[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[   60.165210][   T26] audit: type=1800 audit(1560979554.238:25): pid=8880 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0
[   60.204291][   T26] audit: type=1800 audit(1560979554.238:26): pid=8880 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0
[   60.257805][   T26] audit: type=1800 audit(1560979554.238:27): pid=8880 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0
[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added '10.128.0.35' (ECDSA) to the list of known hosts.
2019/06/19 21:26:06 fuzzer started
2019/06/19 21:26:09 dialing manager at 10.128.0.26:44403
2019/06/19 21:26:09 syscalls: 2465
2019/06/19 21:26:09 code coverage: enabled
2019/06/19 21:26:09 comparison tracing: enabled
2019/06/19 21:26:09 extra coverage: extra coverage is not supported by the kernel
2019/06/19 21:26:09 setuid sandbox: enabled
2019/06/19 21:26:09 namespace sandbox: enabled
2019/06/19 21:26:09 Android sandbox: /sys/fs/selinux/policy does not exist
2019/06/19 21:26:09 fault injection: enabled
2019/06/19 21:26:09 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2019/06/19 21:26:09 net packet injection: enabled
2019/06/19 21:26:09 net device setup: enabled
21:28:29 executing program 0:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x1, 0x0)
ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000040)={0x7fffffff, 0x3})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000080)={0x406c1dc55a5e1ea0})
ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f00000000c0)={0xc0000000, 0x0, "7b986ac13f867dfe0e3a5a39162c3e535ca582d8921e34581b18871ed6fe6384", 0x4d90c42d, 0x37, 0xd6, 0x6, 0x2, 0xced6, 0xfff, 0x7269, [0x80, 0x5, 0x9, 0x5]})
ioctl$VT_RELDISP(r0, 0x5605)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
ioctl$VIDIOC_G_CROP(r0, 0xc014563b, &(0x7f00000001c0)={0xf, {0x7, 0x40, 0x3, 0x800}})
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f0000000200)=0x6c8)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r0, 0xc040564b, &(0x7f0000000240)={0x10000, 0x0, 0x301f, 0x5, 0x7, {0x87, 0x7}, 0x1})
setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000280)={0x6}, 0x4)
ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f00000002c0)=0x1)
sendto$rose(r0, &(0x7f0000000300)="cd168db7c7323292cc16608c434fa574b382c8b351e918531358d5095af84fc982e7c78e050e9ff0bc53b3bf2609e6354207e54956d74d81d00e60e4a09bccbc2c22ec2db6358ab7db4b2f", 0x4b, 0x8000, &(0x7f0000000380)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x40)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400)='IPVS\x00')
sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x64, r1, 0x60c, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_DEST={0x48, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@broadcast}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3ff}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e23}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x40000000000}, @IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e21}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x40000}, 0xbdcb2a0e68ef3315)
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$void(r0, 0x0)
r2 = add_key$user(&(0x7f0000000540)='user\x00', &(0x7f0000000580)={'syz', 0x0}, &(0x7f00000005c0)="a074cd864b4433f1cc2f79e6259717effab0f144cdb483b3dc2576dd417d33689d82f5029b3565252158316e595244fd85ca3d836f9c1d4da61afd071168d0334381b659371f0e44377af979a1f5f9410f1c6e7e57423ebddb2b319c5408d317efc16a60d255f8862ad5e60b1bd555082210364d3e285eb1aef8e5ab4ad66272016afd9b30994d1f988dc4d67823f44cea053e6180406393d914aa501c8654f35c346ca313339bb8faa81aaaf533dc2b9bd0c588e991f414be37206be1c86428ae15b386ea9ed693fbe9cbda990c6f4fe1543e", 0xd3, 0xfffffffffffffffc)
r3 = add_key(&(0x7f0000000740)='id_legacy\x00', &(0x7f0000000780)={'syz', 0x1}, &(0x7f00000007c0)="fadcb1a940747f8e40f11ea8156920e64bfaaf4cd242a112aa09f91467e38c0b7d4ba9d91c5a4d9f841c793e9d0570e5be7b270ea34f0ad6b037c40e21dfa4c8ce53ea3035e02bf959fbd93ef275e8f6c0e2f2e067a26b95dad76880d0f474123a3b3550bf89e53ab4bbe6b384aca5f5a1e8bc2542a5db13780a4c0170fdb646983bb43751c85bd9a58b44f19503aa19df49b676b15fff17c887fb12a06d4043147d872f87cd1ea9ef6dedae45eb", 0xae, 0xfffffffffffffffd)
keyctl$instantiate_iov(0x14, r2, &(0x7f0000000700)=[{&(0x7f00000006c0)="fad388942112efeff59ba303af02ef383074cd148eb70aa969fcf539af06e07e81310eb2aec2b37ea86ada995b64096deed91ff5469a0f623a79a9ae8f", 0x3d}], 0x1, r3)
keyctl$setperm(0x5, r3, 0xd46ce6785fbd62a4)
keyctl$clear(0x7, r3)
renameat(r0, &(0x7f0000000880)='./file0\x00', r0, &(0x7f00000008c0)='./file0\x00')
syz_open_dev$video(&(0x7f0000000900)='/dev/video#\x00', 0x9, 0x48000)
getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000940), &(0x7f0000000980)=0x8)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f00000009c0)={{0xffffffffffffffff, 0x3, 0x9, 0x2, 0x40}, 0x1f, 0x7fffffff, 'id0\x00', 'timer1\x00', 0x0, 0xda, 0x8, 0x8, 0xfffffffffffffffe})
keyctl$read(0xb, r3, &(0x7f0000000ac0)=""/199, 0xc7)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000bc0)={<r4=>0x0, 0x1, 0x0, 0x0, 0xe252, 0x8}, &(0x7f0000000c00)=0x14)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000c40)={r4, 0x9, 0x5}, 0x8)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000c80))
ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000d80)={'netdevsim0\x00', 0xffffffffffffffc1})

syzkaller login: [  215.995199][ T9049] IPVS: ftp: loaded support on port[0] = 21
21:28:30 executing program 1:
arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0xfffffffffffffffd)
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x6, 0x1)
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x10)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r1 = accept4$bt_l2cap(r0, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/autofs\x00', 0x0, 0x0)
setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f00000001c0)=0x1, 0x4)
flistxattr(r1, &(0x7f0000000200)=""/181, 0xb5)
ioctl$VIDIOC_QUERYMENU(r2, 0xc02c5625, &(0x7f00000002c0)={0x7, 0x4, @value=0x7f})
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000340)={<r3=>0xffffffffffffffff}, 0x13f, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f00000003c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000300), 0x1, r3, 0x0, 0x1, @in={0x2, 0x4e20, @empty}}}, 0xa0)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f00000004c0)='nbd\x00')
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10364001}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x34, r4, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x20}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x531241dc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x34}, 0x1, 0x0, 0x0, 0x81}, 0xc0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r0, 0xc040564b, &(0x7f00000005c0)={0x0, 0x0, 0x1003, 0x80, 0x2af29762, {0x788}})
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000600)=0x1, 0x4)
r5 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ubi_ctrl\x00', 0x240000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000000680)={0x3, 0x3, 0x7ee, 0x3, 0x2})
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r5, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x402}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, r6, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0x1c}}, 0x11)
sendmsg$inet6(r2, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000800)="e77177f868bd602536a37f3cc70c91a15b89fce025dab72ae688ccf8b4050ed33bf03a095bfa382faa0697070226630abdbc62aef2895b51f79a0b0b3f9d2d25dc4d804cd3869fc0805f6298f6407790d2b7f52c282032e27b6feb0d0988665795d0741c715f28952081f411d351f9550a1c5c6ef47edd56983ce61644e2ec7f5928dc476567747bd9aedda8d33703f6e2ab1769329c29b124768ae368b3", 0x9e}, {&(0x7f00000008c0)="d8e4d11997bd3e579339b3982107d34294e07fd0929a87feb4181f00ddfada9f9909c37dad4242a85aaabba9243e9826ae9afc0a0619b7b6f8a1fb1ad36d853f1c1dfcb12332a93ee97dc349d42c500a7b6facf52bca22820c7aee07cf2aaae48c3c67857fecf6d2a4bd02935887bd531f1a26470b9dd702439e3ad57a2387ba9a53d77f96736c22a23b8246ca6fb5ee272f47b1959f0d346c2776", 0x9b}, {&(0x7f0000000980)="c044de20f3032e98806a1b3b7c49000c824d063d844f91312e3631dbdcaac342a31a12c287c4eaaa0ade58ed50571954305a16cba0ce9bb2ac24d2fb01eba35df5cf12f56dfce180865499b802b85646574ee8306af0", 0x56}, {&(0x7f0000000a00)="b28a4155163d53a94d48daa8f1a9b5b57917b76f5ca0338a59a7919e60a158bf00d4192be70e95eab1cea936f808823fd7d7aab39bb575c966c26f7e3a978c45cd4f6291ae5603826515c19717b1b573960c69682396d584a264a2e60fa5a229e89402f7364660f7003c7e782d713fe9062bf0df0d039a6815ff13d35805b6edf01a4a838d8c41bddd24b73f8b4d5aedfec1c0655f3698610f12d11f2d81afb48fba82b247cd42f11338e485a9ae43ad02704878446b8d3a8af64f9ea62c0ee32837dbe5373d9ff3f3c4ffa541b0b767d1b66da3e83c659e2d17f2e7627c149093ab50a25665ed90209520269b06cb5db2bbd9fe274ead1ab231c1e8f65732772160a4f8a0e67b23a4ce3403f090978537142238958dce2560437503c8248c31256425c1f8c2f7c95acec402fe89377841f4e5ec7ce1639f060d3c9eb5d65f1b7bbeedee958735cef24209d4e5ae1266f4aaf835c8b14ce62d7d7ef4334163d9e920f0d21cd4fc715c8636bb7ecce4f9bd21489b183d19a28ce0bb4f0ac8f93d9d1f4bf0bc07dd3a011fc391819b485e479bd5f3a7cb24686b7720c246a50410e69fbcda38cdbcd77e2d0e8242602bed9d0c7ecb87731e4c6d83e5dab074d1c5b97c5e4f476e1671c6c75ed51d9223e188e53a6f3dbefbf2130deb46b1df87b9ab70f1421e0bc31f3881ee727ed5e93733ce2d976dc51bdbb74fdcd2bc3a14ffc9da32525e7d0ef1f9d224c4178fd79d935cdcedf8ac68c829e252849421beceb613f0cdfcd731e83822cb39ed732e6a8a13b47cda4df352e0266e929eb1365b4b3cf5d190dad632b2fc7b3880365cb4b533c0a545dcde83b722adfaacea86c5f036000e731c5b9a2e08256f9ee9f6dcf1a0904d72505e5618ee25975dd68ce4cdd74c2faaad27ca713517b4588d07d11448d2e6a632d143fc719dfd290de015aeaa2c834aab4e8a7d2d0e3874fc189b1d4f08df710e515f3c21131e28e58a1382a004b412e76b1f89ecfc124cf05dd7f1aa5b6b53e2d72b71da9ab6dad47f13fbd268c7fb7f7cd817ca4d76940bcd857b6cd55078b66dd23209a01cf42d8978f2b5817565afb62f149cd58680ffe7166f125276beebb799e84870caf12572ffd46f41142b97a05b8d288794344c89908424b6d90961765fff2b0a2db60204c215dab50ae1c7de13e7004d0a98690ee816243a1c1f3df4896473e47190b3ad7d14592b608cc0ff8352eb259d8a4470beda126f969c4142bbdea30cee942a1b1c401661890f6a19b924ddf12421944ecdd8b3c3c9100d4d2ed8aed4cd8ab7a9828f0237676edb00c386064683ac3b73d5c0a6e0f53597917c07fb224279d7d502bb0d2124b46d7faee572dc91eb0cde4734ca3c1cf22b8af700453b07da452dfbf63c9b1873311cd84b356b1b512233c7afd0c6109320e7e750378d931b981cb32538470d1d358eecff408ce37c201b2785708108e984fc23b2fa7686fa51c4a192ce629ae5d45d7e60461e8e5d1407fae50fde7fd3268ab369786f3974bb0535007566d4e5cc80aee0ee9e88029f393790437223cffda39563c3d30945ad68d8c34977999a2e2eee5b8938fc00675040d9f047240df4882866a570babf491227d2cbe06b6ecd2a7adea9ddfa61c295a52ff5923cd603bcf9df936f8fd557f09a09ce8454a3e740002a53e75403e66b5eb64fa77c444d5fb7e63400f36d3301630cc0b554119031bf852d6bc02c70b3c7a24b5a947512c3979d0b0a3a6877f1ab1e81f9e6ca1af5fb2d17f99394e1164244c923424a4475194ae83294283238e272db5410bbe1aa65155f6f018f33343a022d18b81b6f94ca0d135fb4c806339dc8892593f054a3850faf0cc3765829b64cee39b57dbc00cf58fafdf863dc2802cc4dd6d9fe4fffa17eb6ef0344414081a1d5c6df8b539fb3b8800a93b68c182bec12b8d7d2862cb832384a53082dc3d8ea15bf358552c71737cc542a22736725b01a0573bcae501651ed3aa40649d9974b89a4eacde42d2aa6e8d793fc6584aa80e5ff7404b416a4fa2c9d08f8e44007be44eaa4919870a4730fc47707b16480b8e1b0333c43d1b2a30bd18a37def1db767b565195534c1062911bffea478df4de04d46aff8fcbe8758e2f2bcfb744c95ee24a0af31848cdaa01e5834b3e64a6447b31911e4b08fc1f906bdfd09b08f88953d18aa84c5eb26037a1e9d86535ef482452cc269a1d7a3deaa54ac1a64d686804a617be7b4ca3ca4bb6e708a35420f2e706ade799954b04c4154f1b96a4d8d3925e69fae6374fd80b4a0a9c61f465b9e8e3e414193f9ff3456387b3d2b49d9c6e1ba15bcfa9dfb2a8bf44a5cdcf56a64db0a50ae3d1285e555bb13f296d4c348e99d8994761b98ec127ae5f0c7eda0db25e8ab64e930d194471d932369c15eef208ce72a84a7a68cd36e2b661bc035036dd85d2c086cc2dac0bc5df58f23d71ff06be28c56c375713c691d44a05c4a656e7c41fc0ce2bb93f8b7dc280ecbce97141ab6dbc88ab7be51d0583c0514e97e336edf2341872219156e869b69c1af5ecf875df7d03ee302083d912d1ff14b83ea7e21bda0be3e0ccf8cd5a8b2dd83aa3b9c7dfea32bb8548250dc1b2526ce961eb7031b4767abbc3de4bc91fe698e9162a51f15cb3df3337593e82537817b328a3194ba44b4cae480cd93ed09bf793d1a1fe53a8e44db252fa2b8de6707c27c1010cf6ff55b98ebe6b359dcf841b44e0022d610ab229225b4ebe8e672b3a9a0b68982799e8e0707ec46bf0a08d20b0d391e9de56014b8d23d727664a628928a7cadb549f607cb3b2213f0f7a3aa719106c62d89ad7bd9981d62d38477ea2587672c36c78dcbd2592b7ccdbade2504d4b40b5a84cea741390d388e3472a6ca1e8e64560846083d718ee16eac3c710928287c78662d88c82e6095e9ace3754fba62035b8b02fa6fa01aabbb703ac75900f903d3667ea6e74fbcce314e7800bdd0f0db856abd2a749b573f4c4067cb14e346cdf887982217ca04729892dc52a141aa7489cf958d3709f1629da8b4c016a84b24b65a957ac845032e43f74bfe31ce59ec79971232138589dbbd2db4fd881cdd8c08743a3200445a674d9f1ef76034b8deac7f756b7ed38ab6a55323fffcdf874627f5fe9c1ebba8861cce506470993b8a6021ef5f591f0ab8afa1ae8fef7444826aafe7e122572f6c70dded0e0f4c9b57646a9c23513f5321557a693b330f24e0c0ace326b7e4c4017d95a88ef02abd5f7033b5a03b9856a05be7f5d195fa9b758edaafec8500dfaa478a7c7184670085a880c2f06398dabe8b78c0ba854026448fb24e787bac0937f06bdc853cc78d4b0fd0592a3ae00798f6301a4697d1fba7b74df564d8d67bbf7b41555149485225e13a1eca3b2d389b1e02647bb160c8f87c59fe888f3f47929fbd99f04401167cd26718d37787d1e8d706c4dfa86d5ac7db1cc2ca86a5d655e6e2448393a6c3e0a75febd5ee3e3906f93bf8ad88d2d9d7f467ad78aef46772ebece4af3277112c007caac970af794c73268dc9919aa920b4fe76ba7488b1c38716a960fc0f9503f25ffb80dd191a7939691fa15c1f7f61781f8d2e59161b3c17d83e02ebe998b76a6f2aea2e943b731b7667a38c39494b44d0587e72790acd050210986c029840cf74e27b17a724c0a1eb24ee029b2d3e0f55fcac9870fbbe42f352e641ec7c5d0c1d7e20c19728d6f2ce80d159e0c2d7dfde77aa63481885cd68e6e455263651a00d5622e657b7da5ba7c26e8971b4da8c1eb2d6e89bc31237f177b436136414837f546e28a9eaf312ca84f3014d14f9e3510e0023345603375f0782b09948e03288374765ede522a65ebd5966da74bc783f81f3aff2b0d199c59e99ef3357539789f4d472a067051b90ad0b478d9bd786a5f7730e83ddcd33cf24bf97eb7722c7d7209a400e547ee14c04318dd99b9d782c81fbd52770681858508fd614ee1be0fd8b0c01d3dcb09f4bd82ae2733fb0ad58fb4995d72a58416beae84cc7b3b97d242fa19d8d21aa7eb392000ca09502e0b76604d2371395ae8ef9343a9df29198ab795ddbeba25128ac3e95f566dd4cf9ff34261595a8966c9b5d710c1740431b957ea332b9f8747dc34a7cdef0abb53c5fe9db33c601ff64c81956c589f75d5b5f0f166fc35a5e9af8abfcf45c67f3d6d1f7d01a21e1db6eef5fb1ba8e8814ca4c7b48f02add4c334195af54bc40f03e27fd101dd19d50740baff6a1c90055e68709bd20d88dced3fe31400ab82bc3bd96027413ba32f6b2b590f10c6e0a7e3eaf797f0ae06cb4c408aecd1ce2b3524f8aa1b73016643b5135cf97d841ba32fd6402703a0e3e799400f5e952bfecd2838e662a007946b89d73eb1a91f39f403d58227bf91f239d7ecf357c72e5f878b7f3dea42a4f40b8b128249e0fa1b48752ec38432decb05d0ebe204543ba0f7ab125d9d273f717ba3956bf1a7f8e1e37ac24d962ba5118b41cc43ee9ba556285236403e12c3d870d869e5ba67f77316b3a1edb01825896a3da89b62be1f2c806a357fb97976b81ad51eddeede970b9740144f2b97732f8d4a9efc0a9a28d6657f331e6ee8108b09aa52a35fad58b0df10d844ad367c5abf908366a296866938c64a96df258e3eac5b05ba277637edcbf3312043b2dfebd45c147b8923e2157fdcf3caf9cb350e3a403db8b6f6655d2e5ea86c207a515490a8a1e9f36724d0e32727f57a262eadfc83f22aad51caa03846c7862d8ca678e62493a7f22a83dcb15e624cb20ffc6dc676c938ecd67fa18b05fd88e2ea27ebe3204c559a2679b3f3ca3e4e81d6aae44c8a55f3e066a21d5e0683c21ebb640a7b6f61181918dbf3ebb90977e6f39d4a95a2007bc7ba16e0edfa95305a17e4de7f5b1189e6857047a22229023ad4895fe3532c3bdf0b9d49450a22ca5d77349ccaa498083c454b6cdb363356b184f2fd9556ff750dcb0f2d071ed61e51998798d3e6dff9704eb71403a40e76f8e9979b500c1118d3fb36fc3eeeb73cfddc5b33275be6c58a6c3cb62a3812ae21e5d0fca1c3510f96320b636123a4a759fc7809d26f5a98ae01ba756010dd796dfd94265bd163a0530ff72a2f4b98c3c887af0b9b3c67072a58d486dc11a7efc76930d6e4127ea2b8b90a2bbf9b55f93c6116c7ba0601b509ba01b4c584af19fbe4516ba1f67c45d31f421ce3c90b655121ba917e8c9ab4880b64704697ece6622550cf9452ae12c13852cff7c13b303677e5d72182955742f61a9e6b6c388073fe0cf06a91dd5b69e0a0b9bdd1e6ad34189f8e2fce35318f1aac94f45767c0f29de9b04060108aaf35262fe79e83c98156967e3f629aed11b221387f3d5f15301572f8703ccb9a6168c2cec7a591bf8e1e7201d9f9a773d7f327b667736e71b5749475094639d5a32278d4f63e883e4695155e4640bf5caabf0871e3954113906a8782b42412b94506b2998539558ab0e95853b6df380637d97830f179e277e957c65b67a0f78f7d6246a07a0d32eaa2a7550533f88d07c69ace8908b3664fc5726f5008f8bfb7ac6f1830136df1cf934c38e11443df70acf8ef25440abf858c80cfb61571b7470653ac9cb70d1e1a73099e36f428f9a03d4515042d590dee4033e5ac4eebbb812ec198a6a369f51a6b9aeaef10b6e77882e3949383fc1f6784dffdec1985c1169732380a9b781a857b56a86520a17829a38b2912e9f0156abd1fa12b203fdd62a827920f33146eb92c15f3f25382c5b21fd2b064f0f1a7cb93187d55540634877f74", 0x1000}], 0x4, &(0x7f0000001a40)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x3}}, @tclass={{0x14, 0x29, 0x43, 0x1}}], 0x30}, 0x24000010)
ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000001ac0))
ioctl$sock_ifreq(r1, 0x891d, &(0x7f0000001b00)={'rose0\x00', @ifru_names='rose0\x00'})
ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000001b40))
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/video37\x00', 0x2, 0x0)
set_mempolicy(0x3, &(0x7f0000001bc0)=0x7f, 0x80a)
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000001c00)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000001c40)='/dev/qat_adf_ctl\x00', 0x2, 0x0)
r7 = getpgid(0xffffffffffffffff)
get_robust_list(r7, &(0x7f0000001dc0)=&(0x7f0000001d80)={&(0x7f0000001cc0)={&(0x7f0000001c80)}, 0x0, &(0x7f0000001d40)={&(0x7f0000001d00)}}, &(0x7f0000001e00)=0x18)
syz_open_dev$radio(&(0x7f0000001e40)='/dev/radio#\x00', 0x3, 0x2)

[  216.111702][ T9049] chnl_net:caif_netlink_parms(): no params data found
[  216.185249][ T9049] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.193146][ T9049] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.205768][ T9049] device bridge_slave_0 entered promiscuous mode
[  216.234896][ T9049] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.242125][ T9049] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.250726][ T9049] device bridge_slave_1 entered promiscuous mode
[  216.291882][ T9049] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  216.303066][ T9049] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  216.326188][ T9052] IPVS: ftp: loaded support on port[0] = 21
[  216.337089][ T9049] team0: Port device team_slave_0 added
[  216.345375][ T9049] team0: Port device team_slave_1 added
21:28:30 executing program 2:
r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x4, 0x4002)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000040)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x100000000, @rand_addr="484f331d5f10b69fcfcd0d0a2186e812", 0x7fffffff}}, [0x8, 0x3, 0x80000001, 0x20, 0x0, 0xb3a8, 0x6, 0x9, 0x4, 0x49e3, 0x8, 0x9, 0x1c9e, 0x3, 0x2]}, &(0x7f0000000140)=0x100)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000180)={r1, 0x5f7b, 0x9, 0x8, 0x8, 0x101}, 0x14)
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x1, 0x40)
setsockopt$llc_int(r2, 0x10c, 0x5, &(0x7f0000000200)=0x6, 0x4)
r3 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r4 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$unlink(0x9, r3, r4)
keyctl$unlink(0x9, r4, r4)
setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000340)=0x4, 0x2)
ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000380)={0x3f, 0x7f737f7f, 0x1, @discrete={0x8000, 0xfec}})
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000003c0)={<r5=>r1, 0x7, 0x10}, &(0x7f0000000400)=0xc)
ioctl$VIDIOC_ENUM_FRAMESIZES(r2, 0xc02c564a, &(0x7f0000000440)={0x3, 0x33524742, 0x2, @stepwise={0x8000, 0x14, 0xffffffffffffffe1, 0x7fffffff, 0x8, 0x6}})
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000480)={"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"})
r6 = syz_genetlink_get_family_id$fou(&(0x7f00000008c0)='fou\x00')
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000009c0)={{{@in6=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@initdev}, 0x0, @in6=@loopback}}, &(0x7f0000000ac0)=0xe8)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000b80)={&(0x7f0000000880), 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x40, r6, 0x110, 0x70bd26, 0x1, {}, [@FOU_ATTR_PEER_PORT={0x8, 0xa, 0x4e20}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @local}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IFINDEX={0x8, 0xb, r7}, @FOU_ATTR_PEER_PORT={0x8, 0xa, 0x4e21}, @FOU_ATTR_AF={0x8, 0x2, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x84}, 0x40084)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000bc0)={0x5, 0x1, {0x3, 0x1, 0x5, 0x3, 0x7}})
sendmsg$nl_route(r0, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x21000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)=@mpls_delroute={0x24, 0x19, 0x400, 0x70bd28, 0x25dfdbfc, {0x1c, 0x10, 0x0, 0x80000000, 0xff, 0x6, 0x0, 0x5, 0x800}, [@RTA_OIF={0x8, 0x4, r7}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
r8 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000d40)=0x3, 0x4)
getresgid(&(0x7f0000000d80), &(0x7f0000000dc0), &(0x7f0000000e00))
syz_kvm_setup_cpu$x86(r8, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000e80)=[@text16={0x10, &(0x7f0000000e40)="0f01c90f23909af37fd100660feddf3e0f182136f466b8010000000f01c10f0766b80500000066b9008000000f01d90f0fb3df00b6", 0x35}], 0x1, 0x0, &(0x7f0000000ec0)=[@cr0={0x0, 0x20050000}, @dstype3={0x7, 0x6}], 0x2)
r9 = syz_open_dev$vbi(&(0x7f0000000f00)='/dev/vbi#\x00', 0x0, 0x2)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r9, 0x84, 0x23, &(0x7f0000000f40)={r5, 0x74}, 0x8)
getsockname$packet(r2, &(0x7f0000000f80), &(0x7f0000000fc0)=0x14)
socket$packet(0x11, 0x2, 0x300)
ioctl$DRM_IOCTL_AGP_RELEASE(r0, 0x6431)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r9, 0x84, 0x12, &(0x7f0000001000), &(0x7f0000001040)=0x4)
get_mempolicy(&(0x7f0000001080), &(0x7f00000010c0), 0x4, &(0x7f0000ffa000/0x2000)=nil, 0x1)

[  216.452043][ T9049] device hsr_slave_0 entered promiscuous mode
[  216.515671][ T9049] device hsr_slave_1 entered promiscuous mode
[  216.599899][ T9054] IPVS: ftp: loaded support on port[0] = 21
[  216.608916][ T9049] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.616216][ T9049] bridge0: port 2(bridge_slave_1) entered forwarding state
[  216.624294][ T9049] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.631496][ T9049] bridge0: port 1(bridge_slave_0) entered forwarding state
21:28:30 executing program 3:
setxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.nlink\x00', &(0x7f0000000080)={'L+', 0xffffffff}, 0x28, 0x3)
r0 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x5, 0x2000)
ioctl$VIDIOC_G_STD(0xffffffffffffff9c, 0x80085617, &(0x7f0000000100)=<r1=>0x0)
ioctl$VIDIOC_S_STD(r0, 0x40085618, &(0x7f0000000140)=r1)
mknod(&(0x7f0000000180)='./file0\x00', 0xa001, 0x213e1163)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000001c0)=0x5, 0x4)
ioctl$SG_GET_NUM_WAITING(r0, 0x227d, &(0x7f0000000200))
ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6)
connect$vsock_dgram(r0, &(0x7f0000000240)={0x28, 0x0, 0x2710, @my=0x0}, 0x10)
mount$9p_virtio(&(0x7f0000000280)='/dev/usbmon#\x00', &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='9p\x00', 0x0, &(0x7f0000000340)={'trans=virtio,', {[{@access_any='access=any'}, {@access_client='access=client'}, {@cachetag={'cachetag', 0x3d, 'loeth0.'}}, {@version_L='version=9p2000.L'}, {@noextend='noextend'}], [{@fsname={'fsname', 0x3d, ',-vmnet0^*'}}, {@subj_role={'subj_role'}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}]}})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x6, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x1, 0x1}]}, @typedef={0x4, 0x0, 0x0, 0x8, 0x4}, @ptr={0xb, 0x0, 0x0, 0x2, 0x3}]}, {0x0, [0x7f, 0x3e, 0x6bba9d06ede4211e, 0x6f]}}, &(0x7f0000000440)=""/38, 0x4a, 0x26, 0x1}, 0x20)
r2 = msgget(0x1, 0x100)
msgctl$IPC_INFO(r2, 0x3, &(0x7f00000004c0)=""/56)
ioctl$CAPI_NCCI_GETUNIT(r0, 0x80044327, &(0x7f0000000500)=0xa5e)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000540), &(0x7f0000000580)=0x4)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f00000005c0)={'erspan0\x00', {0x2, 0x4e22, @broadcast}})
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r0, 0x800442d2, &(0x7f0000000680)={0x3, &(0x7f0000000600)=[{0x0, 0x0, 0x0, @link_local}, {}, {}]})
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f00000006c0)={'team0\x00', {0x2, 0x4e23, @broadcast}})
r3 = accept4$llc(r0, &(0x7f0000000700)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000740)=0x10, 0x80800)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, &(0x7f0000000780), &(0x7f00000007c0)=0x4)
write$binfmt_aout(r0, &(0x7f0000000800)={{0x1cf, 0x17e2, 0xffff, 0xfe, 0x25d, 0x8, 0x2e5, 0x1}, "20547f1daa1b08cdec24a0fb8fcc9f6bafb907ec278d72fb5536716f7181be90164f2a510a365ab2d1f5a9db4706c3f7e731833ed7a4e95d4e002aad23cc0f56719ac7dde2a91fb060114c33d8abc0c8b5f8e53758fea0b8f4a2fd65300c8e18c22931881be0b2743634563ee2752cee9da64ccf558dd0abee54621ef80f26421c75f623a751ffc98113b93c2f9d451ebcc5e1a9e982a2b0e27a85759cf6120102f07df194a9281455c13c6238289c4d9234af82828ddf565bcbba125ee8e70a45a98b6c8bfba0de4b16f718881f7ef1f5c0a313e837fe6a89cc1d2a639bb8b62955bf714daee836dccab5", [[], [], [], []]}, 0x50b)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f0000000d40)={0x2, 0xfff, 0xdd, 0x40, 0x80b7, 0x3})
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000d80)={0x7, 0x8008, 0x10000, 0x40, <r4=>0x0}, &(0x7f0000000dc0)=0x10)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000e00)=r4, 0x4)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r3, 0xc0305602, &(0x7f0000000e40)={0x0, 0x8000, 0x301f})
ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000000e80)=""/249)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000fc0)={0x7, &(0x7f0000000f80)=[{0x0, 0x7f, 0x4, 0x200000000}, {0x3208, 0xd7c, 0x7, 0x2}, {0x1, 0x48, 0x80000001, 0x1a}, {0x43, 0x42, 0x400, 0x7}, {0xe7, 0x8, 0x0, 0x1ff}, {0x0, 0x3, 0x3, 0xffffffff00000001}, {0x6, 0x3, 0x800, 0x7}]})
ioctl$VIDIOC_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f0000001000)={0x0, @bt={0xf9, 0xffffffff00000000, 0x0, 0x1, 0x100000001, 0x2, 0x8, 0x7, 0x40, 0x5, 0x6, 0x8001, 0xa00000, 0x1, 0x8, 0x11}})

[  216.871393][ T9049] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.942709][ T9049] 8021q: adding VLAN 0 to HW filter on device team0
[  216.955614][ T9058] IPVS: ftp: loaded support on port[0] = 21
[  216.981992][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
21:28:31 executing program 4:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x80, 0x0)
ioctl$TCSETXF(r0, 0x5434, &(0x7f0000000040)={0x4, 0x7fff, [0x200, 0x8a, 0x1, 0xfffffffffffffff7, 0x80000001], 0x3})
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000100)=@get={0x1, &(0x7f0000000080)=""/81, 0xc2b})
open_by_handle_at(r0, &(0x7f0000000140)={0x81, 0x5, "a4bd2c823510f9ef0b0d2598a122dc25ce97ff109897403509c2af81122be3a763fd98d97901fd8ddd61de9049f73dce84bec40f95be2789816f156d3e87545b3a80a8c402f16c3bbdf8d8c99c4c4f9b846f4ed85a8573a8d0b3ade56e81d3d149dcc9e6e111c69aa899bb2a429dd36c25952e6f7a0ca76ba5"}, 0x0)
write$P9_RSTATFS(r0, &(0x7f0000000200)={0x43, 0x9, 0x2, {0x9, 0x3ff, 0x2, 0xe67, 0x3d, 0x75, 0x7f, 0x2, 0x1}}, 0x43)
ioctl$CAPI_NCCI_GETUNIT(r0, 0x80044327, &(0x7f0000000280)=0x6)
ioctl$IMDELTIMER(r0, 0x80044941, &(0x7f00000002c0)=0x1)
openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
setsockopt$ax25_int(r0, 0x101, 0x9, &(0x7f0000000340)=0x2, 0x4)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000380)={0x100, 0x7, 0x8589})
ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f00000003c0)=0x1)
ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000400))
r1 = accept$netrom(r0, &(0x7f0000000440)={{0x3, @rose}, [@rose, @default, @remote, @rose, @default, @rose, @remote, @rose]}, &(0x7f00000004c0)=0x48)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000500)='/dev/vga_arbiter\x00', 0x10000, 0x0)
r3 = semget(0x1, 0x4, 0x8)
semctl$GETALL(r3, 0x0, 0xd, &(0x7f0000000540)=""/156)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_ADD(r2, &(0x7f0000000780)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000740)={&(0x7f0000000680)={0xa8, r4, 0x113, 0x70bd2a, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x3c, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfffffffffffffff8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x80000000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x30, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_NODE={0x28, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40}, 0x4048014)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f00000007c0)={0x100000000, 0x8006, 0x0, 0xfa, <r5=>0x0}, &(0x7f0000000800)=0x10)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000840)=@assoc_value={r5, 0x2}, &(0x7f0000000880)=0x8)
getsockname$packet(r2, &(0x7f00000008c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x1000410}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x2c, r4, 0x102, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x18, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x200}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8001}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x880)
sendmsg$nl_route(r1, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)=@mpls_getnetconf={0x2c, 0x52, 0x310, 0x70bd28, 0x25dfdbff, {}, [@NETCONFA_IFINDEX={0x8, 0x1, r6}, @NETCONFA_IFINDEX={0x8, 0x1, r6}, @IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0xff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x5)
ioctl$KDDELIO(r0, 0x4b35, 0x3f)
r7 = getpid()
ptrace$getregs(0xe, r7, 0x1, &(0x7f0000000b40)=""/174)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000c00))
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000c40)={0x10001, 0x0, 0x0, 0x4, 0x40, 0x6, 0x3, 0x7, 0x1000, 0x1}, 0xb)
setsockopt$IP_VS_SO_SET_DELDEST(r2, 0x0, 0x488, &(0x7f0000000c80)={{0x0, @multicast1, 0x4e23, 0x2, 'none\x00', 0x22, 0x4, 0x6b}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e23, 0x2000, 0x91, 0x8, 0x81}}, 0x44)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000d00)={0x6, 0x9, 0x8, 0x4, 0x8, 0x5})

