, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r10, &(0x7f00000000c0)='./file0\x00')
mkdirat(r10, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r11, &(0x7f0000000180)='./file0\x00', r10, &(0x7f0000000640)='./file0/file0\x00', 0x1)
r12 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r12, &(0x7f00000000c0)='./file0\x00')

03:16:58 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

[  224.916991][ T8390] netlink: 'syz-executor.5': attribute type 3 has an invalid length.
[  224.925273][ T8390] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.5'.
03:16:58 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
gettid()
clone(0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0)
fstat(0xffffffffffffffff, 0x0)

03:17:08 executing program 2:
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x0, 0x80000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x100, 0x2)
sendto$inet(r1, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setpipe(r5, 0x407, 0x0)
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
rmdir(&(0x7f0000000140)='./bus\x00')
sched_setattr(0x0, 0x0, 0x0)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x400, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r7, 0x400442c8, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYBLOB="080000000000000000000203240000cf9094b8ba700000fd361deea8060000000034660d8062b356f987e2ff60db53ecb4ad552a2748431e22fecebd4f7c22"])
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r10, &(0x7f00000000c0)='./file0\x00')
mkdirat(r10, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r11, &(0x7f0000000180)='./file0\x00', r10, &(0x7f0000000640)='./file0/file0\x00', 0x1)
r12 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r12, &(0x7f00000000c0)='./file0\x00')

03:17:08 executing program 5:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="2e00000019000503ed0080647e6394f20100d2000500fc3711407f480f000300270000000200009ef88000f01700", 0x2e}], 0x1}, 0x0)
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
write$FUSE_INIT(r2, &(0x7f0000000080)={0x50, 0xfffffffffffffffe, 0x7, {0x7, 0x1f, 0x4, 0xda8ace64aa42b2c6, 0x7, 0x8, 0xffffffff, 0x4}}, 0x50)

03:17:08 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x138, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c0000001000010500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000110012000c00010062726964676500000c000200080029000000000023b95f439f27e81c4a2c04ef74ab24f4ea1f6e1c7c900b50159a09a8f29ae1b9190a457b991b5ada37e322fc6413f0933201d28a08e1366d8db54b18be08b2232aef019d6bf07ff1bfe117594e2cb318f7a9c8dffd8d989048be73f00f313fb4"], 0x389}}, 0x0)

03:17:08 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
gettid()
clone(0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0)

03:17:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:17:08 executing program 4:
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x0, 0x80000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x100, 0x2)
sendto$inet(r1, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setpipe(r5, 0x407, 0x0)
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
rmdir(&(0x7f0000000140)='./bus\x00')
sched_setattr(0x0, 0x0, 0x0)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x400, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r7, 0x400442c8, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYBLOB="080000000000000000000203240000cf9094b8ba700000fd361deea8060000000034660d8062b356f987e2ff60db53ecb4ad552a2748431e22fecebd4f7c22"])
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r10, &(0x7f00000000c0)='./file0\x00')
mkdirat(r10, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r11, &(0x7f0000000180)='./file0\x00', r10, &(0x7f0000000640)='./file0/file0\x00', 0x1)
r12 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r12, &(0x7f00000000c0)='./file0\x00')

03:17:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:17:08 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
gettid()
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  235.216047][ T8437] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.1'.
[  235.246923][ T8436] netlink: 'syz-executor.5': attribute type 3 has an invalid length.
[  235.256644][ T8436] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.5'.
[  235.275972][ T8440] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.1'.
03:17:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:08 executing program 1:
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x0, 0x80000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x100, 0x2)
sendto$inet(r1, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setpipe(r5, 0x407, 0x0)
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
rmdir(&(0x7f0000000140)='./bus\x00')
sched_setattr(0x0, 0x0, 0x0)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x400, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r7, 0x400442c8, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYBLOB="080000000000000000000203240000cf9094b8ba700000fd361deea8060000000034660d8062b356f987e2ff60db53ecb4ad552a2748431e22fecebd4f7c22"])
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r10, &(0x7f00000000c0)='./file0\x00')
mkdirat(r10, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r11, &(0x7f0000000180)='./file0\x00', r10, &(0x7f0000000640)='./file0/file0\x00', 0x1)
r12 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r12, &(0x7f00000000c0)='./file0\x00')

03:17:08 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xc}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x42}]}, &(0x7f0000003ff6)='G\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
fadvise64(r3, 0x0, 0xb3, 0x1)

03:17:08 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:15 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
gettid()
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:15 executing program 2:
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x0, 0x80000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x100, 0x2)
sendto$inet(r1, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setpipe(r5, 0x407, 0x0)
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
rmdir(&(0x7f0000000140)='./bus\x00')
sched_setattr(0x0, 0x0, 0x0)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x400, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r7, 0x400442c8, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYBLOB="080000000000000000000203240000cf9094b8ba700000fd361deea8060000000034660d8062b356f987e2ff60db53ecb4ad552a2748431e22fecebd4f7c22"])
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r10, &(0x7f00000000c0)='./file0\x00')
mkdirat(r10, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r11, &(0x7f0000000180)='./file0\x00', r10, &(0x7f0000000640)='./file0/file0\x00', 0x1)
r12 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r12, &(0x7f00000000c0)='./file0\x00')

03:17:15 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:15 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:15 executing program 4:
syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x7, 0x4000)
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x60d42, 0x0)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000080)=0x1000, 0x4)

03:17:15 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000080)=0x14, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8)
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
getsockopt$inet6_mreq(r3, 0x29, 0x1d, &(0x7f00000003c0)={@empty, <r4=>0x0}, &(0x7f0000000400)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r8}, [@IFLA_LINKINFO={0x28, 0x12, @veth={{0xc, 0x1, 'veth\x00'}, {0x18, 0x2, @VETH_INFO_PEER={0x14}}}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=@newqdisc={0x444, 0x24, 0x507, 0x0, 0x0, {0x0, r8, {0x0, 0xe}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbq={{0x8, 0x1, 'cbq\x00'}, {0x418, 0x2, [@TCA_CBQ_RTAB={0x404}, @TCA_CBQ_RATE={0x10, 0x5, {0x6, 0x0, 0x0, 0x0, 0x0, 0x5}}]}}]}, 0x444}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newqdisc={0x30, 0x24, 0x507, 0x0, 0x0, {0x0, r8, {0x0, 0xe}, {0x0, 0xe}}, [@qdisc_kind_options=@q_cbq={{0xc, 0x1, 'cbq\x00'}, {0x4}}]}, 0x30}}, 0x0)
r9 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r9)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r9}, 0x0)
kcmp(r9, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r10 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
ioctl$SG_GET_TIMEOUT(r7, 0x2202, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r9, r10, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
accept$packet(r10, &(0x7f0000000880)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000008c0)=0x14)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000900)={{{@in=@empty, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in=@multicast1}, 0x0, @in=@initdev}}, &(0x7f0000000a00)=0xe8)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a40)=@mpls_getnetconf={0x0, 0x52, 0x29, 0x70bd28, 0x25dfdbfb, {}, [@NETCONFA_IFINDEX={0x0, 0x1, r1}, @NETCONFA_IFINDEX={0x0, 0x1, r2}, @IGNORE_ROUTES_WITH_LINKDOWN={0xfc44, 0x6, 0x90}, @NETCONFA_IFINDEX={0x0, 0x1, r4}, @NETCONFA_IFINDEX={0x0, 0x1, r8}, @NETCONFA_IFINDEX={0x0, 0x1, r11}, @NETCONFA_IFINDEX={0x0, 0x1, r12}]}, 0x3c}}, 0x0)

03:17:15 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000000)='net/netlink\x00')
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000040)='environ\x00')
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x1, 0x10}, 0xe1)
preadv(0xffffffffffffffff, &(0x7f0000000480), 0x10000000000002a1, 0x2f)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3}, 0xb)
ftruncate(r3, 0x200004)
getgid()
sendfile(r1, r3, 0x0, 0x80001d00c0d0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netlink\x00')
preadv(r5, &(0x7f0000000480), 0x10000000000002a1, 0x10400003)
r6 = dup(r5)
ioctl$SNDRV_TIMER_IOCTL_INFO(r6, 0x80e85411, 0x0)

[  242.453888][ T8478] bridge0: port 3(gretap0) entered blocking state
[  242.464865][ T8478] bridge0: port 3(gretap0) entered disabled state
[  242.475158][ T8478] device gretap0 entered promiscuous mode
[  242.494384][ T8478] bridge0: port 3(gretap0) entered blocking state
[  242.501110][ T8478] bridge0: port 3(gretap0) entered forwarding state
03:17:15 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:15 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:15 executing program 5:
accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x0, 0x80000)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = open(&(0x7f0000000100)='./bus\x00', 0x100, 0x2)
sendto$inet(r0, &(0x7f0000000380)="08958fa10b18a2421366cee1bf9b7a4055fa3fd18a411a7ea62a371525aa36535b1c447725d68f51a2d0d8381c8453bc54927135f4da15770c572051954e87db8d99fff6656f30a5bc64253e030d72894a7e7410329eb2e69ca3000f2e31a59254d5fa41ffc1b96bcf5b678d15f251b1e383b6699f000c", 0x77, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setpipe(r4, 0x407, 0x0)
write(r4, &(0x7f0000000500), 0xfffffffffffffd19)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8937, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$inet6(0xa, 0x6, 0x8)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r7, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r8 = socket(0xa, 0x1, 0x0)
r9 = socket(0x1000000010, 0x400000400080803, 0x0)
r10 = dup(r9)
write$cgroup_int(r10, 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r10, 0x29, 0x22, &(0x7f0000001880)={{{@in=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000001700)=0xe8)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000280)={'lo\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xed\x1f', <r12=>r11})
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f0000000080)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @mcast2, 0x0, 0x0, 0x20, 0x4123b79bef9ae801, 0x0, 0x20000, r12})
fcntl$F_GET_RW_HINT(r6, 0x40b, &(0x7f0000000300))
ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f00000002c0)={@remote, 0x7e, r12})
getsockopt$IP_VS_SO_GET_SERVICES(r6, 0x0, 0x482, &(0x7f00000014c0)=""/205, &(0x7f0000000100)=0xfffffffffffffc87)
r13 = socket(0x1000000010, 0x400000400080803, 0x0)
dup(r13)
write(r13, &(0x7f0000000240)="240000001a0025f07e9451f68f2e9c920a0b49ffed000019806028000800100001000000", 0x24)
ioctl$sock_inet6_SIOCADDRT(r13, 0x890b, &(0x7f0000000180)={@mcast2, @mcast1, @loopback, 0x0, 0x2, 0x0, 0x0, 0xffffffffffffb8fa, 0x83420004})
setsockopt$inet6_tcp_TCP_CONGESTION(r13, 0x6, 0xd, &(0x7f0000000480)='\x01S\xb8\x00\x00', 0x152)
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
r14 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r14, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
perf_event_open(0x0, 0x0, 0x1000000000000c, r14, 0x13)
ioctl$sock_inet6_SIOCADDRT(r5, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @remote, @remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42})
getsockopt$inet6_IPV6_XFRM_POLICY(r10, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@remote, @in=@empty}}, {{@in=@remote}, 0x0, @in=@local}}, &(0x7f00000004c0)=0xfffffffffffffcf9)
syslog(0x0, &(0x7f0000000300)=""/120, 0x78)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

03:17:15 executing program 1:
ftruncate(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x4, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$loop(0x0, 0x0, 0x0)
r0 = syz_open_dev$vcsn(0x0, 0x7ff, 0x4000)
memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x81805)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4), 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000ac0)=@sack_info={0x0, 0x0, 0x22}, 0xc)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$P9_RRENAME(r0, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0xffffffffffffff24)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
fsetxattr$security_smack_transmute(r2, &(0x7f00000000c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000400)='TRUE', 0x4, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000140)=ANY=[@ANYBLOB="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"])
ftruncate(r3, 0x200004)
sendfile(r1, r3, 0x0, 0x80001d00c0d0)

03:17:15 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

[  242.930390][   T26] audit: type=1800 audit(1570418236.082:42): pid=8514 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=16593 res=0
03:17:24 executing program 2:
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x0, 0x80000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x100, 0x2)
sendto$inet(r1, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setpipe(r5, 0x407, 0x0)
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
rmdir(&(0x7f0000000140)='./bus\x00')
sched_setattr(0x0, 0x0, 0x0)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x400, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r7, 0x400442c8, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYBLOB="080000000000000000000203240000cf9094b8ba700000fd361deea8060000000034660d8062b356f987e2ff60db53ecb4ad552a2748431e22fecebd4f7c22"])
socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x3, 0x2)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000000380), &(0x7f0000000340)=0xffa7)
r10 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r10, &(0x7f00000000c0)='./file0\x00')
mkdirat(r10, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r11, &(0x7f0000000180)='./file0\x00', r10, &(0x7f0000000640)='./file0/file0\x00', 0x1)
r12 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r12, &(0x7f00000000c0)='./file0\x00')

03:17:24 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:24 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:24 executing program 1:
ftruncate(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x4, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$loop(0x0, 0x0, 0x0)
r0 = syz_open_dev$vcsn(0x0, 0x7ff, 0x4000)
memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x81805)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4), 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000ac0)=@sack_info={0x0, 0x0, 0x22}, 0xc)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$P9_RRENAME(r0, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0xffffffffffffff24)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
fsetxattr$security_smack_transmute(r2, &(0x7f00000000c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000400)='TRUE', 0x4, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000140)=ANY=[@ANYBLOB="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"])
ftruncate(r3, 0x200004)
sendfile(r1, r3, 0x0, 0x80001d00c0d0)

03:17:24 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000000)='net/netlink\x00')
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000100)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000040)='environ\x00')
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x1, 0x10}, 0xe1)
preadv(0xffffffffffffffff, &(0x7f0000000480), 0x10000000000002a1, 0x2f)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3}, 0xb)
ftruncate(r3, 0x200004)
getgid()
sendfile(r1, r3, 0x0, 0x80001d00c0d0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netlink\x00')
preadv(r5, &(0x7f0000000480), 0x10000000000002a1, 0x10400003)
r6 = dup(r5)
ioctl$SNDRV_TIMER_IOCTL_INFO(r6, 0x80e85411, 0x0)

03:17:24 executing program 5:
ftruncate(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x4, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$loop(0x0, 0x0, 0x0)
r0 = syz_open_dev$vcsn(0x0, 0x7ff, 0x4000)
memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x85nG\x13g\xa6\x05', 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x81805)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4), 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000ac0)=@sack_info={0x0, 0x0, 0x22}, 0xc)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$P9_RRENAME(r0, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0xffffffffffffff24)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
fsetxattr$security_smack_transmute(r2, &(0x7f00000000c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000400)='TRUE', 0x4, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x0, 0x20}, 0xc)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000140)=ANY=[@ANYBLOB="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"])
ftruncate(r3, 0x200004)
sendfile(r1, r3, 0x0, 0x80001d00c0d0)

03:17:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:25 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:17:25 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x40003, 0x4)
fallocate(r0, 0x0, 0x4605, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000001500)={0xd000000, r1})
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)

03:17:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:17:25 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket(0x10, 0x200000000803, 0x0)
sendto(r7, &(0x7f0000000000)="120000001a00e5ff007b00000000008000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r7, &(0x7f0000001c40)=[{{0x0, 0x3a4, 0x0, 0x0, 0x0, 0x9}}], 0x11, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x10, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x18)
r8 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCBRDELBR(r8, 0x89a1, &(0x7f0000000200)='bridge_slave_1\x00')
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000140)={r4, 0x7f, 0x8, 0x4, 0x2}, 0x14)
r9 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r10 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r11 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r11)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r11}, 0x0)
kcmp(r11, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r12 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000080)=<r13=>0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r13, r12, 0x0, 0xc, &(0x7f0000000100)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet_dccp_int(r12, 0x21, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
dup3(r9, r10, 0x0)
connect$rose(0xffffffffffffffff, 0x0, 0x0)

03:17:34 executing program 5:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000800)=ANY=[@ANYBLOB="f7c170efaec9ab66b800c7425ea8c9e81b34b04a5d20e38f32ce2e8b70ef8a3a6aca640dc3e8b2114fa8c05408549d96b127e6cb3613b2d9d0aad7e4f51dedf818c86b68487a2c29a878577ac5e89b00e2dbaae2b6dbfc7ba559f55322451ef3953e073f6e28788330fb9cdaa87f8265bebc41173fc1883b6a09b0a5f68419", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000008c0)=r4, 0x4)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x10, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x18)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000180)={r3, @in={{0x2, 0x4e24, @multicast2}}, 0x1, 0xffa9}, &(0x7f0000000000)=0x90)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x100000000004}, 0x10)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, <r6=>0x0}, &(0x7f0000000240)=0xc)
r7 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000005c0)="4acf665ff77df4f20690a5a83bc1a1e6519321db1dc2bf7eee06d978abdfbb33f3bc7025e6befda3c827875946eb75c14639ab6e76811a733653f72afc34e5fce1bed277a8faa02e6da16041b40bab677d6555e94a42b7ac236c8c35d729ac501cf28293c919f2f3ceec4703c892adeac90504aeb3ba485e09bda66d2b96124cabc4d2e653848e2bd909287d0d2c433d72bbd4333cf37f2a8972bba453c776d2c73c61b9fa2153405fc0253992c918682c7018f6a280a9ff312ae4a6996bd9547aed66e72f94342a7d27b9483f7e2e8e3c5bbb89452fd9bb6708ae89ba29", 0xde, 0xfffffffffffffffe)
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
getresgid(&(0x7f0000000400), &(0x7f0000000540), &(0x7f00000006c0)=<r9=>0x0)
keyctl$chown(0x4, r7, r8, r9)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@ipv4={[], [], @initdev}}}, &(0x7f0000000380)=0xe8)
stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000480)={{{@in6=@dev, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{}, 0x0, @in=@initdev}}, &(0x7f0000000580)=0xe8)
r13 = getegid()
write$FUSE_DIRENTPLUS(r5, &(0x7f00000005c0)={0x1f8, 0x0, 0x1, [{{0x3, 0x1, 0x2, 0x400, 0x8, 0x2, {0x1, 0x100000000, 0x6, 0x3, 0x1f85c84b, 0x7, 0x8001, 0x9d5, 0x0, 0x90, 0xde, r6, r9, 0x80000000}}, {0x5, 0x2, 0x6, 0x1, 'md5sum'}}, {{0x6, 0x1, 0x3, 0xfff, 0x0, 0xf0000000, {0x2, 0x3, 0x80000003, 0x39ba, 0x8ca3, 0x0, 0x4, 0x800, 0x1ff, 0x7ff, 0x8001, r10, r11, 0x1, 0x8001}}, {0x5, 0xffffffffffff8001, 0x3, 0x100, '$*}'}}, {{0x3, 0x2, 0x8c, 0x6, 0x0, 0x80000000, {0x5, 0x4, 0x515, 0x7, 0x7e8, 0x10001, 0x50, 0x3, 0xff, 0xfd, 0x81, r12, r13, 0x3, 0x7fff}}, {0x1, 0xee1d, 0xb, 0x4, '{(wlan0#*[.'}}]}, 0x1f8)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x8040ae9f, &(0x7f00000007c0))
write(r0, &(0x7f0000000140)="240000001a005f0014f9f407000909000a00800000000000000000000300020000000000", 0x24)

03:17:34 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:34 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:17:34 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x40003, 0x4)
fallocate(r0, 0x0, 0x4605, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000001500)={0xd000000, r1})
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)

03:17:34 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:34 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  261.205004][ T8574] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'.
03:17:34 executing program 2:
r0 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0xffffffffffffff69, 0xfa00, {0x0, &(0x7f0000000040)}}, 0xaf4ef5b74b1d0dde)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000140)={0xfffffe00, {{0x2, 0x4e24, @remote}}, {{0x2, 0x4e22, @rand_addr=0x3}}}, 0x108)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
seccomp(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0xffffff7f7fffffff}]})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/autofs\x00', 0x8180, 0x0)
setsockopt$RDS_RECVERR(r3, 0x114, 0x5, &(0x7f0000000300), 0x4)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000380)=<r5=>0x0)
r6 = gettid()
waitid(0x0, r6, 0x0, 0x0, &(0x7f0000000480))
r7 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r8 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/attr/current\x00', 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r2, 0x40bc5311, &(0x7f0000000600)={0x7b8d, 0x1, 'client0\x00', 0xffffffff80000000, "510c3fb65db37b06", "c324003a8cf7b159c6652f961c51dd204f6007c3e171440fef1be7613bc7b3b2", 0x2, 0x9})
r9 = syz_open_dev$sndpcmc(&(0x7f0000000400)='/dev/snd/pcmC#D#c\x00', 0x4800000000000000, 0x200)
pidfd_send_signal(r9, 0x10, &(0x7f0000000540)={0x5, 0x5, 0x28000}, 0x0)
kcmp(r5, r6, 0x5, r7, r8)
ioctl$TIOCSSOFTCAR(r4, 0x541a, &(0x7f00000000c0))
r10 = syz_open_dev$admmidi(&(0x7f0000000440)='/dev/admmidi#\x00', 0x10001, 0x6e4fc55b01917bd5)
ioctl$KVM_SET_XCRS(r10, 0x4188aea7, &(0x7f00000005c0)={0x1, 0x6d42, [{0x0, 0x0, 0x8}]})

03:17:34 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f0000002000)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c, 0x0}}, {{&(0x7f00000007c0)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="240000000000000029000000050000a5953effffe0000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x28}}], 0x2, 0x0)
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet6_int(r2, 0x29, 0xe665c83ee1009fa5, &(0x7f0000000000), &(0x7f0000000080)=0x4)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$DRM_IOCTL_ADD_MAP(r3, 0xc0286415, &(0x7f0000000100)={0x0, 0x5, 0x2, 0x8a, &(0x7f0000fff000/0x1000)=nil, 0x9})

03:17:34 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:34 executing program 5:
r0 = socket(0x1e, 0x4, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10)
gettid()
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1024}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x5}, 0x10)
sendmsg$tipc(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000300)="34ec98c3ca39d7d76093b0516fb03ea63d2f116acb87153503f9fcfaac2af9316accd593d51e6a3dcecd55c10ca2e2d4c8561a80d02fa2c93becfba149f06c2c33fa1efe83c14734bd4a88be0c9392855acdcb76cc31de8f0dcb12292740f7bf773b09ec14180b2183749084dfa4fbac17cd68eeecee6065e88bfc81b8b166b28abf1da955d9c53754fcb3bdb1363153b83f7a0b9b7e3e731bf4312eb82920f740262e39dfb4e985a2e03e5f45c0428f8e7065a9dbda27f558", 0xb9}, {&(0x7f00000003c0)}, {&(0x7f0000000400)="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", 0xdc0}], 0x3, &(0x7f0000001440)="48498a50dd6de03566bd0503de04a46e61381719f9c7ea3c1f206c35c47d5800dc2539d0efad7321eedd5f895e62d0356be18ab653b5be4d803842f253b97c3f7eda966da0e55c98bdadf92671f1ea03440b510b7789630ae17d43fae00378ec76bf06f87723ca6ce1a630be2af6", 0x6e, 0x4040471}, 0x20)
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)=@bcast)

03:17:34 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket(0x10, 0x200000000803, 0x0)
sendto(r7, &(0x7f0000000000)="120000001a00e5ff007b00000000008000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r7, &(0x7f0000001c40)=[{{0x0, 0x3a4, 0x0, 0x0, 0x0, 0x9}}], 0x11, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x10, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x18)
r8 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCBRDELBR(r8, 0x89a1, &(0x7f0000000200)='bridge_slave_1\x00')
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000140)={r4, 0x7f, 0x8, 0x4, 0x2}, 0x14)
r9 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r10 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r11 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r11)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r11}, 0x0)
kcmp(r11, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r12 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000080)=<r13=>0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r13, r12, 0x0, 0xc, &(0x7f0000000100)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet_dccp_int(r12, 0x21, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)
dup3(r9, r10, 0x0)
connect$rose(0xffffffffffffffff, 0x0, 0x0)

03:17:34 executing program 4:
r0 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x28001, 0x4000)
rt_sigprocmask(0x0, &(0x7f0000000000)={0x1}, &(0x7f0000000180), 0x8)
read(r0, &(0x7f0000000040)=""/87, 0x57)
ioctl$int_in(r0, 0x800000c0045009, &(0x7f00000000c0)=0x2)
ioctl$int_in(r0, 0x800060c004500a, &(0x7f0000000100))

03:17:34 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:34 executing program 5:
r0 = socket(0x1e, 0x4, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10)
gettid()
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1024}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x5}, 0x10)
sendmsg$tipc(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000300)="34ec98c3ca39d7d76093b0516fb03ea63d2f116acb87153503f9fcfaac2af9316accd593d51e6a3dcecd55c10ca2e2d4c8561a80d02fa2c93becfba149f06c2c33fa1efe83c14734bd4a88be0c9392855acdcb76cc31de8f0dcb12292740f7bf773b09ec14180b2183749084dfa4fbac17cd68eeecee6065e88bfc81b8b166b28abf1da955d9c53754fcb3bdb1363153b83f7a0b9b7e3e731bf4312eb82920f740262e39dfb4e985a2e03e5f45c0428f8e7065a9dbda27f558", 0xb9}, {&(0x7f00000003c0)}, {&(0x7f0000000400)="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", 0xdc0}], 0x3, &(0x7f0000001440)="48498a50dd6de03566bd0503de04a46e61381719f9c7ea3c1f206c35c47d5800dc2539d0efad7321eedd5f895e62d0356be18ab653b5be4d803842f253b97c3f7eda966da0e55c98bdadf92671f1ea03440b510b7789630ae17d43fae00378ec76bf06f87723ca6ce1a630be2af6", 0x6e, 0x4040471}, 0x20)
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)=@bcast)

03:17:34 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:34 executing program 0:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:34 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='fuse.', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040002,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f75705f69643dd7f0745c0e59d6bda14f3e2d32bf1c8f11f717b214ad93b5b6e3f095a27ab1d2b7d35073884b682affdcdcfd14fbf4687649ae95ff1e7f1a31ca1b48208f782d8af9b26005be033763fd689b9fd27d50c1f3eed33e283d20ecd7537da99cee291d9a96f74835b2f48f94b2a7aa21573fbbb9", @ANYRESDEC=0x0, @ANYBLOB=',allow_other,default_permissions,\x00'])
read$FUSE(r0, &(0x7f0000001500), 0x1000)

[  261.828053][ T8628] fuse: Bad value for 'group_id'
[  261.849167][ T8628] fuse: Bad value for 'group_id'
03:17:40 executing program 2:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
read$alg(r0, &(0x7f0000000180)=""/9, 0x2)

03:17:40 executing program 4:
quotactl(0x4080000101, 0x0, 0x0, 0x0)
r0 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r0}, 0x0)
kcmp(r0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$SIOCRSSL2CALL(r3, 0x89e2, &(0x7f0000000040)=@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r0, r1, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r4 = dup(r1)
ioctl$BLKTRACESTART(r4, 0x1274, 0x0)

03:17:40 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:40 executing program 0:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
getsockopt$XDP_MMAP_OFFSETS(0xffffffffffffffff, 0x11b, 0x1, &(0x7f0000000440), &(0x7f00000003c0)=0x80)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x119000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfefd, 0x0, 0x0, 0xfffffffffffffd9c)
ioctl$KVM_NMI(r2, 0xae9a)
bind$rxrpc(0xffffffffffffffff, &(0x7f0000000000)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e20, 0x0, @ipv4={[], [], @empty}}}, 0x24)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
r5 = openat$full(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/full\x00', 0x40, 0x0)
setsockopt$inet6_int(r5, 0x29, 0xb, &(0x7f0000000500)=0x2, 0x4)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000380)=@usbdevfs_disconnect={0x3})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x0, 0xb5, 0x1a, &(0x7f0000000200)="2a7df499eac9f9f6e13a5fe1365855c7326118cdc4a733309fb5c80df025933e8dec05dcbe19a0d37b533e9e8822be3dc91a9592ca37c661fc4423e8e54137e4d867ce5841d2407c4a602f87968d50c35953273212b3b087f62e73fc5662b46d15b6080359e7cd0d3dce4a047217208981f389725824abfa51e10928aa757ceed532129d17011ec0d44000e3bcd7a02e46ff6e7851afb1c177be327f5c01a64daba8d8cef1e33f99d6d11aed285f9dc407cfca1e3d", &(0x7f0000000100)=""/26, 0x80000001, 0x0, 0x3e, 0xe, &(0x7f0000000140)="ed62bc5d8a171c5a2ad7a6eae42de6b361f0642b6a0b58baafdfaad070d0b6e06fff0e29e57a4f31d86cf0d79e59f5653f6e847fea659871b921a2fbd38c", &(0x7f00000002c0)="eb1298282f39d19e4966011be224"}, 0x40)
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e24, @multicast2}, 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r8 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x0, 0x80)
ioctl$TCGETX(r4, 0x5432, &(0x7f0000000340))
setsockopt$XDP_UMEM_FILL_RING(r8, 0x11b, 0x5, &(0x7f00000000c0)=0xc, 0x4)

03:17:40 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
accept$inet(r0, &(0x7f0000000000)={0x2, 0x0, @initdev}, &(0x7f0000000040)=0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@multicast2}, {@in6=@ipv4={[0xfffffff0], [], @broadcast}, 0x0, 0x32}, @in6=@ipv4, {}, {}, {}, 0x0, 0x0, 0xa, 0xd104, 0x0, 0x21}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
connect$rose(r3, &(0x7f0000000080)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, 0x1, @default}, 0x1c)

[  267.511186][ T8633] bridge0: port 3(gretap0) entered blocking state
[  267.517970][ T8633] bridge0: port 3(gretap0) entered disabled state
[  267.524895][ T8633] device gretap0 entered promiscuous mode
[  267.531086][ T8633] bridge0: port 3(gretap0) entered blocking state
[  267.537640][ T8633] bridge0: port 3(gretap0) entered forwarding state
03:17:40 executing program 4:

03:17:40 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:40 executing program 5:

03:17:40 executing program 0:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:40 executing program 4:
r0 = getpgrp(0x0)
prctl$PR_SET_PTRACER(0x59616d61, r0)
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x3f)
ptrace$cont(0x18, r1, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0xffffffffffff76b2, 0xfa})
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r1, 0x0, 0x0)

03:17:40 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0xc008ae88, &(0x7f0000000100)=ANY=[@ANYBLOB="1f0000000000000006010040"])

03:17:47 executing program 2:

03:17:47 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x0)
write(r1, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff})
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x1b1, &(0x7f0000000200)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="18000000230047faffffff00000000000400000204001000b115f8b9206ac3d78578125082f4fcc477cb57f5650731dfaf12aa77ad43cb41f04b15a9fdd6c1610c621c85fe3e348527b0"], 0x18}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
write(r4, 0x0, 0x0)
close(r4)

03:17:47 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:47 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:47 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0xc008ae88, &(0x7f0000000100)=ANY=[@ANYBLOB="1f0000000000000006010040"])

03:17:47 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0x1)
setreuid(0x0, r3)
read$alg(r1, &(0x7f0000000180)=""/9, 0x9)

03:17:47 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:47 executing program 1:

03:17:47 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:47 executing program 5:

03:17:47 executing program 1:

03:17:47 executing program 1:

03:17:53 executing program 2:

03:17:53 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:17:53 executing program 5:

03:17:53 executing program 1:

03:17:53 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:53 executing program 4:

03:17:53 executing program 1:

03:17:53 executing program 4:

03:17:53 executing program 5:

03:17:53 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:17:53 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r1 = socket(0x1e, 0x1, 0x0)
sendmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000003240), &(0x7f0000003a40)=0x14)
socket(0x0, 0x1, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080)=@generic={0x0, "02ff0100000001000000000000000ae77f5bf86c48020002000000f1ffffff009a480075e6a50000de010300000000e4ff064b3f013a000000080000008f00000000ac50d5fe32c4000000007fffffff6a008356edb9a6341c1fd45624281e00070ecddd0206c39750c40000fd00000900000000000b0000db000004da36"}, 0x80, 0x0}, 0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, &(0x7f0000000240)=0x6e, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x68, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x48, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x34, 0x2, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr="48489491d9e8ecfa97d53d18292a2417"}, @IFLA_GRE_REMOTE={0x14, 0x7, @mcast2}, @gre_common_policy=[@IFLA_GRE_LINK={0x8}]]}}}]}, 0x68}}, 0x0)

03:17:53 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  280.446895][ T8741] binder: binder_mmap: 8739 20ffb000-20fff000 bad vm_flags failed -1
03:17:59 executing program 2:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0xa927, 0x2d, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
ppoll(&(0x7f0000000280)=[{r2, 0x2104}, {r2}], 0x2, 0x0, 0x0, 0x0)

03:17:59 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:59 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x22808100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
readv(r2, &(0x7f0000000040)=[{&(0x7f0000002400)=""/4096, 0x10b6}], 0x1)
socket(0x0, 0x0, 0x0)

03:17:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:17:59 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r1 = socket(0x1e, 0x1, 0x0)
sendmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000003240), &(0x7f0000003a40)=0x14)
socket(0x0, 0x1, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080)=@generic={0x0, "02ff0100000001000000000000000ae77f5bf86c48020002000000f1ffffff009a480075e6a50000de010300000000e4ff064b3f013a000000080000008f00000000ac50d5fe32c4000000007fffffff6a008356edb9a6341c1fd45624281e00070ecddd0206c39750c40000fd00000900000000000b0000db000004da36"}, 0x80, 0x0}, 0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, &(0x7f0000000240)=0x6e, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x68, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x48, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x34, 0x2, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr="48489491d9e8ecfa97d53d18292a2417"}, @IFLA_GRE_REMOTE={0x14, 0x7, @mcast2}, @gre_common_policy=[@IFLA_GRE_LINK={0x8}]]}}}]}, 0x68}}, 0x0)

03:17:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:17:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:17:59 executing program 1:
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
sendmsg$key(0xffffffffffffffff, &(0x7f00005f5000)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000cc0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
mlock(&(0x7f00005c8000/0x1000)=nil, 0x1000)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00')
sendfile(r0, r2, &(0x7f0000000040)=0x100000, 0x8001)

[  286.415316][ T8754] binder: binder_mmap: 8752 20ffb000-20fff000 bad vm_flags failed -1
03:17:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:17:59 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:17:59 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
ioctl$LOOP_SET_FD(r2, 0x4c00, r3)

03:17:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  286.574993][ T8771] binder: binder_mmap: 8769 20ffb000-20fff000 bad vm_flags failed -1
03:18:08 executing program 2:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0xa927, 0x2d, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
ppoll(&(0x7f0000000280)=[{r2, 0x2104}, {r2}], 0x2, 0x0, 0x0, 0x0)

03:18:08 executing program 1:
r0 = socket$packet(0x11, 0x4000000000002, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
pipe(&(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
writev(r2, &(0x7f0000001940)=[{&(0x7f0000001a80)="2d1f160819aaa0fc3231d2576ca231de750930f7c06f0c0f6f3b65f6f1c94e677c4b8eff8ae3403569a19d25908436b695f22cdcbad905686541bf981087fe81e4aeaef1ddf6cb0ee949da241d09b6b4567c2ecbef6ee9703f71b0705e863e01e28a266e370dcb2d8665833f9d42c9898251a0bb9e187b551164e69f8bde73a87c20753b4ba2c90da083520f16ad425558d0509d4c0783150403cb08c30cdf842b12c32517e3cf771104f773fb"}, {&(0x7f0000000400)="842236d0808bf3ca611c2e93e6ad9912ae7e65aa70c36a5bb58e860323dcf036f1d39e4728331b1fb8a3a6a2d635b2a289c4819dd3573de48b24e9176e0487377acb6b9830484b4b032eea72f70ca2d8de52bebd6d347bd58d975234d3b22ad4b11a80515949181f4a5a1312d9c721dbf8b739ada123f6722b7155fde64eee24a9f9751f2d220a39c88dfb59593c9b0c75c4b491631f02081e8e8283b40eaab79f5a357b7bf3fe4954bf71563078165103be15e55357781656988d438ca5c664555d2b92fbb9381deea3e397ba227f347de3cb186fc9875a977f669816cb88433fb0696c4b59"}, {&(0x7f0000000500)="a89c2ab620d609e8202592a6369127fba135b8a2854763bcda649625129e98511a6a5162d4cb0f618c748d3e49c5decd62eba4866f5ee384761cbb6c9c57a454dddde4814a0967d30c590cffd00142bee5c492495d695e26b80a5dac3a41e50227eb317831e8553a5cb6f05bd7a6611667b71b73e71b9ae294c36bb788582e19f27f3404d2b7b1936fd7b9605914635a7fa3a663bfb081a2a041f55cb4b0bca66f44e1b494dbf3e5b0a6fd908661e9976233627b075cb98ad9334fece21489264d42df4ef9bbd8d7b6624f251cf0307a2617def862568c5a34b6d6545f66e852bc8f7e0cdb0d42b0e45cb6753cefa2be8c"}, {&(0x7f0000000600)="f0d91426aa0000000031ed9b57187620144d6cf1eea147621768af6ecbccba346dd42d8616ec15008fa7d099ab12933ee0872aede2489ca4f14024fdd55908942b5e4d61024813a5ba9ed742b3027683fa17da03f9b1685e35a9f727a6ecf392c49f623823a9a61482e506468aed879f29e19570e9de21407bb152eafa9be673f3186c78712d377c4ea2087e45fa9ec80dfaca19483f332f22e40ebc9ff6a210f409a88431b7ffed7c79cc06002179db16623a46233e154c9a983be19087b3e53bcb56be5049d745dbd1651781d52a6f1de03a0c4897a18468b7a1207981169279ce6df25707bb993e3b3a8b8d39f0a51a3d4f4493e157f94bd2925aa8b976ccfa00b63b260389d97f75b730b9e522b0b8fd4ed9db3b22a5f37d4f7c1edacc85caccecc626691d3b6060bc6ee022fd324bbed8eb9bfb406d78a6fe6926ee9f390445dc8719744455dd0e2ec7e06c142b1360dc302c1ab7dc2d143656a94c18420b3d578b6d65fdc2235b9a9fc3d1a31468cd88835db650dda5a9e0a77b42900de78c9e6fd5800434df13026d544bfdba3f037af9edfe6c80412d706b69e9810e27f07e413503abcf87c638eb998477ed1a5cdcb4dd3eb6cfefbe37b2ca936ad7457488f35081ea4f8e7f9a63ccc1ffe4cd9106b37441a4afec3ce8cccf9c48128ab8c2cecfb44f2add96d0939fad85e8492a62ddca116715ada195b92e349cb0569bdff085883d0ba90878019e8a6d0aa8eee567e22393103a690c1a631c602a0c7187280d2a2805b97ca49cbefe29c641a2a3a229768e3a2b91dae286be1a5f88d7190ca17150a0d461f8baf8a4fa7b4646f6c0e4cfea80457fcdbb9054890404288686f0b20c2c0d1bb08d6e1f6c2d8f782e452db4c7142ad2c9666c7d0511e996539f7073b6df8476438cba0f807094127980b87125f6740310d8c65ddf29198c647c4100a4261f196f236de06d7b2601f478f29e62e1797eeedfd88d163b8d7c94005e835239b5f505c29f523393b9dbe572d172c26601e06a94feb335f3fc3a0977e0abbdf351f5ba2dc76e65550c55d10a0d03e4720eeb53708a42be7af2f1ae9395c9fee38e7aa796dba810b21290e2032f9bd5d7a4e5e90988516fa9d6fead36b0b9696ee19f818def8d8b7e0a467ed0bfafaf90bc5a9d1d1ed490a294ae95faaae40fcc75651c681b7664359cd81bacedf96b9b7266bba1736e71f57bfd821cc46ea96af5fcaf86a0b3044102520262c21357ffa95d97cf683ba437f97c3f54ae4bef2874e641a9886ab050d0c181ef9bb0e02f8682e0697a5a4884b6709993f5fcc70205a3cbf144da88f389f5bd9197f9dcd13a556f1870862278b87d8d62ddf060863c141eb1b07ca17f081500f2b6ae61f8e3969d80042f601b1f574abaf3d6a6a179044dbee0fc6e74f67634f6764d2cff20c2602417487c8c468b96070eb9d36b3847d6ecf50130d8d6cea68bd24b99eda2c62c722a457f56269b8333851aeb63573e48b6ca88363d3bddb22277546856abca6c512a379f1637cc154d850fda8c278dee3dcba3bddaccf68c5f0b11f9bd6e0a1f4a9db827bbd17cc8a1352a0515a3eb675a2be17919e46064653f577ee4d3011712a201dd11b28a7a108cea18117c4df955cd9101e5da9c1f68cb3d851bb94fc9c868a3c93828e9ce2361eb50b4917e3dd80d75d58ecbac317d62e07c0d81d25e5c46cedf8d1c107bad44a325eaeceae3de38ddb3b2f1e6c2ba16a5048a59057a8b2fb68d8b155cb470656d8ee56f2622578f84a0f42d99d8022c18cc1ba58adc141cc02587015af375f71a734b188fe5cd0484c3a28e3a0388a5719a4cea2626af7a0c3cbd556bcf050f24854ee2a788cbc55ed939310c0d55a54880ec44c1d34769007c3277455493ce3548ba4b66f733bf908dac6b09d723506981e8777afe7980891eafcc7a8a21290af5883716a1fbf2ae6a394cb380f83d0b02a9fb8df4f0ab9a8b50189196151ea9c66084558e06a02e7fe858305a3ac03c7bd46c196b182a5e3496946f97c94cda0afa81d6b8e53eccd866114496bb1ccd87c31a4c1fb0477f6b508c4ec8f5eb0c4a720a3158ff104b0fe2df1f723dc09ba3cf4783b94c1add14ac2f303b710506ce79719baf03f5e0075e4c974c5021469d14684f8f9db2d8095665c72ccefff41bd1be717b21efa4b4af7cbfec8a6fd3ecada188a8565327fd7b201c9de17906f7d66008d8d72b1c8c45d2565e86b4701d68e580288cfb2579f9907cc6002b4ceaf9f09180b443d77572a9ab3ccbe0fa34687cab8a0f7b3c1dd3370110e6dc24d5ba2f4e66f37ab062f57e72065d6dc2f7984f6388cc40720491d4d0e60512286e59e84444bf79e1d8c62dcab30e6a87ff722af0a7b93e4044b6b56d7ee04a9ac8a2625b5736bce838008d21cfa3db46977805a020559d6687aae3dae6cbe622e32bae82a64b92c1984fb1f1b3084d6af01e732144fb00ed5cc26c5a30ff28d9ad1f1d41d987de1bc3ee494e9806ae8b2187c83a6318a7bf182f471abaae3b71fb2e93a5289d128767d50396458fae7c019ca31dcdc2efcf31d0bff76c302e95bdd8988567e13307daef62e3d6b4867d9050dcdb94088db9a7a2a287c6c4f343568c8e07d8b8119b1aa792697ef319f8688f83cca69c74695f76cd9c2133e553464df862798f943fdfac0e3b8ab6577670bfe156fee1ffb76db8614e781581f211da40d72f4e2a1aab369de2258c4d9214b31abc8badbff5144f0b825d8143b2424ad821246649cbecb0c08c90cf4acb83401c60d4d7c0da97047b1742f9add1cfcf8ea79b1304089fd35d63d223d7e8cbdeb8a37352e51df1b1e14806d2b214ca74730228e42a7fd5b4f2c795f03ba3ad1939885903e512b2585ee017e5e1b885a25d8120a1e580262a74ddd6d77bc335167ab3566f1c7dd8f323cc8c319bf8ee0bcefc1cdd0dfeb111f032352dccd164055c52d181bf47b3091f9d54dcba54f602eb8cdf89e89417f339efd7e70a9058bedc1da58a901bf27f6ebf377ee734ca2700ffed95412818db35b9279007d101e7d6a0b9cdb691bbffc8ab1d03bc4e4dd1c8ba2d2afd8bfd400ebfd42c869f5af75a69642a73a4133cb264e251d9378b05449a70cf853468befb484d3d7c771abff66331a0a3679f24b1d1736df31f85b38e83534f8723d016778175b0bca56a1e321773dc86089a74a34469e44beca7b5e02745b7b91b51b99a32934542b423fc62ed34bee43f7c9456715ab187f4651abc66246e368a2271a7df8b04460f7490bf15eb1e133f792d83f22c79308a437ed7be076c1709045aa9bdf95feee49821fee830b5cd89e4d7d4da9b8c16612d12f71dcb69c01d6c20325d0679f1814636dab09d8236fc57b8a40267dcdcbf3d4ea4864901c45f0ef49d135905beeb6404bbb711f7f0f516b44ee5fae8d06d44cec1dd6473f9d8d3a2ea5525c5aa9a6d3e82ecd490801de29e5fa3804d9e29ad5cc3bae4a42da0c7d483c770dd2be8ff322175c68d4ba6a53157fb4941c70fd2ea37e538e5ab355a1d7b3391c2c512216ff2c5df8213ae603c87cae364de67098d645206f5db3164ef97f7a2ce80aaf662659df7323f3856c9d0b67660f95c70aeaa22e3480df0c1d91699239cfc5f1689810532111ff717b340f1aa0e446370486880f083228f57bc2731c4fc48bf31df92dbc6a740876dd67d80a6c53ea6870c73e4064267aed2ebaa86ee65018a6455f6219da11eb3e501116e01b4932a0a9f39c0c250da94dd6f9e85bbec7f3a405df08906702c383de5cb19d68e1b399fba74d835eaea14c2a2e5eadee8f49e6a61abcedb1584e90b08d0b6278aca07ed3ebf41348899a0ba367b1af8774f8ab68ce6ab4ffc9866909fbc8e58c89b0806a4bdb190b80dba66ddaf3e2f1368c70fc080780d51c0e1ef82ad820492a99cb3db3ca8569a82db597d3f44193035a72136b762de0435e9f0391c1e96fcc5da135a8dd9410b6ef19c391aa9ee02663df7e07e30574b0609380f1792113e5cf2c24729256cd236d0c88a20341130c1d3e6c397efa3c09a9911cc6ce3d62e1a7bd7a5bc18e4611ce4cbd6bac9c6e87961a3eafaa8a2ea81e342295c0438755a66a420bc1b90d42c41248de09c7247c407bbcab525ded68f54c26161cafeec77c3b9171bf8f630793092e7a3c578c573b45b9ea3a58d0274cfec977c8076f44921b1627e77389b33f00a3d65d730180c103dc7ee5dc36a85f1585f39e2f7d5368cd85b1230ad135ba75b2db3159417b4000cc25bcea981ae236eb4c2a9270081ac96d09de5eb07299384d9d8d348af2d16da36c71039d7b8647ab921c092b85ae203e4f19b060ba5fdbe74008cfbc2e5c40d35d053678db11422f33564ebb61238282ec6b61503816126b342a954d7517d61b50c08a78080960d50550398f097ca604b169ee47ef1ff89a8c30eb156d810dd3c42b34a239972ae9c8d312abf44e90f4d0dddf0b0da43bc59c380a134d570ef2626ef2db0cb43f4657f8babb7aa3450234ba5a90065e710e99225c747aba9a24bf2e29f37b8e6071067498ab66cfbc1cf83a9e7f4b046ba961e6be6777eae76a8841c18574f19f21bac668cc34317b07687b1ad9efe6260f6e4f4cf761076eac8e519a0d94c988c27478aa4b05053ba819a90b8949570c6549fa0921b9feb0e419f79fb70f0359c548fff5d12b61a559a77fb99d378739bf5d41a37e242116fe99041979e72359c7b03585497caec68cae7610c744718f1d2326478537e21f9a9a7d307d6e470e4d436463bfe7305589d5e63a32a5bda134c946f34cd97b80118adf4a31a68e238a6c75a0b7631ec6b6a1683beb91435acc9467b3490fd3cca8d7e6429f7ba1352d4ebd4bffd2698b8194b93c1638193ce149990bc6c8b91f8e813ee66439a76b37ccc6954e1c2824e5e64d643bc1c84bcc2d92e3103170fe5bb77269469d7f36f169a56e040de23ce32c415f0449874a6d3b81eae50cafee1659c66883df2c1c3c2c1e3e14739c98d06c1dc49190adf8030ecbf4f1765acf25e2628932d63810843d51695dc3c504e8db8d8142e61fa73022cbf186923f3e244f73b661ec4d0d2d5d8cbef6d6f1b6c82193d54f345cd63509197700997d7afc49990e2ba98b6ccb47c5965fa0014f2968e92da316a6849bca77ef669154d3b20ae973b5b8fd594350c27278fb09a9df3b3b400481727573932c21cf13b3f223bbe7d1170ce3729e12e313146c9266a90449468aa59e0c6947d40ac107b884dc422f31342fa8ee3241831805437ecdd0e86f86d5843241f778a7dbf2cf2a0bf9112aff9dc2fca214af304ee76ed275df39868d76fac944c32973c8bb6b1ce4af421f1c5bb878cd9255f63d658851a212c0b4566ed2403aa56e8882a8cf1dc147fe86113020011efe7797676bb12267b75070e1d43731e1826aebb8e148ab3f8d2a9d130644853161f69b8825b80d46a6af6a5da658024c7b6caa741ffe359e4529bba17a18cd2f4aada3548c15d525849555224782b5f0a6c550e7405e60e56920f8902cb6706bdd9bc0591ac836be7b31c486bb3ce2acb684f440a6aa01f842d344b53737db4825a92875ae6dea30a099ccaf25888c00a5c46a684b068c2cf11644c6a4c1a3db5fddbb93f1f16d425ab28c51d6e1c0dda78934cff170d38048a032912d63a7bcae6d196f4f1195d0bd515d0690e12db9467c52894ecb2b8b5db58c25f9182ff693807563ab14e69e79587e355464e56a172b61bd061ea7d02351b71890164d87f77"}, {&(0x7f0000001a00)="ab7a8ecaf8e2f29c9b77f436e334b37d8ffc6c3858e59325695c96fdec14102719a1be5364f80d5ec8a458e451a8c55ec103f26a657404a97376d6b8d935d189dff430452ba16e1053c6d46eb0c9001109c32198f4de3381a25e542f593dd875d94117f2"}, {&(0x7f0000001600)="15c8d8ee27ce3d17094d59623a06d07ee2cd2644e7899aabef7bc9715fa52ee5d321800c02e16a294dad6d4fb07f71e87f88fa34a2df82eaebb155349b0f6b24b863c6da08ea98d46eb59f66afdfef82662f83a100a3333eb179850da19e6b893e9841e00433f20290f2be8d68a3997f858b0f557487b6aca184c45a595da43f7ed5b563fa5c7cd222546d51f5d4436321ac44b043e79fbadc"}, {&(0x7f00000016c0)="2cb83f037129fd92b5fca9ee872f303b99c953264137463cbcc299f76e5e121d49fa70c06cb9724994e679b367b5399c2e09899a254fd4317ab9a4366f074dc78c892d88c9cc25845009f57f695c8ecfd14c2850084cfba707c7cd052168b628ec7b5a730a24898316ccef0845ad3a824c07aeac549d55b113863214708e687b8f454c376c06d0d19acf11c438e057ddf1480642e7d43370f47c57e0e560d3e8c5b88d8e2bf3a6125a51"}, {&(0x7f0000001780)="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"}, {&(0x7f0000001880)="59b5da6253058362d6dbc5d7e1977d36ce4a0beedef56461eedeab3789ac688952c311a12466970e2b3bd4f17739f10706330f8d222ca4abd66e17f508b6e7303df49548a67546f1e48df944b481dc07bc2f29588d9f0bd1bfe45dd58bd1c31e0c6f34f49483de9a91d8b24dd0dd23aa8971d542e9422bb8d0e2d4de4a15f693f33cdedeb419d18e1f6cd74faf0aa36c327b3fd4edc5b0c2eaf184c242c20d40cf7f348bbaf0534df3a09649c8e25301"}], 0xffffff0)
write$binfmt_elf64(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="5f454c44065b05007311"], 0xa)
close(r3)
r4 = socket$netlink(0x10, 0x3, 0x4)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000140), &(0x7f00000003c0)=0xc)
write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
write$P9_RSYMLINK(r6, &(0x7f0000000000)={0x14, 0x11, 0x2, {0x0, 0x4, 0x5}}, 0x14)
splice(r1, 0x0, r3, 0x0, 0x80000001, 0x0)

03:18:08 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:08 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:08 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
ioctl$LOOP_SET_FD(r2, 0x4c00, r3)

03:18:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:08 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:08 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
ioctl$LOOP_SET_FD(r2, 0x4c00, r3)

[  295.752635][ T8799] binder: binder_mmap: 8792 20ffb000-20fff000 bad vm_flags failed -1
03:18:09 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r1)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  295.835902][    C0] protocol 88fb is buggy, dev hsr_slave_0
[  295.841922][    C0] protocol 88fb is buggy, dev hsr_slave_1
03:18:09 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:09 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  295.892193][ T8812] binder: binder_mmap: 8809 20ffb000-20fff000 bad vm_flags failed -1
[  296.465748][    C1] protocol 88fb is buggy, dev hsr_slave_0
[  296.465775][    C0] protocol 88fb is buggy, dev hsr_slave_1
[  296.471652][    C1] protocol 88fb is buggy, dev hsr_slave_1
03:18:18 executing program 2:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0xa927, 0x2d, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
ppoll(&(0x7f0000000280)=[{r2, 0x2104}, {r2}], 0x2, 0x0, 0x0, 0x0)

