451cf8bf61d46d4572841b156b1719eb28dad4cc45563f47f36fe039afc080f62c0f79796d25d3449aaafdcb6581ab6a01c87a11a2454e82ab70e1225ae60c20ceb80ef469c70aa925a920fdfbcf3b874fcfce9f06d55c0bf80fa50c9bc4dc7f6656aa6ff8ba21f9c9bbef201a2a2ba05f7c148d8f24dfe4a1fd0dc7c5437e62f5fecadc8e60cbff91dd0e09a8d1a7e4121a5b6f05f93d6599e541778dc01e8db0b492d5d41351490d1bd74d029f59d84e590abde2834e7b6884fef5a7e8809d662279304cc4bd7718fa6f6a2da2349f2f7b04553dfb0a34498f8dfb245ee58a7b7bfa4a2faf8669987f65eae4f49483fd2c2524dc6c8a6a9891d57e7e3cd8f5761601a1339e6d57bed8b8d1cbb33cd581a73650dc53891023dcd5d64b04c2d37ccc23bffea698a2e123482d75826d888307d189509c4890ab724eb984cd7662bc7e9473b31296f68bab178db3f1d4d9418372f7b86c801608958f962fac1ec0ffd589a23a7494846b2453f08af3e5e6666146aacf945c59b8c161284bca7b04c28a9c6458e6109e86064f058712cada521fc49e4fb6fb0e28abf11798", 0x1000, 0x20000890, &(0x7f0000000040)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e24, 0x80000001, @local, 0x8000}}, 0x24) tkill(r0, 0xd) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$getenv(0x4201, r0, 0x7baf, &(0x7f0000001180)) ptrace$cont(0x7, r0, 0x0, 0x0) 14:17:42 executing program 4: 14:17:42 executing program 1: 14:17:42 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000c40)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="145f420000000000000007ff000000000300de56b5000000000000000000080000000000001308000500ac14141b080003000100000f01"], 0x1}}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000002c0)="b8010000000f01c166b8e2000f00d8b9800000c00f3235004000000f304a0fc75f20c44379608d00000100f22e0f01ca67440ff6143f66ba4000b846c95182ef0f01cf400f01df", 0x47}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) bind$x25(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:17:42 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000012, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000680)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xde\xe9\x01\xd2\xdau\xaf0\x02\x00\xf5\xab\xfb\x98E\xf9\xe1\x98Y\xc9i2\x06\xf2\xc6\v\x00\x00\x00\a\x19\xe1\xd6n\x97\x01#\xd8\x93\xd9t\xe5\xb9\xc3(Vw\xb2\x13\x98#\xe5P\f\x92\xab[\x94\xda:}\xe1\x9f\x06;\xb7e\xb0+\xd5\xb6`\xfb\x7f\xa8\x98\xc6\xf5\xc66\x9c?60h\xd1\n\xf83\xf6G[\xbe\x8byg%[\x17v\a\xba\x10\x0flFTq\x822\xdb\xdad\xaa\x1fi\xcf\x9a\xb5\xb3\xea>\xd64R\xb7\xeb\xd3|\x9d\xaefN2.\b\xad\x8f`)\xfe\x8f\xd0\xb3Lq\x17H\x04q\xae\xca\n?\xc9\xec\xeb(P\x9c\xa8\xa8>\xef)\x85\x13\x18H\xbc\\\xfbL\xc2N\x19\x01v\x9c\bL\b\'\x12\xb4pfkm\xdd\xf7L\xedi9s\xba\x1d\xed\x8b]\xc1ub(\tc\xa5\xc8\x19\nUg-\xbaA\x83\xed?}\x83M\xde+\x1e\xf2\x1az\xcd\xbbc\x88\xdc`\xd9\bx\x1fKGJ#\x9e\x1c\xf1\xc6\xddE\x83\x01\xd2b\xe5\x94\x8d\x91\xb7o\x11\xbctr\xa3,\xa0\xd3\x82@Db\xdf\xc0K\x03G\xf1;~\x8b\x97OxA\x9eI\xed3-{\x99p\xd2@\x90\xc8\x91wq\x0f\xbbh\x17s\x98/KFd\xae\xdevg\x11t\x03\x84\xd5u<\x7f\x11~^\xe5\x1b\xef$\xb7#\xa8D\xb89K&\x03\xf3\xc3K\x8e\x01.\x1d\x8dKC\xfa\x91pT(\xb2nv\xd0\xa0\x19dq\xc4x\x8a\xbasK\xc5_\xb00+\tW\x8d\xdd\xcaQ\xf1\xdf\"\xa6\xa5\xafJT\xd9.