[  216.995390][    T5] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.015464][    T5] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.026188][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  217.088190][ T9052] chnl_net:caif_netlink_parms(): no params data found
[  217.116961][ T9054] chnl_net:caif_netlink_parms(): no params data found
[  217.131837][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  217.154884][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  217.174753][ T2993] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.182140][ T2993] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.205559][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  217.225474][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  217.234756][ T2993] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.241855][ T2993] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.250229][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  217.302170][ T9062] IPVS: ftp: loaded support on port[0] = 21
[  217.318950][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  217.333048][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
21:28:31 executing program 5:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x202, 0x0)
write$vnet(r0, &(0x7f0000000200)={0x1, {&(0x7f0000000040)=""/199, 0xc7, &(0x7f0000000140)=""/153, 0x3, 0x1}}, 0x68)
r1 = dup2(r0, r0)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f00000002c0)='SEG6\x00')
sendmsg$SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x30, r2, 0x511, 0x70bd27, 0x25dfdbfe, {}, [@SEG6_ATTR_DST={0x14, 0x1, @dev={0xfe, 0x80, [], 0x24}}, @SEG6_ATTR_ALGID={0x8, 0x6, 0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
getsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f00000003c0)={@rand_addr, @multicast2, <r3=>0x0}, &(0x7f0000000400)=0xc)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000440)={@rand_addr="b0728ea478cc9f6401928b66bd89d476", 0x40, r3})
syz_genetlink_get_family_id$SEG6(&(0x7f0000000480)='SEG6\x00')
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000004c0)={<r4=>0x0, 0x18, "69d85a848a996bcc1835c6f7786bad36b37c13dac14cac0c"}, &(0x7f0000000500)=0x20)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000540)={<r5=>r4, 0xcb}, &(0x7f0000000580)=0x8)
ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f00000005c0)=0x1)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000600)={'tunl0\x00', {0x2, 0x4e20, @remote}})
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000640))
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000680)={0xc1f, 0x1, 0x100000001, 0x6, 0x5})
ioctl$DRM_IOCTL_ADD_BUFS(r0, 0xc0206416, &(0x7f00000006c0)={0x7, 0x4, 0xffff, 0x9, 0x3, 0x100000001})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000700)={0x1, 0x0, {0xffffffffffffffff, 0x0, 0x9, 0x3, 0x6}})
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000780)={r4, 0x8}, &(0x7f00000007c0)=0x8)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000800)=@sack_info={r5, 0xffffffffffffffb4, 0x1}, 0xc)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r1, 0xc0a85322, &(0x7f0000000840))
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000900)=0x8)
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000940)=""/4096)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000001940)={r5, 0x100, 0x8}, 0x8)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000001980))
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f00000019c0), &(0x7f0000001a00)=0x14)
syz_read_part_table(0x3, 0x2, &(0x7f0000001bc0)=[{&(0x7f0000001a40)="4f0e5ab1790020f3035ef5fe15e0c93456b31aa0f656090a3b80fb57e41a704e44ac942e77ec734cf19bf706f38f53c1ca4a3e286ced4dd387dd4d1b72cb20cdfbb868e7255c5ab957d0221538440c2b0fef6eef56779cfd8f7713b692ca85c2f1cce6e719b826dd67149752947296f72f3c19e75b069b17707477e449ddae0bbd90168f89881df452c882e9d222cd38ec3c0bba", 0x94, 0x2}, {&(0x7f0000001b00)="6d4b2f82a424155a5f7f94989ec9158d0af82d015c9a9a46048643864f123ccccd85fcc1a41800724f208904b1eb1b383546f7eb0490bc13f02e2a9d514d2cf6576eeea4102d93d045cdd012a57f3c79ede2d23d7da9fec764dc9f164719d2daeabe6fe06561e1068dccbc070818c25c5539225689586e5695b02b477398fbbd0e67ed3b4dbff01ee7b92b1d0082a62e310b602d4a0f9058a1532ea0880fcb8036684a1d", 0xa4, 0x3876}])
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001c40)='IPVS\x00')
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000001d40)={&(0x7f0000001c00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001c80)={0x48, r6, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7fffffff}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e22}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x2dc}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffffffffc00}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x4810)
ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f0000001d80)=""/113)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000001e00)=0x9, 0x4)

[  217.351092][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  217.361369][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  217.374077][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  217.440829][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  217.462446][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  217.472531][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  217.483830][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  217.496422][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  217.547417][ T9054] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.557806][ T9054] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.566865][ T9054] device bridge_slave_0 entered promiscuous mode
[  217.576315][ T9049] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  217.590368][ T9052] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.599100][ T9052] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.607652][ T9052] device bridge_slave_0 entered promiscuous mode
[  217.618794][ T9052] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.627058][ T9052] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.636459][ T9052] device bridge_slave_1 entered promiscuous mode
[  217.651019][ T9054] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.658738][ T9054] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.667727][ T9054] device bridge_slave_1 entered promiscuous mode
[  217.700311][ T9052] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  217.731441][ T9054] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  217.745904][ T9052] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  217.756055][ T9064] IPVS: ftp: loaded support on port[0] = 21
[  217.771974][ T9054] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  217.828318][ T9052] team0: Port device team_slave_0 added
[  217.838201][ T9052] team0: Port device team_slave_1 added
[  217.856317][ T9054] team0: Port device team_slave_0 added
[  217.864052][ T9054] team0: Port device team_slave_1 added
[  217.978094][ T9054] device hsr_slave_0 entered promiscuous mode
[  218.024666][ T9054] device hsr_slave_1 entered promiscuous mode
[  218.101738][ T9054] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.108969][ T9054] bridge0: port 2(bridge_slave_1) entered forwarding state
[  218.116444][ T9054] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.123805][ T9054] bridge0: port 1(bridge_slave_0) entered forwarding state
[  218.142539][ T9058] chnl_net:caif_netlink_parms(): no params data found
[  218.159710][ T9049] 8021q: adding VLAN 0 to HW filter on device batadv0
[  218.227794][ T9052] device hsr_slave_0 entered promiscuous mode
[  218.274743][ T9052] device hsr_slave_1 entered promiscuous mode
[  218.335934][ T9055] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.343865][ T9055] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.460120][ T9062] chnl_net:caif_netlink_parms(): no params data found
[  218.503087][ T9058] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.511615][ T9058] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.525709][ T9058] device bridge_slave_0 entered promiscuous mode
21:28:32 executing program 0:
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000000)='security.ima\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="0405389a7984f427a7e35d28f38b6888e1b7177d88e47848aacbd500000000101a230eb7a2d9b7ec9d0237e4649ba204e7c9979ea2a36f406301f7fcbfa71b2bcef88add3fb0aa1a736538da00002000"/90], 0x1, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x0, 0x40)

[  218.627397][ T9058] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.637537][ T9058] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.647735][ T9058] device bridge_slave_1 entered promiscuous mode
21:28:32 executing program 0:

[  218.674351][   T26] kauditd_printk_skb: 3 callbacks suppressed
[  218.674367][   T26] audit: type=1804 audit(1560979712.738:31): pid=9080 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir778517750/syzkaller.paGQSb/1/bus" dev="sda1" ino=16519 res=1
21:28:32 executing program 0:

[  218.745359][   T26] audit: type=1804 audit(1560979712.748:32): pid=9081 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir778517750/syzkaller.paGQSb/1/bus" dev="sda1" ino=16519 res=1
21:28:32 executing program 0:

21:28:32 executing program 0:

[  218.853952][ T9058] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  218.871526][ T9062] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.883248][ T9062] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.891819][ T9062] device bridge_slave_0 entered promiscuous mode
21:28:33 executing program 0:

[  218.914886][ T9058] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  218.946045][ T9064] chnl_net:caif_netlink_parms(): no params data found
[  218.956839][ T9062] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.964033][ T9062] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.977437][ T9062] device bridge_slave_1 entered promiscuous mode
21:28:33 executing program 0:
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0xfffffffffffffffc, 0x0, 0x0, 0x401}, 0x1c)
sendmmsg(r0, &(0x7f0000009a00)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000700)=@tipc=@name={0x1e, 0x3, 0x0, {{0x2}}}, 0x80, 0x0}}], 0x2, 0x0)

[  219.074057][ T9052] 8021q: adding VLAN 0 to HW filter on device bond0
[  219.103643][ T9058] team0: Port device team_slave_0 added
[  219.145400][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  219.153714][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  219.173107][ T9052] 8021q: adding VLAN 0 to HW filter on device team0
[  219.186255][ T9058] team0: Port device team_slave_1 added
[  219.210135][ T9062] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  219.222224][ T9062] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  219.252191][ T9054] 8021q: adding VLAN 0 to HW filter on device bond0
[  219.259860][ T9064] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.267127][ T9064] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.275327][ T9064] device bridge_slave_0 entered promiscuous mode
[  219.290182][ T9064] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.297491][ T9064] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.305684][ T9064] device bridge_slave_1 entered promiscuous mode
[  219.346548][ T9058] device hsr_slave_0 entered promiscuous mode
[  219.384686][ T9058] device hsr_slave_1 entered promiscuous mode
[  219.438234][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  219.447730][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  219.457471][   T17] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.464717][   T17] bridge0: port 1(bridge_slave_0) entered forwarding state
[  219.473756][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  219.494005][ T9054] 8021q: adding VLAN 0 to HW filter on device team0
[  219.530660][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  219.539766][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  219.548560][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  219.559220][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  219.570373][   T22] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.577779][   T22] bridge0: port 2(bridge_slave_1) entered forwarding state
[  219.594275][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  219.603133][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  219.611977][ T9055] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.622759][ T9055] bridge0: port 1(bridge_slave_0) entered forwarding state
[  219.631089][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  219.640416][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  219.649613][ T9055] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.656906][ T9055] bridge0: port 2(bridge_slave_1) entered forwarding state
[  219.667233][ T9062] team0: Port device team_slave_0 added
[  219.675491][ T9064] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  219.696732][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  219.707720][ T9062] team0: Port device team_slave_1 added
[  219.728315][ T9064] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  219.786095][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  219.795148][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  219.803935][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  219.816494][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  219.826580][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  219.835535][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  219.843926][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  219.852425][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  219.861364][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  219.870105][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  219.879673][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  219.938267][ T9062] device hsr_slave_0 entered promiscuous mode
[  219.994975][ T9062] device hsr_slave_1 entered promiscuous mode
[  220.046560][ T9064] team0: Port device team_slave_0 added
[  220.069943][ T9052] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  220.080379][ T9064] team0: Port device team_slave_1 added
[  220.088795][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  220.098903][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  220.108559][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  220.120199][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  220.153899][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  220.165467][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  220.173937][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  220.183757][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  220.221846][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  220.232298][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  220.318130][ T9064] device hsr_slave_0 entered promiscuous mode
[  220.374809][ T9064] device hsr_slave_1 entered promiscuous mode
[  220.437047][ T9054] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  220.451619][ T9052] 8021q: adding VLAN 0 to HW filter on device batadv0
[  220.538120][ T9054] 8021q: adding VLAN 0 to HW filter on device batadv0
[  220.659777][ T9058] 8021q: adding VLAN 0 to HW filter on device bond0
[  220.681075][ T9062] 8021q: adding VLAN 0 to HW filter on device bond0
21:28:34 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  220.711831][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  220.732412][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  220.763573][ T9058] 8021q: adding VLAN 0 to HW filter on device team0
[  220.792688][ T9062] 8021q: adding VLAN 0 to HW filter on device team0
[  220.808710][ T9111] mmap: syz-executor.1 (9111) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  220.837306][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  220.846234][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  220.856473][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  220.865669][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  220.875251][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.882338][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.890858][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  220.899976][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  220.909422][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.916653][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.933813][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  220.984730][ T9064] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.009212][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  221.024850][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  221.033634][ T2993] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.040817][ T2993] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.050462][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  221.059914][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  221.069403][ T2993] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.076789][ T2993] bridge0: port 2(bridge_slave_1) entered forwarding state
21:28:35 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_IO(r0, 0x1276, 0x0)

[  221.084753][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  221.093835][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  221.103601][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  221.111854][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  221.140993][ T9064] 8021q: adding VLAN 0 to HW filter on device team0
[  221.182743][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  221.198690][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  221.221949][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  221.232762][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  221.243038][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  221.253729][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  221.263908][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.297446][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  221.306445][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  221.315698][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  221.324899][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.333280][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.343514][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  221.352649][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.361851][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.370494][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.379674][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.388250][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.397266][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  221.406267][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  221.415836][ T2993] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.422941][ T2993] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.430797][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  221.440133][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  221.449018][ T2993] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.456488][ T2993] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.465547][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  221.475443][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  221.483536][ T2993] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  221.511852][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  221.523386][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  221.532738][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  221.545758][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  221.555021][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.564863][ T9055] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  221.588421][ T9058] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  221.600544][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.611091][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.619656][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.628422][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.637381][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.645976][   T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.681348][ T9058] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.689963][ T9064] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  221.708342][ T9062] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.746569][ T9064] 8021q: adding VLAN 0 to HW filter on device batadv0
21:28:36 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'sit0\x00'})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'sit0\x00\x00\x00\x00\x00\x00\xfc\x00', 0x141})

21:28:36 executing program 4:
r0 = memfd_create(&(0x7f0000000300)='\x0f\x02\x80\x05,\x04\xad\xe5\xba\xed\xfa\x9c:!)\xa1\ff\x9a\xeazo\xf1\tB\xd9`_\x05,g\x10KSW\x92Q\xcbo\xdfJ|\xe2\x9bc/\x13\x93-\bH=\xf3\xd1\xb6\xd98\xf5\xc9\xf4\xf8\xa5Ci\x8c\xc6\x85(7\xdc\x12,\b\xca\x88i88\n{H\xe9\x7f[\xea\'\\\x06h\xc9\x14v\x14 \xef\x12\xe5\xa9>\x1e\"\\\x9f@\x1e\xc1\xee1JJ\xa8\xb2\x15\t\xbet\x90\x92', 0x0)
write$eventfd(r0, &(0x7f0000000000)=0x2000000000007f, 0x8)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
sendfile(r0, r0, &(0x7f00000000c0), 0xfeff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x60, &(0x7f0000000040)={0x0, @empty, 0x0, 0x0, 'dh\x00'}, 0x2c)

[  222.195704][ T9150] device sit0 entered promiscuous mode
21:28:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000600))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCCONS(r1, 0x541d)

21:28:36 executing program 2:
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, '\x00\x00\x00\x00\x00\x00V\xe4\xe19\x00pI\x00', 0x6}, 0x18)
ioctl(r0, 0x200000000008916, &(0x7f0000000000))
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
ioctl(r0, 0x8936, &(0x7f0000000000))

21:28:36 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
unshare(0x8020000)
semop(0x0, &(0x7f0000000000)=[{0x0, 0x0, 0x1800}], 0x1)
semget$private(0x0, 0x4007, 0x0)
unshare(0x8000200)

21:28:36 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:36 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000240)=0xfff, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x20000804, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000480), 0xfffffffffffffdce, 0x0, 0x0, 0x150)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
getuid()
stat(0x0, 0x0)
clock_gettime(0x0, 0x0)
shutdown(r0, 0x400000000000001)

21:28:36 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:36 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x3e, &(0x7f0000000200)={@local, @local, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, @remote={0xac, 0x223}}, @icmp=@parameter_prob={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local={0xac, 0x223}, @empty=0x1000000}}}}}}, 0x0)
recvfrom$inet(r0, &(0x7f00000000c0)=""/89, 0x59, 0x400000000005, 0x0, 0x0)
recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x800e00b95)

21:28:36 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:36 executing program 1:
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:36 executing program 4:
r0 = socket(0x400000000010, 0x400000000000003, 0x0)
write(r0, &(0x7f0000001100)="2400000021002551071cef64ff00fc020200000000100f000ee1000c0800180000000000", 0x24)

[  222.989717][ T9147] device sit0 left promiscuous mode
21:28:37 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'sit0\x00'})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'sit0\x00\x00\x00\x00\x00\x00\xfc\x00', 0x141})

21:28:37 executing program 1:
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:37 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
lsetxattr$trusted_overlay_upper(0x0, &(0x7f0000000100)='trusted.overlay.upper\x00', 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000000c0)=ANY=[], 0x0)

21:28:37 executing program 2:
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, '\x00\x00\x00\x00\x00\x00V\xe4\xe19\x00pI\x00', 0x6}, 0x18)
ioctl(r0, 0x200000000008916, &(0x7f0000000000))
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
ioctl(r0, 0x8936, &(0x7f0000000000))

[  223.293879][ T9200] device sit0 entered promiscuous mode
21:28:38 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
lsetxattr$trusted_overlay_upper(0x0, &(0x7f0000000100)='trusted.overlay.upper\x00', 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000000c0)=ANY=[], 0x0)

21:28:38 executing program 1:
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:38 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'sit0\x00'})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'sit0\x00\x00\x00\x00\x00\x00\xfc\x00', 0x141})

21:28:38 executing program 0:
r0 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r0, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40010140, &(0x7f0000000980)={0x0, 0x1c9c380})

21:28:38 executing program 5:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = inotify_init()
read$FUSE(r0, 0x0, 0x0)

21:28:38 executing program 2:
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, '\x00\x00\x00\x00\x00\x00V\xe4\xe19\x00pI\x00', 0x6}, 0x18)
ioctl(r0, 0x200000000008916, &(0x7f0000000000))
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
ioctl(r0, 0x8936, &(0x7f0000000000))

21:28:38 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  224.491898][ T9225] device sit0 left promiscuous mode
21:28:38 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000600))
r1 = syz_open_pts(r0, 0x0)
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0x35b)
ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000040)={0x17})
semctl$GETZCNT(0x0, 0x0, 0xf, &(0x7f00000001c0)=""/165)

21:28:38 executing program 4:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
msgsnd(0x0, &(0x7f0000000740)={0x3, "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"}, 0xfd1, 0x0)

21:28:38 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  224.659999][    C0] hrtimer: interrupt took 29926 ns
21:28:38 executing program 1:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:38 executing program 0:
socket$inet_udplite(0x2, 0x2, 0x88)
poll(&(0x7f0000000200), 0x2000000000000004, 0x4e)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r0, 0x0, 0xcd16, 0x0, 0x0, 0x800e00817)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/20, 0x14}], 0x1}, 0x0)
shutdown(r0, 0x0)

21:28:38 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:39 executing program 1:
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x44ff})
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x1f, 0x0, &(0x7f0000000000))
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000002900)='/dev/null\x00', 0x80000, 0x0)
ioctl$ASHMEM_GET_PROT_MASK(r0, 0x7706, &(0x7f0000000240))
r1 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff)
signalfd4(r1, 0x0, 0x0, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f00000002c0)=""/66)
creat(0x0, 0x0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r2)
setsockopt$inet6_tcp_int(r2, 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
gettid()
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000fffffffe)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f0000000080)='cgroup\x00', 0x0, 0x0)
chdir(0x0)

[  225.074305][ T9231] device sit0 entered promiscuous mode
21:28:39 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$sock_timeval(r0, 0xffff, 0x1006, &(0x7f0000000000)={0xcf8}, 0x10)
msgget(0x2, 0x0)
recvfrom$inet(r0, 0x0, 0xfffffec1, 0x0, 0x0, 0x800e00551)
shutdown(r0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
preadv(r1, &(0x7f0000001380)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x4, 0x0)
recvfrom$inet(r1, 0x0, 0xffffff05, 0x2, 0x0, 0x800e0074e)
shutdown(r1, 0x0)

21:28:39 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:40 executing program 5:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = inotify_init()
read$FUSE(r0, 0x0, 0x0)

21:28:40 executing program 1:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x60002, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000100)="11dca5055e0bcfec7be070")
write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000000400)={0x16, 0x98, 0xfa00, {0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, @ib={0x1b, 0x0, 0x0, {"8070aecdad3e059e85c70010073045d4"}}}}, 0xa0)

21:28:40 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca5055e0bcfec7be070")
r1 = socket$inet(0x2, 0x3, 0x19)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@loopback}}, 0xe8)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f00000002c0)={@multicast2, @local}, 0x10)
close(r1)

21:28:40 executing program 2:
perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x5c64, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x3102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
wait4(0x0, 0x0, 0x80000000, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/uts\x00')
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
writev(r0, &(0x7f0000000a80)=[{&(0x7f0000000180)='\x00', 0x1}], 0x1)
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

21:28:40 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:40 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x9e, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=@getnetconf={0x14, 0x52, 0x201}, 0x14}}, 0x0)

21:28:40 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:40 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
clone(0x2002102001ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file0\x00', 0x0, 0x11000, 0x0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, 0x0, 0x0)

21:28:40 executing program 1:
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=@sha1={0x1, "b65f527e9d6efcccf132355c4b666eea1bebd877"}, 0x32b, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0)

21:28:40 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x20000000003e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
listen(r0, 0x0)

21:28:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0)
ioctl$SG_IO(r0, 0x2286, 0x0)

[  226.488508][   T26] audit: type=1804 audit(1560979720.558:33): pid=9299 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir211173911/syzkaller.jhZAZn/13/bus" dev="sda1" ino=16569 res=1
21:28:40 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x335, 0x700000000000000)

[  226.606728][   T26] audit: type=1804 audit(1560979720.618:34): pid=9303 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir211173911/syzkaller.jhZAZn/13/bus" dev="sda1" ino=16569 res=1
21:28:41 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="c0dca5055e0bcfec7be070")
r1 = creat(&(0x7f0000000340)='./file0\x00', 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
write$cgroup_type(r1, &(0x7f0000000240)='threaded\x00', 0xf96d)
fallocate(r1, 0x0, 0x5e89, 0xfff3)
write$UHID_INPUT(r1, &(0x7f0000000c40)={0x8, "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", 0x1000}, 0x1006)

21:28:41 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000440)=ANY=[], 0x42)
ioctl$SG_IO(r0, 0x227d, 0x0)

21:28:41 executing program 0:
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000100)=0x9, 0x4)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="c0dca5055e00b4ec7be070")
listen(r0, 0x100000001)
r2 = accept4(r0, 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x0)
inotify_rm_watch(0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb)
recvmmsg(r2, &(0x7f0000004940)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

21:28:41 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")

21:28:41 executing program 3:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000040)=0x1, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
recvmmsg(r0, &(0x7f0000008880), 0x400000000000249, 0x44000102, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

21:28:41 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:41 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x335, 0x700000000000000)

[  227.263639][ T9334] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
21:28:41 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='pagemap\x00')
read$eventfd(r0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)

21:28:41 executing program 1:
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, '\x00\x00\x00\x00\x00\x00V\xe4\xe19\x00pI\x00', 0x6}, 0x18)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x8936, &(0x7f0000000000))

[  227.373667][ T9325] XFS (loop2): Invalid superblock magic number
21:28:41 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmmsg$inet6(r1, &(0x7f0000004800)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB='\x00'/16], 0x10}}], 0x1, 0x0)

21:28:41 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:41 executing program 0:
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000100)=0x9, 0x4)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="c0dca5055e00b4ec7be070")
listen(r0, 0x100000001)
r2 = accept4(r0, 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x0)
inotify_rm_watch(0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb)
recvmmsg(r2, &(0x7f0000004940)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

21:28:41 executing program 5:
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(0xffffffffffffffff, 0x1000008912, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000001f40)='/dev/full\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000002640)=""/207, 0xfffffede, 0x0)

21:28:41 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:41 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r1 = syz_open_procfs(0x0, &(0x7f0000000200)='pagemap\x00')
preadv(r1, &(0x7f0000000040)=[{&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000000100)=""/34, 0x10000017a}], 0x2, 0x0)

21:28:41 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000440)=ANY=[], 0x42)

21:28:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580)='/dev//.\x00', 0x0, 0x0)
r1 = dup2(r0, r0)
utimensat(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x200)

21:28:41 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:42 executing program 5:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000240)=0xfff, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x20000804, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000080)='sit0\x00', 0x10)
sendto$inet(r0, &(0x7f0000000480), 0xfffffffffffffdce, 0x0, 0x0, 0x150)
getuid()
stat(&(0x7f0000000540)='./file0\x00', 0x0)
shutdown(r0, 0x400000000000001)

21:28:42 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:42 executing program 2:
poll(&(0x7f0000000000), 0x22f3, 0x4e)
fcntl$dupfd(0xffffffffffffffff, 0x11, 0xffffffffffffffff)
socket$inet(0x2, 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x104, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
socket$inet6_sctp(0x1c, 0x1000000000005, 0x84)
fcntl$setflags(0xffffffffffffffff, 0x2, 0x0)
mlock(&(0x7f0000ffe000/0x1000)=nil, 0x1000)
getsockname$unix(0xffffffffffffffff, 0x0, &(0x7f0000001180))
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$inet(r1, 0x0, 0xfffffd26, 0x0, 0x0, 0x800e00746)
ppoll(&(0x7f0000000000)=[{}], 0x1, 0x0, &(0x7f0000000080), 0x8)
shutdown(r1, 0x0)

21:28:42 executing program 3:
rt_sigprocmask(0x0, &(0x7f0000000040)={0x7ff}, 0x0, 0x8)
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x1f, r0, 0x0, 0x0)

21:28:42 executing program 4:
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000440)=ANY=[], 0x42)
ioctl$SG_IO(r0, 0x2285, 0x0)

21:28:42 executing program 3:
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000300)={0x800100000011, @multicast2, 0x0, 0x0, 'lblc\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x15000000000000, 0x485, 0x0, 0x0)

21:28:42 executing program 4:
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:42 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000440)=ANY=[], 0x42)
ioctl$SG_IO(r0, 0x2286, 0x0)

21:28:42 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:42 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x9, 0x1, {0xb, @pix={0x0, 0xffffffff00000001}}})
mmap$binder(&(0x7f0000ff8000/0x7000)=nil, 0x7000, 0x1, 0x11, r0, 0x0)

21:28:42 executing program 5:
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000100)=0x9, 0x4)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000080)="c0dca5055e00b4ec7be070")
listen(r0, 0x100000001)
r2 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb)
recvmmsg(r2, &(0x7f0000004940)=[{{&(0x7f00000001c0)=@rc, 0x80, &(0x7f0000000040)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)

21:28:42 executing program 4:
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:42 executing program 1:

21:28:43 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f0000000140)=0x100000001, 0x4)
setsockopt$inet_tcp_int(r1, 0x6, 0x18, &(0x7f0000000100)=0xffffffff80000001, 0x4)
bind$inet(r1, &(0x7f0000738ff0)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000000c0)=[@mss, @mss, @mss, @mss, @timestamp, @sack_perm], 0x132)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000280), 0x7)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0xff6e)

21:28:43 executing program 5:

21:28:43 executing program 3:
shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ff7000/0x3000)=nil)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ff8000/0x1000)=nil)
unshare(0x8000400)

21:28:43 executing program 1:
syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000640)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

21:28:43 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140), 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:43 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:43 executing program 5:
clock_gettime(0x297ae6228138f4af, 0x0)

[  229.518381][ T9473] FAT-fs (loop1): bogus number of reserved sectors
[  229.545874][ T9473] FAT-fs (loop1): Can't find a valid FAT filesystem
21:28:43 executing program 3:

[  229.666015][ T9473] FAT-fs (loop1): bogus number of reserved sectors
21:28:43 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140), 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:43 executing program 5:

[  229.764615][ T9473] FAT-fs (loop1): Can't find a valid FAT filesystem
21:28:43 executing program 3:

21:28:43 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:44 executing program 2:

21:28:44 executing program 1:

21:28:44 executing program 5:

21:28:44 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140), 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:44 executing program 3:

21:28:44 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:44 executing program 1:

21:28:44 executing program 3:

21:28:44 executing program 5:

21:28:44 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:44 executing program 2:

21:28:44 executing program 1:

21:28:44 executing program 5:

21:28:44 executing program 3:

21:28:44 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:44 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:44 executing program 1:

21:28:44 executing program 2:

21:28:44 executing program 5:

21:28:45 executing program 3:

21:28:45 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:45 executing program 1:

21:28:45 executing program 2:

21:28:45 executing program 5:

21:28:45 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:45 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:45 executing program 3:

21:28:45 executing program 2:

21:28:45 executing program 1:

21:28:45 executing program 5:

21:28:45 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:45 executing program 3:

21:28:45 executing program 5:

21:28:45 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:45 executing program 1:

21:28:45 executing program 2:

21:28:45 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:45 executing program 3:

21:28:45 executing program 1:

21:28:45 executing program 5:

21:28:45 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:45 executing program 3:

21:28:45 executing program 2:

21:28:46 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:46 executing program 1:

21:28:46 executing program 3:

21:28:46 executing program 2:

21:28:46 executing program 5:

21:28:46 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:46 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:46 executing program 3:

21:28:46 executing program 2:

21:28:46 executing program 1:

21:28:46 executing program 5:

21:28:46 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:46 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:46 executing program 3:

21:28:46 executing program 2:

21:28:46 executing program 5:

21:28:46 executing program 1:

21:28:46 executing program 3:

21:28:46 executing program 2:

21:28:46 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, 0x0, 0x0, 0x700000000000000)

21:28:46 executing program 5:

21:28:46 executing program 3:

21:28:46 executing program 1:

21:28:47 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:47 executing program 2:

21:28:47 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, 0x0, 0x0, 0x700000000000000)

21:28:47 executing program 5:

21:28:47 executing program 1:

21:28:47 executing program 2:

21:28:47 executing program 3:

21:28:47 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, 0x0, 0x0, 0x700000000000000)

21:28:47 executing program 5:

21:28:47 executing program 1:

21:28:47 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x0)

21:28:47 executing program 3:

21:28:47 executing program 2:

21:28:47 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:47 executing program 5:

21:28:47 executing program 1:

21:28:47 executing program 2:

21:28:47 executing program 3:

21:28:47 executing program 5:

21:28:47 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x0)

21:28:47 executing program 1:

21:28:48 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 2:

21:28:48 executing program 3:

21:28:48 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x50000}]})
setsockopt$inet_MCAST_LEAVE_GROUP(0xffffffffffffff9c, 0x0, 0x2d, 0x0, 0xffffffffffffff48)

21:28:48 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
r1 = memfd_create(&(0x7f00000002c0)='\x00', 0x3)
write$binfmt_misc(r1, &(0x7f0000000040)=ANY=[], 0xffffff56)
fcntl$addseals(r1, 0x409, 0x8)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

21:28:48 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x10032, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0xd, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8)
mmap(&(0x7f0000000000/0x22000)=nil, 0x22000, 0xfffffbffffffffff, 0x2000000000032, 0xffffffffffffffff, 0x0)
close(r0)

21:28:48 executing program 1:

21:28:48 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 4:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x0)

21:28:48 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x50000}]})
ioctl$sock_SIOCSPGRP(0xffffffffffffff9c, 0x8902, 0x0)

21:28:48 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:48 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:49 executing program 2 (fault-call:2 fault-nth:0):
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:49 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:49 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:49 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:49 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:49 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:49 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
close(r0)

21:28:49 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  235.340705][ T9772] FAULT_INJECTION: forcing a failure.
[  235.340705][ T9772] name failslab, interval 1, probability 0, space 0, times 1
[  235.380352][ T9772] CPU: 1 PID: 9772 Comm: syz-executor.2 Not tainted 5.2.0-rc5+ #37
[  235.388314][ T9772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  235.398395][ T9772] Call Trace:
[  235.401729][ T9772]  dump_stack+0x172/0x1f0
[  235.406106][ T9772]  should_fail.cold+0xa/0x15
[  235.410916][ T9772]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  235.416788][ T9772]  ? ___might_sleep+0x163/0x280
[  235.416816][ T9772]  __should_failslab+0x121/0x190
[  235.416852][ T9772]  should_failslab+0x9/0x14
[  235.416864][ T9772]  __kmalloc+0x2d9/0x740
[  235.435695][ T9772]  ? __lock_acquire+0x54f/0x5490
[  235.435713][ T9772]  ? _parse_integer+0x190/0x190
[  235.435729][ T9772]  ? rw_copy_check_uvector+0x28c/0x330
[  235.435746][ T9772]  rw_copy_check_uvector+0x28c/0x330
[  235.435765][ T9772]  ? mark_held_locks+0xf0/0xf0
[  235.435786][ T9772]  import_iovec+0xbf/0x200
[  235.435805][ T9772]  ? dup_iter+0x260/0x260
[  235.435838][ T9772]  ? __fget+0x35a/0x550
[  235.451102][ T9772]  vfs_readv+0xc6/0x160
[  235.451121][ T9772]  ? lock_downgrade+0x880/0x880
[  235.451139][ T9772]  ? compat_rw_copy_check_uvector+0x3f0/0x3f0
21:28:49 executing program 2 (fault-call:2 fault-nth:1):
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

[  235.451156][ T9772]  ? kasan_check_read+0x11/0x20
[  235.451184][ T9772]  ? __fget+0x381/0x550
[  235.465771][ T9772]  ? ksys_dup3+0x3e0/0x3e0
[  235.465795][ T9772]  ? wait_for_completion+0x440/0x440
[  235.465824][ T9772]  ? __fget_light+0x1a9/0x230
[  235.465843][ T9772]  do_preadv+0x1c4/0x280
[  235.474941][ T9772]  ? do_readv+0x330/0x330
[  235.474960][ T9772]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  235.474976][ T9772]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  235.474991][ T9772]  ? do_syscall_64+0x26/0x680
[  235.475007][ T9772]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  235.475021][ T9772]  ? do_syscall_64+0x26/0x680
[  235.475042][ T9772]  __x64_sys_preadv+0x9a/0xf0
[  235.484065][ T9772]  do_syscall_64+0xfd/0x680
[  235.484089][ T9772]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  235.484102][ T9772] RIP: 0033:0x4592c9
[  235.484119][ T9772] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:28:49 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
close(r0)

[  235.484126][ T9772] RSP: 002b:00007fc481e53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  235.484140][ T9772] RAX: ffffffffffffffda RBX: 00007fc481e53c90 RCX: 00000000004592c9
[  235.484148][ T9772] RDX: 0000000000000335 RSI: 00000000200017c0 RDI: 0000000000000003
[  235.484156][ T9772] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  235.484165][ T9772] R10: 0700000000000000 R11: 0000000000000246 R12: 00007fc481e546d4
[  235.484182][ T9772] R13: 00000000004c63de R14: 00000000004daef8 R15: 0000000000000004
[  235.756064][ T9785] FAULT_INJECTION: forcing a failure.
[  235.756064][ T9785] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  235.769404][ T9785] CPU: 0 PID: 9785 Comm: syz-executor.2 Not tainted 5.2.0-rc5+ #37
[  235.777349][ T9785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  235.787686][ T9785] Call Trace:
[  235.791006][ T9785]  dump_stack+0x172/0x1f0
[  235.795366][ T9785]  should_fail.cold+0xa/0x15
[  235.799989][ T9785]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  235.805823][ T9785]  should_fail_alloc_page+0x50/0x60
[  235.805839][ T9785]  __alloc_pages_nodemask+0x1a1/0x8d0
[  235.805852][ T9785]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  235.805869][ T9785]  ? __alloc_pages_slowpath+0x28f0/0x28f0
[  235.805881][ T9785]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  235.805906][ T9785]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  235.816482][ T9785]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  235.816506][ T9785]  cache_grow_begin+0x9d/0x650
21:28:49 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:49 executing program 3 (fault-call:1 fault-nth:0):
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:28:49 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000005000)='/dev/sg#\x00', 0x0, 0x8002)
write(r0, &(0x7f0000000100)="b63db85e1e8d020000000000f0011dcc606aed5ed2bc7018cebc9b97ae21b14d872c678ce22c9b16eb0c1cac69313612a511004bbc69146d17", 0xfdd0)

[  235.816522][ T9785]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  235.816537][ T9785]  __kmalloc+0x67c/0x740
[  235.816554][ T9785]  ? __lock_acquire+0x54f/0x5490
[  235.816572][ T9785]  ? rw_copy_check_uvector+0x28c/0x330
[  235.816588][ T9785]  rw_copy_check_uvector+0x28c/0x330
[  235.816609][ T9785]  ? mark_held_locks+0xf0/0xf0
[  235.840049][ T9785]  import_iovec+0xbf/0x200
[  235.840070][ T9785]  ? dup_iter+0x260/0x260
[  235.840085][ T9785]  ? __fget+0x35a/0x550
[  235.840108][ T9785]  vfs_readv+0xc6/0x160
[  235.840125][ T9785]  ? lock_downgrade+0x880/0x880
[  235.840159][ T9785]  ? compat_rw_copy_check_uvector+0x3f0/0x3f0
[  235.871636][ T9785]  ? kasan_check_read+0x11/0x20
[  235.871658][ T9785]  ? __fget+0x381/0x550
[  235.871679][ T9785]  ? ksys_dup3+0x3e0/0x3e0
[  235.871704][ T9785]  ? wait_for_completion+0x440/0x440
[  235.894625][ T9785]  ? __fget_light+0x1a9/0x230
[  235.894647][ T9785]  do_preadv+0x1c4/0x280
[  235.894665][ T9785]  ? do_readv+0x330/0x330
[  235.894681][ T9785]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  235.894695][ T9785]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  235.894711][ T9785]  ? do_syscall_64+0x26/0x680
[  235.894728][ T9785]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  235.894742][ T9785]  ? do_syscall_64+0x26/0x680
[  235.894761][ T9785]  __x64_sys_preadv+0x9a/0xf0
[  235.894787][ T9785]  do_syscall_64+0xfd/0x680
[  235.894805][ T9785]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  235.894817][ T9785] RIP: 0033:0x4592c9
21:28:50 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
close(r0)