03:18:18 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r1)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:18 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
ioctl$LOOP_SET_FD(r2, 0x4c00, r3)

03:18:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:18 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:18 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  305.021360][ T8833] binder: binder_mmap: 8830 20ffb000-20fff000 bad vm_flags failed -1
03:18:18 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:18 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:18 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r1)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:18 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)

[  305.193687][ T8853] binder: binder_mmap: 8851 20ffb000-20fff000 bad vm_flags failed -1
03:18:18 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})

[  305.243970][ T8847] cgroup: fork rejected by pids controller in /syz3
03:18:25 executing program 2:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0xa927, 0x2d, 0x0, <r1=>0xffffffffffffff9c})
r2 = dup(r1)
ppoll(&(0x7f0000000280)=[{r2, 0x2104}, {r2}], 0x2, 0x0, 0x0, 0x0)

03:18:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:25 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
socket(0xa, 0x3, 0x8)

03:18:25 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:25 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:25 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  312.139141][ T8878] binder: binder_mmap: 8870 20ffb000-20fff000 bad vm_flags failed -1
03:18:25 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:25 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})

03:18:25 executing program 3:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  312.283483][ T8887] binder: binder_mmap: 8886 20ffb000-20fff000 bad vm_flags failed -1
03:18:25 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:25 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  312.477785][ T8898] binder: binder_mmap: 8897 20ffb000-20fff000 bad vm_flags failed -1
03:18:32 executing program 2:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:32 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xd19e7486784249c7, 0x0)

03:18:32 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:32 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:32 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:32 executing program 3:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  319.267618][ T8912] binder: binder_mmap: 8910 20ffb000-20fff000 bad vm_flags failed -1
03:18:32 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:32 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:32 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000fbb000)={0x8}, &(0x7f000091bffc), 0x400)

[  319.406528][ T8924] binder: binder_mmap: 8923 20ffb000-20fff000 bad vm_flags failed -1
03:18:32 executing program 3:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:32 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:32 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  319.624588][ T8938] binder: binder_mmap: 8937 20ffb000-20fff000 bad vm_flags failed -1
03:18:39 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:18:39 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)

03:18:39 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:39 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, 0xffffffffffffffff, 0x0)

03:18:39 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="2321202e2f46696c6530202a2d206d696d655f74797065766d6e65743174727573746564202f7b23406d64f3c5198e5d9e09d87f1bc5113573756d5e08643573756d20245b29266b657972696e67736563757269747976626f786e0274316b0a1138594b54e624129a76db695350b27626469a23841f65fb48aaf3be8dca87b37960257354c9e2f969795d72739f41ca5586e6b92dbcc1b4e8135550c6ccc410b0019384c310180b316ca1d3a1a645afb515f1086cae351ae3aa680d9c608e390a2524db84b163a87cd6e430617750e8126921cddb2c5f4b9b6187b6fd36858973998fae94a65d92cd5f590224cc15567f9b4772118123a2c4b666eb63d688c91927ecdb40dae597ec8c09675ef993d9a60797f0981d2150fe6dc2d895ae40001bac683e39cc8b83f81d723027dffbb4793952725b2e695d194868d5ac6b7235f85639518b51f5d59dd0080023f785ce8688e096cd0600c14ee0e073cb27bf17773a0ae0f37e8f6007749c3a3938eeea11cca554f6f2ce9735ada92c2375f971fbea36754f8073bc5f1ce6bd63c34b08add7ee92a1b11e63eedfc708b89c0e54ef6e00b9c9b0299f6b1bada41870848254eb1b2e4b64d6eaf5fec73e23b0f6f228114d563cf6d16c3b703f7cc658a21d9f2e993681ead1bb5725e6d60224783f2a723b2e37ba1d2f6392ef365855042022ecad2d2b8763ebb48d931a575e3d3d99f2d6fc92ec15d2522f1970d051e465ef272fc0e581b3600d3fcfae77f53552f4ea19a461aa1ae1736eb7ad08a700edd920b1c77fb0776e4e9e1131e95f4b629e745a3ae0fb112e94a193d9557819cf0a90909af326411f0effbd12c2b1f7fdc2243b39e726b1d0403e706d474c48168124ebcdee29de792318dc9ad78c6f58c039b42a3e72afd78889d1552d570769b5542ede2bea2770e875dea58459e07e9bb1683825a0a8a95dd93205f6e519138520aa6a5d6f72959694c0eee8c716628ceea295b40c581bde17df4570d09bbdd861e4c43514b324a84e797567d943e6c10b166b99fa7f84cf9fcb8233b613e0f09e3e47f8c46ed67cce5b456dd01a954b4bbb72f065ae390427cc38ed73fd1296e34b3d30aba768ce5b6f9a9b093a21736240a55c8815e8536dc1442be15610be76416989c95fe65dc89e9a3102ee68946a4af327058966c3ff00830b3df9a1d2714952046c092249d3a5e4c25050fc1ca46796a91d66577b4e9ab74d0788eba1992822bfc345a0b5a6c98b1bbae3e2bbe5a330c58c88439964a91ca78337f356aaec2375b89aff23995b6d65256b056f91ea6a5c153dad8951a53c0cf02a783d1afc18aeca8e3ddad335299c6b8bbec9804080b6e5ec82d7cbcf44e1b66f653f842457f276dd0216704d516816a2029ed1df86806e12d01c658036b9da8b06dee161a4cd66250670e08cddf63607992af286f92327cca3ac0f26d95ddd7c49064895ad0ab24469da4b29355fe32d7102143432c1f05c216664cabf639437ce48d95ba88ca19f235649348b"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:39 executing program 3:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:39 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, 0xffffffffffffffff, 0x0)

03:18:39 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:39 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fspick(r0, &(0x7f0000000100)='./file0\x00', 0x3)

03:18:40 executing program 3:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:40 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, 0xffffffffffffffff, 0x0)

03:18:40 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:18:50 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:18:50 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:50 executing program 5:
r0 = syz_open_dev$binderN(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:50 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:18:50 executing program 3:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:50 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="2321202e2f46696c6530202a2d206d696d655f74797065766d6e65743174727573746564202f7b23406d64f3c5198e5d9e09d87f1bc5113573756d5e08643573756d20245b29266b657972696e67736563757269747976626f786e0274316b0a1138594b54e624129a76db695350b27626469a23841f65fb48aaf3be8dca87b37960257354c9e2f969795d72739f41ca5586e6b92dbcc1b4e8135550c6ccc410b0019384c310180b316ca1d3a1a645afb515f1086cae351ae3aa680d9c608e390a2524db84b163a87cd6e430617750e8126921cddb2c5f4b9b6187b6fd36858973998fae94a65d92cd5f590224cc15567f9b4772118123a2c4b666eb63d688c91927ecdb40dae597ec8c09675ef993d9a60797f0981d2150fe6dc2d895ae40001bac683e39cc8b83f81d723027dffbb4793952725b2e695d194868d5ac6b7235f85639518b51f5d59dd0080023f785ce8688e096cd0600c14ee0e073cb27bf17773a0ae0f37e8f6007749c3a3938eeea11cca554f6f2ce9735ada92c2375f971fbea36754f8073bc5f1ce6bd63c34b08add7ee92a1b11e63eedfc708b89c0e54ef6e00b9c9b0299f6b1bada41870848254eb1b2e4b64d6eaf5fec73e23b0f6f228114d563cf6d16c3b703f7cc658a21d9f2e993681ead1bb5725e6d60224783f2a723b2e37ba1d2f6392ef365855042022ecad2d2b8763ebb48d931a575e3d3d99f2d6fc92ec15d2522f1970d051e465ef272fc0e581b3600d3fcfae77f53552f4ea19a461aa1ae1736eb7ad08a700edd920b1c77fb0776e4e9e1131e95f4b629e745a3ae0fb112e94a193d9557819cf0a90909af326411f0effbd12c2b1f7fdc2243b39e726b1d0403e706d474c48168124ebcdee29de792318dc9ad78c6f58c039b42a3e72afd78889d1552d570769b5542ede2bea2770e875dea58459e07e9bb1683825a0a8a95dd93205f6e519138520aa6a5d6f72959694c0eee8c716628ceea295b40c581bde17df4570d09bbdd861e4c43514b324a84e797567d943e6c10b166b99fa7f84cf9fcb8233b613e0f09e3e47f8c46ed67cce5b456dd01a954b4bbb72f065ae390427cc38ed73fd1296e34b3d30aba768ce5b6f9a9b093a21736240a55c8815e8536dc1442be15610be76416989c95fe65dc89e9a3102ee68946a4af327058966c3ff00830b3df9a1d2714952046c092249d3a5e4c25050fc1ca46796a91d66577b4e9ab74d0788eba1992822bfc345a0b5a6c98b1bbae3e2bbe5a330c58c88439964a91ca78337f356aaec2375b89aff23995b6d65256b056f91ea6a5c153dad8951a53c0cf02a783d1afc18aeca8e3ddad335299c6b8bbec9804080b6e5ec82d7cbcf44e1b66f653f842457f276dd0216704d516816a2029ed1df86806e12d01c658036b9da8b06dee161a4cd66250670e08cddf63607992af286f92327cca3ac0f26d95ddd7c49064895ad0ab24469da4b29355fe32d7102143432c1f05c216664cabf639437ce48d95ba88ca19f235649348b"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:50 executing program 5:
r0 = syz_open_dev$binderN(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:50 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:18:50 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:50 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:50 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:18:50 executing program 5:
r0 = syz_open_dev$binderN(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:56 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:18:56 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:56 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:56 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:18:56 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000002c0)=0xffffffffffffff59, 0x7fffc)
write$binfmt_script(r0, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x16c)
symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00')
r1 = socket$pptp(0x18, 0x1, 0x2)
fremovexattr(r1, &(0x7f00000003c0)=@known='trusted.overlay.metacopy\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80000, 0x100)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x41, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x4000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0xfffffffffffffffe)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e23}, 0x1c)
ioctl$DRM_IOCTL_AGP_ENABLE(0xffffffffffffffff, 0x40086432, &(0x7f0000000380)=0x9)
syz_open_dev$midi(0x0, 0x9e7e, 0x1201c2)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
write$P9_RLOPEN(r2, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x20, 0x0, 0x5}}}, 0x18)
listen(r3, 0x200000000002)
r4 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10)
r5 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0)
fchdir(r5)
symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f0000000100)='./file0\x00')
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$ASHMEM_GET_NAME(r7, 0x81007702, &(0x7f0000000400)=""/180)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000140), 0x4)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, &(0x7f0000000300))
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:18:56 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  343.519273][ T9036] binder: binder_mmap: 9034 20ffb000-20fff000 bad vm_flags failed -1
03:18:56 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:18:56 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:18:56 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:18:56 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:18:56 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  343.701828][ T9048] binder: binder_mmap: 9047 20ffb000-20fff000 bad vm_flags failed -1
03:18:56 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:03 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:03 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:03 executing program 1:

03:19:03 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:03 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:19:03 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:03 executing program 1:

[  350.746873][ T9074] binder: binder_mmap: 9068 20ffb000-20fff000 bad vm_flags failed -1
03:19:03 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x0, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:19:04 executing program 1:

03:19:04 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:04 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  350.948297][ T9094] binder: binder_mmap: 9091 20ffb000-20fff000 bad vm_flags failed -1
03:19:10 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:10 executing program 1:

03:19:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:10 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:19:10 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:10 executing program 1:

03:19:10 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', 0xffffffffffffffff, &(0x7f000034aff8)='./file0\x00')
renameat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000009000)='./control\x00')

[  357.038579][ T9114] binder: binder_mmap: 9112 20ffb000-20fff000 bad vm_flags failed -1
03:19:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:10 executing program 1:

03:19:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:19:10 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  357.201289][ T9131] binder: binder_mmap: 9130 20ffb000-20fff000 bad vm_flags failed -1
03:19:17 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:17 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', 0xffffffffffffffff, &(0x7f000034aff8)='./file0\x00')
renameat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000009000)='./control\x00')

03:19:17 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:17 executing program 1:
r0 = open(&(0x7f0000000500)='./bus\x00', 0x8141042, 0x0)
close(r0)
syz_open_dev$loop(&(0x7f0000000180)='/dev/loop#\x00', 0x0, 0x105082)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000001c0), 0x526987c9)
read(r1, &(0x7f0000000200)=""/250, 0x50c7e3e3)

03:19:17 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:19:17 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  364.346567][ T9156] binder: binder_mmap: 9149 20ffb000-20fff000 bad vm_flags failed -1
03:19:17 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', 0xffffffffffffffff, &(0x7f000034aff8)='./file0\x00')
renameat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000009000)='./control\x00')

03:19:17 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:17 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:19:17 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:17 executing program 4:
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  364.481523][ T9168] binder: binder_mmap: 9167 20ffb000-20fff000 bad vm_flags failed -1
03:19:17 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  364.640307][ T9183] binder: binder_mmap: 9180 20ffb000-20fff000 bad vm_flags failed -1
03:19:24 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:19:24 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:24 executing program 4:
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:24 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:24 executing program 1:
r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000100)={0x1})

03:19:24 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:24 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:19:24 executing program 1:
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6100)
r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
lseek(r1, 0x7ffffc, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[@ANYRESDEC], 0xfd14)
fallocate(r1, 0x3, 0x0, 0x28020001)
write$cgroup_type(r0, &(0x7f0000000200)='threaded\x00', 0xf642e7e)
r2 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r4 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x4003fe)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000200)={0x0, r3})
r5 = open(&(0x7f000000fffa)='./bus\x00', 0x141446, 0x0)
write$FUSE_LSEEK(r5, &(0x7f0000000340)={0x18}, 0x18)

[  371.638472][ T9198] binder: binder_mmap: 9192 20ffb000-20fff000 bad vm_flags failed -1
03:19:24 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:24 executing program 4:
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:24 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:24 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

[  371.794523][ T9214] binder: binder_mmap: 9210 20ffb000-20fff000 bad vm_flags failed -1
03:19:25 executing program 4:
mkdir(0x0, 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:31 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:31 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:19:31 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:31 executing program 4:
mkdir(0x0, 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:31 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000040)="240000005a001f001007f4f9002304000a04f51108000400020100020800028005000000", 0x24)

03:19:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, 0x0, &(0x7f000095dffc))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

[  377.925131][ T9244] binder: binder_mmap: 9234 20ffb000-20fff000 bad vm_flags failed -1
03:19:31 executing program 4:
mkdir(0x0, 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:31 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:31 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:31 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

[  378.102544][ T9263] binder: binder_mmap: 9262 20ffb000-20fff000 bad vm_flags failed -1
03:19:38 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:38 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:19:38 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:38 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:38 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:38 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  385.222591][ T9281] binder: binder_mmap: 9279 20ffb000-20fff000 bad vm_flags failed -1
03:19:38 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8), &(0x7f000095dffc)=0x4)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:19:38 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:38 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:38 executing program 1:
syz_read_part_table(0x0, 0x1bf, &(0x7f0000000080)=[{&(0x7f0000000000)="020182ffffff01000000ff07a00200000000550008000000000000000040000000000500000000000000887700720030b5829237c300000000000080000055aa", 0x40, 0x1c0}])
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x0, <r0=>0xffffffffffffffff})
fcntl$getflags(r0, 0x3)

03:19:38 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:38 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  385.371740][ T9293] binder: binder_mmap: 9292 20ffb000-20fff000 bad vm_flags failed -1
03:19:38 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  385.494091][ T9308] binder: binder_mmap: 9305 20ffb000-20fff000 bad vm_flags failed -1
[  385.582443][ T9304]  loop1: p1 p2[EZD] p3 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214
[  385.582454][ T9304] loop1: partition table partially beyond EOD, truncated
[  385.680588][ T9304] loop1: p1 start 1 is beyond EOD, truncated
[  385.686664][ T9304] loop1: p2 size 1073741824 extends beyond EOD, truncated
[  385.694778][ T9304] loop1: p3 size 2 extends beyond EOD, truncated
[  385.703616][ T9304] loop1: p4 size 32768 extends beyond EOD, truncated
[  385.712717][ T9304] loop1: p5 start 1 is beyond EOD, truncated
[  385.719001][ T9304] loop1: p6 size 1073741824 extends beyond EOD, truncated
[  385.727483][ T9304] loop1: p7 size 32768 extends beyond EOD, truncated
[  385.734768][ T9304] loop1: p8 start 1 is beyond EOD, truncated
[  385.740844][ T9304] loop1: p9 size 1073741824 extends beyond EOD, truncated
[  385.749432][ T9304] loop1: p10 size 32768 extends beyond EOD, truncated
[  385.757305][ T9304] loop1: p11 start 1 is beyond EOD, truncated
[  385.763392][ T9304] loop1: p12 size 1073741824 extends beyond EOD, truncated
[  385.771733][ T9304] loop1: p13 size 32768 extends beyond EOD, truncated
[  385.779344][ T9304] loop1: p14 start 1 is beyond EOD, truncated
[  385.785457][ T9304] loop1: p15 size 1073741824 extends beyond EOD, truncated
[  385.793513][ T9304] loop1: p16 size 32768 extends beyond EOD, truncated
[  385.801196][ T9304] loop1: p17 start 1 is beyond EOD, truncated
[  385.807634][ T9304] loop1: p18 size 1073741824 extends beyond EOD, truncated
[  385.815494][ T9304] loop1: p19 size 32768 extends beyond EOD, truncated
[  385.823672][ T9304] loop1: p20 start 1 is beyond EOD, truncated
[  385.830420][ T9304] loop1: p21 size 1073741824 extends beyond EOD, truncated
[  385.838437][ T9304] loop1: p22 size 32768 extends beyond EOD, truncated
[  385.846054][ T9304] loop1: p23 start 1 is beyond EOD, truncated
[  385.852128][ T9304] loop1: p24 size 1073741824 extends beyond EOD, truncated
[  385.860301][ T9304] loop1: p25 size 32768 extends beyond EOD, truncated
[  385.868125][ T9304] loop1: p26 start 1 is beyond EOD, truncated
[  385.874282][ T9304] loop1: p27 size 1073741824 extends beyond EOD, truncated
[  385.882305][ T9304] loop1: p28 size 32768 extends beyond EOD, truncated
[  385.889948][ T9304] loop1: p29 start 1 is beyond EOD, truncated
[  385.896124][ T9304] loop1: p30 size 1073741824 extends beyond EOD, truncated
[  385.904097][ T9304] loop1: p31 size 32768 extends beyond EOD, truncated
[  385.911925][ T9304] loop1: p32 start 1 is beyond EOD, truncated
[  385.918104][ T9304] loop1: p33 size 1073741824 extends beyond EOD, truncated
[  385.926125][ T9304] loop1: p34 size 32768 extends beyond EOD, truncated
[  385.933586][ T9304] loop1: p35 start 1 is beyond EOD, truncated
[  385.939744][ T9304] loop1: p36 size 1073741824 extends beyond EOD, truncated
[  385.948185][ T9304] loop1: p37 size 32768 extends beyond EOD, truncated
[  385.956919][ T9304] loop1: p38 start 1 is beyond EOD, truncated
[  385.963192][ T9304] loop1: p39 size 1073741824 extends beyond EOD, truncated
[  385.971507][ T9304] loop1: p40 size 32768 extends beyond EOD, truncated
[  385.979431][ T9304] loop1: p41 start 1 is beyond EOD, truncated
[  385.985902][ T9304] loop1: p42 size 1073741824 extends beyond EOD, truncated
[  385.993783][ T9304] loop1: p43 size 32768 extends beyond EOD, truncated
[  386.002016][ T9304] loop1: p44 start 1 is beyond EOD, truncated
[  386.008215][ T9304] loop1: p45 size 1073741824 extends beyond EOD, truncated
[  386.016331][ T9304] loop1: p46 size 32768 extends beyond EOD, truncated
[  386.023764][ T9304] loop1: p47 start 1 is beyond EOD, truncated
[  386.030005][ T9304] loop1: p48 size 1073741824 extends beyond EOD, truncated
[  386.037965][ T9304] loop1: p49 size 32768 extends beyond EOD, truncated
[  386.045478][ T9304] loop1: p50 start 1 is beyond EOD, truncated
[  386.051616][ T9304] loop1: p51 size 1073741824 extends beyond EOD, truncated
[  386.059479][ T9304] loop1: p52 size 32768 extends beyond EOD, truncated
[  386.067278][ T9304] loop1: p53 start 1 is beyond EOD, truncated
[  386.074362][ T9304] loop1: p54 size 1073741824 extends beyond EOD, truncated
[  386.082635][ T9304] loop1: p55 size 32768 extends beyond EOD, truncated
[  386.090898][ T9304] loop1: p56 start 1 is beyond EOD, truncated
[  386.097066][ T9304] loop1: p57 size 1073741824 extends beyond EOD, truncated
[  386.104987][ T9304] loop1: p58 size 32768 extends beyond EOD, truncated
[  386.113051][ T9304] loop1: p59 start 1 is beyond EOD, truncated
[  386.119398][ T9304] loop1: p60 size 1073741824 extends beyond EOD, truncated
[  386.127634][ T9304] loop1: p61 size 32768 extends beyond EOD, truncated
[  386.135072][ T9304] loop1: p62 start 1 is beyond EOD, truncated
[  386.141493][ T9304] loop1: p63 size 1073741824 extends beyond EOD, truncated
[  386.149909][ T9304] loop1: p64 size 32768 extends beyond EOD, truncated
[  386.157755][ T9304] loop1: p65 start 1 is beyond EOD, truncated
[  386.163831][ T9304] loop1: p66 size 1073741824 extends beyond EOD, truncated
[  386.171961][ T9304] loop1: p67 size 32768 extends beyond EOD, truncated
[  386.179526][ T9304] loop1: p68 start 1 is beyond EOD, truncated
[  386.185790][ T9304] loop1: p69 size 1073741824 extends beyond EOD, truncated
[  386.193681][ T9304] loop1: p70 size 32768 extends beyond EOD, truncated
[  386.201522][ T9304] loop1: p71 start 1 is beyond EOD, truncated
[  386.207693][ T9304] loop1: p72 size 1073741824 extends beyond EOD, truncated
[  386.215512][ T9304] loop1: p73 size 32768 extends beyond EOD, truncated
[  386.223548][ T9304] loop1: p74 start 1 is beyond EOD, truncated
[  386.229721][ T9304] loop1: p75 size 1073741824 extends beyond EOD, truncated
[  386.238560][ T9304] loop1: p76 size 32768 extends beyond EOD, truncated
[  386.246416][ T9304] loop1: p77 start 1 is beyond EOD, truncated
[  386.252493][ T9304] loop1: p78 size 1073741824 extends beyond EOD, truncated
[  386.260643][ T9304] loop1: p79 size 32768 extends beyond EOD, truncated
[  386.271293][ T9304] loop1: p80 start 1 is beyond EOD, truncated
[  386.278740][ T9304] loop1: p81 size 1073741824 extends beyond EOD, truncated
[  386.289136][ T9304] loop1: p82 size 32768 extends beyond EOD, truncated
[  386.297566][ T9304] loop1: p83 start 1 is beyond EOD, truncated
[  386.303905][ T9304] loop1: p84 size 1073741824 extends beyond EOD, truncated
[  386.312708][ T9304] loop1: p85 size 32768 extends beyond EOD, truncated
[  386.321948][ T9304] loop1: p86 start 1 is beyond EOD, truncated
[  386.328201][ T9304] loop1: p87 size 1073741824 extends beyond EOD, truncated
[  386.336953][ T9304] loop1: p88 size 32768 extends beyond EOD, truncated
[  386.344700][ T9304] loop1: p89 start 1 is beyond EOD, truncated
[  386.351641][ T9304] loop1: p90 size 1073741824 extends beyond EOD, truncated
[  386.359792][ T9304] loop1: p91 size 32768 extends beyond EOD, truncated
[  386.368759][ T9304] loop1: p92 start 1 is beyond EOD, truncated
[  386.374979][ T9304] loop1: p93 size 1073741824 extends beyond EOD, truncated
[  386.383104][ T9304] loop1: p94 size 32768 extends beyond EOD, truncated
[  386.391031][ T9304] loop1: p95 start 1 is beyond EOD, truncated
[  386.397180][ T9304] loop1: p96 size 1073741824 extends beyond EOD, truncated
[  386.404982][ T9304] loop1: p97 size 32768 extends beyond EOD, truncated
[  386.412683][ T9304] loop1: p98 start 1 is beyond EOD, truncated
[  386.420447][ T9304] loop1: p99 size 1073741824 extends beyond EOD, truncated
[  386.428630][ T9304] loop1: p100 size 32768 extends beyond EOD, truncated
[  386.437168][ T9304] loop1: p101 start 1 is beyond EOD, truncated
[  386.443550][ T9304] loop1: p102 size 1073741824 extends beyond EOD, truncated
[  386.451696][ T9304] loop1: p103 size 32768 extends beyond EOD, truncated
[  386.459550][ T9304] loop1: p104 start 1 is beyond EOD, truncated
[  386.466183][ T9304] loop1: p105 size 1073741824 extends beyond EOD, truncated
[  386.474174][ T9304] loop1: p106 size 32768 extends beyond EOD, truncated
[  386.482877][ T9304] loop1: p107 start 1 is beyond EOD, truncated
[  386.489117][ T9304] loop1: p108 size 1073741824 extends beyond EOD, truncated
[  386.497426][ T9304] loop1: p109 size 32768 extends beyond EOD, truncated
[  386.504964][ T9304] loop1: p110 start 1 is beyond EOD, truncated
[  386.511201][ T9304] loop1: p111 size 1073741824 extends beyond EOD, truncated
[  386.520846][ T9304] loop1: p112 size 32768 extends beyond EOD, truncated
[  386.528873][ T9304] loop1: p113 start 1 is beyond EOD, truncated
[  386.535038][ T9304] loop1: p114 size 1073741824 extends beyond EOD, truncated
[  386.543304][ T9304] loop1: p115 size 32768 extends beyond EOD, truncated
[  386.551102][ T9304] loop1: p116 start 1 is beyond EOD, truncated
[  386.557366][ T9304] loop1: p117 size 1073741824 extends beyond EOD, truncated
[  386.565483][ T9304] loop1: p118 size 32768 extends beyond EOD, truncated
[  386.573298][ T9304] loop1: p119 start 1 is beyond EOD, truncated
[  386.579562][ T9304] loop1: p120 size 1073741824 extends beyond EOD, truncated
[  386.587517][ T9304] loop1: p121 size 32768 extends beyond EOD, truncated
[  386.595094][ T9304] loop1: p122 start 1 is beyond EOD, truncated
[  386.601341][ T9304] loop1: p123 size 1073741824 extends beyond EOD, truncated
[  386.609908][ T9304] loop1: p124 size 32768 extends beyond EOD, truncated
[  386.617788][ T9304] loop1: p125 start 1 is beyond EOD, truncated
[  386.624162][ T9304] loop1: p126 size 1073741824 extends beyond EOD, truncated
[  386.632395][ T9304] loop1: p127 size 32768 extends beyond EOD, truncated
[  386.640224][ T9304] loop1: p128 start 1 is beyond EOD, truncated
[  386.646600][ T9304] loop1: p129 size 1073741824 extends beyond EOD, truncated
[  386.654663][ T9304] loop1: p130 size 32768 extends beyond EOD, truncated
[  386.662746][ T9304] loop1: p131 start 1 is beyond EOD, truncated
[  386.669348][ T9304] loop1: p132 size 1073741824 extends beyond EOD, truncated
[  386.677319][ T9304] loop1: p133 size 32768 extends beyond EOD, truncated
[  386.685128][ T9304] loop1: p134 start 1 is beyond EOD, truncated
[  386.691501][ T9304] loop1: p135 size 1073741824 extends beyond EOD, truncated
[  386.699834][ T9304] loop1: p136 size 32768 extends beyond EOD, truncated
[  386.707605][ T9304] loop1: p137 start 1 is beyond EOD, truncated
[  386.713887][ T9304] loop1: p138 size 1073741824 extends beyond EOD, truncated
[  386.722149][ T9304] loop1: p139 size 32768 extends beyond EOD, truncated
[  386.729922][ T9304] loop1: p140 start 1 is beyond EOD, truncated
[  386.736715][ T9304] loop1: p141 size 1073741824 extends beyond EOD, truncated
[  386.744788][ T9304] loop1: p142 size 32768 extends beyond EOD, truncated
[  386.752691][ T9304] loop1: p143 start 1 is beyond EOD, truncated
[  386.758947][ T9304] loop1: p144 size 1073741824 extends beyond EOD, truncated
[  386.767064][ T9304] loop1: p145 size 32768 extends beyond EOD, truncated
[  386.774848][ T9304] loop1: p146 start 1 is beyond EOD, truncated
[  386.781183][ T9304] loop1: p147 size 1073741824 extends beyond EOD, truncated
[  386.789626][ T9304] loop1: p148 size 32768 extends beyond EOD, truncated
[  386.797544][ T9304] loop1: p149 start 1 is beyond EOD, truncated
[  386.803831][ T9304] loop1: p150 size 1073741824 extends beyond EOD, truncated
[  386.812029][ T9304] loop1: p151 size 32768 extends beyond EOD, truncated
[  386.819760][ T9304] loop1: p152 start 1 is beyond EOD, truncated
[  386.826183][ T9304] loop1: p153 size 1073741824 extends beyond EOD, truncated
[  386.834159][ T9304] loop1: p154 size 32768 extends beyond EOD, truncated
[  386.842023][ T9304] loop1: p155 start 1 is beyond EOD, truncated
[  386.848389][ T9304] loop1: p156 size 1073741824 extends beyond EOD, truncated
[  386.856534][ T9304] loop1: p157 size 32768 extends beyond EOD, truncated
[  386.864042][ T9304] loop1: p158 start 1 is beyond EOD, truncated
[  386.870901][ T9304] loop1: p159 size 1073741824 extends beyond EOD, truncated
[  386.879087][ T9304] loop1: p160 size 32768 extends beyond EOD, truncated
[  386.886825][ T9304] loop1: p161 start 1 is beyond EOD, truncated
[  386.892980][ T9304] loop1: p162 size 1073741824 extends beyond EOD, truncated
[  386.901182][ T9304] loop1: p163 size 32768 extends beyond EOD, truncated
[  386.908928][ T9304] loop1: p164 start 1 is beyond EOD, truncated
[  386.915085][ T9304] loop1: p165 size 1073741824 extends beyond EOD, truncated
[  386.923279][ T9304] loop1: p166 size 32768 extends beyond EOD, truncated
[  386.931025][ T9304] loop1: p167 start 1 is beyond EOD, truncated
[  386.937329][ T9304] loop1: p168 size 1073741824 extends beyond EOD, truncated
[  386.945322][ T9304] loop1: p169 size 32768 extends beyond EOD, truncated
[  386.953492][ T9304] loop1: p170 start 1 is beyond EOD, truncated
[  386.959931][ T9304] loop1: p171 size 1073741824 extends beyond EOD, truncated
[  386.967960][ T9304] loop1: p172 size 32768 extends beyond EOD, truncated
[  386.975750][ T9304] loop1: p173 start 1 is beyond EOD, truncated
[  386.981925][ T9304] loop1: p174 size 1073741824 extends beyond EOD, truncated
[  386.990054][ T9304] loop1: p175 size 32768 extends beyond EOD, truncated
[  386.998214][ T9304] loop1: p176 start 1 is beyond EOD, truncated
[  387.004385][ T9304] loop1: p177 size 1073741824 extends beyond EOD, truncated
[  387.012641][ T9304] loop1: p178 size 32768 extends beyond EOD, truncated
[  387.020461][ T9304] loop1: p179 start 1 is beyond EOD, truncated
[  387.026827][ T9304] loop1: p180 size 1073741824 extends beyond EOD, truncated
[  387.034794][ T9304] loop1: p181 size 32768 extends beyond EOD, truncated
[  387.042551][ T9304] loop1: p182 start 1 is beyond EOD, truncated
[  387.048809][ T9304] loop1: p183 size 1073741824 extends beyond EOD, truncated
[  387.056760][ T9304] loop1: p184 size 32768 extends beyond EOD, truncated
[  387.064256][ T9304] loop1: p185 start 1 is beyond EOD, truncated
[  387.070480][ T9304] loop1: p186 size 1073741824 extends beyond EOD, truncated
[  387.078799][ T9304] loop1: p187 size 32768 extends beyond EOD, truncated
[  387.086516][ T9304] loop1: p188 start 1 is beyond EOD, truncated
[  387.092688][ T9304] loop1: p189 size 1073741824 extends beyond EOD, truncated
[  387.100908][ T9304] loop1: p190 size 32768 extends beyond EOD, truncated
[  387.108954][ T9304] loop1: p191 start 1 is beyond EOD, truncated
[  387.115138][ T9304] loop1: p192 size 1073741824 extends beyond EOD, truncated
[  387.123442][ T9304] loop1: p193 size 32768 extends beyond EOD, truncated
[  387.131779][ T9304] loop1: p194 start 1 is beyond EOD, truncated
[  387.138038][ T9304] loop1: p195 size 1073741824 extends beyond EOD, truncated
[  387.146267][ T9304] loop1: p196 size 32768 extends beyond EOD, truncated
[  387.153861][ T9304] loop1: p197 start 1 is beyond EOD, truncated
[  387.160139][ T9304] loop1: p198 size 1073741824 extends beyond EOD, truncated
[  387.168116][ T9304] loop1: p199 size 32768 extends beyond EOD, truncated
[  387.175700][ T9304] loop1: p200 start 1 is beyond EOD, truncated
[  387.181867][ T9304] loop1: p201 size 1073741824 extends beyond EOD, truncated
[  387.189994][ T9304] loop1: p202 size 32768 extends beyond EOD, truncated
[  387.197790][ T9304] loop1: p203 start 1 is beyond EOD, truncated
[  387.203973][ T9304] loop1: p204 size 1073741824 extends beyond EOD, truncated
[  387.212148][ T9304] loop1: p205 size 32768 extends beyond EOD, truncated
[  387.219902][ T9304] loop1: p206 start 1 is beyond EOD, truncated
[  387.226138][ T9304] loop1: p207 size 1073741824 extends beyond EOD, truncated
[  387.234087][ T9304] loop1: p208 size 32768 extends beyond EOD, truncated
[  387.241890][ T9304] loop1: p209 start 1 is beyond EOD, truncated
[  387.248134][ T9304] loop1: p210 size 1073741824 extends beyond EOD, truncated
[  387.256737][ T9304] loop1: p211 size 32768 extends beyond EOD, truncated
[  387.264389][ T9304] loop1: p212 start 1 is beyond EOD, truncated
[  387.270712][ T9304] loop1: p213 size 1073741824 extends beyond EOD, truncated
[  387.278931][ T9304] loop1: p214 size 32768 extends beyond EOD, truncated
[  387.286700][ T9304] loop1: p215 start 1 is beyond EOD, truncated
[  387.292873][ T9304] loop1: p216 size 1073741824 extends beyond EOD, truncated
[  387.301076][ T9304] loop1: p217 size 32768 extends beyond EOD, truncated
[  387.308865][ T9304] loop1: p218 start 1 is beyond EOD, truncated
[  387.315074][ T9304] loop1: p219 size 1073741824 extends beyond EOD, truncated
[  387.323660][ T9304] loop1: p220 size 32768 extends beyond EOD, truncated
[  387.331434][ T9304] loop1: p221 start 1 is beyond EOD, truncated
[  387.337788][ T9304] loop1: p222 size 1073741824 extends beyond EOD, truncated
[  387.346709][ T9304] loop1: p223 size 32768 extends beyond EOD, truncated
[  387.354390][ T9304] loop1: p224 start 1 is beyond EOD, truncated
[  387.360654][ T9304] loop1: p225 size 1073741824 extends beyond EOD, truncated
[  387.368783][ T9304] loop1: p226 size 32768 extends beyond EOD, truncated
[  387.376819][ T9304] loop1: p227 start 1 is beyond EOD, truncated
[  387.383000][ T9304] loop1: p228 size 1073741824 extends beyond EOD, truncated
[  387.391582][ T9304] loop1: p229 size 32768 extends beyond EOD, truncated
[  387.399455][ T9304] loop1: p230 start 1 is beyond EOD, truncated
[  387.405706][ T9304] loop1: p231 size 1073741824 extends beyond EOD, truncated
[  387.413694][ T9304] loop1: p232 size 32768 extends beyond EOD, truncated
[  387.421659][ T9304] loop1: p233 start 1 is beyond EOD, truncated
[  387.428037][ T9304] loop1: p234 size 1073741824 extends beyond EOD, truncated
[  387.436435][ T9304] loop1: p235 size 32768 extends beyond EOD, truncated
[  387.444186][ T9304] loop1: p236 start 1 is beyond EOD, truncated
[  387.450734][ T9304] loop1: p237 size 1073741824 extends beyond EOD, truncated
[  387.458756][ T9304] loop1: p238 size 32768 extends beyond EOD, truncated
[  387.466670][ T9304] loop1: p239 start 1 is beyond EOD, truncated
[  387.473210][ T9304] loop1: p240 size 1073741824 extends beyond EOD, truncated
[  387.481513][ T9304] loop1: p241 size 32768 extends beyond EOD, truncated
[  387.489345][ T9304] loop1: p242 start 1 is beyond EOD, truncated
[  387.495540][ T9304] loop1: p243 size 1073741824 extends beyond EOD, truncated
[  387.503691][ T9304] loop1: p244 size 32768 extends beyond EOD, truncated
[  387.511557][ T9304] loop1: p245 start 1 is beyond EOD, truncated
[  387.520347][ T9304] loop1: p246 size 1073741824 extends beyond EOD, truncated
[  387.529797][ T9304] loop1: p247 size 32768 extends beyond EOD, truncated
[  387.537706][ T9304] loop1: p248 start 1 is beyond EOD, truncated
[  387.543879][ T9304] loop1: p249 size 1073741824 extends beyond EOD, truncated
[  387.552013][ T9304] loop1: p250 size 32768 extends beyond EOD, truncated
[  387.559870][ T9304] loop1: p251 start 1 is beyond EOD, truncated
[  387.566397][ T9304] loop1: p252 size 1073741824 extends beyond EOD, truncated
[  387.574418][ T9304] loop1: p253 size 32768 extends beyond EOD, truncated
[  387.582140][ T9304] loop1: p254 start 1 is beyond EOD, truncated
[  387.588433][ T9304] loop1: p255 size 1073741824 extends beyond EOD, truncated
03:19:43 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:43 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:19:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:43 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:43 executing program 1:

03:19:43 executing program 1:

03:19:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, 0x0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  390.515980][ T9662] binder: binder_mmap: 9656 20ffb000-20fff000 bad vm_flags failed -1
03:19:43 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:19:43 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

[  390.830705][ T9679] binder: binder_mmap: 9678 20ffb000-20fff000 bad vm_flags failed -1
03:19:50 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:50 executing program 1:

03:19:50 executing program 2:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r0=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, r0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(0xffffffffffffffff, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:50 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:50 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:19:50 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)

03:19:50 executing program 1:

03:19:51 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)

03:19:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:19:51 executing program 1:

03:19:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)

03:19:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, 0x0, &(0x7f0000000100))

03:19:58 executing program 2:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r0=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, r0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(0xffffffffffffffff, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:19:58 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:19:58 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:58 executing program 1:

03:19:58 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x10, r0, 0x0)

03:19:58 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, 0x0, &(0x7f0000000100))

03:19:58 executing program 1:

03:19:58 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, 0x0, &(0x7f0000000100))

03:19:58 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:19:58 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x10, r0, 0x0)

03:19:58 executing program 1:

03:19:58 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:05 executing program 2:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r0=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, r0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(0xffffffffffffffff, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:05 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:20:05 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x10, r0, 0x0)

03:20:05 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, 0x0, 0x0)
fcntl$dupfd(r3, 0x406, r4)
syz_mount_image$hfs(&(0x7f0000000040)='hfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={[{@part={'part', 0x3d, 0x2}}], [{@smackfshat={'smackfshat', 0x3d, 'type'}}, {@pcr={'pcr', 0x3d, 0x3}}, {@appraise='appraise'}, {@audit='audit'}, {@dont_appraise='dont_appraise'}]})

03:20:05 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:05 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:05 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:05 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x7)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0))
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x4)
r2 = inotify_init1(0x0)
dup2(r2, r0)

03:20:05 executing program 5:
syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, 0xffffffffffffffff, 0x0)

03:20:05 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:20:05 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:05 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:12 executing program 5:
syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, 0xffffffffffffffff, 0x0)

03:20:12 executing program 2:
r0 = socket(0x0, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:12 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:12 executing program 1:
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000140)="0800b5055e0bcfe87b0071")
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000400), &(0x7f0000000440)=0xc0c4948a2c3c532)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
getsockopt$packet_buf(r4, 0x107, 0x2, &(0x7f0000000040)=""/249, &(0x7f0000000180)=0xf9)
mmap(&(0x7f0000001000/0x200000)=nil, 0x200000, 0x2000001, 0x2011, r0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='hugetl\x04\x00\x00\x00\x00\x00\x00\x00age_ir_Z\xa2\xf4es\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000340)={0x20})
write$cgroup_int(r5, &(0x7f0000000000), 0xffffff6a)
r6 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r7 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
r9 = openat$null(0xffffffffffffff9c, &(0x7f0000000380)='/dev/null\x00', 0x20000, 0x0)
r10 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000480)='IPVS\x00')
sendmsg$IPVS_CMD_GET_CONFIG(r9, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40800a00}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x34, r10, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1d}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3f}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x20000010)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
getsockopt$inet_pktinfo(r8, 0x0, 0x8, &(0x7f0000000240)={<r11=>0x0, @dev, @multicast2}, &(0x7f00000002c0)=0xc)
sendto$packet(r6, &(0x7f0000000200)="55348661", 0x4, 0x4081, &(0x7f0000000300)={0x11, 0xe, r11, 0x1, 0x20, 0x6, @local}, 0x14)

03:20:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:20:12 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:12 executing program 5:
syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, 0xffffffffffffffff, 0x0)

03:20:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, 0x0)

03:20:12 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:12 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, 0x0)

03:20:12 executing program 5 (fault-call:4 fault-nth:0):
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:20:12 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$key(0xf, 0x3, 0x2)

[  419.574417][T10029] FAULT_INJECTION: forcing a failure.
[  419.574417][T10029] name failslab, interval 1, probability 0, space 0, times 1
[  419.604415][T10029] CPU: 0 PID: 10029 Comm: syz-executor.5 Not tainted 5.4.0-rc1+ #0
[  419.612357][T10029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  419.622588][T10029] Call Trace:
[  419.626003][T10029]  dump_stack+0x1d8/0x2f8
[  419.626098][T10029]  should_fail+0x555/0x770
[  419.634987][T10029]  __should_failslab+0x11a/0x160
[  419.639992][T10029]  ? vm_area_dup+0x24/0xb0
[  419.644488][T10029]  should_failslab+0x9/0x20
[  419.649036][T10029]  kmem_cache_alloc+0x56/0x2e0
[  419.653810][T10029]  vm_area_dup+0x24/0xb0
[  419.658115][T10029]  __split_vma+0xb4/0x490
[  419.662458][T10029]  ? vmacache_update+0xb7/0x120
[  419.667309][T10029]  __do_munmap+0x3ac/0x14c0
[  419.671824][T10029]  mmap_region+0x908/0x1cb0
[  419.676334][T10029]  do_mmap+0xacb/0x1120
[  419.680636][T10029]  vm_mmap_pgoff+0x13d/0x1d0
[  419.685227][T10029]  ksys_mmap_pgoff+0x46b/0x560
[  419.690136][T10029]  __x64_sys_mmap+0x103/0x120
[  419.694860][T10029]  do_syscall_64+0xf7/0x1c0
[  419.699428][T10029]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  419.705406][T10029] RIP: 0033:0x459a59
[  419.709300][T10029] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  419.728884][T10029] RSP: 002b:00007ffb789c4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  419.737276][T10029] RAX: ffffffffffffffda RBX: 00007ffb789c4c90 RCX: 0000000000459a59
[  419.745233][T10029] RDX: 0000000000000002 RSI: 0000000000004000 RDI: 0000000020ffb000
[  419.753232][T10029] RBP: 000000000075bf20 R08: 0000000000000003 R09: 0000000000000000
[  419.761341][T10029] R10: 0000000000000012 R11: 0000000000000246 R12: 00007ffb789c56d4
[  419.769306][T10029] R13: 00000000004c6174 R14: 00000000004db118 R15: 0000000000000007
03:20:22 executing program 2:
r0 = socket(0x0, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:22 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, 0x0)

03:20:22 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:22 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x8, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000040)={0xaf, 0x14, [0x3d, 0x2, 0x80, 0x0, 0x81]})
ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0xc028ae92, &(0x7f0000000000)={0xe4c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:20:22 executing program 5 (fault-call:4 fault-nth:1):
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  429.793110][T10048] FAULT_INJECTION: forcing a failure.
[  429.793110][T10048] name failslab, interval 1, probability 0, space 0, times 0
[  429.821435][T10048] CPU: 1 PID: 10048 Comm: syz-executor.5 Not tainted 5.4.0-rc1+ #0
[  429.829373][T10048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  429.839424][T10048] Call Trace:
[  429.842746][T10048]  dump_stack+0x1d8/0x2f8
[  429.847086][T10048]  should_fail+0x555/0x770
[  429.853345][T10048]  __should_failslab+0x11a/0x160
[  429.858376][T10048]  ? anon_vma_clone+0xaa/0x4b0
[  429.863134][T10048]  should_failslab+0x9/0x20
[  429.868187][T10048]  kmem_cache_alloc+0x56/0x2e0
[  429.872931][T10048]  ? trace_kmem_cache_alloc+0xcd/0x130
[  429.878370][T10048]  anon_vma_clone+0xaa/0x4b0
[  429.883035][T10048]  __split_vma+0x1a6/0x490
[  429.887520][T10048]  __do_munmap+0x3ac/0x14c0
[  429.892891][T10048]  mmap_region+0x908/0x1cb0
[  429.897394][T10048]  do_mmap+0xacb/0x1120
[  429.901537][T10048]  vm_mmap_pgoff+0x13d/0x1d0
[  429.906123][T10048]  ksys_mmap_pgoff+0x46b/0x560
[  429.910885][T10048]  __x64_sys_mmap+0x103/0x120
[  429.915544][T10048]  do_syscall_64+0xf7/0x1c0
[  429.920036][T10048]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  429.925907][T10048] RIP: 0033:0x459a59
[  429.929834][T10048] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  429.949432][T10048] RSP: 002b:00007ffb789c4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  429.957838][T10048] RAX: ffffffffffffffda RBX: 00007ffb789c4c90 RCX: 0000000000459a59
[  429.966032][T10048] RDX: 0000000000000002 RSI: 0000000000004000 RDI: 0000000020ffb000
[  429.974082][T10048] RBP: 000000000075bf20 R08: 0000000000000003 R09: 0000000000000000
[  429.982246][T10048] R10: 0000000000000012 R11: 0000000000000246 R12: 00007ffb789c56d4
03:20:23 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:23 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:23 executing program 0 (fault-call:6 fault-nth:0):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  429.990200][T10048] R13: 00000000004c6174 R14: 00000000004db118 R15: 0000000000000007
03:20:23 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:23 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(0x0, r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:23 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  430.121857][T10048] binder: binder_mmap: 10045 20ffb000-20fff000 bad vm_flags failed -1
03:20:31 executing program 2:
r0 = socket(0x0, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x2, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:31 executing program 1:
pipe(0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800b5055e0bcfe87b0071")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000080))
ioctl$NBD_SET_FLAGS(0xffffffffffffffff, 0xab0a, 0x3)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_pid(r2, &(0x7f0000000000), 0xfffffea6)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='memory.events\x00:(y|\x93\x04i\xd5H\x8bb\x04o@\xc1\xbb9\ni3\xc1\xa2J\x02\xfa\x93\x00'/52, 0x7a05, 0x1700)

03:20:31 executing program 5 (fault-call:4 fault-nth:2):
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:20:31 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(0x0, r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:31 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  438.111415][T10091] FAULT_INJECTION: forcing a failure.
[  438.111415][T10091] name failslab, interval 1, probability 0, space 0, times 0
03:20:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x3, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:31 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  438.163151][T10091] CPU: 1 PID: 10091 Comm: syz-executor.5 Not tainted 5.4.0-rc1+ #0
[  438.171083][T10091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  438.181147][T10091] Call Trace:
[  438.184455][T10091]  dump_stack+0x1d8/0x2f8
[  438.188796][T10091]  should_fail+0x555/0x770
[  438.193228][T10091]  __should_failslab+0x11a/0x160
[  438.198177][T10091]  ? vm_area_dup+0x24/0xb0
[  438.202614][T10091]  should_failslab+0x9/0x20
[  438.207121][T10091]  kmem_cache_alloc+0x56/0x2e0
[  438.211896][T10091]  vm_area_dup+0x24/0xb0
[  438.216255][T10091]  __split_vma+0xb4/0x490
[  438.220567][T10091]  ? vmacache_update+0xb7/0x120
[  438.225406][T10091]  __do_munmap+0x42e/0x14c0
[  438.229894][T10091]  mmap_region+0x908/0x1cb0
[  438.234381][T10091]  do_mmap+0xacb/0x1120
[  438.238557][T10091]  vm_mmap_pgoff+0x13d/0x1d0
[  438.243142][T10091]  ksys_mmap_pgoff+0x46b/0x560
[  438.247906][T10091]  __x64_sys_mmap+0x103/0x120
[  438.252688][T10091]  do_syscall_64+0xf7/0x1c0
[  438.257175][T10091]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  438.263043][T10091] RIP: 0033:0x459a59
[  438.266964][T10091] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  438.286551][T10091] RSP: 002b:00007ffb789c4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  438.295075][T10091] RAX: ffffffffffffffda RBX: 00007ffb789c4c90 RCX: 0000000000459a59
[  438.303034][T10091] RDX: 0000000000000002 RSI: 0000000000004000 RDI: 0000000020ffb000
03:20:31 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(0x0, r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  438.310986][T10091] RBP: 000000000075bf20 R08: 0000000000000003 R09: 0000000000000000
[  438.318949][T10091] R10: 0000000000000012 R11: 0000000000000246 R12: 00007ffb789c56d4
[  438.326912][T10091] R13: 00000000004c6174 R14: 00000000004db118 R15: 0000000000000007
03:20:31 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', 0xffffffffffffffff, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:31 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x4, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:31 executing program 5 (fault-call:4 fault-nth:3):
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  438.553391][T10117] FAULT_INJECTION: forcing a failure.
[  438.553391][T10117] name failslab, interval 1, probability 0, space 0, times 0
[  438.571409][T10117] CPU: 1 PID: 10117 Comm: syz-executor.5 Not tainted 5.4.0-rc1+ #0
[  438.579339][T10117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  438.589391][T10117] Call Trace:
[  438.592697][T10117]  dump_stack+0x1d8/0x2f8
[  438.597033][T10117]  should_fail+0x555/0x770
[  438.601437][T10117]  __should_failslab+0x11a/0x160
[  438.606369][T10117]  ? anon_vma_clone+0xaa/0x4b0
[  438.611153][T10117]  should_failslab+0x9/0x20
[  438.615641][T10117]  kmem_cache_alloc+0x56/0x2e0
[  438.620381][T10117]  ? trace_kmem_cache_alloc+0xcd/0x130
[  438.625818][T10117]  anon_vma_clone+0xaa/0x4b0
[  438.630388][T10117]  __split_vma+0x1a6/0x490
[  438.634795][T10117]  ? vmacache_update+0xb7/0x120
[  438.639635][T10117]  __do_munmap+0x42e/0x14c0
[  438.644231][T10117]  mmap_region+0x908/0x1cb0
[  438.648733][T10117]  do_mmap+0xacb/0x1120
[  438.653080][T10117]  vm_mmap_pgoff+0x13d/0x1d0
[  438.657665][T10117]  ksys_mmap_pgoff+0x46b/0x560
[  438.662421][T10117]  __x64_sys_mmap+0x103/0x120
[  438.667088][T10117]  do_syscall_64+0xf7/0x1c0
[  438.671581][T10117]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  438.677458][T10117] RIP: 0033:0x459a59
[  438.681333][T10117] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  438.700971][T10117] RSP: 002b:00007ffb789c4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  438.709364][T10117] RAX: ffffffffffffffda RBX: 00007ffb789c4c90 RCX: 0000000000459a59
[  438.717316][T10117] RDX: 0000000000000002 RSI: 0000000000004000 RDI: 0000000020ffb000
[  438.725284][T10117] RBP: 000000000075bf20 R08: 0000000000000003 R09: 0000000000000000
[  438.733237][T10117] R10: 0000000000000012 R11: 0000000000000246 R12: 00007ffb789c56d4
[  438.741187][T10117] R13: 00000000004c6174 R14: 00000000004db118 R15: 0000000000000007
[  438.762147][T10117] binder: binder_mmap: 10114 20ffb000-20fff000 bad vm_flags failed -1
03:20:37 executing program 2:
r0 = socket(0x200000000000011, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:37 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x6, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:37 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', 0xffffffffffffffff, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:37 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:37 executing program 5 (fault-call:4 fault-nth:4):
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