\x83\xdb\xf4\xd1\xb9\x9f=\xbe;&\x86\x86\xe1\x82\xe74h8') ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000200)) fchown(r0, 0x0, 0x0) [ 337.432259][T11191] FAULT_INJECTION: forcing a failure. [ 337.432259][T11191] name failslab, interval 1, probability 0, space 0, times 0 [ 337.472684][T11195] FAULT_INJECTION: forcing a failure. [ 337.472684][T11195] name failslab, interval 1, probability 0, space 0, times 0 [ 337.477064][T11191] CPU: 0 PID: 11191 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190201 #25 [ 337.494458][T11191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.504509][T11191] Call Trace: [ 337.504528][T11191] dump_stack+0x172/0x1f0 [ 337.504548][T11191] should_fail.cold+0xa/0x15 [ 337.504566][T11191] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 337.504581][T11191] ? lock_downgrade+0x880/0x880 [ 337.504596][T11191] ? ___might_sleep+0x163/0x280 [ 337.504613][T11191] __should_failslab+0x121/0x190 [ 337.523066][T11191] should_failslab+0x9/0x14 [ 337.523083][T11191] kmem_cache_alloc_node_trace+0x270/0x720 [ 337.523100][T11191] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 337.523119][T11191] __kmalloc_node+0x3d/0x70 [ 337.523134][T11191] kvmalloc_node+0x68/0x100 [ 337.523151][T11191] __list_lru_init+0x4aa/0x6e0 [ 337.567899][T11191] alloc_super+0x784/0x890 [ 337.572308][T11191] ? test_single_super+0x10/0x10 [ 337.577246][T11191] sget_userns+0xf1/0x560 [ 337.581572][T11191] ? kill_litter_super+0x60/0x60 [ 337.586488][T11191] ? test_single_super+0x10/0x10 [ 337.591405][T11191] ? kill_litter_super+0x60/0x60 [ 337.596322][T11191] sget+0x10c/0x150 [ 337.600107][T11191] mount_bdev+0xff/0x3c0 [ 337.604322][T11191] ? bfs_iget+0xb60/0xb60 [ 337.608627][T11191] bfs_mount+0x35/0x40 [ 337.612680][T11191] ? bfs_statfs+0x3d0/0x3d0 [ 337.617161][T11191] legacy_get_tree+0xf2/0x200 [ 337.621818][T11191] vfs_get_tree+0x123/0x450 [ 337.626299][T11191] do_mount+0x1436/0x2c40 [ 337.630623][T11191] ? copy_mount_string+0x40/0x40 [ 337.635540][T11191] ? copy_mount_options+0x30e/0x440 [ 337.640713][T11191] ? __sanitizer_cov_trace_pc+0x11/0x50 [ 337.646347][T11191] ? copy_mount_options+0x30e/0x440 [ 337.651524][T11191] ksys_mount+0xdb/0x150 [ 337.655833][T11191] __x64_sys_mount+0xbe/0x150 [ 337.660519][T11191] do_syscall_64+0x103/0x610 [ 337.665091][T11191] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 337.670972][T11191] RIP: 0033:0x45a8aa [ 337.674857][T11191] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 2d 8e fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 0a 8e fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 337.694786][T11191] RSP: 002b:00007fbe09089a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 337.703175][T11191] RAX: ffffffffffffffda RBX: 00007fbe09089b30 RCX: 000000000045a8aa [ 337.711121][T11191] RDX: 00007fbe09089ad0 RSI: 0000000020000100 RDI: 00007fbe09089af0 [ 337.719155][T11191] RBP: 0000000020000100 R08: 00007fbe09089b30 R09: 00007fbe09089ad0 [ 337.727102][T11191] R10: 0000000000008000 R11: 0000000000000206 R12: 0000000000000005 [ 337.735048][T11191] R13: 0000000000008000 R14: 00000000004db990 R15: 0000000000000004 [ 337.758794][T11195] CPU: 0 PID: 11195 Comm: syz-executor5 Not tainted 5.0.0-rc4-next-20190201 #25 [ 337.767822][T11195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.777869][T11195] Call Trace: [ 337.781157][T11195] dump_stack+0x172/0x1f0 [ 337.785498][T11195] should_fail.cold+0xa/0x15 [ 337.790095][T11195] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 337.795894][T11195] ? lock_downgrade+0x880/0x880 [ 337.800746][T11195] ? ___might_sleep+0x163/0x280 [ 337.805591][T11195] __should_failslab+0x121/0x190 [ 337.810523][T11195] should_failslab+0x9/0x14 [ 