[  235.894834][ T9785] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  235.894843][ T9785] RSP: 002b:00007fc481e53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  235.894859][ T9785] RAX: ffffffffffffffda RBX: 00007fc481e53c90 RCX: 00000000004592c9
[  235.894868][ T9785] RDX: 0000000000000335 RSI: 00000000200017c0 RDI: 0000000000000003
[  235.894877][ T9785] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  235.894886][ T9785] R10: 0700000000000000 R11: 0000000000000246 R12: 00007fc481e546d4
21:28:50 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  235.894895][ T9785] R13: 00000000004c63de R14: 00000000004daef8 R15: 0000000000000004
[  235.948695][ T9791] sg_write: data in/out 167162/64930 bytes for SCSI command 0xe2-- guessing data in;
[  235.948695][ T9791]    program syz-executor.4 not setting count and/or reply_len properly
21:28:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:50 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'veth0_to_hsr\x00'})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000480)={{{@in6=@mcast2, @in=@loopback}}, {{@in=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000580)=0xe8)
getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x15, &(0x7f00000005c0)={@remote, <r1=>0x0}, &(0x7f0000000600)=0x14)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>r1})
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x40, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r3, 0x54a2)
ioctl$NBD_DO_IT(r3, 0xab03)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000240)={r2, 0x2, 0x6, @dev}, 0x10)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x3000008912, &(0x7f0000000080)="c0dca5055e00b4ec7be070")
close(r0)
vmsplice(r4, &(0x7f00000001c0)=[{&(0x7f0000000100)="535a9dc3faf6a0ee5e799db0979c4f17d59b3bb87c5b37a704c8e6992c5b43866b8b9a9021f82566873f78238c8d6aa5860af73bea0fa8934d164717fb25a874eb81b9fad5a5fa58400334b3cdc5e96e5d23b2c1d41a5b0b8c1c80b78cd9ae8e7e0a0fa69875ac2c3bba4112f6b309b1", 0x70}, {&(0x7f0000000040)="179b3c7d7ac4cbbdb1638402736131", 0xf}, {&(0x7f0000000180)="95f9cc8129b3cecd92e578f7ba3af0e577bd9076d263817dad43831cf72dd0a2d0c6ec16d5c6", 0x26}, {&(0x7f00000002c0)="7eb171ce5cb29f3009ef920500efe3e84a20e61e13e4e3dbc6cc594c836976fece66c534d6b74550456eaa02907e3e211832aa348d26a60455f947ce7723f67c44f4faf05fe33dc3f14ce728da7418afb6c28be8f26dc18841d4bc57862c1e839a40e3b12a16cb63d6df94d8c2c63199ef24a2e5aedaeaf22f0916e7f9050637fa", 0x81}, {&(0x7f0000000380)="8482fe9ae97666a40cc0dfb7f622a9508b250853fe3dbc34657ae91ce597d75494ab710a1684a50ee0067be5bdacbb14ccf0273e945e78e27dffdb48ac934cb9632ebeecd8a118d553d4101e8bb7b48bf95c1a11449ff566f5d70ac289e1b77684515c824ca5f1dd19277687d6ef0884ac89eb36d72e8921167128d4cedd6cf08dfe592cbbd209c33ff74e00279098e15a64ae2c8cd7a99fd62053fb0db6bd69d7158110dd36a09593b44b8aad700ef7e9798e86014e", 0xb6}], 0x5, 0x8)

21:28:50 executing program 1:
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:50 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:50 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4004, 0x0, 0x0, 0x0)

21:28:50 executing program 2 (fault-call:2 fault-nth:2):
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:50 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x7ffffffff000, 0x0, 0x0, 0x0)

21:28:50 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  236.515397][ T9820] FAULT_INJECTION: forcing a failure.
[  236.515397][ T9820] name failslab, interval 1, probability 0, space 0, times 0
[  236.607953][ T9820] CPU: 1 PID: 9820 Comm: syz-executor.2 Not tainted 5.2.0-rc5+ #37
[  236.616145][ T9820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  236.626669][ T9820] Call Trace:
[  236.630004][ T9820]  dump_stack+0x172/0x1f0
[  236.634389][ T9820]  should_fail.cold+0xa/0x15
[  236.639035][ T9820]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  236.639060][ T9820]  ? ___might_sleep+0x163/0x280
[  236.639085][ T9820]  __should_failslab+0x121/0x190
21:28:50 executing program 1:
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:50 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ip_tables_names\x00')
getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
sendfile(r0, r1, 0x0, 0x8000)

[  236.655106][ T9820]  should_failslab+0x9/0x14
[  236.659720][ T9820]  kmem_cache_alloc_node_trace+0x26d/0x720
[  236.665551][ T9820]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  236.672419][ T9820]  __kmalloc_node+0x3d/0x70
[  236.677042][ T9820]  kvmalloc_node+0x68/0x100
[  236.681879][ T9820]  traverse+0x3e9/0x740
[  236.686065][ T9820]  ? seq_dentry+0x2d0/0x2d0
[  236.690592][ T9820]  seq_read+0x8dd/0x1110
[  236.695878][ T9820]  ? seq_dentry+0x2d0/0x2d0
[  236.700435][ T9820]  proc_reg_read+0x1fc/0x2c0
[  236.705045][ T9820]  ? proc_reg_compat_ioctl+0x2a0/0x2a0
[  236.710523][ T9820]  ? rw_verify_area+0x126/0x360
[  236.716380][ T9820]  do_iter_read+0x4a4/0x660
[  236.720901][ T9820]  ? dup_iter+0x260/0x260
[  236.725264][ T9820]  vfs_readv+0xf0/0x160
[  236.729452][ T9820]  ? lock_downgrade+0x880/0x880
[  236.734427][ T9820]  ? compat_rw_copy_check_uvector+0x3f0/0x3f0
[  236.734459][ T9820]  ? kasan_check_read+0x11/0x20
[  236.734486][ T9820]  ? ksys_dup3+0x3e0/0x3e0
[  236.734511][ T9820]  ? wait_for_completion+0x440/0x440
[  236.734541][ T9820]  ? __fget_light+0x1a9/0x230
[  236.749857][ T9820]  do_preadv+0x1c4/0x280
[  236.749876][ T9820]  ? do_readv+0x330/0x330
[  236.749900][ T9820]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  236.764108][ T9820]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  236.764126][ T9820]  ? do_syscall_64+0x26/0x680
[  236.764151][ T9820]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  236.779442][ T9820]  ? do_syscall_64+0x26/0x680
[  236.779467][ T9820]  __x64_sys_preadv+0x9a/0xf0
[  236.779485][ T9820]  do_syscall_64+0xfd/0x680
[  236.779510][ T9820]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  236.794943][ T9820] RIP: 0033:0x4592c9
[  236.794963][ T9820] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  236.794971][ T9820] RSP: 002b:00007fc481e53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
21:28:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:50 executing program 2 (fault-call:2 fault-nth:3):
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:50 executing program 4:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x400000, 0x0)
write$P9_RCLUNK(r0, &(0x7f0000000080)={0x7, 0x79, 0x1}, 0x7)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000040)=@req3={0xfffffffffffffffc, 0x0, 0x0, 0x401}, 0xfffffffffffffeb5)
sendmmsg(r1, &(0x7f0000009a00)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000700)=@tipc=@name={0x1e, 0x7}, 0x80, 0x0}}], 0x2, 0x0)

[  236.794987][ T9820] RAX: ffffffffffffffda RBX: 00007fc481e53c90 RCX: 00000000004592c9
[  236.794996][ T9820] RDX: 0000000000000335 RSI: 00000000200017c0 RDI: 0000000000000003
[  236.795004][ T9820] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  236.795012][ T9820] R10: 0700000000000000 R11: 0000000000000246 R12: 00007fc481e546d4
[  236.795019][ T9820] R13: 00000000004c63de R14: 00000000004daef8 R15: 0000000000000004
[  236.986007][ T9842] FAULT_INJECTION: forcing a failure.
[  236.986007][ T9842] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  236.999261][ T9842] CPU: 0 PID: 9842 Comm: syz-executor.2 Not tainted 5.2.0-rc5+ #37
[  236.999273][ T9842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  236.999278][ T9842] Call Trace:
[  236.999316][ T9842]  dump_stack+0x172/0x1f0
[  236.999342][ T9842]  should_fail.cold+0xa/0x15
[  236.999365][ T9842]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  236.999383][ T9842]  ? mark_held_locks+0xf0/0xf0
[  236.999405][ T9842]  ? get_mem_cgroup_from_mm+0x10b/0x2b0
[  236.999425][ T9842]  should_fail_alloc_page+0x50/0x60
[  236.999442][ T9842]  __alloc_pages_nodemask+0x1a1/0x8d0
[  236.999461][ T9842]  ? rcu_read_unlock+0x16/0x60
[  236.999481][ T9842]  ? __alloc_pages_slowpath+0x28f0/0x28f0
[  236.999514][ T9842]  cache_grow_begin+0x9d/0x650
[  236.999533][ T9842]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  236.999553][ T9842]  kmem_cache_alloc_node_trace+0x655/0x720
[  236.999570][ T9842]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  236.999593][ T9842]  __kmalloc_node+0x3d/0x70
[  236.999617][ T9842]  kvmalloc_node+0x68/0x100
[  236.999641][ T9842]  traverse+0x3e9/0x740
[  237.040426][ T9842]  ? seq_dentry+0x2d0/0x2d0
[  237.040448][ T9842]  seq_read+0x8dd/0x1110
[  237.040476][ T9842]  ? seq_dentry+0x2d0/0x2d0
[  237.040501][ T9842]  proc_reg_read+0x1fc/0x2c0
[  237.067550][ T9842]  ? proc_reg_compat_ioctl+0x2a0/0x2a0
[  237.067574][ T9842]  ? rw_verify_area+0x126/0x360
[  237.078614][ T9842]  do_iter_read+0x4a4/0x660
[  237.078634][ T9842]  ? dup_iter+0x260/0x260
[  237.078654][ T9842]  vfs_readv+0xf0/0x160
[  237.078669][ T9842]  ? lock_downgrade+0x880/0x880
[  237.078684][ T9842]  ? compat_rw_copy_check_uvector+0x3f0/0x3f0
[  237.078699][ T9842]  ? kasan_check_read+0x11/0x20
[  237.078724][ T9842]  ? ksys_dup3+0x3e0/0x3e0
[  237.078745][ T9842]  ? wait_for_completion+0x440/0x440
[  237.078765][ T9842]  ? __fget_light+0x1a9/0x230
[  237.078791][ T9842]  do_preadv+0x1c4/0x280
[  237.078811][ T9842]  ? do_readv+0x330/0x330
[  237.095511][ T9842]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  237.095530][ T9842]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  237.095544][ T9842]  ? do_syscall_64+0x26/0x680
[  237.095561][ T9842]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  237.095575][ T9842]  ? do_syscall_64+0x26/0x680
[  237.095595][ T9842]  __x64_sys_preadv+0x9a/0xf0
[  237.095612][ T9842]  do_syscall_64+0xfd/0x680
[  237.095631][ T9842]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  237.095644][ T9842] RIP: 0033:0x4592c9
[  237.095660][ T9842] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  237.095667][ T9842] RSP: 002b:00007fc481e53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  237.095682][ T9842] RAX: ffffffffffffffda RBX: 00007fc481e53c90 RCX: 00000000004592c9
[  237.095689][ T9842] RDX: 0000000000000335 RSI: 00000000200017c0 RDI: 0000000000000003
[  237.095698][ T9842] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
21:28:51 executing program 1:
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:51 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:51 executing program 2 (fault-call:2 fault-nth:4):
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:51 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x4, 0x0, 0x0)

[  237.095708][ T9842] R10: 0700000000000000 R11: 0000000000000246 R12: 00007fc481e546d4
[  237.095715][ T9842] R13: 00000000004c63de R14: 00000000004daef8 R15: 0000000000000004
21:28:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:51 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x1000000, 0x0, 0x0)

21:28:51 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:51 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x335, 0x700000000000000)

21:28:51 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:51 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:51 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000400)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x80000, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f00000002c0)={0x1, 0x1, 0x7, 0x2}, 0x10)
r3 = syz_open_procfs(0x0, &(0x7f000012bff2)='net/mcfilter6\x00')
accept$packet(0xffffffffffffffff, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000580)=0x14)
getsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f00000005c0)={@mcast2}, &(0x7f0000000600)=0x14)
getsockname(r1, &(0x7f0000000640)=@xdp, &(0x7f00000006c0)=0x80)
accept4$packet(r2, &(0x7f0000000800)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000007c0)=0xffffffffffffff3d, 0x80800)
recvmsg(r3, &(0x7f0000000c80)={&(0x7f00000009c0)=@hci={0x1f, <r4=>0x0}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000a40)=""/181, 0xb5}, {&(0x7f0000000b00)=""/170, 0xaa}, {&(0x7f0000000bc0)=""/19, 0x13}], 0x3, &(0x7f0000000c40)=""/53, 0x35}, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000880)={'vcan0\x00', <r5=>r4})
fcntl$setflags(r2, 0x2, 0x1)
bind(r3, &(0x7f0000000340)=@can={0x1d, r5}, 0x80)
read$eventfd(r3, &(0x7f00000000c0), 0x2c3)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000f46000)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff0200000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000a00000000000000fe8000000000000000000000d811cd5c00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000ff02000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000aef76dfee592263100"/400], 0x190)
readv(r3, &(0x7f0000000040)=[{&(0x7f0000000200)=""/181, 0xb5}], 0x1)
clock_gettime(0x3, &(0x7f0000000840)={<r6=>0x0, <r7=>0x0})
clock_gettime(0x0, &(0x7f0000000700))
utimensat(r3, &(0x7f0000000300)='./file0\x00', &(0x7f0000000740)={{r6, r7/1000+10000}, {0x77359400}}, 0x100)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000100)={{{@in=@broadcast, @in6=@initdev}}, {{@in6}, 0x0, @in6}}, &(0x7f0000000000)=0xe8)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000008c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r8=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r2, &(0x7f0000000cc0)={0x6, 0x118, 0xfa00, {{0x7fffffff, 0x2, "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", 0x45, 0x10000, 0x4, 0x3, 0xfffffffffffffffa, 0x1, 0xffff, 0x1}, r8}}, 0x120)
open$dir(&(0x7f0000000780)='./file0\x00', 0x4000, 0x100)

21:28:51 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x4000000, 0x0, 0x0)

21:28:51 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:51 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2, 0x700000000000000)

21:28:52 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:52 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x100000000000000, 0x0, 0x0)

21:28:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x3, 0x700000000000000)

21:28:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4, 0x700000000000000)

21:28:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:52 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5, 0x700000000000000)

21:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:28:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)

21:28:52 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x400000000000000, 0x0, 0x0)

21:28:53 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x4, 0x0)

21:28:53 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, <r1=>0x0})
ptrace(0x420f, r1)
getsockopt$packet_int(r0, 0x107, 0xb, &(0x7f0000000040), &(0x7f00000041c0)=0xfde7)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x80000000, 0x5, 0x8000}, 0x4)

21:28:53 executing program 5:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x6, 0x700000000000000)

21:28:53 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 5:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x7, 0x700000000000000)

21:28:53 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 4:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0xfffffffffffffe80)
sendto$inet(r0, 0x0, 0x0, 0x400200007fe, &(0x7f00000000c0)={0x2, 0x4e24, @loopback}, 0x10)
write$binfmt_elf64(r0, &(0x7f00000016c0)=ANY=[@ANYPTR=&(0x7f00000005c0)=ANY=[@ANYPTR=&(0x7f00000004c0)=ANY=[@ANYRES16], @ANYRES32, @ANYRES64=0x0, @ANYPTR=&(0x7f0000000580)=ANY=[@ANYPTR64, @ANYRESHEX, @ANYPTR64, @ANYRES32=0x0]], @ANYRESDEC, @ANYRES16], 0x120001644)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x48c0, 0x0)
getsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
sendmsg$inet_sctp(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="e3", 0x1}], 0x1}, 0x4000001)
getsockname$tipc(r1, &(0x7f00000003c0)=@id, &(0x7f0000000400)=0x10)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000080)=0x6, 0x4)
r2 = gettid()
perf_event_open(&(0x7f0000000340)={0x1, 0x70, 0xe042, 0x400, 0x25, 0x4, 0x0, 0x7fff, 0x400, 0x401188b31b6350b0, 0x2, 0x4, 0x5, 0x3, 0x8, 0x1, 0x0, 0x9, 0x8, 0x7, 0x7668, 0x4, 0x0, 0x8b5, 0x40, 0x8001, 0x40, 0x10001, 0x7, 0x6, 0x5, 0x3f, 0xe5df, 0x1000, 0x4c41822, 0x4, 0x5, 0xb7d, 0x0, 0x7, 0x5, @perf_config_ext={0x7cc, 0x7}, 0x402, 0xffffffffffff6975, 0x0, 0x3, 0x1, 0xffff, 0xc8}, r2, 0x3, r1, 0x2)
fcntl$setownex(r0, 0xf, &(0x7f0000000680)={0x0, r2})
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000740)=@nfc, 0x80, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x7ffff012}], 0x1, &(0x7f0000000200)=""/20, 0xd57}, 0x0)
ioctl$sock_bt_cmtp_CMTPCONNADD(r3, 0x400443c8, &(0x7f0000000000)={r0, 0xffffffffffffff01})

21:28:53 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x1000000, 0x0)

21:28:53 executing program 5:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x8, 0x700000000000000)

21:28:53 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:28:53 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca585ec7be070")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x13, 0x10, 0x3}, 0x2c)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0xb, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018100000", @ANYRES32=r1, @ANYBLOB="000000a0fd0584ff4952cd8cda00000000009500000000000000"], &(0x7f0000000440)='syzkaller\x00', 0x6, 0x401, &(0x7f0000000200)=""/144}, 0x48)

21:28:53 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:53 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:28:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x9, 0x700000000000000)

21:28:53 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x4000000, 0x0)

21:28:54 executing program 4:
r0 = socket$inet(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca5055e0bbeec7be070")
sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="24000000150007841dfffd946f610500020081001f03fe0604000800080006000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0xfffffffffffffef2}], 0x1}, 0x0)

21:28:54 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:28:54 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0xa, 0x700000000000000)

21:28:54 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x100000000000000, 0x0)

21:28:54 executing program 4:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
seccomp(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x10200000006}]})
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x1f, 0xffffffffffffff53, 0x5})
close(r0)

21:28:54 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:28:54 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0xb, 0x700000000000000)

21:28:54 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x400000000000000, 0x0)

[  240.463327][   T26] audit: type=1326 audit(1560979734.528:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10044 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45c10a code=0x0
21:28:54 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:28:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0xc, 0x700000000000000)

21:28:54 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x4)

21:28:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0xd, 0x700000000000000)

21:28:54 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:28:55 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x1000000)

[  241.164423][   T26] audit: type=1326 audit(1560979735.228:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10044 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45c10a code=0x0
21:29:05 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:29:05 executing program 4:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vga_arbiter\x00', 0x0, 0x0)
close(r0)
seccomp(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x10200000006}]})
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x1f, 0xffffffffffffff53, 0x5})
close(r0)

21:29:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0xe, 0x700000000000000)

21:29:05 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x4000000)

[  251.014069][   T26] audit: type=1326 audit(1560979745.078:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10103 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45c10a code=0x0
21:29:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0xf, 0x700000000000000)

21:29:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:29:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:05 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x100000000000000)

21:29:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x10, 0x700000000000000)

21:29:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:15 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:15 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x400000000000000)

21:29:15 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x11, 0x700000000000000)

21:29:15 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:15 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @dev, 0x9}], 0x1c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f0000000000)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x71, &(0x7f0000000040)={<r3=>r2}, &(0x7f0000000140)=0x20000048)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f00000000c0)=r3, 0x39a)

21:29:15 executing program 3:
mmap(&(0x7f0000793000/0x3000)=nil, 0x3000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:15 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x12, 0x700000000000000)

21:29:15 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:15 executing program 3:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0xfffffffffffffffd, 0x64031, r0, 0x0)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000040)={<r1=>0x0, 0x2}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r1, 0x2, 0x0, 0x8, 0x3, 0x2}, &(0x7f0000000100)=0x14)
remap_file_pages(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8000000, 0x2, 0xfffffffffffffffe)

21:29:15 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x13, 0x700000000000000)

21:29:15 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:15 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

[  262.044921][T10147] syz-executor.4 (10147) used greatest stack depth: 22000 bytes left
21:29:25 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:25 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x14, 0x700000000000000)

21:29:25 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:25 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
memfd_create(0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'nr0\x01\x00', 0x2})
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000001fc1)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\b\xedcJ\x8e\x84\xd4N\x12\x9b\x1f\t\xbd\x11+\x86T\x16\xa3\xb3\xae0\x9f9?\xefo\xa4k\x012>\xa1\x9c\x86x\x1c\x9f\x84\x195\xde\x97_\t~\xf3Y\x12\"p^\xc1\x0f', 0x0)
fallocate(r1, 0x0, 0x2000421, 0x1)
write(r1, &(0x7f0000002000)='/', 0x1)
sendfile(r1, r1, &(0x7f0000001000), 0xfec)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0)
ioctl$TUNSETSTEERINGEBPF(r0, 0x400454d1, &(0x7f0000000080))
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:25 executing program 4:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000009f7c)=""/132, 0x84}, {0x0}, {&(0x7f0000012000)=""/155, 0x9b}, {0x0}, {&(0x7f0000000000)=""/102, 0x66}], 0x5, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000280)=""/92, 0x5c}, {0x0}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x3, 0x0)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/34, 0x22}], 0x1000000000000358}}], 0x1, 0x100, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl(r0, 0xc2604110, &(0x7f0000001300)="afdf2422a747a2e19bb0becb0b3c016d949f6210d5e5a019d4b6c47398f5c8d545c240cd0a9b5b8223fa6250248716d2fedf5b9928fdd7ccb0c80a9490582e64f5e957145157e7fd88af81ad1a4a4cbc36393fecd8178da9186f1a756ec36a547a5f09e7b481a3dbdd5dd277977554d16912f7b2ac4402526fb2b83c5b6982722125a923677cfd2ea39b17c9d9ec5ecd64bcd94300219c30cdb3693c870b59ff8d2c92eba4dc33b5eac9f4351b9b5cf42eb0ca3fa8e5d6e89f0cbe0d3223158996d8")

21:29:25 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x15, 0x700000000000000)

21:29:25 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0))
ioctl$KDSKBLED(r0, 0x4b65, 0x1)
ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000000)={0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3})
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r1)

21:29:25 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:25 executing program 3:
mmap(&(0x7f000095c000/0x1000)=nil, 0x1000, 0x2000000, 0x23de9fb44021a1fb, 0xffffffffffffffff, 0xfffffffffffffffe)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:25 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:25 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:26 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:26 executing program 3:
mmap(&(0x7f0000a48000/0x2000)=nil, 0x2000, 0x0, 0x64031, 0xffffffffffffffff, 0x7)
iopl(0x7)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x4, 0x0}}, @in={0x2, 0x4e23, @rand_addr=0xff}, @in6={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, [], 0x18}, 0x4}, @in={0x2, 0x4e23, @local}, @in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e22, 0x2, @local, 0x7}, @in6={0xa, 0x4e23, 0x6, @remote, 0x8}, @in6={0xa, 0x4e21, 0xfff, @dev={0xfe, 0x80, [], 0x14}, 0x3}], 0xc0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
openat$cgroup_type(r0, &(0x7f0000000100)='cgroup.type\x00', 0x2, 0x0)
restart_syscall()

21:29:26 executing program 4:
r0 = syz_open_dev$sndtimer(&(0x7f0000000240)='/dev/snd/timer\x00', 0x0, 0x12200)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000280)={{0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x1, 0x80000001, 'id0\x00', 'timer0\x00', 0x0, 0x7fff, 0x565e1d69, 0x5, 0x20})
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000200)='/dev/video1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x335, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000040)='trusted.overlay.redirect\x00', 0x0, 0x0, 0x0)
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x100, 0x0)
setsockopt$CAIFSO_LINK_SELECT(r2, 0x116, 0x7f, &(0x7f0000000080), 0x4)
ioctl$KVM_ASSIGN_SET_INTX_MASK(0xffffffffffffffff, 0x4040aea4, 0x0)
ioctl$KVM_SET_CLOCK(0xffffffffffffffff, 0x4030ae7b, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f00000000c0)=""/133)

21:29:26 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x16, 0x700000000000000)

21:29:26 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:26 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:26 executing program 3:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000000080)={0x4, 0xffffffffffffff9c})
mknod$loop(&(0x7f00000002c0)='./file0\x00', 0x2000, 0x1)
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000280)='syz0\x00', 0x200002, 0x0)
mmap(&(0x7f0000281000/0x2000)=nil, 0x2000, 0x3, 0x10, r0, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x391200, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000100)={'eql\x00', <r2=>0x0})
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, r2, 0x1}, 0xc)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
io_setup(0x1000, &(0x7f0000000000)=<r3=>0x0)
io_pgetevents(r3, 0x5, 0x7, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}], 0x0, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000040))

21:29:26 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:26 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x17, 0x700000000000000)

21:29:26 executing program 4 (fault-call:2 fault-nth:0):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x2100, 0x0)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000000c0)={<r2=>0x0, 0xc76}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000180)={r2, 0x6, 0xc09, 0xb}, 0x10)
r3 = socket(0x200000000000011, 0x4, 0xf8000000000001fe)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='cgroup\x00')
ioctl$TUNGETDEVNETNS(r4, 0x54e3, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000380)={{{@in=@empty, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@initdev}, 0x0, @in6=@empty}}, &(0x7f0000000480)=0xe8)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'ip6tnl0\x00', <r6=>r5})
bind$packet(r3, &(0x7f00000001c0)={0x11, 0x800, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmmsg(r3, &(0x7f0000000d00), 0x400004e, 0x0)

21:29:26 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x18, 0x700000000000000)

[  272.480990][T10260] FAULT_INJECTION: forcing a failure.
[  272.480990][T10260] name failslab, interval 1, probability 0, space 0, times 0
[  272.550041][T10260] CPU: 1 PID: 10260 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  272.558080][T10260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  272.568146][T10260] Call Trace:
[  272.571466][T10260]  dump_stack+0x172/0x1f0
[  272.575909][T10260]  should_fail.cold+0xa/0x15
[  272.580526][T10260]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  272.586383][T10260]  ? hci_unregister_dev+0x6ac/0x820
[  272.591621][T10260]  ? hci_unregister_dev+0x6bc/0x820
[  272.596929][T10260]  __should_failslab+0x121/0x190
[  272.602142][T10260]  should_failslab+0x9/0x14
[  272.606655][T10260]  kmem_cache_alloc_node+0x56/0x710
[  272.611862][T10260]  ? lock_downgrade+0x880/0x880
[  272.616736][T10260]  __alloc_skb+0xd5/0x5e0
[  272.621100][T10260]  ? skb_trim+0x190/0x190
[  272.625436][T10260]  ? mgmt_index_removed+0x18f/0x2c0
[  272.630644][T10260]  ? wait_for_completion+0x440/0x440
[  272.635947][T10260]  hci_sock_dev_event+0xf3/0x580
[  272.640905][T10260]  hci_unregister_dev+0x253/0x820
[  272.645951][T10260]  vhci_release+0x76/0xf0
[  272.650286][T10260]  __fput+0x2ff/0x890
[  272.654292][T10260]  ? vhci_close_dev+0x50/0x50
[  272.658977][T10260]  ____fput+0x16/0x20
[  272.662965][T10260]  task_work_run+0x145/0x1c0
[  272.667655][T10260]  exit_to_usermode_loop+0x273/0x2c0
[  272.672953][T10260]  do_syscall_64+0x58e/0x680
[  272.677559][T10260]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  272.683513][T10260] RIP: 0033:0x4592c9
[  272.687530][T10260] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  272.711151][T10260] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  272.720221][T10260] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  272.728395][T10260] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  272.741335][T10260] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  272.750201][T10260] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  272.760564][T10260] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:36 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:36 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x19, 0x700000000000000)

21:29:36 executing program 1:
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x6, &(0x7f0000000040)=0x1000, 0x4)
r1 = socket(0x11, 0x80805, 0x4)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000bc0)={<r2=>0x0, 0x800}, &(0x7f0000000c00)=0x8)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r1, 0x10f, 0x84, &(0x7f00000001c0), &(0x7f00000002c0)=0x4)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000c40)={r2, 0xdcf6}, &(0x7f0000000c80)=0x8)
r3 = accept(r0, 0x0, &(0x7f0000000200))
r4 = accept$inet(r3, &(0x7f0000000280)={0x2, 0x0, @dev}, &(0x7f0000000340)=0x10)
ioctl$FS_IOC_SETVERSION(r3, 0x40087602, &(0x7f0000000380)=0x6)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000140)=0x100, 0x4)
write$binfmt_aout(r4, &(0x7f0000000d00)={{0x107, 0x3f2b4f20, 0x3, 0x1f2, 0x70, 0x1ff, 0x202, 0x3}, "941120a6326e1150d889a753a706f233a953814b5f0610396e64b9cfbe96a95f339b7d9c9f9d9a54357e773b9b2243bd23464a4c7f5c7d13cde9f49d7f3dc5530caafb61848369bb191bd8a70444514b1de149e8f4e4635b21685e026eea4500a25ff93580307b8a47a6cba17b0c912693b7cbe4280557ee12cda4b977b9b93fc1693566813543fdb37cb994e34f1d14d73a9ea549a7ab69e820fdbb6378741226a6f99195f23677b14e20e1c2b95015c0", [[], [], [], []]}, 0x4d1)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000000), 0xffffffffffffff82)
socket$inet6(0xa, 0x0, 0x40000000d61)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000180)=ANY=[@ANYRES16=r0], &(0x7f0000000240)=0x1)
socketpair(0x1, 0x2, 0x4, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$bt_sco_SCO_CONNINFO(r5, 0x11, 0x2, &(0x7f00000004c0)=""/226, &(0x7f00000003c0)=0xe2)
sendto$llc(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x1a, 0x200000000304, 0x0, 0x0, 0x0, 0x0, @random="0387945b9f37"}, 0x10)
write(r0, &(0x7f0000000140), 0x0)
setsockopt$sock_timeval(r5, 0x1, 0x14, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
recvmmsg(r0, &(0x7f000000cd80)=[{{&(0x7f000000be80)=@ll, 0x80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}}, {{0x0, 0x0, &(0x7f000000c600)=[{&(0x7f000000c3c0)=""/56, 0x38}, {&(0x7f000000c400)=""/74, 0x4a}, {&(0x7f000000c480)=""/114, 0x72}, {&(0x7f000000c500)=""/132, 0x84}, {&(0x7f000000c5c0)=""/15, 0xf}], 0x5, 0x0, 0x0, 0x7d48bddc}, 0x100000001}, {{0x0, 0x0, &(0x7f000000c700)=[{&(0x7f000000c680)=""/90, 0x5a}], 0x1, &(0x7f0000000640)=""/16, 0x10, 0x7f}, 0x200}, {{&(0x7f000000c780)=@ethernet, 0x80, &(0x7f000000ca00)=[{&(0x7f000000c800)=""/210, 0xd2}, {&(0x7f000000c900)=""/92, 0x5c}, {&(0x7f000000c980)=""/82, 0x52}], 0x3, &(0x7f000000ca40)=""/40, 0x28}, 0x206}, {{&(0x7f000000ca80)=@pppol2tpv3in6, 0x80, &(0x7f000000cd00)=[{&(0x7f000000cb00)=""/255, 0xff}, {&(0x7f000000cc00)}, {&(0x7f000000cc40)=""/180, 0xb4}], 0x3, &(0x7f000000cd40)=""/5, 0x5, 0x2}, 0xffffffff}], 0x5, 0x1c, 0x0)

21:29:36 executing program 4 (fault-call:2 fault-nth:1):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:36 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x84, 0x0)
mmap(&(0x7f0000a3a000/0x1000)=nil, 0x1000, 0xfffffffffffffffc, 0x64031, r0, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x400, 0x0)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f00000002c0)='nbd\x00')
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x20, r2, 0x0, 0x70bd27, 0x25dfdbfb, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7}]}, 0x20}, 0x1, 0x0, 0x0, 0x4040}, 0x5)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x300000b, 0x0, 0x0)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x80, 0x0)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r3, 0xc0305616, &(0x7f0000000040)={0x0, {0xfffffffffffffffd, 0x4ba124a3}})
syz_open_dev$video(&(0x7f0000000540)='/dev/video#\x00', 0x4, 0x400)
getsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f0000000100)={@local, <r4=>0x0}, &(0x7f0000000140)=0x14)
r5 = request_key(&(0x7f00000003c0)='.dead\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000440)='em1eth0user#\x00', 0xfffffffffffffffa)
keyctl$read(0xb, r5, &(0x7f0000000480)=""/178, 0xb2)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80804010}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=@newtfilter={0x2c, 0x2c, 0x122, 0x70bd27, 0x25dfdbff, {0x0, r4, {0x0, 0x7}, {0x3, 0xffef}, {0xa, 0x2}}, [@TCA_CHAIN={0x8, 0xb, 0x7fffffff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x80)
ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000580)=<r6=>0x0)
ptrace$getregs(0xc, r6, 0x8, &(0x7f00000005c0)=""/34)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)

21:29:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, 0x0, 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  282.372052][T10285] FAULT_INJECTION: forcing a failure.
[  282.372052][T10285] name failslab, interval 1, probability 0, space 0, times 0
[  282.421794][T10285] CPU: 0 PID: 10285 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  282.429858][T10285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  282.439938][T10285] Call Trace:
[  282.443261][T10285]  dump_stack+0x172/0x1f0
[  282.443299][T10285]  should_fail.cold+0xa/0x15
[  282.452225][T10285]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  282.452247][T10285]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  282.452261][T10285]  ? should_fail+0x1de/0x852
[  282.452284][T10285]  __should_failslab+0x121/0x190
[  282.464328][T10285]  should_failslab+0x9/0x14
[  282.464345][T10285]  kmem_cache_alloc_node_trace+0x5a/0x720
[  282.464368][T10285]  __kmalloc_node_track_caller+0x3d/0x70
[  282.464386][T10285]  __kmalloc_reserve.isra.0+0x40/0xf0
[  282.464405][T10285]  __alloc_skb+0x10b/0x5e0
[  282.478628][T10285]  ? skb_trim+0x190/0x190
[  282.478645][T10285]  ? mgmt_index_removed+0x18f/0x2c0
[  282.478665][T10285]  ? wait_for_completion+0x440/0x440
[  282.478686][T10285]  hci_sock_dev_event+0xf3/0x580
[  282.490318][T10285]  hci_unregister_dev+0x253/0x820
[  282.490343][T10285]  vhci_release+0x76/0xf0
[  282.490368][T10285]  __fput+0x2ff/0x890
[  282.500308][T10285]  ? vhci_close_dev+0x50/0x50
[  282.500328][T10285]  ____fput+0x16/0x20
[  282.500343][T10285]  task_work_run+0x145/0x1c0
[  282.500368][T10285]  exit_to_usermode_loop+0x273/0x2c0
[  282.500387][T10285]  do_syscall_64+0x58e/0x680
[  282.500410][T10285]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  282.524650][T10285] RIP: 0033:0x4592c9
[  282.524668][T10285] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  282.524677][T10285] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  282.524691][T10285] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
21:29:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:36 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x1a, 0x700000000000000)