[  444.343697][T10127] FAULT_INJECTION: forcing a failure.
[  444.343697][T10127] name failslab, interval 1, probability 0, space 0, times 0
[  444.389839][T10127] CPU: 0 PID: 10127 Comm: syz-executor.5 Not tainted 5.4.0-rc1+ #0
[  444.397800][T10127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  444.407858][T10127] Call Trace:
[  444.411177][T10127]  dump_stack+0x1d8/0x2f8
[  444.415726][T10127]  should_fail+0x555/0x770
[  444.420163][T10127]  __should_failslab+0x11a/0x160
[  444.425114][T10127]  ? vm_area_alloc+0x24/0xf0
[  444.429715][T10127]  should_failslab+0x9/0x20
[  444.434222][T10127]  kmem_cache_alloc+0x56/0x2e0
[  444.438999][T10127]  vm_area_alloc+0x24/0xf0
[  444.443422][T10127]  mmap_region+0xaf2/0x1cb0
[  444.447953][T10127]  do_mmap+0xacb/0x1120
[  444.452135][T10127]  vm_mmap_pgoff+0x13d/0x1d0
[  444.456735][T10127]  ksys_mmap_pgoff+0x46b/0x560
[  444.461508][T10127]  __x64_sys_mmap+0x103/0x120
[  444.466192][T10127]  do_syscall_64+0xf7/0x1c0
[  444.470702][T10127]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  444.476590][T10127] RIP: 0033:0x459a59
[  444.476600][T10127] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  444.476605][T10127] RSP: 002b:00007ffb789c4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  444.476614][T10127] RAX: ffffffffffffffda RBX: 00007ffb789c4c90 RCX: 0000000000459a59
[  444.476620][T10127] RDX: 0000000000000002 RSI: 0000000000004000 RDI: 0000000020ffb000
[  444.476625][T10127] RBP: 000000000075bf20 R08: 0000000000000003 R09: 0000000000000000
03:20:37 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', 0xffffffffffffffff, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x7, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:37 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:37 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, 0x0)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:37 executing program 5 (fault-call:4 fault-nth:5):
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:20:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x8, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  444.476630][T10127] R10: 0000000000000012 R11: 0000000000000246 R12: 00007ffb789c56d4
[  444.476635][T10127] R13: 00000000004c6174 R14: 00000000004db118 R15: 0000000000000007
[  444.627743][T10154] binder: binder_mmap: 10151 20ffb000-20fff000 bad vm_flags failed -1
03:20:43 executing program 2:
r0 = socket(0x200000000000011, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x9, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:43 executing program 1:
syz_mount_image$xfs(&(0x7f0000000100)='xfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000037c0)={[{@nouuid='nouuid'}]})
r0 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r0)
timer_create(0x7, &(0x7f0000000000)={0x0, 0x3, 0x0, @tid=r0}, 0x0)
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r3 = accept4$bt_l2cap(r2, &(0x7f0000000200), &(0x7f0000000240)=0xe, 0x1000)
kcmp(r0, r0, 0x0, 0xffffffffffffffff, r3)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r0, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000300)='/dev/autofs\x00', 0x0, 0x0)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_STATS(r5, &(0x7f0000000800)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x84020000}, 0x6, &(0x7f0000000ac0)={&(0x7f0000000b40)={0x3d6, r6, 0x400, 0x70bd2a, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004014}, 0x20000090)
sendmsg$TIPC_CMD_SET_NETID(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r6, 0x400, 0x70bd2b, 0x25dfdbfd, {{}, 0x0, 0x800b, 0x0, {0x8, 0x2, 0x2}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10000000}, 0x4000010)

03:20:43 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, 0x0)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x0)

03:20:43 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  450.581029][T10167] binder: binder_mmap: 10166 20ffb000-20fff000 bad vm_flags failed -1
03:20:43 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, 0x0)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0xa, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:43 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, 0xffffffffffffffff, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x300, 0x2, 0x12, r0, 0x0)

[  450.703817][T10175] XFS (loop1): Invalid superblock magic number
03:20:43 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0xb, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  450.793612][T10198] binder: binder_mmap: 10197 20ffb000-20ffc000 bad vm_flags failed -1
[  451.064100][T10175] XFS (loop1): Invalid superblock magic number
03:20:50 executing program 2:
r0 = socket(0x200000000000011, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:50 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x500, 0x2, 0x12, r0, 0x0)

03:20:50 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0xc, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:50 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:50 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:50 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:20:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x600, 0x2, 0x12, r0, 0x0)

[  457.826733][T10230] binder: binder_mmap: 10224 20ffb000-20ffc000 bad vm_flags failed -1
03:20:51 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:20:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0xd, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:51 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  457.915917][T10239] binder: binder_mmap: 10237 20ffb000-20ffc000 bad vm_flags failed -1
03:20:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x700, 0x2, 0x12, r0, 0x0)

03:20:51 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  458.111144][T10255] binder: binder_mmap: 10250 20ffb000-20ffc000 bad vm_flags failed -1
03:20:59 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:20:59 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, 0x0, r0, &(0x7f0000009000)='./control\x00')

03:20:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0xe, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:59 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:20:59 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:20:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x900, 0x2, 0x12, r0, 0x0)

03:20:59 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, 0x0, r0, &(0x7f0000009000)='./control\x00')

03:20:59 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  466.188307][T10271] binder: binder_mmap: 10268 20ffb000-20ffc000 bad vm_flags failed -1
03:20:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0xf, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:20:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xa00, 0x2, 0x12, r0, 0x0)

03:20:59 executing program 3:

03:20:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x10, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  466.370290][T10287] binder: binder_mmap: 10286 20ffb000-20ffc000 bad vm_flags failed -1
03:21:08 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, 0x0, r0, &(0x7f0000009000)='./control\x00')

03:21:08 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:21:08 executing program 3:

03:21:08 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:08 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xb00, 0x2, 0x12, r0, 0x0)

03:21:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x11, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:08 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-monitor\x00', 0x52fd2075b29a7469, 0x0)

03:21:08 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  475.552189][T10304] binder: binder_mmap: 10302 20ffb000-20ffc000 bad vm_flags failed -1
03:21:08 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000009000)='./control\x00')

03:21:08 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x12, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:08 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xc00, 0x2, 0x12, r0, 0x0)

03:21:08 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:08 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000009000)='./control\x00')

[  475.703146][T10319] binder: binder_mmap: 10318 20ffb000-20ffc000 bad vm_flags failed -1
03:21:18 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:21:18 executing program 3:
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6100)
r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
lseek(r1, 0x7ffffc, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[@ANYRESDEC], 0xfd14)
write$cgroup_type(r0, &(0x7f0000000200)='threaded\x00', 0xf642e7e)
r2 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r4 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
fallocate(r4, 0x0, 0x0, 0x4003fe)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000200)={0x0, r3})

03:21:18 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xd00, 0x2, 0x12, r0, 0x0)

03:21:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x13, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:18 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:18 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000009000)='./control\x00')

03:21:18 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:18 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xe00, 0x2, 0x12, r0, 0x0)

[  484.887124][T10343] binder: binder_mmap: 10340 20ffb000-20ffc000 bad vm_flags failed -1
03:21:18 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, 0x0)

03:21:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x14, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  484.993999][T10431] binder: binder_mmap: 10381 20ffb000-20ffc000 bad vm_flags failed -1
03:21:18 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:18 executing program 3:
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0000000000002a7b0000000000000000000000000300000000000000000000000000000000000000ffffffff000000000000000040000000ff000000a8b556307b0000160900000000000000000000000000000000000000ffffffff00000000000000000000000000000000000000000000000000ffffff7f000000000000000000000000000000feffffff010000001900000009000000000000000000106cf4aa4ec99e8d000000006c6f000000009d000000000000000001010000000000000000000000100000fa000000000000000000000000a85f00cc99b4d1000000000005000000aaaaaaaaaa0000020000000000007000000070000000a000000041554449540000000000000000000000000000000000000000000000000000000800000000000d000000000000000000"]}, 0x1a8)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
close(r2)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0], 0x133861c9)
r5 = socket$inet6(0xa, 0x3, 0x100000400000003a)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c)
splice(r0, 0x0, r2, 0x0, 0x19404, 0x0)

03:21:26 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:21:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x15, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:26 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x2000, 0x2, 0x12, r0, 0x0)

03:21:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, 0x0)

03:21:26 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:26 executing program 3:
r0 = socket$inet(0x2, 0x4000020000000001, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffccf, 0x240, 0x0, 0xffffffffffffff37)

[  493.256397][T10581] binder: binder_mmap: 10579 20ffb000-20ffd000 bad vm_flags failed -1
03:21:26 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:26 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4002, 0x2, 0x12, r0, 0x0)

03:21:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, 0x0)

03:21:26 executing program 3:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000019c0)='bpf\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000300))
poll(&(0x7f0000000000)=[{}], 0x1, 0x0)
clone(0x70024103, 0x0, 0x0, 0x0, 0x0)

03:21:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x16, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x17, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  493.461410][T10697] binder: binder_mmap: 10696 20ffb000-21000000 bad vm_flags failed -1
[  493.499450][T10703] IPVS: ftp: loaded support on port[0] = 21
03:21:35 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:21:35 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:35 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000000), 0x200)
ftruncate(r0, 0x800799c)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0x1, 0x2011, r0, 0x0)

03:21:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4003, 0x2, 0x12, r0, 0x0)

03:21:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x18, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:35 executing program 3:
r0 = socket$inet6(0xa, 0x100000000000001, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r1, 0x1000008912, &(0x7f0000000140)="0800b5055e0bcfe87b0071")
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x72, &(0x7f0000000080)=""/4096, &(0x7f0000001140)=0x1000)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0x2, 0x32, 0xffffffffffffffff, 0x0)

03:21:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4004, 0x2, 0x12, r0, 0x0)

03:21:35 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  502.582664][T10824] binder: binder_mmap: 10817 20ffb000-21000000 bad vm_flags failed -1
03:21:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x19, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:35 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4005, 0x2, 0x12, r0, 0x0)

[  502.693657][T10869] binder: binder_mmap: 10844 20ffb000-21000000 bad vm_flags failed -1
03:21:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000100)={[], 0x1f004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0x8090ae81, 0x0)

[  502.836789][T10947] binder: binder_mmap: 10945 20ffb000-21000000 bad vm_flags failed -1
03:21:46 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:21:46 executing program 3:
r0 = socket$inet6(0xa, 0x100000000000001, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0xe, &(0x7f0000000080)=""/4096, &(0x7f0000001140)=0x1000)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0x2, 0x32, 0xffffffffffffffff, 0x0)

03:21:46 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:46 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4006, 0x2, 0x12, r0, 0x0)

03:21:46 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1a, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:46 executing program 4 (fault-call:5 fault-nth:0):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  513.027814][T10967] binder: binder_mmap: 10966 20ffb000-21000000 bad vm_flags failed -1
[  513.028610][T10961] FAULT_INJECTION: forcing a failure.
[  513.028610][T10961] name failslab, interval 1, probability 0, space 0, times 0
[  513.058674][T10961] CPU: 1 PID: 10961 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  513.067074][T10961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
03:21:46 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1b, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  513.077679][T10961] Call Trace:
[  513.080995][T10961]  dump_stack+0x1d8/0x2f8
[  513.085523][T10961]  should_fail+0x555/0x770
[  513.089972][T10961]  __should_failslab+0x11a/0x160
[  513.095520][T10961]  ? getname_flags+0xba/0x640
[  513.100446][T10961]  should_failslab+0x9/0x20
[  513.104984][T10961]  kmem_cache_alloc+0x56/0x2e0
[  513.109882][T10961]  getname_flags+0xba/0x640
[  513.114685][T10961]  do_renameat2+0x129/0xff0
[  513.120318][T10961]  ? check_preemption_disabled+0xb7/0x2a0
03:21:46 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1c, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  513.126261][T10961]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  513.133461][T10961]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[  513.139382][T10961]  ? trace_hardirqs_on_thunk+0x1a/0x20
[  513.145130][T10961]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[  513.151411][T10961]  __x64_sys_renameat+0x9e/0xb0
[  513.156375][T10961]  do_syscall_64+0xf7/0x1c0
[  513.161301][T10961]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  513.167453][T10961] RIP: 0033:0x459a59
03:21:46 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1d, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:46 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1e, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  513.171364][T10961] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  513.191473][T10961] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
[  513.199905][T10961] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  513.208125][T10961] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  513.216108][T10961] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:21:46 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4007, 0x2, 0x12, r0, 0x0)

03:21:46 executing program 3 (fault-call:8 fault-nth:0):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  513.224292][T10961] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  513.232301][T10961] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
[  513.256534][T11085] binder: binder_mmap: 11083 20ffb000-21000000 bad vm_flags failed -1
[  513.312724][T11089] FAULT_INJECTION: forcing a failure.
[  513.312724][T11089] name failslab, interval 1, probability 0, space 0, times 0
[  513.330390][T11089] CPU: 1 PID: 11089 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  513.339204][T11089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  513.350505][T11089] Call Trace:
[  513.353998][T11089]  dump_stack+0x1d8/0x2f8
[  513.358447][T11089]  should_fail+0x555/0x770
[  513.363094][T11089]  __should_failslab+0x11a/0x160
[  513.368555][T11089]  should_failslab+0x9/0x20
[  513.368568][T11089]  kmem_cache_alloc_node+0x65/0x280
[  513.368580][T11089]  ? copy_process+0x501/0x5970
[  513.368593][T11089]  copy_process+0x501/0x5970
[  513.378618][T11089]  ? refcount_sub_and_test_checked+0x179/0x230
[  513.378676][T11089]  ? vfs_write+0x4a2/0x590
[  513.399010][T11089]  ? __f_unlock_pos+0x19/0x20
[  513.404119][T11089]  _do_fork+0x13f/0x5b0
[  513.408472][T11089]  ? debug_smp_processor_id+0x1c/0x20
[  513.413852][T11089]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  513.420283][T11089]  __x64_sys_clone+0x1ec/0x230
[  513.425469][T11089]  do_syscall_64+0xf7/0x1c0
[  513.430227][T11089]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  513.436353][T11089] RIP: 0033:0x459a59
[  513.440295][T11089] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  513.461153][T11089] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  513.469797][T11089] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  513.478609][T11089] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  513.486930][T11089] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  513.495066][T11089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  513.503346][T11089] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:21:54 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:21:54 executing program 1:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:21:54 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x21, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:21:54 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4008, 0x2, 0x12, r0, 0x0)

03:21:54 executing program 4 (fault-call:5 fault-nth:1):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:21:54 executing program 3 (fault-call:8 fault-nth:1):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  521.340865][T11104] binder: binder_mmap: 11098 20ffb000-21000000 bad vm_flags failed -1
[  521.344402][T11105] FAULT_INJECTION: forcing a failure.
[  521.344402][T11105] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  521.355734][T11101] FAULT_INJECTION: forcing a failure.
[  521.355734][T11101] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  521.362273][T11105] CPU: 1 PID: 11105 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  521.383355][T11105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  521.393400][T11105] Call Trace:
[  521.396685][T11105]  dump_stack+0x1d8/0x2f8
[  521.401005][T11105]  should_fail+0x555/0x770
[  521.405465][T11105]  should_fail_alloc_page+0x55/0x60
[  521.410651][T11105]  prepare_alloc_pages+0x283/0x460
[  521.415753][T11105]  __alloc_pages_nodemask+0xb2/0x5d0
[  521.421053][T11105]  kmem_getpages+0x4d/0xa00
[  521.425560][T11105]  cache_grow_begin+0x7e/0x2c0
[  521.430318][T11105]  cache_alloc_refill+0x311/0x3f0
[  521.435340][T11105]  ? check_preemption_disabled+0xb7/0x2a0
[  521.441052][T11105]  kmem_cache_alloc+0x2b9/0x2e0
[  521.445889][T11105]  ? getname_flags+0xba/0x640
[  521.450575][T11105]  getname_flags+0xba/0x640
[  521.455087][T11105]  do_renameat2+0x129/0xff0
[  521.459580][T11105]  ? check_preemption_disabled+0xb7/0x2a0
[  521.465295][T11105]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  521.471353][T11105]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[  521.477077][T11105]  ? trace_hardirqs_on_thunk+0x1a/0x20
[  521.482568][T11105]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[  521.488290][T11105]  __x64_sys_renameat+0x9e/0xb0
[  521.493137][T11105]  do_syscall_64+0xf7/0x1c0
[  521.497629][T11105]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  521.503509][T11105] RIP: 0033:0x459a59
[  521.507389][T11105] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  521.526977][T11105] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
[  521.535373][T11105] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  521.543332][T11105] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  521.551291][T11105] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  521.559249][T11105] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  521.567209][T11105] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
[  521.575192][T11101] CPU: 0 PID: 11101 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  521.583099][T11101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  521.593165][T11101] Call Trace:
[  521.596472][T11101]  dump_stack+0x1d8/0x2f8
[  521.600816][T11101]  should_fail+0x555/0x770
[  521.605248][T11101]  should_fail_alloc_page+0x55/0x60
[  521.610431][T11101]  prepare_alloc_pages+0x283/0x460
[  521.610443][T11101]  __alloc_pages_nodemask+0xb2/0x5d0
[  521.610460][T11101]  kmem_getpages+0x4d/0xa00
[  521.610471][T11101]  cache_grow_begin+0x7e/0x2c0
[  521.610483][T11101]  cache_alloc_refill+0x311/0x3f0
[  521.610493][T11101]  ? check_preemption_disabled+0xb7/0x2a0
[  521.610506][T11101]  kmem_cache_alloc_node+0x1b2/0x280
[  521.610516][T11101]  ? copy_process+0x501/0x5970
[  521.610529][T11101]  copy_process+0x501/0x5970
[  521.634080][T11109] FAULT_INJECTION: forcing a failure.
[  521.634080][T11109] name failslab, interval 1, probability 0, space 0, times 0
[  521.635299][T11101]  ? refcount_sub_and_test_checked+0x179/0x230
[  521.635317][T11101]  ? vfs_write+0x4a2/0x590
[  521.635329][T11101]  ? __f_unlock_pos+0x19/0x20
[  521.635356][T11101]  _do_fork+0x13f/0x5b0
03:21:54 executing program 4 (fault-call:5 fault-nth:2):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  521.687591][T11101]  ? debug_smp_processor_id+0x1c/0x20
[  521.692960][T11101]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  521.699026][T11101]  __x64_sys_clone+0x1ec/0x230
[  521.703818][T11101]  do_syscall_64+0xf7/0x1c0
[  521.708330][T11101]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  521.714217][T11101] RIP: 0033:0x459a59
[  521.718107][T11101] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:21:54 executing program 1:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  521.737711][T11101] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  521.746312][T11101] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  521.754321][T11101] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  521.762300][T11101] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  521.770282][T11101] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  521.778262][T11101] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:21:55 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  521.786285][T11109] CPU: 1 PID: 11109 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  521.794195][T11109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  521.804252][T11109] Call Trace:
[  521.807552][T11109]  dump_stack+0x1d8/0x2f8
[  521.811895][T11109]  should_fail+0x555/0x770
[  521.816326][T11109]  __should_failslab+0x11a/0x160
[  521.821277][T11109]  ? getname_flags+0xba/0x640
[  521.825959][T11109]  should_failslab+0x9/0x20
[  521.830465][T11109]  kmem_cache_alloc+0x56/0x2e0
[  521.835227][T11109]  getname_flags+0xba/0x640
03:21:55 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4009, 0x2, 0x12, r0, 0x0)

03:21:55 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x23, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  521.839741][T11109]  do_renameat2+0x1f5/0xff0
[  521.844254][T11109]  ? check_preemption_disabled+0xb7/0x2a0
[  521.849994][T11109]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  521.856080][T11109]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[  521.861808][T11109]  ? trace_hardirqs_on_thunk+0x1a/0x20
[  521.867286][T11109]  __x64_sys_renameat+0x9e/0xb0
[  521.872151][T11109]  do_syscall_64+0xf7/0x1c0
[  521.876665][T11109]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  521.882568][T11109] RIP: 0033:0x459a59
03:21:55 executing program 3 (fault-call:8 fault-nth:2):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  521.886467][T11109] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  521.889913][T11116] binder: binder_mmap: 11115 20ffb000-21000000 bad vm_flags failed -1
[  521.906080][T11109] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
[  521.906091][T11109] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  521.906096][T11109] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  521.906100][T11109] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  521.906105][T11109] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  521.906109][T11109] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
[  522.012289][T11124] FAULT_INJECTION: forcing a failure.
[  522.012289][T11124] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  522.045780][T11124] CPU: 0 PID: 11124 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  522.053721][T11124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  522.063785][T11124] Call Trace:
[  522.067090][T11124]  dump_stack+0x1d8/0x2f8
[  522.071437][T11124]  should_fail+0x555/0x770
[  522.075866][T11124]  should_fail_alloc_page+0x55/0x60
[  522.075876][T11124]  prepare_alloc_pages+0x283/0x460
[  522.075892][T11124]  __alloc_pages_nodemask+0xb2/0x5d0
[  522.075913][T11124]  copy_process+0x590/0x5970
[  522.075930][T11124]  ? refcount_sub_and_test_checked+0x179/0x230
[  522.075944][T11124]  ? vfs_write+0x4a2/0x590
[  522.075954][T11124]  ? __f_unlock_pos+0x19/0x20
[  522.075976][T11124]  _do_fork+0x13f/0x5b0
[  522.075990][T11124]  ? debug_smp_processor_id+0x1c/0x20
[  522.086300][T11124]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  522.086316][T11124]  __x64_sys_clone+0x1ec/0x230
[  522.086334][T11124]  do_syscall_64+0xf7/0x1c0
[  522.086348][T11124]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  522.086357][T11124] RIP: 0033:0x459a59
[  522.086366][T11124] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  522.086371][T11124] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  522.086379][T11124] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  522.086383][T11124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  522.086388][T11124] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  522.086393][T11124] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  522.086403][T11124] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:22:04 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x24, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:04 executing program 1:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:04 executing program 4 (fault-call:5 fault-nth:3):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x400a, 0x2, 0x12, r0, 0x0)

03:22:04 executing program 3 (fault-call:8 fault-nth:3):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:04 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  531.754535][T11143] binder: binder_mmap: 11138 20ffb000-21000000 bad vm_flags failed -1
[  531.766168][T11142] FAULT_INJECTION: forcing a failure.
[  531.766168][T11142] name failslab, interval 1, probability 0, space 0, times 0
[  531.786369][T11139] FAULT_INJECTION: forcing a failure.
[  531.786369][T11139] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  531.799625][T11139] CPU: 0 PID: 11139 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  531.799633][T11139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  531.799637][T11139] Call Trace:
[  531.799654][T11139]  dump_stack+0x1d8/0x2f8
[  531.799668][T11139]  should_fail+0x555/0x770
[  531.799685][T11139]  should_fail_alloc_page+0x55/0x60
[  531.799693][T11139]  prepare_alloc_pages+0x283/0x460
[  531.799705][T11139]  __alloc_pages_nodemask+0xb2/0x5d0
[  531.799715][T11139]  ? dput+0x23/0x6f0
[  531.799729][T11139]  kmem_getpages+0x4d/0xa00
[  531.799745][T11139]  cache_grow_begin+0x7e/0x2c0
[  531.799760][T11139]  cache_alloc_refill+0x311/0x3f0
[  531.799770][T11139]  ? check_preemption_disabled+0xb7/0x2a0
[  531.799785][T11139]  kmem_cache_alloc+0x2b9/0x2e0
[  531.799793][T11139]  ? getname_flags+0xba/0x640
[  531.799803][T11139]  getname_flags+0xba/0x640
[  531.799816][T11139]  do_renameat2+0x1f5/0xff0
[  531.887529][T11139]  ? check_preemption_disabled+0xb7/0x2a0
[  531.893232][T11139]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  531.899288][T11139]  ? trace_irq_disable_rcuidle+0x23/0x1e0
[  531.904988][T11139]  ? trace_hardirqs_on_thunk+0x1a/0x20
[  531.910448][T11139]  __x64_sys_renameat+0x9e/0xb0
[  531.915281][T11139]  do_syscall_64+0xf7/0x1c0
[  531.919769][T11139]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  531.925644][T11139] RIP: 0033:0x459a59
[  531.929533][T11139] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  531.949118][T11139] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
[  531.957523][T11139] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  531.965487][T11139] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  531.973442][T11139] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  531.981678][T11139] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  531.989637][T11139] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
[  532.028397][T11142] CPU: 1 PID: 11142 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  532.036333][T11142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  532.046394][T11142] Call Trace:
[  532.049696][T11142]  dump_stack+0x1d8/0x2f8
[  532.054036][T11142]  should_fail+0x555/0x770
[  532.058468][T11142]  __should_failslab+0x11a/0x160
[  532.063504][T11142]  ? prepare_creds+0x3e/0x3c0
[  532.068192][T11142]  should_failslab+0x9/0x20
[  532.072715][T11142]  kmem_cache_alloc+0x56/0x2e0
[  532.077488][T11142]  prepare_creds+0x3e/0x3c0
[  532.081975][T11142]  copy_creds+0x147/0x6d0
[  532.086295][T11142]  copy_process+0xcef/0x5970
[  532.090901][T11142]  ? refcount_sub_and_test_checked+0x179/0x230
[  532.097041][T11142]  ? vfs_write+0x4a2/0x590
[  532.101438][T11142]  ? __f_unlock_pos+0x19/0x20
[  532.106102][T11142]  _do_fork+0x13f/0x5b0
[  532.110254][T11142]  ? debug_smp_processor_id+0x1c/0x20
[  532.115627][T11142]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  532.121800][T11142]  __x64_sys_clone+0x1ec/0x230
[  532.126567][T11142]  do_syscall_64+0xf7/0x1c0
[  532.131062][T11142]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.136934][T11142] RIP: 0033:0x459a59
[  532.140808][T11142] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  532.160395][T11142] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  532.168790][T11142] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
03:22:05 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x66, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:05 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:05 executing program 4 (fault-call:5 fault-nth:4):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:05 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x400b, 0x2, 0x12, r0, 0x0)

[  532.176760][T11142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  532.184712][T11142] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  532.192750][T11142] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  532.200700][T11142] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:22:05 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  532.312241][T11159] FAULT_INJECTION: forcing a failure.
[  532.312241][T11159] name failslab, interval 1, probability 0, space 0, times 0
[  532.330233][T11164] binder: binder_mmap: 11161 20ffb000-21000000 bad vm_flags failed -1
[  532.360009][T11159] CPU: 1 PID: 11159 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  532.367944][T11159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  532.378008][T11159] Call Trace:
[  532.381314][T11159]  dump_stack+0x1d8/0x2f8
[  532.385689][T11159]  should_fail+0x555/0x770
[  532.390121][T11159]  __should_failslab+0x11a/0x160
[  532.395106][T11159]  ? __d_alloc+0x2d/0x6e0
[  532.399441][T11159]  should_failslab+0x9/0x20
[  532.399470][T11159]  kmem_cache_alloc+0x56/0x2e0
[  532.399482][T11159]  __d_alloc+0x2d/0x6e0
[  532.399497][T11159]  d_alloc+0x4e/0x1d0
[  532.399510][T11159]  __lookup_hash+0xe5/0x290
[  532.399520][T11159]  do_renameat2+0x43b/0xff0
[  532.399535][T11159]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  532.399554][T11159]  __x64_sys_renameat+0x9e/0xb0
[  532.399567][T11159]  do_syscall_64+0xf7/0x1c0
[  532.399585][T11159]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  532.447366][T11159] RIP: 0033:0x459a59
[  532.451241][T11159] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  532.470839][T11159] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
[  532.479225][T11159] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  532.487181][T11159] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  532.495235][T11159] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  532.503192][T11159] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  532.511138][T11159] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
03:22:12 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x6c, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:12 executing program 3 (fault-call:8 fault-nth:4):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:12 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x400c, 0x2, 0x12, r0, 0x0)

03:22:12 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:12 executing program 4 (fault-call:5 fault-nth:5):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:12 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  539.057028][T11179] binder: binder_mmap: 11176 20ffb000-21000000 bad vm_flags failed -1
[  539.069067][T11177] FAULT_INJECTION: forcing a failure.
[  539.069067][T11177] name failslab, interval 1, probability 0, space 0, times 0
[  539.099894][T11178] FAULT_INJECTION: forcing a failure.
[  539.099894][T11178] name failslab, interval 1, probability 0, space 0, times 0
[  539.102445][T11177] CPU: 0 PID: 11177 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  539.120771][T11177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  539.130843][T11177] Call Trace:
[  539.134151][T11177]  dump_stack+0x1d8/0x2f8
[  539.138496][T11177]  should_fail+0x555/0x770
[  539.142935][T11177]  __should_failslab+0x11a/0x160
[  539.147951][T11177]  ? kzalloc+0x26/0x40
[  539.152017][T11177]  should_failslab+0x9/0x20
[  539.156519][T11177]  __kmalloc+0x7a/0x340
[  539.161157][T11177]  ? rcu_read_lock_sched_held+0x10b/0x170
[  539.166878][T11177]  kzalloc+0x26/0x40
[  539.170814][T11177]  security_prepare_creds+0x40/0x260
[  539.176102][T11177]  prepare_creds+0x2c3/0x3c0
[  539.180691][T11177]  copy_creds+0x147/0x6d0
[  539.185258][T11177]  copy_process+0xcef/0x5970
[  539.189924][T11177]  ? refcount_sub_and_test_checked+0x179/0x230
[  539.196087][T11177]  ? vfs_write+0x4a2/0x590
[  539.200510][T11177]  ? __f_unlock_pos+0x19/0x20
[  539.205222][T11177]  _do_fork+0x13f/0x5b0
[  539.209390][T11177]  ? debug_smp_processor_id+0x1c/0x20
[  539.214775][T11177]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  539.220861][T11177]  __x64_sys_clone+0x1ec/0x230
[  539.225652][T11177]  do_syscall_64+0xf7/0x1c0
[  539.230164][T11177]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  539.236050][T11177] RIP: 0033:0x459a59
[  539.240028][T11177] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  539.259629][T11177] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  539.268039][T11177] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  539.276012][T11177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  539.283981][T11177] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  539.291948][T11177] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
03:22:12 executing program 3 (fault-call:8 fault-nth:5):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:12 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x400d, 0x2, 0x12, r0, 0x0)

03:22:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x6d, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  539.299914][T11177] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  539.307906][T11178] CPU: 1 PID: 11178 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  539.315814][T11178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  539.325880][T11178] Call Trace:
[  539.329175][T11178]  dump_stack+0x1d8/0x2f8
[  539.333519][T11178]  should_fail+0x555/0x770
[  539.337950][T11178]  __should_failslab+0x11a/0x160
[  539.342964][T11178]  ? tomoyo_realpath_from_path+0xdc/0x7c0
03:22:12 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x400e, 0x2, 0x12, r0, 0x0)

[  539.348697][T11178]  should_failslab+0x9/0x20
[  539.351046][T11189] binder: binder_mmap: 11187 20ffb000-21000000 bad vm_flags failed -1
[  539.353206][T11178]  __kmalloc+0x7a/0x340
[  539.353233][T11178]  ? tomoyo_realpath_from_path+0xca/0x7c0
[  539.353246][T11178]  tomoyo_realpath_from_path+0xdc/0x7c0
[  539.376812][T11178]  tomoyo_path2_perm+0x246/0x9d0
[  539.376844][T11178]  tomoyo_path_rename+0xec/0x110
[  539.386728][T11178]  security_path_rename+0x211/0x2d0
[  539.386743][T11178]  do_renameat2+0x94d/0xff0
[  539.386769][T11178]  __x64_sys_renameat+0x9e/0xb0
[  539.386782][T11178]  do_syscall_64+0xf7/0x1c0
[  539.386798][T11178]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  539.411699][T11178] RIP: 0033:0x459a59
[  539.415600][T11178] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  539.421672][T11192] binder: binder_mmap: 11191 20ffb000-21000000 bad vm_flags failed -1
[  539.435211][T11178] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
03:22:12 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x6f, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  539.435223][T11178] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  539.435228][T11178] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  539.435233][T11178] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  539.435238][T11178] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  539.435242][T11178] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
[  539.441626][T11178] ERROR: Out of memory at tomoyo_realpath_from_path.
[  539.515331][T11196] FAULT_INJECTION: forcing a failure.
[  539.515331][T11196] name failslab, interval 1, probability 0, space 0, times 0
[  539.558039][T11196] CPU: 0 PID: 11196 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  539.565982][T11196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  539.576043][T11196] Call Trace:
[  539.579338][T11196]  dump_stack+0x1d8/0x2f8
[  539.583685][T11196]  should_fail+0x555/0x770
[  539.588111][T11196]  __should_failslab+0x11a/0x160
[  539.588126][T11196]  ? kzalloc+0x26/0x40
[  539.588136][T11196]  should_failslab+0x9/0x20
[  539.588146][T11196]  __kmalloc+0x7a/0x340
[  539.588154][T11196]  ? memset+0x31/0x40
[  539.588165][T11196]  kzalloc+0x26/0x40
[  539.588176][T11196]  security_task_alloc+0x48/0x200
[  539.588190][T11196]  copy_process+0x1783/0x5970
[  539.588227][T11196]  _do_fork+0x13f/0x5b0
[  539.588241][T11196]  ? debug_smp_processor_id+0x1c/0x20
[  539.588249][T11196]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  539.588263][T11196]  __x64_sys_clone+0x1ec/0x230
[  539.597272][T11196]  do_syscall_64+0xf7/0x1c0
[  539.597288][T11196]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  539.597297][T11196] RIP: 0033:0x459a59
[  539.597307][T11196] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  539.597313][T11196] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  539.597321][T11196] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  539.597326][T11196] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  539.597331][T11196] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  539.597336][T11196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  539.597342][T11196] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:22:20 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
bind$packet(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:20 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:20 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4010, 0x2, 0x12, r0, 0x0)

03:22:20 executing program 4 (fault-call:5 fault-nth:6):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:20 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x70, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:20 executing program 3 (fault-call:8 fault-nth:6):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:20 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4011, 0x2, 0x12, r0, 0x0)

[  547.408694][T11213] binder: binder_mmap: 11211 20ffb000-21000000 bad vm_flags failed -1
[  547.432855][T11217] FAULT_INJECTION: forcing a failure.
[  547.432855][T11217] name failslab, interval 1, probability 0, space 0, times 0
[  547.460027][T11215] FAULT_INJECTION: forcing a failure.
[  547.460027][T11215] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  547.473264][T11215] CPU: 1 PID: 11215 Comm: syz-executor.4 Not tainted 5.4.0-rc1+ #0
[  547.481157][T11215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  547.491218][T11215] Call Trace:
[  547.494514][T11215]  dump_stack+0x1d8/0x2f8
[  547.498844][T11215]  should_fail+0x555/0x770
[  547.503262][T11215]  should_fail_alloc_page+0x55/0x60
[  547.508479][T11215]  prepare_alloc_pages+0x283/0x460
[  547.513594][T11215]  __alloc_pages_nodemask+0xb2/0x5d0
[  547.518884][T11215]  kmem_getpages+0x4d/0xa00
[  547.523382][T11215]  cache_grow_begin+0x7e/0x2c0
[  547.528176][T11215]  cache_alloc_refill+0x311/0x3f0
[  547.533278][T11215]  ? check_preemption_disabled+0xb7/0x2a0
[  547.539014][T11215]  __kmalloc+0x318/0x340
[  547.543251][T11215]  ? tomoyo_realpath_from_path+0xdc/0x7c0
[  547.548964][T11215]  tomoyo_realpath_from_path+0xdc/0x7c0
[  547.554513][T11215]  tomoyo_path2_perm+0x246/0x9d0
[  547.559566][T11215]  tomoyo_path_rename+0xec/0x110
[  547.564505][T11215]  security_path_rename+0x211/0x2d0
[  547.569702][T11215]  do_renameat2+0x94d/0xff0
[  547.574215][T11215]  __x64_sys_renameat+0x9e/0xb0
[  547.579067][T11215]  do_syscall_64+0xf7/0x1c0
[  547.583569][T11215]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  547.589452][T11215] RIP: 0033:0x459a59
[  547.593348][T11215] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  547.612944][T11215] RSP: 002b:00007f7ab5134c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000108
[  547.621350][T11215] RAX: ffffffffffffffda RBX: 00007f7ab5134c90 RCX: 0000000000459a59
[  547.629316][T11215] RDX: 0000000000000003 RSI: 00000000200000c0 RDI: 0000000000000003
[  547.637280][T11215] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  547.645247][T11215] R10: 0000000020009000 R11: 0000000000000246 R12: 00007f7ab51356d4
[  547.653207][T11215] R13: 00000000004c7239 R14: 00000000004dcc30 R15: 0000000000000006
03:22:20 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  547.666171][T11217] CPU: 0 PID: 11217 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  547.674101][T11217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  547.684160][T11217] Call Trace:
[  547.687448][T11217]  dump_stack+0x1d8/0x2f8
[  547.687462][T11217]  should_fail+0x555/0x770
[  547.687478][T11217]  __should_failslab+0x11a/0x160
[  547.687488][T11217]  ? kzalloc+0x26/0x40
[  547.687498][T11217]  should_failslab+0x9/0x20
[  547.687506][T11217]  __kmalloc+0x7a/0x340
03:22:20 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  547.687512][T11217]  ? memset+0x31/0x40
[  547.687523][T11217]  kzalloc+0x26/0x40
[  547.687533][T11217]  security_task_alloc+0x48/0x200
[  547.687548][T11217]  copy_process+0x1783/0x5970
[  547.731581][T11217]  _do_fork+0x13f/0x5b0
[  547.735755][T11217]  ? debug_smp_processor_id+0x1c/0x20
[  547.741165][T11217]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  547.747248][T11217]  __x64_sys_clone+0x1ec/0x230
[  547.747269][T11217]  do_syscall_64+0xf7/0x1c0
[  547.747284][T11217]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  547.747294][T11217] RIP: 0033:0x459a59
03:22:20 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  547.747304][T11217] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  547.747308][T11217] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  547.747318][T11217] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  547.747323][T11217] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:22:21 executing program 3 (fault-call:8 fault-nth:7):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:21 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x71, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  547.747328][T11217] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  547.747334][T11217] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  547.747339][T11217] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  547.951969][T11238] FAULT_INJECTION: forcing a failure.
[  547.951969][T11238] name failslab, interval 1, probability 0, space 0, times 0
[  547.975707][T11238] CPU: 1 PID: 11238 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  547.983642][T11238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  547.993704][T11238] Call Trace:
[  547.997013][T11238]  dump_stack+0x1d8/0x2f8
[  548.001474][T11238]  should_fail+0x555/0x770
[  548.005938][T11238]  __should_failslab+0x11a/0x160
[  548.010880][T11238]  ? dup_fd+0x71/0xc90
[  548.014963][T11238]  should_failslab+0x9/0x20
[  548.019496][T11238]  kmem_cache_alloc+0x56/0x2e0
[  548.024249][T11238]  dup_fd+0x71/0xc90
[  548.028124][T11238]  ? __kasan_check_write+0x14/0x20
[  548.033230][T11238]  ? tomoyo_task_alloc+0xb3/0xf0
[  548.038196][T11238]  ? copy_semundo+0x38/0x220
[  548.042773][T11238]  copy_process+0x186a/0x5970
[  548.047448][T11238]  _do_fork+0x13f/0x5b0
[  548.051581][T11238]  ? debug_smp_processor_id+0x1c/0x20
[  548.057051][T11238]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  548.063239][T11238]  __x64_sys_clone+0x1ec/0x230
[  548.068128][T11238]  do_syscall_64+0xf7/0x1c0
[  548.072621][T11238]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  548.078541][T11238] RIP: 0033:0x459a59
[  548.082430][T11238] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  548.102171][T11238] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  548.110576][T11238] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  548.118547][T11238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  548.126522][T11238] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  548.134477][T11238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  548.142440][T11238] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:22:29 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
bind$packet(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:29 executing program 4 (fault-call:5 fault-nth:7):
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:29 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:29 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4012, 0x2, 0x12, r0, 0x0)

03:22:29 executing program 3 (fault-call:8 fault-nth:8):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:29 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  556.731521][T11254] binder: binder_mmap: 11250 20ffb000-21000000 bad vm_flags failed -1
[  556.740576][T11253] FAULT_INJECTION: forcing a failure.
[  556.740576][T11253] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  556.754413][T11253] CPU: 1 PID: 11253 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  556.762304][T11253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  556.772361][T11253] Call Trace:
[  556.775692][T11253]  dump_stack+0x1d8/0x2f8
[  556.775712][T11253]  should_fail+0x555/0x770
[  556.775731][T11253]  should_fail_alloc_page+0x55/0x60
[  556.775743][T11253]  prepare_alloc_pages+0x283/0x460
[  556.794782][T11253]  __alloc_pages_nodemask+0xb2/0x5d0
[  556.800072][T11253]  kmem_getpages+0x4d/0xa00
[  556.804568][T11253]  cache_grow_begin+0x7e/0x2c0
[  556.809333][T11253]  cache_alloc_refill+0x311/0x3f0
[  556.814363][T11253]  ? check_preemption_disabled+0xb7/0x2a0
[  556.820094][T11253]  kmem_cache_alloc+0x2b9/0x2e0
[  556.824943][T11253]  ? dup_fd+0x71/0xc90
03:22:30 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:30 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  556.829037][T11253]  dup_fd+0x71/0xc90
[  556.832944][T11253]  ? __kasan_check_write+0x14/0x20
[  556.838091][T11253]  ? tomoyo_task_alloc+0xb3/0xf0
[  556.843060][T11253]  ? copy_semundo+0x38/0x220
[  556.847678][T11253]  copy_process+0x186a/0x5970
[  556.852405][T11253]  _do_fork+0x13f/0x5b0
[  556.856574][T11253]  ? debug_smp_processor_id+0x1c/0x20
[  556.861965][T11253]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  556.868054][T11253]  __x64_sys_clone+0x1ec/0x230
[  556.872858][T11253]  do_syscall_64+0xf7/0x1c0
[  556.877418][T11253]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  556.883315][T11253] RIP: 0033:0x459a59
[  556.887205][T11253] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  556.887211][T11253] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  556.887219][T11253] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  556.887225][T11253] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:22:30 executing program 3 (fault-call:8 fault-nth:9):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:30 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:30 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4025, 0x2, 0x12, r0, 0x0)

[  556.887229][T11253] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  556.887235][T11253] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  556.887240][T11253] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  556.970774][T11271] binder: binder_mmap: 11270 20ffb000-21000000 bad vm_flags failed -1
[  557.006060][T11273] FAULT_INJECTION: forcing a failure.
[  557.006060][T11273] name failslab, interval 1, probability 0, space 0, times 0
[  557.025410][T11273] CPU: 0 PID: 11273 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  557.033364][T11273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  557.043438][T11273] Call Trace:
[  557.043457][T11273]  dump_stack+0x1d8/0x2f8
[  557.043472][T11273]  should_fail+0x555/0x770
[  557.043489][T11273]  __should_failslab+0x11a/0x160
[  557.043514][T11273]  should_failslab+0x9/0x20
[  557.043528][T11273]  kmem_cache_alloc_node_trace+0x6e/0x2d0
[  557.060487][T11273]  ? __kmalloc_node+0x3c/0x60
[  557.060503][T11273]  __kmalloc_node+0x3c/0x60
[  557.060517][T11273]  kvmalloc_node+0xcc/0x130
[  557.060532][T11273]  alloc_fdtable+0x16c/0x290
[  557.075445][T11273]  dup_fd+0x94f/0xc90
[  557.075470][T11273]  copy_process+0x186a/0x5970
[  557.075504][T11273]  _do_fork+0x13f/0x5b0
[  557.084482][T11273]  ? debug_smp_processor_id+0x1c/0x20
[  557.084494][T11273]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  557.084511][T11273]  __x64_sys_clone+0x1ec/0x230
[  557.084530][T11273]  do_syscall_64+0xf7/0x1c0
[  557.122750][T11273]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  557.128644][T11273] RIP: 0033:0x459a59
[  557.132550][T11273] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  557.152177][T11273] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  557.152188][T11273] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  557.152193][T11273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  557.152198][T11273] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  557.152203][T11273] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  557.152208][T11273] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:22:38 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
bind$packet(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:38 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x73, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:38 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0xc0)
syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x800)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TIOCLINUX7(r0, 0x541c, &(0x7f0000000040)={0x7, 0xc1})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:38 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:38 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4048, 0x2, 0x12, r0, 0x0)

03:22:38 executing program 3 (fault-call:8 fault-nth:10):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:38 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  565.104208][T11291] FAULT_INJECTION: forcing a failure.
[  565.104208][T11291] name failslab, interval 1, probability 0, space 0, times 0
[  565.125955][T11288] binder: binder_mmap: 11287 20ffb000-21000000 bad vm_flags failed -1
[  565.132429][T11291] CPU: 1 PID: 11291 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  565.142048][T11291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
03:22:38 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  565.152107][T11291] Call Trace:
[  565.155409][T11291]  dump_stack+0x1d8/0x2f8
[  565.159756][T11291]  should_fail+0x555/0x770
[  565.164191][T11291]  __should_failslab+0x11a/0x160
[  565.169151][T11291]  should_failslab+0x9/0x20
[  565.173674][T11291]  kmem_cache_alloc_node_trace+0x6e/0x2d0
[  565.179404][T11291]  ? __kmalloc_node+0x3c/0x60
[  565.184093][T11291]  __kmalloc_node+0x3c/0x60
[  565.188640][T11291]  kvmalloc_node+0xcc/0x130
[  565.193160][T11291]  alloc_fdtable+0x16c/0x290
[  565.197765][T11291]  dup_fd+0x94f/0xc90
03:22:38 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:38 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  565.201772][T11291]  copy_process+0x186a/0x5970
[  565.206483][T11291]  _do_fork+0x13f/0x5b0
[  565.210645][T11291]  ? debug_smp_processor_id+0x1c/0x20
[  565.216024][T11291]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  565.222144][T11291]  __x64_sys_clone+0x1ec/0x230
[  565.226934][T11291]  do_syscall_64+0xf7/0x1c0
[  565.231455][T11291]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  565.237348][T11291] RIP: 0033:0x459a59
03:22:38 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x404c, 0x2, 0x12, r0, 0x0)

[  565.241242][T11291] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  565.261715][T11291] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  565.270142][T11291] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  565.277287][T11304] binder: binder_mmap: 11302 20ffb000-21000000 bad vm_flags failed -1
[  565.278153][T11291] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  565.278160][T11291] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:22:38 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4060, 0x2, 0x12, r0, 0x0)

[  565.278166][T11291] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  565.278172][T11291] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  565.398989][T11310] binder: binder_mmap: 11309 20ffb000-21000000 bad vm_flags failed -1
03:22:48 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:48 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x74, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:48 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x400, 0x400)
r3 = gettid()
waitid(0x0, r3, 0x0, 0x0, &(0x7f0000000480))
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f00000001c0)={{0x8, 0x0, 0x7}, 0x1, 0x30, 0x1000, r3, 0x0, 0xbe, 'syz1\x00', &(0x7f0000000040), 0x0, [], [0x0, 0x1000, 0x3, 0x7]})
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:48 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:48 executing program 3 (fault-call:8 fault-nth:11):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:48 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4068, 0x2, 0x12, r0, 0x0)

[  575.522302][T11326] FAULT_INJECTION: forcing a failure.
[  575.522302][T11326] name failslab, interval 1, probability 0, space 0, times 0
[  575.536667][T11326] CPU: 1 PID: 11326 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  575.544588][T11326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  575.550773][T11325] binder: binder_mmap: 11323 20ffb000-21000000 bad vm_flags failed -1
[  575.554729][T11326] Call Trace:
[  575.554749][T11326]  dump_stack+0x1d8/0x2f8
03:22:48 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x406c, 0x2, 0x12, r0, 0x0)

03:22:48 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  575.554764][T11326]  should_fail+0x555/0x770
[  575.575031][T11326]  __should_failslab+0x11a/0x160
[  575.579977][T11326]  ? copy_process+0x1a54/0x5970
[  575.584832][T11326]  should_failslab+0x9/0x20
[  575.589344][T11326]  kmem_cache_alloc+0x56/0x2e0
[  575.594218][T11326]  ? copy_fs_struct+0x185/0x230
[  575.599089][T11326]  copy_process+0x1a54/0x5970
[  575.603806][T11326]  _do_fork+0x13f/0x5b0
[  575.607973][T11326]  ? debug_smp_processor_id+0x1c/0x20
[  575.608933][T11333] binder: binder_mmap: 11331 20ffb000-21000000 bad vm_flags failed -1
03:22:48 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:48 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4074, 0x2, 0x12, r0, 0x0)

[  575.613347][T11326]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  575.613366][T11326]  __x64_sys_clone+0x1ec/0x230
[  575.613389][T11326]  do_syscall_64+0xf7/0x1c0
[  575.636845][T11326]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  575.642751][T11326] RIP: 0033:0x459a59
[  575.646660][T11326] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:22:48 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x75, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:48 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x80, 0x0)
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
pselect6(0x40, &(0x7f0000000040)={0x101, 0xf34b, 0xfffffffffffffffb, 0x31, 0x6, 0x1, 0x8, 0x3}, &(0x7f0000000100)={0x40, 0x8001, 0x0, 0xfffffffffffffffc, 0x2, 0x2, 0x8, 0x865}, &(0x7f0000000140)={0x4, 0x9, 0x3, 0x401, 0x0, 0x100000001, 0x80, 0x62}, &(0x7f0000000200)={0x0, 0x1c9c380}, &(0x7f0000000280)={&(0x7f0000000240)={0x5}, 0x8})
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x8)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  575.666271][T11326] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  575.674690][T11326] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  575.676159][T11338] binder: binder_mmap: 11336 20ffb000-21000000 bad vm_flags failed -1
[  575.682682][T11326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  575.682688][T11326] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  575.682693][T11326] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  575.682698][T11326] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:22:57 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:22:57 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:22:57 executing program 3 (fault-call:8 fault-nth:12):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:22:57 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x76, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:57 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x407a, 0x2, 0x12, r0, 0x0)

03:22:57 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
symlinkat(&(0x7f0000443ff6)='./control\x00', r3, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:22:57 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x10)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  583.908019][T11363] binder: binder_mmap: 11359 20ffb000-21000000 bad vm_flags failed -1
[  583.931650][T11366] FAULT_INJECTION: forcing a failure.
[  583.931650][T11366] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  583.944887][T11366] CPU: 0 PID: 11366 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
03:22:57 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x400000, 0x2, 0x12, r0, 0x0)