337.815104][T11195] kmem_cache_alloc_trace+0x2d1/0x760 [ 337.820465][T11195] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 337.826275][T11195] __memcg_init_list_lru_node+0x8a/0x1e0 [ 337.831915][T11195] __list_lru_init+0x3d3/0x6e0 [ 337.836692][T11195] alloc_super+0x759/0x890 [ 337.841127][T11195] sget_userns+0xf1/0x560 [ 337.845449][T11195] ? get_anon_bdev+0xc0/0xc0 [ 337.850021][T11195] ? get_anon_bdev+0xc0/0xc0 [ 337.854588][T11195] sget+0x10c/0x150 [ 337.858401][T11195] ? ovl_show_options+0x550/0x550 [ 337.863492][T11195] mount_nodev+0x31/0x110 [ 337.867801][T11195] ovl_mount+0x2d/0x40 [ 337.871851][T11195] ? ovl_own_xattr_set+0x10/0x10 [ 337.876770][T11195] legacy_get_tree+0xf2/0x200 [ 337.881454][T11195] vfs_get_tree+0x123/0x450 [ 337.885936][T11195] do_mount+0x1436/0x2c40 [ 337.890246][T11195] ? rcu_lockdep_current_cpu_online+0x31/0x130 [ 337.896384][T11195] ? copy_mount_string+0x40/0x40 [ 337.901309][T11195] ? _copy_from_user+0xdd/0x150 [ 337.906245][T11195] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 337.912464][T11195] ? copy_mount_options+0x30e/0x440 [ 337.917650][T11195] ksys_mount+0xdb/0x150 [ 337.921876][T11195] __x64_sys_mount+0xbe/0x150 [ 337.926536][T11195] do_syscall_64+0x103/0x610 [ 337.931109][T11195] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 337.937067][T11195] RIP: 0033:0x457e39 14:17:43 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0xc00, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0xc04c5349, &(0x7f0000000040)={0xb0b, 0x5, 0x1}) ptrace$cont(0x18, r0, 0x0, 0xffff) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 337.940941][T11195] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 337.960519][T11195] RSP: 002b:00007fec028ffc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 337.968906][T11195] RAX: ffffffffffffffda RBX: 00007fec028ffc90 RCX: 0000000000457e39 [ 337.976854][T11195] RDX: 0000000020000100 RSI: 0000000020000000 RDI: 0000000000400000 [ 337.984802][T11195] RBP: 000000000073bf00 R08: 0000000020000380 R09: 0000000000000000 [ 337.992752][T11195] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec029006d4 [ 338.000803][T11195] R13: 00000000004c3c20 R14: 00000000004d6d40 R15: 0000000000000005 14:17:43 executing program 1: clone(0x3102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x25) ptrace$cont(0x20, r0, 0x0, 0x7) ptrace$cont(0x1f, r0, 0x0, 0x0) 14:17:43 executing program 0: syz_read_part_table(0xe01f0300, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="00900000001d760100000000000000000000000000000000e0e51532000000000200880126000100000064000000000127008e030c00650000006400000000030d00f0043100c90000006400000000043200422020002d010000d306000055aa", 0x60, 0x1a0}]) syz_open_dev$cec(0x0, 0x2, 0x2) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, 0x0) open(0x0, 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000a00)="59f5ce8bd499350777c68371fcb9d4b453af4eb46d00780c65473cbee05365e6b79ab8fa53c2b7f1fe87ccbe4d2afb64af27b167d465f4210e1921ccb281ebcab7b16566a3002831452293ff7421e961787b107b061ce5d5130edcb9ba59361019caa4abfe47c0f83ea9a8e54f49936cd029f36afd6b204390fdaebf2326afa4c6900240a43b55986aba9431a1df5ea05e2634d5f142f4bc", 0x98) [ 338.213281][T11223] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting. [ 338.240667][T11223] ldm_validate_privheads(): Cannot find PRIVHEAD 1. [ 338.260667][T11223] loop0: p1 p2 p3 