[  282.524698][T10285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  282.524706][T10285] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  282.524713][T10285] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  282.524721][T10285] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:36 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x1b, 0x700000000000000)

21:29:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:36 executing program 3:
r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c)
getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:36 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:36 executing program 4 (fault-call:2 fault-nth:2):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  282.979048][T10319] FAULT_INJECTION: forcing a failure.
[  282.979048][T10319] name failslab, interval 1, probability 0, space 0, times 0
[  283.014913][T10319] CPU: 1 PID: 10319 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  283.022965][T10319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  283.033037][T10319] Call Trace:
[  283.036497][T10319]  dump_stack+0x172/0x1f0
[  283.040845][T10319]  should_fail.cold+0xa/0x15
[  283.045544][T10319]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  283.051384][T10319]  ? ___might_sleep+0x163/0x280
[  283.056282][T10319]  __should_failslab+0x121/0x190
[  283.061339][T10319]  should_failslab+0x9/0x14
[  283.065856][T10319]  kmem_cache_alloc_trace+0x2ce/0x750
[  283.071256][T10319]  ? kasan_check_write+0x14/0x20
[  283.076209][T10319]  kobject_uevent_env+0x387/0x101d
[  283.081353][T10319]  ? wait_for_completion+0x440/0x440
[  283.086668][T10319]  kobject_uevent+0x20/0x26
[  283.091218][T10319]  device_del+0x74b/0xc30
[  283.095581][T10319]  ? __device_links_no_driver+0x250/0x250
[  283.101321][T10319]  rfkill_unregister+0xd1/0x2c0
[  283.106185][T10319]  hci_unregister_dev+0x287/0x820
[  283.106206][T10319]  vhci_release+0x76/0xf0
[  283.106222][T10319]  __fput+0x2ff/0x890
[  283.106247][T10319]  ? vhci_close_dev+0x50/0x50
[  283.106263][T10319]  ____fput+0x16/0x20
[  283.106277][T10319]  task_work_run+0x145/0x1c0
[  283.106300][T10319]  exit_to_usermode_loop+0x273/0x2c0
[  283.106320][T10319]  do_syscall_64+0x58e/0x680
[  283.106342][T10319]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  283.148721][T10319] RIP: 0033:0x4592c9
[  283.152664][T10319] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  283.172295][T10319] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  283.172312][T10319] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  283.172319][T10319] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  283.172327][T10319] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  283.172334][T10319] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  283.172343][T10319] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:37 executing program 1:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x10032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0xd, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8)
close(0xffffffffffffffff)

21:29:37 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:37 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:37 executing program 3:
r0 = accept4$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e, 0x0)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x2000000, 0x4013, r0, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:37 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x1c, 0x700000000000000)

21:29:37 executing program 4 (fault-call:2 fault-nth:3):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:37 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x1d, 0x700000000000000)

21:29:37 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x2, 0x101000)
ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f0000000040))
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:37 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  283.486357][T10342] FAULT_INJECTION: forcing a failure.
[  283.486357][T10342] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  283.499624][T10342] CPU: 0 PID: 10342 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  283.507870][T10342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  283.517942][T10342] Call Trace:
[  283.521269][T10342]  dump_stack+0x172/0x1f0
[  283.525619][T10342]  should_fail.cold+0xa/0x15
[  283.530228][T10342]  ? console_unlock+0x781/0xec0
[  283.535123][T10342]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  283.541093][T10342]  should_fail_alloc_page+0x50/0x60
[  283.546428][T10342]  __alloc_pages_nodemask+0x1a1/0x8d0
[  283.551826][T10342]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  283.557595][T10342]  ? __alloc_pages_slowpath+0x28f0/0x28f0
[  283.563947][T10342]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  283.569615][T10342]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  283.575877][T10342]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  283.581706][T10342]  cache_grow_begin+0x9d/0x650
[  283.587025][T10342]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  283.593303][T10342]  kmem_cache_alloc_trace+0x67c/0x750
[  283.598794][T10342]  ? kasan_check_write+0x14/0x20
[  283.603949][T10342]  kobject_uevent_env+0x387/0x101d
[  283.609200][T10342]  ? wait_for_completion+0x440/0x440
[  283.614519][T10342]  kobject_uevent+0x20/0x26
[  283.619057][T10342]  device_del+0x74b/0xc30
[  283.623428][T10342]  ? __device_links_no_driver+0x250/0x250
[  283.629635][T10342]  rfkill_unregister+0xd1/0x2c0
[  283.634521][T10342]  hci_unregister_dev+0x287/0x820
[  283.639673][T10342]  vhci_release+0x76/0xf0
[  283.644123][T10342]  __fput+0x2ff/0x890
[  283.648262][T10342]  ? vhci_close_dev+0x50/0x50
[  283.652973][T10342]  ____fput+0x16/0x20
[  283.656999][T10342]  task_work_run+0x145/0x1c0
[  283.661714][T10342]  exit_to_usermode_loop+0x273/0x2c0
[  283.667045][T10342]  do_syscall_64+0x58e/0x680
[  283.672037][T10342]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  283.677959][T10342] RIP: 0033:0x4592c9
[  283.682248][T10342] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  283.702137][T10342] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  283.711198][T10342] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  283.719196][T10342] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  283.727308][T10342] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
21:29:37 executing program 0:

[  283.735392][T10342] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  283.743953][T10342] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:37 executing program 0:

21:29:37 executing program 3:
r0 = request_key(&(0x7f0000000340)='\x80eyringO\xe6\x00\x00\x00\x00\x00\x002\x871O\x06\x00\xadH\xe3\x98\x99\xe6\xbb5\x06\x04QSeI\xe627u\xd7\xa2F\xbb\xbb[\xc7\xf5\x88D\x97\x94P\xed\"\xc6=\xf7\x00\x80\x00\x00\x00\x00\x00\x00\xfc;\xa6%\x1dP\x95$\xca\xfb\x15\xf4\xf3\x14\x16\xd5\x84', &(0x7f0000000300)={'syz', 0x2}, &(0x7f0000000140)='-\xdb\x00', 0xfffffffffffffffe)
add_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="4ef7d4069dd7ac259f73eb6888f95143da42211c9025eaa498599ced29467566d3a2d8", 0x23, r0)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
syncfs(r1)
r2 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0xc0500, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r2, 0xc008551c, &(0x7f00000000c0)=ANY=[@ANYBLOB="0200000008000000060000003568952e699f35740b79a3ff070000"])
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
r4 = syz_open_dev$radio(&(0x7f0000000180)='/dev/radio#\x00', 0x2, 0x2)
ioctl$VT_GETSTATE(r3, 0x5603, &(0x7f0000000100)={0x6, 0x2, 0x3f})
r5 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffff9c, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)

21:29:37 executing program 1:

21:29:37 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x1e, 0x700000000000000)

21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x21, 0x700000000000000)

21:29:38 executing program 0:

21:29:38 executing program 1:

21:29:38 executing program 4 (fault-call:2 fault-nth:4):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:38 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x40000003, 0x28001)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f00000000c0)={0x0, @reserved})
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0)
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000180))
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xff, 0xc, 0x9, 0x1, 0x21, 0x8, 0x2, 0x6})

21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x22, 0x700000000000000)

21:29:38 executing program 1:

21:29:38 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(0xffffffffffffffff, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:38 executing program 1:

21:29:38 executing program 0:

21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x23, 0x700000000000000)

21:29:38 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x800, 0x0)
setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000040)={{0xa, 0x4e20, 0x2, @loopback, 0x9}, {0xa, 0x4e20, 0x3, @rand_addr="4dac16ee07695033e35da8d016c644e7", 0x2}, 0xfffffffffffffffa, [0x7, 0x2, 0x5, 0x5, 0x8, 0x81, 0x4b58c7ab, 0xf3]}, 0x5c)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  284.172503][T10396] FAULT_INJECTION: forcing a failure.
[  284.172503][T10396] name failslab, interval 1, probability 0, space 0, times 0
[  284.282629][T10396] CPU: 0 PID: 10396 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  284.290669][T10396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  284.300756][T10396] Call Trace:
[  284.304090][T10396]  dump_stack+0x172/0x1f0
[  284.308478][T10396]  should_fail.cold+0xa/0x15
[  284.313117][T10396]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  284.318971][T10396]  ? ___might_sleep+0x163/0x280
[  284.323870][T10396]  __should_failslab+0x121/0x190
[  284.328838][T10396]  should_failslab+0x9/0x14
[  284.333378][T10396]  __kmalloc+0x2d9/0x740
[  284.337648][T10396]  ? kobject_uevent_env+0x387/0x101d
[  284.342956][T10396]  ? rcu_read_lock_sched_held+0x110/0x130
[  284.348700][T10396]  ? kobject_get_path+0xc4/0x1b0
[  284.353766][T10396]  kobject_get_path+0xc4/0x1b0
[  284.358568][T10396]  kobject_uevent_env+0x3ab/0x101d
[  284.363717][T10396]  ? wait_for_completion+0x440/0x440
[  284.369030][T10396]  kobject_uevent+0x20/0x26
[  284.373557][T10396]  device_del+0x74b/0xc30
[  284.377915][T10396]  ? __device_links_no_driver+0x250/0x250
[  284.383680][T10396]  rfkill_unregister+0xd1/0x2c0
[  284.388557][T10396]  hci_unregister_dev+0x287/0x820
[  284.393610][T10396]  vhci_release+0x76/0xf0
[  284.397970][T10396]  __fput+0x2ff/0x890
[  284.401984][T10396]  ? vhci_close_dev+0x50/0x50
[  284.406689][T10396]  ____fput+0x16/0x20
[  284.410701][T10396]  task_work_run+0x145/0x1c0
[  284.415416][T10396]  exit_to_usermode_loop+0x273/0x2c0
[  284.420741][T10396]  do_syscall_64+0x58e/0x680
[  284.425359][T10396]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  284.431277][T10396] RIP: 0033:0x4592c9
[  284.435187][T10396] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  284.455162][T10396] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  284.463699][T10396] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  284.471690][T10396] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x24, 0x700000000000000)

21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x25, 0x700000000000000)

21:29:38 executing program 3:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x56b800, 0x0)
ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000080))
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8, 0x0)
sendmmsg$alg(r0, &(0x7f0000001b40)=[{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000400)="f9521d14137ff78dd3382727887586", 0xf}, {&(0x7f0000000440)="f8f226156ed2b019d6aae4ca808015cbb990ab82b9164cc5b2662188c46837526f90ab06331ff7b01f55dcd2a218027fe66f147053bc627469c7a1c5f6c90e7510d6e1229aacccbca0", 0x49}], 0x2, &(0x7f0000000500)=[@assoc={0x18, 0x117, 0x4, 0xfff}], 0x18, 0x10}, {0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000000540)="ce35475638a1caef4dc6bafd37a2f32ea60b1dfc", 0x14}, {&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000001580)="8cad138da3a88391d6d3e7e21bf5aa817dc3fdb12b78c51e0711f536ec07db05437897599728398c3309561ecbc687e80cc16ca3bb4a2e36f190dfd38c73f0c920b637f5a4a9c46aa47abfe542c4d7a33538cbaca38371c95769fdafbf713ad2f8f6c65b30aead77cbbcf28cffece1177a5eca560e3bb4144e6c490a8149aa970a54e96233d0b53d61", 0x89}, {&(0x7f0000001640)="b3c22237ec23ba599d532999e891cfa7f4b7cf6b482b15ebab", 0x19}, {&(0x7f0000001680)="4ae15e47a3f37138deae", 0xa}, {&(0x7f00000016c0)="34cca92d43e82c41f42e3e9f5f37cc08f60fb5f155d29a2947432034ea30abf0ca5f3c25bdc77409a9be35a79b2ef788edff5f44d918b48e77325f6d39cdc08cebc3ed1f4897e10cc206d5e8aecc26cf23e0985ac4e6dad02e7be390e853056fced0f40e285a365a543db617308b189138341d89b60e7ded2bc5a2e96eb665725e48923abe7165472fa46a", 0x8b}, {&(0x7f0000001780)="34de3f79d945be086418e5a710b1bc677ccebf08f0c97c4fb40e499451c3e5116cb845ac9ca8cb24773b0890a31a5a2b005b885ed690f3b07e9515691b259bf92c8df9f8fdeb57572a61a8e9147115a6582825f222148357061b5b0aada20b9a7023fca08247d4debb0d488b956c8d1f9585f1175f60830b760a70fb244fdf2d5ac040519a905d5511addbee576e0045c057262fb230dd4765e01a443c283a4bb927b40427e74678af8f42", 0xab}, {&(0x7f0000001840)="228d4508f92390526c7ff95057b0a7215198250219b0f40c231c79422aa61b6c7637d8565efef42978aa270cd98d110c1e75dadb1ee2f5e96f27b6994538838595b8a025a65f8709c98efb2286d341cd9248c55c173f82d9106c4dfc15c4c904c9c4d051e481c1b22646fee24c6e34bdc4490a255150dfc4b05e6baab8ca1214c0963ce47e63b3ae9d01117f160ed31cb2b4c228951491dfe7117b441cfe75dc923eb576bc30ea8ecb2be39d52710acba80a4a01ed8f969cd36899caf2ff3fe66db83df494c6f8ec45849e2d481a848c32e850443268e21c520f0b62ec87758319353b9675549f07da67d65b5872f9ac5762", 0xf2}, {&(0x7f0000001940)="6391586cf6fb2803523060e293", 0xd}], 0x9, &(0x7f0000001a40)=[@iv={0xd0, 0x117, 0x2, 0xb8, "b7ee6c675faea2d2070d38bd76046d72b0b423edc18f8f5503be235acec2dd37f44f5e6d7168467ba3423fcf6514f04afc12d36e50f9c1fb3dca66a53b5a07b2b0e3305f577ae01fb48d408e2505a360227d1d7254e6417a9a52d5b01f055ecb70f1791003ebad77d0ef94f4317ddc869800172d5e30ff1c11cab9d9f5465f081ee7b8bfe76fe2429fd82875189ced69bc1aee3d44b9f841d218262170274f50514d58aae986e8fe88c71df4f09576a8963044c8446222c6"}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0xff}], 0x100, 0x40040}], 0x2, 0xc0)
sendmsg$unix(r0, &(0x7f00000003c0)={&(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000180)="9af3ae21a1ef144e2129bf17b97a6580656e0004d8167edddaa0d0ffe547", 0x1e}, {&(0x7f00000001c0)="289336f729a67b60dad7525aa0d74d769140e0c7c640c025d74a4d8cf075f74a5f9753246add207bf6dcb9c303687a00c30432a33b256c8a1425b9e657ae59bec50ada5abc2bc1fa163d3a61acf74a6abbe9d68b6a2b1e12158c8db31afd9deaf215d4f318677cfd148c8758cb1ddbbb9266f780ea51485fdd43a390efa1802a50a8f39dab7974bb4144ee01a8cdc657d639c325e015c634", 0x98}, {&(0x7f0000000280)="6fd7bf9dc48d21130ae0746493779d1f76e7de84fb14e9a38ef9f0ebdb0a7af70dd21cdf3026b59815c1fb2b26c8777776235c44c7c44fab216eae16cfa3a352bc33a4b6debb99f13c08cc904fb896fdb61dc848c7930dfe9be25c86f8bd6c82a854cce78395f6bf2549f9b8cfbf04ccce52592e42a706588c6ce4cb24911ed92996c07a4243a9063c41fd05233bd904d6401c564ad185265a848ef016922a501bffb05cb88bd26b3a387224e2673b418e889e29db5ab3dd8ca396d548", 0xbd}, {&(0x7f0000000340)="cacb8beea58e4da913fb3c9d1e7a14d480d2c3167982bcb8bc8b50c6c366ea6d2995d5efaca99c9f452d004050c82e7687", 0x31}], 0x4, 0xfffffffffffffffe, 0x0, 0x20008084}, 0x8004)
mmap(&(0x7f00005f5000/0x4000)=nil, 0x4000, 0x0, 0x4064031, r1, 0x0)
remap_file_pages(&(0x7f00005f5000/0x4000)=nil, 0x4000, 0x4, 0x5, 0x8000000000000006)

21:29:38 executing program 4 (fault-call:2 fault-nth:5):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  284.479685][T10396] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  284.487772][T10396] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  284.495765][T10396] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x26, 0x700000000000000)

21:29:38 executing program 0:

21:29:38 executing program 1:

21:29:38 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x27, 0x700000000000000)

[  284.699765][T10422] FAULT_INJECTION: forcing a failure.
[  284.699765][T10422] name failslab, interval 1, probability 0, space 0, times 0
[  284.774672][T10422] CPU: 0 PID: 10422 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  284.782734][T10422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  284.792904][T10422] Call Trace:
[  284.796223][T10422]  dump_stack+0x172/0x1f0
[  284.800676][T10422]  should_fail.cold+0xa/0x15
[  284.805508][T10422]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  284.811351][T10422]  ? ___might_sleep+0x163/0x280
[  284.816877][T10422]  __should_failslab+0x121/0x190
21:29:38 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x80001000008912, &(0x7f0000000140)="c0dca5055e0bcfe67be070")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
msgsnd(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="03c9007d29a6c2b4"], 0x1, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

21:29:38 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x28, 0x700000000000000)

[  284.822020][T10422]  should_failslab+0x9/0x14
[  284.826827][T10422]  kmem_cache_alloc_node+0x261/0x710
[  284.826898][T10422]  ? find_held_lock+0x35/0x130
[  284.826920][T10422]  __alloc_skb+0xd5/0x5e0
[  284.843352][T10422]  ? skb_trim+0x190/0x190
[  284.848706][T10422]  ? kasan_check_read+0x11/0x20
[  284.854481][T10422]  alloc_uevent_skb+0x83/0x1e2
[  284.859277][T10422]  kobject_uevent_env+0xaa3/0x101d
[  284.864425][T10422]  ? wait_for_completion+0x440/0x440
[  284.870006][T10422]  kobject_uevent+0x20/0x26
[  284.874900][T10422]  device_del+0x74b/0xc30
[  284.879262][T10422]  ? __device_links_no_driver+0x250/0x250
[  284.885108][T10422]  rfkill_unregister+0xd1/0x2c0
[  284.890081][T10422]  hci_unregister_dev+0x287/0x820
[  284.895228][T10422]  vhci_release+0x76/0xf0
[  284.900086][T10422]  __fput+0x2ff/0x890
[  284.904105][T10422]  ? vhci_close_dev+0x50/0x50
[  284.910050][T10422]  ____fput+0x16/0x20
[  284.914767][T10422]  task_work_run+0x145/0x1c0
21:29:39 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x29, 0x700000000000000)

[  284.919398][T10422]  exit_to_usermode_loop+0x273/0x2c0
[  284.921002][T10441] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  284.925705][T10422]  do_syscall_64+0x58e/0x680
[  284.925728][T10422]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  284.925740][T10422] RIP: 0033:0x4592c9
[  284.925763][T10422] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:29:39 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:29:39 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
mremap(&(0x7f0000a70000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000d8b000/0x2000)=nil)
r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x3, 0x100)
setsockopt$IP_VS_SO_SET_DELDEST(r0, 0x0, 0x488, &(0x7f0000000040)={{0x136f452fcaaae548, @loopback, 0x4e24, 0x3, 'lblcr\x00', 0xebdd70f353057447, 0x9, 0x26}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e20, 0x6, 0x98, 0x0, 0x6}}, 0x44)

21:29:39 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = inotify_init()
read$FUSE(r0, 0x0, 0x0)

[  284.925772][T10422] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  284.984197][T10422] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  284.992265][T10422] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  285.000308][T10422] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  285.008720][T10422] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  285.016891][T10422] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:39 executing program 4 (fault-call:2 fault-nth:6):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:39 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2a, 0x700000000000000)

21:29:39 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
bind(r0, &(0x7f0000000200)=@pppoe={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, 'bcsf0\x00'}}, 0x80)
r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x101000, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
sendmsg$TIPC_NL_NET_GET(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xbc, r2, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x4c, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xa4aa}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x40}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}]}, @TIPC_NLA_BEARER={0x8, 0x1, [@TIPC_NLA_BEARER_PROP={0x4}]}, @TIPC_NLA_MON={0x54, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x47e}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000280)=0x1)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x1000000, 0x0, 0x0)

21:29:39 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, 0x0, 0x0)
close(r0)

21:29:39 executing program 0:
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000000)='security.ima\x00', &(0x7f0000000040)=@ng={0x4, 0x12}, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f0000000140)={0x6, 0x118, 0xfa00, {{0x0, 0x0, "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"}}}, 0x120)
open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0)

21:29:39 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:39 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2b, 0x700000000000000)

[  285.532269][T10476] FAULT_INJECTION: forcing a failure.
[  285.532269][T10476] name failslab, interval 1, probability 0, space 0, times 0
[  285.562080][   T26] audit: type=1804 audit(1560979779.628:38): pid=10477 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir778517750/syzkaller.paGQSb/66/bus" dev="sda1" ino=16545 res=1
[  285.567588][T10476] CPU: 0 PID: 10476 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  285.595035][T10476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  285.605198][T10476] Call Trace:
[  285.608502][T10476]  dump_stack+0x172/0x1f0
21:29:39 executing program 0:
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000000)='security.ima\x00', &(0x7f0000000040)=@ng={0x4, 0x12}, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0)

[  285.608546][   T26] audit: type=1804 audit(1560979779.628:39): pid=10479 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir778517750/syzkaller.paGQSb/66/bus" dev="sda1" ino=16545 res=1
[  285.612845][T10476]  should_fail.cold+0xa/0x15
[  285.612867][T10476]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  285.612890][T10476]  ? ___might_sleep+0x163/0x280
[  285.612915][T10476]  __should_failslab+0x121/0x190
[  285.657578][T10476]  should_failslab+0x9/0x14
[  285.662097][T10476]  kmem_cache_alloc_node_trace+0x26d/0x720
[  285.667935][T10476]  __kmalloc_node_track_caller+0x3d/0x70
[  285.673595][T10476]  __kmalloc_reserve.isra.0+0x40/0xf0
[  285.679159][T10476]  __alloc_skb+0x10b/0x5e0
[  285.683613][T10476]  ? skb_trim+0x190/0x190
[  285.687960][T10476]  ? kasan_check_read+0x11/0x20
[  285.692838][T10476]  alloc_uevent_skb+0x83/0x1e2
[  285.697619][T10476]  kobject_uevent_env+0xaa3/0x101d
[  285.701595][   T26] audit: type=1804 audit(1560979779.638:40): pid=10484 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir778517750/syzkaller.paGQSb/67/bus" dev="sda1" ino=16729 res=1
[  285.702754][T10476]  ? wait_for_completion+0x440/0x440
21:29:39 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
socket$inet6(0xa, 0x7, 0x800000007fc)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffffd4)
socket$inet6(0xa, 0x2, 0x4b2e)
ioctl(r1, 0x10001, &(0x7f0000000100)="153f6234488dd25d7660")
socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000540))
r2 = socket(0xa, 0x3, 0x8)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x0, 0x40003e)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00'})
sendmsg$key(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)={0x2, 0x0, 0x783e18c3, 0x8, 0xf, 0x0, 0x0, 0x25dfdbfe, [@sadb_key={0xd, 0x8, 0x2e0, 0x0, "42c12eb591dcf211190ea82d4f8b8c1f73602afe2124e726812bb575900a01171aec7e23aa047b89a0cef2c1828c723ecb621cc99daa25ff511d1ad2ad538e6dcf0e451f7e14d125b5fb7b8607810808f2600ee16e6f8fc2f9033b2a"}]}, 0x78}}, 0x0)
ioctl$RTC_WKALM_RD(r3, 0x80287010, &(0x7f00000002c0))
r4 = memfd_create(&(0x7f0000000140)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02\x05\x00\x00\x00\xac', 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
close(0xffffffffffffffff)
r5 = dup3(r0, r4, 0x10000)
setsockopt$inet_sctp_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000280)={0x7fff, 0x1, 0x40, 0x7, 0x1f, 0x6, 0x100000000, 0x0, 0x7d, 0x2, 0x86}, 0xb)
ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=@ipv4_newrule={0x2c, 0x20, 0xf29, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FRA_GENERIC_POLICY=@FRA_UID_RANGE={0xc}]}, 0x2c}}, 0x0)
sendmsg$key(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[]}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)

[  285.702783][T10476]  kobject_uevent+0x20/0x26
[  285.702802][T10476]  device_del+0x74b/0xc30
[  285.702825][T10476]  ? __device_links_no_driver+0x250/0x250
[  285.747641][T10476]  rfkill_unregister+0xd1/0x2c0
[  285.752536][T10476]  hci_unregister_dev+0x287/0x820
[  285.757586][T10476]  vhci_release+0x76/0xf0
[  285.761933][T10476]  __fput+0x2ff/0x890
[  285.765931][T10476]  ? vhci_close_dev+0x50/0x50
[  285.770633][T10476]  ____fput+0x16/0x20
[  285.774629][T10476]  task_work_run+0x145/0x1c0
[  285.779243][T10476]  exit_to_usermode_loop+0x273/0x2c0
[  285.785291][T10476]  do_syscall_64+0x58e/0x680
[  285.789913][T10476]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  285.795824][T10476] RIP: 0033:0x4592c9
[  285.799751][T10476] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  285.819402][T10476] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
21:29:39 executing program 3:
r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xfffffffffffffff8, 0x101000)
ioctl$SIOCX25GDTEFACILITIES(r0, 0x89ea, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  285.827840][T10476] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  285.837665][T10476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  285.845900][T10476] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  285.853886][T10476] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  285.861871][T10476] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:40 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2c, 0x700000000000000)

21:29:40 executing program 1 (fault-call:2 fault-nth:0):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:40 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:40 executing program 4 (fault-call:2 fault-nth:7):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:40 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
socket$inet6(0xa, 0x7, 0x800000007fc)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffffd4)
socket$inet6(0xa, 0x2, 0x4b2e)
ioctl(r1, 0x10001, &(0x7f0000000100)="153f6234488dd25d7660")
socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000540))
r2 = socket(0xa, 0x3, 0x8)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x0, 0x40003e)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00'})
sendmsg$key(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)={0x2, 0x0, 0x783e18c3, 0x8, 0xf, 0x0, 0x0, 0x25dfdbfe, [@sadb_key={0xd, 0x8, 0x2e0, 0x0, "42c12eb591dcf211190ea82d4f8b8c1f73602afe2124e726812bb575900a01171aec7e23aa047b89a0cef2c1828c723ecb621cc99daa25ff511d1ad2ad538e6dcf0e451f7e14d125b5fb7b8607810808f2600ee16e6f8fc2f9033b2a"}]}, 0x78}}, 0x0)
ioctl$RTC_WKALM_RD(r3, 0x80287010, &(0x7f00000002c0))
r4 = memfd_create(&(0x7f0000000140)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02\x05\x00\x00\x00\xac', 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
close(0xffffffffffffffff)
r5 = dup3(r0, r4, 0x10000)
setsockopt$inet_sctp_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000280)={0x7fff, 0x1, 0x40, 0x7, 0x1f, 0x6, 0x100000000, 0x0, 0x7d, 0x2, 0x86}, 0xb)
ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f00000003c0)=@ipv4_newrule={0x2c, 0x20, 0xf29, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FRA_GENERIC_POLICY=@FRA_UID_RANGE={0xc}]}, 0x2c}}, 0x0)
sendmsg$key(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[]}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)

21:29:40 executing program 3:
r0 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x7f, 0x4000)
setsockopt$CAIFSO_LINK_SELECT(r0, 0x116, 0x7f, &(0x7f0000000100), 0x4)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:40 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2d, 0x700000000000000)

[  286.265067][T10514] FAULT_INJECTION: forcing a failure.
[  286.265067][T10514] name failslab, interval 1, probability 0, space 0, times 0
[  286.313704][T10514] CPU: 1 PID: 10514 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  286.321759][T10514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  286.333439][T10514] Call Trace:
[  286.333476][T10514]  dump_stack+0x172/0x1f0
[  286.333501][T10514]  should_fail.cold+0xa/0x15
[  286.333521][T10514]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  286.333544][T10514]  ? ___might_sleep+0x163/0x280
[  286.333567][T10514]  __should_failslab+0x121/0x190
[  286.333596][T10514]  should_failslab+0x9/0x14
[  286.368565][T10514]  kmem_cache_alloc_node+0x261/0x710
[  286.370015][T10515] FAULT_INJECTION: forcing a failure.
[  286.370015][T10515] name failslab, interval 1, probability 0, space 0, times 0
[  286.373971][T10514]  ? lock_downgrade+0x880/0x880
[  286.373989][T10514]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  286.374011][T10514]  __alloc_skb+0xd5/0x5e0
[  286.374027][T10514]  ? skb_trim+0x190/0x190
[  286.374043][T10514]  ? _kstrtoul+0x170/0x170
[  286.374119][T10514]  vhci_write+0xc4/0x470
[  286.420151][T10514]  new_sync_write+0x4d3/0x770
[  286.424865][T10514]  ? new_sync_read+0x800/0x800
[  286.429692][T10514]  ? common_file_perm+0x238/0x720
[  286.434746][T10514]  ? __fget+0x381/0x550
[  286.438958][T10514]  ? apparmor_file_permission+0x25/0x30
[  286.444797][T10514]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  286.451863][T10514]  ? security_file_permission+0x8f/0x380
[  286.458123][T10514]  __vfs_write+0xe1/0x110
[  286.462491][T10514]  vfs_write+0x20c/0x580
[  286.466759][T10514]  ksys_write+0x14f/0x290
[  286.471204][T10514]  ? __ia32_sys_read+0xb0/0xb0
[  286.476713][T10514]  ? do_syscall_64+0x26/0x680
[  286.481414][T10514]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  286.487774][T10514]  ? do_syscall_64+0x26/0x680
[  286.492482][T10514]  __x64_sys_write+0x73/0xb0
[  286.497114][T10514]  do_syscall_64+0xfd/0x680
[  286.501648][T10514]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  286.508355][T10514] RIP: 0033:0x4592c9
21:29:40 executing program 3:
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x64031, 0xffffffffffffffff, 0xfffffffffffffffd)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  286.512387][T10514] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  286.533168][T10514] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  286.533184][T10514] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  286.533191][T10514] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  286.533199][T10514] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  286.533206][T10514] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  286.533213][T10514] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
[  286.534708][T10515] CPU: 1 PID: 10515 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  286.582482][T10515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  286.582489][T10515] Call Trace:
[  286.582515][T10515]  dump_stack+0x172/0x1f0
[  286.582537][T10515]  should_fail.cold+0xa/0x15
[  286.582557][T10515]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  286.582579][T10515]  ? ___might_sleep+0x163/0x280
[  286.582600][T10515]  __should_failslab+0x121/0x190
[  286.582624][T10515]  should_failslab+0x9/0x14
[  286.633036][T10515]  kmem_cache_alloc+0x2af/0x6f0
[  286.637905][T10515]  ? refcount_dec_and_mutex_lock+0x90/0x90
[  286.643734][T10515]  ? lock_downgrade+0x880/0x880
[  286.648612][T10515]  skb_clone+0x154/0x3d0
[  286.652875][T10515]  netlink_broadcast_filtered+0x86e/0xb20
[  286.658645][T10515]  netlink_broadcast+0x3a/0x50
[  286.663525][T10515]  kobject_uevent_env+0xad4/0x101d
[  286.668681][T10515]  ? wait_for_completion+0x440/0x440
[  286.674092][T10515]  kobject_uevent+0x20/0x26
[  286.678721][T10515]  device_del+0x74b/0xc30
[  286.683071][T10515]  ? __device_links_no_driver+0x250/0x250
[  286.688816][T10515]  rfkill_unregister+0xd1/0x2c0
[  286.693692][T10515]  hci_unregister_dev+0x287/0x820
[  286.698846][T10515]  vhci_release+0x76/0xf0
[  286.703189][T10515]  __fput+0x2ff/0x890
[  286.707193][T10515]  ? vhci_close_dev+0x50/0x50
[  286.711884][T10515]  ____fput+0x16/0x20
[  286.715875][T10515]  task_work_run+0x145/0x1c0
[  286.720484][T10515]  exit_to_usermode_loop+0x273/0x2c0
[  286.725874][T10515]  do_syscall_64+0x58e/0x680
[  286.732388][T10515]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  286.738318][T10515] RIP: 0033:0x4592c9
[  286.742236][T10515] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:29:40 executing program 3:
mmap(&(0x7f00001f3000/0x12000)=nil, 0x12000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:40 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x40080, 0x0)
bind$rds(r0, &(0x7f0000000380)={0x2, 0x4e22, @broadcast}, 0x10)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000340)={0x84, 0x0, &(0x7f0000000180)=[@enter_looper, @increfs={0x40046304, 0x3}, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60, 0x18, &(0x7f00000000c0)={@fd={0x66642a85, 0x0, r1}, @ptr={0x70742a85, 0x0, &(0x7f0000000080)=""/42, 0x2a, 0x1, 0x35}, @fda={0x66646185, 0x3, 0x1, 0xd}}, &(0x7f0000000140)={0x0, 0x18, 0x40}}}, @increfs_done={0x40106308, 0x2}, @clear_death={0x400c630f, 0x3}, @increfs={0x40046304, 0x3}, @release={0x40046306, 0x2}], 0xe7, 0x0, &(0x7f0000000240)="7c1a6ad19805dc5c2e055638805c1b84d08c8dbe87a5ab54b3c970e83f68f38366f941cf326be1a6c29063c7dd34da79d741a42023d7e5bda73620e7584616b115ff59b26a384bbbc73c8cc312a40f8de2a20fa72e8397f176e422d468cf9ac58d0479d70cce80b36ee3435a60015377c44cb103055bf3e1ea0c78b370da133b447312c74026d2edd6e5db36a49b767fd92c88e0e4028a4f8e61e514e0334fa9a85641a75b85db656cb240d905e74b407026a868a1abf77ee0fd55261d58a2d22aa188209571280e859307af375ab37f77328bb5546328700716395b7174f9fbbf029c43d978af"})
r2 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0)
readahead(r2, 0x2, 0x8)

[  286.762655][T10515] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  286.771354][T10515] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  286.779441][T10515] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  286.787538][T10515] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  286.795615][T10515] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  286.803594][T10515] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
21:29:40 executing program 4 (fault-call:2 fault-nth:8):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:40 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2e, 0x700000000000000)

21:29:40 executing program 0:
setreuid(0x0, 0xee00)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, <r0=>0x0})
r1 = syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/net\x00')
r2 = geteuid()
ppoll(&(0x7f0000000080)=[{r1}], 0x1, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000100)={0x1}, 0x8)
setuid(r2)