[  583.952781][T11366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  583.962866][T11366] Call Trace:
[  583.966169][T11366]  dump_stack+0x1d8/0x2f8
[  583.970517][T11366]  should_fail+0x555/0x770
[  583.974940][T11366]  should_fail_alloc_page+0x55/0x60
[  583.980134][T11366]  prepare_alloc_pages+0x283/0x460
[  583.985251][T11366]  __alloc_pages_nodemask+0xb2/0x5d0
[  583.985271][T11366]  kmem_getpages+0x4d/0xa00
[  583.985285][T11366]  cache_grow_begin+0x7e/0x2c0
[  583.999811][T11366]  cache_alloc_refill+0x311/0x3f0
03:22:57 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x7a, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:22:57 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  584.004836][T11366]  ? check_preemption_disabled+0xb7/0x2a0
[  584.004854][T11366]  kmem_cache_alloc+0x2b9/0x2e0
[  584.004864][T11366]  ? copy_process+0x1a54/0x5970
[  584.004877][T11366]  copy_process+0x1a54/0x5970
[  584.025044][T11366]  _do_fork+0x13f/0x5b0
[  584.029208][T11366]  ? debug_smp_processor_id+0x1c/0x20
[  584.034584][T11366]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  584.040673][T11366]  __x64_sys_clone+0x1ec/0x230
[  584.045447][T11366]  do_syscall_64+0xf7/0x1c0
[  584.045465][T11366]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  584.045473][T11366] RIP: 0033:0x459a59
[  584.045485][T11366] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  584.079327][T11366] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  584.079338][T11366] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  584.079344][T11366] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:22:57 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x7b, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  584.079350][T11366] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  584.079357][T11366] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  584.079363][T11366] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  584.092375][T11377] binder: binder_mmap: 11370 20ffb000-213fb000 bad vm_flags failed -1
03:22:57 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:23:04 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00'})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:23:04 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000040)='./file0\x00', 0x62, 0x8, &(0x7f0000002500)=[{&(0x7f00000001c0)="85beeb267585bf7433748c45da2384d996a949db77518690ce9cbdf0b878bfcab8db667f73a8833749dd6a1635834faab84928d9a342cd4896900917a61728befc810adf53b487a3421964a5bf69a4bbdb30842ef680fb78d1beb9cfc7269b64e6713f38a7af44ff28164a5a32a501385b03297b2c81011fddfa4876d313f2d172624b363eee8b789b08608ce74048382fb9d37a34968abfff1c88517736aa76227aea89b4b843d0ec7eda5bdf09ebd32ca83cb62b5407d6b500a13286bb57163b6fa554649e72432831aff773cf7a483e1618163006d523cdd4399955d4e4ac633cbf4526cd7650de2d5625b03604a2fddcc0881f11b97ee7b2dda248a625a03e68f0baaef00ee7dbb53c890bf6a287c51c6a12c6547d72888ab33969eaa1e0c21e0a7e02bf4bc948e4ac9bf348563ee3817552676c2deae13f1c4dba430c621dc5a2177281d874e5260fc8eb0acb38f62d02c80a7198cc0a263811de9920d37eb5f9266f3f2cf7a6de0fc1399e7f6ca45d2608fda09381d41bfefa3032050b76e6e44b95bd858d7e86327ab8690b723030eb368ba1db0be7c467dea591b579da84a42cedc4a9fe47493de4cde57e9d065f05df472835eeb508a5df1e2f71618eddc365755c445a8787d921acf27f27c1a86ba0349b3e3960336f3664fd78d92ff1292e3068d30673a6baed6b8bf70f9e6efe5200d21bc98389b9f314a8f61803d25a0abc830a69c17a89aa7b9d1f9973480ce43cbffe77c73832b2e96512fb3c77fbecd8c21793eb1edcaba2c9c7afbbbd3f0dd3fea07c17f393b87a30b1db9623c94b774a68f972543cbded56e69e7c8cd9efbcfcf303983fd7bd35923f51f7e253774dcae6cc40976b12346272b67dc8917077f6d0fb9464cfc839f86837480add99b080d7dc5f3e32347e7fdcbe549fc0888e62051c1e879dd891e02808f33a103feb13451e244c6a2647494c91a95eb39bace83c7bbd0119050b6949640f4597ad8e8c285d040062d7851f68cd64b759efe7767b2154d0feac349fc4f1890ddfaa8ec013d941c0bf5677ac36a792036c5ec5ba27d322fbf8322415021a8988f8b30b43a308485de599fd007c23c13f89865ec45ac06963ad0f65d3b35a09199c7083af0326a8772fa58264ad5112548e2cf3aee6e56724b7328086752beb7a0266db4a4f7fa96e1944ef7fd2aeb856ace95c30c950ab50f7856412f624066d4788e0cbe3cfb8d5c9e2b4d81a046d62f51accca3c6f57f3d0d5fdd54234d588479430c3bf18e04000c21090364bb8bd5d4506de6ab91c7b8cec778ae1fa83f7b6320967d6eb432d5089e35d191f35f6021ab083df4f445d5d48bf681dcb46a28423dad9e0e35acdc252a38ad5edc2354d944d210dfd7902fb920a8a2bdeb34902eeac6d04faa8864bb6164011f42275446b4b6acbfb9ea99e65e82c25102c362f59226eb96f1c60e0c517a3b308798f6840dc40315910ed3d03c86f610a0184a5fee2a21ee24743845901e5fb750374bad10bc2e8645a18ae93a2fa3edd433b83be94c6b5598b221223bd7795139aeacd0239f713d20962622eede698d6811260686c66998acb34fa732283ac6a6c12528448df43ab07ea87b347c6d4567c694ecedce45d278d339f739ec484fef215961a92d03fd70c74f97bf2c16ccc6f8209d48f6fd7dd0e593979425d285e875ce7732efc6a6f2b1aeb851c22af1001896e4fe497501fe6b07091aa321f9a94d813fc19aad574482995fc4a0cc21ef8a0cffe1525fe6c3bab367912e6487f7e73d19051b2892282455fdd973f49052e32b42f7e9188f04708cfe6ae35bdcf6edfd2dc425fea76703565eb2e6108c24d113cf7cc059e365973c5c323313cc6c15a748d745ec373b246f0b9f9c5d68482e21e49911f9c2a241a6e2540d9a2d1e0af994879bc99d75584543738c0921f9b929ed846ddff5b30eefb602e690959150a98be2dc62603ed78446046d5ddb5840983d5334b05ec2336900917f518e6ab0b95417dc3c9c54c45661ff914f07078f47b7264e150e94625b8e8fac56f24231b6b650458c0832d05df9d8c39822fcbcee4c73f12cb2244f4fd9f5d37261c73f6a43b1a2106a713b7866d67ed67f423db6c43bfd9c2b5b548eca58c81587adc55e5d6dd80de1be8c898ae04f3e1cc7735a6dbf8289dcd50d2cf423ab15e7efb304d65b35ee0cd4da5508e4fcb000472f302acb52243444433880976044ecbf89ba68918da0218385505cf4d4e0ff010c44921fa79586bf9fdfd06fa0ab9f9fac64d6ab35d1a3ad3c37f575266e9ce081009bcb7322bb638354a6cdaecc80bae04d37b1978360f496df1c4cf90730adebb087b614ca86e4672d24545414be0293eda8f981cb06004d1ca330356d35b222fca2a08321c55e85f6824978e278a5b45f7b56977b4594ba854a6ce929bf0368384d8cb9ee38bb82878012138a4ef421e532da682bed20dcca74566328ea385c1c5801f774994dbb22a2432eceb5909b9f6ff14feb0ce2aaec3df67f84ec7fce52a7545b45dec752241db0b2d5268295ea9d4d76297c9e73b58ec64e9c25f086a8032fc037dc77ebe37fbc06e6694dd86ef1b578b968b6ed92fd3163823476bc79abcaf17463ec36fce18b696ce8e64e1559ad3849bdbb158da94454310e82caef6ccfb3c4d6242a3aa2d8c0f3558addaec4b1ba1a99cec9d2178cde2ae161deafba080b8ae90820e3115f50c56346453487dd924bf5bb5362bcb0b1cc6cdc347876bae3447d57a72f60a0ca527b30abc7743e6a20a72d93c96a1e429aec31dfa1e3e9268d3e4474708820fd8ecb1facf42b19ef2a1d104fc89bfd7ffed29f8c5f48678ac6ee1099dd5bf3b7e1839ae1b034244e83c96d941d22438225d644d852b5ae165e8f6f4e397bea4d61d71e2684a2ece05388bf254bfce158d5c1e370d25e8e7a385dcbde4dab6238b063556ada59a5403ab917f042b9ee8286389704ac9aef41a414bd35b7fbc556eb3ff9d519d773c8d332f065b1dd30c986345c40abd4dc37151ebad819b1546a3c20c197913a92adc0a9b079231f9f98d14a84bb086a26d5ee6edcf75a7977d1cada6b2c374147a83d0e7e588de7f6405fc66f8ae7442f63290b959b23d25d6c515c09411b13bc8c86e1a98f9ca4970f6742fc414782f76125942a723a9708dac355cc7f07537b7c8781c52390cd81282e2cb6c034ba3fd4760e844d642ce0122e01767d2558ca3290c73b2d3d0d9150ed93a6878450c74603d25f5426569b260adb8a9453a94d295be339f4889665040c753f5674016cdb291f0b46a55e106b97c9f3c8a3acc6ba57592a9652941e8b12f8cf71b2dc4129d978644a9295e8bd4816d426649deada5e86bfa973ae6b5a335afe5c7c7e32c997aa851483629005e008ca46ddf94af5b3a3926066dffff0803cb7699ac10ada8a488593e8df2685f22f12e3accde2d04e955c7ff48bdd0a063196e4c7f232cc1c19356b4a19515329461484d4948c7920e421134478269e6ad416f8addad78162ab0be43275658a64e220ab06093d01fae46e0c89c76533cc35246c390f6ef6659fb2a834f02e469b7471eb58124c8bda2151e70a24debc7f0a35eef3e03c0eafe87e5a9dddd7f3dc2e4f7e0bb2caf7ed217618be449926123cab2c883cdfda57a067ba8cb983e3df1c2233818df096f8495ed3d2a2de0f4e275653011b379da867f307e2464bf00ebdda7fb5d71ad4f3371c716cd6280e838cff36ec02b43959cdd4e9255dfbdd215181830f696e964256cfd11164bb65d7c389ac956c6373437f81d01bc908b053d5a781b3400145839238c85dd761acce9923bf8e9c1f86e50bdb047bb9d2c83a0016a0cc4bcb05ff0c7ef7487ad2d7878586c059b0cb9187dbbc3ad498d262bf2c6bb8334078a82b13243f03c21e36d4e9ad29152cef2b70d7ebb87601a9201e37516bbd70b79c04d3e840902b307e1d0b0f592f877575976fcc85b967812018884b4102b06cc2e059680aff24ed3f36d86f96f0f313e08c07a3a0afc72f6c7bdebbb28ff3a9676c1cc408881de1b21085ec56edc16266957c86c2f0c2b4fc00b4a47babcb4dd854d385200583a73993b5455ed07d2d2ea7429b42d8080c22ea1e1142d0393c102c93c26d8f8a61f84260a7f5846c3487a55d9d752f21d0533fdb8c2d596c16cadc7e05d4742a442ba923576a5e0469eabde7ecdb5e3694a9c392cf885d69666e1d94b55eb2d7141613285c831eff0562b084210269d880b2d051cc54c9a4a67f452a4c130ac49962af668606793e2b02e0a0b71d1e3a581055f7cd49e6f7fd2dc0dd57d034530bbf61a51c296de04cc3a53a4f3259e18e69c4318fe3fdabf09659b87300fdeff5fbf43f70f92bea31df7dfc3d9a8064bf4221677365903e051ed4ea043d7814faeba1a04ae4c1eefa0ef72ec4f8f8a6547d36826144693a4d3c97f76380f7df7f340646a3a85be7c9edb0d33e230ddd778357e32341119b650a501d5b4987713e1e5f953a997fb01383b0945e5f17136e41146494298374f33cd1042170180d311e8a862e8d4890f9cf22df75f82ac02a52d983930d4178d95d21da6959a176451826b2c9ab9b11a2c03be28ddabcaeb43567a4bb6bfc7d9557b970554267254e687669fe61b13d17f9fed6fa57ec1384fd4846e849467a73aea5196904f47fd726a989b74be5f67ee2399be1c39a172b35bf7845e86528f63bc0243187bd3cb905ff4af1e994b94d887215e357a9d052a5186fe7a44994825ce2922b316c9eab842bce8088927f5985e6c0928a3f21450912f30bf865798afee2ef7f55142914718845eb90cbeebfe49c547d2ce878ff87bc5197b658c8aaba3728ee3d47fb1cbe5bb77a2444358bf11203ce0b10a6ddb9ed1b47ca9d29178fa0749cd66cf8c58ec700cb81eaf5db98a957d72232dd0941d33f01da5896695ea2b7ff8b7bd209be081ee2737a6ea7809fbd1d3151bd992f2647f5a9e4d721cf53fe400d552ea6f6961faa3fc831053aa556e5847447887e33f28747ddd7f7f47804bb7e82203f3e109fb1465da065319681e4c74b8919aac9691204b54c648c86eefa94aabe2d3e6e1c0b64e77a8ba6cff136ab503def9967bb9fbb8e4b2892a2be38fe1c4333020bae6660d264a7730da9af496bc4af018bf91877809f9d2a534ea0d6ed4ad0b6be3f1c69d8a24d30392211d9469292d8a30829d93ccc8519ad1f657b0cde64f3c72d5ab3a09a9818a674c36ea1f73d3e15df2d0a62594460db263146200b927f5a27f019a997381eae657d957cb1760c01284534bc383273900ce8cef1a2110f8886d76db212841a21e0db0d68f36551913b6ff40eef79079dfaf694a28fdbf8c460e17569f85ad253a24d6710c36fcb6b3a393da4cb6dd64ed6c70d81a5660304628fdfd8d7a72ac3edfce64eac7308b1b39cf2cf26fd870c0fdb963d90a1305d9314bd26580c907f04b9a7435ee384e31977f7e27cc2452715339dc0aea655f3562d50f8a6452779ad162501a1307b48f3f7aceb56134c9c76bea3b942eb588b3334fe6dff71c6b635024aee0880802f04178192ceee0d547ab9cf05ffa88223a4f1ce928a44f73f80670f4b6f838d63aec1945822e78aaad1a6200d4d8b68fca667bf79cbdf3b317da070676514b5726620559324961afe2dca81ce81330e41fcc911137c2cded81d29c147f139cd51103d30365cdcbb33002e22f875a1b1191b6fb4399ad08b0b6c06174b8039c9040c2b7e9e8187fb56f078aa6fe64226cc26c", 0x1000, 0x6}, {&(0x7f00000011c0)="60909ea8ae73942163cd866322649d2c37978b8486a8b279427175166b79d3429312d43d6cfc778433d09844827608ebf121ec5ea5589948d594038f7b7779c1ca9a7e5591cda588aae0b38e09acd2c252b984530df511b0a4a454d4097a9ce713e0a2cc2eda4c1ad47ea4ad28bf8b5b0d9bcf90b46eeac3a68fefc1e75ae0e9b161a0ce599004db3607019cb2cf7a5688e83428e619f2bca1fa408ffa5f5345a1b01f4bc4f0752051de84f16e63289d2449dbb381bc2e49ecff907d054df4d1ff701245169d6067bd5f5dda885c9ee3d8836aface4f0faabc3ddcade65832ff67", 0xe1, 0x100000000}, {&(0x7f0000000100)="20d8dfbbba13cb22622ee0f93f10425d515d6902660c485e56be5e2535f115b785c65f4041416d50abbfb9a7fc02983eefaea5c583abdd0d26c2daa0bc697983606da7e55883abde3bd1fdf843869c8a701df2a8b02dc2632e225b5b", 0x5c}, {&(0x7f00000012c0)="df65e631a2b5d4b5c213cd85a76d2d00b6ebb290b6a44c8498104a7fd097c4ac7a3a9aa177b9ace033b37e65a6e425762fb0d6f581d1bdc902a0824325b6bce539cc33238e6b8a34b9c667b1459166ee296a4cb9d802482f9ba832376fb0a1c3c326be2fdd454d014da4a87038", 0x6d}, {&(0x7f0000001340)="d32a63bc84ad70c1052c7e5edb949f6df0cf0ccd38d7af84a6880229fb55a554cd396333a48afcc401c00b2591064d6268c0db59ea06df7e59f8ddcc92d2951bd199b379371fa1169b8f9abe18e542b5644769ee4345018227ee47934dc113de82cfbe5c8eb9ffd59ba4bc7a59f6858e0d9581deeb317264bc1c0e75579b18e420973f6d8d39053e8572889da817b8b868619345c71e78ff1fe8e8f9e0c1c677d04b64484ae4779b0c0b90929ee322491c3b2bf4361253bcf5e7023d80bccead76", 0xc1, 0x7}, {&(0x7f0000001440)="fdeb669b7f1ba2f8e2e07616634b751646b531335ffa96cea1e3fd58da42704764d39b12c0ebbc063d2b103d404b4cd68b44ba1c5fab3a9ed2a973284d67782714e5e73b9935d4149164ded2a648", 0x4e, 0x9}, {&(0x7f00000014c0)="c446010ebe299dd2140db785423ad1a452dd8e88f51f7c26612bf60490bb6a78d6a7fe82b385ccce0b57be024b6741f430f7dff6851a70a7800ba0a61995", 0x3e, 0xa46}, {&(0x7f0000001500)="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", 0x1000}], 0x0, &(0x7f00000025c0)=ANY=[@ANYBLOB="646973636172072c73b9a27404ddeb2ce9686f72746e616d653d77696e39352c646b6e745f61707072616973652c7365"])

03:23:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x80151e, 0x2, 0x12, r0, 0x0)

03:23:04 executing program 3 (fault-call:8 fault-nth:13):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:04 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:23:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x7c, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  591.221855][T11402] FAULT_INJECTION: forcing a failure.
[  591.221855][T11402] name failslab, interval 1, probability 0, space 0, times 0
[  591.244567][T11400] binder: binder_mmap: 11399 20ffb000-213fb000 bad vm_flags failed -1
[  591.244978][T11402] CPU: 0 PID: 11402 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  591.260689][T11402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  591.270739][T11402] Call Trace:
[  591.274033][T11402]  dump_stack+0x1d8/0x2f8
[  591.278345][T11402]  should_fail+0x555/0x770
[  591.282743][T11402]  __should_failslab+0x11a/0x160
[  591.287661][T11402]  ? copy_process+0x1c6e/0x5970
[  591.292488][T11402]  should_failslab+0x9/0x20
[  591.296972][T11402]  kmem_cache_alloc+0x56/0x2e0
[  591.301718][T11402]  copy_process+0x1c6e/0x5970
[  591.309259][T11402]  _do_fork+0x13f/0x5b0
[  591.313395][T11402]  ? debug_smp_processor_id+0x1c/0x20
[  591.318742][T11402]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  591.324796][T11402]  __x64_sys_clone+0x1ec/0x230
[  591.329555][T11402]  do_syscall_64+0xf7/0x1c0
[  591.334263][T11402]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  591.340250][T11402] RIP: 0033:0x459a59
[  591.344124][T11402] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  591.364317][T11402] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  591.372718][T11402] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  591.380762][T11402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  591.388714][T11402] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  591.396663][T11402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  591.404713][T11402] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:23:04 executing program 3 (fault-call:8 fault-nth:14):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:04 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:23:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x7d, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  591.431922][T11405] FAT-fs (loop4): Unrecognized mount option "discar" or missing value
03:23:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xb0ff20, 0x2, 0x12, r0, 0x0)

[  591.513158][T11411] FAULT_INJECTION: forcing a failure.
[  591.513158][T11411] name failslab, interval 1, probability 0, space 0, times 0
[  591.535425][T11415] FAT-fs (loop4): Unrecognized mount option "discar" or missing value
[  591.551454][T11411] CPU: 1 PID: 11411 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
03:23:04 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:23:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x82, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  591.559389][T11411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  591.569449][T11411] Call Trace:
[  591.572761][T11411]  dump_stack+0x1d8/0x2f8
[  591.577112][T11411]  should_fail+0x555/0x770
[  591.581542][T11411]  __should_failslab+0x11a/0x160
[  591.586493][T11411]  ? dup_mm+0x29/0x340
[  591.590570][T11411]  should_failslab+0x9/0x20
[  591.595081][T11411]  kmem_cache_alloc+0x56/0x2e0
[  591.599860][T11411]  dup_mm+0x29/0x340
[  591.603767][T11411]  copy_process+0x22d6/0x5970
[  591.608480][T11411]  _do_fork+0x13f/0x5b0
[  591.612634][T11411]  ? debug_smp_processor_id+0x1c/0x20
[  591.618278][T11411]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  591.624349][T11411]  __x64_sys_clone+0x1ec/0x230
[  591.629113][T11411]  do_syscall_64+0xf7/0x1c0
[  591.633751][T11411]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  591.639649][T11411] RIP: 0033:0x459a59
[  591.643525][T11411] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  591.663149][T11411] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  591.671547][T11411] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  591.679520][T11411] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  591.687476][T11411] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  591.695436][T11411] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  591.703422][T11411] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  591.747917][T11426] binder: binder_mmap: 11423 20ffb000-213fb000 bad vm_flags failed -1
03:23:13 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(0xffffffffffffffff, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:23:13 executing program 3 (fault-call:8 fault-nth:15):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:13 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$VT_SETMODE(r3, 0x5602, &(0x7f0000000000)={0x6, 0x7f, 0x2, 0x6, 0x8})
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:23:13 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:23:13 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xf05000, 0x2, 0x12, r0, 0x0)

03:23:13 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  600.596647][T11444] binder: binder_mmap: 11440 20ffb000-213fb000 bad vm_flags failed -1
[  600.610048][T11447] FAULT_INJECTION: forcing a failure.
[  600.610048][T11447] name failslab, interval 1, probability 0, space 0, times 0
[  600.631885][T11447] CPU: 1 PID: 11447 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  600.639842][T11447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  600.649904][T11447] Call Trace:
[  600.653210][T11447]  dump_stack+0x1d8/0x2f8
[  600.657607][T11447]  should_fail+0x555/0x770
[  600.662038][T11447]  __should_failslab+0x11a/0x160
[  600.667002][T11447]  ? __khugepaged_enter+0x30/0x340
[  600.667073][T11447]  should_failslab+0x9/0x20
[  600.667084][T11447]  kmem_cache_alloc+0x56/0x2e0
[  600.667099][T11447]  __khugepaged_enter+0x30/0x340
[  600.667112][T11447]  dup_mmap+0x2e2/0xe00
[  600.667128][T11447]  ? __kasan_check_write+0x14/0x20
[  600.667141][T11447]  dup_mm+0x9e/0x340
[  600.667151][T11447]  copy_process+0x22d6/0x5970
[  600.667182][T11447]  _do_fork+0x13f/0x5b0
[  600.708397][T11447]  ? debug_smp_processor_id+0x1c/0x20
[  600.713757][T11447]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  600.713774][T11447]  __x64_sys_clone+0x1ec/0x230
[  600.724601][T11447]  do_syscall_64+0xf7/0x1c0
[  600.729115][T11447]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  600.735013][T11447] RIP: 0033:0x459a59
[  600.738912][T11447] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  600.758525][T11447] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  600.766960][T11447] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  600.774940][T11447] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  600.782928][T11447] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:23:13 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:23:13 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xf07000, 0x2, 0x12, r0, 0x0)

03:23:13 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:23:13 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x1)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@initdev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in6=@mcast1}, 0x0, @in=@multicast2}}, &(0x7f00000005c0)=0xe8)
syz_mount_image$msdos(&(0x7f0000000100)='msdos\x00', &(0x7f0000000140)='./control\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f00000001c0)="61592218bd2bc86c4796152e8abdd3ff1f3d3fc6d1b33109168216fb83", 0x1d, 0x8}, {&(0x7f0000000200)="4fe10df54046546bcdb824691943f74378e698725feb02b16141167370182dd40baa20fc6943af1c35ef66dea7a207746ed7484d5c16fcd3d8b213cac2e295195495a95094a492e268806e7359dc5d37c9137e85635624790772f136aca2df3a343eb1155db8da0cd263f5cd835783a0af15e1d6f992415823b815025e7ec0591a07de73f5185d9bd63962898c0e344690609208ba69cd3b71ccd5a7f7035d41b2efd03e5723d569b6c237d094e4a6a8c3108a5934533bc46cb467a1c74d6d5f7b7ad2af14ff48c063b744", 0xcb, 0x2}, {&(0x7f0000000300)="745e776b76fb51f6fd52cebaeafc53870cdd5f1bd194ce9bdc01ed2c9fd67a8a6368de4cec9c66f5ef4d7448481835d35fba67210cd0d8cf93fafd3518f7d4bf2d202b3016a4c12dbc2ce2ad0d13618daf22c1cc8935496074db5e18067cad6b7320a6b064fd8d47a95000e4e3064c284ef60432dae849e1004e57576cdab5e5e3fc47dfdc06b0374b8891ff5cbf99b7dbe0b965197a3c1b1d62e6f9f59630ed4a22a32bfa7558fe", 0xa8, 0x80000001}, {&(0x7f00000003c0)="dfba914affd6fd916489a4a096bfa8c765e9f8bf5f074e7a94c5df56e4b4d048031f78d86bdcb659e41c59639f4695f152df9267f37593ef6b21a26fe8c62383ad5d0457ccb0f16c31a64bcc315dc227", 0x50, 0x8}], 0x4976336fa8a71937, &(0x7f0000000780)=ANY=[@ANYBLOB="646f733178666c6f700300000000000000732c647973636172642c6e6f626f74f32c6e6f646f74732c6673636d6e746578743d73797374656d5f752c7569643c", @ANYRESDEC=r0, @ANYBLOB="c37df7d58ea155269b0b5173757569643d34266565664865612d39356d340064612d626139562530da1b883345000001ebc479b65f0073b904805464265d997932004cc8fb0a00000000db3433e06ccb6be243e55d82f706bc3c12fb85eafd552b754b1937e0bacd1963ed7c0f6a02d356ab"])
r1 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
symlinkat(&(0x7f0000000000)='./control\x00', r1, &(0x7f000034aff8)='./file0\x00')
creat(&(0x7f0000000040)='./control\x00', 0xd31816bcba7ec464)
renameat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000009000)='./control\x00')

03:23:14 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:23:14 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  600.790942][T11447] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  600.798935][T11447] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  600.815494][T11458] binder: binder_mmap: 11453 20ffb000-213fb000 bad vm_flags failed -1
03:23:22 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(0xffffffffffffffff, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:23:22 executing program 3 (fault-call:8 fault-nth:16):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:22 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xf0ff20, 0x2, 0x12, r0, 0x0)

03:23:22 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f00000000c0))

03:23:22 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x200000d4)

03:23:22 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000000280)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
r2 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x2021)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
dup(r3)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0xc000)
r5 = io_uring_setup(0xd83, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x3, 0x186})
r6 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r6, 0xffffffffffffffff)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, 0x0, 0x0)
write$binfmt_script(r7, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x19c)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r6, 0xc02c5341, &(0x7f0000000580))
r8 = syz_open_dev$video4linux(&(0x7f0000000340)='/dev/v4l-subdev#\x00', 0x4, 0x400)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000002c0)={0x1, 0x401, 0xffff9109, 0x1, 0x0, 0x2, 0x3, 0x9, 0x8291, 0x4, 0x8000, 0x20})
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000380)=[r5, r6, r8, r9, 0xffffffffffffffff, r1], 0x6)

03:23:22 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  608.966197][T11494] binder: binder_mmap: 11485 20ffb000-213fb000 bad vm_flags failed -1
[  608.970815][T11493] FAULT_INJECTION: forcing a failure.
[  608.970815][T11493] name failslab, interval 1, probability 0, space 0, times 0
03:23:22 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000100)='./control/file0\x00', 0x1c8801, 0x196)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x810c5701, &(0x7f0000000200))
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
syz_open_dev$vivid(&(0x7f0000000080)='/dev/video#\x00', 0x3, 0x2)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
setsockopt$ax25_int(r4, 0x101, 0x9, &(0x7f0000000000)=0x80000000, 0x4)

[  609.041324][T11493] CPU: 1 PID: 11493 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  609.049272][T11493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.059357][T11493] Call Trace:
[  609.059378][T11493]  dump_stack+0x1d8/0x2f8
[  609.059393][T11493]  should_fail+0x555/0x770
[  609.059409][T11493]  __should_failslab+0x11a/0x160
[  609.059420][T11493]  ? dup_mmap+0x587/0xe00
[  609.059430][T11493]  should_failslab+0x9/0x20
[  609.059442][T11493]  kmem_cache_alloc+0x56/0x2e0
03:23:22 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x1e158000, 0x2, 0x12, r0, 0x0)

[  609.059453][T11493]  dup_mmap+0x587/0xe00
[  609.059478][T11493]  dup_mm+0x9e/0x340
[  609.059491][T11493]  copy_process+0x22d6/0x5970
[  609.059525][T11493]  _do_fork+0x13f/0x5b0
[  609.059537][T11493]  ? debug_smp_processor_id+0x1c/0x20
[  609.059547][T11493]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  609.059566][T11493]  __x64_sys_clone+0x1ec/0x230
[  609.071632][T11493]  do_syscall_64+0xf7/0x1c0
[  609.127759][T11493]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.133661][T11493] RIP: 0033:0x459a59
[  609.137554][T11493] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  609.137560][T11493] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  609.137570][T11493] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  609.137575][T11493] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  609.137585][T11493] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:23:22 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x7fffdf004000, 0x2, 0x12, r0, 0x0)

03:23:22 executing program 0:
r0 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f00000001c0)={{0x2c, @multicast2, 0x4e23, 0x0, 'sh\x00', 0x8, 0x0, 0x74}, {@rand_addr=0x4e, 0x4e24, 0x2, 0x1, 0xdb, 0x9}}, 0x44)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000180)=0x20)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x10, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x18)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000040)={r3}, &(0x7f0000000080)=0x8)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r4, 0xf69, &(0x7f0000000000)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getrandom(&(0x7f0000000240)=""/182, 0xb6, 0x2)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x14)

03:23:22 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f00000000c0))

[  609.173544][T11493] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  609.173549][T11493] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:23:29 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(0xffffffffffffffff, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:23:29 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$sock_bt_hci(r2, 0x400448dc, &(0x7f00000001c0)="90bfd97eb95a617a963b533b1c1603f2f68d58d09935306e69839d4990d55138281c91eaba74c062767b51379252017ed5db10214980bd9b5d28b0eff2ee1e3d813a86041166474192bb5d4b221ccef1fe2765653a7cf73f10f8cecb593642334c2c9ee49a2c8408cc397d257d56c68480cb5a8527e721469410a79831d87e7477413d5e6b501fb62227")
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:23:29 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x7ffffffff000, 0x2, 0x12, r0, 0x0)

03:23:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0xffffffffffffff0f)

03:23:29 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r2 = dup(r1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, 0x0, 0x0)

03:23:29 executing program 3 (fault-call:8 fault-nth:17):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:29 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x24e23, @local}, 0x10)
recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x0)
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[@ANYRES64], 0xc63b9e35)

[  616.267492][T11529] FAULT_INJECTION: forcing a failure.
[  616.267492][T11529] name failslab, interval 1, probability 0, space 0, times 0
[  616.303845][T11529] CPU: 1 PID: 11529 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
03:23:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000140)=ANY=[], &(0x7f000095dffc))
ioctl$SIOCX25SCAUSEDIAG(0xffffffffffffffff, 0x89ec, &(0x7f0000000180)={0x80, 0x9})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000300)='/dev/autofs\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_STATS(r4, &(0x7f0000000800)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x84020000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000280)={0x1c, r5, 0x194, 0x70bd2a, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0xc}, 0x1, 0x0, 0x0, 0x4004014}, 0x4004)
r6 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
semctl$GETZCNT(0x0, 0x0, 0xf, &(0x7f0000000380)=""/76)
r7 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r7)
timer_create(0x5, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r7}, 0x0)
kcmp(r7, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r8 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
r9 = syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0x7fff, 0x8000)
ioctl$VIDIOC_S_FBUF(r9, 0x4030560b, &(0x7f0000000500)={0x2, 0x20, &(0x7f0000000440)="1b370181d0d7db068df0e9e246d459db3ebb2edfc11a0281786f40fb41ed1e808993c62d53ea1c3a1b86e0bce7ccf7ee126dc070f353d8cedebb138f2cb962272cde073ea53bde7834cf85c29961d59627b46a5c2603531ee42ba2bda2fe8707db0631a8f04f008962b7f54142fd5238707e9e7eebd9a147c8c3348ff9de58ed9f0821273ebe762fef3bfe2bfc0d89490ba829753b8c723c415d943c41bd0b4a1da15093ba", {0x3, 0x8, 0x34324d59, 0x3, 0x7, 0x5, 0x4, 0xfffffffc}})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r7, r8, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$UI_SET_SWBIT(r8, 0x4004556d, 0x9)
r10 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r10, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r11 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000840)='/proc/self/net/pfkey\x00', 0x3a000, 0x0)
sendto$rose(r11, &(0x7f0000000980)="6076f2da862492cc1bdc6d2b3e1a431791b3f6f4bf6ba3070000003d00805921ec657df65f2f79513d0014fa31929a777b6adf3e019d9cd08e46ad79c7a9155b123e195cbee3e44d116344d6c7779a45d64cb869597a1678d3a8208af06c7546300cc919251b669aa9bf7b82b902ca4d44345bf08927fc0211148f3db946ce73cdf1b9f3d1f82af19cbf58febd628ba2debd733d29f153d3f3fb21ad726621e685c8c060bf0961bb916c792149cc32e4d3d16978fc447d054d3576cdd817cd6902d239001356a6693d11762bb3852cabf4f0c519", 0x1e6, 0x4007080, 0x0, 0x39d)
r12 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r12, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$FS_IOC_FSSETXATTR(r12, 0x401c5820, &(0x7f0000000400)={0x1, 0x5, 0x8, 0x1, 0x5})
sendmsg$TIPC_CMD_SHOW_STATS(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x48010}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x1c, r5, 0x4, 0x70bd26, 0x25dfdbfb, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x840}, 0x4a040)

[  616.311797][T11529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  616.321856][T11529] Call Trace:
[  616.325159][T11529]  dump_stack+0x1d8/0x2f8
[  616.329508][T11529]  should_fail+0x555/0x770
[  616.333944][T11529]  __should_failslab+0x11a/0x160
[  616.338887][T11529]  ? dup_mmap+0x587/0xe00
[  616.343229][T11529]  should_failslab+0x9/0x20
[  616.347739][T11529]  kmem_cache_alloc+0x56/0x2e0
[  616.352511][T11529]  dup_mmap+0x587/0xe00
[  616.356690][T11529]  dup_mm+0x9e/0x340
[  616.360595][T11529]  copy_process+0x22d6/0x5970
03:23:29 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000000)={{0x9, 0x1d, 0xc5, 0x3f, 0x4, 0x8}, 0x1100})
r1 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x15, 0x4}}, 0x20)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x4000, 0x0)
r6 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r7 = open(&(0x7f00000005c0)='./file0\x00', 0x90000, 0x40)
ioctl$GIO_SCRNMAP(r7, 0x4b40, &(0x7f0000000500)=""/151)
symlinkat(&(0x7f0000443ff6)='./file0\x00', r1, &(0x7f000034aff8)='./file0\x00')
renameat(r1, &(0x7f0000000100)='./control\x00', r1, &(0x7f0000009000)='./control\x00')

[  616.365330][T11529]  _do_fork+0x13f/0x5b0
[  616.369493][T11529]  ? debug_smp_processor_id+0x1c/0x20
[  616.374875][T11529]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  616.380961][T11529]  __x64_sys_clone+0x1ec/0x230
[  616.385753][T11529]  do_syscall_64+0xf7/0x1c0
[  616.390288][T11529]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  616.396213][T11529] RIP: 0033:0x459a59
03:23:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:23:29 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280)='/dev/hwrng\x00', 0x420000, 0x0)
ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f00000002c0)={0x2b, 0x6})
r1 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
r2 = semget(0x3, 0x4, 0x64c)
semtimedop(r2, &(0x7f0000000000)=[{0x2, 0xe7ba, 0x1000}, {0x7, 0x5, 0x3800}], 0x2, &(0x7f0000000040)={0x0, 0x1c9c380})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket(0xa, 0x3, 0x8)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000540)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x375ea897d4cddebd}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)=@bridge_delneigh={0x2c, 0x1d, 0x1, 0x70bd2d, 0x25dfdbfb, {0x7, 0x0, 0x0, r7, 0xcd80ae62847cab65, 0x34}, [@NDA_MASTER={0x8, 0x9, 0x5}, @NDA_VNI={0x8, 0x7, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x771ad79f274e22d9}, 0x40)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r5, 0xc0405665, &(0x7f00000001c0)={0x6086a0a5, 0x1, 0xbf0, 0x40, 0x3f, 0x0, 0x8})
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
accept4$bt_l2cap(r4, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x800)
ioctl$PPPIOCGMRU(0xffffffffffffffff, 0x80047453, &(0x7f0000000200))
symlinkat(&(0x7f0000443ff6)='./control\x00', r1, &(0x7f000034aff8)='./file0\x00')
renameat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000240)='./file0/file0\x00')
pipe(&(0x7f00000003c0))

03:23:29 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0xffffffffffffffff, 0x2, 0x12, r0, 0x0)

[  616.400124][T11529] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  616.419749][T11529] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  616.428173][T11529] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  616.436152][T11529] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  616.444132][T11529] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  616.452110][T11529] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  616.460316][T11529] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:23:37 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, 0x0, 0x0, 0x0)

03:23:37 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x300000, 0x100)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:23:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="40ffff9ddfbdb7ff1b1dbc66", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:23:37 executing program 3 (fault-call:8 fault-nth:18):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:37 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3, 0x12, r0, 0x0)

03:23:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@dev, 0x0, 0x0, 0xff, 0x1}, 0x20)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xa198)

03:23:37 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4, 0x12, r0, 0x0)

[  624.622153][T11571] binder: binder_mmap: 11569 20ffb000-20fff000 bad vm_flags failed -1
[  624.642125][T11568] FAULT_INJECTION: forcing a failure.
[  624.642125][T11568] name failslab, interval 1, probability 0, space 0, times 0
03:23:37 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="b5055e5184e87bc40071")
r1 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$VIDIOC_G_INPUT(r3, 0x80045626, &(0x7f0000000480))
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$VT_GETMODE(r1, 0x5601, &(0x7f0000000200))
unshare(0x2000400)
r4 = socket$inet_sctp(0x2, 0x4f80a295d7172000, 0x84)
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000002c0)={0x0, 0x8, 0x6, &(0x7f0000000080)=0x3})
r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r4, 0x84, 0x74, &(0x7f0000000240)=""/125, &(0x7f0000000000)=0x7d)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES32=<r8=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f00000000c0)={r8}, &(0x7f0000000100)=0x14)

[  624.686222][T11568] CPU: 1 PID: 11568 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  624.694153][T11568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  624.694163][T11568] Call Trace:
[  624.707543][T11568]  dump_stack+0x1d8/0x2f8
[  624.711899][T11568]  should_fail+0x555/0x770
[  624.716338][T11568]  __should_failslab+0x11a/0x160
[  624.721317][T11568]  ? anon_vma_clone+0xaa/0x4b0
[  624.726093][T11568]  should_failslab+0x9/0x20
[  624.730598][T11568]  kmem_cache_alloc+0x56/0x2e0
03:23:37 executing program 0:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:23:37 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000000)='./control\x00', 0x4000, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
renameat(r4, &(0x7f0000000100)='./control\x00', r3, &(0x7f0000009000)='./control\x00')
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000140)={<r7=>0xffffffffffffffff}, 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000240)={0x7, 0x8, 0xfa00, {r7, 0x7b37}}, 0x10)

[  624.730614][T11568]  anon_vma_clone+0xaa/0x4b0
[  624.730628][T11568]  ? rcu_read_lock_sched_held+0x10b/0x170
[  624.745685][T11568]  anon_vma_fork+0x91/0x540
[  624.750198][T11568]  ? dup_mmap+0x5b0/0xe00
[  624.754548][T11568]  dup_mmap+0x6b8/0xe00
[  624.758728][T11568]  dup_mm+0x9e/0x340
[  624.762633][T11568]  copy_process+0x22d6/0x5970
[  624.767348][T11568]  _do_fork+0x13f/0x5b0
[  624.771519][T11568]  ? debug_smp_processor_id+0x1c/0x20
[  624.776894][T11568]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  624.782976][T11568]  __x64_sys_clone+0x1ec/0x230
[  624.787759][T11568]  do_syscall_64+0xf7/0x1c0
[  624.792281][T11568]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  624.798178][T11568] RIP: 0033:0x459a59
[  624.802064][T11568] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  624.821679][T11568] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:23:38 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000000)={0x1, 0x7f}, 0x2)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:23:38 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@dev, 0x0, 0x0, 0xff, 0x1}, 0x20)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
dup2(r1, r0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xa198)

[  624.830211][T11568] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  624.838199][T11568] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  624.846184][T11568] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  624.854168][T11568] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  624.862167][T11568] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:23:45 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, 0x0, 0x0, 0x0)

03:23:45 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x1, 0x0)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000000080)={0x5, 0x10, 0x16, 0x8, 0x4, 0x5, 0x3, 0x112})
r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000140)='/proc/capi/capi20ncci\x00', 0x400000, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000300)='/dev/autofs\x00', 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x50, 0x3ff, 0x7)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_STATS(r3, &(0x7f0000000800)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x84020000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000b40)={0x3d6, r4, 0x194, 0x70bd2a, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004014}, 0x20000090)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r4, 0x308, 0x70bd2d, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x8000)
unshare(0x2000400)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x14)

03:23:45 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$sock_linger(r1, 0x1, 0xc, &(0x7f0000000000), 0x8)

03:23:45 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x461e312643c2d371)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
sendto$ax25(r0, &(0x7f0000000000)="9b0af62ac5980ffa31d24880c2f9db94d3ff62f17771780305a8567feac4a24badb6e16955378c1411a1fc3be60bdd21161a6ea1b52426e2469e38d4192f75dd2f4a4e3f7f03c1be98f80267e5ae571b3acbd51770d27cd0633c3d7ae0759e8df842b8b931b807661472a851d7b4411e57c90aa7d0ff1ac50a78eb3dcab954", 0x7f, 0x4004080, &(0x7f0000000100)={{0x3, @null, 0x1}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x48)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:23:45 executing program 3 (fault-call:8 fault-nth:19):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:45 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3bb, 0x12, r0, 0x0)

03:23:45 executing program 1:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x2000000002800100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
r1 = gettid()
rt_sigsuspend(&(0x7f0000000000), 0x8)
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x3f)
ptrace$cont(0x18, r0, 0x0, 0x7)

[  631.857421][T11610] binder: binder_mmap: 11608 20ffb000-20fff000 bad vm_flags failed -1
[  631.877167][T11611] FAULT_INJECTION: forcing a failure.
[  631.877167][T11611] name failslab, interval 1, probability 0, space 0, times 0
03:23:45 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x2)

[  631.926107][T11611] CPU: 1 PID: 11611 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  631.934031][T11611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  631.944144][T11611] Call Trace:
[  631.947478][T11611]  dump_stack+0x1d8/0x2f8
[  631.951806][T11611]  should_fail+0x555/0x770
[  631.956243][T11611]  __should_failslab+0x11a/0x160
[  631.961190][T11611]  ? anon_vma_clone+0xaa/0x4b0
[  631.965963][T11611]  should_failslab+0x9/0x20
[  631.970474][T11611]  kmem_cache_alloc+0x56/0x2e0
03:23:45 executing program 4:
r0 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
mq_notify(r0, &(0x7f0000000040)={0x0, 0x3b, 0x6, @thr={&(0x7f0000000000)="ed3b9680ec25165310a11c79cc503ceea3606b4a3d6b66c76324dd983c519a810706a92e", &(0x7f0000000100)="e08d08af18cfa0a65ff7996c0ad78b1c244a19695f4c58293ee688072d97cc03a7da220bd29c27dd34c2049311098c14ea6ddfe5c4f7e567f0c2aeb455f5ce819db359c81d833b64554488d9c4be5bd4e45e1e6596b44707fa23d40b"}})
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r1 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r1, &(0x7f000034aff8)='./file0\x00')
renameat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000009000)='./control\x00')

[  631.975362][T11611]  anon_vma_clone+0xaa/0x4b0
[  631.979989][T11611]  anon_vma_fork+0x91/0x540
[  631.984504][T11611]  ? dup_mmap+0x5b0/0xe00
[  631.988850][T11611]  dup_mmap+0x6b8/0xe00
[  631.993026][T11611]  dup_mm+0x9e/0x340
[  631.996938][T11611]  copy_process+0x22d6/0x5970
[  631.996974][T11611]  _do_fork+0x13f/0x5b0
[  631.996988][T11611]  ? debug_smp_processor_id+0x1c/0x20
[  631.996998][T11611]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  631.997012][T11611]  __x64_sys_clone+0x1ec/0x230
[  632.022029][T11611]  do_syscall_64+0xf7/0x1c0
[  632.026577][T11611]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  632.026587][T11611] RIP: 0033:0x459a59
[  632.026596][T11611] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  632.026601][T11611] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  632.026609][T11611] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
03:23:45 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x3)

03:23:45 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x99dc96d85aa62d4a, 0x0)
r2 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f00000001c0)=0xfffffef7)
dup(r0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r5}, &(0x7f0000000080)=0x14)

[  632.026614][T11611] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  632.026620][T11611] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  632.026626][T11611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  632.026631][T11611] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:23:45 executing program 3 (fault-call:8 fault-nth:20):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:45 executing program 1:
syz_open_dev$vcsa(0x0, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$inet6(0xa, 0x0, 0x0)
poll(&(0x7f0000000000)=[{}, {0xffffffffffffffff, 0x180}], 0x456, 0x0)
mount(0x0, 0x0, &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
r1 = openat$cgroup_subtree(r0, 0x0, 0x2, 0x0)
open_by_handle_at(r1, 0x0, 0x2)
pipe(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net\x00', 0x200002, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000580)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x7c774aac)
mmap(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0x800003, 0x8012, r3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000004c0)=[{0x0}], 0x1)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nbd(&(0x7f0000000040)='nbd\x00')
pipe(&(0x7f0000000280))
syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x9, 0xc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)

[  632.260269][T11639] FAULT_INJECTION: forcing a failure.
[  632.260269][T11639] name failslab, interval 1, probability 0, space 0, times 0
[  632.280915][T11639] CPU: 1 PID: 11639 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  632.288852][T11639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  632.298904][T11639] Call Trace:
[  632.302191][T11639]  dump_stack+0x1d8/0x2f8
[  632.306529][T11639]  should_fail+0x555/0x770
[  632.310968][T11639]  __should_failslab+0x11a/0x160
[  632.315919][T11639]  ? dup_mmap+0x587/0xe00
[  632.320269][T11639]  should_failslab+0x9/0x20
[  632.324789][T11639]  kmem_cache_alloc+0x56/0x2e0
[  632.329565][T11639]  ? security_vm_enough_memory_mm+0xb0/0xc0
[  632.335464][T11639]  dup_mmap+0x587/0xe00
[  632.339645][T11639]  dup_mm+0x9e/0x340
[  632.343553][T11639]  copy_process+0x22d6/0x5970
[  632.348360][T11639]  _do_fork+0x13f/0x5b0
[  632.352534][T11639]  ? debug_smp_processor_id+0x1c/0x20
[  632.357920][T11639]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  632.364012][T11639]  __x64_sys_clone+0x1ec/0x230
[  632.368808][T11639]  do_syscall_64+0xf7/0x1c0
[  632.373333][T11639]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  632.379239][T11639] RIP: 0033:0x459a59
[  632.383138][T11639] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  632.403700][T11639] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  632.412116][T11639] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  632.420114][T11639] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  632.428085][T11639] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  632.428090][T11639] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  632.428095][T11639] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:23:53 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, 0x0, 0x0, 0x0)

03:23:53 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
ioctl$KDGKBTYPE(0xffffffffffffffff, 0x4b33, &(0x7f0000000000))
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r3, 0x80dc5521, &(0x7f0000000040)=""/53)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:23:53 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4)

03:23:53 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0800bd055e0b7fe87b00718102631f9adac98355adeedc2b080e0d452462f29a5b9c9f192a95952422cf896b7f231d45d8b8ff272534313390d2eab81106831f04ca3abfe55d3587e8e23440cfdf95a4c95876a497fe404c211f256475f1e6877af3557c9b122e778fa3afd55281ad6e83aa24ebca5c3e63f4dee3cae56b6a4567795b2f0c75db04bee83a264c9757636fa0fa6524dee6eab524751a491ff663caf2b484a4949f488f4110f6bfab6acefc6844a73d1c482aa6bfb05484f8c6")
unshare(0x2000400)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="03000000000000003d17b1d566840d240000", @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:23:53 executing program 1:
r0 = syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000100))

03:23:53 executing program 3 (fault-call:8 fault-nth:21):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:23:53 executing program 1:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x2000000002800100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
rt_sigsuspend(&(0x7f0000000000), 0x8)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x3f)

03:23:53 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x5)

[  640.242296][T11664] FAULT_INJECTION: forcing a failure.
[  640.242296][T11664] name failslab, interval 1, probability 0, space 0, times 0
03:23:53 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000280))
r2 = dup2(0xffffffffffffffff, r1)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x31d}}, 0x20)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, &(0x7f0000000500)})
ioctl$EVIOCGUNIQ(r2, 0x80404508, &(0x7f0000000000))
r4 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r4)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r4}, 0x0)
kcmp(r4, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
r6 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r6)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x20021, 0x4, @tid=r6}, 0x0)
kcmp(r6, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r7 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r6, r7, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
fchmodat(r7, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r4, r5, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev\xd4\xa4ull\x00', 0x66101, 0x0)
r8 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r8, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
alarm(0x5)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  640.335790][T11664] CPU: 0 PID: 11664 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  640.343981][T11664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  640.354197][T11664] Call Trace:
[  640.357593][T11664]  dump_stack+0x1d8/0x2f8
[  640.361944][T11664]  should_fail+0x555/0x770
[  640.366417][T11664]  __should_failslab+0x11a/0x160
[  640.371509][T11664]  ? anon_vma_fork+0xf7/0x540
[  640.376293][T11664]  should_failslab+0x9/0x20
[  640.380981][T11664]  kmem_cache_alloc+0x56/0x2e0
03:23:53 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x7ff, &(0x7f0000000040)="0800b5055e03cfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000740)=ANY=[@ANYBLOB="19ec62603541516a7b5d319801a2e6f5c232fb6c330a78653ad54fd6c5d4fd11000000000000005237a16348915ba718da63a3104b2270a0a9f87fdd94d240f79aac59c7fa69d27f699c38d61503879e1dc47106e74af47b63a3ec38", @ANYRES32=<r2=>0x0], &(0x7f000095dffc)=0x8)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
r4 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000005c0)="4acf665ff77df4f20690a5a83bc1a1e6519321db1dc2bf7eee06d978abdfbb33f3bc7025e6befda3c827875946eb75c14639ab6e76811a733653f72afc34e5fce1bed277a8faa02e6da16041b40bab677d6555e94a42b7ac236c8c35d729ac501cf28293c919f2f3ceec4703c892adeac90504aeb3ba485e09bda66d2b96124cabc4d2e653848e2bd909287d0d2c433d72bbd4333cf37f2a8972bba453c776d2c73c61b9fa2153405fc0253992c918682c7018f6a280a9ff312ae4a6996bd9547aed66e72f94342a7d27b9483f7e2e8e3c5bbb89452fd9bb6708ae89ba29", 0xde, 0xfffffffffffffffe)
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
getresgid(&(0x7f0000000400), &(0x7f0000000540), &(0x7f00000006c0)=<r6=>0x0)
keyctl$chown(0x4, r4, r5, r6)
r7 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r7)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r7}, 0x0)
kcmp(r7, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r8 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r7, r8, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r9 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r9, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r9, 0xc02c5341, &(0x7f0000000580))
r10 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r11 = dup2(r10, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r11, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r12 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r12, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r12, 0xc02c5341, &(0x7f0000000580))
r13 = syz_open_dev$amidi(&(0x7f0000000340)='/dev\x03\x00\x00\x00\x10\x00', 0x100000001, 0x30d401)
write$RDMA_USER_CM_CMD_CREATE_ID(r13, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r14 = accept4$inet(r13, &(0x7f0000000240)={0x2, 0x0, @empty}, &(0x7f0000000280)=0x10, 0xc0000)
r15 = accept$ax25(0xffffffffffffffff, &(0x7f0000000440)={{0x3, @netrom}, [@rose, @default, @bcast, @rose, @rose, @default, @default, @default]}, &(0x7f00000003c0)=0x48)
r16 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r16, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r16, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000000580)=[r9, r11, r3, r12, r14, r15, r16], 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000140)={{{@in=@broadcast, @in6=@ipv4={[], [], @multicast1}, 0x4e20, 0x3ff, 0x4e23, 0x8, 0xa, 0x20, 0x30, 0x62, 0x0, r5}, {0x81, 0x3ff, 0x6, 0x101, 0x7fffffff, 0x0, 0x8}, {0x7f, 0x2, 0x1, 0x1}, 0x3, 0x0, 0x1, 0x0, 0x2, 0x1}, {{@in6=@dev={0xfe, 0x80, [], 0xa}, 0x4d4, 0xff}, 0xa, @in=@local, 0x3500, 0x2, 0x1, 0x25, 0xff, 0x80000001, 0x1270}}, 0xe8)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$DRM_IOCTL_RM_MAP(r3, 0x4028641b, &(0x7f0000000000)={&(0x7f0000ffc000/0x4000)=nil, 0x401, 0x1, 0x44, &(0x7f0000ffc000/0x3000)=nil, 0x2})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r2, 0x0, 0x3, 0x0, 0x200000, 0x200}, &(0x7f0000000100)=0x14)