p4 14:17:43 executing program 5 (fault-call:4 fault-nth:18): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./bus\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './bus'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}]}) 14:17:43 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x979, 0x101000) ioctl$TIOCMGET(r1, 0x5415, &(0x7f0000000040)) r2 = epoll_create1(0x80000) r3 = socket$nl_crypto(0x10, 0x3, 0x15) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r3) 14:17:43 executing program 3 (fault-call:1 fault-nth:67): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) 14:17:43 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x40000000000013, 0x10, 0xe68}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000000), 0x0, 0x1}, 0x20) 14:17:43 executing program 0: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x8, 0x8000) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001740)={&(0x7f0000001700)='\x00', 0xffffffffffffff9c}, 0x10) r2 = socket$bt_hidp(0x1f, 0x3, 0x6) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r4 = accept4$llc(0xffffffffffffffff, &(0x7f0000001780)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f00000017c0)=0x10, 0x80000) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = syz_open_dev$dspn(&(0x7f0000002d80)='/dev/dsp#\x00', 0xd63, 0x20100) r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000002e80)='/proc/self/net/pfkey\x00', 0x20000, 0x0) sendmsg$unix(r0, &(0x7f0000002f40)={&(0x7f0000000040)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000180)="e708ee7547a97768b85c3bfcbcd0bbdd0e03abe037327aa6eb3f720a625dc41e5aa6bb90e7149c1816b4add4c2570faf5f6e70aa78f003622bf45d303f1d1d1fd4e2d457a468966e79f2c899c267e4fc493f80423faf0105232e814da825656ab8b6700f6dd7f068de07a78eff67b58d9067249696a6354c247c3bf35550c3c9339f52636d4dbaa87dedcec04ef0e90fe44817dfb50b200c1d4cb1e1d08a829c9973669e645e505b5aeffa20e2c12dce4767ab0490eb981f6d873d08b88ddd6425db6adc060d6b83c7e6e8ee7807f1a47916fcde07a1498efc31005840d963acd9923eeba16ef47e0f", 0xe9}], 0x1, &(0x7f0000002ec0)=[@rights={0x18, 0x1, 0x1, [r1, r2]}, @rights={0x20, 0x1, 0x1, [r3, r4, r5]}, @rights={0x18, 0x1, 0x1, [r6, r7]}], 0x50, 0x8010}, 0x4000000) r8 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r8, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) listen(r8, 0x5) r10 = socket$inet6_sctp(0xa, 0x5, 0x84) accept$alg(r6, 0x0, 0x0) r11 = accept4(r8, 0x0, 0x0, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r10, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r11, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x5000000, 0x0, 0x54}, 0x98) 14:17:43 executing program 4: r0 = socket$inet(0x15, 0x5, 0x0) bind$inet(r0, &(0x7f000001bff0)={0x2, 0x0, @loopback}, 0x10) connect$inet(r0, &(0x7f0000024ff0)={0x2, 0x0, @loopback}, 0x10) add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="1ca8d955420cbaecd6de0a3a8f962473d4bbbfb682d68a51a68dac9a783760383ba6d32f5123b71901851815947893006317599a7a13fcb236b11113f971b76c4e47a20569ed6fbc147159563ccab02c085aff7e36b85d750d48e636a72b595e2c561d308d596a3a535914d772022d4361090b0cd95abe28177d57caae44a8a27e2c897d3b3f63075505c744b69b6241073a4594554836065d4f4be7683d6d4eed70705b48b95f49a410ec72f5e2f04c3391b246c1a7c14a27835a9c1615cc8ab12943e61487d4d6cfbe8a15", 0xcc, 0xfffffffffffffffe) sendmsg(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f0000000440)=[{0x10, 