21:29:41 executing program 1 (fault-call:2 fault-nth:1):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  286.981929][T10537] FAULT_INJECTION: forcing a failure.
[  286.981929][T10537] name failslab, interval 1, probability 0, space 0, times 0
[  287.020688][T10537] CPU: 1 PID: 10537 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  287.028748][T10537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  287.038833][T10537] Call Trace:
[  287.042171][T10537]  dump_stack+0x172/0x1f0
[  287.046627][T10537]  should_fail.cold+0xa/0x15
[  287.051270][T10537]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  287.057123][T10537]  ? ___might_sleep+0x163/0x280
[  287.062016][T10537]  __should_failslab+0x121/0x190
[  287.066993][T10537]  should_failslab+0x9/0x14
[  287.071537][T10537]  kmem_cache_alloc_trace+0x2ce/0x750
[  287.076942][T10537]  ? mutex_trylock+0x1e0/0x1e0
[  287.081411][T10544] FAULT_INJECTION: forcing a failure.
[  287.081411][T10544] name failslab, interval 1, probability 0, space 0, times 0
[  287.081900][T10537]  ? kasan_check_write+0x14/0x20
[  287.081928][T10537]  kobject_uevent_env+0x387/0x101d
[  287.081952][T10537]  ? wait_for_completion+0x440/0x440
[  287.110133][T10537]  ? software_node_notify+0xfd/0x2ed
[  287.115455][T10537]  kobject_uevent+0x20/0x26
[  287.119996][T10537]  device_del+0x74b/0xc30
[  287.124411][T10537]  ? __device_links_no_driver+0x250/0x250
[  287.130166][T10537]  ? kobject_put+0x84/0xe0
[  287.134619][T10537]  hci_unregister_dev+0x2c6/0x820
[  287.139681][T10537]  vhci_release+0x76/0xf0
[  287.144044][T10537]  __fput+0x2ff/0x890
[  287.148074][T10537]  ? vhci_close_dev+0x50/0x50
[  287.152784][T10537]  ____fput+0x16/0x20
[  287.156795][T10537]  task_work_run+0x145/0x1c0
[  287.161424][T10537]  exit_to_usermode_loop+0x273/0x2c0
[  287.166751][T10537]  do_syscall_64+0x58e/0x680
[  287.171394][T10537]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  287.177321][T10537] RIP: 0033:0x4592c9
[  287.181329][T10537] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  287.200962][T10537] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  287.209399][T10537] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  287.217392][T10537] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  287.225386][T10537] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  287.233473][T10537] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  287.241468][T10537] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
[  287.251168][T10544] CPU: 1 PID: 10544 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  287.259185][T10544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  287.269263][T10544] Call Trace:
[  287.272579][T10544]  dump_stack+0x172/0x1f0
[  287.276934][T10544]  should_fail.cold+0xa/0x15
[  287.281542][T10544]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  287.287377][T10544]  ? ___might_sleep+0x163/0x280
[  287.292338][T10544]  __should_failslab+0x121/0x190
[  287.297302][T10544]  should_failslab+0x9/0x14
[  287.301825][T10544]  kmem_cache_alloc_node_trace+0x26d/0x720
[  287.308364][T10544]  __kmalloc_node_track_caller+0x3d/0x70
[  287.308386][T10544]  __kmalloc_reserve.isra.0+0x40/0xf0
[  287.319456][T10544]  __alloc_skb+0x10b/0x5e0
[  287.319474][T10544]  ? skb_trim+0x190/0x190
[  287.319495][T10544]  ? _kstrtoul+0x170/0x170
[  287.332743][T10544]  vhci_write+0xc4/0x470
[  287.337020][T10544]  new_sync_write+0x4d3/0x770
[  287.341822][T10544]  ? new_sync_read+0x800/0x800
[  287.346646][T10544]  ? common_file_perm+0x238/0x720
[  287.351697][T10544]  ? __fget+0x381/0x550
[  287.355893][T10544]  ? apparmor_file_permission+0x25/0x30
[  287.361476][T10544]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  287.367868][T10544]  ? security_file_permission+0x8f/0x380
[  287.373540][T10544]  __vfs_write+0xe1/0x110
[  287.377920][T10544]  vfs_write+0x20c/0x580
[  287.382202][T10544]  ksys_write+0x14f/0x290
[  287.386569][T10544]  ? __ia32_sys_read+0xb0/0xb0
[  287.391372][T10544]  ? do_syscall_64+0x26/0x680
[  287.396084][T10544]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  287.402184][T10544]  ? do_syscall_64+0x26/0x680
[  287.406899][T10544]  __x64_sys_write+0x73/0xb0
[  287.411529][T10544]  do_syscall_64+0xfd/0x680
[  287.416107][T10544]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  287.422026][T10544] RIP: 0033:0x4592c9
[  287.425952][T10544] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  287.445708][T10544] RSP: 002b:00007ff4429aec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  287.455364][T10544] RAX: ffffffffffffffda RBX: 00007ff4429aec90 RCX: 00000000004592c9
[  287.463446][T10544] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  287.471669][T10544] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000
[  287.479752][T10544] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429af6d4
[  287.487750][T10544] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
21:29:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2)
close(r0)

21:29:50 executing program 3:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mixer\x00', 0xcc1, 0x0)
setsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f0000000200)=0xffffffffffffff00, 0x4)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0xfffffffffffffffc, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x5ab, 0x101800)
ioctl$TIOCGRS485(r1, 0x542e, &(0x7f0000000040))
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0x10000, 0x4)
ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0x9)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, &(0x7f00000000c0)={{0xffffffffffffffff, 0x0, 0x9, 0x0, 0x6}, 0xffffffff, 0x3, 'id1\x00', 'timer1\x00', 0x0, 0x7, 0x0, 0x100000, 0x2})

21:29:50 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x2f, 0x700000000000000)

21:29:50 executing program 0:
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='comm\x00')
r1 = fcntl$getown(r0, 0x9)
ptrace$getregset(0x4204, r1, 0x800000, &(0x7f0000000040)={&(0x7f00000002c0)=""/126, 0x7e})
ioctl$SIOCRSGCAUSE(0xffffffffffffffff, 0x89e0, 0x0)
writev(r0, &(0x7f0000000040), 0x0)

21:29:50 executing program 4 (fault-call:2 fault-nth:9):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:50 executing program 1 (fault-call:2 fault-nth:2):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  296.465009][T10554] FAULT_INJECTION: forcing a failure.
[  296.465009][T10554] name failslab, interval 1, probability 0, space 0, times 0
[  296.474357][T10555] FAULT_INJECTION: forcing a failure.
[  296.474357][T10555] name failslab, interval 1, probability 0, space 0, times 0
[  296.527006][T10554] CPU: 0 PID: 10554 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  296.535176][T10554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  296.545329][T10554] Call Trace:
[  296.549428][T10554]  dump_stack+0x172/0x1f0
[  296.555396][T10554]  should_fail.cold+0xa/0x15
[  296.560009][T10554]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  296.565836][T10554]  ? ___might_sleep+0x163/0x280
[  296.570708][T10554]  __should_failslab+0x121/0x190
21:29:50 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x30, 0x700000000000000)

[  296.575705][T10554]  should_failslab+0x9/0x14
[  296.580232][T10554]  kmem_cache_alloc_node+0x261/0x710
[  296.580249][T10554]  ? find_held_lock+0x35/0x130
[  296.580280][T10554]  __alloc_skb+0xd5/0x5e0
[  296.594684][T10554]  ? skb_trim+0x190/0x190
[  296.599031][T10554]  ? kasan_check_read+0x11/0x20
[  296.603895][T10554]  alloc_uevent_skb+0x83/0x1e2
[  296.608681][T10554]  kobject_uevent_env+0xaa3/0x101d
[  296.613811][T10554]  ? wait_for_completion+0x440/0x440
[  296.619121][T10554]  kobject_uevent+0x20/0x26
[  296.623735][T10554]  device_del+0x74b/0xc30
[  296.623765][T10554]  ? __device_links_no_driver+0x250/0x250
[  296.623785][T10554]  ? kobject_put+0x84/0xe0
[  296.638300][T10554]  hci_unregister_dev+0x2c6/0x820
[  296.643434][T10554]  vhci_release+0x76/0xf0
[  296.647788][T10554]  __fput+0x2ff/0x890
[  296.651795][T10554]  ? vhci_close_dev+0x50/0x50
[  296.656604][T10554]  ____fput+0x16/0x20
[  296.660595][T10554]  task_work_run+0x145/0x1c0
[  296.660622][T10554]  exit_to_usermode_loop+0x273/0x2c0
[  296.660642][T10554]  do_syscall_64+0x58e/0x680
[  296.660664][T10554]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  296.681028][T10554] RIP: 0033:0x4592c9
[  296.681045][T10554] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  296.681060][T10554] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  296.704587][T10554] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
21:29:50 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x31, 0x700000000000000)

[  296.704597][T10554] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  296.704605][T10554] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  296.704613][T10554] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  296.704621][T10554] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
[  296.757942][T10555] CPU: 1 PID: 10555 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  296.765950][T10555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  296.765957][T10555] Call Trace:
[  296.765981][T10555]  dump_stack+0x172/0x1f0
[  296.766004][T10555]  should_fail.cold+0xa/0x15
[  296.766023][T10555]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  296.766043][T10555]  ? ___might_sleep+0x163/0x280
[  296.766065][T10555]  __should_failslab+0x121/0x190
[  296.766088][T10555]  should_failslab+0x9/0x14
[  296.783819][T10555]  kmem_cache_alloc_node+0x261/0x710
[  296.783837][T10555]  ? trace_hardirqs_off+0x62/0x220
[  296.783860][T10555]  __alloc_skb+0xd5/0x5e0
[  296.783883][T10555]  ? skb_trim+0x190/0x190
[  296.794641][T10555]  ? vhci_write+0x2b3/0x470
[  296.794660][T10555]  ? rcu_read_lock_sched_held+0x110/0x130
[  296.794676][T10555]  ? kmem_cache_free+0x222/0x260
[  296.794697][T10555]  __vhci_create_device+0x88/0x5a0
[  296.794717][T10555]  vhci_write+0x2d0/0x470
[  296.794737][T10555]  new_sync_write+0x4d3/0x770
[  296.804544][T10555]  ? new_sync_read+0x800/0x800
[  296.804568][T10555]  ? common_file_perm+0x238/0x720
[  296.804582][T10555]  ? __fget+0x381/0x550
[  296.804603][T10555]  ? apparmor_file_permission+0x25/0x30
21:29:51 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x32, 0x700000000000000)

[  296.804619][T10555]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  296.804633][T10555]  ? security_file_permission+0x8f/0x380
[  296.804651][T10555]  __vfs_write+0xe1/0x110
[  296.814471][T10555]  vfs_write+0x20c/0x580
[  296.814490][T10555]  ksys_write+0x14f/0x290
[  296.814505][T10555]  ? __ia32_sys_read+0xb0/0xb0
[  296.814524][T10555]  ? do_syscall_64+0x26/0x680
[  296.814540][T10555]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  296.814553][T10555]  ? do_syscall_64+0x26/0x680
[  296.814570][T10555]  __x64_sys_write+0x73/0xb0
[  296.814592][T10555]  do_syscall_64+0xfd/0x680
[  296.824341][T10555]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  296.824353][T10555] RIP: 0033:0x4592c9
[  296.824370][T10555] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  296.824377][T10555] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
21:29:51 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x33, 0x700000000000000)

21:29:51 executing program 4 (fault-call:2 fault-nth:10):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  296.824390][T10555] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  296.824398][T10555] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  296.824406][T10555] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  296.824414][T10555] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  296.824430][T10555] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
21:29:51 executing program 0:
r0 = syz_open_dev$dmmidi(&(0x7f0000000440)='/dev/dmmidi#\x00', 0xfffffffffffffffe, 0x4000000008000)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00')
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000300)={&(0x7f0000000100), 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xe8, r1, 0x418, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0x78, 0x5, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}, @TIPC_NLA_SOCK={0x20, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x287}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}]}, @TIPC_NLA_SOCK={0x18, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x10}, 0x24000000)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
mount$fuse(0x20000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x101008, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x20020, &(0x7f00000000c0)={[{@nojournal_checksum='nojournal_checksum'}]})
ioctl$VIDIOC_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000340)={0x0, @reserved})

21:29:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

[  297.181316][T10580] FAULT_INJECTION: forcing a failure.
[  297.181316][T10580] name failslab, interval 1, probability 0, space 0, times 0
[  297.214334][T10580] CPU: 1 PID: 10580 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  297.222377][T10580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  297.232898][T10580] Call Trace:
[  297.236210][T10580]  dump_stack+0x172/0x1f0
[  297.240576][T10580]  should_fail.cold+0xa/0x15
[  297.245195][T10580]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  297.251023][T10580]  ? ___might_sleep+0x163/0x280
[  297.255898][T10580]  __should_failslab+0x121/0x190
[  297.260846][T10580]  should_failslab+0x9/0x14
[  297.265362][T10580]  __kmalloc+0x2d9/0x740
[  297.269646][T10580]  ? kobject_uevent_env+0x387/0x101d
[  297.269663][T10580]  ? rcu_read_lock_sched_held+0x110/0x130
[  297.269677][T10580]  ? kobject_get_path+0xc4/0x1b0
[  297.269695][T10580]  kobject_get_path+0xc4/0x1b0
[  297.269716][T10580]  kobject_uevent_env+0x3ab/0x101d
[  297.269735][T10580]  ? wait_for_completion+0x440/0x440
[  297.269754][T10580]  ? software_node_notify+0xfd/0x2ed
[  297.269774][T10580]  kobject_uevent+0x20/0x26
[  297.269792][T10580]  device_del+0x74b/0xc30
[  297.269820][T10580]  ? __device_links_no_driver+0x250/0x250
[  297.290797][T10580]  ? kobject_put+0x84/0xe0
[  297.290822][T10580]  hci_unregister_dev+0x2c6/0x820
[  297.290847][T10580]  vhci_release+0x76/0xf0
[  297.290868][T10580]  __fput+0x2ff/0x890
[  297.330506][T10580]  ? vhci_close_dev+0x50/0x50
[  297.330526][T10580]  ____fput+0x16/0x20
[  297.330542][T10580]  task_work_run+0x145/0x1c0
[  297.330566][T10580]  exit_to_usermode_loop+0x273/0x2c0
[  297.330587][T10580]  do_syscall_64+0x58e/0x680
[  297.330610][T10580]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  297.347539][T10580] RIP: 0033:0x4592c9
[  297.347564][T10580] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  297.391461][T10580] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  297.391477][T10580] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  297.391485][T10580] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  297.391492][T10580] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  297.391500][T10580] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  297.391506][T10580] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
[  297.461421][T10581] EXT4-fs (sda1): re-mounted. Opts: nojournal_checksum,
21:29:51 executing program 1 (fault-call:2 fault-nth:3):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:51 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x34, 0x700000000000000)

21:29:51 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:51 executing program 0:
timerfd_create(0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_GET_CHILD_SUBREAPER(0x25)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e0000002c008151e00f80ecdb4cb904014865160b00014102000000000000190e000600000000010000000153b4", 0x2e}], 0x1}, 0x0)
r2 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x40, 0x501001)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000140)={<r3=>0x0, 0x8001}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000001c0)={r3, 0x1}, 0x8)
r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x200000, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00')
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x28001200}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0xb0, r5, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x70, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffffffffffa}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback}, @IPVS_DEST_ATTR_TUN_TYPE={0x8, 0xd, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xfffffffffffffff9}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x7}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3f}]}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x29}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}]}, 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x840)

[  297.539219][T10589] FAULT_INJECTION: forcing a failure.
[  297.539219][T10589] name failslab, interval 1, probability 0, space 0, times 0
[  297.594388][T10589] CPU: 0 PID: 10589 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  297.602434][T10589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  297.612503][T10589] Call Trace:
[  297.615815][T10589]  dump_stack+0x172/0x1f0
[  297.620164][T10589]  should_fail.cold+0xa/0x15
[  297.624771][T10589]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  297.630592][T10589]  ? ___might_sleep+0x163/0x280
[  297.635477][T10589]  __should_failslab+0x121/0x190
[  297.640433][T10589]  should_failslab+0x9/0x14
[  297.645123][T10589]  kmem_cache_alloc_node_trace+0x26d/0x720
[  297.650969][T10589]  __kmalloc_node_track_caller+0x3d/0x70
[  297.656613][T10589]  __kmalloc_reserve.isra.0+0x40/0xf0
[  297.661989][T10589]  __alloc_skb+0x10b/0x5e0
[  297.666412][T10589]  ? skb_trim+0x190/0x190
[  297.670744][T10589]  ? vhci_write+0x2b3/0x470
[  297.675257][T10589]  ? rcu_read_lock_sched_held+0x110/0x130
[  297.680983][T10589]  ? kmem_cache_free+0x222/0x260
[  297.685928][T10589]  __vhci_create_device+0x88/0x5a0
[  297.691084][T10589]  vhci_write+0x2d0/0x470
[  297.695420][T10589]  new_sync_write+0x4d3/0x770
[  297.700115][T10589]  ? new_sync_read+0x800/0x800
[  297.704900][T10589]  ? common_file_perm+0x238/0x720
[  297.709935][T10589]  ? __fget+0x381/0x550
[  297.714100][T10589]  ? apparmor_file_permission+0x25/0x30
[  297.719655][T10589]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  297.725926][T10589]  ? security_file_permission+0x8f/0x380
[  297.739473][T10589]  __vfs_write+0xe1/0x110
[  297.743913][T10589]  vfs_write+0x20c/0x580
[  297.748185][T10589]  ksys_write+0x14f/0x290
[  297.752535][T10589]  ? __ia32_sys_read+0xb0/0xb0
[  297.757428][T10589]  ? do_syscall_64+0x26/0x680
[  297.762127][T10589]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  297.768303][T10589]  ? do_syscall_64+0x26/0x680
[  297.773012][T10589]  __x64_sys_write+0x73/0xb0
[  297.777718][T10589]  do_syscall_64+0xfd/0x680
[  297.782790][T10589]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  297.788727][T10589] RIP: 0033:0x4592c9
[  297.792636][T10589] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  297.812340][T10589] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  297.820958][T10589] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  297.828952][T10589] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
21:29:51 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000240)='/proc/capi/capi20\x00', 0x1, 0x0)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000280)={&(0x7f00002ea000/0x4000)=nil, &(0x7f000063f000/0x4000)=nil, 0x4000, 0x1})
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000340)='/dev/null\x00', 0x2, 0x0)
ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000080)=""/226)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000180))
ioctl$CAPI_GET_SERIAL(r1, 0xc0044308, &(0x7f0000000040))
openat$md(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/md0\x00', 0x40, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r0, 0xfffd, 0x7fff, r0})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x482100, 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000300), 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000380)={<r2=>0x0, 0x7b5}, &(0x7f00000003c0)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000400)={r2, 0x5a2ef46a, 0x30, 0x7, 0x2f}, &(0x7f0000000440)=0x18)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x4, 0x0, 0x0)

21:29:51 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x35, 0x700000000000000)

[  297.838900][T10589] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  297.846888][T10589] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  297.854886][T10589] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
21:29:52 executing program 4 (fault-call:2 fault-nth:11):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x36, 0x700000000000000)

21:29:52 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={<r1=>0x0, 0x8001}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000000c0)={r1, 0x80, 0xe1, "a8618557b58058e0c354cf84e4a71c164b0b63b193fd25ce7255ee32bbbeb63542a452da169800dfc10f6e9fb6cf1bed049490663144b74df5f335a6527072d151eaee4a1501ad4bb10ac25e82791a82629d496639e382cd13665a50828bd6c8309de00b5bad2f2c8dc4611ba4df320bcb8d0ef1fb25616c6734710cc8f01892d0d07ec36904f19a49815654e10d7333e6382c33f49b489a7f1ca8a07a8581e41a17dfdd9251b6e03a0dec09e1dae90f7ecf796425eaccc0822bb27b3703fadf0ae1bd7e0956cbf9e103c6f708ba7c7261facc2e5fb0bddb1a002d30ea50eb4631"}, 0xe9)
ioctl$EVIOCSABS3F(r0, 0x401845ff, &(0x7f00000001c0)={0x7, 0x2, 0x3, 0x3, 0x31c, 0x7fff})
remap_file_pages(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x8, 0x3, 0x1)

21:29:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(0xffffffffffffffff)

21:29:52 executing program 0:
timerfd_create(0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_GET_CHILD_SUBREAPER(0x25)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e0000002c008151e00f80ecdb4cb904014865160b00014102000000000000190e000600000000010000000153b4", 0x2e}], 0x1}, 0x0)
r2 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x40, 0x501001)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000140)={<r3=>0x0, 0x8001}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000001c0)={r3, 0x1}, 0x8)
r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x200000, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00')
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x28001200}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0xb0, r5, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x70, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffffffffffa}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback}, @IPVS_DEST_ATTR_TUN_TYPE={0x8, 0xd, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xfffffffffffffff9}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x7}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3f}]}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x29}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}]}, 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x840)

21:29:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x37, 0x700000000000000)

[  298.179865][T10613] FAULT_INJECTION: forcing a failure.
[  298.179865][T10613] name failslab, interval 1, probability 0, space 0, times 0
[  298.206895][T10613] CPU: 0 PID: 10613 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  298.215402][T10613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  298.225482][T10613] Call Trace:
[  298.228910][T10613]  dump_stack+0x172/0x1f0
[  298.233284][T10613]  should_fail.cold+0xa/0x15
[  298.237915][T10613]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  298.243766][T10613]  ? ___might_sleep+0x163/0x280
[  298.248660][T10613]  __should_failslab+0x121/0x190
[  298.253627][T10613]  should_failslab+0x9/0x14
[  298.258157][T10613]  kmem_cache_alloc_node+0x261/0x710
[  298.263734][T10613]  ? find_held_lock+0x35/0x130
[  298.268549][T10613]  __alloc_skb+0xd5/0x5e0
[  298.272992][T10613]  ? skb_trim+0x190/0x190
[  298.277347][T10613]  ? kasan_check_read+0x11/0x20
[  298.282317][T10613]  alloc_uevent_skb+0x83/0x1e2
[  298.287109][T10613]  kobject_uevent_env+0xaa3/0x101d
[  298.292246][T10613]  ? wait_for_completion+0x440/0x440
[  298.297581][T10613]  kobject_uevent+0x20/0x26
[  298.302302][T10613]  device_del+0x74b/0xc30
[  298.306666][T10613]  ? __device_links_no_driver+0x250/0x250
[  298.312409][T10613]  ? kobject_put+0x84/0xe0
[  298.316862][T10613]  hci_unregister_dev+0x2c6/0x820
[  298.321921][T10613]  vhci_release+0x76/0xf0
[  298.326433][T10613]  __fput+0x2ff/0x890
[  298.330532][T10613]  ? vhci_close_dev+0x50/0x50
[  298.335219][T10613]  ____fput+0x16/0x20
[  298.339214][T10613]  task_work_run+0x145/0x1c0
[  298.343816][T10613]  exit_to_usermode_loop+0x273/0x2c0
[  298.349110][T10613]  do_syscall_64+0x58e/0x680
[  298.354760][T10613]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  298.360665][T10613] RIP: 0033:0x4592c9
[  298.364571][T10613] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  298.384977][T10613] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  298.393414][T10613] RAX: 0000000000000000 RBX: 00007fd5e8777c90 RCX: 00000000004592c9
[  298.401403][T10613] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  298.409916][T10613] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  298.417932][T10613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
21:29:52 executing program 1 (fault-call:2 fault-nth:4):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:52 executing program 3:
accept4$unix(0xffffffffffffff9c, &(0x7f0000000000), &(0x7f0000000080)=0x6e, 0x800)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='\x00'}, 0x10)
mmap(&(0x7f0000bee000/0x1000)=nil, 0x1000, 0x0, 0x4010, r0, 0x10000000000004)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x2000003, 0xfffffffffffffffd, 0x0)

[  298.425920][T10613] R13: 00000000004f8052 R14: 00000000004d0e30 R15: 0000000000000004
[  298.464230][T10621] FAULT_INJECTION: forcing a failure.
[  298.464230][T10621] name failslab, interval 1, probability 0, space 0, times 0
[  298.513120][T10621] CPU: 1 PID: 10621 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  298.521205][T10621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  298.531320][T10621] Call Trace:
[  298.534659][T10621]  dump_stack+0x172/0x1f0
[  298.539044][T10621]  should_fail.cold+0xa/0x15
[  298.543770][T10621]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  298.549968][T10621]  ? ___might_sleep+0x163/0x280
[  298.554867][T10621]  __should_failslab+0x121/0x190
[  298.559888][T10621]  should_failslab+0x9/0x14
[  298.564460][T10621]  kmem_cache_alloc_trace+0x2ce/0x750
[  298.569867][T10621]  ? skb_trim+0x190/0x190
[  298.574311][T10621]  ? vhci_write+0x2b3/0x470
[  298.578836][T10621]  ? rcu_read_lock_sched_held+0x110/0x130
[  298.584581][T10621]  hci_alloc_dev+0x43/0x1d00
[  298.589209][T10621]  __vhci_create_device+0x101/0x5a0
[  298.594455][T10621]  vhci_write+0x2d0/0x470
[  298.598908][T10621]  new_sync_write+0x4d3/0x770
[  298.603885][T10621]  ? new_sync_read+0x800/0x800
21:29:52 executing program 3:
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x4000, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TCSETXF(r1, 0x5434, &(0x7f0000000040)={0x5, 0x1000, [0x80000000, 0xe29b, 0x41, 0x5, 0x4], 0x1})
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:52 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x210000, 0x0)
mmap$perf(&(0x7f0000527000/0x2000)=nil, 0x2000, 0xe, 0x10011, r0, 0x0)

21:29:52 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
getresuid(&(0x7f0000000180)=<r0=>0x0, &(0x7f00000001c0), &(0x7f0000000200))
r1 = getuid()
r2 = geteuid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0xc)
lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@loopback}}, &(0x7f0000000480)=0xe8)
getresgid(&(0x7f00000004c0)=<r6=>0x0, &(0x7f0000000500), &(0x7f0000000540))
lstat(&(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getgroups(0xa, &(0x7f0000000640)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xee00, 0xffffffffffffffff, 0xffffffffffffffff, <r8=>0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xee00])
stat(&(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
r10 = getgid()
fstat(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
lstat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0})
setxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000880)={{}, {0x1, 0x5}, [{0x2, 0x1, r0}, {0x2, 0x0, r1}, {0x2, 0x3, r2}, {0x2, 0x3, r3}, {0x2, 0x2, r4}, {0x2, 0x7, r5}], {0x4, 0x2}, [{0x8, 0x6, r6}, {0x8, 0x1, r7}, {0x8, 0x1, r8}, {0x8, 0x5, r9}, {0x8, 0x7, r10}, {0x8, 0x5, r11}, {0x8, 0x4, r12}], {0x10, 0x1}, {0x20, 0x4}}, 0x8c, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r13 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2)
ioctl$SIOCX25GCALLUSERDATA(r13, 0x89e4, &(0x7f0000000040)={0x7a, "fe7025bf5c2628671bf084cd9b2a722d83cfdce29f1d6e010b7b4252440c2b97e5e627d42d75a369a47885568beb33ab2b6190b95a6e4e0f3f019f1fc82e464c42333939efeec7f769ac02deb0fe6f102e745db5c9f5a856f4b64a65ee6e4c064a46c74c07d06fc22bbd1d466012b6b0475176e72abbcd3287eeb214c98d1af7"})

[  298.608828][T10621]  ? common_file_perm+0x238/0x720
[  298.613974][T10621]  ? __fget+0x381/0x550
[  298.618261][T10621]  ? apparmor_file_permission+0x25/0x30
[  298.624021][T10621]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  298.630600][T10621]  ? security_file_permission+0x8f/0x380
[  298.636275][T10621]  __vfs_write+0xe1/0x110
[  298.636297][T10621]  vfs_write+0x20c/0x580
[  298.636314][T10621]  ksys_write+0x14f/0x290
[  298.636329][T10621]  ? __ia32_sys_read+0xb0/0xb0
[  298.636347][T10621]  ? do_syscall_64+0x26/0x680
[  298.636363][T10621]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  298.636377][T10621]  ? do_syscall_64+0x26/0x680
[  298.636400][T10621]  __x64_sys_write+0x73/0xb0
[  298.636414][T10621]  do_syscall_64+0xfd/0x680
[  298.636429][T10621]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  298.636440][T10621] RIP: 0033:0x4592c9
[  298.660488][T10621] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  298.660498][T10621] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  298.660512][T10621] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  298.660520][T10621] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  298.660528][T10621] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  298.660537][T10621] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
21:29:52 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=<r1=>0x0)
fcntl$lock(r0, 0x24, &(0x7f0000000100)={0x2, 0x0, 0x2, 0x8, r1})
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x7a02a66c, 0x80c00)
ioctl(r2, 0x1000008912, &(0x7f0000000b40)="c0dc00025e0b01077be070")
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x0, 0x0)
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$VIDIOC_S_FREQUENCY(r5, 0x402c5639, &(0x7f0000000300)={0x884, 0x3, 0x3})
ioctl$UI_SET_KEYBIT(r5, 0x40045565, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000002c0)={<r6=>0xffffffffffffffff}, 0x111, 0xf}}, 0x2)
write$RDMA_USER_CM_CMD_CONNECT(r5, &(0x7f0000000180)={0x6, 0x118, 0xfa00, {{0x9, 0x7, "433c1bfeba71a48cf17baef3154fd9dc2def40dcb5aaa6e5c6a718c3625cd10405060a36ab67b95cb10fafb34b2bd8b461b66c98ada355811d1be8b7f66a9eeec8893c957bc0d9a6faa18541d407a657fff7260f41951fcf743faef9d283980aa57e4aa9eb2bc85ee9c6c9dde187900170200469e3370774b620aa565e020a659eb1aff29934e257e7499adce15525a7a1a5ad8fda865d7059a5ae67874e1299acbdb7a728aeed2cdca45edecc502eb32bf59e0b056090dfc69e339bb95c5f69934960e5e052f20dbacbfec866bb6d86f4e4c528588840e7905e244592a82c25639cefd0c2922f8d971ebd20ba8f9b86f2e14703edb9b4f0067380e2b6a29931", 0x34, 0x9, 0x3, 0x2, 0x91, 0x40, 0x6, 0x1}, r6}}, 0x120)
bind$bt_rfcomm(r5, &(0x7f0000000000)={0x1f, {0xffffffffffffffff, 0x1ff, 0x3}}, 0xa)
socket$inet6_udp(0xa, 0x2, 0x0)

[  298.660545][T10621] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
21:29:52 executing program 4 (fault-call:2 fault-nth:12):
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x38, 0x700000000000000)

21:29:52 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x3, 0x200)
ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f00000001c0)=0x8)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'gre0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="0f0000000900000000000000c15b00000500000005000000ae1cf5ff06000000060000fb00000020000000080000006a00000002000000000000000000000007000000ffffff7f590000000000400200000000000000000001000000"]})
ioctl$VIDIOC_SUBDEV_S_SELECTION(r0, 0xc040563e, &(0x7f0000000140)={0x1, 0x0, 0x3, 0x5, {0x3b, 0x7ff, 0x7d, 0x1}})

21:29:53 executing program 1 (fault-call:2 fault-nth:5):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x39, 0x700000000000000)

21:29:53 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000003000000010000000100000f00000000000000000000000a01000000005f00"], 0x0, 0x33}, 0x20)

21:29:53 executing program 3:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
mmap(&(0x7f00002a8000/0x1000)=nil, 0x1000, 0x0, 0x64031, r0, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x115600, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4a0}, 0xc, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1c8, r2, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x34, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x81}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x80000001}]}, @TIPC_NLA_NET={0x2c, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x200}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfffffffffffffffe}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xffffffff}]}, @TIPC_NLA_BEARER={0x154, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x9, @rand_addr="62c6a5597c79ff00ff024a298b60e062", 0x9}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x401, @dev={0xfe, 0x80, [], 0xc}, 0x3}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x8001, @local, 0x7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x7, @ipv4={[], [], @remote}, 0xfff}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x2, @dev={0xfe, 0x80, [], 0x28}, 0x2}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfd5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xac}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'veth1\x00'}}]}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)

[  299.020467][T10652] FAULT_INJECTION: forcing a failure.
[  299.020467][T10652] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  299.033897][T10652] CPU: 1 PID: 10652 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  299.033909][T10652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  299.033914][T10652] Call Trace:
[  299.033945][T10652]  dump_stack+0x172/0x1f0
[  299.033971][T10652]  should_fail.cold+0xa/0x15
[  299.033991][T10652]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  299.034017][T10652]  should_fail_alloc_page+0x50/0x60
[  299.034035][T10652]  __alloc_pages_nodemask+0x1a1/0x8d0
[  299.034051][T10652]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  299.034067][T10652]  ? __alloc_pages_slowpath+0x28f0/0x28f0
[  299.034079][T10652]  ? fs_reclaim_acquire.part.0+0x30/0x30
[  299.034106][T10652]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  299.034130][T10652]  cache_grow_begin+0x9d/0x650
[  299.034148][T10652]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  299.034169][T10652]  kmem_cache_alloc_trace+0x67c/0x750
21:29:53 executing program 5 (fault-call:2 fault-nth:0):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  299.034200][T10652]  hci_alloc_dev+0x43/0x1d00
[  299.070528][T10652]  __vhci_create_device+0x101/0x5a0
[  299.070550][T10652]  vhci_write+0x2d0/0x470
[  299.070569][T10652]  new_sync_write+0x4d3/0x770
[  299.070589][T10652]  ? new_sync_read+0x800/0x800
[  299.086890][T10652]  ? common_file_perm+0x238/0x720
[  299.086910][T10652]  ? __fget+0x381/0x550
[  299.104156][T10652]  ? apparmor_file_permission+0x25/0x30
[  299.104175][T10652]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
21:29:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00')
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000001e80)='/dev/qat_adf_ctl\x00', 0x2a0000, 0x0)
getsockopt$IPT_SO_GET_ENTRIES(r2, 0x0, 0x41, &(0x7f0000001ec0)={'raw\x00', 0x1000, "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"}, &(0x7f0000002f00)=0x1024)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="28100000", @ANYRES16=r1, @ANYBLOB="270700000000000000000800000014000100080001000a0000000800050000050000"], 0x28}}, 0x0)

[  299.104190][T10652]  ? security_file_permission+0x8f/0x380
[  299.104208][T10652]  __vfs_write+0xe1/0x110
[  299.104226][T10652]  vfs_write+0x20c/0x580
[  299.104244][T10652]  ksys_write+0x14f/0x290
[  299.104268][T10652]  ? __ia32_sys_read+0xb0/0xb0
[  299.115366][T10652]  ? do_syscall_64+0x26/0x680
[  299.115384][T10652]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  299.115399][T10652]  ? do_syscall_64+0x26/0x680
[  299.115428][T10652]  __x64_sys_write+0x73/0xb0
[  299.125394][T10652]  do_syscall_64+0xfd/0x680
[  299.125417][T10652]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  299.125429][T10652] RIP: 0033:0x4592c9
[  299.125446][T10652] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  299.125454][T10652] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  299.125468][T10652] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  299.125484][T10652] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
21:29:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x3a, 0x700000000000000)

21:29:53 executing program 3:
r0 = eventfd2(0x7f, 0x1)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, r0, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xffffffffffffffff, 0x40)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000080)={<r2=>0x0, 0x737, 0x9}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000100)={r2, 0x7d}, &(0x7f0000000140)=0x8)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x22001, 0x20)

[  299.139667][T10652] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  299.139677][T10652] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  299.139686][T10652] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
[  299.311150][T10661] FAULT_INJECTION: forcing a failure.
[  299.311150][T10661] name failslab, interval 1, probability 0, space 0, times 0
[  299.330910][T10661] CPU: 1 PID: 10661 Comm: syz-executor.5 Not tainted 5.2.0-rc5+ #37
[  299.338970][T10661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  299.349052][T10661] Call Trace:
[  299.352390][T10661]  dump_stack+0x172/0x1f0
[  299.356787][T10661]  should_fail.cold+0xa/0x15
[  299.361430][T10661]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  299.367304][T10661]  __should_failslab+0x121/0x190
[  299.372364][T10661]  should_failslab+0x9/0x14
[  299.376899][T10661]  kmem_cache_alloc_node+0x261/0x710
[  299.382218][T10661]  ? lock_downgrade+0x880/0x880
[  299.387112][T10661]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  299.394297][T10661]  __alloc_skb+0xd5/0x5e0
[  299.398659][T10661]  ? skb_trim+0x190/0x190
[  299.398688][T10661]  vhci_write+0xc4/0x470
[  299.398709][T10661]  new_sync_write+0x4d3/0x770
[  299.407310][T10661]  ? new_sync_read+0x800/0x800
[  299.407327][T10661]  ? retint_kernel+0x2b/0x2b
21:29:53 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1, &(0x7f0000000080)="11dca5055e0bcfec7be070")
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000100)=@id={0x1e, 0x3, 0x3, {0x4e20, 0x3}}, 0x0)
r2 = openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x80000, 0x0)
setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r2, 0x111, 0x4, 0x0, 0x4)
bind$tipc(r1, 0x0, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x201, 0x0)
ioctl$SG_SET_TIMEOUT(r3, 0x2201, &(0x7f0000000040))