[  640.385940][T11664]  anon_vma_fork+0xf7/0x540
[  640.390468][T11664]  ? dup_mmap+0x5b0/0xe00
[  640.394816][T11664]  dup_mmap+0x6b8/0xe00
[  640.399015][T11664]  dup_mm+0x9e/0x340
[  640.403121][T11664]  copy_process+0x22d6/0x5970
[  640.407940][T11664]  _do_fork+0x13f/0x5b0
[  640.412126][T11664]  ? debug_smp_processor_id+0x1c/0x20
[  640.417519][T11664]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  640.423625][T11664]  __x64_sys_clone+0x1ec/0x230
[  640.428568][T11664]  do_syscall_64+0xf7/0x1c0
03:23:53 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
sendmsg$nl_generic(r2, &(0x7f0000002300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20002000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x21b4, 0x21, 0x404, 0x70bd2b, 0x25dfdbfc, {0xd}, [@nested={0x21a0, 0x92, [@generic="6d18e092626d803b43dd455e12b225f7b3d10e077a8547304dac6f1c39e7fd3e9608588529712b02c4283ae57509e4a585ec40181cdab050aa6c9432725164b559ff323249529f383855528e34ad8b237714aedb72454a07bc3e785a68cc24e67dcf7605013417e84636994dbc17e6cc1eea503d919e763390354e7ce4f311cc567559e7402bdf00ba74e5d5d5b19a9289548d9bb9455062dacb42a57ac3a8514e6ac2b9c52affcc4f9880c686ebbed8d27cf09f54603590c8f9fe1751591f70b7299415228c9eb3e566156508c89b9e13b9ecebc544068563fde4a1248c48574b988cf1a6d5c3ca66b34c571e9cfc250d7c6525116f0651beafcd90525a4bcde8e59c28c5603aeda1309d6fa9fb8c5d68f51efafa3c8f15c26d3c5c037ca9635f48c740999740343563862f8140225d03648971eb4a17b73748fb8580b5bb2c86a9b800762ee1863b0b2d0d7458e0f2c442c69426f268ded23dbdafccaec0f51c6e4dd440d6675867a373c99110180d006f6ef3d0d4950426a3b5f9127a7551dee3678854043187abf6ca3c3321eb87b7804748b5e87f83b2e999a8c85de5aa61c3bd4ac044bca4c7f6647ef84e1b32c458831f5ddf498fd9da7be523bf586b7b115758a351937bca5cfa0068592d2a33ee7ba2fa824ed28107edd1c0b0dfe012300ce5551bba0d27882b8700cbd42299d5d615d2fbc04b989534b3249833a8bf515efa99fe0ad747566db07e7459ff22a208e3308bf98fbe940af14e02c71df0f4091c42f24db49a0ce73e6298b877343eb53ce732d550e3ceb2cfe997e4126bce8d316ad57682e8e370c0aaeb877b09f112e2bc509673377a64725442d54e0ba5d52802a72eabbb189bd061f1a574c62b76c85a8807b405d6c0adb08e4eaf1659f49765fbd65a2d61882b03f620fa3d1ffc84630454dbf43f293d8e97d64587eab2909b5420b8d90578ce5553805dbf0f9f2f8f0a4c78e23f51cc4b1c3598023b5e845375c88fc6732838fd0a8b7655cb4ee9f71a8524b118d9def47a2684a08dd6bccdd982094667dcc3835b426934a0cbc62ba67d94d8692da54ba81c238d5b8f9c3fd2c70fe3195bba9fe3700624aff1b35bce8fd2d0466dbe0a9de41129b7b72b6fce3fdef5d3f912baeaa0dad7dde0ce614877b1b17ead0ccaabef040fc02f5c12aafc3c043025d06ce5bcf18fd1f39fa071263531b573c31bf6b96f61a61ad743f63d37a4d5e90e6ee09f3d4429a0cf6591bcf019f8749f4d0a5505bc8e6c0f5f9bbc3c178c0541edd2ec51139fcae0e27cb30da228e709e0be22a6a4f61f72b3458b90e6214d9d956e8a9b874e7fd8820333f3f596b4447d16489dcb0ce4e005f763b41c5608e2dd642a3508702f2e59e979ee337b6d3ab3725c6a5abd54a3ed29a2301b7c550cffdf02de04e7d68ba44d5d35f3e00fa5206805a42df1eb8b0be74a448b3ce826f466dbe17c117bed7b8861a1e95ffe7f7af84eeb177c089505ee4a592fcb46d51838c81800a559b2aebea0c0e5e3a5bac39acab30ae4c335ea1b559f39dd05aed79fcd89d9e6d50257d2f695d139e44969a08d7c43edcb8d9dab486e8b9e65f23774f6db1269894a633c86fccbafc7381035fe90324d46e2c2b34556fc0136d7380582894371ca534134eca00bca5befd9d1e45720a1d035b658fe9bf112e991f468392c97b7d8dcc249b8c30a4b93a1e06bbd95405d768180b0afef0b91671635238a0fc841d53e680cab698adc03b9712c13408efc07942a2f43a750bca77031d36d9a8a5641b7a84204966f44bae3a4d52489c9b67771e0c505363a6baf65f8a0c5c4b3cc217a96575f2c84dd09334229ffde1cda96cf62441828141297fb8a066fa3b7666500af8a13fc7209a93a503fbc68a6d661268b31c8e728c2a628150603ff54d6aaeedb67b02e0866825157f4c25be4688214d41fe1d9ae2cf4832cd9a6b22b34a1275b2c7e19b5f95d708f1c862092ca95f918a21b7bcfc5c18122b110d66d131ca72b3a64f7d5aa0d01822809924972cedcfe3e70f0d1319bc8d596c37328144071a6dd8e305065d60488add79bd3b28f1cd200815c98f459028180a901bfe12ddc123ca0c8e78031b4208b28469e345135da2549c3f5901ef18b5d7e27e059dde910dd3ce5cf37c6872e537a1190a9c9f5fc33d2ebb7bce24f522e71acd7488ff97514b9facdefaf2c7c413d91d197ac2672fa0b7b828dc0e7986c5e074e4c08efb8dc324ba4814c4a6ee670c9610b0a532951ba2e79c716a91a521ec04f7c620673e866bbc73767c7911baa30f13f62b5d526ac3b6bf18d76b832d53f6c5f56fe9d36c0cb38adab6e7c7ac5be2e34caa616a586aee4fbce76a8573486c5eb7c44b8b862005f757f851ced651bba304806c381d99dd4db58e5a050b1e3781e7525aff4d3412ab57a046863120661f4a1de1def4c1acfb6570d797f89e9045cfcf25859fd4c0c5f2c6a388010db4f05c4ef8f58939dc91e5869b9a3146bb869889369c6c5558e5180f7c270b59ec8b08e93420f782ef8b9c9bbef688012c969868c3eb5f7dd364b5ec2bb0fc4b1094eca10aa2403c58c3405e550065106d3a6d614331e63965886463113abaded0456e0331efb8383074bf27d1edb80fa20a3c2b2952de72a7333abba7f3fdbe777c6ee42cc781fa127779d606757df5dfd12baf90d355331187424cf9fb710f219022eb842b55ed5ddd0a93674eb1e7c249434793129a1f8b78e361fb664bfdb5c2712077580a08ac2059d958b1fedb9f1651f246e73afe204562cafd963ab964cfb334a4590ce816e1e39a7dd0e153e3b021cfc0a9b0801132d26e729ffa01bb39a56149474d4cd11cde14f1c48567eef6badef29f34f6847d71fda91c3355ede874687d1dab697862919558d85e4ddb209223570d140c993cfbd5269c70353c45885588dbf128fd1904de04364118393362adc4c4aedeb45bde82671784def3b25dbb0397de258277677d28e92d28d46e140f1105be153baced221d198ed11a4ea98bee667199ee75583fde9f0ebb32f07c064568573ec90d7a319a1a5e9b0f5a9392cf319b0d5bed85cbc3cfebe5f3e22f1e795750002572a1b171ce5b480872fe75ecaeb571bc0ce375171d4250f57be2e85f0dc3c67c229cc2fb03650def9531bf44b1aae1ad391cde4e2afa218f6a2f9d080055c072e1a8db522a3cc447205a932a29049edfde2a3cf3e5e85660630df0ecdf77434429153fd3c816311ae38717070029123439fbcc02b43a6ae7c54adf57ca51ce14c012e81b89f8c45d253e73f24bceb0f7feadc36d1f2b108b0c14adeb18a0c1eeffefa8560534060895725ba35e0e8b7099e27a2c985e40658c4b84576ffd270a9a76e3a4243319b3ed57583018989d90c8389c28951abb67a2a76d773dd444fea45183e0dada2f501fa176a885a4a002095bdf420f3abbc57ccbe6c4a57b0095c04096f68eaecc2b61f5510e218f8084d49a739f39ddfd5234ae17c8cb216ca4e6b88b6904dbb9cd64501fafe0f7d63de6089348690944df1b34d28299e4cc78ff8616c9bf3a1bc1a255b3b86dfda3ad7d75001a1411ff1d9a77eda5b4489017b34015934fe39e28d1937548e6d823739e027de1d293b5476ce5cdfe420e4967a6f4f9524d7d9f3a9b09ef2864a268bff86a80b90cedec848ef50f2db2dbefe3ca6d10636710d65a306d6df5286581eecd14e17ceb7d12fcb36474fad84482f8e2879b965ffe3c38d9e4b8a202d96599ac2fdfcc02721e3a4610ae55441521ca8cad5f28a8da56f0f00830497856d16e037255ba21e31352c2cd764b5764590be09bb2e6c6ee3e7e1337cf7ea2cb0d780d3d798023b7832a3f610666bc36bb2d7206a79d2e1ae84bfbb08c8e4a551fd20d16971a77c00eba496a9587f72fc0d3a827a2bda6f4189f72adf4142da740aa0ebb49e6b5952e0de0c0cf0b087e23164f2ef6de656c1a620c10649c6b25f49cfb385732e590e91a1bb9e2730cbd54561060fd8156e0834a891c2a8fa923bb82747543144c6efd096a2801ff7e25155a58c3ccaae5c1350cdf121f283251abbe0e0761065bbd714958214a3d6c7ba9ab03fce8a9931c880673da7b7513fa88cce4ae8a4fc0cad60173b94c72f3d0fe35ac844b69c4c6cf4378ca12fa23f50d1078501a7e43c96553059de358fa3a45d14dbbd85afe27fba8d51e60c449d2d4e2ee5ab85b351743cab9a79f3f7bd9d597fee0e19dc33d6b708187911eff59d783560e3f4ca7e9828af36927ca528f53b43390f761f497102e5bc0132b3c9721da2f7769a1f852c9955b5972a98f2e4d00faa5b1d88571c0900341cee09a990307b0c2ce20ac62be4f1023e92fcdc7dadb5586a16c0eaf6e4d7a3b59d37ad2eb4a5eb3b9668a9bbfae7f6baec46465acab089b4ef24e6830af5f1de07fed21c292cf68edd0bce4eedf84ccc7d360c2796efe139aa0f9e9e652dcdd7a31159fef47ad71eecb4d4863e4ec41d8bd836d522fc1ee00c7bd6ff5610b52d1a1256c80e6902d4d4857a15b5e3887e7c5c603d8d78d98c3718f2a13a5b063931bce7c1902e62f28b3c81114af1d4a193908dcdbc77a79e1084971502dbf62599218e16371c7ceace40fe177b1812fece53411146420b526e826feda728333a2a02133ed5736895b295507f9d2ebc20b7a9f85930265e26e309026d0eccd2ad825748c964a4e6425d58008abfff109a88b2755b6751e585ffc4b84beaa0f9ca22374dda9d7e1fca1192c1d59a7a80fc350f33bb69371f161506aa32b224c737fcc7ba51fab664271f4977c7611601e28e8ee104811c1c637533cd756eaefe9692309556f749755468031d303f21ccf5086fe79e5ffb8ab0335abd092fd0116c171e13eefd69504f25d36ba696f891d525fc64ab6e9ba6cd833198cae2a7057a02a1761c1d6deeeaf1f3f00737bd70aa10f8778171cffced8bbc05027888998cf2d338199c07604c9a1d31f72c3e6fbe54d7307170006133861badf24e08b942a10da41319cc43b237aa18c41e010768c9cda67053b130ee4494140b0cef15c96555d7478816d1e3d9357e3f18a846c6a43ff4a24953b2001f912eb792d87922897d50ed91c735d9507d5ce0fa2033766f4b2d891ed78e96e95a04c4bb577cb3afff82515e61aeba369b32438868bcf2cfeeab8a61a41282b0766580c79533f0eb371e127f8d48fe6d3c5eb16670ec90936fad430b4fb48b1552f90107e3d76a2db69d9b434a362119dc16b7f1258bfeb25e78de9e861d40740c56759c88d698d4f8198dd8642983d8517f86c32f7382b10ec80d0bffa798f990915635059414bc69f76cfc49ede8a2604344503ca5246429a85a15bae76dc8711d8708e26b89d0ab9f3fdb72d435b8003063d6d686359e014b318bf2587bcb294c5220253a3825b08f369eb6a3bc2bc6a65ffde091a959f22293be2fb4e268714a801a0ecde0e732552cbfc63d80411da8aad0a5d74775ca8f97309d1aa35bbf6b03092e5a5d79838a03fc866c402b39d9a2f27877335da759b377bc8791c3390840105b153e4918b8102f48e76fdab0012580d830bca360938563651248c325874952603b0fc8e14a4bc22a19c51ed628947c88df0c79607107d363614c27c30fc9dcb85c88c66db0739503ae3c89ebd3b88c9d6a6527b5fc9aaaf4c89fb6a6c6ee34c1c606b24764bf5680530f9c17c0d17701fa9c83a307566786fa20435f69721562a9bc427818a5c465090d403317b3809ab8908634560eda8140586751cb120a", @typed={0x8, 0x40, @u32=0x8}, @generic="0f90d04a319c3200069ba42f7930c81ee7966c837c920bbe9b1e7c4fff996977be89cd22b717a4c62d20f9c49bee0ff7b289e7785519dda963744f514e74848a041096242a20f3deb42d75b0d54045e6920841dc8834efe1c949a061c7427820e95621b97e3eba0263e1480600096893fdf9fbb93af34e244c983f62c51f06826985d7aa", @generic="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", @generic="a762d0e9b6b22dce2b00cdf6ab55afe2b069e2277f253ade2ab64ac444d6ea25031d8ae0a94803d4e2c40fdb1861fba908c81c062dbb61c262bb653babf9bd786fa7de9c1a9cfc34103281f38ae8a8686107119f9b8e3522fb21c8e68b9720f032424eee7cbe6ce028b2f5187a914bcc55018c6fa29d897682351e62febaa806313e34023cc2fc68f0c094fbe358c8ce840d12dd71e4ab61742888cf91e407f5765ec6f58ef939831799cb028c5472f85a45822c0130f489ce98d7ce86567e0ea7d211b9cbb912dde9", @typed={0xc, 0x46, @u64=0x6}, @generic="d4696121d63502b3d1a72bbbb6ebfc349f1d0ab3c06c23e351b67ebf7b251f2b36bd8df11823d5aefe5b08c3778e3922920e7b8df1ec4c61e7"]}]}, 0x21b4}, 0x1, 0x0, 0x0, 0x1}, 0x80040bc)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x14)
openat$kvm(0xffffffffffffff9c, &(0x7f0000002340)='/dev/kvm\x00', 0x4701, 0x0)

[  640.433226][T11664]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  640.439550][T11664] RIP: 0033:0x459a59
[  640.443452][T11664] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  640.464901][T11664] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  640.473592][T11664] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
03:23:53 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6)

[  640.481869][T11664] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  640.490704][T11664] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  640.498688][T11664] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  640.506675][T11664] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:02 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

03:24:02 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x71, 0x0, 0xb5, 0xe2, 0x0, 0x1, 0x10, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x4, @perf_config_ext={0x1, 0x2}, 0x400, 0x80, 0x5, 0xd, 0x3, 0x1, 0x9af}, 0x0, 0x6, r3, 0x1)
mkdirat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x4)

03:24:02 executing program 3 (fault-call:8 fault-nth:22):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:02 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r2 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r4 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r5 = dup2(r4, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r6 = syz_open_dev$media(&(0x7f0000000140)='/dev/media#\x00', 0x8, 0x100)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f0000000180)=0x2)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x14)

03:24:02 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
setsockopt$sock_linger(r1, 0x1, 0x2, &(0x7f0000000000), 0x8)

03:24:02 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x7)

03:24:02 executing program 1:
r0 = socket$inet6(0xa, 0x100000000000001, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0x7b, &(0x7f0000000080)=""/4096, &(0x7f0000001140)=0x1000)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0x2, 0x32, 0xffffffffffffffff, 0x0)

03:24:02 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x8)

03:24:02 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x60020f00)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  649.663999][T11704] FAULT_INJECTION: forcing a failure.
[  649.663999][T11704] name failslab, interval 1, probability 0, space 0, times 0
[  649.734930][T11704] CPU: 1 PID: 11704 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  649.742870][T11704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.752939][T11704] Call Trace:
[  649.756272][T11704]  dump_stack+0x1d8/0x2f8
[  649.760646][T11704]  should_fail+0x555/0x770
[  649.765201][T11704]  __should_failslab+0x11a/0x160
[  649.770169][T11704]  ? anon_vma_fork+0xf7/0x540
[  649.774880][T11704]  should_failslab+0x9/0x20
[  649.779538][T11704]  kmem_cache_alloc+0x56/0x2e0
[  649.784314][T11704]  anon_vma_fork+0xf7/0x540
[  649.788832][T11704]  ? dup_mmap+0x5b0/0xe00
[  649.793179][T11704]  dup_mmap+0x6b8/0xe00
[  649.797352][T11704]  dup_mm+0x9e/0x340
[  649.801265][T11704]  copy_process+0x22d6/0x5970
[  649.806001][T11704]  _do_fork+0x13f/0x5b0
[  649.810173][T11704]  ? debug_smp_processor_id+0x1c/0x20
[  649.815550][T11704]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  649.821632][T11704]  __x64_sys_clone+0x1ec/0x230
[  649.826414][T11704]  do_syscall_64+0xf7/0x1c0
03:24:03 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x9)

[  649.830924][T11704]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  649.837244][T11704] RIP: 0033:0x459a59
[  649.841139][T11704] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  649.860848][T11704] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  649.869258][T11704] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  649.877305][T11704] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:24:03 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x2)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r2, 0x40045731, &(0x7f0000000400)=0x7)
r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-monitor\x00', 0x800, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0)
symlinkat(&(0x7f0000000100)='./control\x00', r0, &(0x7f0000000000)='./control\x00')
execveat(r0, &(0x7f0000000040)='./control\x00', &(0x7f0000000200)=[&(0x7f0000000140)='\x00', &(0x7f00000001c0)='selfself\\]vmnet0self(\x00'], &(0x7f0000000340)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='vboxnet1,-\x00', &(0x7f00000002c0)='\x00', &(0x7f00000003c0)='\x99.\xa5bdev\x00'], 0x2900)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
unlink(&(0x7f0000000380)='./file0\x00')

03:24:03 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x24, &(0x7f0000000000), 0x8)

[  649.877311][T11704] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  649.877316][T11704] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  649.877321][T11704] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:03 executing program 3 (fault-call:8 fault-nth:23):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  650.053233][T11740] FAULT_INJECTION: forcing a failure.
[  650.053233][T11740] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  650.079822][T11740] CPU: 1 PID: 11740 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  650.088714][T11740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  650.098864][T11740] Call Trace:
[  650.102170][T11740]  dump_stack+0x1d8/0x2f8
[  650.106612][T11740]  should_fail+0x555/0x770
[  650.111045][T11740]  should_fail_alloc_page+0x55/0x60
[  650.116339][T11740]  prepare_alloc_pages+0x283/0x460
[  650.121540][T11740]  __alloc_pages_nodemask+0xb2/0x5d0
[  650.126825][T11740]  ? mmu_notifier_invalidate_range_start+0xbe/0x100
[  650.133672][T11740]  alloc_pages_current+0x2db/0x500
[  650.138788][T11740]  get_zeroed_page+0x17/0x40
[  650.143419][T11740]  __pud_alloc+0x37/0x210
[  650.147741][T11740]  copy_page_range+0x2502/0x2840
[  650.152668][T11740]  ? dup_mmap+0x8f3/0xe00
[  650.157005][T11740]  ? __vma_link_rb+0x839/0x860
[  650.161753][T11740]  dup_mmap+0xa01/0xe00
[  650.165890][T11740]  dup_mm+0x9e/0x340
[  650.170899][T11740]  copy_process+0x22d6/0x5970
[  650.175565][T11740]  _do_fork+0x13f/0x5b0
[  650.179724][T11740]  ? debug_smp_processor_id+0x1c/0x20
[  650.185070][T11740]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  650.191114][T11740]  __x64_sys_clone+0x1ec/0x230
[  650.195860][T11740]  do_syscall_64+0xf7/0x1c0
[  650.200341][T11740]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  650.206212][T11740] RIP: 0033:0x459a59
[  650.210079][T11740] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  650.230007][T11740] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  650.238596][T11740] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  650.246907][T11740] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  650.254856][T11740] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  650.262909][T11740] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  650.270863][T11740] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:10 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

03:24:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x7, 0x100)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000080)=0x5)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:24:10 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:10 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
statx(r1, &(0x7f0000000200)='./control\x00', 0x0, 0x8, &(0x7f0000000240))
r2 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x108020}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, 0x37, 0x402, 0x70bd2a, 0x25dfdbfb, {0x13}}, 0x14}, 0x1, 0x0, 0x0, 0x80020d0}, 0x8000)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r2, &(0x7f000034aff8)='./file0\x00')
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r7 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r8=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r6, 0x84, 0x6d, &(0x7f0000000100)=ANY=[@ANYRES32=r8, @ANYBLOB="76000000bc8b3dd02bb2e80b7d77cf3ed1b3d8a3590ef2a66feb436f90200c6a2e1b31b4ffa1adb5138347c5384d48ff93b69c8f79bd794f56d0e7ed6c26dd49fb9e6e5e9c847506a5700e7b4e9e04ac3a4b885f2ef051b0b00e4a4ccf6d8dd6c9d3d40d30f3697d6265ac692189bae8d01ba77ea64cc0770c60"], &(0x7f00000001c0)=0x7e)
renameat(r2, &(0x7f00000000c0)='./file0\x00', r2, &(0x7f0000009000)='./control\x00')

03:24:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xa)

03:24:10 executing program 3 (fault-call:8 fault-nth:24):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xb)

[  657.018182][T11754] FAULT_INJECTION: forcing a failure.
[  657.018182][T11754] name fail_page_alloc, interval 1, probability 0, space 0, times 0
03:24:10 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x71, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x10)

03:24:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x3, &(0x7f0000000040)="0800b505000000007b0071")
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0x2, &(0x7f0000000280)=0x14, 0x4)
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f00000002c0)=0x63, 0x2)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = syz_open_dev$swradio(&(0x7f0000000200)='/dev/swradio#\x00', 0x1, 0x2)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000240)={0x3, 0x4, 0x46, 0x6, 0x7f}, 0x13)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x40000)
ioctl$sock_SIOCDELDLCI(r6, 0x8981, &(0x7f0000000080)={'bond0\x00', 0x88f})
r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\b\x00\x00\x00', @ANYRES32=<r8=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x10, &(0x7f00000000c0)={r8}, &(0x7f0000000100)=0x18)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r8, 0x0, 0xeffe, 0x0, 0x0, 0x9}, &(0x7f0000000100)=0x14)

[  657.060595][T11754] CPU: 0 PID: 11754 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  657.068544][T11754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  657.078603][T11754] Call Trace:
[  657.081903][T11754]  dump_stack+0x1d8/0x2f8
[  657.086239][T11754]  should_fail+0x555/0x770
[  657.090666][T11754]  should_fail_alloc_page+0x55/0x60
[  657.095967][T11754]  prepare_alloc_pages+0x283/0x460
[  657.101094][T11754]  __alloc_pages_nodemask+0xb2/0x5d0
03:24:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xc)

[  657.106399][T11754]  alloc_pages_current+0x2db/0x500
[  657.111525][T11754]  __pmd_alloc+0x39/0x3d0
[  657.115872][T11754]  copy_page_range+0x248c/0x2840
[  657.120826][T11754]  ? dup_mmap+0x8f3/0xe00
[  657.125184][T11754]  ? __vma_link_rb+0x839/0x860
[  657.129959][T11754]  dup_mmap+0xa01/0xe00
[  657.134175][T11754]  dup_mm+0x9e/0x340
[  657.138086][T11754]  copy_process+0x22d6/0x5970
[  657.142800][T11754]  _do_fork+0x13f/0x5b0
[  657.147060][T11754]  ? debug_smp_processor_id+0x1c/0x20
[  657.152442][T11754]  ? fpregs_assert_state_consistent+0xb7/0xe0
03:24:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xd)

[  657.158526][T11754]  __x64_sys_clone+0x1ec/0x230
[  657.163310][T11754]  do_syscall_64+0xf7/0x1c0
[  657.167835][T11754]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  657.167845][T11754] RIP: 0033:0x459a59
[  657.167856][T11754] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  657.167861][T11754] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:24:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xe)

[  657.167869][T11754] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  657.167874][T11754] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  657.167884][T11754] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  657.197939][T11754] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  657.197946][T11754] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:17 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

03:24:17 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000040)={0x2, 0x0, 0xfffffffe})
open(&(0x7f0000000000)='./file1\x00', 0x88000, 0xdc20ca60584dc1de)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:24:17 executing program 3 (fault-call:8 fault-nth:25):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:17 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0xffffffffffffff0f)

03:24:17 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x10)

03:24:17 executing program 0:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000140)={{0x2, 0x0, @descriptor="8f90da8be1f5501e"}, 0x7f, [], "34aa63feaa9a3e735c320007beabe697d88465b4d94208bb9d341e845eb27282253defa6debf5e8581db64ebe8fd20d33245e64334db3a96b319baf1251ffae5cdfc88d7f3e282a64a80bbf579e5c74d55bf5ce3f1bf84e6c13942fd1481bd3cb698512af86a9dabf65fda5a84433775ce3544f18bd22dabdd61fdd798d349"})
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:24:17 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x11)

[  664.262642][T11788] FAULT_INJECTION: forcing a failure.
[  664.262642][T11788] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  664.308795][T11788] CPU: 0 PID: 11788 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  664.316736][T11788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  664.326799][T11788] Call Trace:
[  664.330097][T11788]  dump_stack+0x1d8/0x2f8
[  664.334438][T11788]  should_fail+0x555/0x770
[  664.338871][T11788]  should_fail_alloc_page+0x55/0x60
[  664.344086][T11788]  prepare_alloc_pages+0x283/0x460
[  664.349214][T11788]  __alloc_pages_nodemask+0xb2/0x5d0
[  664.354522][T11788]  alloc_pages_current+0x2db/0x500
[  664.359648][T11788]  __pmd_alloc+0x39/0x3d0
[  664.363967][T11788]  copy_page_range+0x248c/0x2840
[  664.368919][T11788]  ? dup_mmap+0x8f3/0xe00
[  664.373280][T11788]  ? __vma_link_rb+0x839/0x860
[  664.378066][T11788]  dup_mmap+0xa01/0xe00
[  664.382242][T11788]  dup_mm+0x9e/0x340
[  664.386177][T11788]  copy_process+0x22d6/0x5970
[  664.390895][T11788]  _do_fork+0x13f/0x5b0
[  664.395064][T11788]  ? debug_smp_processor_id+0x1c/0x20
[  664.400451][T11788]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  664.406535][T11788]  __x64_sys_clone+0x1ec/0x230
[  664.411329][T11788]  do_syscall_64+0xf7/0x1c0
[  664.415861][T11788]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  664.421780][T11788] RIP: 0033:0x459a59
[  664.425678][T11788] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  664.445282][T11788] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:24:17 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0xffffffffffffff0f)

03:24:17 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x12)

03:24:17 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:24:17 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001ff)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:24:17 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
socket$pptp(0x18, 0x1, 0x2)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
fcntl$getown(r4, 0x9)

[  664.453683][T11788] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  664.453688][T11788] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  664.453693][T11788] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  664.453698][T11788] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  664.453703][T11788] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:26 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

03:24:26 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x25)

03:24:26 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0xffffffffffffff0f)

03:24:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$PPPIOCSDEBUG(0xffffffffffffffff, 0x40047440, &(0x7f0000000000)=0x8)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$IMGETVERSION(r3, 0x80044942, &(0x7f0000000040))

03:24:26 executing program 3 (fault-call:8 fault-nth:26):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000, 0x2, &(0x7f0000ffd000/0x3000)=nil)
socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000180)={0x1, [<r2=>0x0]}, &(0x7f00000001c0)=0xec13bf850e547f4f)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

[  673.625342][T11826] FAULT_INJECTION: forcing a failure.
[  673.625342][T11826] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  673.663662][T11826] CPU: 1 PID: 11826 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  673.671600][T11826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  673.681667][T11826] Call Trace:
[  673.684967][T11826]  dump_stack+0x1d8/0x2f8
[  673.689398][T11826]  should_fail+0x555/0x770
[  673.693827][T11826]  should_fail_alloc_page+0x55/0x60
[  673.699043][T11826]  prepare_alloc_pages+0x283/0x460
[  673.704173][T11826]  __alloc_pages_nodemask+0xb2/0x5d0
[  673.709473][T11826]  ? __pmd_alloc+0x36a/0x3d0
[  673.714085][T11826]  alloc_pages_current+0x2db/0x500
[  673.719277][T11826]  pte_alloc_one+0x1f/0x180
[  673.723803][T11826]  __pte_alloc+0x20/0x2f0
[  673.728152][T11826]  copy_page_range+0x2315/0x2840
[  673.733137][T11826]  dup_mmap+0xa01/0xe00
[  673.737322][T11826]  dup_mm+0x9e/0x340
[  673.741241][T11826]  copy_process+0x22d6/0x5970
[  673.745974][T11826]  _do_fork+0x13f/0x5b0
[  673.750138][T11826]  ? debug_smp_processor_id+0x1c/0x20
[  673.755520][T11826]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  673.761605][T11826]  __x64_sys_clone+0x1ec/0x230
[  673.766392][T11826]  do_syscall_64+0xf7/0x1c0
03:24:26 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x48)

03:24:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$FS_IOC_GETFSLABEL(r3, 0x81009431, &(0x7f00000001c0))
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:24:26 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))

03:24:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x1, 0x0, 0x8001, 0x0, 0xfffffffc}, &(0x7f0000000100)=0x14)

03:24:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00')

[  673.770921][T11826]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  673.776818][T11826] RIP: 0033:0x459a59
[  673.780716][T11826] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  673.800324][T11826] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  673.808744][T11826] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  673.816723][T11826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:24:26 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)

[  673.825157][T11826] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  673.833144][T11826] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  673.841120][T11826] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:34 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

03:24:34 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
open(&(0x7f0000000000)='./file0\x00', 0x42000, 0x13d)
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:24:34 executing program 3 (fault-call:8 fault-nth:27):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:34 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4c)

03:24:34 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})
socket$inet6_sctp(0xa, 0x10000000005, 0x84)

03:24:34 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000140)={0x5, 0xf})
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self\x00', 0x424040, 0x0)
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
recvmsg(r3, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000200)=""/98, 0x62}, {&(0x7f0000000280)=""/133, 0x85}, {&(0x7f0000000340)=""/45, 0x2d}, {&(0x7f0000000380)=""/199, 0xc7}, {&(0x7f0000000480)=""/237, 0xed}, {&(0x7f0000000580)=""/93, 0x5d}, {&(0x7f0000000600)}], 0x7, &(0x7f00000006c0)=""/9, 0x9}, 0x22102)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x4)
ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f0000000040)=0xff)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:24:34 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x60)

03:24:34 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x20, 0x80})

03:24:34 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x68)

[  680.942782][T11868] FAULT_INJECTION: forcing a failure.
[  680.942782][T11868] name failslab, interval 1, probability 0, space 0, times 0
[  681.035743][T11868] CPU: 0 PID: 11868 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  681.043716][T11868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  681.053779][T11868] Call Trace:
[  681.057083][T11868]  dump_stack+0x1d8/0x2f8
[  681.061424][T11868]  should_fail+0x555/0x770
[  681.065851][T11868]  __should_failslab+0x11a/0x160
[  681.070801][T11868]  ? ptlock_alloc+0x20/0x70
[  681.075328][T11868]  should_failslab+0x9/0x20
[  681.079851][T11868]  kmem_cache_alloc+0x56/0x2e0
[  681.084628][T11868]  ? alloc_pages_current+0x2db/0x500
[  681.089923][T11868]  ptlock_alloc+0x20/0x70
[  681.094243][T11868]  pte_alloc_one+0x6e/0x180
[  681.094254][T11868]  __pte_alloc+0x20/0x2f0
[  681.094265][T11868]  copy_page_range+0x2315/0x2840
[  681.094311][T11868]  dup_mmap+0xa01/0xe00
[  681.112216][T11868]  dup_mm+0x9e/0x340
[  681.116135][T11868]  copy_process+0x22d6/0x5970
[  681.120855][T11868]  _do_fork+0x13f/0x5b0
[  681.125029][T11868]  ? debug_smp_processor_id+0x1c/0x20
[  681.130413][T11868]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  681.136487][T11868]  __x64_sys_clone+0x1ec/0x230
[  681.141258][T11868]  do_syscall_64+0xf7/0x1c0
[  681.145750][T11868]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  681.145760][T11868] RIP: 0033:0x459a59
[  681.145769][T11868] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  681.145774][T11868] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:24:34 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
r4 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r4)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x10000, 0x0)
getpeername$inet6(r5, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000200)=0x1c)
timer_create(0x5, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r4}, 0x0)
kcmp(r4, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r6 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r4, r6, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r7 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r7)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r7}, 0x0)
kcmp(r7, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r8 = syz_open_dev$dmmidi(&(0x7f00000003c0)='/dev/dmmidi#\x00', 0x5, 0x200802)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r7, r8, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r9 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r10 = dup2(r9, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r10, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r11 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r12 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r13 = dup2(r12, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r13, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$KVM_IRQFD(r10, 0x4020ae76, &(0x7f0000000380)={r11, 0x5, 0xba7d, r13})
getsockopt$inet6_opts(r8, 0x29, 0x36, &(0x7f0000000240)=""/231, &(0x7f0000000340)=0xe7)
setsockopt$sock_void(r6, 0x1, 0x1b, 0x0, 0x0)

03:24:34 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000002340)=ANY=[@ANYBLOB="c1080000000000000a004e2100000004fe8000000000000000000000000000100500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a0000000a004e2000000001ff0200000000000000000000000000010300000000000000000000000000000000000000000000000000000000000000000000ebffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2400000007ff020000000000000000000000000001ff030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2400000005fe8000000000000000000000000000bb01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2300000009fe8000000000000000000000000000aa080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008686b4f00000000000000000000000000000000000000000000000000000000000a004e240000a614fe8000000000000000000000000000aa08000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2100000009fe88000000000000000000000000000101000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2100000800996960cf9cf2f6ba21704217fb9373e702000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e240000000200000000000000000000000000000000ff7f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e2300000400fe8000000000000000000000000000bb0700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001fe80000000000000000000000000000c0200"/1424], 0x590)
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r2 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
syz_mount_image$bfs(&(0x7f0000000000)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x7, 0x5, &(0x7f00000022c0)=[{&(0x7f0000000100)="14afb3962c71dd47cdbe97ad85bd1c443349a5d6864c8cd1abd5a3cbfe0eba2e701e719216ac0b3abd12285aade671ac761dbc34e2c307d95e2559646203d0cc9130d03967962ea46965abeabba6f4d86953ad6d19a512bfa96f605a04dc141d441dc690755cf83c0ab77e48b0543c537cac", 0x72, 0x20}, {&(0x7f00000001c0)="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", 0x1000, 0x8000}, {&(0x7f00000011c0)="27517a860a4fc8b1259327fbf9f4a1c2c042147cbfe203d83cee58f4df72ccf0d5cd7803f12bdcc8d8fbe83ea42dbd35b26fe4a6dc8fd62e559e7b87ae7480fc414f6418d42a8b7734a26f3138ead7e617c63bae3dbb600ccc49e8a67c72ef9d91f6d55f6164ebcfbb9270d68efaee5c98b6986068d92e234151d31aa39db0da9632e51c", 0x84, 0x5}, {&(0x7f0000001280)="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", 0x1000, 0x7}, {&(0x7f0000002280)="d293b3276e2638375d", 0x9, 0x8}], 0x2000, 0x0)
symlinkat(&(0x7f0000443ff6)='./control\x00', r2, &(0x7f000034aff8)='./file0\x00')
renameat(r2, &(0x7f00000000c0)='./file0\x00', r2, &(0x7f0000009000)='./control\x00')

03:24:34 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  681.145782][T11868] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  681.145787][T11868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  681.145791][T11868] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  681.145796][T11868] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  681.145802][T11868] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:43 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

03:24:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x10900)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x10040, 0x0)
ioctl$KDENABIO(r1, 0x4b36)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:24:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6c)

03:24:43 executing program 3 (fault-call:8 fault-nth:28):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

03:24:43 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000200)='./control\x00', 0x2, 0x0)
lsetxattr$trusted_overlay_origin(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='trusted.overlay.origin\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x1)
ioctl$PPPIOCSMRRU(r0, 0x4004743b, &(0x7f0000000080)=0xfffffffd)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
read(r1, &(0x7f0000000000)=""/107, 0x6b)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:24:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x74)

03:24:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

[  690.266648][T11907] FAULT_INJECTION: forcing a failure.
[  690.266648][T11907] name failslab, interval 1, probability 0, space 0, times 0
[  690.283104][T11907] CPU: 0 PID: 11907 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  690.291056][T11907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  690.291061][T11907] Call Trace:
[  690.291080][T11907]  dump_stack+0x1d8/0x2f8
[  690.291096][T11907]  should_fail+0x555/0x770
[  690.291112][T11907]  __should_failslab+0x11a/0x160
[  690.291124][T11907]  ? dup_mmap+0x587/0xe00
[  690.291136][T11907]  should_failslab+0x9/0x20
[  690.291148][T11907]  kmem_cache_alloc+0x56/0x2e0
[  690.291161][T11907]  ? security_vm_enough_memory_mm+0xb0/0xc0
[  690.291172][T11907]  dup_mmap+0x587/0xe00
[  690.291194][T11907]  dup_mm+0x9e/0x340
[  690.291206][T11907]  copy_process+0x22d6/0x5970
[  690.291226][T11907]  ? _raw_spin_unlock_irq+0x27/0x80
[  690.291247][T11907]  _do_fork+0x13f/0x5b0
[  690.327083][T11907]  ? __kasan_check_write+0x14/0x20
[  690.327095][T11907]  ? __fpregs_load_activate+0x195/0x220
[  690.327108][T11907]  ? switch_fpu_return+0xe/0x10
[  690.327122][T11907]  __x64_sys_clone+0x1ec/0x230
[  690.327143][T11907]  do_syscall_64+0xf7/0x1c0
[  690.327157][T11907]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  690.327170][T11907] RIP: 0033:0x459a59
[  690.342040][T11907] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:24:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x7a)

03:24:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

03:24:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000140)=""/144, &(0x7f0000000000)=0x90)
unshare(0x2000400)
r2 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r3 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
r4 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r5 = dup2(r4, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r6 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
r7 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/qat_adf_ctl\x00', 0x1, 0x0)
ioctl$TCSETX(r7, 0x5433, &(0x7f0000000340)={0xff80, 0x3f, [0x8, 0x1, 0x7, 0x3, 0xfff7], 0x2})
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
connect$l2tp(r5, &(0x7f0000000280)=@pppol2tpin6={0x18, 0x1, {0x0, r6, 0x4, 0x4, 0x1, 0x4, {0xa, 0x4e20, 0xfffffff9, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x20}}, 0x4}}}, 0x32)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r8 = fcntl$dupfd(r3, 0x0, r2)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r8, 0x84, 0x22, &(0x7f0000000080)={0x7ff, 0x400f, 0x0, 0x8001}, &(0x7f0000000200)=0xffffff88)
r9 = socket$inet_sctp(0x2, 0x1, 0x84)
r10 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r10, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r11=>0x0]}, &(0x7f0000000240)=0xfffffffffffffea9)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r9, 0x84, 0x1, &(0x7f00000000c0)={r11}, &(0x7f0000000100)=0x14)

[  690.342046][T11907] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  690.342055][T11907] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  690.342060][T11907] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  690.342065][T11907] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  690.342071][T11907] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  690.342076][T11907] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:43 executing program 3 (fault-call:8 fault-nth:29):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  690.511000][T11921] QAT: Invalid ioctl
[  690.553444][T11921] IPVS: length: 144 != 1213944
[  690.575374][T11925] QAT: Invalid ioctl
[  690.596558][T11928] FAULT_INJECTION: forcing a failure.
[  690.596558][T11928] name failslab, interval 1, probability 0, space 0, times 0
[  690.609722][T11928] CPU: 0 PID: 11928 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  690.617624][T11928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  690.627682][T11928] Call Trace:
[  690.630965][T11928]  dump_stack+0x1d8/0x2f8
[  690.635285][T11928]  should_fail+0x555/0x770
[  690.639703][T11928]  __should_failslab+0x11a/0x160
[  690.644634][T11928]  ? anon_vma_clone+0xaa/0x4b0
[  690.649398][T11928]  should_failslab+0x9/0x20
[  690.653896][T11928]  kmem_cache_alloc+0x56/0x2e0
[  690.658645][T11928]  anon_vma_clone+0xaa/0x4b0
[  690.663216][T11928]  ? rcu_read_lock_sched_held+0x10b/0x170
[  690.668934][T11928]  anon_vma_fork+0x91/0x540
[  690.673438][T11928]  ? dup_mmap+0x5b0/0xe00
[  690.677751][T11928]  dup_mmap+0x6b8/0xe00
[  690.681899][T11928]  dup_mm+0x9e/0x340
[  690.685783][T11928]  copy_process+0x22d6/0x5970
[  690.690464][T11928]  _do_fork+0x13f/0x5b0
[  690.694623][T11928]  ? debug_smp_processor_id+0x1c/0x20
[  690.699981][T11928]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  690.706037][T11928]  __x64_sys_clone+0x1ec/0x230
[  690.710790][T11928]  do_syscall_64+0xf7/0x1c0
[  690.715282][T11928]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  690.721158][T11928] RIP: 0033:0x459a59
[  690.725033][T11928] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  690.744624][T11928] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  690.753244][T11928] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  690.761206][T11928] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  690.769160][T11928] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  690.777223][T11928] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  690.785201][T11928] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x300)

03:24:51 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:24:51 executing program 3 (fault-call:8 fault-nth:30):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:24:51 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
chdir(&(0x7f0000000000)='./file0\x00')
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:24:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = getpgrp(0x0)
r3 = getpgid(0x0)
setpgid(r2, r3)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000000)={'icmp6\x00'}, &(0x7f0000000080)=0x1e)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x14)

03:24:51 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  698.628719][T11941] FAULT_INJECTION: forcing a failure.
[  698.628719][T11941] name failslab, interval 1, probability 0, space 0, times 0
[  698.645355][T11941] CPU: 1 PID: 11941 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  698.653286][T11941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  698.663348][T11941] Call Trace:
[  698.666651][T11941]  dump_stack+0x1d8/0x2f8
[  698.670996][T11941]  should_fail+0x555/0x770
[  698.675447][T11941]  __should_failslab+0x11a/0x160
[  698.680395][T11941]  ? anon_vma_clone+0xaa/0x4b0
[  698.685172][T11941]  should_failslab+0x9/0x20
[  698.689692][T11941]  kmem_cache_alloc+0x56/0x2e0
[  698.694478][T11941]  anon_vma_clone+0xaa/0x4b0
[  698.699090][T11941]  anon_vma_fork+0x91/0x540
[  698.703722][T11941]  ? dup_mmap+0x5b0/0xe00
[  698.708072][T11941]  dup_mmap+0x6b8/0xe00
[  698.712256][T11941]  dup_mm+0x9e/0x340
[  698.716171][T11941]  copy_process+0x22d6/0x5970
[  698.720895][T11941]  _do_fork+0x13f/0x5b0
[  698.725084][T11941]  ? debug_smp_processor_id+0x1c/0x20
[  698.730464][T11941]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  698.736548][T11941]  __x64_sys_clone+0x1ec/0x230
[  698.741328][T11941]  do_syscall_64+0xf7/0x1c0
[  698.745846][T11941]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  698.751746][T11941] RIP: 0033:0x459a59
[  698.755645][T11941] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:24:51 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:24:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x500)

03:24:51 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:24:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x600)

03:24:52 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:24:52 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$DRM_IOCTL_ADD_MAP(r2, 0xc0286415, &(0x7f0000000140)={&(0x7f0000ffd000/0x3000)=nil, 0x2, 0x5, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4})
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000000)=<r5=>0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r5, 0x1, &(0x7f0000000200)=""/153)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r6}, &(0x7f0000000100)=0x14)

[  698.775256][T11941] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  698.783676][T11941] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  698.791654][T11941] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  698.799677][T11941] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  698.807648][T11941] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  698.815609][T11941] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:24:52 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
renameat(r4, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:01 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:25:01 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

03:25:01 executing program 0:
r0 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000200)={<r1=>0x0, <r2=>0x0})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r0, 0xc05c5340, &(0x7f0000000240)={0x5, 0x100, 0xff, {r1, r2+10000000}, 0x0, 0x8})
r3 = dup2(r0, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r4 = accept4$bt_l2cap(r3, 0x0, &(0x7f0000000000), 0x80c00)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000080)={0x0, 0x4, 0x7, 0x2})
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r5, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000340)=ANY=[@ANYBLOB="a90cfd201a519ea73da7265d4285d80cd9b9a4e4ede2ebbe76dff91a2de613e444b7d3a98e511f6ed99bddc65c7896e1356aa1aa73a77e9fd0e7f045cdf906c2b95819ec2f645c845c1082c65aa71c13c38872a3e0c98ef0c51f4fcdca0e6d0ad4332a1849324cc04a617ef400009ba7317ca2f1825cd9", @ANYRES32=<r8=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000000c0)={r8, 0x0, 0x0, 0x9e1}, &(0x7f0000000100)=0x14)

03:25:01 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x700)

03:25:01 executing program 3 (fault-call:8 fault-nth:31):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:01 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = fsopen(&(0x7f00000000c0)='9p\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r2, 0x0, &(0x7f0000000100)='sync\x02', 0x0, 0x0)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:01 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000100)='system_u:object_r:dpkg_var_lib_t:s0\x00', 0x24, 0x3)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  708.030979][T11986] FAULT_INJECTION: forcing a failure.
[  708.030979][T11986] name failslab, interval 1, probability 0, space 0, times 0
[  708.055790][T11986] CPU: 0 PID: 11986 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  708.063724][T11986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  708.073826][T11986] Call Trace:
[  708.077130][T11986]  dump_stack+0x1d8/0x2f8
[  708.081630][T11986]  should_fail+0x555/0x770
[  708.086068][T11986]  __should_failslab+0x11a/0x160
[  708.091025][T11986]  ? anon_vma_clone+0xaa/0x4b0
[  708.095811][T11986]  should_failslab+0x9/0x20
[  708.100342][T11986]  kmem_cache_alloc+0x56/0x2e0
[  708.105126][T11986]  anon_vma_clone+0xaa/0x4b0
[  708.109737][T11986]  anon_vma_fork+0x91/0x540
[  708.114247][T11986]  ? dup_mmap+0x5b0/0xe00
[  708.118592][T11986]  dup_mmap+0x6b8/0xe00
[  708.122773][T11986]  dup_mm+0x9e/0x340
[  708.126869][T11986]  copy_process+0x22d6/0x5970
03:25:01 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="73928fef", @ANYRES32=<r2=>0x0], &(0x7f000095dffc)=0x8)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f00000000c0)={r2, 0x0, 0x0, 0xe}, &(0x7f0000000100)=0x14)

03:25:01 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x900)

03:25:01 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

03:25:01 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x80)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x200, 0x0)
ioctl$PPPIOCDISCONN(r2, 0x7439)
renameat(r0, &(0x7f0000000040)='./control\x00', r0, &(0x7f0000009000)='./control\x00')

[  708.131591][T11986]  _do_fork+0x13f/0x5b0
[  708.135759][T11986]  ? debug_smp_processor_id+0x1c/0x20
[  708.141142][T11986]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  708.147242][T11986]  __x64_sys_clone+0x1ec/0x230
[  708.152030][T11986]  do_syscall_64+0xf7/0x1c0
[  708.156566][T11986]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  708.162452][T11986] RIP: 0033:0x459a59
[  708.162462][T11986] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  708.162467][T11986] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  708.162475][T11986] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  708.162480][T11986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  708.162485][T11986] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  708.162495][T11986] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
03:25:01 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

[  708.185973][T11986] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:10 executing program 4:
mkdir(&(0x7f0000000040)='./control\x00', 0x40)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xc)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, &(0x7f0000000100)={0x10000, 0x0, {0x2, 0x2, 0x8, 0x0, 0x76c5}})
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:10 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0xffffff60, 0x0}}, {{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x3a3, 0x0)

03:25:10 executing program 1:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

03:25:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$SG_SET_COMMAND_Q(0xffffffffffffffff, 0x2271, &(0x7f0000000000)=0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:25:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xa00)

03:25:10 executing program 3 (fault-call:8 fault-nth:32):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:10 executing program 1:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

[  717.404802][T12027] FAULT_INJECTION: forcing a failure.
[  717.404802][T12027] name failslab, interval 1, probability 0, space 0, times 0
[  717.426530][T12027] CPU: 1 PID: 12027 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  717.434463][T12027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.444538][T12027] Call Trace:
[  717.447829][T12027]  dump_stack+0x1d8/0x2f8
[  717.447841][T12027]  should_fail+0x555/0x770
[  717.447855][T12027]  __should_failslab+0x11a/0x160
[  717.447866][T12027]  ? anon_vma_clone+0xaa/0x4b0
[  717.447877][T12027]  should_failslab+0x9/0x20
[  717.447887][T12027]  kmem_cache_alloc+0x56/0x2e0
[  717.447899][T12027]  anon_vma_clone+0xaa/0x4b0
[  717.447912][T12027]  anon_vma_fork+0x91/0x540
[  717.447921][T12027]  ? dup_mmap+0x5b0/0xe00
[  717.447932][T12027]  dup_mmap+0x6b8/0xe00
[  717.447951][T12027]  dup_mm+0x9e/0x340
[  717.447963][T12027]  copy_process+0x22d6/0x5970
03:25:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x0, 0x0, 0x0, 0x0, 0x10000}, &(0x7f0000000100)=0x14)

03:25:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xb00)

[  717.501741][T12027]  _do_fork+0x13f/0x5b0
[  717.505914][T12027]  ? debug_smp_processor_id+0x1c/0x20
[  717.511296][T12027]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  717.517369][T12027]  __x64_sys_clone+0x1ec/0x230
[  717.517391][T12027]  do_syscall_64+0xf7/0x1c0
[  717.517407][T12027]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  717.517417][T12027] RIP: 0033:0x459a59
03:25:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$TIOCMGET(0xffffffffffffffff, 0x5415, &(0x7f0000000280))
ioctl$IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f0000000080)={0x2, 0x70, 0x1})
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r3 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000005c0)="4acf665ff77df4f20690a5a83bc1a1e6519321db1dc2bf7eee06d978abdfbb33f3bc7025e6befda3c827875946eb75c14639ab6e76811a733653f72afc34e5fce1bed277a8faa02e6da16041b40bab677d6555e94a42b7ac236c8c35d729ac501cf28293c919f2f3ceec4703c892adeac90504aeb3ba485e09bda66d2b96124cabc4d2e653848e2bd909287d0d2c433d72bbd4333cf37f2a8972bba453c776d2c73c61b9fa2153405fc0253992c918682c7018f6a280a9ff312ae4a6996bd9547aed66e72f94342a7d27b9483f7e2e8e3c5bbb89452fd9bb6708ae89ba29", 0xde, 0xfffffffffffffffe)
lstat(&(0x7f0000000700)='./file0/file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
getresgid(&(0x7f0000000400), &(0x7f0000000540), &(0x7f00000006c0)=<r5=>0x0)
keyctl$chown(0x4, r3, r4, r5)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, <r6=>0x0}, &(0x7f0000000240)=0xc)
mount$fuseblk(&(0x7f0000000140)='/dev/loop0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='fuseblk\x00', 0x4000, &(0x7f0000000380)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id', 0x3d, r6}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x1}}, {@max_read={'max_read'}}, {@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x889560ba4af15192}}, {@max_read={'max_read', 0x3d, 0x1}}], [{@smackfsdef={'smackfsdef', 0x3d, '\xa0posix_acl_accessself'}}, {@permit_directio='permit_directio'}, {@fsname={'fsname'}}, {@smackfsroot={'smackfsroot', 0x3d, 'bdev'}}, {@dont_hash='dont_hash'}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@smackfsdef={'smackfsdef', 0x3d, 'loselfloselfvmnet1,'}}, {@obj_user={'obj_user', 0x3d, '-'}}]}})
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r9=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r7, 0x84, 0x1, &(0x7f00000000c0)={r9}, &(0x7f0000000100)=0x14)

[  717.517427][T12027] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  717.517433][T12027] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  717.517443][T12027] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  717.517448][T12027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  717.517453][T12027] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  717.517459][T12027] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  717.517465][T12027] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:10 executing program 3 (fault-call:8 fault-nth:33):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:10 executing program 1:
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