0x114, 0x3}], 0x10}, 0x0) [ 338.388637][T11220] __loop_clr_fd: partition scan of loop0 failed (rc=-22) 14:17:43 executing program 2: clone(0x3102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x4c000, 0x0) sched_getaffinity(r1, 0x8, &(0x7f0000000080)) ioctl$TUNGETVNETHDRSZ(r2, 0x800454d7, &(0x7f0000000040)) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xd) socket$nl_generic(0x10, 0x3, 0x10) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x4, 0x0, 0x0, 0x0, 0xf7}) ptrace$setregs(0xd, r1, 0x5ca5, &(0x7f0000000000)) ptrace$cont(0x7, r0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x7fffffff, 0x100001) 14:17:43 executing program 1: r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x40, 0x0) msgget$private(0x0, 0x100) ioctl$BLKPG(r0, 0x40140921, 0x0) socket$vsock_dgram(0x28, 0x2, 0x0) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x20000, 0x0) prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) 14:17:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x3, @broadcast}, 0x6) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0xffffffffffffffdc) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/keycreate\x00', 0x2, 0x0) sendto$inet(r0, &(0x7f0000001040)="c340", 0x2, 0x1, 0x0, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x0, 0x2) ioctl$SIOCX25CALLACCPTAPPRV(r1, 0x89e8) r2 = eventfd2(0x7, 0x800) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x6000, &(0x7f0000000100), 0x4, r2, 0xa}) recvmmsg(r0, &(0x7f0000002940)=[{{0x0, 0x0, &(0x7f0000002440)=[{&(0x7f0000002380)=""/133, 0x85}], 0x1}}], 0x1, 0x0, 0x0) r3 = dup2(r0, r0) ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000180)) sendmsg(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000000c0)="f1", 0x1}], 0x1}, 0x3) [ 338.582801][ T12] WARNING: CPU: 0 PID: 12 at kernel/workqueue.c:3018 __flush_work+0x74c/0x8a0 [ 338.591943][ T12] Kernel panic - not syncing: panic_on_warn set ... [ 338.598543][ T12] CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 5.0.0-rc4-next-20190201 #25 [ 338.607113][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.617244][ T12] Workqueue: md_misc mddev_delayed_delete [ 338.622954][ T12] Call Trace: [ 338.626238][ T12] dump_stack+0x172/0x1f0 [ 338.630568][ T12] ? __flush_work+0x6e0/0x8a0 [ 338.635330][ T12] panic+0x2cb/0x65c [ 338.639231][ T12] ? __warn_printk+0xf3/0xf3 [ 338.643819][ T12] ? __flush_work+0x74c/0x8a0 [ 338.648485][ T12] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.654716][ T12] ? __warn.cold+0x5/0x45 [ 338.656158][T11261] print_req_error: I/O error, dev loop0, sector 301 flags 80700 [ 338.659051][ T12] ? __warn+0xe8/0x1d0 [ 338.670708][ T12] ? __flush_work+0x74c/0x8a0 [ 338.675379][ T12] __warn.cold+0x20/0x45 [ 338.679648][ T12] ? __flush_work+0x74c/0x8a0 [ 338.679890][T11258] print_req_error: I/O error, dev loop0, sector 101 flags 80700 [ 338.684337][ T12] report_bug+0x263/0x2b0 [ 338.684425][ T12] do_error_trap+0x11b/0x200 [ 338.684443][ T12] do_invalid_op+0x37/0x50 [ 338.693771][T11259] print_req_error: I/O error, dev loop0, sector 201 flags 80700 [ 338.696361][ T12] ? __flush_work+0x74c/0x8a0 [ 338.696377][ T12] invalid_op+0x14/0x20 [ 338.696394][ T12] RIP: 0010:__flush_work+0x74c/0x8a0 [ 338.709650][ T2481] print_req_error: I/O error, dev loop0, sector 101 flags 0 [ 338.713066][ T12] Code: 74 58 e8 47 b7 