[  299.407346][T10661]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  299.407367][T10661]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  299.421431][T10661]  ? retint_kernel+0x2b/0x2b
[  299.421455][T10661]  __vfs_write+0xe1/0x110
[  299.421483][T10661]  vfs_write+0x20c/0x580
[  299.441712][T10661]  ksys_write+0x14f/0x290
[  299.450403][T10661]  ? __ia32_sys_read+0xb0/0xb0
[  299.455304][T10661]  __x64_sys_write+0x73/0xb0
[  299.455323][T10661]  ? do_syscall_64+0x5b/0x680
[  299.455346][T10661]  do_syscall_64+0xfd/0x680
[  299.464673][T10661]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  299.464685][T10661] RIP: 0033:0x4592c9
[  299.464703][T10661] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  299.464711][T10661] RSP: 002b:00007f17a8a92c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  299.464724][T10661] RAX: ffffffffffffffda RBX: 00007f17a8a92c90 RCX: 00000000004592c9
21:29:53 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:53 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0xfffffffffffffffe, 0x4110, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
write$nbd(r1, &(0x7f0000000040)={0x67446698, 0x1, 0x0, 0x0, 0x3, "f4fd50a5eef21baa286c8536bb8be14f90c5c4e2ab41145415445c15529196e1f5bf5d79962877cd3322c2594d609650ad0bc8b3e814be598dc6491fe33379c9af087cc09372cf95ed8d92b716dc10d31e0a2a1b5d0fd2913a693f11652eda1ae5dc3ce7b30d2f81034946e510f3c567fc226257a0c77523d66cb3275e95105b3a28058b1e76d273f2acd73e601860710b075cb1a34ae434e10d97dc5fbb231545adc616f5cec8b88ce1f10c2122152184c23cfed829971ef1e5849561bd1c1e7ef340d819950ebc2740d616"}, 0xdc)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r0, 0xc0405519, &(0x7f0000000280)={0x9, 0x0, 0xffffffff, 0x8, 'syz1\x00', 0x8fb})
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000180)='fou\x00')
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r1, 0xc0305616, &(0x7f00000002c0)={0x0, {0x20, 0x2}})
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000020}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r2, 0x0, 0x70bd2d, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_PORT={0x8, 0xa, 0x4e21}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}]}, 0x34}, 0x1, 0x0, 0x0, 0x40005}, 0x4004080)

21:29:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x3b, 0x700000000000000)

[  299.464732][T10661] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000004
[  299.464739][T10661] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  299.464747][T10661] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f17a8a936d4
[  299.464755][T10661] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000005
21:29:53 executing program 1 (fault-call:2 fault-nth:6):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:53 executing program 0:
r0 = eventfd2(0x7f, 0x1)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, r0, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xffffffffffffffff, 0x40)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000080)={<r2=>0x0, 0x737, 0x9}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000100)={r2, 0x7d}, &(0x7f0000000140)=0x8)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x22001, 0x20)

21:29:53 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x3c, 0x700000000000000)

21:29:53 executing program 3:
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = socket$netlink(0x10, 0x3, 0xf)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x1fffffe, 0x64031, r0, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  299.807916][T10692] FAULT_INJECTION: forcing a failure.
[  299.807916][T10692] name failslab, interval 1, probability 0, space 0, times 0
[  299.848522][T10692] CPU: 1 PID: 10692 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  299.856664][T10692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  299.866759][T10692] Call Trace:
[  299.870101][T10692]  dump_stack+0x172/0x1f0
[  299.874478][T10692]  should_fail.cold+0xa/0x15
[  299.879106][T10692]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  299.884961][T10692]  ? ___might_sleep+0x163/0x280
[  299.889850][T10692]  __should_failslab+0x121/0x190
[  299.894820][T10692]  should_failslab+0x9/0x14
[  299.899354][T10692]  kmem_cache_alloc_trace+0x2ce/0x750
[  299.904934][T10692]  ? rcu_read_lock_sched_held+0x110/0x130
[  299.910691][T10692]  ? __kmalloc+0x5d2/0x740
[  299.915150][T10692]  alloc_workqueue_attrs+0x82/0x120
[  299.920390][T10692]  alloc_workqueue+0x190/0xf00
[  299.925366][T10692]  ? workqueue_sysfs_register+0x3f0/0x3f0
[  299.931191][T10692]  ? scnprintf+0x140/0x140
[  299.935918][T10692]  ? __init_waitqueue_head+0x36/0x90
[  299.941596][T10692]  hci_register_dev+0x1b8/0x860
[  299.946740][T10692]  ? hci_init_sysfs+0x7c/0xa0
[  299.951442][T10692]  __vhci_create_device+0x2d0/0x5a0
[  299.956661][T10692]  vhci_write+0x2d0/0x470
[  299.961010][T10692]  new_sync_write+0x4d3/0x770
[  299.965707][T10692]  ? new_sync_read+0x800/0x800
[  299.970496][T10692]  ? common_file_perm+0x238/0x720
[  299.975709][T10692]  ? __fget+0x381/0x550
[  299.979888][T10692]  ? apparmor_file_permission+0x25/0x30
[  299.985460][T10692]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  299.991719][T10692]  ? security_file_permission+0x8f/0x380
[  299.997453][T10692]  __vfs_write+0xe1/0x110
[  300.001826][T10692]  vfs_write+0x20c/0x580
[  300.006091][T10692]  ksys_write+0x14f/0x290
[  300.010437][T10692]  ? __ia32_sys_read+0xb0/0xb0
[  300.015214][T10692]  ? do_syscall_64+0x26/0x680
[  300.020007][T10692]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  300.026093][T10692]  ? do_syscall_64+0x26/0x680
[  300.030790][T10692]  __x64_sys_write+0x73/0xb0
[  300.035399][T10692]  do_syscall_64+0xfd/0x680
[  300.039922][T10692]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  300.045821][T10692] RIP: 0033:0x4592c9
[  300.049727][T10692] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  300.069342][T10692] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  300.077772][T10692] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  300.085767][T10692] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
21:29:54 executing program 5 (fault-call:2 fault-nth:1):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:54 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
ftruncate(r0, 0x4)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000140)=0x2, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)

21:29:54 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x3d, 0x700000000000000)

[  300.093753][T10692] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  300.101737][T10692] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  300.109725][T10692] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
[  300.132296][T10692] Bluetooth: Can't register HCI device
21:29:54 executing program 1 (fault-call:2 fault-nth:7):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:54 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000080)="11dca5055e0bcfec7be070")
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000140)={0x4000000000009}, 0xa27d0e9a56beb3ee)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipmr_getroute={0x1c, 0x1a, 0xf}, 0x1c}}, 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r2, &(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, "76c04ba001ee9576f8b1ebd1f671a9113ab09a355cd94d991896e26474aeb462176d4f268f9a74e4f7bffdc3c99a0d89e9da34588b77d3856240cfef2c2734dc33fce7df0d0a453147529c076cd8e9979aa31c7b825b4ec33da070c60076c58366ed3b5661b7e8e135ec2493ed4a3c383bc56028d06ad43dd572d359a03a00c3d3c1d43f949f400a21a1c1506d86f171b9e6470a88dd438eddce888e1141ed6a6279023e914869b7d5932821204a47334b78f9471f40720281da881e983086753e57c646e55d41e71d6a91961ec1a7fecd39af5c111ac6cde8614d08ec7c9a8b04566b1160436778d0ee1da9a26ff1bb3d69db30bfc45bbdaf22667c18e37f8362de87f92dde98f7648ec9cffe82be97a004edde8ba5cac92ce27bdf07116306066961657405bf2382b8a3a172a6d2caecae452e9cbe4cb26e1b81411dad075e3d1f6cc441596d12a13ed553ffe1585831fccbd4587cd6309971e0441a9a5c9d1ae32911218f12dfe9fffbbeed8c2bcd45e42e1b6d1f3456b1df4951958b183a6e582b8638fe0ff0eb836bd427cc4a9951fdf02418b59dc555d1adc07cedbdbdd118dab737ab73a836d49b88a4f39a099d26c3d9376f422d792a33ddae7961e9ed2ca68380ac571aca9e79568abca33774974b4cb239a33b10a9657f92c7a5488397f382044475715a1423696e400c14afe64e8a7d404c4ad8e87ad798a85774cb2d74c94bda47ad964c0d7bb84165a01069d70c238652ea19e1371db292fb7de7f22f5424b4b34eb9615760053e4550e3199a5c32d750df8e731eb72aab711980734aa20d5c3fcb7cd36a8cd4424180295d094a3b9c8d2e290700d0063d81cf197d9cccc2eef3cee28443d6b6c4ac974db51885eb6e282b76cc63706da2ef423b950bbeb5e2042c16afa213eca2150215a3b1b7fd0c837131ba7297fc5ca97d9539dcfd2f5ee6e418f2d9199866845860ed935c13866fb048a79a9bfe697700f6d87c24901f51781a9ebd2027eab29caf4e5577ee54ea2c8d9ef719918b7f76f948d7e0ecf343c5ddd1f9d30683385e2ecba27c5f47d35240e2a335ab5baa6e8eb124dfd2e7f721dd010a9b21dfdca3ecc5759309beddc8881f6aa6ab3eb7a4f7d7afbd6a646e6f55ab7856df5a90c8b6974e406eea819cb0066a43dca0ca49a74e2bfaa0995021ceac1cc1271b66af825ca409666819eeeee250836f54c5a45eb0563629d394f2bdf3d6ff52c5d422d3075c27718db71fb15d634ae81acab200ae1b8d8aaa92aae3196ed6163f6cdbf181c4a77c0194734798f0c0c0f30152228167f2106a1f25af060d727954b5db79600e347a068f7f56f837f4b4f4039f3b8affb4ec256559af446588282a37bce525f3ea44c576035764f053ac402520f5dad48e76fd45d5b0f8731fe6db24d073ea6def9589b998968a9276c0c3400a760883da28d2f00927dc6a472845644895518b5c4f1515704c11deb81483c9c9d09348f54060d8a8660175f5624e762b3b432362f60da07e18bb2a0a1d85a2135faa195385e45cdcb0d370d883e9b5792ff6d8a93aece429094883b4697f8f32ddf725efe4ae16b03afc5e08c5d5f4d50e36bd7abd7bbeaed4f51089914d42bb14025c80dc25dc708108be69882d6baecc9b0b4d65db8a211d01d198818859ed4e3b23d104bbcd1147b224c50202742ab02bcba28f9e99482db0d714affb23cf58162dd1236dd5710499ceeeb8608c5055540fea231550dc2613b4d32a176d7252f0e3a9cc48f28db2fa78ddf6c1433ac3a791d19af96f769022906f7b8f59b90a4fe89c4e7c6dd18a70a42adc441ba1f70a659660978338b0c27869b0a0465b2111761b7ba18d300f0a3106a3c61f7817250b36492a8d65465e1b0680e1c56f731324105639d27d50128e308d56e4d1df0226799b58379dbe53081b332e58432b54d6ab90320ec12a14e4a59446227cf7528a2faec2769fcfa5a209467c79ecacbef327de2beb14594c4bf0e42115f9536343ca6b5ec18c77eb4c9a09527612fcf796abe7b5fd58cd3ac3f8b4e838dc49f2458a3a1daabbf497369419c7a7d3db0661f4762391563b03af29da831df7d7b53e9f5eda8c86cf67e3b70883138dff70e19a95b5bf33f594e9cb1396f35ef3169860ab61bc3925a3bb38d1f71465bc2b99a23cb91f1e7d9e9509c3316bd31a188462a3ddfbc4c9c264581fe0e4562bf6be52bbc5f0337d164aa094e75c2c8015fcbae1f2a5e594ff5ddd47c8e71552ecb481338f003d5eb97e01e2a5b2385ae002b9990fd26908e2894ff4cd605ada62dc4e4c8b615e7a299b31619876ed95b6b026c0a6a25ad209ccf9285d0ff20f3f48ca8f866adda0449b0458bca7b530d020ea347faa03d084566875873574a36cb6c8afc83a7260e7c3d084bfcca609d5a1d197cbde07a150ef2d77441a15d36fe22a3850cee4b7529ffb690d9db50a98811f7035d2664b4c8d41761c3f31fa33351ac43a4b0d8f8dd16ce47332df280abe46751fd6dd35c62d6b546c84419a16e79c1c787303ec4a68be3b4522c49187cd2841d5024ccf54b34404e700c4e948e9a7d0784fff5d98b01db9ab3039ab3ae1e1670ca1164731e974b8015aaf1c64bec903d37f58df0cdc539f8a03aabce4bd4e7ba2069160ee28fa913b5fbc88437d503607e05cd9ac0d65940f6e586440f93ce5cfc31220f2924cd2a8f397ff0bd12cc74dd6b164040f70c048d527181b7692f51decb13cbc4b1ce61d2c1ac854e0772307fcfb165eb5e4bf59581477cae55120e666f9c66903f7fedc02f7fbdf813203a68c081b85f583739ac011685d9e90ecafef9d8a595ce677e2fa4a73fdbf5f4b5b492cb2963c72638b1592953dfea17986c7c2f9db28dbbf5a862ed7bfb5a5fc7377a318f9bfe1538d48cd34dfa122bac634679a22de8286e319fdcbf37c444cd32c3e507f7d8dc821ded77927e748825dff1f67414fb8a1cd3830aa8cd57697274097ab31fdfc0bab5f4dc5b5c46a2ac00da5fb9b45ad4ab3f0bfd55687fa089ac1832ff5f7ec2bfc0e7ad50da5202e32cbaa1e3d052d457866994f2392b502d60341286a9326332fd474acfbc6b31e6d336bb1c2e15739a75d2814cc9ca921f65b4a6bbabe2dc1985687fbcb0e7a87f67005dd9fada9b21fb43377531931dd8245e022619b648f75c997adac0542d8a6015f12e77e1de1838cd051b0282e17568c90e2255eb4a31e972a1b94e8f4dff55f19b009ffb2f99800b9ff4b06ad69b4f828aabcabac9a8b018f0479904d71da7a19f4072637266da21b3c170ad97388aaebba3a1e4790239823954c12ed791f39778adec0f4aa0753d90aaf42ab82cd6b8ead39ae332cd3ac613b69d34a956e04755ed89c52688fedfa64ad51e0e29dc3f9ef645981f36d778247a37fc9d00be691d8e239fbd32cc0f7c2beb576997d322942cf5abfd976b211d43005fac1a4ec4a7312df4c288edef1d86bc4ca869ec512788d1580e23c521a0dd21b174c2787bb3893b550692055deca781b4481675249b1eb0541b8207819747190ff01a09465d2b5ad6d0d830cc8a37fd8cd90af58666322583f65b7aba5ebc7431e4c0307c94d2e4244d2cf38607ffb0c0cfbdcf0767865edbf0c52ad7784e59d2794d0aebf92adb3aa899d82fc6f86ab94f4fee3959fe98a99d2e77f0b79dba8f688632535451621952a8a6e0c2155ac5d49c34bec0ec750237fc09ae8170850bc314a8f646ad5146e8eb2028420f00ecfbd0d111d6f1ebaf0dfb05c22da05cf0ba717055e1ccee6df640c6a4275c4e7cb9cfc4936105670011db2043a1fa90637d3989c996b9187fc8c12a75d9ea9a79c21013b977c700eeaf887dba3a69dd5ef8a9344c1aebd3b6034d2fc277094cc23b10eabb6b03080e04d779b2aec70994a764c127187b7184bba1fbac73c062692d505e2bdd066dce19ce1f7b9c46932f73bc31a0928457991e6c3e0bf7188716414a74e72840c5c03dd2856332b8d7693026be1ce15260f9fdfc08525ca9d177aaad9b0d1202d12431f523530a875c8843af55df57d1e066c1d5fb7d0bba109bf4c15f3085aa4cbc4b3c2b589a1094a8b53a8dcfbf50e7949bc7f7999341db6ba702a723a211682aff9904206feb13e80aa382706249555e05d82cc993ae4df43945202bf993a167603fd2f008e88b161ebd673d314d14a1a09708b0fe9625589053e2749d319c5b3cf3973e2c671f43d0a26779a7018c2777ae5823f51f87eb78d4e8d3425073f2ecdab5543cbf05e9c2f979f8499ea2c540c0e6f5de9a1e632c7a8755441e276f1c26c318ff84101e736c25055cfb0b2046f7ad3d0248934b99600d592973ec65bce38dded918ca0bd8c9b628706395cc524320720ac47d2f7fb55b593ba1b68c8c057daf9965b9c181b3e3f8386ce9b1fc62c1bd8af81425833935cc117d55d6c23c804a398ffc055c354df41369de89d93ec223485ad154667441e5561e3cd869b6af7fe7ed1454a8a1ee904e7d4c00b4c7c8cb18ca945337e8dcdc6efaf2f27c7dd8d4574e2da68a6b98748d5bad04001720a51563be6fa2436c2829b64f5cadaa458a317391e87d495a3921fe7875366d1bd94d3d541b24b1c43e6b82a08a228d7085c45210325cf92adaa020ce7a43b38eeca07b3bcfa9878ceb0da0aec490711488f06f0d9baca6342e0e6c8de020469cacf399fde22e87259ccc5de9baa8c4b1e796df978bf4ddac18450d39ffa2eca604e825db051cc375213b78719a93cbf5df391459148430dc73d4ad36622e77b1f1700bced711dfdfb10e963b03801bee6e042e2787d1b4d9c84069167432f0387752c0963d4fd12c7634d92a0c6c5ea204dc2fb4017b24812347c7083ac46208fc29b954cef243aef0a32fa18e05e81ad3526552d8028db834be4f61b4c867fae49e77ea2277d99c2e2eca07e8402b6fbab5aa0c639a30132b89115adb24a543d8cc0cef48eb147cfc4a8a19781e3a8d8bb451255ebea7222677b0e0a6624f570424024649877d15147e51882eba16b387d52b914a7d10c4be3822525f6b9932031f15c7adff9f2ad15faab7cad3b774c90412ddce849600dc9e5885515900f8a7071ecb1050ddb0fe78c8f026da6830e2c3ee0fadfe96cbbecfee3db26b7ac1d4695777758f1b962081fc1c4298f180b175901a324346d53cbc09c681fb2d48f0a69769b0f7ef1e034c3cded357c0df01901ccc7f06f5f99ce9ca957c5f8cc0bcc9494f33b6d67dbcd50e4384404211a251d38ae682e63be76d8cd19df0d79595cb669ad6013849d9b2141623e158a234648a7d4667b5cdbf87fd53d127125eb815870e62d7dc256939c5e9b491c4153bc5e06197fad9a4cb79969ade3fe705a65658b45d379b8381217ab35d244b13ae5251a8c0a51fe1a2601b559845dacbc8fb838b338dd938fe64777efff9a1236386b0fe34e749c84ccfd82ffe27ff90c1f6582e027058d46c5f4ed2a7eec996bcf9175118097bb8511f373333ea5954e16dffadb9357b81c96f6eb2de237ff3b23366f3142bc339a48d0fec4c99259e844b737248c978d3a18a95c46f56bd14efc04e235e9e93f75300862c71bffdd5c7377b11e9428c2735155b653948555bf9c1225dd364834a526a0b60720bf23381be20aaacc662a73a7da88061b9ef35a9c3f2fe7c8aeb009a42d888592419d004f50ac7cd17843c0288b209b03fd9172ad7d9888997690f6d3041f0be26aab03ee52abf63dba9da47eb1b14a0b65aba681ba930b6eaffc031c0832f8bc51f2fa22"}, 0xfffffffffffffe37)
close(r2)

21:29:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x3e, 0x700000000000000)

[  300.286224][T10707] FAULT_INJECTION: forcing a failure.
[  300.286224][T10707] name failslab, interval 1, probability 0, space 0, times 0
[  300.345909][T10707] CPU: 0 PID: 10707 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  300.353953][T10707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  300.364116][T10707] Call Trace:
[  300.367449][T10707]  dump_stack+0x172/0x1f0
[  300.371803][T10707]  should_fail.cold+0xa/0x15
[  300.376413][T10707]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  300.382240][T10707]  ? ___might_sleep+0x163/0x280
[  300.387106][T10707]  __should_failslab+0x121/0x190
[  300.392162][T10707]  should_failslab+0x9/0x14
[  300.396697][T10707]  kmem_cache_alloc_trace+0x2ce/0x750
[  300.402086][T10707]  ? rcu_read_lock_sched_held+0x110/0x130
[  300.407915][T10707]  ? __kmalloc+0x5d2/0x740
[  300.412373][T10707]  alloc_workqueue_attrs+0x82/0x120
[  300.417599][T10707]  alloc_workqueue+0x190/0xf00
[  300.422443][T10707]  ? workqueue_sysfs_register+0x3f0/0x3f0
[  300.428198][T10707]  ? scnprintf+0x140/0x140
[  300.432648][T10707]  ? __init_waitqueue_head+0x36/0x90
[  300.438044][T10707]  hci_register_dev+0x1b8/0x860
[  300.443012][T10707]  ? hci_init_sysfs+0x7c/0xa0
[  300.447905][T10707]  __vhci_create_device+0x2d0/0x5a0
[  300.453142][T10707]  vhci_write+0x2d0/0x470
[  300.457494][T10707]  new_sync_write+0x4d3/0x770
[  300.462184][T10707]  ? new_sync_read+0x800/0x800
[  300.466974][T10707]  ? common_file_perm+0x238/0x720
[  300.472717][T10707]  ? __fget+0x381/0x550
[  300.476899][T10707]  ? apparmor_file_permission+0x25/0x30
[  300.482553][T10707]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  300.488823][T10707]  ? security_file_permission+0x8f/0x380
[  300.494538][T10707]  __vfs_write+0xe1/0x110
[  300.498983][T10707]  vfs_write+0x20c/0x580
[  300.503510][T10707]  ksys_write+0x14f/0x290
[  300.507858][T10707]  ? __ia32_sys_read+0xb0/0xb0
[  300.512645][T10707]  ? do_syscall_64+0x26/0x680
[  300.517442][T10707]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  300.524220][T10707]  ? do_syscall_64+0x26/0x680
[  300.529003][T10707]  __x64_sys_write+0x73/0xb0
[  300.533613][T10707]  do_syscall_64+0xfd/0x680
[  300.538133][T10707]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  300.544050][T10707] RIP: 0033:0x4592c9
[  300.547974][T10707] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  300.568107][T10707] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  300.576703][T10707] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  300.584679][T10707] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
21:29:54 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:54 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x41, 0x700000000000000)

[  300.592656][T10707] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  300.600718][T10707] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  300.608726][T10707] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
21:29:54 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000003c0)=0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xffffffffffffff63)
close(r0)

21:29:54 executing program 0:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f00000001c0)='cgroup.subtree_control\x00', 0x2, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f0000000000)='io.stat\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000019c0)=""/61, 0x3d}}], 0x1, 0x0, 0x0)
readv(r1, &(0x7f00000002c0), 0x17c)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r2, 0x40bc5311, &(0x7f00000000c0)={0x40, 0x0, 'client1\x00', 0x1, "b0e51021e2865723", "2d7290ab2b700f44bfe8d7e2a43b1fbad8f4150e6f04f336c3568b337ff8ab18", 0x7, 0x1})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)

21:29:55 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x80000, 0x0)

21:29:55 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x42, 0x700000000000000)

21:29:55 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x3)
close(r0)

21:29:55 executing program 0:
r0 = socket(0x1e, 0x4, 0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, 0x0, 0x8000)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
fremovexattr(r0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000600)=@req={0x8000, 0x8, 0x7, 0xbe1}, 0x22f)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(r1, 0x800000c004500a, &(0x7f0000000300))
readv(r1, &(0x7f0000395000)=[{&(0x7f00004d2000)=""/4096, 0x1000}], 0x1)
connect$l2tp(0xffffffffffffffff, &(0x7f0000000400)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x0, 0x3}}, 0x26)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000ff9000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x2}, 0xfffffffffffffeba)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000100)={0x3d}, 0x4)
r2 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r2, 0xc0bc5351, &(0x7f0000000200)={0x0, 0x0, 'client0\x00', 0x0, "4e1520351b1a6a61", "8b3d83d2e50a9a9bcedf1129c0052bfe6a8d5eab4d1b0a7b690018baffdd2ddb"})
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000640)={{{@in6=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@empty}, 0x0, @in=@loopback}}, &(0x7f0000000740)=0xfffffd1a)
sendmsg$can_bcm(r0, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x1d, r3}, 0x10, &(0x7f0000000b80)={&(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x4091}, 0x800)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000440)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80480}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r4, 0x0, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x1)
openat$userio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/userio\x00', 0x40000000, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000200)={0xffffffffffffff00})
getsockopt$inet_buf(r0, 0x0, 0x20, &(0x7f00000009c0)=""/252, &(0x7f0000000140)=0xfc)
clone(0x1, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$BLKRAGET(r1, 0x1263, &(0x7f0000000080))
socketpair(0x1, 0x80003, 0x200000000000007f, 0x0)
setsockopt$inet_udp_int(r1, 0x11, 0x6f, &(0x7f0000000880)=0x800, 0x4)

[  301.153939][T10707] Bluetooth: Can't register HCI device
21:29:55 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x43, 0x700000000000000)

21:29:55 executing program 1 (fault-call:2 fault-nth:8):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:55 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x100000)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x20000)
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x4000, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, <r1=>0x0})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={[], 0xc0, 0x6, 0x73, 0x0, 0x2, r1})

21:29:55 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x44, 0x700000000000000)

21:29:55 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x20101, 0x0)
syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f0000000240)={0x3, 0x501, 0x1})
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f0000000100)={{0x0, 0x9, 0x8, 0x2, 0xfffffffffffffffa, 0x51}, 0x67, 0x4c1d, 0x7fff, 0x6, 0x2bf, "df9639ca4343a8b8ef2dfec312db3f65b98ee5cd711abd02a032b6011c189ceb3012115cd2e2e594cf085e074170d3f5005206000000630f0384d12026011324a078147d4cca915785be085deb67f31ef24ca4255e6b710d475b3942ca382fbd677f0c60db0593aa8125dbaf8717adef1890a3e87f9700"})
write$FUSE_OPEN(r1, &(0x7f00000001c0)={0x20, 0xfffffffffffffff5, 0x8}, 0x20)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
setsockopt$RDS_FREE_MR(r1, 0x114, 0x3, &(0x7f0000000200)={{0x100000000}, 0x4}, 0x10)
close(r1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0)

21:29:55 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x4)
close(r0)

21:29:55 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x45, 0x700000000000000)

21:29:55 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xa)
close(r0)

21:29:55 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64035, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  301.532792][T10761] FAULT_INJECTION: forcing a failure.
[  301.532792][T10761] name failslab, interval 1, probability 0, space 0, times 0
[  301.557853][T10761] CPU: 0 PID: 10761 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  301.565895][T10761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  301.575955][T10761] Call Trace:
[  301.576024][T10761]  dump_stack+0x172/0x1f0
[  301.576049][T10761]  should_fail.cold+0xa/0x15
[  301.576073][T10761]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  301.576098][T10761]  ? ___might_sleep+0x163/0x280
[  301.576126][T10761]  __should_failslab+0x121/0x190
[  301.576152][T10761]  should_failslab+0x9/0x14
[  301.594141][T10761]  __kmalloc+0x2d9/0x740
[  301.594164][T10761]  ? apply_wqattrs_prepare+0xae/0x970
[  301.594184][T10761]  apply_wqattrs_prepare+0xae/0x970
[  301.594210][T10761]  apply_workqueue_attrs_locked+0xcb/0x140
[  301.594228][T10761]  apply_workqueue_attrs+0x31/0x50
[  301.594250][T10761]  alloc_workqueue+0x8b9/0xf00
[  301.608546][T10761]  ? workqueue_sysfs_register+0x3f0/0x3f0
[  301.618149][T10761]  ? __init_waitqueue_head+0x36/0x90
[  301.618175][T10761]  hci_register_dev+0x1b8/0x860
[  301.655612][T10761]  ? hci_init_sysfs+0x7c/0xa0
[  301.660445][T10761]  __vhci_create_device+0x2d0/0x5a0
[  301.665657][T10761]  vhci_write+0x2d0/0x470
[  301.665677][T10761]  new_sync_write+0x4d3/0x770
[  301.665693][T10761]  ? new_sync_read+0x800/0x800
[  301.665717][T10761]  ? common_file_perm+0x238/0x720
[  301.665730][T10761]  ? __fget+0x381/0x550
[  301.665750][T10761]  ? apparmor_file_permission+0x25/0x30
[  301.665776][T10761]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  301.665797][T10761]  ? security_file_permission+0x8f/0x380
[  301.706228][T10761]  __vfs_write+0xe1/0x110
[  301.711095][T10761]  vfs_write+0x20c/0x580
[  301.715350][T10761]  ksys_write+0x14f/0x290
[  301.719718][T10761]  ? __ia32_sys_read+0xb0/0xb0
[  301.724507][T10761]  ? do_syscall_64+0x26/0x680
[  301.729792][T10761]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  301.745185][T10761]  ? do_syscall_64+0x26/0x680
[  301.749884][T10761]  __x64_sys_write+0x73/0xb0
[  301.754603][T10761]  do_syscall_64+0xfd/0x680
[  301.759135][T10761]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  301.765131][T10761] RIP: 0033:0x4592c9
[  301.769040][T10761] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:29:55 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x40, 0x224000)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000002240)=ANY=[@ANYBLOB="36004f00062000000000000000000000000000000000000004000008000000000000000000000065762f646d6d080069230000000000"], 0x36)
clock_gettime(0x0, &(0x7f0000000100)={<r1=>0x0, <r2=>0x0})
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000002480)=""/168)
write$sndseq(r0, &(0x7f0000000140)=[{0x8, 0x0, 0x89, 0x5, @tick=0x27cb, {0x3}, {0x800000000000}, @ext={0xc0, &(0x7f0000000040)="b054e7cfd52be0315895cd8d6b2aff928fa571779efb83c46766aec4dfa0492b383cd406527ebed67302a46c82d3850a5b7b2a0bb6c64456f8cec5a1383d7826df71fa51665a5425cd2fedf3872dd820139b4151f27e546ed2988d5711c0aaa7d024ccd7d875888e3d8e070c6af3cd78f78e100b11b93f4b12dfbdfef15b925e8a051c1cc705a644158f33d093aa9270bc6f81118ae7bd7039e15181864b845d26c0a4085e74af8e33f3794236f3d18077e23859e1034ec7adc84144ffad9f2b"}}, {0xa5, 0x8, 0x4, 0x0, @time={r1, r2+10000000}, {0x73, 0xffffffff}, {0x1, 0xfffffffffffffffc}, @time=@time={0x0, 0x989680}}], 0x60)
recvmmsg(r0, &(0x7f0000002400)=[{{&(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000002240)}, {&(0x7f0000002280)=""/143, 0x8f}], 0x4, &(0x7f0000002380)=""/92, 0x5c}, 0xa39}], 0x1, 0x40, &(0x7f0000002440)={0x0, 0x1c9c380})
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000002540)='/dev/ubi_ctrl\x00', 0x101000, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:55 executing program 4:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x20000, 0x0)
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)

[  301.769049][T10761] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  301.769064][T10761] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  301.769073][T10761] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  301.769091][T10761] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  301.821346][T10761] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  301.821356][T10761] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
[  301.914799][T10761] Bluetooth: Can't register HCI device
21:29:56 executing program 0:
r0 = socket(0x1e, 0x4, 0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, 0x0, 0x8000)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
fremovexattr(r0, 0x0)
gettid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000600)=@req={0x8000, 0x8, 0x7, 0xbe1}, 0x22f)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
ioctl$int_in(r1, 0x800000c004500a, &(0x7f0000000300))
readv(r1, &(0x7f0000395000)=[{&(0x7f00004d2000)=""/4096, 0x1000}], 0x1)
connect$l2tp(0xffffffffffffffff, &(0x7f0000000400)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x0, 0x3}}, 0x26)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000ff9000/0x4000)=nil, 0x4000}, &(0x7f00000000c0)=0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x2}, 0xfffffffffffffeba)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000100)={0x3d}, 0x4)
r2 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r2, 0xc0bc5351, &(0x7f0000000200)={0x0, 0x0, 'client0\x00', 0x0, "4e1520351b1a6a61", "8b3d83d2e50a9a9bcedf1129c0052bfe6a8d5eab4d1b0a7b690018baffdd2ddb"})
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000640)={{{@in6=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@empty}, 0x0, @in=@loopback}}, &(0x7f0000000740)=0xfffffd1a)
sendmsg$can_bcm(r0, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x1d, r3}, 0x10, &(0x7f0000000b80)={&(0x7f0000000c00)=ANY=[@ANYBLOB="011c00600108000004d37216f1bd89fd4a6c415eccfaf0abe91dd9ae6592454489efcb109a3ace7f6e748db1d883dffa27081d85a818a6307437c43fd370e23838edf4b824d90ce82dbc30ada71e0206578816726b91ddfce78d7b382b8f798684519ac041bf94c97c81c2aa420efd7cf7d439f5c960e169de542b0782ce484024f2cfda61bec6217bc4df7db60d1e1fee01832f03e85af73326d758c9387f329f0000000000afc00c57b9654293df545d5707219887715ad80e80423b6f1296913ec1eeb20720a20998205af4230f477ee941fcc9d596ca4cc45e72eef4c804c4507ed31eb54c6d310bfc6a13ba4206ddf4fa1200000000000000000000000000000000db45be19c6b06000a2b624c2fe16e4dfb60530ada0f64c5bb6aa6422775e6bdab5178c72806f679d23ae28dd901dc2ca1f849ec6c2d6edb86c33b425b13f286cea819855c8e692203ae7d49ef06f827cea1151d10aa3900fc26fa603cc999b0c72aeee4c028b9ee47f51142bf8f712cfec8cacac76c1e7a45fc56a49b2b31569adadcdc768d1f856f49ac9ee445300917164e3485a59c7c7c8df"], 0x1}, 0x1, 0x0, 0x0, 0x4091}, 0x800)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000440)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80480}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r4, 0x0, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x1)
openat$userio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/userio\x00', 0x40000000, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000200)={0xffffffffffffff00})
getsockopt$inet_buf(r0, 0x0, 0x20, &(0x7f00000009c0)=""/252, &(0x7f0000000140)=0xfc)
clone(0x1, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$BLKRAGET(r1, 0x1263, &(0x7f0000000080))
socketpair(0x1, 0x80003, 0x200000000000007f, 0x0)
setsockopt$inet_udp_int(r1, 0x11, 0x6f, &(0x7f0000000880)=0x800, 0x4)

21:29:56 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x46, 0x700000000000000)

21:29:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x3e)
close(r0)

21:29:56 executing program 1 (fault-call:2 fault-nth:9):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:56 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
munlockall()
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x3ff, 0x40)
getsockopt$rose(r1, 0x104, 0x7, &(0x7f00000000c0), &(0x7f0000000100)=0x4)

21:29:56 executing program 3:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x1c1000, 0x0)
recvfrom$unix(r0, &(0x7f0000000080)=""/151, 0x97, 0x2000, &(0x7f0000000140)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f00000001c0)=""/4096)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
uselib(&(0x7f0000000000)='./file0\x00')
remap_file_pages(&(0x7f0000ca1000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0xffffffff, 0xfffd)
setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4)

21:29:56 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x47, 0x700000000000000)

21:29:56 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x48, 0x700000000000000)

21:29:56 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x100000000000000, 0x0, 0x2)

21:29:57 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x366)
close(r0)

21:29:57 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfffffffffffffef3)
close(r0)