03:25:10 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f00000001c0)=@urb_type_iso={0x0, {0x6}, 0xc, 0x42, &(0x7f0000000000)="6fdd60558ac2afb1b3154d8a657b4329456b0296a357b6434ae37d917ac39f6b788d16dbd9fdb594da65", 0x2a, 0x3, 0x3, 0x24, 0x32, 0x99, &(0x7f0000000100)="8fcdbf0d96efdb707a0c02433ccaaa2fafd40a300317a21a9389aa50a30e5ab472817733d9d71e539c7e1ce4c2d15427bd9d393cbb56b00364cb5fd43fd68920fa80e4ddbdf4cbaf6e7046ba528b6103cdea3ab84664a225a4b4dc0540ffa0bde034ad547f5668b7d608296bcd32c5c9cad8e2984d8cdfd2c4424e", [{0x6, 0x1, 0xffffffff}, {0x40, 0x7f, 0xe861}, {0xe6, 0xb785, 0x9}, {0x7fffffff, 0x6a3}, {0x0, 0x400, 0x8}, {0xae, 0x4, 0x5}, {0x80000000, 0xffffff81, 0x7}, {0x1f, 0x5, 0x67}, {0x9, 0x1, 0x4}, {0xe33b, 0x9, 0x2}, {0x6, 0x3, 0x400}, {0x7, 0x6, 0xdee}, {0x641, 0xcfe0ee6, 0x3}, {0x3, 0x800, 0xf8af}, {0xfffffffb, 0x3, 0x2}, {0x1, 0x7fff, 0x6}, {0x4, 0x4, 0x1094e3df}, {0xf2, 0x9, 0x2}, {0x7a38, 0x389, 0x2}, {0x3f, 0x9, 0x6}, {0x6, 0xfffffffe, 0x3}, {0xfffffffe, 0x10001, 0x13}, {0x0, 0x8e85, 0x6}, {0x6, 0x9, 0x8}, {0x701, 0x7ff, 0x8000}, {0x628, 0x3, 0x9}, {0x9, 0xff, 0x1}, {0x7fff, 0x7, 0xff}, {0x200, 0x5, 0x1}, {0x7, 0xfffffe01, 0x36c}, {0x5a7, 0x4, 0x89f3}, {0x9, 0x80, 0x6}, {0x81, 0x6, 0x1}, {0xff00000, 0x9315, 0x2}, {0x7f3, 0xe6, 0x5}, {0x3, 0x8d, 0x1f}]})
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  717.689267][T12047] FAULT_INJECTION: forcing a failure.
[  717.689267][T12047] name failslab, interval 1, probability 0, space 0, times 0
[  717.757659][T12047] CPU: 1 PID: 12047 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  717.765627][T12047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  717.775689][T12047] Call Trace:
[  717.778993][T12047]  dump_stack+0x1d8/0x2f8
[  717.783339][T12047]  should_fail+0x555/0x770
[  717.787787][T12047]  __should_failslab+0x11a/0x160
[  717.792748][T12047]  ? anon_vma_fork+0x1d8/0x540
[  717.797524][T12047]  should_failslab+0x9/0x20
[  717.802039][T12047]  kmem_cache_alloc+0x56/0x2e0
[  717.806813][T12047]  anon_vma_fork+0x1d8/0x540
[  717.811416][T12047]  dup_mmap+0x6b8/0xe00
[  717.815588][T12047]  dup_mm+0x9e/0x340
[  717.819490][T12047]  copy_process+0x22d6/0x5970
[  717.824222][T12047]  _do_fork+0x13f/0x5b0
[  717.828388][T12047]  ? debug_smp_processor_id+0x1c/0x20
[  717.833765][T12047]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  717.839847][T12047]  __x64_sys_clone+0x1ec/0x230
[  717.844628][T12047]  do_syscall_64+0xf7/0x1c0
[  717.849146][T12047]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  717.855043][T12047] RIP: 0033:0x459a59
[  717.858933][T12047] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  717.878664][T12047] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  717.887062][T12047] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  717.895019][T12047] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  717.902977][T12047] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  717.910936][T12047] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  717.918904][T12047] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:19 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x1, 0x0)

03:25:19 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xc00)

03:25:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x200, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000140)={0x5, 0x4, 0x0, 0x5, 0x4}, 0x14)
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x10, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x18)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r8=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r6, 0x84, 0x10, &(0x7f00000000c0)={r8}, &(0x7f0000000100)=0x18)
ioctl$KDDELIO(r1, 0x4b35, 0x3)
r9 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r9)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r9}, 0x0)
kcmp(r9, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r10 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r9, r10, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r10, 0x84, 0x1, &(0x7f00000000c0)={r8, 0x0, 0x0, 0x1f}, &(0x7f0000000000)=0xfffffffffffffd17)

03:25:19 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
stat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000280)='overlay\x00', 0x400, &(0x7f0000000380)={[{@default_permissions='default_permissions'}, {@xino_off='xino=off'}], [{@smackfsdef={'smackfsdef', 0x3d, '-'}}, {@fowner_lt={'fowner<', r2}}]})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_LINKINFO={0x28, 0x12, @veth={{0xc, 0x1, 'veth\x00'}, {0x18, 0x2, @VETH_INFO_PEER={0x14}}}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=@newqdisc={0x444, 0x24, 0x507, 0x0, 0x0, {0x0, r6, {0x0, 0xe}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbq={{0x8, 0x1, 'cbq\x00'}, {0x418, 0x2, [@TCA_CBQ_RTAB={0x404}, @TCA_CBQ_RATE={0x10, 0x5, {0x6, 0x0, 0x0, 0x0, 0x0, 0x5}}]}}]}, 0x444}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newqdisc={0x30, 0x24, 0x507, 0x0, 0x0, {0x0, r6, {0x0, 0xe}, {0x0, 0xe}}, [@qdisc_kind_options=@q_cbq={{0xc, 0x1, 'cbq\x00'}, {0x4}}]}, 0x30}}, 0x0)
bind$xdp(r0, &(0x7f0000000000)={0x2c, 0x3, r6, 0xf}, 0x10)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:19 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

03:25:19 executing program 3 (fault-call:8 fault-nth:34):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:19 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

[  726.792605][T12071] FAULT_INJECTION: forcing a failure.
[  726.792605][T12071] name failslab, interval 1, probability 0, space 0, times 0
[  726.834980][T12071] CPU: 1 PID: 12071 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  726.842917][T12071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  726.852973][T12071] Call Trace:
[  726.852993][T12071]  dump_stack+0x1d8/0x2f8
[  726.853006][T12071]  should_fail+0x555/0x770
[  726.853022][T12071]  __should_failslab+0x11a/0x160
[  726.853034][T12071]  ? anon_vma_fork+0x1d8/0x540
[  726.853044][T12071]  should_failslab+0x9/0x20
[  726.853059][T12071]  kmem_cache_alloc+0x56/0x2e0
03:25:20 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000580))
r2 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0x2, &(0x7f0000000200)=0x11, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r5 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000080))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r6}, &(0x7f0000000100)=0x14)
stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
r8 = getgid()
setregid(r7, r8)

[  726.865077][T12071]  anon_vma_fork+0x1d8/0x540
[  726.874752][T12071]  dup_mmap+0x6b8/0xe00
[  726.874776][T12071]  dup_mm+0x9e/0x340
[  726.874791][T12071]  copy_process+0x22d6/0x5970
[  726.884963][T12071]  _do_fork+0x13f/0x5b0
[  726.884977][T12071]  ? debug_smp_processor_id+0x1c/0x20
[  726.884995][T12071]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  726.893763][T12071]  __x64_sys_clone+0x1ec/0x230
[  726.893785][T12071]  do_syscall_64+0xf7/0x1c0
[  726.893803][T12071]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
03:25:20 executing program 1:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)

[  726.893812][T12071] RIP: 0033:0x459a59
[  726.893824][T12071] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  726.902394][T12071] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  726.902404][T12071] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  726.902408][T12071] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:25:20 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xd00)

03:25:20 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  726.902413][T12071] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  726.902419][T12071] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  726.902425][T12071] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:20 executing program 3 (fault-call:8 fault-nth:35):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  727.119789][T12093] FAULT_INJECTION: forcing a failure.
[  727.119789][T12093] name failslab, interval 1, probability 0, space 0, times 0
[  727.171206][T12093] CPU: 0 PID: 12093 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  727.179141][T12093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  727.179147][T12093] Call Trace:
[  727.179166][T12093]  dump_stack+0x1d8/0x2f8
[  727.179180][T12093]  should_fail+0x555/0x770
[  727.179197][T12093]  __should_failslab+0x11a/0x160
[  727.179207][T12093]  ? dup_mmap+0x587/0xe00
[  727.179219][T12093]  should_failslab+0x9/0x20
[  727.179230][T12093]  kmem_cache_alloc+0x56/0x2e0
[  727.179241][T12093]  dup_mmap+0x587/0xe00
[  727.179259][T12093]  dup_mm+0x9e/0x340
[  727.179271][T12093]  copy_process+0x22d6/0x5970
[  727.179310][T12093]  _do_fork+0x13f/0x5b0
[  727.179323][T12093]  ? debug_smp_processor_id+0x1c/0x20
[  727.179333][T12093]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  727.179349][T12093]  __x64_sys_clone+0x1ec/0x230
[  727.179367][T12093]  do_syscall_64+0xf7/0x1c0
[  727.179383][T12093]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  727.201475][T12093] RIP: 0033:0x459a59
[  727.267315][T12093] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  727.286901][T12093] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  727.295290][T12093] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  727.303257][T12093] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  727.311210][T12093] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  727.319172][T12093] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  727.327134][T12093] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:29 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x1, 0x0)

03:25:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
inotify_init1(0x81400)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x301080, 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r2 = add_key(&(0x7f0000000240)='rxrpc_s\x00', &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0x0)
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f00000002c0)={r2, 0xbe, 0xbb}, &(0x7f0000000300)={'enc=', 'raw', ' hash=', {'sha256-ce\x00'}}, &(0x7f0000000380)="d84811840b3847962043c4ee311aa151a5988120eb225fe9561d08198c7a3bcd14bb60fb02c18873bd2c48a6552ab41d0417040f07633fbe1345b1e86b3370f25ec0d3e06baf156ccc9745ba601db541e10c85310495bcf0d79a0553a87a6f2714a8b6b00a75bf89ed15c1cbe7cb335fdbbd7941537614bf1770984aaf554a86ed13098dbf4082d096de90f42b0d9c438f7c887b0fa97a6215474f59d71f9f3cbc134b3aa82b4f8d2c4c2043208675f431928c16fb78effaada5970ba0fc", &(0x7f0000000440)=""/187)
r3 = dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
write$FUSE_LSEEK(r3, &(0x7f0000000080)={0x5, 0x0, 0x5, {0x6}}, 0x18)
unshare(0x2000400)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000016332c458f8c4c017071c9ae2bcc8964f715354be58bb510b11efef58a255c47e09df0ff371735c74480c9607cc02a496a9c11dfb4b548fde217395d2200ca8a878a724520b196fca4f4574830587c7e72211a7bb8a0180d1dff7dfa94833aa0e639cadfc66cf1c28e3a231729ea87939387b7b2ec753884c1e8aea0e88f8f214b30a3b040b839583fe4b60f9a54b9c95405fefc361a591ed6c42994ad6af61bb0cc010146c24e1e3d459dbe01695015b6c7ebd068e013c5407e0a9c89c186906a42e67272b6e9a944fe912bd4eeacea36145883", @ANYRES32=<r6=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f00000000c0)={r6, 0x0, 0x0, 0x0, 0x400000}, &(0x7f0000000100)=0x14)

03:25:29 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xe00)

03:25:29 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:29 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
syz_mount_image$hfs(&(0x7f0000000100)='hfs\x00', &(0x7f0000000140)='./control\x00', 0x1, 0x3, &(0x7f0000001380)=[{&(0x7f00000001c0)="6049ab1a6bdeec3a9e2fce8674ed38ad76d21e43fe87afce18c8416320bbbcf386a243cd23330bbaa89d83c30871dcceb09111bab7599552826587a622ad5c52de9084e49a5ca3d8ff74a92718d3e285bf39605f5cb64277415a2e3d2bbfcdac8fcdf67183b51e8928542fa5ee70eab63caa1770fc9df7510fbfea125230024d9bf782a693e187809c35566f0cdd7b6ad3e5094fe74dd148479aa2f1abfedb878190871a0fa401b9576c61b8f70c5f5f82eaa38feffdca6e1d85d6052444ff72225ea662a4c8f7655462aa0713247159ac88e89b58157d1be817e6b28171c6e588", 0xe1, 0x4}, {&(0x7f00000002c0)="509a9bd58e596bbbefc94950faa1711cc227db92252a211b787e36243eb72aeb9638a2e45599b3d52a3cec2bce5395587f13c52e0bfaa4f8293846e815a2a77825664c370bc437967c45476dca3f9d38615b593c3a7ba31958fb79544cd659249cb240c351813a9844291d13f9dedc227bf9bb19f2c8c9147fcb903bcd998a78a0f8ffaeee5d6ed917f5f18edaff455c210908dffc7d5cc05dd9", 0x9a, 0x1553}, {&(0x7f0000000380)="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", 0x1000, 0x400}], 0x8, &(0x7f0000001400)={[{@file_umask={'file_umask', 0x3d, 0xb7d5}}], [{@obj_type={'obj_type', 0x3d, '/dev/input/mice\x00'}}]})
r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x0)
ioctl$BLKBSZSET(r2, 0x40081271, &(0x7f0000000040)=0x9)

03:25:29 executing program 3 (fault-call:8 fault-nth:36):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  736.145756][T12113] FAULT_INJECTION: forcing a failure.
[  736.145756][T12113] name failslab, interval 1, probability 0, space 0, times 0
[  736.180595][T12113] CPU: 0 PID: 12113 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
03:25:29 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x0, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  736.188537][T12113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  736.192624][T12110] hfs: unable to parse mount options
[  736.198593][T12113] Call Trace:
[  736.198621][T12113]  dump_stack+0x1d8/0x2f8
[  736.198638][T12113]  should_fail+0x555/0x770
[  736.198654][T12113]  __should_failslab+0x11a/0x160
[  736.198665][T12113]  ? anon_vma_clone+0xaa/0x4b0
[  736.198675][T12113]  should_failslab+0x9/0x20
[  736.198687][T12113]  kmem_cache_alloc+0x56/0x2e0
[  736.198698][T12113]  anon_vma_clone+0xaa/0x4b0
[  736.198711][T12113]  ? rcu_read_lock_sched_held+0x10b/0x170
03:25:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="00000000b54f3d6ecff8bbbc136d08e7c7bad49e8576b71380594c9944fb97897cc81391ce91f6cae56073f17c7999de345deb6d672229a9385b383f2401b1504bc28d108d2ca251c921058a056f50dd502711c517bb3a11eeb5d64e58149dfc1f46e9af4e576d867c594aef9d1cfdd74398907b4f7dfcea5ecc09d9b34e7bad0e34a8843bf5b4861d204bed7015a9eea8460af3e1c0e16aeec4d98c5e6ebccbdf0329d56b94178e72c00b05686b37c2c6c455bc9be5a41572c379ca0f1be93400615d6b4e0c65d9af58e5289c7cba6bda7a67f61bb39e6651f0b181a4a28958dad0fbdc707c481fe3bbf0e2e6bfc393d773887e8ed98f45a101b7d39294675e05c126e27ad12ef28d93bd996cce8411f45637a99ad1ed97d54ae34e80d4b1723a9060d89ef3f7c8934e6355b93836ac44abb8401a74ce4faafb59e99f603ac7e3d0ab69abcf5514f545ebeed4fb15d18aeb738de6d6619d21e1b4ee4640685a3ffb2ec0a2fcffffff67f8ce73552856a4931cdb27cd3ce3608f1111f2b49da0de14dda9048c735f6631cff9a85d3f0eeb0af824fc61320f8746fa7780cda621fc0c42f6f657a27f4f78aa7581937826977f691ba47e2c2001391068c0ab0d20aa8b98c418998fda7b3ebbe5170b888036ab0b51cf37e58496dd0cd491996054e22436646b520ed46c49877dfe3d17c7a4076de98206f16f24d74739e99e8ad84312e3f2bb971a8116782b6b67cb28c975f1ebc3642efbb5a00a5301093f18ec2582f4f6f456f87f54e490a7a01a70ed1cdf5f9391cd53f9e149571472", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:25:29 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  736.198720][T12113]  anon_vma_fork+0x91/0x540
[  736.198728][T12113]  ? dup_mmap+0x5b0/0xe00
[  736.198741][T12113]  dup_mmap+0x6b8/0xe00
[  736.198761][T12113]  dup_mm+0x9e/0x340
[  736.262380][T12113]  copy_process+0x22d6/0x5970
[  736.267100][T12113]  _do_fork+0x13f/0x5b0
[  736.271307][T12113]  ? debug_smp_processor_id+0x1c/0x20
[  736.276792][T12113]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  736.282876][T12113]  __x64_sys_clone+0x1ec/0x230
[  736.287670][T12113]  do_syscall_64+0xf7/0x1c0
[  736.292188][T12113]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  736.298088][T12113] RIP: 0033:0x459a59
[  736.301990][T12113] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  736.321592][T12113] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  736.329992][T12113] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  736.330002][T12113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
03:25:29 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x1100)

03:25:29 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100000044f952bae9bb07b086d0bd306dd1cac0b76daab2e2b5e37168518a854211fa3f04d106981c20b412c242ff602deea1094c55559465f0363f4985ad6720b122b45f0d50e7e6d69e0e147dedece9ac5a9a637cd4fbca3f16c77358d711b712cee6188edcf92adbec5fe46eba41c92ec68e789fb7af2569aed18e05b3ce8b298ccb323a26a95e223b7b915c79647d4ba05239d7d47b7ccb11876012e62582de0a9382f16f67a84e8a6b8137f89ef025708634b363a95b1399f67001e08f9e5d9635cb9cfe2ccad1b8bbda4b1993741c3ffef79210879b20ecfb09ce0cbc80fde2000000874c8b2ca7462127b610b1c80f1bc4b9421638538eb330d9584dd8a16a4bda50df0a3b5e563853933e088ac0aa72aa9ac4e54f7dd72ce8186dfc5fb5eb9862c20d891d9baf7ca4d3eef6b455723d893becdf13820e9955a6d8cb1aecfe1de1f562572ece149fd9844e882d00"/352, @ANYRES16=r0], &(0x7f000095dffc)=0x2)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, &(0x7f0000000100)=0x14)

03:25:29 executing program 3 (fault-call:8 fault-nth:37):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  736.330007][T12113] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  736.330012][T12113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  736.330017][T12113] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  736.483904][T12136] FAULT_INJECTION: forcing a failure.
[  736.483904][T12136] name failslab, interval 1, probability 0, space 0, times 0
[  736.528716][T12136] CPU: 0 PID: 12136 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  736.536655][T12136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  736.546701][T12136] Call Trace:
[  736.549987][T12136]  dump_stack+0x1d8/0x2f8
[  736.554328][T12136]  should_fail+0x555/0x770
[  736.558769][T12136]  __should_failslab+0x11a/0x160
[  736.563721][T12136]  ? dup_mmap+0x587/0xe00
[  736.568074][T12136]  should_failslab+0x9/0x20
[  736.572679][T12136]  kmem_cache_alloc+0x56/0x2e0
[  736.577429][T12136]  dup_mmap+0x587/0xe00
[  736.581734][T12136]  dup_mm+0x9e/0x340
[  736.585639][T12136]  copy_process+0x22d6/0x5970
[  736.590326][T12136]  _do_fork+0x13f/0x5b0
[  736.594470][T12136]  ? debug_smp_processor_id+0x1c/0x20
[  736.599823][T12136]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  736.605869][T12136]  __x64_sys_clone+0x1ec/0x230
[  736.610751][T12136]  do_syscall_64+0xf7/0x1c0
[  736.615255][T12136]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  736.621132][T12136] RIP: 0033:0x459a59
[  736.625008][T12136] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  736.644616][T12136] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  736.653031][T12136] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  736.660999][T12136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  736.668953][T12136] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  736.676935][T12136] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  736.684886][T12136] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:35 executing program 2:
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'ip6tnl0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
sendmmsg(r0, &(0x7f0000006ec0)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0xa, 0x0, 0x0, 0x0, @link_local}, 0x80, 0x0}}], 0x1, 0x0)

03:25:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="20000081", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0xffc0)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
r7 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r7, 0x84, 0x10, &(0x7f00000000c0)={r6, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, &(0x7f0000000100)=0x56)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000000)={r6, 0x3, 0x1, [0xffff]}, &(0x7f0000000080)=0xa)
r8 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$SIOCX25GDTEFACILITIES(r8, 0x89ea, &(0x7f0000000140))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:25:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x1200)

03:25:35 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./control\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000000)={0x2, 0x13, 0x7, {}, 0x0, 0x80})
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, &(0x7f0000000100)='\x00', &(0x7f00000001c0)="a3ea97eab7f0bf72d7427bd2563bd02acf3bd0b79dead11a920e15018d601628cfea4f3cbd84d7ba8c549179ba31dfe083a9d640c002e84f15d3552ee2fd3c40ecf68d642870c5c578fee13726dd6c92b6e6a7fb812ff2e9d3e46ef840171fc067672134394a57e1e22a372f1f70d525f3b02e45235602cd39b967dd9d5e0e1dedf23a573425b2c57f86421e747031240c36e26cf640b4e577b38de21090b8acf1fff42d13dfcb3d30c0453d30", 0xad)

03:25:35 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:35 executing program 3 (fault-call:8 fault-nth:38):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x2000)

[  742.392907][T12151] FAULT_INJECTION: forcing a failure.
[  742.392907][T12151] name failslab, interval 1, probability 0, space 0, times 0
03:25:35 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, 0x0)
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
r5 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r5)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r5}, 0x0)
kcmp(r5, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r6 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r5, r6, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$sock_rose_SIOCRSCLRRT(r6, 0x89e4)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$sock_inet_SIOCSIFNETMASK(r4, 0x891c, &(0x7f0000000000)={'ip6_vti0\x00', {0x2, 0x4e21, @empty}})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x14)

[  742.473733][T12151] CPU: 0 PID: 12151 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  742.481672][T12151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  742.491732][T12151] Call Trace:
[  742.495035][T12151]  dump_stack+0x1d8/0x2f8
[  742.499374][T12151]  should_fail+0x555/0x770
[  742.503812][T12151]  __should_failslab+0x11a/0x160
[  742.508760][T12151]  ? anon_vma_clone+0xaa/0x4b0
[  742.513532][T12151]  should_failslab+0x9/0x20
[  742.518050][T12151]  kmem_cache_alloc+0x56/0x2e0
[  742.522825][T12151]  anon_vma_clone+0xaa/0x4b0
[  742.527421][T12151]  anon_vma_fork+0x91/0x540
[  742.531921][T12151]  ? dup_mmap+0x5b0/0xe00
[  742.536254][T12151]  dup_mmap+0x6b8/0xe00
[  742.540434][T12151]  dup_mm+0x9e/0x340
[  742.544338][T12151]  copy_process+0x22d6/0x5970
[  742.549050][T12151]  _do_fork+0x13f/0x5b0
[  742.553217][T12151]  ? debug_smp_processor_id+0x1c/0x20
[  742.558594][T12151]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  742.558675][T12166] binder: binder_mmap: 12165 20ffb000-20fff000 bad vm_flags failed -1
03:25:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:25:35 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x2500)

[  742.564669][T12151]  __x64_sys_clone+0x1ec/0x230
[  742.564690][T12151]  do_syscall_64+0xf7/0x1c0
[  742.564707][T12151]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  742.587964][T12151] RIP: 0033:0x459a59
[  742.591863][T12151] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  742.611476][T12151] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  742.611486][T12151] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  742.611491][T12151] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  742.611496][T12151] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  742.611500][T12151] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  742.611506][T12151] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:42 executing program 3 (fault-call:8 fault-nth:39):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:42 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fchmod(0xffffffffffffffff, 0x8c)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:42 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:42 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = gettid()
r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000001340)='/proc/capi/capi20ncci\x00', 0xc4e0dbfa0f280d6a, 0x0)
ioctl$NBD_SET_FLAGS(r2, 0xab0a, 0x7be)
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001240)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468000000001800020014000100000000009ca0d6351bec593d6354aee6d18a2a1a238915774acffffa2e550647079dafb141a47e1a99d00a15dee37675c8700c9359c723f4c4201b98dedd2a78b69ed72cfa43695c85a4c3e658c4350496dacecb11d2056df8ebbb84b490b478b1e6d69835157799b4fd1ffa71a67e4bca5bc90c51ad5a52d1e7c820369f97ceeb8e4ec3e1707d", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=@newqdisc={0x444, 0x24, 0x507, 0x0, 0x0, {0x0, r7, {0x0, 0xe}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbq={{0x8, 0x1, 'cbq\x00'}, {0x418, 0x2, [@TCA_CBQ_RTAB={0x404, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_CBQ_RATE={0x10, 0x5, {0x6, 0x0, 0x0, 0x0, 0x0, 0x5}}]}}]}, 0x444}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=ANY=[@ANYBLOB="300000002400070500"/20, @ANYRES32=r7, @ANYBLOB="00000e0c0001006362710004000200adc77ff826da"], 0x30}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vlan0\x00', <r8=>r7})
recvfrom$packet(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000, 0x10001, &(0x7f0000001140)={0x11, 0xd, r8, 0x1, 0x0, 0x6, @dev={[], 0x24}}, 0x14)
r9 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r9)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r9}, 0x0)
kcmp(r9, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r10 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r9, r10, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
write$P9_RLINK(r10, &(0x7f0000001380)={0x7, 0x47, 0x2}, 0x7)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0205647, &(0x7f0000001200)={0xa10000, 0x7, 0x3, [], &(0x7f00000011c0)={0x9b0951, 0x9ed, [], @p_u8=&(0x7f0000001180)=0xfa}})
unshare(0x2000400)
r11 = socket$inet_sctp(0x2, 0x1, 0x84)
r12 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r12, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r13=>0x0]}, &(0x7f0000000000)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r11, 0x84, 0x1, &(0x7f00000000c0)={r13}, &(0x7f0000000100)=0x14)

03:25:42 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x3f00)

03:25:42 executing program 2:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000003c0)={'ip_vti0\x00', &(0x7f0000000500)=@ethtool_gstrings={0x1b, 0x4}})

03:25:42 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040))
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:42 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4000)

[  749.760063][T12192] FAULT_INJECTION: forcing a failure.
[  749.760063][T12192] name failslab, interval 1, probability 0, space 0, times 0
[  749.797668][T12199] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  749.831708][T12200] binder: binder_mmap: 12197 20ffb000-20fff000 bad vm_flags failed -1
[  749.848257][T12192] CPU: 0 PID: 12192 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  749.856189][T12192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  749.866251][T12192] Call Trace:
[  749.869547][T12192]  dump_stack+0x1d8/0x2f8
[  749.873894][T12192]  should_fail+0x555/0x770
[  749.878328][T12192]  __should_failslab+0x11a/0x160
[  749.883276][T12192]  ? anon_vma_clone+0xaa/0x4b0
[  749.888091][T12192]  should_failslab+0x9/0x20
[  749.892603][T12192]  kmem_cache_alloc+0x56/0x2e0
[  749.897384][T12192]  anon_vma_clone+0xaa/0x4b0
[  749.902084][T12192]  anon_vma_fork+0x91/0x540
[  749.906593][T12192]  ? dup_mmap+0x5b0/0xe00
[  749.910934][T12192]  dup_mmap+0x6b8/0xe00
[  749.915113][T12192]  dup_mm+0x9e/0x340
[  749.919022][T12192]  copy_process+0x22d6/0x5970
[  749.923819][T12192]  _do_fork+0x13f/0x5b0
[  749.927982][T12192]  ? debug_smp_processor_id+0x1c/0x20
[  749.927994][T12192]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  749.928010][T12192]  __x64_sys_clone+0x1ec/0x230
[  749.928031][T12192]  do_syscall_64+0xf7/0x1c0
[  749.948729][T12192]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  749.948739][T12192] RIP: 0033:0x459a59
[  749.948749][T12192] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:25:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  749.948754][T12192] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  749.948763][T12192] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  749.948769][T12192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  749.948775][T12192] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  749.948781][T12192] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  749.948787][T12192] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4800)

03:25:43 executing program 3 (fault-call:8 fault-nth:40):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x23)

03:25:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0b")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:43 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4c00)

[  750.199531][T12221] FAULT_INJECTION: forcing a failure.
[  750.199531][T12221] name failslab, interval 1, probability 0, space 0, times 0
03:25:43 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'vcan0\x00', 0x10})
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="8d16ba50", @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:25:43 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  750.265155][T12221] CPU: 1 PID: 12221 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  750.273126][T12221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  750.283190][T12221] Call Trace:
[  750.286491][T12221]  dump_stack+0x1d8/0x2f8
[  750.290832][T12221]  should_fail+0x555/0x770
[  750.295268][T12221]  __should_failslab+0x11a/0x160
[  750.300214][T12221]  ? anon_vma_fork+0xf7/0x540
[  750.304900][T12221]  should_failslab+0x9/0x20
[  750.309413][T12221]  kmem_cache_alloc+0x56/0x2e0
[  750.314208][T12221]  anon_vma_fork+0xf7/0x540
[  750.318739][T12221]  ? dup_mmap+0x5b0/0xe00
[  750.323096][T12221]  dup_mmap+0x6b8/0xe00
[  750.327269][T12221]  dup_mm+0x9e/0x340
[  750.331177][T12221]  copy_process+0x22d6/0x5970
[  750.335897][T12221]  _do_fork+0x13f/0x5b0
[  750.340064][T12221]  ? debug_smp_processor_id+0x1c/0x20
[  750.345448][T12221]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  750.351537][T12221]  __x64_sys_clone+0x1ec/0x230
[  750.356322][T12221]  do_syscall_64+0xf7/0x1c0
[  750.360847][T12221]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  750.366745][T12221] RIP: 0033:0x459a59
[  750.370647][T12221] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  750.390259][T12221] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  750.398691][T12221] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  750.398697][T12221] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  750.398702][T12221] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  750.398706][T12221] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  750.398712][T12221] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:52 executing program 2:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000080)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00}q\xbb%TVa\xaa')
bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000600)={0xffffffffffffffff, &(0x7f00000001c0), 0x0}, 0x20)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f00000017c0), 0x19e, 0x0)

03:25:52 executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
unshare(0x2000400)
r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="a1d178bb5fd5cff0a211b099e0c2ffe307076e1b9d3fc35bda0b78a542b96ebffbc17ec10a51ff07b8", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r1}, &(0x7f0000000100)=0x14)

03:25:52 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="007d25bd7000fb0000250500000060000300080004000002000008000400060000001400020069703667726530000000090000000000080007004e230000080007004e2300000800010002000000088001000200000008000500ac1e01010800010000000000080007004e2400000932bbc93865225cb0c64dd7309ef8f297077f4a1d3d9afa323ca894c9adf565b8f44ebb9f370ee6d2124b4bfc7f9e060332f16fb212c6ae32b3c42f29e7621b60a6e52fe7631eb454b576145dae71fb96d0bf099fba9557323e6fdfd74b58996af15614ca7cc777f0af96774cc8971e01bfd75c7bd199b0e34508b508c8e471b3865d636f0d4bd423d55cd866b7008c011edcbc60addb964be95e5e07d86d34201a0f574d4278dccfc5500bb2fb27b7cd8a4b4ff5267b306b20cfc8a1190ff8f31043244a8c0d7ad89228d38b9d2a2b3d159bd11529ee6e09fda0057b3dad39a90bd2db8894e0ddc88d0975568cf69c16e2a52e5ad97439b29aefcf60f192c9dc2f78e980c03b598d29ba14349d18450cb07edd01e2279a883224db429681beee4ad2849790099654aafec712129b4dd3c48a9b080edd9be752999df9c3079732b5405b5cd211a38dbf1db6d59a0c9a3ce721d3a3ae2f348d5fb6a54e1008b3a9409bf1f9b5fdf5f8517ec38d23"], 0x74}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f, 0x13008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa1c}, 0x0, 0x0, 0x0, 0x8}, r3, 0x0, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xc0, &(0x7f00000003c0)={0x0, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=0x6d8b6f28, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x1, 0x3}, 0x0, 0x0, &(0x7f0000000300)={0x1, 0xa, 0x10000, 0x7}, &(0x7f0000000340)=0x3, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=0x69}}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000004c0)={r6}, 0xc)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={<r7=>r3, r5, 0x0, 0x30, &(0x7f0000000100)='/\xadvboxnet0@vmnet0}eth0@vboxnet0posix_acl_access\x00', r6}, 0x30)
getpgrp(r7)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
r9 = fcntl$dupfd(r8, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00', 0x806})
ioctl$SIOCSIFHWADDR(r10, 0x8924, &(0x7f0000000000)={'bridge_slave_1\x00\x03', @random="01003a1e2410"})
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:52 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:52 executing program 3 (fault-call:8 fault-nth:41):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:52 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6000)

03:25:52 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:52 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={r3, 0x0, 0xffff, 0x0, 0x4}, &(0x7f0000000100)=0x14)

[  759.151717][T12246] binder: binder_mmap: 12245 20ffb000-20fff000 bad vm_flags failed -1
[  759.173158][T12248] FAULT_INJECTION: forcing a failure.
[  759.173158][T12248] name failslab, interval 1, probability 0, space 0, times 0
03:25:52 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x40)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f0000000000)='./file0\x00', 0x10)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
write$binfmt_misc(r2, &(0x7f00000001c0)={'syz0', "ce3b7836a2f05ed9f6f3c252132bd6b7989a9be03f9ccfcc180d7f78b9f2af4e9ed958d4132025a71b87fdf57a7898e7d7e392264b641496da4e5c5fa242d73773b9af89f5a0ef7a37df32e2b31fac4122d15c86269fcf2d6d84158dc7dd3a922678764814ca8cc76ed455d5498a9708d97678ffe9fc3657a114d13627be41cee50ebef0f980ce3a03c6a14917b856c36d9e266f46a29a64284cc9da27086fa0c87f46599c6fc8ebe7e31934e5d393ec8846654c2d6497d1705c0211ff44eafa19f36f97e4385d7fe5a6da7f82c4674c52f9093098"}, 0xd9)

03:25:52 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6800)

03:25:52 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  759.268525][T12248] CPU: 0 PID: 12248 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  759.276460][T12248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  759.286523][T12248] Call Trace:
[  759.289826][T12248]  dump_stack+0x1d8/0x2f8
[  759.294162][T12248]  should_fail+0x555/0x770
[  759.298590][T12248]  __should_failslab+0x11a/0x160
[  759.303535][T12248]  ? anon_vma_fork+0x1d8/0x540
[  759.308307][T12248]  should_failslab+0x9/0x20
[  759.312819][T12248]  kmem_cache_alloc+0x56/0x2e0
03:25:52 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6c00)

[  759.317594][T12248]  anon_vma_fork+0x1d8/0x540
[  759.322196][T12248]  dup_mmap+0x6b8/0xe00
[  759.326373][T12248]  dup_mm+0x9e/0x340
[  759.330279][T12248]  copy_process+0x22d6/0x5970
[  759.334999][T12248]  _do_fork+0x13f/0x5b0
[  759.339177][T12248]  ? debug_smp_processor_id+0x1c/0x20
[  759.344553][T12248]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  759.350635][T12248]  __x64_sys_clone+0x1ec/0x230
[  759.355439][T12248]  do_syscall_64+0xf7/0x1c0
[  759.359955][T12248]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  759.365850][T12248] RIP: 0033:0x459a59
[  759.369748][T12248] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  759.389383][T12248] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  759.397816][T12248] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  759.405798][T12248] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  759.413775][T12248] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  759.421762][T12248] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  759.429723][T12248] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:25:59 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x400004e21, 0x0, @empty}, 0x1c)
setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000000c0)=0x7, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
write$binfmt_misc(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="a4"], 0x1)

03:25:59 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:25:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x7400)

03:25:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
r4 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r4)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r4}, 0x0)
kcmp(r4, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r5 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r4, r5, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000140)={[{0x3, 0x0, 0x8, 0x0, 0x40, 0x6, 0x9d, 0xae, 0x7f, 0x7f, 0x2, 0x4, 0x9}, {0x1, 0xffff, 0x7, 0x7f, 0x20, 0x9, 0x9, 0xe8, 0x1f, 0x31, 0x7, 0x4, 0x8000000}, {0x730c, 0x1000, 0x4, 0x8, 0x8, 0x20, 0x9, 0x1f, 0x0, 0x75, 0x0, 0x2, 0x80000000}], 0x5})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:25:59 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
write$P9_RRENAME(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x15, 0x1}, 0x7)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:25:59 executing program 3 (fault-call:8 fault-nth:42):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:25:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x7a00)

[  766.326816][T12287] FAULT_INJECTION: forcing a failure.
[  766.326816][T12287] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  766.350983][T12287] CPU: 0 PID: 12287 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  766.358921][T12287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  766.358926][T12287] Call Trace:
[  766.358944][T12287]  dump_stack+0x1d8/0x2f8
03:25:59 executing program 4:
r0 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x10, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x18)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000100)={r3, 0x8, 0x10}, &(0x7f0000000140)=0xc)
ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000000)={0x33, 0x30314142, 0x2, @stepwise={0x2fb9aeff, 0x80000001, 0x10000, 0x5, 0xbc5, 0x4}})
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r4 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r4, &(0x7f000034aff8)='./file0\x00')
renameat(r4, &(0x7f00000000c0)='./file0\x00', r4, &(0x7f0000009000)='./control\x00')

[  766.358959][T12287]  should_fail+0x555/0x770
[  766.358986][T12287]  should_fail_alloc_page+0x55/0x60
[  766.386266][T12287]  prepare_alloc_pages+0x283/0x460
[  766.391417][T12287]  __alloc_pages_nodemask+0xb2/0x5d0
[  766.396729][T12287]  alloc_pages_current+0x2db/0x500
[  766.401866][T12287]  pte_alloc_one+0x1f/0x180
[  766.406375][T12287]  __pte_alloc+0x20/0x2f0
[  766.406389][T12287]  copy_page_range+0x2315/0x2840
[  766.406417][T12287]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  766.406444][T12287]  dup_mmap+0xa01/0xe00
[  766.406466][T12287]  dup_mm+0x9e/0x340
03:25:59 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b00")
unshare(0x2000400)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

[  766.406479][T12287]  copy_process+0x22d6/0x5970
[  766.434150][T12287]  _do_fork+0x13f/0x5b0
[  766.434164][T12287]  ? debug_smp_processor_id+0x1c/0x20
[  766.434178][T12287]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  766.449759][T12287]  __x64_sys_clone+0x1ec/0x230
[  766.454549][T12287]  do_syscall_64+0xf7/0x1c0
[  766.459072][T12287]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  766.465002][T12287] RIP: 0033:0x459a59
[  766.468909][T12287] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  766.488514][T12287] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  766.488524][T12287] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  766.488529][T12287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  766.488533][T12287] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  766.488538][T12287] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
03:25:59 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xae000)

03:25:59 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x6030c00)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
inotify_init()

03:25:59 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000200)='./control\x00', 0x800, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x101180, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f0000000100))
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$TIOCCBRK(r4, 0x5428)

[  766.488544][T12287] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  766.594248][T12306] binder: binder_mmap: 12301 20ffb000-20fff000 bad vm_flags failed -1
03:26:03 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=@newqdisc={0x444, 0x24, 0x507, 0x0, 0x0, {0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbq={{0x8, 0x1, 'cbq\x00'}, {0x418, 0x2, [@TCA_CBQ_RATE={0x10, 0x5, {0x401, 0x0, 0x0, 0x0, 0x0, 0x5}}, @TCA_CBQ_RTAB={0x404}]}}]}, 0x444}}, 0x0)

03:26:03 executing program 3 (fault-call:8 fault-nth:43):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:03 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:26:03 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x400000)

03:26:03 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
setxattr$security_evm(&(0x7f00000022c0)='./control\x00', &(0x7f0000002300)='security.evm\x00', &(0x7f0000002340)=@sha1={0x1, "a0581820fde3867613c88a58f14f8ccd35826eab"}, 0x15, 0x0)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000002240)=<r4=>0x0)
sched_getparam(r4, &(0x7f0000002280))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
sendmmsg$sock(r3, &(0x7f0000002140)=[{{&(0x7f0000000000)=@rc={0x1f, {0x3f, 0x3f, 0x7f, 0x5, 0x40, 0x1f}, 0x4}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000100)="69e63d0aa0330b56edb7e3f8d48316ee529c8d822fe9", 0x16}], 0x1, &(0x7f00000001c0)=[@txtime={{0x18, 0x1, 0x3d, 0x8}}], 0x18}}, {{&(0x7f0000000200)=@vsock={0x28, 0x0, 0xffffffff, @hyper}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000280)="661606b7fd5b216b31c248876bc64bba89e1120d38f60eb11a0eed43cdafbbd2ac496a99a561117424abe33872aedbab7c4c40c5a6feb211d8fd9f467c38b9daeb74ee30fc574c790d844101c635662d0d41a5df9e93b63601cd12cfdc8a6980ed4d14f9224f74ee28c3a35a7bfb8f831a5432354eca2ef53205a3b2bd2ed8fd2cbd9f73a7e3e97858ae949815c0c9150c7a6a8d0de310873fb410cb7a54a9e490542d13d2a892f1da74a0f95abcac6d94268195d3ec1f1c1a0b4bf03ebcf51d67e2a1", 0xc3}, {&(0x7f0000000380)="92a84403c0ef0ee27ed6e9b3f37bb05f31da8e65a31447cea2b67a6d68ee2a9451d7d7ad2e82c121058b09a11846f28a1e86193b67b5b7542d8e8ed983b78135b25f22598d2b863bbc96870148cbb2ee482ad5", 0x53}], 0x2, &(0x7f0000000440)=[@timestamping={{0x14, 0x1, 0x25, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0xa8}}, @mark={{0x14, 0x1, 0x24, 0xffffffff}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}], 0x78}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000004c0)="00ec4df1448460be2538e01e7b74a9ee8395533208536875eb5c353293f305cbe768942d0201908dd86d024bdbada78416896728ddf775b4fb431fd0921d0d12d126bb0800bbc312785f207d4e8a0e83fa980e5767a1f8eb803b9ad9bfa8bd22a7a99a42671f1933f595403c5efd7553cf18", 0x72}, {&(0x7f0000000540)="5cbfb5f30ef4d2c994e605074742fa5010ab4b92019c5c044f638740dd3f0c56a9628edf13cc71e1efd7c24444e9fdcbd4b3d641c936e3e8114df324ccbb8bf72af43bc52a58f40807a4f586c2c640c4e76795c1", 0x54}, {&(0x7f00000005c0)="49f7a9fec536d276003b4318a16422bff8f524bbdea11ccaf85110103b9000f3e445dbadb05a70f99119ca71b006c56ce211150fa9acc681266640a13d80fb96927ee76a9a5daa2d25d85e5d981adfc1ddf2e06c559a9b0b306374d3a7ada5bd9e593ec055c87aa165f81041a7e65a45188a6879305ff401ce3f08e9d8a626574241f9b98f1d6781afff6dd4ea76fe66fa8744e86e6f863e", 0x98}, {&(0x7f0000000680)="72f9057c9ba0f40eea30e84e79e1fbd55034c2a70f18e867f6401d2c8b3aa3d1aeddb7b24e4dc523691f5b7977491b3fa07e98a44f1a322761b3fe7cb2b43993dbe78ea76487a1b8eccfbfaf770baee53b15f6d9025e3dba318479f9cf5da0bce5163aca514fc4b31289ad445b14b00783b0cdf5cfd706ecc765a7d8702854cdec5ca42511cedb74faa59194977a5883eb9fa033143ab3e892271dc35f24266aa2495e35472d0417a0194bc40c73b185c6bb79e7b14de6ac75f974e061ae5b8abd7ff1a80b4718ae77f356e367bd1eac9fa9572f6e291461cb3208442a86999d76d308727fa3443b40bd9b9808a5", 0xee}, {&(0x7f0000000780)="fb90b96ffb4eb3f9a5dc0eab050fbe930dcb947adaa376c87ec2a28e92bc34d9cf2e37108fa6c0f553c416507b7188aebd370d83bcbf6c7d80a8460a83b057ccf1fd87446b5bd8f490db647a320c2db8009e16f3d929b522f9", 0x59}, {&(0x7f0000000800)="54ac2414168168670d44c460966902169625e2dad0553237ffd4908a4916914d2b1d55b0f40a0c93e535c9bb59cba7946cc0fc99844d29fa1f3a8e2da5a4b32e1a8be2ac0028160700a59db93f8e8f5f6c2e2ec4b5d6841c2687a60d5ee3a9ba8918612fcca1523d4ed2fa9d63df8b88f4da4747709a1131a8f7e571accbebe19cf2732b21a1b1a0016bd48c180f20dcb9ce2fe72fa94b13b304c11126a302d544510b4e7d99745590b853e5ec831cbe6ee58437daf7274beee3b94e564f093484636c56aded8c716cbb0fcb6319cdd2f20690dc8675ebd569ce6616bece657b498bb230", 0xe4}], 0x6}}, {{&(0x7f0000000980)=@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x80, &(0x7f0000002000)=[{&(0x7f0000000a00)="137aa0e1182efe05107b1e1223917f00aaa3421f1e19931d085c1b2ff449e5e2e3116c75169d78654a2067cad1a776a2cbf1fdcb3367a7585a58099fe916d343f1b0ab607a32299c442c469c412b22576767ae66ca3aa88d9ea8b992", 0x5c}, {&(0x7f0000000a80)="059a0e516943ba8fd8e359e0b82b8758b2075b46fe786997f3a10102e4834aa73a9f39fc5df714666ae93794bf4a19853b13366adfcfd047b37f7b7566791eaca79b343cbacf8863be85c79b97e92fe90226fcaef454acb2e0a15aa7596c30b0908f6ff4ac40b0c1a875329a59b2c237b1b88f0e20ec4856f9d4891b32032147818bf19ea63934b6e314e9cb9a981e02f9ec15e602863808971f6a4966f638757c4ff843e595c12c885018385eba4321a362233833efe3c279e0b4f1e690e6340e9267d81bef4d51a3acae1c1183b85f365e549a1a334eabfb210a8de44b79ed81257b49c9bd30eeebc4b530fe2f", 0xee}, {&(0x7f0000000b80)="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", 0x1000}, {&(0x7f0000001b80)="f43b390ef7ae388e5ab77ce6558d73aff66075ab9fba9885d26a8cdb445be2dca1668152e75c67e5f6cea3c2f51d4cbb86f806f0cd5fd6660c33b47e5881ed70c7af300ac1f8b28f72c2c26bc25227fa94a4d7faaed846ad0f75ad48f085a46524d45719ff3bb668e4bdfad958e1c9c876902fca4c9f770f5e1d8f5c78c5e3c2c2", 0x81}, {&(0x7f0000001c40)="2e736a681df87f2eb997f1bf6dd59661a85e5ec05c3f10635774b19948682d32190644942d59bb27adbe26a77c86cf9999aef9c2d269ef7825bb3aa11bf7f467fa6c34c9f4e89e9ce26ddf0c4f05b6d9748f720067ef31cae41e638618d13124b513a591c96457e7b5657f7d83e17954596a72e36ec62364dcf53bdacf1cf52bda73dad6743110bd8189591bfee74f6d6c019b8fb192c3a01fd66b18019323f6a078e95a259dcf1f8262cf0b849a16cbfeeed5", 0xb3}, {&(0x7f0000001d00)="e37db594981096461720fcfa6e27eae19835bcd1e349b499f27fdd65794a66956373984387de13082bd0924b4604c3f9793bd03ac3c1405df727474cf9074be170af5ffd1a39c7a3e56c33c0f52f58b0137a6d48d918127c04cbdae10d4e5b263392a500", 0x64}, {&(0x7f0000001d80)="78e19d80d9459db73eeed7983d04a994663e23339bc69e8b4918afbc96069948a6ea0e45102826d4afb5b8b5e59f84dae7998bf1163bcbe4b938c3036864e84b915b8ff8757d0c0296d15664", 0x4c}, {&(0x7f0000001e00)="3360080e7da8f6d780b92f180a82e6bdc2f5781c7f3ccb8029c27bdbb5e9c517770396caea2f6c07e4484ff3342f8579f87be24898db13932a78122432bbbb69d6dc08fe73fba60accbdde9176448a3f68fcf0f26c8fa9ab1e3709f3a0aba1efb00ef47735e09cfc8bc960a3eb1252d785eda7ea2e16f3d302e37cb8010cf27d3e89b4ca8a2bd1196f50d4be97b2166527c1afde83af32f0d6eea466cd", 0x9d}, {&(0x7f0000001ec0)="32ce93b3cc0a2601630c2e6cfc5bb8a0c74387c5c38d7180101e91f6e5ccfa8a2824739076c68754136487de5d3ca3297eec803e5ee904aa5c85227190855e7d2a777036adbd1f8644630c2d7e98a861ca6b9bc7ff5c7e58c463e8f25af527d1bee1f304ed5736d94c12f929cb15c3cd0660922215c13c23313ce0dcd730296344928e11ca79fe9de9183ba096ef8ae10f6c6a91371ff860ef82e43260133cd5", 0xa0}, {&(0x7f0000001f80)="56d70adb7b825b43f7439642d33b0801bd11188d6f6f24a593f7f6c10d21e1514a5cdf721771419ce6e8dc85710ba539ceeb0fb6102e9b87e22d452e51bed55a14ebc9a6a565c5839b8f6c24f411628055437486f6", 0x55}], 0xa, &(0x7f00000020c0)=[@mark={{0x14, 0x1, 0x24, 0x3610}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}, @txtime={{0x18, 0x1, 0x3d, 0x8001}}], 0x48}}], 0x4, 0x20000000)

03:26:03 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000080)=ANY=[@ANYBLOB="06004000000006", @ANYRES32=0x0], &(0x7f000095dffc)=0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x10, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x18)
r5 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r5)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r5}, 0x0)
kcmp(r5, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r6 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r5, r6, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r6, 0x84, 0x1, &(0x7f00000000c0)={r4, 0x1, 0x0, 0xfe, 0x0, 0x4}, &(0x7f0000000000)=0x14)

03:26:03 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x60e5c2)

03:26:03 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:26:03 executing program 4:
mkdir(&(0x7f0000000000)='./control\x00', 0xe6)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  770.547990][T12326] binder: binder_mmap: 12320 20ffb000-20fff000 bad vm_flags failed -1
[  770.569359][T12327] FAULT_INJECTION: forcing a failure.
[  770.569359][T12327] name failslab, interval 1, probability 0, space 0, times 0
[  770.627112][T12327] CPU: 1 PID: 12327 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  770.635056][T12327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  770.645117][T12327] Call Trace:
[  770.648422][T12327]  dump_stack+0x1d8/0x2f8
[  770.652770][T12327]  should_fail+0x555/0x770
[  770.657202][T12327]  __should_failslab+0x11a/0x160
[  770.662155][T12327]  ? ptlock_alloc+0x20/0x70
[  770.666673][T12327]  should_failslab+0x9/0x20
[  770.671216][T12327]  kmem_cache_alloc+0x56/0x2e0
[  770.675990][T12327]  ? alloc_pages_current+0x2db/0x500
[  770.681292][T12327]  ptlock_alloc+0x20/0x70
[  770.685635][T12327]  pte_alloc_one+0x6e/0x180
[  770.690154][T12327]  __pte_alloc+0x20/0x2f0
[  770.694499][T12327]  copy_page_range+0x2315/0x2840
[  770.699472][T12327]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  770.705222][T12327]  dup_mmap+0xa01/0xe00
[  770.709401][T12327]  dup_mm+0x9e/0x340
[  770.713312][T12327]  copy_process+0x22d6/0x5970
[  770.718040][T12327]  _do_fork+0x13f/0x5b0
[  770.722211][T12327]  ? debug_smp_processor_id+0x1c/0x20
[  770.727606][T12327]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  770.727624][T12327]  __x64_sys_clone+0x1ec/0x230
[  770.738434][T12327]  do_syscall_64+0xf7/0x1c0
[  770.738449][T12327]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  770.738458][T12327] RIP: 0033:0x459a59
[  770.738467][T12327] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:26:03 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x80151e)

03:26:03 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x8000, 0x0)
write$P9_RSYMLINK(r0, &(0x7f0000000040)={0x14, 0x11, 0x1, {0x8, 0x0, 0x5}}, 0x14)
r1 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r1, &(0x7f000034aff8)='./file0\x00')
renameat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000009000)='./control\x00')

03:26:03 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000000)={'veth1_to_bridge\x00', 0xff})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x440080, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r4, 0x894b, &(0x7f0000000140))

[  770.738472][T12327] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  770.738482][T12327] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  770.738490][T12327] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  770.796692][T12327] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  770.804676][T12327] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  770.812662][T12327] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:11 executing program 2:
r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, 0x0)

03:26:11 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='\x04\x00\x00\x00/vga^\xff\xff\xff\x7f\x00', 0x202, 0x0)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000040)={0x5, 0x5})
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, 0x0, 0x0)
sendfile(r3, r1, &(0x7f0000000100), 0xc000000000000)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:11 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xe00a00)