25 00 fb 66 0f 1f 44 00 00 45 31 e4 e9 86 fd ff ff e8 33 b7 25 00 0f 0b 45 31 e4 e9 77 fd ff ff e8 24 b7 25 00 <0f> 0b 45 31 e4 e9 68 fd ff ff e8 15 b7 25 00 4c 89 ff 45 31 e4 e8 [ 338.713073][ T12] RSP: 0018:ffff8880a989f9a0 EFLAGS: 00010293 [ 338.713084][ T12] RAX: ffff8880a9886300 RBX: ffff8880a0e668a8 RCX: ffffffff814a3dbb [ 338.713092][ T12] RDX: 0000000000000000 RSI: ffffffff814a446c RDI: 0000000000000001 [ 338.713100][ T12] RBP: ffff8880a989fb10 R08: ffff8880a9886300 R09: ffff8880a9886bc8 [ 338.713108][ T12] R10: 0000000000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 338.713116][ T12] R13: ffff8880a989fae8 R14: 0000000000000001 R15: 0000000000000001 [ 338.713136][ T12] ? __flush_work+0x9b/0x8a0 [ 338.713149][ T12] ? __flush_work+0x74c/0x8a0 [ 338.713166][ T12] ? insert_work+0x3a0/0x3a0 [ 338.713177][ T12] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 338.713196][ T12] ? debug_object_assert_init+0x17b/0x2f0 [ 338.718132][ T2481] Buffer I/O error on dev loop0p2, logical block 0, async page read [ 338.722265][ T12] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 338.722278][ T12] ? lockdep_hardirqs_on+0x418/0x5d0 [ 338.722291][ T12] ? trace_hardirqs_on+0x67/0x230 [ 338.722304][ T12] ? try_to_del_timer_sync+0xc1/0x110 [ 338.722324][ T12] ? mark_held_locks+0xa4/0xf0 [ 338.722339][ T12] ? __cancel_work_timer+0xc4/0x520 [ 338.728861][ T2481] print_req_error: I/O error, dev loop0, sector 201 flags 0 [ 338.734846][ T12] ? __cancel_work_timer+0x1d3/0x520 [ 338.734860][ T12] ? cancel_work_sync+0x18/0x20 [ 338.734892][ T12] ? __cancel_work_timer+0x1d3/0x520 [ 338.734906][ T12] ? lockdep_hardirqs_on+0x418/0x5d0 [ 338.734921][ T12] ? trace_hardirqs_on+0x67/0x230 [ 338.734940][ T12] __cancel_work_timer+0x3bf/0x520 [ 338.754625][ T2481] Buffer I/O error on dev loop0p3, logical block 0, async page read [ 338.760565][ T12] ? try_to_grab_pending+0x710/0x710 [ 338.760585][ T12] ? try_to_del_timer_sync+0xc1/0x110 [ 338.760601][ T12] ? detach_if_pending+0x4f0/0x4f0 [ 338.769053][ T2481] print_req_error: I/O error, dev loop0, sector 205 flags 0 [ 338.776493][ T12] ? lockdep_hardirqs_on+0x418/0x5d0 [ 338.776508][ T12] ? trace_hardirqs_on+0x67/0x230 [ 338.776526][ T12] cancel_work_sync+0x18/0x20 [ 338.776599][ T12] blk_sync_queue+0x33/0x190 [ 338.776615][ T12] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.784909][ T2481] Buffer I/O error on dev loop0p3, logical block 1, async page read [ 338.792515][ T12] blk_cleanup_queue+0x100/0x200 [ 338.792530][ T12] md_free+0xcb/0x1b0 [ 338.792545][ T12] kobject_put.cold+0x28f/0x2ec [ 338.792559][ T12] mddev_delayed_delete+0x34/0x40 [ 338.792577][ T12] process_one_work+0x98e/0x1790 [ 338.792596][ T12] ? pwq_dec_nr_in_flight+0x320/0x320 [ 338.801643][ T2481] print_req_error: I/O error, dev loop0, sector 201 flags 0 [ 338.805126][ T12] ? lock_acquire+0x16f/0x3f0 [ 338.805151][ T12] worker_thread+0x98/0xe40 [ 338.805163][ T12] ? trace_hardirqs_on+0x67/0x230 [ 338.805185][ T12] kthread+0x357/0x430 [ 338.805201][ T12] ? process_one_work+0x1790/0x1790 [ 338.809845][ T2481] Buffer I/O error on dev loop0p3, logical block 0, async page read [ 338.814401][ T12] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 338.814416][ T12] ret_from_fork+0x3a/0x50 [ 338.821383][ T12] Kernel Offset: disabled [ 339.050929][ T12] Rebooting in 86400 seconds..