[  302.879234][T10799] FAULT_INJECTION: forcing a failure.
[  302.879234][T10799] name failslab, interval 1, probability 0, space 0, times 0
[  302.944771][T10799] CPU: 1 PID: 10799 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  302.952833][T10799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  302.962915][T10799] Call Trace:
[  302.966234][T10799]  dump_stack+0x172/0x1f0
[  302.970610][T10799]  should_fail.cold+0xa/0x15
[  302.975241][T10799]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  302.981178][T10799]  ? ___might_sleep+0x163/0x280
[  302.986102][T10799]  __should_failslab+0x121/0x190
[  302.991266][T10799]  should_failslab+0x9/0x14
[  302.995801][T10799]  kmem_cache_alloc_trace+0x2ce/0x750
[  303.001310][T10799]  ? rcu_read_lock_sched_held+0x110/0x130
[  303.007067][T10799]  ? __kmalloc+0x5d2/0x740
[  303.011583][T10799]  alloc_workqueue_attrs+0x82/0x120
[  303.017425][T10799]  apply_wqattrs_prepare+0xbb/0x970
[  303.023102][T10799]  apply_workqueue_attrs_locked+0xcb/0x140
[  303.029070][T10799]  apply_workqueue_attrs+0x31/0x50
[  303.034219][T10799]  alloc_workqueue+0x8b9/0xf00
[  303.039128][T10799]  ? workqueue_sysfs_register+0x3f0/0x3f0
[  303.045198][T10799]  ? __init_waitqueue_head+0x36/0x90
[  303.051157][T10799]  hci_register_dev+0x1b8/0x860
[  303.056042][T10799]  ? hci_init_sysfs+0x7c/0xa0
[  303.060756][T10799]  __vhci_create_device+0x2d0/0x5a0
[  303.066083][T10799]  vhci_write+0x2d0/0x470
[  303.070455][T10799]  new_sync_write+0x4d3/0x770
[  303.075278][T10799]  ? new_sync_read+0x800/0x800
[  303.080084][T10799]  ? common_file_perm+0x238/0x720
[  303.085144][T10799]  ? __fget+0x381/0x550
[  303.089332][T10799]  ? apparmor_file_permission+0x25/0x30
[  303.094914][T10799]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  303.101184][T10799]  ? security_file_permission+0x8f/0x380
[  303.106847][T10799]  __vfs_write+0xe1/0x110
[  303.111212][T10799]  vfs_write+0x20c/0x580
[  303.115496][T10799]  ksys_write+0x14f/0x290
[  303.120222][T10799]  ? __ia32_sys_read+0xb0/0xb0
[  303.125030][T10799]  ? do_syscall_64+0x26/0x680
[  303.129747][T10799]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  303.135851][T10799]  ? do_syscall_64+0x26/0x680
[  303.140562][T10799]  __x64_sys_write+0x73/0xb0
[  303.145203][T10799]  do_syscall_64+0xfd/0x680
[  303.149752][T10799]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  303.155682][T10799] RIP: 0033:0x4592c9
[  303.163029][T10799] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  303.183680][T10799] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
21:29:57 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x8916, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8943, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(0xffffffffffffffff)
close(r1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
sendmsg$kcm(r2, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001580)=[{0x18, 0x1, 0x1, "ec"}], 0x18}, 0x0)
recvmsg$kcm(r1, 0x0, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd/3\x00')
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000140)={0x2000})
mkdir(&(0x7f0000000080)='./file0\x00', 0x101)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r4, &(0x7f0000000040)={[{0x0, 'memory'}, {0x0, 'rdma'}, {0x2b, 'cpu'}, {0x0, 'rdma'}, {0x2b, 'rdma'}]}, 0x1f)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0x32600)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  303.192506][T10799] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  303.200594][T10799] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  303.208591][T10799] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  303.216599][T10799] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  303.224603][T10799] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
[  303.365153][T10799] Bluetooth: Can't register HCI device
21:29:57 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x8916, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8943, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(0xffffffffffffffff)
close(r1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240))
sendmsg$kcm(r2, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001580)=[{0x18, 0x1, 0x1, "ec"}], 0x18}, 0x0)
recvmsg$kcm(r1, 0x0, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd/3\x00')
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000140)={0x2000})
mkdir(&(0x7f0000000080)='./file0\x00', 0x101)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r4, &(0x7f0000000040)={[{0x0, 'memory'}, {0x0, 'rdma'}, {0x2b, 'cpu'}, {0x0, 'rdma'}, {0x2b, 'rdma'}]}, 0x1f)
write$cgroup_subtree(r4, &(0x7f0000000000)=ANY=[], 0x32600)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:57 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x370)
close(r0)

21:29:57 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x49, 0x700000000000000)

21:29:57 executing program 3:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_proto_private(r0, 0x89e3, &(0x7f0000000000)="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")
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000695000/0x4000)=nil, 0x4000, 0x3fffffffffffff, 0x8, 0xfffffffffffffffd)

21:29:57 executing program 1 (fault-call:2 fault-nth:10):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:57 executing program 4:
syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0xffffffff, 0x200000)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:57 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x372)
close(r0)

[  303.676859][T10829] FAULT_INJECTION: forcing a failure.
[  303.676859][T10829] name failslab, interval 1, probability 0, space 0, times 0
[  303.724244][T10829] CPU: 1 PID: 10829 Comm: syz-executor.1 Not tainted 5.2.0-rc5+ #37
[  303.734349][T10829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  303.749629][T10829] Call Trace:
[  303.752951][T10829]  dump_stack+0x172/0x1f0
[  303.757391][T10829]  should_fail.cold+0xa/0x15
[  303.762040][T10829]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  303.768494][T10829]  ? ___might_sleep+0x163/0x280
[  303.773583][T10829]  __should_failslab+0x121/0x190
[  303.778555][T10829]  should_failslab+0x9/0x14
[  303.783170][T10829]  kmem_cache_alloc_trace+0x2ce/0x750
[  303.788743][T10829]  ? rcu_read_lock_sched_held+0x110/0x130
[  303.794496][T10829]  ? __kmalloc+0x5d2/0x740
[  303.799116][T10829]  alloc_workqueue_attrs+0x82/0x120
[  303.804340][T10829]  apply_wqattrs_prepare+0xbb/0x970
[  303.809584][T10829]  apply_workqueue_attrs_locked+0xcb/0x140
[  303.815422][T10829]  apply_workqueue_attrs+0x31/0x50
[  303.820568][T10829]  alloc_workqueue+0x8b9/0xf00
[  303.825551][T10829]  ? workqueue_sysfs_register+0x3f0/0x3f0
[  303.831406][T10829]  ? __init_waitqueue_head+0x36/0x90
[  303.839261][T10829]  hci_register_dev+0x1b8/0x860
[  303.844234][T10829]  ? hci_init_sysfs+0x7c/0xa0
[  303.848962][T10829]  __vhci_create_device+0x2d0/0x5a0
[  303.854190][T10829]  vhci_write+0x2d0/0x470
[  303.858633][T10829]  new_sync_write+0x4d3/0x770
[  303.863329][T10829]  ? new_sync_read+0x800/0x800
[  303.868123][T10829]  ? common_file_perm+0x238/0x720
[  303.873175][T10829]  ? __fget+0x381/0x550
[  303.877358][T10829]  ? apparmor_file_permission+0x25/0x30
[  303.885085][T10829]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  303.891362][T10829]  ? security_file_permission+0x8f/0x380
[  303.897023][T10829]  __vfs_write+0xe1/0x110
[  303.901374][T10829]  vfs_write+0x20c/0x580
[  303.905818][T10829]  ksys_write+0x14f/0x290
[  303.910175][T10829]  ? __ia32_sys_read+0xb0/0xb0
[  303.914958][T10829]  ? do_syscall_64+0x26/0x680
[  303.919651][T10829]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  303.925730][T10829]  ? do_syscall_64+0x26/0x680
[  303.930419][T10829]  __x64_sys_write+0x73/0xb0
[  303.935023][T10829]  do_syscall_64+0xfd/0x680
[  303.939542][T10829]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  303.945444][T10829] RIP: 0033:0x4592c9
[  303.949350][T10829] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
21:29:58 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x133)
close(r0)

21:29:58 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x9, 0x100)
ioctl$BLKRESETZONE(r0, 0x40101283, &(0x7f0000000040)={0x7ff, 0x6})

[  303.968998][T10829] RSP: 002b:00007ff4429cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  303.977421][T10829] RAX: ffffffffffffffda RBX: 00007ff4429cfc90 RCX: 00000000004592c9
[  303.986136][T10829] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000003
[  303.994203][T10829] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  304.002204][T10829] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4429d06d4
[  304.010535][T10829] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 0000000000000004
21:29:58 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4a, 0x700000000000000)

21:29:58 executing program 4:
prctl$PR_GET_FP_MODE(0x2e)
r0 = accept4$x25(0xffffffffffffff9c, &(0x7f00000001c0)={0x9, @remote}, &(0x7f0000000200)=0x12, 0x80000)
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000240)={'syzkaller0\x00', 0x3})
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, "31b4c962df6be69de56149e0a28b323aba11847a7a660bd8989bfb14c91c04b175dd561be56b9b7c2dc49fbde9bc18fd11fe52ae773d39ad9cb55752dfa207d7897bac4dadaf730e96c43d9bdff9c4f12380c94fdd1805615af18905b5f73cf2f83275cf1d17875e18ea94a0b6dc26277702227ec0551c2ca040ca7ca79801a02787fc64471af91b9fff4de139c7a20bf77906d5b88a904c59c2e169760bb71bd4153dd4e0dcbb4135fdd9e5a982d538bbdb9437dd899aa5bc502af8d3400fab34d50fa13f1a60d1adce9f330df20d8bd22ce7a6734176aac3efd42e28a52c02ca220073faac053b34d3"}, 0xaf)
close(r1)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x20200, 0x0)
write$FUSE_NOTIFY_INVAL_INODE(r2, &(0x7f0000000180)={0x28, 0x2, 0x0, {0x1, 0x100, 0x52}}, 0x28)

21:29:58 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x373)
close(r0)

21:29:58 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x3)
close(r0)

21:29:58 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f00001e9000/0x3000)=nil, 0x3000, 0x1000000)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:58 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4b, 0x700000000000000)

21:29:58 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x10000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffff9c, 0x8933, &(0x7f00000000c0)={'team0\x00', <r2=>0x0})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x93, 0x93, 0x6, [@struct={0x3, 0x7, 0x0, 0x4, 0x3, 0x4, [{0xc, 0x4, 0x7}, {0xf, 0x4, 0x8000}, {0x4, 0x4, 0x1}, {0x1, 0x1, 0x3}, {0xc, 0x3, 0x7}, {0x10}, {0xc, 0x4, 0x62}]}, @datasec={0x4, 0x1, 0x0, 0xf, 0x3, [{0x2, 0x4, 0x5}], "da4fa8"}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x5, 0x81}}]}, {0x0, [0x7f, 0x30, 0x61, 0x30]}}, &(0x7f0000000200), 0xb2}, 0x20)
ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000100)=r2)

[  304.394424][T10829] Bluetooth: Can't register HCI device
21:29:58 executing program 1 (fault-call:2 fault-nth:11):
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:58 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfdef)
close(r0)

21:29:58 executing program 3:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r0, &(0x7f0000000040)="f846ec17cd157eb308f3331eb3df1ef60b9453d6184f5b49153ca0c9119f636add901e8d3e3f541f56c844e20f01fab9"}, 0x10)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={r0, 0xc0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=0x8001, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x5, 0x2}, 0x0, 0x0, &(0x7f0000000140)={0x0, 0xb, 0x7, 0x8001}, &(0x7f0000000180)=0x8, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=0x3}}, 0x10)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x8, 0x0, 0xfffffffffffffffd)

21:29:58 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4c, 0x700000000000000)

21:29:58 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000100)="11dca5055e0bcfec7be070")
r1 = pkey_alloc(0x0, 0x3)
pkey_free(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={<r2=>0xffffffffffffffff})
r3 = gettid()
sendmmsg$unix(r2, &(0x7f0000001d40)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001bc0)=[@cred={{0x1c, 0x1, 0x2, {r3}}}, @cred={{0x1c, 0x1, 0x2, {r3}}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}], 0x58, 0x4000000}], 0x1, 0x0)

21:29:58 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x24c000, 0x80)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f00000000c0)={0x6, 0x8001, 0x7e761ad1, 0x81, 0x3, 0x2, 0x4}, 0xc)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
r2 = getuid()
getresgid(&(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240)=<r3=>0x0)
mount$fuseblk(&(0x7f0000000100)='/dev/loop0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='fuseblk\x00', 0x20000, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000160000,user_id=', @ANYRESDEC=r2, @ANYBLOB="0000f2b41c0a39c471d2", @ANYRESDEC=r3, @ANYBLOB=',allow_other,blksize=0x0000000000000400,default_permissions,default_permissions,blksize=0x0000000000000800,permit_directio,smackfsfloor=:)/loeth1.cgroup,\x00'])

21:29:58 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4d, 0x700000000000000)

21:29:58 executing program 0:
getgroups(0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x2)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0xffffff59)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
mknod(&(0x7f0000000440)='./file0/file1\x00', 0x0, 0x0)

21:29:58 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x20000002)
close(r0)

21:29:58 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'vcan0\x00', 0x2001})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:29:58 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
pwrite64(r0, &(0x7f0000000080)="d07b8257365fbcf34bfc52278f5b8262eeb2b89c3b20569a0145a7f9e3ce424392f0e4da70ecaee38560acd46c60c61a3c68afbc8e0ddfb2d3f7f5ccbb102cbc07ef5cce8176947a9e1c8a0048583d6f9032838acaa347511b791c06a53c13672b987735eddfe3d20e9b574007f401784e34e68581c7277fe879758326476e8074ac510478c4ccbbb747fa73301423b9fba68784781e24c87a6380a75f4339d9a12e96234d5b722f9780ed6eb371cc5aaf8981144d764f47e280f07c3fae45c6549b4e50ed170014ccab0e5e28f7c5688e508229fa370aed15983eb5a2f9b9d3afd35969b1818b1bc38392849a3012df401f8cb3c2b2af63efce72a93164c74269b170fdeb7d5e4404288465776f0825e742cd399b53b417747f0f42bdecf7ad7648b413a8583e1f2268bd3975595bcaa50a6a220e3cac01c638c6af1e24bd4e72fe1af2f20185bdccafb46593474d7061d48c15ce249799f8859c3a4fd5374ee9120dd23396065aec224f5f76bce75dd7c592b920e19016573ddcb53cff30f62e5ebcb8305f427576ee4e968c27db30cfb2de81e0f50252466a6d37329ac17d4e1bad94b843ec552d9a13dea1d5ced7b6c1f3ae6d95d9116b883802900e4769a1433954d38f53a08af56e0a93d1479e3e15844463db567d8088a5bb6fb00613eeb45b1cc0cab68948adb3ab1a015a8e3728be968585cadf2649953f382ac7519a6ec3c0addc4a5f3f06f264eb9cdee53622df0e215077ccbe4fdb6b2e064e8a4728083b1c81b1d4f09d4c24d47ad18f3cd1bcb1885374aacae398d7d6ea48ee27bf0d76ac9aca4ebd1ff7e4ce3cf159a9ab9c88775e71d781900e460d16af1debe42bc2748a17e3964aad2c95d1382500a2af48f38a3107a0941b322eb9ff7a4dbca003a6cfc415760411481503196c5ede1b4ac50f12156d6bba09a7b8e4e31f2c8160f8746fa06fd16bb58f700a52b0d1a57738009407cf4aa0b91ab43cfa6f2ef7e08d5168e8adc3c940f69287959e87c9bb1bfb0f3b19ff7995520151bc4b8f1afc092f970dc47afbd5d0926901b97639d43ae59231edc85413ef53dbfcbccd4b0bf1f7b4626014b748b0058577da1c831137fd242ce030823212316333808472cc2522644477cdae0362f46fdddbca520373276fc76d2e53ef1e8e4d8163953a6e32146e382d5c683307e9c9890db373d0285cfeba1c30c82849957f5a0a1aa98706d5a376ff05f586b5153c965fb81dc71629a28b63a68d6b188d7eae6db5b557a031aa53705dcd918c8983a485b8deae3f52d18b4e3db32f6dd3518b6b79d10e4b4bccdec522d14e51f42945b7ab414f84900e67260c0cba8bc6bef364bea3d90e3e5a80291eaa1675021114bf02e718c21d67bf258979053f2688b5f45a3ff91b5e718529679605bd2d31216e2911fbf10b81de7832b12e6f9110b81c670bf117273ac0cb01a7f5e8bd2b92beaf7cb9a1cb0920eb99164857f76f26ba147057a18a9dae214f3a15035acfa14805c9d5a87c9fe4cd1c891db468075d9137e613cd29b1b77420da6df0791c84a9212bbff3fdf39581c39ca15dcf3a64f8d17421ad72bb3ec00e94b4c5287ab57cea29cad87ea262c6da70248d04a084bf68f43a48c8fd9329b0ca61e5ea1dba7f2a673eab15db74370834a47bd577ab64932e8a4909a08faa4522826c5e2cfb370802496cbd234d6ed468de650011142ae36eb6da9b73a4b2d438a28bc3ecbf95140696633f45fa144451d8d0757d5fd05f058de88633ddc336d28f085993e79410a505082d74dff1e4713dbea110504def89096f61acf1afe3e7419e7ae3c189c2df43f1ac2e090b6bbac1aa25b79bc0b6900a0a09b3b7e4b4d90ddade8d0dad83cf8b53b0c6b7ae9ae48c1655171a306302d3053f8a635fc8f259b01d6ac1d4cb0b20f8605b9e80c833c9c1cc76d852f52d1db7a75f53aa380b4ca7e24714807ce2ab1ed19f9b6e4240a7e5285bfb3aefb64eed3cc2192f74ded319fce17b4e116c6761b78f6bc27c9fe9ef326b804fb9989952194d09d0a03b3b8d455e855ed76457e747c3bcbf726e6b18ebb83716e08f081f0f342352645a1ef4a29771cc48aa85df7d27d74a3f3f512f0a715a754a6ca7c80d93b657e2d6dd61541a0217af0e45e0b911811b776640625ae4fe61651ef151d50b3901c232c331e7e7c8fc8f3f0e9a7dc8d2fdbc9d73085d6d487f2d9bed814b2d5828b58230c3bb3a769da8ce522871c9d8415db9193363948168ed7deaeac436ef1e44a0a1ba47768543425ef4de871e029610f762eac1d68729dfbc2248322026a027be1c86ec5e3488cfaecee8c1c84aecc181634416080128f0d38335bc80c1eaa9584401b4c9a40103c55fcb8c218f36b892923c215a73b234243991126f038b9ce990620cb715a27b798b9646afcfcc6d41990bc7a95756d2f911caa38584cb5426339492a035213fab6786c172fbfec389e723942656dac082f34ddd10508714a1243c4cc5f185dc8917bda481cbbf8b8651b2d9ff7e96463a584e8149bcc73df9d29e8e551b0663ae8aaf74227a0e6aa198c443fb11ab6b4619a90d227aa6355e2936f41c035d85c4ff2cc745429d7a8d53a5411b0bd6a335b6d95b4f8c0f14ecc272c74a28920df385175ea328d490815f42cb98c475cd4cce558a78cee57e5295dcce825f4a0822aece763c2b925ae968423d881fea19d9b8d89c78acffc6ce5b41d124b685f87c2634fb732e5ccf366e9918cffa0703d7ca9f55f08058291242b0a7e22e3ebe551d9aecb1f0ccbf65ab5cd9e50a0ad0983133f69a5907d8b9e87b52dc29d3397d17e2693ef4c60cfb0c5bef8eda24d88e98a448dba16fdc97a2e4041075684628e3abdc48d2cc26fe9057a7cd14ab1d76db300aad526bfbc71396115f5d56fa9d21a0123d082f35a912bd57c66bfc966bcd9ae39775df6888953a5bb4c85956f02597d1e46cb9e6878d33a84f914ec92d8d0cc07d9d247357efa7c04333bae5e81670ebdd6a0475544f1c57c5ab8db0ff445a2297a5ea0653b24629949553b5dbe64c1e5d768a82f15af24a17018de6f6a4fafbce65e1148bad247cb425c7b96c012aa174b909b9df02bfd6538ca402e266eb6beb9272fc71f0b6109e123c65f8b552bd5786914f8bfd03862e0b0dfbe19d4fba1251188adcec98bb0e6ed9b99f81f2fb41871a893bfdff8454051aa6bdb3d3632b299d1e50fcc024938fdee9375925c6d8115a016fd3c33e78c3a98d80baf61ae0d46fb6b6619d0fbd709024a90c21e0da7abfac94d2da3f68b5304f0b68c42697095d55683da55d8ce7aba7fef18e0cde95386850ab2a60b28f89db493e03a7216c815b0ac3daf899d46ed7e0ea318e8b3d28aac40ac8a63fda79f53d3797b9a7a4a7fe47f2de7173cc0e3c3aaeb87d9da60f8b9e17f5423b3f0099cf85f46e9804abe8ac274e0f4d748752e5226b3f3e6bdf6e6730ee3f878bc8fc70455d792d84cdf67b52c909ffe59a9788f9c48f93bf22f35bb4bc4ed414e088334d40cb8b3d04e3e568cb86e6791430a9b0148ce6a4ac01f31e2920daf987b371771d6aa7404de8e47dcf233adafd97ccf1af479187f9d38dea158f1f9a93b5b4d6af1547303a6c44207aa66cb782ffaa1aa6a70bac94d562133a8219c7402856dd02bb39e25279951025b7693befae67eed2031a5d155862c32c3338b1bf3940a33969ae4e72cf0b34b03ad51ad6b1bff41a4b7aee927fec626ba80d44f2e4b311f5dee0f638efbe5b1c280495d41716dd4ad5c2d7d951100549a4dd6f637909d59150f27c0f9821d973aa0b9495f1bf6657d9da52ea3376dfcf9ea19b3db5dff2e3e9dc62de375e0ff132724270b113e0313be332fa214597a98fb58d9599dce31c5c347dc676a6a2de50e427c9bc6f7f6b9e4115c0f53dd7b2e387745f0ad4a4ace3f1c7b937af189bde46a1b2f3b59c189224b1f92deaa35422b0dedddffdb75c9bd904836ac443fab4a25b008b6b0694069bd97fc66948a7a9b27ab2639dfad5b9f8233770c1facf48f0f381dfaa48d94343546b8e7794947abc83e2ac613b51fd2db77c665522e8c0c3179af7926569127b0950e1a3cf7328fe7fa8566bb50ffb20eaa549e1897128189d699cf1d5f1cf58a0a2ccc2999b85de35e5e07fdb03e1de1f2d418eb563d68b8817626a98e170e52be45f434b39253a9470df2fc20e78455cadf5f651d869720f731e9f10806e26050da34227b6300cec37aee8aa9ad9df8b30421323091c5cc3c9d0479560b9024309658d9be51990e4c1984263ee04a3edfe6c1d8ce7ff580fc6442d40e3ea4ed13621689d5722690f9e223913154616f1a77580b4ad53084b7665d8c246ef5bfbf8df1f8192cec883e433d9acd21f44a0bc642e35ce8e22c6ab5c13b186bc5ea4252b8feb1aa94178a6f256c7b38184903c500b46b8ce54b91aaf9e1182e384278b0a506ab2075a56cd4fce427ab142b67595021e76dfe0807f5271125c1aa7b4bf075c1b0b8bf058c6bf79f4912bb1ab1938dce85004c0cde34dce51df1d3ff3778f05bbe89c874bc15705a4018fbf57fbf094f4850f4010462fd34a0e8967d8db995761f9e5ad65f4262f95ef61645ff5cbff5e4fbac5e1044e8b327f5db0b9dc40475dc8e78cbf3dd2a5d9e5533511db2a3e0146f0ae26d680ff993dc8578d20744bed2b889b96c4a6361029c04c2d08953059cfca65dac0b1036a4ef9781013ed0d294362e09ee45248f51f7b6d21719e82fdd276f6924054b3444a13350496fa3ce019560282d07f00bf94788418dbd4432ac9614bf46c5b8f6f59d8327ebe27f3606968ac31981867faac5be70891504e4a1e55635be138566248168ac27cdfdda9c7285a93e31c4c47cc553edf2580012b64fc7e713870085337d47f1c3990cc70620c88a2794588204f0cd5bc59cdb2ed7babb3224254bd6fb67d9810399fc0081d848fe867b2e5e3452e730c21bc23c98911831601e5fb21644701072bb7649ae32df0abc184298f135e7cddfb6bf5aa33546fa322a86a874acb7e1a711f75782780851e0505420d128224058316c523569e980eb463b6b77e50c659d14bbce789dcb79c89a85c9d442e84a852271116469f26a96e2ce7a8ae21be7786ff3a6716625bb72b82b8a249ed003370b38724e07265c9c6fdbfe4a9e34abb3943729b4d3370ea16a56ea4b570cadaf33edca1b371b3239771dbaeea0857dfe8b1d1e019e7d8478fbae428818db74627ab15ab37eaee05eff7ced3032af9640ab46c1cd5a67424648f38bcd4bc64bc6d45d7843fb6c5a25217560a03d33361c6aa3764f4d601807110963720f9330ea53cbd36e7fd050e3bd8c541feece232137ed82e547a6a4ad67bd98c4c16f31b3f089fb49ea4fad3f890d608ad5352f46c0027de46bb9f31fb274d6c170a237a0b0614fb886790cc4ed94f5197795b009fdb78bf0903038d34e4f9a618e3afbb25d0aa0ba24fbdbbea15dbdcfbf4e861e99a84d9fdd25f647c1406cdfbe4339aa2c5018058c48931372a1cf56aa17b20a8bca0b2ad7c08296ffd0ee9a5f51152506a9d4265b20e309c1a10bd9d2e81ddc800681f0493109875df66fa295829c97e6aaea3570f79189c42ff2f3bb7914d41638c2f023a6cbf85f0b6624c8742d5394dde367d219ae080f3fe9294073a23e461a540edece85ebbb9120365ebdcc5b114f556ba5731e3b9c773df4eaabbb0ee82e5855e4290e82a872091973dcc07b315aa3c2ad2eba3bbdecf1160cb332cac0b7901c1264774", 0x1000, 0x0)

21:29:59 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4e, 0x700000000000000)

21:29:59 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:29:59 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfffffdef)
close(r0)

21:29:59 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
fcntl$setlease(r0, 0x400, 0x0)
close(r0)

21:29:59 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x4f, 0x700000000000000)

21:29:59 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x8, 0x0, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x101000, 0x0)
ioctl$VIDIOC_ENUMAUDIO(r0, 0xc0345641, &(0x7f0000000100)={0x9, "7ecaaf8d784a8103504f495233b559ddcf6802cf6da0ec1eacf1a3dcd3b9881b", 0x3, 0x1})
ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, &(0x7f0000000140)={'veth0_to_hsr\x00', {0x2, 0x4e23, @loopback}})

21:30:00 executing program 0:
getgroups(0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x2)
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0)
r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0xffffff59)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
mknod(&(0x7f0000000440)='./file0/file1\x00', 0x0, 0x0)

21:30:00 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0xfffffffffffffffc)

21:30:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfffffffffffffdef)
close(r0)

21:30:00 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x8000, 0x0)
recvfrom$inet(r1, &(0x7f00000000c0)=""/124, 0x7c, 0x0, &(0x7f0000000140)={0x2, 0x4e21, @multicast2}, 0x10)
close(r0)

21:30:00 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x50, 0x700000000000000)

21:30:00 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64032, 0xffffffffffffffff, 0x200000000)
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x400000, 0x0)
write$P9_RMKNOD(r0, &(0x7f0000000040)={0x14, 0x13, 0x2, {0x8, 0x2, 0x5}}, 0x14)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x3)
close(r0)

21:30:00 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)

21:30:00 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x51, 0x700000000000000)

21:30:00 executing program 4:
clock_gettime(0x0, &(0x7f00000050c0)={<r0=>0x0, <r1=>0x0})
recvmmsg(0xffffffffffffff9c, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000080)=""/184, 0xb8}, {&(0x7f0000000140)=""/118, 0x76}, {&(0x7f00000001c0)=""/231, 0xe7}, {&(0x7f00000002c0)=""/152, 0x98}, {&(0x7f0000000380)=""/165, 0xa5}], 0x5, &(0x7f00000004c0)=""/40, 0x28}, 0x4}, {{&(0x7f0000000500)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000580)=""/54, 0x36}, {&(0x7f00000005c0)=""/246, 0xf6}, {&(0x7f00000006c0)=""/138, 0x8a}, {&(0x7f0000000780)=""/38, 0x26}, {&(0x7f00000007c0)=""/57, 0x39}, {&(0x7f0000000800)=""/226, 0xe2}], 0x6, &(0x7f0000000980)=""/38, 0x26}, 0x3}, {{&(0x7f00000009c0)=@nfc_llcp, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000a40)=""/23, 0x17}, {&(0x7f0000000a80)=""/42, 0x2a}, {&(0x7f0000000ac0)=""/197, 0xc5}, {&(0x7f0000000bc0)=""/21, 0x15}, {&(0x7f0000000c00)=""/207, 0xcf}, {&(0x7f0000000d00)=""/184, 0xb8}, {&(0x7f0000000dc0)=""/6, 0x6}], 0x7}, 0x7f}, {{&(0x7f0000000e80)=@tipc=@name, 0x80, &(0x7f00000011c0)=[{&(0x7f0000000f00)=""/161, 0xa1}, {&(0x7f0000000fc0)=""/51, 0x33}, {&(0x7f0000001000)=""/213, 0xd5}, {&(0x7f0000001100)=""/150, 0x96}], 0x4, &(0x7f0000001200)=""/171, 0xab}, 0x6}, {{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f00000012c0)=""/180, 0xb4}, {&(0x7f0000001380)=""/226, 0xe2}], 0x2, &(0x7f00000014c0)=""/2, 0x2}, 0xfffffffffffffff8}, {{0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f0000001500)=""/189, 0xbd}, {&(0x7f00000015c0)=""/4096, 0x1000}], 0x2}, 0x200}, {{&(0x7f0000002600)=@pppol2tp={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff}}, 0x80, &(0x7f0000003a40)=[{&(0x7f0000002680)=""/4096, 0x1000}, {&(0x7f0000003680)=""/29, 0x1d}, {&(0x7f00000036c0)=""/71, 0x47}, {&(0x7f0000003740)=""/248, 0xf8}, {&(0x7f0000003840)=""/187, 0xbb}, {&(0x7f0000003900)=""/214, 0xd6}, {&(0x7f0000003a00)=""/49, 0x31}], 0x7}}, {{&(0x7f0000003ac0)=@hci, 0x80, &(0x7f0000004d80)=[{&(0x7f0000003b40)=""/160, 0xa0}, {&(0x7f0000003c00)=""/4096, 0x1000}, {&(0x7f0000004c00)=""/135, 0x87}, {&(0x7f0000004cc0)=""/140, 0x8c}], 0x4, &(0x7f0000004dc0)=""/249, 0xf9}, 0xfffffffffffffffb}], 0x8, 0x12002, &(0x7f0000005100)={r0, r1+10000000})
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000005180)='TIPC\x00')
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f0000005240)={&(0x7f0000005140)={0x10, 0x0, 0x0, 0x8004008}, 0xc, &(0x7f0000005200)={&(0x7f00000051c0)={0x1c, r3, 0x400, 0x70bd2a, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x80)
r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r4, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r4)

21:30:00 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x4)
close(r0)

21:30:00 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
mbind(&(0x7f0000823000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000000000)=0xd89, 0x0, 0x1)

21:30:01 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000240)='/dev/zero\x00', 0x10000000000000, 0x0)
ioctl$UI_SET_RELBIT(r2, 0x40045566, 0xe)
ioctl(r1, 0x1000008912, &(0x7f00000000c0)="11dca5055e0bcfec7be070")
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000200)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x4000000000014, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg(r0, &(0x7f0000002580)=[{{&(0x7f0000000140)=@hci, 0x26c, &(0x7f00000003c0), 0x338, &(0x7f0000000880)}}, {{&(0x7f0000000040)=@sco, 0x359, &(0x7f0000000a80), 0x1b1, &(0x7f0000000c40)}}], 0x4000000000002f0, 0x0)

21:30:01 executing program 5:
r0 = getpid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={<r1=>r0, 0xffffffffffffff9c, 0x0, 0x1, &(0x7f00000001c0)='\x00', 0xffffffffffffffff}, 0x30)
perf_event_open(&(0x7f00000015c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9748, 0x4d7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8000000}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r2, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r3 = accept(0xffffffffffffffff, &(0x7f0000000200)=@l2, &(0x7f0000000100)=0x80)
connect$unix(r3, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e)
sendmsg$nl_netfilter(r3, &(0x7f0000001540)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001500)={&(0x7f0000000340)={0x11a0, 0x7, 0xf, 0x2, 0x70bd26, 0x25dfdbfb, {0x7, 0x0, 0x2}, [@typed={0xc, 0x56, @u64=0x10001}, @nested={0xb8, 0x41, [@generic="a4075265776194f459acd9184b308e30b1a89fd44d2becf4ad36227b969aed89765abe988278599e54a7d0c887cfafa083ab1c41a813752bb7ac5cafff20c017797fbde56b8d9b4121b5d534271a6cd60272f60a012ea35510bcce0bfaf387b5d8878d01ec969ee814c3bb9b5d8a54f8aa6eaf046c5f5c786b0e78142c52a86fd4c969ab943f41e0e8510d4196e0442e2eb197a4f15247047ff3d02ef2f022a0c8689435e7a4bb70f4d6bf", @typed={0x8, 0x31, @pid=r1}]}, @nested={0x14, 0x93, [@generic="72657c81e0d5fc1ebbf862f04ce3ee29"]}, @typed={0x8, 0x6, @ipv4=@empty}, @nested={0xac, 0x19, [@generic="c750df915e1162d5c06bd7fab22863aac3dc4ce0c7065991939a103ecd000471f57702cd82d61ba51db2d29616828d0a0367699d3c56e207d40b2b84b4d5862d29df5636d69d3a36c582adc24f0c56c0b143f245de64f5ee24bcf823ed34b2da566f00840d1ec53167de388a6b8f09bbf19f9655c5be340a4124e5545f538814f0766dbbc1d5b7aee4", @typed={0x8, 0x36, @ipv4=@remote}, @typed={0x14, 0x81, @ipv6=@mcast2}]}, @generic="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"]}, 0x11a0}, 0x1, 0x0, 0x0, 0x200080c0}, 0x40040)
connect(r3, &(0x7f0000001680)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e20, @broadcast}}, 0x80)
close(r2)
pipe2(&(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x80000)
r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x200000, 0x0)
ioctl$KDSETKEYCODE(r5, 0x4b4d, &(0x7f00000000c0)={0x1, 0x80000002})
write$P9_RREADLINK(r5, &(0x7f0000001580)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)
setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001640)=0x400, 0x4)

21:30:01 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x52, 0x700000000000000)

21:30:01 executing program 3:
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:01 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xf)
close(r0)

21:30:01 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  306.986174][ T2600] attempt to access beyond end of device
[  306.992367][ T2600] loop0: rw=1, want=130, limit=112
21:30:01 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x364)
close(r0)

[  307.059333][ T2600] Buffer I/O error on dev loop0, logical block 129, lost async page write
21:30:01 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x53, 0x700000000000000)

21:30:01 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = socket$inet(0x2, 0x7, 0x80)
fchmod(r0, 0x28)
r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x48000, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r1, 0x89eb, &(0x7f0000000040)={0x40, 0x6, 0x1000, 0x10000, 0x3, 0x3, 0x23, "24e1288851c3428e8c9203cdf810cb8d1e691b81", "086a96382e649515c832a5639d5caf86a0f0ce18"})

21:30:01 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x370)
close(r0)

21:30:01 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x20000000000000, 0x2000)
ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f00000000c0))

21:30:01 executing program 5:
r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x2, 0x80000)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f00000000c0)={<r1=>0x0, @in={{0x2, 0x4e24, @local}}, 0xd, 0x970}, &(0x7f0000000180)=0x90)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f00000001c0)={r1, 0x9}, 0x8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x1)
write$vhci(r2, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r2)