03:26:11 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)

03:26:11 executing program 3 (fault-call:8 fault-nth:44):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:11 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x4, &(0x7f0000000240)="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")
unshare(0x2000400)
socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r2 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r5, 0xc02c5341, &(0x7f0000000580))
r6 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r6, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r6, 0xc02c5341, &(0x7f0000000580))
r7 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r7, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r7, 0xc02c5341, &(0x7f00000007c0))
r8 = gettid()
r9 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r9)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r9}, 0x0)
kcmp(r9, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r10 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r9, r10, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r10, 0x80045301, &(0x7f0000000380))
waitid(0x0, r8, 0x0, 0x0, &(0x7f0000000480))
r11 = syz_open_dev$amidi(&(0x7f0000000340)='\'dev/ami\x04\x00#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000080)=ANY=[@ANYPTR64=&(0x7f0000000140)=ANY=[@ANYRESHEX=r2, @ANYRES16=r4, @ANYRESHEX=r5, @ANYRESDEC=r0, @ANYBLOB="f731806702eb3f2e6d2b4ef8bbe3fb48d007aada529dfd9ddbb51d982a073147e064054cc3230de15c43c4c0ee6e877989ba0cf8e97098ab2cdd98f505ec14656afc40689bb016803070ae00bc91957bf739e952fc761e8989fa521cecc8cfb34a5585e46313113d9c981a28d66b2354b6660e4257b4b89ff86661b75444f7904b8787176df7aef891e25a8b0dc52ee937a8d6705eddd0101b2843c9211a", @ANYRES32=r1], @ANYPTR64=&(0x7f0000000700)=ANY=[@ANYPTR64=&(0x7f00000006c0)=ANY=[@ANYRESHEX, @ANYRESOCT=r11, @ANYRES16, @ANYRESHEX=r6], @ANYRESHEX, @ANYRES32=r7, @ANYRES16, @ANYPTR64=&(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB="4dfd3341c380f9eff5e5202dbd1fbfc69b20b9bb4226bc871857762adfe91eeac9470280"], @ANYRESHEX=0x0, @ANYBLOB="c04e562f72b9cefbdb511065d4f8dcc3eb94154ec052ef03b95c8c878465474e31e5e9d35d74ee98c367a394f74aa2cce26ec82f", @ANYPTR, @ANYRESOCT=r8, @ANYRES16=r0]], &(0x7f000095dffc)=0x2)
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

03:26:12 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

03:26:12 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xf04001)

[  778.849776][T12364] FAULT_INJECTION: forcing a failure.
[  778.849776][T12364] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  778.886023][T12364] CPU: 1 PID: 12364 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  778.893949][T12364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  778.904001][T12364] Call Trace:
[  778.907299][T12364]  dump_stack+0x1d8/0x2f8
[  778.911635][T12364]  should_fail+0x555/0x770
[  778.916087][T12364]  should_fail_alloc_page+0x55/0x60
[  778.921287][T12364]  prepare_alloc_pages+0x283/0x460
[  778.926404][T12364]  __alloc_pages_nodemask+0xb2/0x5d0
[  778.931804][T12364]  ? __pte_alloc+0x1ba/0x2f0
[  778.936412][T12364]  alloc_pages_current+0x2db/0x500
[  778.941534][T12364]  pte_alloc_one+0x1f/0x180
[  778.946055][T12364]  __pte_alloc+0x20/0x2f0
[  778.950403][T12364]  copy_page_range+0x2315/0x2840
[  778.955364][T12364]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  778.961118][T12364]  dup_mmap+0xa01/0xe00
[  778.965309][T12364]  dup_mm+0x9e/0x340
[  778.969213][T12364]  copy_process+0x22d6/0x5970
[  778.973938][T12364]  _do_fork+0x13f/0x5b0
[  778.978102][T12364]  ? debug_smp_processor_id+0x1c/0x20
[  778.983480][T12364]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  778.989561][T12364]  __x64_sys_clone+0x1ec/0x230
[  778.994343][T12364]  do_syscall_64+0xf7/0x1c0
[  778.998862][T12364]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  779.004757][T12364] RIP: 0033:0x459a59
[  779.008653][T12364] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  779.028259][T12364] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  779.036672][T12364] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
03:26:12 executing program 4:
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f00000001c0)={'filter\x00', 0x9d, "4b4553e4abcf503c8ccd545ab629e02f1bc90f911eb886bd6b82948b80a563b0e84a26904cb0596c1e62515bd2baba29936bdaf576637cb21925d182cd29b7e9300b0c30a1b0285db57143a9639c99ee175e5996607c4b2f0ef98d03f60f582180e1b6a10cdaa7cf91f99def231b3c425cc24330d8fcefedd4e42a69cfe8499685393e08b61235413bfb36218e8a507cb287c700d4bc86ff10feb31507"}, &(0x7f0000000000)=0xc1)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:12 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x1000000)

03:26:12 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

03:26:12 executing program 4:
mkdir(&(0x7f0000000000)='./control\x00', 0x80)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x927c92ebe3816121, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
bind$isdn(r0, &(0x7f0000000140)={0x22, 0x79, 0x7, 0x1f, 0x7}, 0x6)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x0)

[  779.044654][T12364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  779.052627][T12364] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  779.060594][T12364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  779.060599][T12364] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  779.082759][T12384] binder: binder_mmap: 12383 20ffb000-20fff000 bad vm_flags failed -1
03:26:19 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:26:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$EVIOCSKEYCODE(r4, 0x40084504, &(0x7f0000000000)=[0xfff, 0x80000001])
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x14)

03:26:19 executing program 3 (fault-call:8 fault-nth:45):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:19 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x140f000)

03:26:19 executing program 1:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)

03:26:19 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000340)='trusted.overlay.redirect\x00', &(0x7f0000000380)='./file0\x00', 0x8, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r3 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r3)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r3}, 0x0)
kcmp(r3, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r3, r4, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
getsockname(r1, &(0x7f0000000000)=@xdp={0x2c, 0x0, <r5=>0x0}, &(0x7f0000000100)=0x80)
stat(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r9 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000005c0)="4acf665ff77df4f20690a5a83bc1a1e6519321db1dc2bf7eee06d978abdfbb33f3bc7025e6befda3c827875946eb75c14639ab6e76811a733653f72afc34e5fce1bed277a8faa02e6da16041b40bab677d6555e94a42b7ac236c8c35d729ac501cf28293c919f2f3ceec4703c892adeac90504aeb3ba485e09bda66d2b96124cabc4d2e653848e2bd909287d0d2c433d72bbd4333cf37f2a8972bba453c776d2c73c61b9fa2153405fc0253992c918682c7018f6a280a9ff312ae4a6996bd9547aed66e72f94342a7d27b9483f7e2e8e3c5bbb89452fd9bb6708ae89ba29", 0xde, 0xfffffffffffffffe)
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
getresgid(&(0x7f0000000400), &(0x7f0000000540), &(0x7f00000006c0)=<r11=>0x0)
keyctl$chown(0x4, r9, r10, r11)
mount$fuseblk(&(0x7f00000003c0)='/dev/loop0\x00', &(0x7f0000000400)='./control\x00', &(0x7f0000000440)='fuseblk\x00', 0x408, &(0x7f0000000480)={{'fd', 0x3d, r8}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, r6}, 0x2c, {'group_id', 0x3d, r11}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x2400}}, {@max_read={'max_read', 0x3d, 0x2}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0xe00}}, {@blksize={'blksize', 0x3d, 0x2717e35320474ec7}}], [{@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/amidi#\x00'}}, {@dont_measure='dont_measure'}]}})
setsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000240)={{{@in6=@mcast1, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x1, 0x4e20, 0x9, 0xa, 0x40, 0x80, 0x11, r5, r6}, {0x2, 0x3, 0x3, 0x0, 0x5, 0x80000001, 0x6, 0x3}, {0x3, 0x3ff, 0x56be, 0x3b6}, 0x2, 0x6e6bb2, 0x0, 0x1, 0x2}, {{@in6=@dev={0xfe, 0x80, [], 0x1b}, 0x4d3, 0x1eb}, 0xa, @in=@loopback, 0x34ff, 0x3, 0x80d56f3547316a46, 0x9, 0x1000, 0x1, 0x1}}, 0xe8)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:19 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280)='sysfs\x00', 0x0, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
close(r2)

03:26:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000080)=ANY=[@ANYBLOB="e50289694c", @ANYPTR64=&(0x7f0000000140)=ANY=[@ANYRESHEX=r1, @ANYBLOB="d261a14b5a29906c1fa7a2965a047730685b18b0bceb0c17fbe5a208"]], &(0x7f000095dffc)=0x2)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x9}, &(0x7f0000000100)=0x14)

[  785.981039][T12402] binder: binder_mmap: 12400 20ffb000-20fff000 bad vm_flags failed -1
[  785.996388][T12399] FAULT_INJECTION: forcing a failure.
[  785.996388][T12399] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  786.036491][T12399] CPU: 1 PID: 12399 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  786.044424][T12399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  786.054495][T12399] Call Trace:
[  786.057781][T12399]  dump_stack+0x1d8/0x2f8
[  786.062104][T12399]  should_fail+0x555/0x770
[  786.066518][T12399]  should_fail_alloc_page+0x55/0x60
[  786.071722][T12399]  prepare_alloc_pages+0x283/0x460
[  786.076853][T12399]  __alloc_pages_nodemask+0xb2/0x5d0
[  786.082153][T12399]  ? __pte_alloc+0x1ba/0x2f0
03:26:19 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/uinput\x00', 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x6], [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)

[  786.086764][T12399]  alloc_pages_current+0x2db/0x500
[  786.091890][T12399]  pte_alloc_one+0x1f/0x180
[  786.096574][T12399]  __pte_alloc+0x20/0x2f0
[  786.100908][T12399]  copy_page_range+0x2315/0x2840
[  786.105995][T12399]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  786.111751][T12399]  dup_mmap+0xa01/0xe00
[  786.115935][T12399]  dup_mm+0x9e/0x340
[  786.119846][T12399]  copy_process+0x22d6/0x5970
[  786.124564][T12399]  _do_fork+0x13f/0x5b0
[  786.128730][T12399]  ? debug_smp_processor_id+0x1c/0x20
03:26:19 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x2000000)

[  786.134122][T12399]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  786.140205][T12399]  __x64_sys_clone+0x1ec/0x230
[  786.144974][T12399]  do_syscall_64+0xf7/0x1c0
[  786.149466][T12399]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  786.149476][T12399] RIP: 0033:0x459a59
[  786.149485][T12399] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:26:19 executing program 3 (fault-call:8 fault-nth:46):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f00000002c0)={0xffffffff, 0x1, 0x1})
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm_plock\x00', 0x414100, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x9)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x400000, 0x0)
ioctl$TUNSETSNDBUF(r5, 0x400454d4, &(0x7f0000000080)=0x1ff)
recvfrom$netrom(r1, &(0x7f0000000140)=""/250, 0xfa, 0x60, &(0x7f0000000240)={{0x3, @default, 0x3}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)

[  786.149490][T12399] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  786.149498][T12399] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  786.149504][T12399] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  786.149508][T12399] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  786.149513][T12399] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  786.149518][T12399] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  786.205716][T12416] binder: binder_mmap: 12415 20ffb000-20fff000 bad vm_flags failed -1
[  786.260862][T12422] FAULT_INJECTION: forcing a failure.
[  786.260862][T12422] name failslab, interval 1, probability 0, space 0, times 0
[  786.318720][T12420] input: syz1 as /devices/virtual/input/input7
[  786.342166][T12422] CPU: 0 PID: 12422 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  786.350093][T12422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  786.360245][T12422] Call Trace:
[  786.363547][T12422]  dump_stack+0x1d8/0x2f8
[  786.367883][T12422]  should_fail+0x555/0x770
[  786.372315][T12422]  __should_failslab+0x11a/0x160
[  786.377263][T12422]  ? ptlock_alloc+0x20/0x70
[  786.381789][T12422]  should_failslab+0x9/0x20
[  786.386304][T12422]  kmem_cache_alloc+0x56/0x2e0
[  786.391073][T12422]  ? alloc_pages_current+0x2db/0x500
[  786.396360][T12422]  ptlock_alloc+0x20/0x70
[  786.400696][T12422]  pte_alloc_one+0x6e/0x180
[  786.405206][T12422]  __pte_alloc+0x20/0x2f0
[  786.409552][T12422]  copy_page_range+0x2315/0x2840
[  786.414534][T12422]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  786.420279][T12422]  dup_mmap+0xa01/0xe00
[  786.424458][T12422]  dup_mm+0x9e/0x340
[  786.428362][T12422]  copy_process+0x22d6/0x5970
[  786.433159][T12422]  _do_fork+0x13f/0x5b0
[  786.437408][T12422]  ? debug_smp_processor_id+0x1c/0x20
[  786.442782][T12422]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  786.448853][T12422]  __x64_sys_clone+0x1ec/0x230
[  786.448874][T12422]  do_syscall_64+0xf7/0x1c0
[  786.448888][T12422]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  786.448897][T12422] RIP: 0033:0x459a59
[  786.448907][T12422] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  786.448913][T12422] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  786.448923][T12422] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  786.448928][T12422] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  786.448934][T12422] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  786.448939][T12422] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  786.448945][T12422] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:27 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:26:27 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x3000000)

03:26:27 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000440)={0x6, {0x80, 0x9, 0x1, 0x3}, {0x7, 0x4, 0x43, 0x1}, {0x3f, 0x9}})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$BLKROTATIONAL(r3, 0x127e, &(0x7f0000000680))
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r4 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
r5 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffd000/0x1000)=nil)
getpeername$netrom(r0, &(0x7f0000000740)={{0x3, @rose}, [@bcast, @remote, @remote, @remote, @rose, @default, @default]}, &(0x7f00000006c0)=0x48)
shmat(r5, &(0x7f0000ffd000/0x1000)=nil, 0x6000)
shmctl$IPC_RMID(r5, 0x0)
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000500)='fou\x00')
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000540)={'vcan0\x00', <r7=>0x0})
sendmsg$FOU_CMD_GET(r4, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20000004}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x48, r6, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r7}, @FOU_ATTR_PEER_PORT={0x8, 0xa, 0x4e24}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @ipv4={[], [], @remote}}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @remote}, @FOU_ATTR_PEER_V4={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x21}}]}, 0x48}, 0x1, 0x0, 0x0, 0x10000}, 0x6000040)
sendmsg$sock(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)="d2eea0531962718919c4e1fb3e204c570b505bfe13010640f3312f643e0e251b07ab4ec27a1062ce0c13fe8f39bef9b17c796e08686b0bad928ee210cc21e8448a38649bad29ba27ac312a6d5c5f0e4f8f8cb605fffa4c8808fc35a8bde5c7", 0x5f}, {&(0x7f0000000100)="475368a42d2f243816e2c6809b4339ec6b74d4e4", 0x14}, {&(0x7f0000000140)="05ad994e817382c089af306e18a2", 0xe}, {&(0x7f00000001c0)="7777e320c59edab13979ec43cbd1b425b8db3ebdec1d900a56809ed580250957047eb0ab00ff4ea8b44b0a5149fc8482d5e0e9cd1ef26abf15731b4439236f8880e311dc", 0x44}, {&(0x7f0000000240)="dfa0318569a4e85fa67394ab6aadf2a5c42652112887e64098bc2bc3e7b2e8cd5fa2a58359979157a74c0f3e8fd3444c90777eaa80728d7eb8508c130d6c02ea5477857aae256707782839fe8512878bf31d48c0623d04364ff032abe208a74b1052e42deb16ffb90db60457070c904566181411c74e6d5948e692c9b382694a85", 0x81}, {&(0x7f0000000300)="afb8f70e1953baa4cad502f0b9d72c3f397f2fff3bd1ef", 0x17}], 0x6, &(0x7f00000003c0)=[@mark={{0x14, 0x1, 0x24, 0x456}}], 0x18}, 0x2b50ee353485192a)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f0000000480)='./file0/file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2000, 0x0)
setsockopt$inet6_tcp_TLS_RX(r3, 0x6, 0x2, &(0x7f0000000140)=@gcm_128={{0xe608cffe26183783}, "0a9207fe71d526e1", "20faad41fce391efa5ba32716d1e1da0", "6a0ba0ad", "7a7c5b9b9bdb564b"}, 0x28)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="010000adaf7d87df9a842f4aab00", @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r5, 0x80845663, &(0x7f0000000180)={0x0, @reserved})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:26:27 executing program 3 (fault-call:8 fault-nth:47):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:27 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/uinput\x00', 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x6], [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)

03:26:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
set_robust_list(&(0x7f0000000240)={&(0x7f0000000200)={&(0x7f00000001c0)}, 0x81}, 0x18)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, &(0x7f0000000140)={{0x0, 0x1, 0x2, 0x2, 0xb7}, 0x100, 0x3, 0xffffffffffff086b})
unshare(0x2000400)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000080)=0x6)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$VIDIOC_G_INPUT(r5, 0x80045626, &(0x7f0000000280))
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r6}, &(0x7f0000000100)=0x14)

[  794.348841][T12448] binder: binder_mmap: 12440 20ffb000-20fff000 bad vm_flags failed -1
[  794.361835][T12447] FAULT_INJECTION: forcing a failure.
[  794.361835][T12447] name failslab, interval 1, probability 0, space 0, times 0
[  794.387383][T12444] input: syz1 as /devices/virtual/input/input9
[  794.416580][T12447] CPU: 0 PID: 12447 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  794.424517][T12447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  794.424523][T12447] Call Trace:
[  794.424543][T12447]  dump_stack+0x1d8/0x2f8
[  794.424557][T12447]  should_fail+0x555/0x770
[  794.424572][T12447]  __should_failslab+0x11a/0x160
[  794.452000][T12447]  ? anon_vma_clone+0xaa/0x4b0
[  794.456781][T12447]  should_failslab+0x9/0x20
[  794.456794][T12447]  kmem_cache_alloc+0x56/0x2e0
[  794.456806][T12447]  anon_vma_clone+0xaa/0x4b0
[  794.456821][T12447]  ? rcu_read_lock_sched_held+0x10b/0x170
[  794.456832][T12447]  anon_vma_fork+0x91/0x540
[  794.456846][T12447]  ? dup_mmap+0x5b0/0xe00
[  794.466095][T12447]  dup_mmap+0x6b8/0xe00
[  794.466118][T12447]  dup_mm+0x9e/0x340
[  794.466130][T12447]  copy_process+0x22d6/0x5970
[  794.466169][T12447]  _do_fork+0x13f/0x5b0
[  794.466183][T12447]  ? debug_smp_processor_id+0x1c/0x20
[  794.466200][T12447]  ? fpregs_assert_state_consistent+0xb7/0xe0
03:26:27 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4000000)

03:26:27 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$KVM_REINJECT_CONTROL(r3, 0xae71, &(0x7f0000000040)={0x1})
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mISDNtimer\x00', 0x101000, 0x0)

[  794.485302][T12447]  __x64_sys_clone+0x1ec/0x230
[  794.493411][T12447]  do_syscall_64+0xf7/0x1c0
[  794.503165][T12447]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  794.514553][T12447] RIP: 0033:0x459a59
[  794.533544][T12447] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  794.553153][T12447] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:26:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)={<r3=>0x0, 0x2e, "ad793666f7542f65c05be4bc64138ca0de71e139e42889338adee70120cf756e8f7e3927a18c58696cf539c750b1"}, &(0x7f0000000140)=0x36)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x800, 0x7, 0x8000dcd2}, &(0x7f0000000180)=0x14)

03:26:27 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
eventfd(0x80)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)

[  794.561564][T12447] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  794.561570][T12447] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  794.561576][T12447] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  794.561581][T12447] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  794.561586][T12447] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:27 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/uinput\x00', 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x6], [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)

[  794.626326][T12461] binder: binder_mmap: 12458 20ffb000-20fff000 bad vm_flags failed -1
[  794.766970][T12472] input: syz1 as /devices/virtual/input/input10
03:26:35 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:26:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="01000002", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:26:35 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
acct(&(0x7f0000000000)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:35 executing program 3 (fault-call:8 fault-nth:48):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x5000000)

03:26:35 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/uinput\x00', 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe7f], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x6], [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)

[  802.670681][T12488] binder: binder_mmap: 12487 20ffb000-20fff000 bad vm_flags failed -1
[  802.676793][T12486] FAULT_INJECTION: forcing a failure.
[  802.676793][T12486] name failslab, interval 1, probability 0, space 0, times 0
03:26:35 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r2, 0xc0305602, &(0x7f0000000000)={0x0, 0x4, 0x1d})
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:26:35 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6000000)

[  802.725262][T12492] input: syz1 as /devices/virtual/input/input11
[  802.741905][T12486] CPU: 0 PID: 12486 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  802.749839][T12486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  802.759905][T12486] Call Trace:
[  802.763213][T12486]  dump_stack+0x1d8/0x2f8
[  802.767559][T12486]  should_fail+0x555/0x770
[  802.771993][T12486]  __should_failslab+0x11a/0x160
[  802.776941][T12486]  ? anon_vma_clone+0xaa/0x4b0
[  802.781703][T12486]  should_failslab+0x9/0x20
[  802.781716][T12486]  kmem_cache_alloc+0x56/0x2e0
[  802.781731][T12486]  anon_vma_clone+0xaa/0x4b0
[  802.781756][T12486]  anon_vma_fork+0x91/0x540
[  802.800076][T12486]  ? dup_mmap+0x5b0/0xe00
[  802.804423][T12486]  dup_mmap+0x6b8/0xe00
[  802.808603][T12486]  dup_mm+0x9e/0x340
[  802.812506][T12486]  copy_process+0x22d6/0x5970
[  802.817217][T12486]  _do_fork+0x13f/0x5b0
03:26:36 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, &(0x7f0000000000)={'vcan0\x00', 0x40})
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r1 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r1}, 0x0)
kcmp(r1, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r2, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
renameat(r0, &(0x7f0000000200)='./file0\x00', r2, &(0x7f0000009000)='./file0\x00')
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
getsockname$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000100)=0x1c)

[  802.817232][T12486]  ? debug_smp_processor_id+0x1c/0x20
[  802.817250][T12486]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  802.817267][T12486]  __x64_sys_clone+0x1ec/0x230
[  802.817288][T12486]  do_syscall_64+0xf7/0x1c0
[  802.817303][T12486]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  802.817313][T12486] RIP: 0033:0x459a59
[  802.817322][T12486] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:26:36 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f0000000140)=0x7a)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  802.817331][T12486] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  802.823982][T12499] binder: binder_mmap: 12497 20ffb000-20fff000 bad vm_flags failed -1
[  802.826830][T12486] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  802.826836][T12486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  802.826843][T12486] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  802.826849][T12486] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
03:26:36 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x7000000)

[  802.826854][T12486] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:36 executing program 3 (fault-call:8 fault-nth:49):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  802.991731][T12510] binder: binder_mmap: 12509 20ffb000-20fff000 bad vm_flags failed -1
[  803.093881][T12516] FAULT_INJECTION: forcing a failure.
[  803.093881][T12516] name failslab, interval 1, probability 0, space 0, times 0
[  803.117791][T12516] CPU: 0 PID: 12516 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  803.125730][T12516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  803.135789][T12516] Call Trace:
[  803.139103][T12516]  dump_stack+0x1d8/0x2f8
[  803.139119][T12516]  should_fail+0x555/0x770
[  803.139137][T12516]  __should_failslab+0x11a/0x160
[  803.139151][T12516]  ? anon_vma_fork+0xf7/0x540
[  803.147891][T12516]  should_failslab+0x9/0x20
[  803.147904][T12516]  kmem_cache_alloc+0x56/0x2e0
[  803.147916][T12516]  anon_vma_fork+0xf7/0x540
[  803.147924][T12516]  ? dup_mmap+0x5b0/0xe00
[  803.147936][T12516]  dup_mmap+0x6b8/0xe00
[  803.147956][T12516]  dup_mm+0x9e/0x340
[  803.147969][T12516]  copy_process+0x22d6/0x5970
[  803.148004][T12516]  _do_fork+0x13f/0x5b0
[  803.148016][T12516]  ? debug_smp_processor_id+0x1c/0x20
[  803.148026][T12516]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  803.148041][T12516]  __x64_sys_clone+0x1ec/0x230
[  803.208770][T12516]  do_syscall_64+0xf7/0x1c0
[  803.213280][T12516]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  803.219171][T12516] RIP: 0033:0x459a59
[  803.223198][T12516] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  803.242901][T12516] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  803.251308][T12516] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  803.259280][T12516] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  803.267240][T12516] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  803.275214][T12516] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  803.283168][T12516] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:42 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:26:42 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000140)="76822e3cbcc9830c68d017b45f3b17dd8923a894e4d0a9386f323c7a56ea25242cbd7e6567ebcfa76dc44e18cb7ae048461b6769cb49d1f43ae39c7f88a4aa0cde5acbe32ef72692fee1b07753babe4041f7b9aa7d66ad770ba8c08105d7eea5f547561d894fa52927c1d6f0940c4c9765e8e639215474ae80690dc6902b971e91719d5dcce5371092757c8bc73979fd4ad2310c086d8d09b2465db3b52c4136c9d037209ea51d34a1331627b7d82de4b27f82440e672c36045becb13cd573e97e4818767b5344745d83ca7ae8fb5be98461e953", 0xd4)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:26:42 executing program 1:
r0 = socket$inet6(0xa, 0x100000000000001, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0xb, &(0x7f0000000080)=""/4096, &(0x7f0000001140)=0x1000)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0x2, 0x32, 0xffffffffffffffff, 0x0)

03:26:42 executing program 4:
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:42 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x8000000)

03:26:42 executing program 3 (fault-call:8 fault-nth:50):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  808.899994][T12529] binder: binder_mmap: 12527 20ffb000-20fff000 bad vm_flags failed -1
[  808.919633][T12524] FAULT_INJECTION: forcing a failure.
[  808.919633][T12524] name failslab, interval 1, probability 0, space 0, times 0
03:26:42 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000002280)=ANY=[@ANYBLOB="014008003e482fb58cacf9993bd711ac789fcd11f0eb801d0bd9ab528d07cdc39fee0e2950a9548aa1ce3d8ff0454825df1a3bf7028434fb7cea8afcc277bd42051f28ea0b3310dad6c6274182f020cb44e9799a20dad2684aa77fa858f75f822bc82451c70609f1ab491421fbae66c1d404e710f16d36ece8fd0100f1b2f2e13fe3d8cdc36da2600286e9592f83ac75547db47ae30ab549357171d05b428af7e9c699e930728bf2aa9a2251aca69488c6492637bd484b0df2be9e8e24578d35cd72bcde8b9d9a26511c97bdd5f6036826f7a94e0f695b1d6c6d10cab85c97a2a749915f60897e2ae13738d5031b25b142ae1f58af11ef677aec015dbce6f0d3fc67784c90b3214ad9b00ac9f6a74e56c397888e04d7c449ceb43ee8", @ANYRES32=<r2=>0x0], &(0x7f000095dffc)=0x8)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r5, 0xc02c5341, &(0x7f0000000580))
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r5, 0x40a85321, &(0x7f00000021c0)={{0x76, 0x3}, 'port1\x00', 0x61, 0x11060, 0x81, 0x1, 0x20, 0x1, 0x100, 0x0, 0x7, 0x8001})
ioctl$KVM_SET_NESTED_STATE(r4, 0x4080aebf, &(0x7f0000000140)={0x1, 0x0, 0x2080, {0x5000, 0x10f000, 0x3}, [], "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", "09d5c55f11ef485802bcdde6bff44e9f0035b2039d45e536fb17ddef039973ab603ad923600490c3a3d77d2683e6a61a9fbf04f9a53fcdf9f21891515e4d7be323d99d3aa587fbcf7cfd4d987a9164f45f8ba848f15d28dcb8737feb127e056cee9eccae1c891f0b0f8e1ba9c8ef48b64b23da92aef3db83867d375a64a66063da85ac6e6a2d8907b089328e205239d66ff3d59b4f0b41b01b6f9077eb8c68911dd28119baefdb09aef69c78818af8e6decb42315b536b51be6155199ddf3bc3f3f173452bf28ae2bc462a297cca70537180af087ff08e39f672345bd6c5b1c0f52d2adc64d618c57fe2cbd4d26b1a61eff91883d3dc9b283405e601ece4bed07c02c764c383799d9b510158b79387761e3284637753b05c97510676a18846d3cb0d583f3f0a373b88936d9b4969fed127990495be9b84029b3cb473ff3b087c5ba8cc595429292ee28fbded90a4be2376db5faad37ae2992230d184d4e54632bfb8a5ffb278adea054e6c2d7c36f5420a54c8fa523eb0e37ed4f8142e9bf4db885685b6148a07163d115bc63b027ae3827c12ce4f0d59a582b02cf93e65ececee423bc85473584ea9c0ac4580526d7f7b64c306afdef22565dfcd526bd8d3efd980b7fb86fcf247c54899dbfbd50a4488ca935dd76eafdb09b9eff567dc3fe6481ad8fd43bf6c5abc1bc62efffba29b1e78900063db555dfff062c6e4d5a7947bfe55d52cc8c8a2025110a3b4fa84eb685195db3869e214ae7c12f23ace94638d5a3632ac40da1da58d4f1d1bdf8c29c8e50e0749de8a4691132258fc71525e5165bb9ee618de587111d47fb65c67c39a3332e51d92937bdcc9ab9c5f102bc7f83c3a709a1cd3e455ff1691782284476772bb424598afa902e33d6fc6f0e2567de47829fee30154bafcfa7cfad5b5939a8d4f2af6e183fa2ecf63ba13b7e59ebd20b7b7554adcd6a3d049a78aa35a4b78968b2d257d4f10c128acbfc385bf5c1e4713e090ceea02b481889642b38f1e13b41366ef617f78c5fda2fd815b39e5c93439fd8a607560643b470f48a0b3afd91db62808857088c94c92b1bb688cc06e9f924af03ee404539c68e350ddbc8660bd2fb028971a8703576bad83f0bd77dcdc96c1cec34c9f5ad8a58fbcaa2206e33d63b6233a79d190d9e826e2cca08256f2c273de62a40a285de7f5c417d242586ae98f7a8240135d5813c163742ce3c56297f569962f2fcdde226330e7864afa7d9fb2c44a796b355b75b819bff65055c0b1fb4c7cd3373d6f7e87d9c5c109ef827936c482e59d916e70fab70352113c67e7a4531f0f6689ecbdf45fd2da5c791dca8b3237e3fe0675541d8cd0d51a041d963da6d268555f2e5529f5b8c8c9b0e642661f40b169d6ad96b731368f1875986a27f1f678bd8a20c3de00fc3fbc62db03880be406f81191348675348da1f115e50b9b61d419497691120429e7082531a54129e26449e320eed3bc24cd950617b9b6ad1adfe0cf9d3366838d34454270396e2f7d9e55584ace0d6bfc906a21bc3aa676909536ec5608e7218568befae6f3254e33bfa4fa8a23cccb6cab4e40ad3f1658432543656efcc7bce86095355b3ed05f4babdeabe0d05c31c54b14a530b04bf29f681ef885789197a6e8bf3663c8fbdad7c3654b5fc87bf92c24136fab205f4ea3da57af66ee26561fc6ed446e4d0436e79beb2f35881d048a99d398b38d65a7051c38fd1d06cd4011183d8cbf5fdbd5557b6b389d9e1c19d70f45ad290f404921956c65d029908ce7c92aa5c5c2610875f1a68deddbd796e69afddc199358d3e7baaac85a38bf29cf8005387c420a88eb729642f5365598c38505503812351014e418cb6bb731874b42e0491a7ea8182c93a4dd729ab4c2bd73fd7a7b6ec4cfa5de02919f5a16ae1eab6a88d7e4422ce6185f837e08c450ae45d65d8c31e46332381340636e74a987f20b0c705d67ae73cb299bd11c7fb879603c71cb1d0c93abea06b7516f8d0653cb2e5108e7d3866c70f8f8e1ab5b5e37283fb2f8d7a65d7ee1ebc233558c92cc6e7c7d593b9be18fb638afc227519b83028c4fdc64b69b661668ca5198b9058ad59451386652b02170519473d5208c37616dfd3ebbac58a98cb9dbb72477e1dae1fec7265fd4c32fbe26dbd6cbe194dff805918d69168018db7b934be23aa97042141aa7a5c590b6e5c11f1c77c48fffea8423cfbae8ddf140d1c4981e2b0d608d36ec929f3176c27dbac66123e8671764b878b4416f9f90ea1dc5a1519bb1027ad5d97d0479a8d59def93c626cf4b3bc09d7f6de27fa3000061d614900ded37b76a0802ce5bc6c77c1b332f372b98771cf923c5260a828e539ac6ce37a00decbfa2acaa394d8a31014250855eda8997bdeceb8baf5e631ca25c4f00c9cde0c6f62326a61d25da1d22db76e60020f83d1aaf29bc6f93df07d21ca6ab8ae33afb1937e78dacc4014744c2489aadc97e509f7ac4018458f1183f69d70d056dc675f697d1c53a95831c0fd818a3321da406ee51aae786ae779d866e8cc9fd22005acc3c74de929ffe1c040ab11c68e6c54344dbc8a80d4ccaacefe3de26e9b7d6a73c764482ab903e595c796e63b438031da63a5ffbd2e9520b2ee38beff2afcf31410a7d3b154ae49137780ba178e7814cff56ef6cd6d76063806549cc85509fcc41f919c2786b6b159643560c6a28d0723d07a31a38de6fabe04787eb60bf77db576613a16e3f371532310d6082fa5d80ea3a1e1a6f08f3683493e2aa9c0cf9350246c4cfcedb457b7b25db58c5197c259d53af578a80581230623fe55aaaa8ea49261f87231d06aa306dedc32b425d9a388a03059a4070ec4dfb14b827b41c4a7ff083acd40bc46211384b826863a5eeb5a890a86b98136407d10b6e30c5e912826baae683683d2ed63630b41b98a603e61c18d9942d051585ce5c49d56d719ad796132efbbd6e3bfe8457b44676ee37153ab5002f0439ca12383192db9612e51c6e61becf9518103209b957d1868fc837d297e6529662bf0ccac3eedb2158c4601afe9531668e4625a082c090154f895164c9d4ab565cabe75bdb753878895da92999424baea0ed65a6a9aad3c8d6db93d01a55100dcf2233f8d35efc34fcd756c4b8239317de9057c859097ae748bad281b3a64f72dc45dc523a6b65b2513390a5567eb35148d52e64927711f221c4e46cec4692a5ac5a45f63c2563382f1d3ce5353d532572712f9d817293b14cda366a7c320a382767be61391450492a9b11db4fadce46b536407eb70c8e280304c1ac271979626f104a7de2ba985594bf3bceaac59d96754ad7cd680a1353bd10159c979886ecd5ada5d6915c210cebe5cfe6fff095b22048a32bdb64b07f9d0136c655e76d47339f7fbfd3b679d2e05c05abb0298550b267cabde72bd5a1649c9f28c30be1fc137e2903c66c7866bd8c0095e77464e9b0b92555be90ad3c952f9808246c2b9dbacfd0f1969b5aa3f917e5100c309ff59f079a3f994b467d80fc2e46308efaf47b5ef6a094df5919b38ab3ec442c12bb877289335ea49435258e3a33c08f5c23fc281db54ff23688cd782bf70e5a85c9bbde8c5257bf1fc1b91a575bffa446468da60512471d7f8ce64e20fb3a4a0e4fb3a38d9ab9fe2ecc6fc7efc133d92e2658e598806312b637134d2ae1334b37800c9f7d38400dfdf5efcc4a3fd345060d83c246eb8690be2f9d3d0198486ca34b4fe6e6f058fac0c6fba08e5f8e6b88a917281aaf990b299a911f6ce1acd950aa750ad5af73ee4f1fd6c7791e8445578b6537352607bc99463b3b32b356bec85038120281b70de2679ed2c6b69516799eb4c2f156e89927c021b19df9c7f40244aeecd88a486721e96c30e97df65ec602b4acd15d2d756d9e41e0162ddb62f5893aa0fe786125f4a8a304ee7dc0ef836e676fcd65a9971c1e93cfb7d4750c3efd1062cfc65f22bb0d646149454d1e6855eceed75fb153f31b990fde0f7e93bc24d6e56f5e1bc204c847b9d0d4a18abcea9590f5c8061eb17fffff6d453fe62a76fb86492af77404d7fbf7b91627c5f1e3db5195ba5da4452d132cb2807c266a787fb25fc75e19410b0ad4a77dcb53a4cab20e471f05a843ea610c7cdd0c5cb23ddf58a6d2bb28342c9e53cc94fb263bbfbac088b76a0b44e4df119523e321dcccd63d059e311a0f575751d7ca4bdcab9efedde894ded819ce4c6eb8c6a62bc999e657eecdba9818c4c15877f3e1343c36e32dacac41c23a024671dc9aa67caf79697f6ab8890216d23ae109da39bd5e090864a4c5e4da8cb135a49ad6f125d933288cc48bf656d3b24e2bd7dc41a1a9f8cce1536561bac6b4244a715575ed13075c862e71abf7d17318c7560f9e79883883cd86033e74dbb852fba51401b345445c1fc3546d9a54d70d3a322dd59c0a279f183c991d2efdd25027efc871ac8facc267a4ec797d66fe476b87b224c26cf71f84c5a7e4dea528592bcfe2c7d9a3576d3fa8011e3474b3b250ceafb73a830a2378d80ae4715f4779c934ffdf32a7475f38f9c8c4680134b029516868e92e608e1c298b2eef4aad9459e92037ee27fa85e4ce418e9e9e146fdacd46322fd4e1c1010787d9e433aae42e3924cc31dfb241b8dd1f9b90e210c9bf8f60e0fd0814b09fa571752249520d6d955f98020d961b0be55cd2c7412b83fb5a30ed6ac38df61ae2ac251e17f563eb259fd144e558e5a56b9ccd83a432e50ec768b33cf0c8b32de35be6189513542ff531719303c2d98246e829321d7fbd417865048422acb32a846deb8ab9e8a6c50ea83913991b896edf9bbcd83b6133996c3ce6d9017b9b9ac756406c98ff0e267a0645e1e743dd8ee3e069e9a6ede12900716c84c339e86307ae20cfb374b21f960d96e1b17e916da3d07ee9495b3f33e05bc5d1168299f4f2566d0a95146063a9cd8fd262ad13eee487a470fa54823cd6b574dbb9da08cd04d3ead2890021ebb8daa3e46cb33a67d3c2b00d11d2feb0c2344b07f19973c96f482bdf74c1225ee37382bdc9de51b63dd68b857aa1a3e538e13c43a00b74049fc434ec958e993cc2015bb704aae5e4e89d453ee2d94ddbdf06d40d7bc8869251ac5e0786eaa4c1a96de462b55a471de66d5efdead0f45e092eefcf9c0b277d472ac2b5e4522357176a8addb84b3978b67ac3bf3c07147ea1504ae30c65fcdcd34056828d5faba5efe229fae05e02c90b724d11e0b1c76435187fce1a6a106392215445a1f8e8873e0125b2c82058acb7754974a7c1aee54d6caaa0085097cd06c0fe7cbb99822ffb5108557dd9ea3de16bd4d308dd7fe815ce8ffcca8132d895c9664a995480511e9e8e1733261ab0ce22085e853b51ef9a6f1526ef902c1271b83410558a9b32b0a267f24f50d26c9234b02c1325ea73c74b5db11e58fb7b426cc6d5320efa8d066fcf643e25f042462d62d30005696683f5303098c6abed6cc18179e8c70786ffac38b3bfbc8064b1ec3d41184faa33228a6bed7766f9ed8e5c8fa750f83e8abda130fc66b8160cd91af203e0684e7e8805d54e6bae661c25db98dbb49ff3391d73942f3cf20a6879a0c4fab5736e720da21f1ac3938ce625f28ae32435e0bc96a6ac8290f3ec564bbb5472c45f3960ed4286485f7b4adc19a3ff025d4d87bd8e867f43bb92be7669c29939ddef33ef6be22a0ad11974b19321d86cd31703faee5ab07640a81015b8ffb20c377b7d80c38b2352511b89225eeef2bcd2385be7fd3151c6a580fdcfe3f0a17d6b95be7c8d76"})
getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f00000000c0)={r2}, &(0x7f0000000100)=0x14)

03:26:42 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x8c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mlockall(0x2)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  808.950652][T12524] CPU: 0 PID: 12524 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  808.958589][T12524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  808.968654][T12524] Call Trace:
[  808.971957][T12524]  dump_stack+0x1d8/0x2f8
[  808.976305][T12524]  should_fail+0x555/0x770
[  808.980761][T12524]  __should_failslab+0x11a/0x160
[  808.985736][T12524]  ? anon_vma_fork+0xf7/0x540
[  808.990425][T12524]  should_failslab+0x9/0x20
[  808.994949][T12524]  kmem_cache_alloc+0x56/0x2e0
03:26:42 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x9000000)

[  808.999730][T12524]  anon_vma_fork+0xf7/0x540
[  809.004235][T12524]  ? dup_mmap+0x5b0/0xe00
[  809.008594][T12524]  dup_mmap+0x6b8/0xe00
[  809.012769][T12524]  dup_mm+0x9e/0x340
[  809.016679][T12524]  copy_process+0x22d6/0x5970
[  809.021396][T12524]  _do_fork+0x13f/0x5b0
[  809.025562][T12524]  ? debug_smp_processor_id+0x1c/0x20
[  809.030934][T12524]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  809.037010][T12524]  __x64_sys_clone+0x1ec/0x230
[  809.041799][T12524]  do_syscall_64+0xf7/0x1c0
[  809.046317][T12524]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  809.052222][T12524] RIP: 0033:0x459a59
[  809.052955][T12539] binder: binder_mmap: 12537 20ffb000-20fff000 bad vm_flags failed -1
[  809.056110][T12524] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  809.056116][T12524] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  809.056127][T12524] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
03:26:42 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, &(0x7f0000000000)=0x5)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:26:42 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x4e21, @local}, {0x2, 0x4e24, @rand_addr=0x4}, {0x2, 0x4e24, @rand_addr=0x6}, 0x100, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)='ipddp0\x00', 0x1000, 0x8, 0x800})
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
r3 = gettid()
waitid(0x1, r3, 0x0, 0x0, &(0x7f0000000480))
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, 0x0, 0x0)
kcmp(r3, 0x0, 0x0, r4, 0xffffffffffffffff)
r5 = syz_open_dev$dmmidi(&(0x7f00000000c0)='\x00\x00\x00\x1d\x00', 0x5, 0x2800)
r6 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r7 = dup2(r6, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r8 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r8, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r8, 0x29, 0x44, &(0x7f0000000280)={'NETMAP\x00'}, &(0x7f00000002c0)=0x1e)
fsmount(r7, 0x0, 0x8)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r5, 0x0, 0xffffffffffffff03, &(0x7f0000000180)='/dev/amidi#\x00'}, 0xfffffffffffffeb3)
fsetxattr$trusted_overlay_nlink(r5, &(0x7f00000001c0)='trusted.overlay.nlink\x00', &(0x7f0000000200)={'L-', 0x40}, 0x28, 0x2)
r9 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r9, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
ioctl$sock_inet_udp_SIOCINQ(r9, 0x541b, &(0x7f0000000240))
sendmsg$key(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
setsockopt$inet_int(r9, 0x0, 0x19, &(0x7f0000000000)=0x2, 0x4)

[  809.056133][T12524] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  809.056139][T12524] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  809.056145][T12524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  809.056150][T12524] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:42 executing program 3 (fault-call:8 fault-nth:51):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  809.267371][T12551] FAULT_INJECTION: forcing a failure.
[  809.267371][T12551] name failslab, interval 1, probability 0, space 0, times 0
[  809.297368][T12551] CPU: 0 PID: 12551 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  809.305299][T12551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  809.316221][T12551] Call Trace:
[  809.319520][T12551]  dump_stack+0x1d8/0x2f8
[  809.323860][T12551]  should_fail+0x555/0x770
[  809.328291][T12551]  __should_failslab+0x11a/0x160
[  809.333235][T12551]  ? anon_vma_fork+0x1d8/0x540
[  809.338004][T12551]  should_failslab+0x9/0x20
[  809.342520][T12551]  kmem_cache_alloc+0x56/0x2e0
[  809.347292][T12551]  anon_vma_fork+0x1d8/0x540
[  809.351877][T12551]  dup_mmap+0x6b8/0xe00
[  809.356150][T12551]  dup_mm+0x9e/0x340
[  809.360034][T12551]  copy_process+0x22d6/0x5970
[  809.364831][T12551]  _do_fork+0x13f/0x5b0
[  809.369002][T12551]  ? debug_smp_processor_id+0x1c/0x20
[  809.374358][T12551]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  809.380546][T12551]  __x64_sys_clone+0x1ec/0x230
[  809.385292][T12551]  do_syscall_64+0xf7/0x1c0
[  809.389776][T12551]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  809.395656][T12551] RIP: 0033:0x459a59
[  809.399552][T12551] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  809.419135][T12551] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  809.427525][T12551] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  809.435572][T12551] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  809.443715][T12551] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  809.453314][T12551] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  809.461277][T12551] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:51 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:26:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xa000000)

03:26:51 executing program 1:
r0 = socket$inet6(0xa, 0x100000000000001, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0xb, &(0x7f0000000080)=""/4096, &(0x7f0000001140)=0x1000)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0x2, 0x32, 0xffffffffffffffff, 0x0)

03:26:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
ioctl$SIOCAX25DELFWD(0xffffffffffffffff, 0x89eb, &(0x7f0000000000)={@default, @null})
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:26:51 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x1)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
r4 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
getsockopt$inet6_opts(r4, 0x29, 0x39, &(0x7f0000000200)=""/251, &(0x7f0000000000)=0xfb)
symlinkat(&(0x7f0000443ff6)='./control\x00', r3, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:51 executing program 3 (fault-call:8 fault-nth:52):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  818.222392][T12570] binder: binder_mmap: 12563 20ffb000-20fff000 bad vm_flags failed -1
[  818.242302][T12571] FAULT_INJECTION: forcing a failure.
[  818.242302][T12571] name fail_page_alloc, interval 1, probability 0, space 0, times 0
03:26:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xb000000)

03:26:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x8e010f00)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  818.269537][T12571] CPU: 0 PID: 12571 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  818.277481][T12571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  818.287896][T12571] Call Trace:
[  818.291215][T12571]  dump_stack+0x1d8/0x2f8
[  818.296046][T12571]  should_fail+0x555/0x770
[  818.300667][T12571]  should_fail_alloc_page+0x55/0x60
[  818.305902][T12571]  prepare_alloc_pages+0x283/0x460
[  818.311173][T12571]  __alloc_pages_nodemask+0xb2/0x5d0
[  818.316792][T12571]  alloc_pages_current+0x2db/0x500
[  818.322080][T12571]  pte_alloc_one+0x1f/0x180
[  818.326606][T12571]  __pte_alloc+0x20/0x2f0
[  818.330865][T12578] binder: binder_mmap: 12577 20ffb000-20fff000 bad vm_flags failed -1
[  818.331177][T12571]  copy_page_range+0x2315/0x2840
[  818.344317][T12571]  dup_mmap+0xa01/0xe00
[  818.348595][T12571]  dup_mm+0x9e/0x340
[  818.352506][T12571]  copy_process+0x22d6/0x5970
[  818.357428][T12571]  _do_fork+0x13f/0x5b0
[  818.361596][T12571]  ? debug_smp_processor_id+0x1c/0x20
[  818.367058][T12571]  ? fpregs_assert_state_consistent+0xb7/0xe0
03:26:51 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xc000000)

[  818.367073][T12571]  __x64_sys_clone+0x1ec/0x230
[  818.367093][T12571]  do_syscall_64+0xf7/0x1c0
[  818.367107][T12571]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  818.367116][T12571] RIP: 0033:0x459a59
[  818.367126][T12571] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  818.367131][T12571] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:26:51 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x38, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x8, 0xfa00, {r4, 0x5}}, 0x10)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x7ff, 0x1, &(0x7f0000000100)=[{&(0x7f00000001c0)="d55829d345c72c54eb95dfa7259cc365618fa75c4e67688b6c630608cf78ebfd59a2150f3e4bc15b92a54adc8b4f950f8bd0c0b0993dcfb43426f8ab8b2d03c59922a53cd45c27aeb7c07faba6180723da24b2a6114d35fe50fafff05a4dee677be1b95c9ec5963638060dfff9d8b6a3aacc2af241ef29a149a864fface00979e56f22bede4007ed1f3a544c294103a5d8989d5038847ac660221bf0d7e172127ac68f801f1a7d1f328509d1e29fce98d071273e2c3e78aa579db2a24fa9920263f492b9d2f16de0e08671bd431a3f9ee0c1b5a3d0f4458f140022580a55c1a63c0e4cdef940e99161c9edc161956c1a26a8db06bb0848e2", 0xf8, 0x6}], 0x8000, &(0x7f00000002c0)=ANY=[@ANYBLOB="696e6f64655f63616368652c636f6d70726573732d666f7263652c7265665f7665726966792c66736e616d65e43f83c26a5f757365723d6b657972696e672c61707072616973652c6d65617fa2e39f89e3"])

03:26:51 executing program 1:
r0 = socket$inet6(0xa, 0x100000000000001, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r0, 0x84, 0xb, &(0x7f0000000080)=""/4096, &(0x7f0000001140)=0x1000)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0x2, 0x32, 0xffffffffffffffff, 0x0)

[  818.367139][T12571] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  818.367145][T12571] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  818.367150][T12571] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  818.367155][T12571] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  818.367164][T12571] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:51 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
io_setup(0x6ff4, &(0x7f0000000000)=<r4=>0x0)
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r5, 0xc02c5341, &(0x7f0000000580))
r6 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xc346936000, 0x54080)
r7 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r7)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r7}, 0x0)
r8 = syz_open_dev$vbi(&(0x7f0000000500)='/dev/vbi#\x00', 0x2, 0x2)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r8, 0xc058534f, &(0x7f0000000600)={{0x5, 0x7e}, 0x0, 0x20, 0x41, {0x0, 0x20}, 0x5, 0x6})
kcmp(r7, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r9 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r7, r9, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$CAPI_SET_FLAGS(r9, 0x80044324, &(0x7f00000004c0)=0x1)
r10 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r10, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r11 = openat$cgroup_type(r10, &(0x7f00000002c0)='cgroup.type\x00', 0x2, 0x0)
r12 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r12, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
connect$bt_rfcomm(r6, &(0x7f0000000480)={0x1f, {0x1, 0x3f, 0x40, 0x9, 0x1, 0x3}}, 0xa)
io_submit(r4, 0x3, &(0x7f0000000440)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x4800, r5, &(0x7f0000000140)="0188da43f93f415e4f4674f40b141d038be64fdc1104b947b2eb8eb32228d9ec0f78e7c79dded1e92360b4d8dfff3f895e437f8402b23ad3674464213f174336ed7a6b993bb229f2c54b5ad80da9c6af4f6b2c07810a29ccb5", 0x59, 0x6, 0x0, 0x1, r6}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x246b0b8cf3e778b8, 0xff, 0xffffffffffffffff, &(0x7f0000000200)="c9762abfc3aa303220ff7d247d3946e9d8aa989c490eea3cf9da4f27d33d453e8ec471fafdefae94b88a1000599f9596f342b8d3c3ddad956adb582bd347c4bbdef7776319224e9ddd577e72c580e5cc", 0x50, 0xa55, 0x0, 0x4}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0xffb9, r11, &(0x7f0000000300)="718e6cf9a0d936d33b6f05caa2f098cd933be1753f93f9d70b1d59d551f4cb0b682d494504c027590edef166e3e93b887640d50b5d13be668cc21c9e328de53c0bb30f79bf4e9ac8418f0dbf3b54c51a6b9706b19adbcb47b2d045fe6fad8da36f8009fb4292c0546989c3174c4a342b45cdf35031d1febd33986c85b28c0e1d513d44845f1e0c888d65ffaca4ad5093b7bafe42bd7cd1ea71c477736dbfd12c403dfa5f57751d0adb4a0cb1625a633ac4dfb83f3d9db33b87bd19a88f4d24acfc7cd0d05fcd2a105bd0c49dab0aeb00bbff6f041343ae71828c3d079653024f8f", 0xe1, 0x2, 0x0, 0x2, r12}])
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  818.535021][T12592] binder: binder_mmap: 12589 20ffb000-20fff000 bad vm_flags failed -1
03:26:57 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xd000000)