[  307.173257][ T2600] attempt to access beyond end of device
[  307.181914][ T2600] loop0: rw=1, want=131, limit=112
[  307.199337][ T2600] Buffer I/O error on dev loop0, logical block 130, lost async page write
[  307.244238][ T2600] attempt to access beyond end of device
[  307.249970][ T2600] loop0: rw=1, want=132, limit=112
[  307.283974][ T2600] Buffer I/O error on dev loop0, logical block 131, lost async page write
[  307.301822][ T2600] attempt to access beyond end of device
[  307.330020][ T2600] loop0: rw=1, want=133, limit=112
[  307.336536][ T2600] Buffer I/O error on dev loop0, logical block 132, lost async page write
[  307.361182][ T2600] attempt to access beyond end of device
[  307.378233][ T2600] loop0: rw=1, want=142, limit=112
[  307.400077][ T2600] Buffer I/O error on dev loop0, logical block 141, lost async page write
[  307.446237][ T2600] attempt to access beyond end of device
[  307.464447][ T2600] loop0: rw=1, want=143, limit=112
[  307.492070][ T2600] Buffer I/O error on dev loop0, logical block 142, lost async page write
[  307.500950][ T2600] attempt to access beyond end of device
[  307.507096][ T2600] loop0: rw=1, want=144, limit=112
[  307.512397][ T2600] Buffer I/O error on dev loop0, logical block 143, lost async page write
[  307.521470][ T2600] attempt to access beyond end of device
[  307.527347][ T2600] loop0: rw=1, want=145, limit=112
[  307.532614][ T2600] Buffer I/O error on dev loop0, logical block 144, lost async page write
[  307.551183][ T2600] attempt to access beyond end of device
[  307.567488][ T2600] loop0: rw=1, want=2201, limit=112
[  307.583398][ T2600] attempt to access beyond end of device
[  307.594202][ T2600] loop0: rw=1, want=5529, limit=112
[  307.610892][ T2600] attempt to access beyond end of device
[  307.623684][ T2600] loop0: rw=1, want=8409, limit=112
[  307.631211][ T2600] attempt to access beyond end of device
[  307.636989][ T2600] loop0: rw=1, want=8438, limit=112
[  307.642266][ T2600] Buffer I/O error on dev loop0, logical block 8437, lost async page write
[  307.651042][ T2600] attempt to access beyond end of device
[  307.656878][ T2600] loop0: rw=1, want=8439, limit=112
[  307.662156][ T2600] Buffer I/O error on dev loop0, logical block 8438, lost async page write
[  307.670936][ T2600] attempt to access beyond end of device
[  307.676974][ T2600] loop0: rw=1, want=8440, limit=112
[  307.682278][ T2600] attempt to access beyond end of device
[  307.688044][ T2600] loop0: rw=1, want=8441, limit=112
[  307.693393][ T2600] attempt to access beyond end of device
[  307.699163][ T2600] loop0: rw=1, want=8462, limit=112
[  307.705494][ T2600] attempt to access beyond end of device
[  307.711211][ T2600] loop0: rw=1, want=8463, limit=112
[  307.716577][ T2600] attempt to access beyond end of device
[  307.722278][ T2600] loop0: rw=1, want=8464, limit=112
[  307.729257][ T2600] attempt to access beyond end of device
[  307.743358][ T2600] loop0: rw=1, want=8465, limit=112
[  307.748796][ T2600] attempt to access beyond end of device
[  307.755470][ T2600] loop0: rw=1, want=8514, limit=112
[  307.760788][ T2600] attempt to access beyond end of device
[  307.766561][ T2600] loop0: rw=1, want=8515, limit=112
[  307.771952][ T2600] attempt to access beyond end of device
[  307.777782][ T2600] loop0: rw=1, want=8516, limit=112
[  307.783180][ T2600] attempt to access beyond end of device
[  307.789188][ T2600] loop0: rw=1, want=8517, limit=112
[  307.795569][ T2600] attempt to access beyond end of device
[  307.801276][ T2600] loop0: rw=1, want=8526, limit=112
[  307.806631][ T2600] attempt to access beyond end of device
[  307.812313][ T2600] loop0: rw=1, want=8527, limit=112
[  307.817624][ T2600] attempt to access beyond end of device
[  307.823308][ T2600] loop0: rw=1, want=8528, limit=112
[  307.828621][ T2600] attempt to access beyond end of device
[  307.834327][ T2600] loop0: rw=1, want=8529, limit=112
[  307.847773][ T2600] attempt to access beyond end of device
[  307.853660][ T2600] loop0: rw=1, want=12641, limit=112
[  307.867918][ T2600] attempt to access beyond end of device
[  307.873640][ T2600] loop0: rw=1, want=16753, limit=112
[  307.887974][ T2600] attempt to access beyond end of device
[  307.893784][ T2600] loop0: rw=1, want=20889, limit=112
[  307.909062][ T2600] attempt to access beyond end of device
[  307.914822][ T2600] loop0: rw=1, want=25001, limit=112
[  307.929045][ T2600] attempt to access beyond end of device
[  307.934798][ T2600] loop0: rw=1, want=29097, limit=112
[  307.947507][ T2600] attempt to access beyond end of device
[  307.953231][ T2600] loop0: rw=1, want=32105, limit=112
21:30:02 executing program 0:
r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x2, 0x80000)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f00000000c0)={<r1=>0x0, @in={{0x2, 0x4e24, @local}}, 0xd, 0x970}, &(0x7f0000000180)=0x90)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f00000001c0)={r1, 0x9}, 0x8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x1)
write$vhci(r2, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r2)

21:30:02 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x372)
close(r0)

21:30:02 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x54, 0x700000000000000)

21:30:02 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x1, 0x40000)
ioctl$KDMKTONE(r0, 0x4b30, 0x4)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x9, 0x100)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
ioctl$BLKREPORTZONE(r1, 0xc0101282, &(0x7f00000000c0)={0x0, 0x1, 0x0, [{0x8, 0xfff, 0x6, 0x3f, 0x7, 0xfffffffffffffc00, 0x1}]})

21:30:02 executing program 4:
inotify_init()
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x101000)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x1, 0x0)
ioctl$VIDIOC_SUBDEV_S_SELECTION(r1, 0xc040563e, &(0x7f00000000c0)={0x1, 0x0, 0x103, 0x6, {0x20, 0x9, 0xffffffff, 0x3}})
close(r0)

21:30:02 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x55, 0x700000000000000)

21:30:02 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000000)={'veth1_to_bond\x00', 0x100000001})

21:30:02 executing program 4:
r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x2a, 0x80000)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f00000000c0)={0x0, @bt={0x8, 0x7fff, 0x1, 0x3, 0x2, 0x11a6, 0x5, 0x6, 0x1, 0xe8, 0x100000001, 0x8000, 0x401, 0x5, 0x11, 0x11}})
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)

21:30:02 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x373)
close(r0)

21:30:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:02 executing program 0:
r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x2, 0x80000)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f00000000c0)={<r1=>0x0, @in={{0x2, 0x4e24, @local}}, 0xd, 0x970}, &(0x7f0000000180)=0x90)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f00000001c0)={r1, 0x9}, 0x8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x1)
write$vhci(r2, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r2)

21:30:02 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x56, 0x700000000000000)

21:30:02 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r1 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x8001, 0x100)
getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f00000000c0)=""/53, &(0x7f0000000100)=0x35)
close(r0)

21:30:02 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfdef)
close(r0)

21:30:02 executing program 3:
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x5, 0x64031, 0xffffffffffffffff, 0xfffffffffffffffb)
r0 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x1, 0x68040)
ioctl$EVIOCGABS0(r0, 0x80184540, &(0x7f0000000180)=""/37)
connect$rxrpc(r0, &(0x7f0000000100)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e22, 0x4, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x10000}}, 0x24)
r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x6, 0xcf1ac428f5347fc9)
getsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000040), &(0x7f0000000080)=0x10)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
ioctl$UI_SET_PHYS(r1, 0x4008556c, &(0x7f0000000140)='syz1\x00')

21:30:02 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x100, 0x0)
close(r0)

21:30:03 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x20000002)
close(r0)

21:30:03 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x57, 0x700000000000000)

21:30:03 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000200)='/dev/full\x00', 0x320fff, 0x0)
prctl$PR_SET_DUMPABLE(0x4, 0x2)
setsockopt$inet6_tcp_buf(r1, 0x6, 0x3f, &(0x7f00000000c0)="e0892966251b4bda2c504d077eb0fe76135a45efa6e4bae85ac39afe1ed65186705b174c51a3102b1ab6529fb241e082f89e9ba12f1cc3fff8f53c89b2f23a086d1e1c7907e5c1df909793009e97cd7a74671e99e65867e6a53a879f39dd0d6b2b11f7a082eb9858b957408345789e312a41ffe2e84cad7824e54f0101ea2c00e45b478fe8e6eb67960054fcce54d5975b10ca1246f6a23eee7b7f870dc6c09dac2d0667dae5888e8d36492b0470761eb521b51bba9b7fae69998518df598ed1d96c0dd3075a6945539c28b2709bcdae80414e496f14909d99232611df", 0xdd)

21:30:03 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x6403d, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x4282)
setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r0, 0x111, 0x1, 0x6, 0x4)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000040)=0x1)

21:30:03 executing program 0:
r0 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x10100d, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
pipe(0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r1, 0x28, 0x0, &(0x7f00000002c0)=0x6, 0x8)
ioctl$RTC_WIE_ON(0xffffffffffffffff, 0x700f)
ioctl$int_out(r1, 0x0, &(0x7f0000000280))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x2000400000000009, 0x0)
read(r2, &(0x7f00000000c0)=""/110, 0x6e)
close(r2)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x200000, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
getpeername$inet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
socket$inet(0x2, 0x806, 0x1d)
shmget$private(0x0, 0x4000, 0x8, &(0x7f0000ff9000/0x4000)=nil)
openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000140), 0x0)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x1d)
write$binfmt_aout(r0, 0x0, 0x1da)

21:30:03 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfffffdef)
close(r0)

21:30:03 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x58, 0x700000000000000)

21:30:03 executing program 4:
r0 = syz_open_dev$adsp(&(0x7f0000000140)='/dev/adsp#\x00', 0x5, 0x10000)
ioctl$SIOCX25GCALLUSERDATA(r0, 0x89e4, &(0x7f0000000180)={0x2e, "e2777ef403a10a9d7881ccb29f87a345d78d9470d571422d8791214d3308a566b4c74f0d1aedd0b82d52e94364beab7536346bdd79c5ca3659fabbc0e4d4cb0d6c45fdfb965b193a2b73bbe6e22affd938d084c329bef578033e7f29ce429540c14cf928816335755ca339bb53f89d1310c70bca3764130b0b5d39583a80ecac"})
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00')
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffffff)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r2, 0x5386, 0x0)
r3 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
truncate(&(0x7f0000000240)='./file0\x00', 0x90002)
ioctl$BLKFLSBUF(r2, 0x1261, &(0x7f0000001a00)=0x4)
sendfile(r2, r3, 0x0, 0x7fffffff)
close(0xffffffffffffffff)
ioctl$KVM_GET_EMULATED_CPUID(0xffffffffffffffff, 0xc008ae09, &(0x7f0000000040)=""/134)
ioctl$TCSETAW(r2, 0x5407, &(0x7f0000000140)={0x100000001, 0x7fffffff, 0x7ff, 0x3, 0x8, 0xffffffffffffff01, 0x5000000000000000, 0x7, 0x2, 0x7fff})
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
getresuid(&(0x7f0000001880), &(0x7f00000018c0), &(0x7f0000001900)=<r4=>0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext3\x00', &(0x7f00000002c0)='./file0\x00', 0x9, 0x8, &(0x7f00000017c0)=[{&(0x7f0000000300)="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", 0x1000, 0x7fff}, {&(0x7f0000001300)="4bb0d9ac29b12a1381a7b318a14af23e838257c933a067a7bc15b0eee1fb64854f3bb1803d031551afd4cbcad73ef6a2c53cb13fbb82db012a3d81f0fd4b9cd78c1f3af433b345ca935afbef4f2a3462bd033a778a288bf5442fe609cc0b4390122c6439f7d3c8a0f3b560f631d26b51376525a33cb87af97258dcdb5f7ae8bbf91ba4862394fe9796333e786e8ad6e94e138608b59196f5ca7124e21f75a36bdc6e63713376dfc6d8a7a350a1d2f942403d11870a58da00164f83e2bbea9d96eef5de791bf739758dcb3f23a18a1c59a07ba90651d9d27730e227394161eb9b45aad193881179e120a024dc1a3db9adf9d2f88974db610a", 0xf8, 0x4}, {&(0x7f0000001400)="06e1b326940f23612c011e35c2b3c1f27926832c0704a4317703d02ebd41cd2a7a6835", 0x23}, {&(0x7f0000001440)="850bc0b0187aabf2bdc93c9b36b5a07c2bb06471be506e61282d68dd43f28d5a54637a715ee24c9dba81dd9e1479a87cc7c446e73e879cff372647", 0x3b, 0x4}, {&(0x7f0000001480)="a1621eba1ea177a940d59c42b5803087ef7f8068b2ee11e3b862be28a6dcf526d2f716b6bc388f5217098b767765f7d9d6637fe0bf0e013748795e10fade5b9b9bd4f5b812593bdf52982e1c37fded5a5df51f7fe386fa96112db73db09bec3df96b2d063b33d890069ba14c8397dee6de3b0878f6e904eb216b75db9a315f76d1390d410f8903aa86e7e4e955e9b6bede333ec557e52b420aa5d1080ee22ae2b2af420191d5e310f852e211a0fc5fa2bd5526631028b06ac312a53c2d217e5641afe9c238ae2e11a509756948eb4024599676fb75038374", 0xd8, 0x2}, {&(0x7f0000001580)="56ba7a6d72ea1286341749ebf951983e0ad76ca3572dfc7767aa8fc927fb4f30e06590d97c0b1f570059e7e876b152b669ba9dc7a30a5952f7e644eaeef1894bfa5e2e76222eef9f509e3a3dbf53e35de6241d93ed43dc728385cb4f5609d260e6280098e19dc24979c1710453552ac46468a71886cb3fbd74d62561ce10ec5ee38b306070b648ab9ed2c9a7b1af0977c79d7354e9ff57d75eb49b9a38e2b6d556546812f2c7096f0ca1b3026ba50b55419547dc781e7eed75defcc6aac1fd8c065fb02d810695f7b34c637fd11e5e650d9e9d4cd8ef87b35c2cef8c589e6b3c834447727f", 0xe5, 0x4}, {&(0x7f0000001680)="1d6d0f48b797a39a8508e380c199b783578ae9101c3e965024f548fb0ce8be99e5c1e644e0c8b09d74549e381a433aaa18fb70ce00bd985f1d7db1287f6b4fc0402bcc7eee2232bb54e4405dc5f4d8eeb8b1365d771ad2177395c7238f931df98b6b1d3ab06c1d7ee584561c072ee22dcb1aa746d75882ffdf8bfd5e50229945f7d2d196a6ce678834e1d4e990f991664159d00265c78761362742e9fe497368174e41734e630b98135fc72b640191f24d8da52f49beb42911218ea9ef684011119dd98facbad449d100c940b885ffc4fc4901a7f1158b00efd2595d3f0e0d19fda8ae57ea", 0xe5, 0xffffffffffffffc0}, {&(0x7f0000001780)="a12f6d0a", 0x4, 0x5}], 0x3000000, &(0x7f0000001940)={[{@nouser_xattr='nouser_xattr'}, {@max_dir_size_kb={'max_dir_size_kb'}}, {@jqfmt_vfsold='jqfmt=vfsold'}, {@nogrpid='nogrpid'}, {@quota='quota'}, {@bsdgroups='bsdgroups'}, {@journal_async_commit='journal_async_commit'}, {@jqfmt_vfsold='jqfmt=vfsold'}, {@dax='dax'}, {@jqfmt_vfsold='jqfmt=vfsold'}], [{@uid_eq={'uid', 0x3d, r4}}, {@hash='hash'}]})

21:30:03 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:03 executing program 3:
r0 = socket$rxrpc(0x21, 0x2, 0x0)
signalfd4(r0, &(0x7f0000000000)={0x1}, 0x8, 0x800)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:03 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
socketpair(0x5, 0x0, 0x80000000, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000040))
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x8f2b, 0x6, 0x0, 0x3, 0x7, 0x1, 0x100000001, 0x3f, <r1=>0x0}, &(0x7f00000000c0)=0x20)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000100)={r1, @in6={{0xa, 0x4e22, 0x31, @mcast2, 0x5}}, 0x9, 0x8, 0x0, 0x1, 0x80}, 0x98)

21:30:03 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x59, 0x700000000000000)

21:30:03 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0xfffffffffffffdef)
close(r0)

21:30:03 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x100, 0x0)
close(r0)

21:30:03 executing program 5:
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video2\x00', 0x2, 0x0)
fstatfs(r0, &(0x7f00000000c0)=""/57)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)

21:30:03 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0xfff, 0x90000)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x6, &(0x7f0000000040)=[{0x2, 0x1f, 0x80000001, 0x1}, {0x1, 0x1, 0x3, 0x9}, {0xffffffffffffffff, 0x9, 0x100000001, 0x400000000000000}, {0x80000001, 0xfffffffffffffff7, 0x80000001, 0x8}, {0xc2, 0x10000, 0x0, 0x7}, {0xb, 0x6, 0x10000, 0x200}]})

21:30:03 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
fcntl$notify(r0, 0x402, 0x2c)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x20100, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r2, 0x0, 0x42, &(0x7f00000000c0)={'ah\x00'}, &(0x7f0000000100)=0x1e)
prctl$PR_GET_DUMPABLE(0x3)

21:30:03 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5a, 0x700000000000000)

[  309.786712][T11087] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
21:30:03 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$EXT4_IOC_MIGRATE(r1, 0x6609)
close(r0)

[  309.915903][T11117] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
21:30:04 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x4)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r1 = accept4(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000540)=0x80, 0x80800)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000580)=0x56, 0x4)
close(r0)
fcntl$addseals(r0, 0x409, 0x8)
r2 = accept$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000003c0)=0x1c)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000000700)=ANY=[@ANYRES32=<r3=>0x0, @ANYBLOB="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"], &(0x7f0000000480)=0x42)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000004c0)={r3, 0xc69d}, &(0x7f0000000500)=0x8)
getresuid(&(0x7f0000000280), &(0x7f00000002c0)=<r4=>0x0, &(0x7f0000000300))
setxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)='security.capability\x00', &(0x7f0000000340)=@v3={0x3000000, [{0x7, 0x4}, {0x3, 0x100}], r4}, 0x18, 0x2)
lgetxattr(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000680)=@known='system.posix_acl_default\x00', &(0x7f0000000100)=""/228, 0x2bb8dd17f8635cfe)

21:30:04 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
r2 = dup(r0)
ioctl$UI_SET_MSCBIT(r2, 0x40045568, 0x6)

21:30:04 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5b, 0x700000000000000)

21:30:04 executing program 0:
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video2\x00', 0x2, 0x0)
fstatfs(r0, &(0x7f00000000c0)=""/57)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)

21:30:04 executing program 3:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x20000, 0x0)
ioctl$CAPI_GET_FLAGS(r0, 0x80044323, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r0, &(0x7f0000000080))
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)

21:30:04 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xfffffffffffffeb6)
close(r0)

21:30:04 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5c, 0x700000000000000)

21:30:04 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000bcb000/0x2000)=nil, 0x2000, 0x3, 0x0, 0x90000)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x301800, 0x0)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080)='nbd\x00')
r3 = fcntl$dupfd(r0, 0x406, r0)
r4 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x80000001, 0x8000)
r5 = accept4(r0, &(0x7f0000000100)=@tipc=@id, &(0x7f0000000180)=0x80, 0x800)
recvfrom$netrom(r5, &(0x7f0000000380)=""/123, 0x7b, 0x1, &(0x7f0000000400)={{0x3, @default, 0x7}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast]}, 0x48)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x8000, 0x0)
r7 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x0, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4600}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x9c, r2, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x7}, @NBD_ATTR_SERVER_FLAGS={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SOCKETS={0x2c, 0x7, [{0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8, 0x1, r5}, {0x8, 0x1, r6}, {0x8, 0x1, r7}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xdeb}]}, 0x9c}, 0x1, 0x0, 0x0, 0x8044}, 0x20000000)
mmap(&(0x7f0000293000/0x3000)=nil, 0x3000, 0x2000000, 0x50, r0, 0x0)

21:30:04 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, "473202beae53b3126086f9f115e1e38d8e9630868ee023e700db26b4cc345d9e3faaa9a896e55da877d96fb9d03cd6ddad1debd075827d64b5bda8525760894c6fc39f9507df"}, 0xff39)
close(r0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x40000, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0x2, &(0x7f00000000c0)=0x10, 0x4)

21:30:04 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000200)=@HCI_SCODATA_PKT={0x3, "6ad5a0dee7e921607dfe74"}, 0xffffff0d)
r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x1, 0x8000)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000100)={0x2, <r3=>0x0, 0x10001, 0x3})
ioctl$DRM_IOCTL_SG_FREE(r2, 0x40106439, &(0x7f0000000140)={0x101, r3})
ioctl$DRM_IOCTL_ADD_BUFS(r2, 0xc0206416, &(0x7f00000000c0)={0x2, 0x8001, 0x100000000, 0x0, 0x2, 0x200})
close(r1)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0xc058534b, &(0x7f0000000180)={0x200, 0x7fff, 0x1ff, 0x81, 0x9, 0x8})

21:30:04 executing program 5:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x5, 0x301002)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000001c0)=<r2=>0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x8, 0x10001, 0x8, 0x7fff, 0x0, 0x47e2, 0x1100, 0xa, 0xd68c, 0x6, 0x1, 0x2, 0xa4, 0xed, 0x3, 0xfffffffffffff801, 0x0, 0x1, 0x9, 0x20, 0x8, 0x5, 0x0, 0x8, 0x5, 0x40, 0x40, 0x99ac, 0x100000001, 0x0, 0x3, 0x9, 0x3, 0x400, 0x101, 0xff, 0x0, 0xe058, 0x0, @perf_bp={&(0x7f0000000100), 0x6}, 0x11, 0x3f, 0x8, 0x3, 0x7, 0x40, 0xeb}, r2, 0x5, r0, 0x9)
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x2c0000, 0x0)
prctl$PR_GET_TSC(0x19, &(0x7f0000000080))

21:30:04 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5d, 0x700000000000000)

21:30:04 executing program 0:
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video2\x00', 0x2, 0x0)
fstatfs(r0, &(0x7f00000000c0)=""/57)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)

21:30:04 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:04 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x800, 0x0)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f00000000c0)=0x7fff, 0x4)

21:30:04 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x2000)

21:30:04 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5e, 0x700000000000000)

21:30:04 executing program 5:
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r2 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x4, 0x10000)
ioctl$PPPIOCGL2TPSTATS(r2, 0x80487436, &(0x7f00000000c0)="0af885208e59d8297c4014373779266cd5f7d895d84c32e9ae3c64422dcd31e13f7c22b5301fea221bd695b6dbff002a53fbf16f50c63499608d2f800a9e3e3be7368106ba38e10d7e2cf444b5d46dab5b7dd150feb03d73bb4a51543dd5")
close(r1)

21:30:04 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000480)='/dev/snd/pcmC#D#c\x00', 0x1, 0x440000)
ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f00000004c0)={'ip6tnl0\x00', {0x2, 0x4e20, @rand_addr=0xfff}})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@dev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@remote}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8)
fsopen(&(0x7f0000000440)='v7\x00', 0x1)
getresuid(&(0x7f0000000280), &(0x7f00000002c0)=<r3=>0x0, &(0x7f0000000300))
mount$9p_xen(&(0x7f0000000080)='/dev/vhci\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x2000, &(0x7f0000000340)={'trans=xen,', {[{@cachetag={'cachetag', 0x3d, '/dev/vhci\x00'}}, {@debug={'debug', 0x3d, 0x101}}, {@version_L='version=9p2000.L'}, {@posixacl='posixacl'}, {@cache_loose='cache=loose'}, {@access_any='access=any'}, {@msize={'msize', 0x3d, 0x9}}, {@posixacl='posixacl'}], [{@fowner_eq={'fowner', 0x3d, r2}}, {@fowner_lt={'fowner<', r3}}]}})

21:30:04 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x5, 0x301002)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000001c0)=<r2=>0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x8, 0x10001, 0x8, 0x7fff, 0x0, 0x47e2, 0x1100, 0xa, 0xd68c, 0x6, 0x1, 0x2, 0xa4, 0xed, 0x3, 0xfffffffffffff801, 0x0, 0x1, 0x9, 0x20, 0x8, 0x5, 0x0, 0x8, 0x5, 0x40, 0x40, 0x99ac, 0x100000001, 0x0, 0x3, 0x9, 0x3, 0x400, 0x101, 0xff, 0x0, 0xe058, 0x0, @perf_bp={&(0x7f0000000100), 0x6}, 0x11, 0x3f, 0x8, 0x3, 0x7, 0x40, 0xeb}, r2, 0x5, r0, 0x9)
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x2c0000, 0x0)
prctl$PR_GET_TSC(0x19, &(0x7f0000000080))

21:30:04 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000080)="7351baea43a450d0cfe76119610bdce5", 0x10)

21:30:04 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x1, 0x2)
ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0)

21:30:04 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x5f, 0x700000000000000)

21:30:05 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x6, 0x0)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/qat_adf_ctl\x00', 0x0, 0x0)
ioctl$EVIOCGPROP(r1, 0x80404509, &(0x7f00000001c0)=""/189)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x9, 0x0, 0xd7ed, 0x3, 0x3})
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x41, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r2, 0xc0945662, &(0x7f00000000c0)={0x16e9, 0x0, [], {0x0, @bt={0xf8ee, 0x0, 0x1, 0x3, 0xff9, 0x65, 0x1, 0x3, 0x65, 0x4, 0x9, 0x1, 0x5, 0x9, 0x2, 0x1}}})
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x8200, 0x44)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000100)=0x8000, 0x4)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
syz_open_dev$sndtimer(&(0x7f0000000080)='/dev/snd/timer\x00', 0x0, 0x402100)
write(r0, &(0x7f0000000140)="0e6e2f19dc283ecbbf659a83512926f9426a3dd4c5904ac0aaa5082a7b53227aec181127950d9aec8bd3ce0a7c5470d21c1cfdae704df7c82c3052108e2b7653382e19d01037", 0x46)

21:30:05 executing program 4:
r0 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x0, 0x20400)
ioctl$TCGETS2(r0, 0x802c542a, &(0x7f00000000c0))
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)

21:30:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x60, 0x700000000000000)

21:30:05 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f00000004c0)=@HCI_EVENT_PKT={0x4, "fb4c9913fd31bd54a157109391de58f88015d3f7cf9a59be330d68adbe4b30e883efb65e2c56f5d174ef2de5a2d4ca9e979ef7de97b1ffa5e28995fcb7208aeefd04d2a37d2284ef2e3fb0ac25d304ece94031f718dee3bee49f1dedcf957454c704d7816cbd53bf5577fee32935030aff937d456fadb8e9ac4a15bc51954f1fe0a157967e1e2280dc8c8a04fab5ce2867f7768659ed568989016426a9840501142e541aefe1f72cc5e63a80d5912897ad1eea78f2c8a4a7b413c60d338e600fd5d5b19a75f771c3ba005fa6b5b1dd4f52f9562520c403c9071a9f8f"}, 0xdd)
r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x101000)
getsockopt$netrom_NETROM_T4(r1, 0x103, 0x6, &(0x7f00000000c0)=0x80000001, &(0x7f0000000100)=0x4)
close(r0)

[  311.140512][T11207] QAT: Invalid ioctl
21:30:05 executing program 0:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x5, 0x301002)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000001c0)=<r2=>0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x8, 0x10001, 0x8, 0x7fff, 0x0, 0x47e2, 0x1100, 0xa, 0xd68c, 0x6, 0x1, 0x2, 0xa4, 0xed, 0x3, 0xfffffffffffff801, 0x0, 0x1, 0x9, 0x20, 0x8, 0x5, 0x0, 0x8, 0x5, 0x40, 0x40, 0x99ac, 0x100000001, 0x0, 0x3, 0x9, 0x3, 0x400, 0x101, 0xff, 0x0, 0xe058, 0x0, @perf_bp={&(0x7f0000000100), 0x6}, 0x11, 0x3f, 0x8, 0x3, 0x7, 0x40, 0xeb}, r2, 0x5, r0, 0x9)
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x2c0000, 0x0)
prctl$PR_GET_TSC(0x19, &(0x7f0000000080))

[  311.207641][T11207] Unknown ioctl -1064020382
21:30:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x61, 0x700000000000000)

21:30:05 executing program 4:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
socketpair(0x2, 0x80000, 0x7fffffff, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f00000000c0)=0x16c5, 0x4)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:05 executing program 3:
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x62, 0x700000000000000)

21:30:05 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x210001, 0x0)
ioctl$VIDIOC_G_SELECTION(r1, 0xc040565e, &(0x7f00000000c0)={0x3, 0x0, 0x2, {0x9, 0x5887, 0x100000000, 0x64}})
close(r0)

21:30:05 executing program 4:
r0 = syz_open_dev$midi(&(0x7f0000000280)='/dev/midi#\x00', 0x7f, 0x20000)
ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f00000002c0))
ioctl$RTC_AIE_ON(r0, 0x7001)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
write$binfmt_aout(r1, &(0x7f0000000080)={{0xcc, 0x7, 0x2, 0x2d6, 0x169, 0x4, 0x225, 0x581df2dd}, "a0ac644e764ebc5d73a3cd34cc9d8dcc5bdcb8b853f65145797691be8398a9bd15d50e0dd69f040f501dce8dd09791530cfc82eb4bfa7df06492fe15bdd3184f79818cf50d710144482d5468c86fb564ce494cf1176f7468b4db26b6f43b040f4261708780b1b22f99ff8810c3656cd1a4f6a212d351030e53cb5b1dbd0ccea31fa975c2527326a6c82dbd10226d5736b8a21e518d40b4b4f74888dd6ca990d71a4ca85764cc2f8a9753146a1e6ea9c86b12ed6b", [[]]}, 0x1d4)

21:30:05 executing program 3:
mmap(&(0x7f0000691000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x8200, 0x44)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000100)=0x8000, 0x4)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r1)
syz_open_dev$sndtimer(&(0x7f0000000080)='/dev/snd/timer\x00', 0x0, 0x402100)
write(r0, &(0x7f0000000140)="0e6e2f19dc283ecbbf659a83512926f9426a3dd4c5904ac0aaa5082a7b53227aec181127950d9aec8bd3ce0a7c5470d21c1cfdae704df7c82c3052108e2b7653382e19d01037", 0x46)

21:30:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x63, 0x700000000000000)

21:30:05 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

21:30:05 executing program 4:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f00000000c0))
ioctl$KVM_SET_DEBUGREGS(r0, 0x4080aea2, &(0x7f0000000100)={[0x0, 0xd002, 0x7000, 0x10f003], 0x0, 0x80})
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x1)
inotify_init1(0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000240)=ANY=[@ANYRES32=<r2=>0x0, @ANYBLOB="0c000000cdec797e00d2c0a5365bc500800000000000000df2dd0ca29b81c7f8e14902b5c9edd34a791aa1eead3d6f405e37c8cb52d87110a5a8a3480643208e353fcfcf47e9f51a5c59e959661645b7f51bdf424e2ada0938a4829c05ac76ae236bc580b3ac"], &(0x7f00000001c0)=0x14)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000200)={r2, 0x81, 0x3, [0x447, 0x7, 0x56]}, 0xe)
write$vhci(r1, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
close(r1)

21:30:05 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x1)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f00000000c0)={<r2=>0x0}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000140)={r2, 0x1000, 0x7}, 0x8)

21:30:05 executing program 3:
syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x6, 0x400000)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000791000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

21:30:05 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00')
preadv(r0, &(0x7f00000017c0), 0x64, 0x700000000000000)

21:30:05 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0x20400)
write$vhci(r0, &(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x11cc1}, 0x2)
close(r0)

[  311.879206][T11256] ------------[ cut here ]------------
[  311.891582][T11256] refcount_t: increment on 0; use-after-free.
[  311.940926][T11256] WARNING: CPU: 0 PID: 11256 at lib/refcount.c:156 refcount_inc_checked+0x61/0x70
[  311.950277][T11256] Kernel panic - not syncing: panic_on_warn set ...
[  311.956894][T11256] CPU: 0 PID: 11256 Comm: syz-executor.4 Not tainted 5.2.0-rc5+ #37
[  311.964881][T11256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  311.974951][T11256] Call Trace:
[  311.978391][T11256]  dump_stack+0x172/0x1f0
[  311.982855][T11256]  ? refcount_inc_checked+0x60/0x70
[  311.988160][T11256]  panic+0x2cb/0x744
[  311.992073][T11256]  ? __warn_printk+0xf3/0xf3
[  311.996706][T11256]  ? refcount_inc_checked+0x61/0x70
[  312.001921][T11256]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  312.008181][T11256]  ? __warn.cold+0x5/0x4d
[  312.012534][T11256]  ? refcount_inc_checked+0x61/0x70
[  312.017743][T11256]  __warn.cold+0x20/0x4d
[  312.022008][T11256]  ? refcount_inc_checked+0x61/0x70
[  312.027430][T11256]  report_bug+0x263/0x2b0
[  312.031789][T11256]  do_error_trap+0x11b/0x200
[  312.036428][T11256]  do_invalid_op+0x37/0x50
[  312.040858][T11256]  ? refcount_inc_checked+0x61/0x70
[  312.046080][T11256]  invalid_op+0x14/0x20
[  312.050248][T11256] RIP: 0010:refcount_inc_checked+0x61/0x70
[  312.056070][T11256] Code: 1d 6e 65 48 06 31 ff 89 de e8 8b 5f 3c fe 84 db 75 dd e8 42 5e 3c fe 48 c7 c7 20 9d a4 87 c6 05 4e 65 48 06 01 e8 4d 97 0e fe <0f> 0b eb c1 90 90 90 90 90 90 90 90 90 90 90 55 48 89 e5 41 57 41
[  312.075695][T11256] RSP: 0018:ffff888057fb78f8 EFLAGS: 00010286
[  312.081785][T11256] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  312.089772][T11256] RDX: 0000000000010a9b RSI: ffffffff815ad926 RDI: ffffed100aff6f11
[  312.097771][T11256] RBP: ffff888057fb7908 R08: ffff88808ce7e080 R09: ffffed1015d060a1
[  312.105765][T11256] R10: ffffed1015d060a0 R11: ffff8880ae830507 R12: ffff8880a74fe7b8
[  312.113750][T11256] R13: ffff8880a9559a20 R14: ffff8880a9559a18 R15: ffff8880a74fe738
[  312.121861][T11256]  ? vprintk_func+0x86/0x189
[  312.126480][T11256]  ? refcount_inc_checked+0x61/0x70
[  312.131817][T11256]  kobject_get+0x66/0xc0
[  312.136298][T11256]  kobject_add_internal+0x14f/0x380
[  312.141516][T11256]  ? kfree_const+0x5e/0x70
[  312.145950][T11256]  kobject_add+0x150/0x1c0
[  312.150475][T11256]  ? kset_create_and_add+0x1a0/0x1a0
[  312.155785][T11256]  ? get_device_parent.isra.0+0x34c/0x560
[  312.161527][T11256]  ? rcu_read_lock_sched_held+0x110/0x130
[  312.167348][T11256]  ? kmem_cache_alloc_trace+0x351/0x750
[  312.172922][T11256]  get_device_parent.isra.0+0x413/0x560
[  312.178487][T11256]  device_add+0x2df/0x17a0
[  312.182974][T11256]  ? get_device_parent.isra.0+0x560/0x560
[  312.188714][T11256]  ? up_write+0xbe/0x1e0
[  312.192982][T11256]  hci_register_dev+0x2e8/0x860
[  312.197867][T11256]  __vhci_create_device+0x2d0/0x5a0
[  312.203096][T11256]  vhci_write+0x2d0/0x470
[  312.207444][T11256]  new_sync_write+0x4d3/0x770
[  312.212228][T11256]  ? new_sync_read+0x800/0x800
[  312.217015][T11256]  ? common_file_perm+0x238/0x720
[  312.222232][T11256]  ? __fget+0x381/0x550
[  312.226428][T11256]  ? apparmor_file_permission+0x25/0x30
[  312.231999][T11256]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  312.238254][T11256]  ? security_file_permission+0x8f/0x380
[  312.243901][T11256]  __vfs_write+0xe1/0x110
[  312.248260][T11256]  vfs_write+0x20c/0x580
[  312.252555][T11256]  ksys_write+0x14f/0x290
[  312.256901][T11256]  ? __ia32_sys_read+0xb0/0xb0
[  312.261795][T11256]  ? do_syscall_64+0x26/0x680
[  312.266492][T11256]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  312.272743][T11256]  ? do_syscall_64+0x26/0x680
[  312.277449][T11256]  __x64_sys_write+0x73/0xb0
[  312.282157][T11256]  do_syscall_64+0xfd/0x680
[  312.286704][T11256]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  312.292632][T11256] RIP: 0033:0x4592c9
[  312.296636][T11256] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  312.316260][T11256] RSP: 002b:00007fd5e8777c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  312.324695][T11256] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004592c9
[  312.332682][T11256] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000004
[  312.340676][T11256] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  312.348782][T11256] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd5e87786d4
[  312.356865][T11256] R13: 00000000004c9394 R14: 00000000004e03e8 R15: 00000000ffffffff
[  312.366612][T11256] Kernel Offset: disabled
[  312.371012][T11256] Rebooting in 86400 seconds..