03:26:57 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:26:57 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000000)=0x5c1f)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:57 executing program 3 (fault-call:8 fault-nth:53):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:26:57 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='status\x00')
exit(0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='fd/3\x00W\xf6Je|H\x10\x05\xf1\xab\xc4MJ\xcbP\xed@\xe8\xe39\xd2\xea\xaap\xf9\x1aTM\x1f\x8e\x86c\xb4T\xde\x10\xf6\xa1\x89\xea)6\xca\x00\xa2\x04\xe6}\xaa\xd4\xf6~\xd0\x04bq\xe5\xa2\x99t;zzV\x15\x9a\x1b\xb9\x87@\xe9#\x99\xd6\xb8\xa4\xb1T\xdd\xe0\x93\xd0\xd5\xd8\x0f\x11y\xef\xf1R\v\xd6\x81\x97\xa96,q\xd053\x1a\x11VEG(\x93\x18\xf2\xbc\x17\x1f\xd7\x89F(G\x18S\xda\x99\xdb\xeb\xa0\xc9*\xbd\xb4=Y;\xa8\xed\xd2\xa9\xa2\x87\xa0\xfb\r\xf7I1]:\xd1;h\xc6\xe2M\xf2\x005\x96\x9b\xd1\x92v\xf9\xba\xf4\x12\r\"^\xc2\xb2\x1d\n:mnO8\\\xa1\x7f\x92r\x95\x96\xda7\xea\x85\xc8\x8c\xa8^\xb7\x1f\x80\x05\x03\xbb\xef9C\xcb(\x9bF\vHFW\x04\x1d\xc7LkW\xb2\xe9\xdd\x17\xe8%\x86\xd1H\rR\xafX\x1f\xea\x00'/247)
sendfile(r1, r0, 0x0, 0x1f7)

03:26:57 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000080)=0x4)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
r5 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r8=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r6, 0x84, 0x10, &(0x7f00000000c0)={r8}, &(0x7f0000000100)=0x18)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000140)={<r9=>r8, @in={{0x2, 0x4e21, @loopback}}, [0x928, 0x80000001, 0x4, 0x100000001, 0x1, 0x81, 0xe00, 0x6e, 0x1, 0x7a4, 0x4, 0x80, 0x9, 0x200, 0x1d]}, &(0x7f0000000240)=0x100)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000280)={r9, 0x400}, 0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

[  824.651129][T12610] binder: binder_mmap: 12608 20ffb000-20fff000 bad vm_flags failed -1
[  824.673203][T12615] FAULT_INJECTION: forcing a failure.
[  824.673203][T12615] name failslab, interval 1, probability 0, space 0, times 0
[  824.696280][T12615] CPU: 1 PID: 12615 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  824.704337][T12615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  824.704346][T12615] Call Trace:
[  824.718164][T12615]  dump_stack+0x1d8/0x2f8
[  824.722510][T12615]  should_fail+0x555/0x770
[  824.727052][T12615]  __should_failslab+0x11a/0x160
[  824.732187][T12615]  ? ptlock_alloc+0x20/0x70
[  824.736716][T12615]  should_failslab+0x9/0x20
[  824.741366][T12615]  kmem_cache_alloc+0x56/0x2e0
[  824.746232][T12615]  ? alloc_pages_current+0x2db/0x500
03:26:57 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xe000000)

[  824.751517][T12615]  ptlock_alloc+0x20/0x70
[  824.755871][T12615]  pte_alloc_one+0x6e/0x180
[  824.760385][T12615]  __pte_alloc+0x20/0x2f0
[  824.764718][T12615]  copy_page_range+0x2315/0x2840
[  824.768628][T12621] binder: binder_mmap: 12620 20ffb000-20fff000 bad vm_flags failed -1
[  824.769842][T12615]  dup_mmap+0xa01/0xe00
[  824.782227][T12615]  dup_mm+0x9e/0x340
[  824.786153][T12615]  copy_process+0x22d6/0x5970
[  824.791041][T12615]  _do_fork+0x13f/0x5b0
[  824.795305][T12615]  ? debug_smp_processor_id+0x1c/0x20
03:26:57 executing program 4:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x80000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000000c0)={0x1, 0x8000, 0x7, 'queue0\x00'})
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r1 = open(&(0x7f00000001c0)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r1, &(0x7f000034aff8)='./file0\x00')
renameat(r1, &(0x7f0000000000)='./control\x00', r1, &(0x7f0000009000)='./control\x00')

03:26:57 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
poll(&(0x7f0000000140)=[{r2}], 0x1, 0x1f)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x14)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r3, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000080)=0x4)

[  824.800705][T12615]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  824.806928][T12615]  __x64_sys_clone+0x1ec/0x230
[  824.811837][T12615]  do_syscall_64+0xf7/0x1c0
[  824.816446][T12615]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  824.822425][T12615] RIP: 0033:0x459a59
[  824.826347][T12615] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:26:58 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x10000000)

[  824.845966][T12615] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  824.854387][T12615] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  824.862466][T12615] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  824.870616][T12615] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  824.878723][T12615] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  824.886839][T12615] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:26:58 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
getsockname$ax25(r0, &(0x7f0000000000)={{0x3, @rose}, [@remote, @bcast, @netrom, @default, @default, @netrom, @netrom, @null]}, &(0x7f0000000100)=0x48)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:26:58 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x11000000)

[  824.907857][T12629] QAT: Invalid ioctl
[  824.925490][T12629] QAT: Invalid ioctl
[  824.927947][T12630] binder: binder_mmap: 12626 20ffb000-20fff000 bad vm_flags failed -1
03:26:58 executing program 3 (fault-call:8 fault-nth:54):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  825.014187][T12640] binder: binder_mmap: 12638 20ffb000-20fff000 bad vm_flags failed -1
[  825.083478][T12643] FAULT_INJECTION: forcing a failure.
[  825.083478][T12643] name failslab, interval 1, probability 0, space 0, times 0
[  825.107448][T12643] CPU: 0 PID: 12643 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  825.115647][T12643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  825.125718][T12643] Call Trace:
[  825.129036][T12643]  dump_stack+0x1d8/0x2f8
[  825.133389][T12643]  should_fail+0x555/0x770
[  825.137841][T12643]  __should_failslab+0x11a/0x160
[  825.142802][T12643]  ? ptlock_alloc+0x20/0x70
[  825.147321][T12643]  should_failslab+0x9/0x20
[  825.151841][T12643]  kmem_cache_alloc+0x56/0x2e0
[  825.156770][T12643]  ? alloc_pages_current+0x2db/0x500
[  825.162137][T12643]  ptlock_alloc+0x20/0x70
[  825.166467][T12643]  pte_alloc_one+0x6e/0x180
[  825.170976][T12643]  __pte_alloc+0x20/0x2f0
[  825.175328][T12643]  copy_page_range+0x2315/0x2840
[  825.180307][T12643]  dup_mmap+0xa01/0xe00
[  825.184490][T12643]  dup_mm+0x9e/0x340
[  825.188392][T12643]  copy_process+0x22d6/0x5970
[  825.193097][T12643]  _do_fork+0x13f/0x5b0
[  825.197256][T12643]  ? debug_smp_processor_id+0x1c/0x20
[  825.202659][T12643]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  825.208725][T12643]  __x64_sys_clone+0x1ec/0x230
[  825.213503][T12643]  do_syscall_64+0xf7/0x1c0
[  825.218015][T12643]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  825.223963][T12643] RIP: 0033:0x459a59
[  825.227861][T12643] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  825.247479][T12643] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  825.255901][T12643] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  825.264025][T12643] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  825.271996][T12643] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  825.280107][T12643] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  825.288209][T12643] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:04 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:27:04 executing program 4:
mkdir(&(0x7f0000000100)='./file0\x00', 0x12)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x12000000)

03:27:04 executing program 3 (fault-call:8 fault-nth:55):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:27:04 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x6e000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cachefiles\x00', 0x8002, 0x0)
write$P9_RLOPEN(r2, &(0x7f00000002c0)={0x18, 0xd, 0x1, {{0x10, 0x4, 0x3}, 0x3}}, 0x18)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="440400002400070500"/20, @ANYRES32=r6, @ANYBLOB="00000e00ffffffff000000000800010063627100180402000404060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000a548000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000380f000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000050006000000000000000500000000000000"], 0x444}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newqdisc={0x30, 0x24, 0x507, 0x0, 0x0, {0x0, r6, {0x0, 0xe}, {0x0, 0xe}}, [@qdisc_kind_options=@q_cbq={{0xc, 0x1, 'cbq\x00'}, {0x4}}]}, 0x30}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'gretap0\x00', r6})
r7 = msgget$private(0x0, 0x8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000380)={{{@in=@multicast1, @in6=@ipv4={[], [], @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in=@broadcast}}}, &(0x7f0000000b80)=0xfd39)
r9 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000005c0)="4acf665ff77df4f20690a5a83bc1a1e6519321db1dc2bf7eee06d978abdfbb33f3bc7025e6befda3c827875946eb75c14639ab6e76811a733653f72afc34e5fce1bed277a8faa02e6da16041b40bab677d6555e94a42b7ac236c8c35d729ac501cf28293c919f2f3ceec4703c892adeac90504aeb3ba485e09bda66d2b96124cabc4d2e653848e2bd909287d0d2c433d72bbd4333cf37f2a8972bba453c776d2c73c61b9fa2153405fc0253992c918682c7018f6a280a9ff312ae4a6996bd9547aed66e72f94342a7d27b9483f7e2e8e3c5bbb89452fd9bb6708ae89ba29", 0xde, 0xfffffffffffffffe)
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
getresgid(&(0x7f0000000400), &(0x7f0000000540), &(0x7f00000006c0)=<r11=>0x0)
keyctl$chown(0x4, r9, r10, r11)
stat(&(0x7f0000000900)='./file0\x00', &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, <r12=>0x0})
lstat(&(0x7f0000000940)='./file0\x00', &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
r14 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r14)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r14}, 0x0)
kcmp(r14, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r15 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r14, r15, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f, 0x13008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa1c}, 0x0, 0x0, 0x0, 0x8}, r14, 0x0, 0xffffffffffffffff, 0x0)
r16 = getpgrp(0xffffffffffffffff)
msgctl$IPC_SET(r7, 0x1, &(0x7f0000000b00)={{0xffff, r8, r11, r12, r13, 0xb01a9de54a62ca8f, 0x6}, 0x6000000000000000, 0x3, 0x6, 0x8, 0x3, 0x7, r14, r16})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB, @ANYRES32=<r17=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r17, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000000100)=0x14)
r18 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r18, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$KVM_GET_DIRTY_LOG(r18, 0x4010ae42, &(0x7f0000000000)={0x1fe, 0x0, &(0x7f0000ffe000/0x2000)=nil})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000001c0)={&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000140)="6bf73b8a46548524f544db38c4c173e9646e8a9a8b7f83e2ccf40406a0cdc3b4ba59400f9764b1ee4f4246dd6bc291aaf9cb5ea299ef0ee1d75d503cf7b88d302a88304e7ad0314230cf76691d2c035b3442455b", 0x54}, 0x68)

03:27:04 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='status\x00')
exit(0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='fd/3\x00W\xf6Je|H\x10\x05\xf1\xab\xc4MJ\xcbP\xed@\xe8\xe39\xd2\xea\xaap\xf9\x1aTM\x1f\x8e\x86c\xb4T\xde\x10\xf6\xa1\x89\xea)6\xca\x00\xa2\x04\xe6}\xaa\xd4\xf6~\xd0\x04bq\xe5\xa2\x99t;zzV\x15\x9a\x1b\xb9\x87@\xe9#\x99\xd6\xb8\xa4\xb1T\xdd\xe0\x93\xd0\xd5\xd8\x0f\x11y\xef\xf1R\v\xd6\x81\x97\xa96,q\xd053\x1a\x11VEG(\x93\x18\xf2\xbc\x17\x1f\xd7\x89F(G\x18S\xda\x99\xdb\xeb\xa0\xc9*\xbd\xb4=Y;\xa8\xed\xd2\xa9\xa2\x87\xa0\xfb\r\xf7I1]:\xd1;h\xc6\xe2M\xf2\x005\x96\x9b\xd1\x92v\xf9\xba\xf4\x12\r\"^\xc2\xb2\x1d\n:mnO8\\\xa1\x7f\x92r\x95\x96\xda7\xea\x85\xc8\x8c\xa8^\xb7\x1f\x80\x05\x03\xbb\xef9C\xcb(\x9bF\vHFW\x04\x1d\xc7LkW\xb2\xe9\xdd\x17\xe8%\x86\xd1H\rR\xafX\x1f\xea\x00'/247)
sendfile(r1, r0, 0x0, 0x1f7)

[  831.058365][T12660] binder: binder_mmap: 12656 20ffb000-20fff000 bad vm_flags failed -1
[  831.068787][T12663] FAULT_INJECTION: forcing a failure.
[  831.068787][T12663] name failslab, interval 1, probability 0, space 0, times 0
[  831.085995][T12663] CPU: 0 PID: 12663 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  831.093936][T12663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  831.104137][T12663] Call Trace:
[  831.107447][T12663]  dump_stack+0x1d8/0x2f8
[  831.111805][T12663]  should_fail+0x555/0x770
[  831.116250][T12663]  __should_failslab+0x11a/0x160
[  831.117174][T12654] IPVS: ftp: loaded support on port[0] = 21
[  831.121200][T12663]  ? dup_mmap+0x587/0xe00
[  831.121214][T12663]  should_failslab+0x9/0x20
[  831.121226][T12663]  kmem_cache_alloc+0x56/0x2e0
[  831.121239][T12663]  ? security_vm_enough_memory_mm+0xb0/0xc0
[  831.121250][T12663]  dup_mmap+0x587/0xe00
[  831.151235][T12663]  dup_mm+0x9e/0x340
03:27:04 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x800000, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x10, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x18)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000100)={r4, @in={{0x2, 0x4e23, @multicast1}}, 0x6, 0x1, 0x1, 0x2a3c, 0x20}, 0x98)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  831.155252][T12663]  copy_process+0x22d6/0x5970
[  831.160251][T12663]  _do_fork+0x13f/0x5b0
[  831.160266][T12663]  ? debug_smp_processor_id+0x1c/0x20
[  831.160280][T12663]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  831.160294][T12663]  __x64_sys_clone+0x1ec/0x230
[  831.170153][T12663]  do_syscall_64+0xf7/0x1c0
[  831.170169][T12663]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  831.170182][T12663] RIP: 0033:0x459a59
[  831.186129][T12663] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  831.186136][T12663] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  831.186147][T12663] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  831.186153][T12663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  831.186158][T12663] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  831.186164][T12663] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
03:27:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x1e158000)

03:27:04 executing program 3 (fault-call:8 fault-nth:56):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  831.186170][T12663] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:04 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@dev, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{}, 0x0, @in=@loopback}}, &(0x7f0000000140)=0xe8)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000002c0)={r2, 0x1, 0x6, @broadcast}, 0x10)
r3 = open(&(0x7f0000000000)='./control\x00', 0x40, 0x204)
getsockopt$llc_int(r3, 0x10c, 0x9, &(0x7f0000000040), &(0x7f0000000100)=0x4)

[  831.317964][T12675] binder: binder_mmap: 12672 20ffb000-20fff000 bad vm_flags failed -1
[  831.361482][T12678] FAULT_INJECTION: forcing a failure.
[  831.361482][T12678] name failslab, interval 1, probability 0, space 0, times 0
[  831.396468][T12678] CPU: 0 PID: 12678 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  831.404414][T12678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  831.414674][T12678] Call Trace:
[  831.417978][T12678]  dump_stack+0x1d8/0x2f8
[  831.422558][T12678]  should_fail+0x555/0x770
[  831.427177][T12678]  __should_failslab+0x11a/0x160
[  831.432326][T12678]  ? anon_vma_clone+0xaa/0x4b0
[  831.437177][T12678]  should_failslab+0x9/0x20
[  831.437188][T12678]  kmem_cache_alloc+0x56/0x2e0
[  831.437199][T12678]  anon_vma_clone+0xaa/0x4b0
[  831.437212][T12678]  ? rcu_read_lock_sched_held+0x10b/0x170
[  831.437221][T12678]  anon_vma_fork+0x91/0x540
[  831.437230][T12678]  ? dup_mmap+0x5b0/0xe00
[  831.437242][T12678]  dup_mmap+0x6b8/0xe00
[  831.437262][T12678]  dup_mm+0x9e/0x340
[  831.437273][T12678]  copy_process+0x22d6/0x5970
[  831.437314][T12678]  _do_fork+0x13f/0x5b0
[  831.457332][T12678]  ? debug_smp_processor_id+0x1c/0x20
[  831.457343][T12678]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  831.457358][T12678]  __x64_sys_clone+0x1ec/0x230
[  831.457377][T12678]  do_syscall_64+0xf7/0x1c0
[  831.457391][T12678]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
03:27:04 executing program 3 (fault-call:8 fault-nth:57):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:27:04 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x20000000)

[  831.457401][T12678] RIP: 0033:0x459a59
[  831.457411][T12678] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  831.457416][T12678] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  831.457426][T12678] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  831.457431][T12678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  831.457440][T12678] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  831.471159][T12678] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  831.479885][T12678] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  831.594066][T12684] binder: binder_mmap: 12683 20ffb000-20fff000 bad vm_flags failed -1
[  831.627430][T12670] IPVS: ftp: loaded support on port[0] = 21
[  831.632480][T12686] FAULT_INJECTION: forcing a failure.
[  831.632480][T12686] name failslab, interval 1, probability 0, space 0, times 0
[  831.679236][T12686] CPU: 1 PID: 12686 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  831.687683][T12686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  831.687689][T12686] Call Trace:
[  831.687708][T12686]  dump_stack+0x1d8/0x2f8
[  831.687721][T12686]  should_fail+0x555/0x770
[  831.687771][T12686]  __should_failslab+0x11a/0x160
[  831.715553][T12686]  ? anon_vma_fork+0xf7/0x540
[  831.720565][T12686]  should_failslab+0x9/0x20
[  831.720578][T12686]  kmem_cache_alloc+0x56/0x2e0
[  831.720593][T12686]  anon_vma_fork+0xf7/0x540
[  831.720603][T12686]  ? dup_mmap+0x5b0/0xe00
[  831.720616][T12686]  dup_mmap+0x6b8/0xe00
[  831.720637][T12686]  dup_mm+0x9e/0x340
[  831.739670][T12686]  copy_process+0x22d6/0x5970
[  831.739714][T12686]  _do_fork+0x13f/0x5b0
[  831.748244][T12686]  ? debug_smp_processor_id+0x1c/0x20
[  831.748258][T12686]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  831.748278][T12686]  __x64_sys_clone+0x1ec/0x230
[  831.757118][T12686]  do_syscall_64+0xf7/0x1c0
[  831.757135][T12686]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  831.757144][T12686] RIP: 0033:0x459a59
[  831.757154][T12686] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  831.757159][T12686] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  831.757168][T12686] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  831.757174][T12686] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  831.757179][T12686] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  831.757184][T12686] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  831.757189][T12686] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:10 executing program 2:
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d2, &(0x7f0000000140))

03:27:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x25000000)

03:27:10 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x2000000000000004)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
r5 = gettid()
getsockopt$ax25_int(r0, 0x101, 0xe, &(0x7f0000000440), &(0x7f0000000480)=0x4)
prctl$PR_SET_PTRACER(0x59616d61, r5)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r5}, 0x0)
r6 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, &(0x7f0000000200)={{{@in=@dev, @in=@local}}, {{@in=@local}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8)
r7 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r7)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r7}, 0x0)
kcmp(r7, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r8 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r7, r8, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f, 0x13008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa1c}, 0x0, 0x0, 0x0, 0x8}, r7, 0x0, 0xffffffffffffffff, 0x0)
kcmp(r5, r7, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r9 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r5, r9, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f, 0x13008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa1c}, 0x0, 0x0, 0x0, 0x8}, r5, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000400)={r9, &(0x7f0000000380)="8a1d474a723afb11a8d6bb177b7ee413aa6b14438f6eb4ea30c592107b585a2f8c721e0da2f095a0cbc8269487a0c62cd1d1856d33a01c636349125174c20ade4306d6d6d4896e03225e8ecd68ae"}, 0x20)
r10 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r10)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r10}, 0x0)
kcmp(r10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r11 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r10, r11, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f, 0x13008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa1c}, 0x0, 0x0, 0x0, 0x8}, r10, 0x0, 0xffffffffffffffff, 0x0)
write$FUSE_LK(r4, &(0x7f0000000000)={0x26e, 0xffffffffffffffda, 0x10000006, {{0x3, 0x8000, 0x2, r10}}}, 0xfffffd1c)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r12 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r13 = dup2(r12, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r13, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
renameat(r13, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:10 executing program 3 (fault-call:8 fault-nth:58):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:27:10 executing program 1:
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x7}, 0x20)
r0 = socket$kcm(0xa, 0x122000000003, 0x11)
setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f0000000240), 0x26e)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000280)={{{@in6=@remote, @in6=@mcast1}}, {{@in6}, 0x0, @in=@remote}}, &(0x7f0000000380)=0xe8)
stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400))
socket(0x10, 0x0, 0x0)
creat(0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB], 0x0)
close(0xffffffffffffffff)
socket(0x0, 0x2, 0x0)
setxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000040)=@nl=@unspec={0x1200000000000000, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000100)="035db86376863a68fe800000000000004208c349d7c40346d59be131ad18d92c2bca9d7f6e6a6ac7d6", 0x4e}], 0x1}, 0x0)

03:27:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r4 = dup2(r3, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r1, @ANYRESDEC=r4], &(0x7f000095dffc)=0x2)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x14)

[  837.300673][T12699] binder: binder_mmap: 12698 20ffb000-20fff000 bad vm_flags failed -1
[  837.325444][T12701] FAULT_INJECTION: forcing a failure.
[  837.325444][T12701] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  837.366570][T12701] CPU: 1 PID: 12701 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  837.375056][T12701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  837.375066][T12701] Call Trace:
[  837.388753][T12701]  dump_stack+0x1d8/0x2f8
[  837.393745][T12701]  should_fail+0x555/0x770
[  837.398192][T12701]  should_fail_alloc_page+0x55/0x60
[  837.403582][T12701]  prepare_alloc_pages+0x283/0x460
[  837.404781][T12713] binder: binder_mmap: 12712 20ffb000-20fff000 bad vm_flags failed -1
[  837.408804][T12701]  __alloc_pages_nodemask+0xb2/0x5d0
[  837.408817][T12701]  ? check_preemption_disabled+0x47/0x2a0
[  837.408918][T12701]  ? update_cfs_rq_load_avg+0x340/0x5a0
[  837.408941][T12701]  alloc_pages_current+0x2db/0x500
[  837.423621][T12701]  pte_alloc_one+0x1f/0x180
[  837.445354][T12701]  copy_huge_pmd+0x64/0xaa0
[  837.450046][T12701]  copy_page_range+0xc91/0x2840
[  837.455232][T12701]  ? lockdep_hardirqs_on+0x3c5/0x7d0
[  837.462217][T12701]  ? retint_kernel+0x2b/0x2b
[  837.466926][T12701]  ? preempt_schedule_irq+0x10a/0x140
[  837.472417][T12701]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  837.478269][T12701]  ? __vma_link_rb+0x839/0x860
[  837.480240][T12719] binder: binder_mmap: 12717 20ffb000-20fff000 bad vm_flags failed -1
[  837.483051][T12701]  dup_mmap+0xa01/0xe00
[  837.483077][T12701]  dup_mm+0x9e/0x340
[  837.499588][T12701]  copy_process+0x22d6/0x5970
[  837.504367][T12701]  _do_fork+0x13f/0x5b0
[  837.508680][T12701]  ? debug_smp_processor_id+0x1c/0x20
03:27:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x3f000000)

03:27:10 executing program 0:
prctl$PR_SET_TIMERSLACK(0x1d, 0x53)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000000100)=0x14)

03:27:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x40000000)

03:27:10 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
r4 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r5 = dup2(r4, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$PIO_CMAP(r5, 0x4b71, &(0x7f0000000000)={0x81, 0xf94, 0x401, 0x80, 0x67, 0x1ce62276})

03:27:10 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x48000000)

[  837.514359][T12701]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  837.520464][T12701]  __x64_sys_clone+0x1ec/0x230
[  837.525260][T12701]  do_syscall_64+0xf7/0x1c0
[  837.529807][T12701]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  837.535712][T12701] RIP: 0033:0x459a59
[  837.540070][T12701] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  837.558963][T12724] binder: binder_mmap: 12723 20ffb000-20fff000 bad vm_flags failed -1
[  837.565626][T12701] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  837.565638][T12701] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  837.565642][T12701] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  837.565647][T12701] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
03:27:10 executing program 3 (fault-call:8 fault-nth:59):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  837.565652][T12701] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  837.565657][T12701] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  837.698627][T12729] FAULT_INJECTION: forcing a failure.
[  837.698627][T12729] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  837.714772][T12729] CPU: 1 PID: 12729 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  837.724194][T12729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  837.736795][T12729] Call Trace:
[  837.740532][T12729]  dump_stack+0x1d8/0x2f8
[  837.745752][T12729]  should_fail+0x555/0x770
[  837.750635][T12729]  should_fail_alloc_page+0x55/0x60
[  837.756039][T12729]  prepare_alloc_pages+0x283/0x460
[  837.761430][T12729]  __alloc_pages_nodemask+0xb2/0x5d0
[  837.766733][T12729]  alloc_pages_current+0x2db/0x500
[  837.772508][T12729]  pte_alloc_one+0x1f/0x180
[  837.777428][T12729]  __pte_alloc+0x20/0x2f0
[  837.782027][T12729]  copy_page_range+0x2315/0x2840
[  837.787068][T12729]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  837.794787][T12729]  dup_mmap+0xa01/0xe00
[  837.799464][T12729]  dup_mm+0x9e/0x340
[  837.803823][T12729]  copy_process+0x22d6/0x5970
[  837.808681][T12729]  _do_fork+0x13f/0x5b0
[  837.813432][T12729]  ? debug_smp_processor_id+0x1c/0x20
[  837.819295][T12729]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  837.825361][T12729]  __x64_sys_clone+0x1ec/0x230
[  837.830282][T12729]  do_syscall_64+0xf7/0x1c0
[  837.834832][T12729]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  837.841268][T12729] RIP: 0033:0x459a59
[  837.845167][T12729] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  837.865123][T12729] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  837.873738][T12729] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  837.881934][T12729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  837.889988][T12729] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  837.898082][T12729] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  837.907173][T12729] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:18 executing program 2:
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d2, &(0x7f0000000140))

03:27:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r3 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x1, 0x2)
symlinkat(&(0x7f0000000000)='\x00', r3, &(0x7f0000000140)='./file0\x00')
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:27:18 executing program 1:
socketpair$unix(0x1, 0x800000000000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'eql\x00', 0x1})
ioctl$sock_ifreq(r1, 0x8914, &(0x7f0000000200)={'eql\x00`\x00\xa9[,\x00^\x01\x03\x03\xf0\n', @ifru_mtu=0x1})

03:27:18 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
ioctl$VIDIOC_CREATE_BUFS(r3, 0xc100565c, &(0x7f00000002c0)={0x8, 0x101, 0xe53454679eda758b, {0x4ddbdeb43941984d, @sliced={0x400, [0x1000, 0x3, 0x2, 0x4, 0x1, 0x4, 0xc1a, 0x2, 0x4, 0x8, 0x7, 0xc14e, 0xff, 0x1, 0x622, 0x5, 0x8, 0x13a, 0x8, 0x20, 0x4, 0x0, 0x2, 0x4, 0x4, 0xfffa, 0x1000, 0x1ff, 0x3f, 0x401, 0x8001, 0x400, 0x3, 0x5, 0xa77c, 0x9, 0x7fff, 0x0, 0x5b3, 0x4, 0x3, 0x80, 0x2, 0xfffd, 0xfff, 0x2, 0x9, 0xff], 0x1}}})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f00000001c0)=""/215)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:18 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x4c000000)

03:27:18 executing program 3 (fault-call:8 fault-nth:60):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

[  845.648025][T12746] binder: binder_mmap: 12744 20ffb000-20fff000 bad vm_flags failed -1
[  845.654502][T12743] FAULT_INJECTION: forcing a failure.
[  845.654502][T12743] name failslab, interval 1, probability 0, space 0, times 0
[  845.684127][T12743] CPU: 1 PID: 12743 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  845.692070][T12743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  845.702132][T12743] Call Trace:
[  845.705445][T12743]  dump_stack+0x1d8/0x2f8
[  845.709784][T12743]  should_fail+0x555/0x770
[  845.714215][T12743]  __should_failslab+0x11a/0x160
[  845.719159][T12743]  ? ptlock_alloc+0x20/0x70
[  845.723665][T12743]  should_failslab+0x9/0x20
[  845.728206][T12743]  kmem_cache_alloc+0x56/0x2e0
[  845.732976][T12743]  ? alloc_pages_current+0x2db/0x500
[  845.738275][T12743]  ptlock_alloc+0x20/0x70
[  845.742615][T12743]  pte_alloc_one+0x6e/0x180
[  845.747120][T12743]  __pte_alloc+0x20/0x2f0
[  845.751534][T12743]  copy_page_range+0x2315/0x2840
[  845.756488][T12743]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  845.762228][T12743]  dup_mmap+0xa01/0xe00
[  845.766403][T12743]  dup_mm+0x9e/0x340
[  845.770294][T12743]  copy_process+0x22d6/0x5970
[  845.774995][T12743]  _do_fork+0x13f/0x5b0
[  845.779149][T12743]  ? debug_smp_processor_id+0x1c/0x20
[  845.784515][T12743]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  845.790590][T12743]  __x64_sys_clone+0x1ec/0x230
[  845.795382][T12743]  do_syscall_64+0xf7/0x1c0
[  845.799894][T12743]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  845.805782][T12743] RIP: 0033:0x459a59
[  845.809673][T12743] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  845.829369][T12743] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  845.837781][T12743] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
03:27:18 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x2000, 0x0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f00000001c0)={[{0x80000000, 0x9, 0x4, 0xfa, 0x2, 0x1, 0x80, 0x9, 0x4, 0x4, 0x1, 0x7, 0x4}, {0xffff, 0x7f, 0x8a, 0x7, 0x9, 0x60, 0x7, 0x1, 0x0, 0xff, 0xc8, 0x1, 0xfffffffffffffffe}, {0x5, 0x5, 0x40, 0x80, 0xa8, 0x80, 0x7, 0xff, 0x90, 0x26, 0x1, 0x40, 0x9}], 0x3})
unshare(0x2000400)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="5b0003001e79e4fd413ba6907375f9ec80faa7427b3008f96844e8cdf8ebd5e0d3847c12d79055912bd4e55187773860fdbf6cf512e38a5af4f5f9f6f6e0", @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r4}, &(0x7f0000000100)=0x14)

03:27:19 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x60000000)

[  845.845764][T12743] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  845.853761][T12743] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  845.861815][T12743] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  845.869901][T12743] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:19 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r2 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r2)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=r2}, 0x0)
kcmp(r2, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r2, r3, 0x0, 0xc, &(0x7f0000000180)='/dev/amidi#\x00'}, 0x30)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f, 0x13008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa1c}, 0x0, 0x0, 0x0, 0x8}, r2, 0x0, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
r5 = socket(0xa, 0x3, 0x8)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x89a2, &(0x7f0000000180)={'bridge0\x00\x00\x01\x00', 0x4})
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x1de}}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000280)=ANY=[@ANYRESHEX, @ANYPTR64=&(0x7f0000000140)=ANY=[@ANYPTR64=&(0x7f00000001c0)=ANY=[@ANYRESHEX=r1, @ANYRESHEX=r2, @ANYPTR, @ANYPTR, @ANYRESOCT=r4, @ANYRES64=0x0, @ANYRESDEC=r1, @ANYRESDEC=0x0, @ANYRES64, @ANYRESDEC]], @ANYRESDEC=r5, @ANYRES16=0x0], &(0x7f000095dffc)=0x4)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x10, &(0x7f00000000c0), &(0x7f0000000100)=0x18)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000000)={0x0, 0x81}, 0x8)
r6 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r6, &(0x7f000034aff8)='./file0\x00')
renameat(r6, &(0x7f00000000c0)='./file0\x00', r6, &(0x7f0000009000)='./control\x00')

03:27:19 executing program 3 (fault-call:8 fault-nth:61):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:27:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="01000000421efd569954273258949b1c0fd17378cb6c975baab588401f0e99b972751dca7eb10dfecb30fb0decc7d54bab774073994648a23878bb11840011d897b6666218557b4e988bab952c7c2cb0f1de251ba9be43a9912a20c1c169591c22f1d344bce4d36f2a691fc2b890", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

[  845.918992][T12754] binder: binder_mmap: 12753 20ffb000-20fff000 bad vm_flags failed -1
03:27:19 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x68000000)

[  846.023613][T12761] FAULT_INJECTION: forcing a failure.
[  846.023613][T12761] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  846.054285][T12761] CPU: 1 PID: 12761 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  846.062484][T12761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  846.072557][T12761] Call Trace:
[  846.075848][T12761]  dump_stack+0x1d8/0x2f8
[  846.080183][T12761]  should_fail+0x555/0x770
[  846.084608][T12761]  should_fail_alloc_page+0x55/0x60
[  846.089824][T12761]  prepare_alloc_pages+0x283/0x460
[  846.095143][T12761]  __alloc_pages_nodemask+0xb2/0x5d0
[  846.100448][T12761]  alloc_pages_current+0x2db/0x500
[  846.105571][T12761]  pte_alloc_one+0x1f/0x180
[  846.110095][T12761]  copy_huge_pmd+0x64/0xaa0
[  846.114701][T12761]  copy_page_range+0xc91/0x2840
[  846.119574][T12761]  ? vma_gap_callbacks_rotate+0x1fc/0x230
[  846.125322][T12761]  ? __vma_link_rb+0x839/0x860
[  846.130104][T12761]  dup_mmap+0xa01/0xe00
[  846.134276][T12761]  dup_mm+0x9e/0x340
[  846.138172][T12761]  copy_process+0x22d6/0x5970
[  846.142894][T12761]  _do_fork+0x13f/0x5b0
[  846.147051][T12761]  ? debug_smp_processor_id+0x1c/0x20
[  846.152417][T12761]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  846.158512][T12761]  __x64_sys_clone+0x1ec/0x230
[  846.163281][T12761]  do_syscall_64+0xf7/0x1c0
[  846.167790][T12761]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  846.173705][T12761] RIP: 0033:0x459a59
[  846.177602][T12761] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  846.197330][T12761] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  846.206100][T12761] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  846.214174][T12761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  846.222163][T12761] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  846.230126][T12761] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  846.236134][T12769] binder: binder_mmap: 12765 20ffb000-20fff000 bad vm_flags failed -1
[  846.238106][T12761] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:25 executing program 2:
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d2, &(0x7f0000000140))

03:27:26 executing program 3 (fault-call:8 fault-nth:62):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:27:26 executing program 1:
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000080)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/if_inet6\x00}q\xbb%TVa\xaa')
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f00000017c0), 0x19e, 0x0)

03:27:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
write$FUSE_IOCTL(r0, &(0x7f0000000000)={0x20, 0x0, 0x1, {0x1f, 0x0, 0x8, 0x40000008}}, 0x20)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:26 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x6c000000)

03:27:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x80000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f00000009c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x68, r3, 0x1, 0x0, 0x0, {0x5}, [@TIPC_NLA_BEARER={0x54, 0x1, [@TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'eth', 0x3a, 'nr0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xe, 0x0, 0x0, @empty={[0x4]}}}, {0x20, 0x2, @in6={0x2, 0xfffe, 0x0, @initdev}}}}]}]}, 0x68}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xeb73603edb3aa83d}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r3, 0x4, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x10, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
unshare(0x2000400)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f00000000c0)={r6}, &(0x7f0000000100)=0x14)

[  852.876398][T12785] binder: binder_mmap: 12782 20ffb000-20fff000 bad vm_flags failed -1
[  852.881181][T12789] FAULT_INJECTION: forcing a failure.
[  852.881181][T12789] name failslab, interval 1, probability 0, space 0, times 0
[  852.904741][T12789] CPU: 1 PID: 12789 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  852.912677][T12789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  852.922737][T12789] Call Trace:
[  852.926031][T12789]  dump_stack+0x1d8/0x2f8
[  852.930368][T12789]  should_fail+0x555/0x770
[  852.934791][T12789]  __should_failslab+0x11a/0x160
[  852.939730][T12789]  ? dup_mmap+0x587/0xe00
[  852.944059][T12789]  should_failslab+0x9/0x20
[  852.948558][T12789]  kmem_cache_alloc+0x56/0x2e0
[  852.953329][T12789]  dup_mmap+0x587/0xe00
[  852.957508][T12789]  dup_mm+0x9e/0x340
[  852.961399][T12789]  copy_process+0x22d6/0x5970
[  852.966110][T12789]  _do_fork+0x13f/0x5b0
[  852.970267][T12789]  ? debug_smp_processor_id+0x1c/0x20
03:27:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)
ioctl$DRM_IOCTL_AGP_INFO(0xffffffffffffffff, 0x80386433, &(0x7f0000000140)=""/203)

[  852.975637][T12789]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  852.981706][T12789]  __x64_sys_clone+0x1ec/0x230
[  852.986481][T12789]  do_syscall_64+0xf7/0x1c0
[  852.990998][T12789]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  852.996892][T12789] RIP: 0033:0x459a59
[  853.000787][T12789] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:27:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="df000000", @ANYRES32=<r3=>0x0], &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r3}, &(0x7f0000000100)=0x14)

03:27:26 executing program 1:
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='proc\x00', 0x0, 0x0)

03:27:26 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x74000000)

[  853.020391][T12789] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  853.028808][T12789] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  853.036780][T12789] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  853.044786][T12789] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  853.052768][T12789] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  853.060749][T12789] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:26 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2)
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
sendmsg$kcm(r1, &(0x7f00000007c0)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, r2, 0x4, 0x2, 0x7, 0x4, {0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x2}}}, 0x80, &(0x7f0000000740)=[{&(0x7f0000000040)="75156780745333ff7d8166eecc14a0412ea8a3bf6656e6a540daa5a7f1cee644beaa5c", 0xfffffffffffffe9b}, {&(0x7f00000001c0)="6d3655d91c5c71e0294ecc4661cc56362f73ccb8d667ac4e1fea433a3d210b5782d14d4f1f6b13b8594a6ce7bd0f4dbc9a79c1596fc9ece8a7fa26690c83929ea2851993921fdc3ff001a5181a7842406b622af868560f2038d0fe17078982ab1ac1ccb3e3a3d966ede9db7076793093603eabd418caa8393ed7d387621cbec7112bc6aa7df3fd277987206a22cbf85cab9f7976b634bbe1a49bf250f3a7", 0x9e}, {&(0x7f0000000280)="525a26da8f61035b4b49d3a12da4a2f1b7adb657a5bce492869c7de886614496929cc27fe79a00a0fd4e527a35d031c16df911d552d614e7a17ce107d3b28f0de964b6f8a105afe0c9281abd9763e14c2551efd81cf2a9e598349c13b9922518d68f988a998df025fbfaf3ed8b3f9f5b7f0653de78dd3d1646ab75856f6870d8f43b3d2d844d4639912270afea35d9cc566c326429940083bbef9a0bbe7e70c85ad3", 0xa2}, {&(0x7f0000000340)="a34549e330cd71fec9562be765a28f41ac87e8d853e54187520efa0db09412a4f5eef5cc118c0c7cb6d8d6bfc7427bd6857661de929418295407e8e62a0e52acac3b8ed4afcffbd0ceddd33eb48d09d7b0b03fd724e8f824ebda4fe7ffc3ec84d9b571bda0c232143a7541b9c4599c72bb09747e0c77ac4110df5857a74aea64ec7cf1d140aec492d6975bb9feb0b2851164a4e7e6a756bdffb7e5ca72101af8b2d40da3ae36e46c11d1c4d8399519014c912342a1be30b54029349294a28002cf75f2b8b7", 0xc5}, {&(0x7f0000000440)="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", 0xfd}, {&(0x7f0000000540)="5732e0e249eb483de762fc8e35a04726426dae543e8fb7789caa6886db331e206d633a3763eb96a217d81a9f711542cd5b844ff32dd1943c0a988f92c964225405898e2b39b0ef13da23cd774e764cec972d3ba5a1bf128339b98584fb7a182af9f8b792d39ff9dc3e371c8129a4241b089675bd04f30a49052ca6fba9b638e3f2a09016557310428f1299b068d10d22d7ae4953f8975e7b84de376681afba1de39a57c78f6188596eff7a05ca31c6b2495e64ed0df30b0fea9ade96fce124018e9614fd50e87e82eb3a8784e407ad45e4be5747", 0xd4}, {&(0x7f0000000640)="c2ce2dff03945473985f2d2677af6e525460eb6210ac4a2d5e29689256222dac1f8a4b1310c127b5183db26ee8789a85e0837925e9e5c384fcb4b089882d335034bad8333d3cf9331ebd9d26ac05f014c8dd40914e2d32f01ed8532dac487ee34876247bc8d55682549f205c", 0x6c}, {&(0x7f0000000800)="d3e0cd2edb3051f919627d3a1c23cdbab2bf89ccdb85371374220850a94a757f5b1dee71423f6e4cb6baf73749ccd79fa3ea5661c82af045709b81970d4fb03b4ec20f70db4d", 0x46}], 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="100100000000000004010000460f000042c3432286ecb77eccefe0f2050ee6c5f36d085754701b19498e61aa2f44b399ba7cc98433cb252b7409b2fe23c2d3e5e5abfaf93a38b923e4fe770c61ac084ed3886e9335656896e1ebbe001603e23dbfe8e1e208c21af7bf5c5469f612d0534f0d8692b566e273bd3c29513110bbe8b80cdc756c73bfdb9075105e8976ca146dd6a05a6dd1b4b64842c6ef5f0e9c8cdf067c8d0680c08a28a9a0c054c905e3579f810ac92fb16ed58d54bd9fe5246f6ab31ef209c33f5b9caea0d888aa9bf1733cce71945e1c650f15f79922865a11257f39b68fb7a4e8da2cf7f7c756f71e738d6d241e316eadb76d42bbc271003a403313cc1fd18a3a214577585b00000030000000000000001901000000000080d98a7e71444912748eb0db50c291583ede731aac8b93e23f0b00000000000000b0000000000000001100000009000000e24bc6dd3dde98d11ba9892a1e7f52b72ac9be7c9c1d8eec99ca4e0f96f540071ffa5c7020e1aa45427fb8602e406643de4e6a64ed7a05c57d608aa95848b5c36970179b8416bfcff01a53ef66c94b13eb0fa7b8cadd0e6a0c817110c30ef8fc9911faaf1c1a1c8418c519c835b404941c5f1231e1539fdbbb2cf76ff97bfe00acb7dab12e84fdab725c85d39b82addf09b2f5e5961fcb5ca47834b8f6218f4460000000000000000f010000ff070000995f4ab17255c3970b589df754b664a9d9eef5d53859a4245164ab46774cdeb72b9bb6b8df3e39d690c387b2ed7c5a1480f425458636cf539fcc0b6c1a1bfdc5ddcb99144a4dc98125000000000000008cefca012ef6c690399ad9da8e5c2dc101aa76b622ae7a196828f93a666c416228061744177793dab8843337863b43b8d9e3f89e3364043132fafd84500f326c52c4135d"], 0x294}, 0x20000000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
ioctl$FICLONE(r4, 0x40049409, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:26 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x7)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x4)
ioctl$RTC_WIE_ON(r1, 0x700f)
unshare(0x2000400)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-control\x00', 0x181280, 0x0)
connect$rxrpc(r3, &(0x7f0000000240)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e24, 0xffffa30c, @mcast2, 0x8}}, 0x24)
r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000280)='/proc/capi/capi20\x00', 0x3074c136ac7163a, 0x0)
r5 = dup2(r1, r4)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
setsockopt$netlink_NETLINK_CAP_ACK(r5, 0x10e, 0xa, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x14)

[  853.159442][T12807] binder: binder_mmap: 12802 20ffb000-20fff000 bad vm_flags failed -1
03:27:32 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000140))

03:27:32 executing program 3 (fault-call:8 fault-nth:63):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='mem\x00\x00\x00\x00\x00\x00<s\x8c\')tU\x19\x9a)S\xa7b\t\x00\x00\x00\x00\x00\x00\x00\xc1\xa2)o\xee\x97I\xe0\xec\xfa\xb0{52iY\x86~\xd8\xecy\xc00.\x90\xfc\xac\xa0\xb8\x1d\x1a\x7f\xec\xea\np\xb4\xd5l\xb5\xc3\xc7w%\x16a~]P\x04\xc7 \xf7\x92\x8b\x8f\x9d&\\\xf9\xa3\x96G<\xd4\x80\x16/\x81\xe7(\x8b\xde9]\xaf\xbc\xb0\r}Ne\xfaX\xb0\x8a\xbd\x1d\xfc\xd4\x91\x95\x00\v\x14a0_\xd9\x1f\xc7\xb5\xc3FS\x16\x03~\xbbc*\xa3\xab`\x06\xf0\xbc\xacJY\xe7\xb2\x8cw\xa4U.\xa4\xe2u\x1d!jVL}#O\t\xb2`\x0e\xe9\xc6*\xf7\xf8Uh\x8e\x01\xf1b\xf5;\x8a\x17\x9a\x0fq\x01\x91pSR\x82-H\n\x1fP\xb6*\xc9\xfd\x89\xb5\x7f\x87m\"\xaa\xce\xed\a\xf2\xfd<\x10\xb8\xc7\xfac\xd8\x0f\xd2\xdd\xcd#8\"\x8b\xf2\xccA\v\xdf\xf5\x8d\xa5-\x02\xaa|\xdd\xd0az\xc8,)\xedf\x89x>\a\x13', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0xbfffd000)
clone(0x0, 0x0, 0x0, 0x0, 0x0)

03:27:32 executing program 1:
r0 = perf_event_open(&(0x7f0000001100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
clone(0x822102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

03:27:32 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000040)='./control\x00', &(0x7f0000000100)='trusted.overlay.upper\x00', &(0x7f00000001c0)={0x0, 0xfb, 0xd1, 0x2, 0x41, "744f3d411025c1245586cb9456f0e1d4", "5393e4be8964d30d47dda664f640b0f715781212f71e5fe1e1cdd2b3bc26d13c06fe93fc9234f6a74a54ce0d997cc88b42b5acb285ea02ae6e6db2977336c80234f95e18beacb76887ad5854089d30467b27aeb467545c3e8b3a2e5a8e16d52f7303c2f17c25efc30137a991004c3bec09f100c14f56651ed0a1bf10343d1120fa739f6d71dd8ddc126d9d3cc7dd0a1c2ffe82a2f9fd5070c5fc9b8eca0413df195634acaf917505b5c033709710c95e156ee0bb08aa53408337a7f9"}, 0xd1, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f0000000000)='./control\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:32 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0x7a000000)

03:27:32 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="0800b5055e0bcfe87b0071")
unshare(0x2000400)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
r5 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
close(r6)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f000095dffc)=0x2e4)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x10, &(0x7f00000000c0)={r7}, &(0x7f0000000100)=0x18)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000140)={<r8=>r7, 0x4, "709a0e09"}, &(0x7f0000000080)=0xfffffffffffffeb9)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={r8, 0x0, 0x0, 0x0, 0x1fe}, &(0x7f0000000100)=0x14)

[  859.139558][T12821] FAULT_INJECTION: forcing a failure.
[  859.139558][T12821] name failslab, interval 1, probability 0, space 0, times 0
[  859.156039][T12825] binder: binder_mmap: 12823 20ffb000-20fff000 bad vm_flags failed -1
[  859.158733][T12821] CPU: 1 PID: 12821 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  859.172307][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  859.182367][T12821] Call Trace:
[  859.185669][T12821]  dump_stack+0x1d8/0x2f8
[  859.190005][T12821]  should_fail+0x555/0x770
[  859.194437][T12821]  __should_failslab+0x11a/0x160
[  859.199388][T12821]  should_failslab+0x9/0x20
[  859.203915][T12821]  kmem_cache_alloc_trace+0x5d/0x2f0
[  859.209205][T12821]  ? reserve_memtype+0x3a3/0xaf0
[  859.214153][T12821]  reserve_memtype+0x3a3/0xaf0
[  859.218933][T12821]  reserve_pfn_range+0x268/0xd00
[  859.223885][T12821]  track_pfn_copy+0x154/0x180
[  859.228582][T12821]  copy_page_range+0x268f/0x2840
[  859.233534][T12821]  ? rcu_lock_release+0x4/0x20
[  859.238298][T12821]  ? dup_mmap+0x8f3/0xe00
[  859.242633][T12821]  ? vma_gap_callbacks_rotate+0x1ee/0x230
[  859.248364][T12821]  ? __rb_insert_augmented+0x6e6/0x700
[  859.253824][T12821]  ? init_admin_reserve+0xc0/0xc0
[  859.258854][T12821]  ? __vma_link_rb+0x839/0x860
[  859.263625][T12821]  dup_mmap+0xa01/0xe00
[  859.267805][T12821]  dup_mm+0x9e/0x340
[  859.271721][T12821]  copy_process+0x22d6/0x5970
[  859.276439][T12821]  _do_fork+0x13f/0x5b0
[  859.280602][T12821]  ? debug_smp_processor_id+0x1c/0x20
[  859.285973][T12821]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  859.292055][T12821]  __x64_sys_clone+0x1ec/0x230
[  859.296838][T12821]  do_syscall_64+0xf7/0x1c0
[  859.301346][T12821]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  859.307236][T12821] RIP: 0033:0x459a59
[  859.311128][T12821] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  859.330760][T12821] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
03:27:32 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00'})
ioctl$VIDIOC_QUERYCTRL(r3, 0xc0445624, &(0x7f0000000000)={0x10001, 0x8, "70ca6493fade0f5660b4648efa3b74c769d255b3573de511cb6d873492acba7a", 0x9, 0xc03, 0x6, 0x2, 0x1})
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

03:27:32 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0800b5055e0bcfe87b007166c0b5cb1803d4cf77eee47548113a6be57707cf355129a7162e38fcc627c3d224c4e8a81fabc56a00d5400f543e859ddab12353f01e7e23513175a5cd1b377aa886c81ecf40a7ffb9c3aa448258775e8f44117cfeb853dbb23402e89bf9ea")
creat(&(0x7f0000000340)='./file0\x00', 0x0)
prctl$PR_GET_SECUREBITS(0x1b)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
unshare(0x8020000)
msgsnd(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x14, r2, 0x11}, 0x14}}, 0x0)
getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, 0x0, 0x0)
link(&(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='./file1/file0\x00')
unshare(0x2000400)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r5=>0x0]}, &(0x7f000095dffc)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r5}, &(0x7f0000000100)=0x14)

03:27:32 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000000)='./control\x00', 0x90c00, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = syz_open_dev$amidi(&(0x7f0000000340)='/dev/amidi#\x00', 0x9c4, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)}}, 0x20)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r2, 0x28, 0x2, &(0x7f0000000240)=0x7, 0x8)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')
getresuid(&(0x7f0000000040)=<r3=>0x0, &(0x7f0000000080), &(0x7f0000000100))
lstat(&(0x7f00000002c0)='./control\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xee00, r3, r4)

03:27:32 executing program 5:
r0 = syz_open_dev$binderN(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x12, r0, 0xc2e56000)

03:27:32 executing program 1:
timer_create(0x0, 0x0, &(0x7f0000000300))
timer_delete(0x0)

[  859.339181][T12821] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  859.347155][T12821] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  859.355132][T12821] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  859.363109][T12821] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  859.371086][T12821] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
03:27:32 executing program 4:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = open(&(0x7f0000000080)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlinkat(&(0x7f0000443ff6)='./control\x00', r0, &(0x7f000034aff8)='./file0\x00')
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x14, r2, 0x1}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)={0x94, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_TUN_TYPE={0x8, 0xd, 0x1}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x2}, @IPVS_DEST_ATTR_TUN_TYPE={0x8}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xa02}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xedf5}]}, 0x94}, 0x1, 0x0, 0x0, 0x98f4c546ab72253}, 0x8000)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vcs\x00', 0x230200, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e21, @empty}}, 0x0, 0x6, 0x0, "7692ca06bdfc9414da8fb1660ed4bc509e0a06020efc3cb8e91a9a43fd2bc407862c7c021849dd3e5d9f58a57cfef26eb440ed3aadc4ceae2130d8caded61e6078fba11a4b4bd2816804c5b87afcaa7c"}, 0xd8)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000009000)='./control\x00')

[  859.407154][T12842] binder: binder_mmap: 12841 20ffb000-20fff000 bad vm_flags failed -1
[  859.494874][T12821] ------------[ cut here ]------------
[  859.500390][T12821] WARNING: CPU: 1 PID: 12821 at arch/x86/mm/pat.c:1065 untrack_pfn+0x222/0x370
[  859.509350][T12821] Kernel panic - not syncing: panic_on_warn set ...
[  859.515946][T12821] CPU: 1 PID: 12821 Comm: syz-executor.3 Not tainted 5.4.0-rc1+ #0
[  859.523836][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  859.533911][T12821] Call Trace:
[  859.537205][T12821]  dump_stack+0x1d8/0x2f8
[  859.541539][T12821]  panic+0x25c/0x799
[  859.545427][T12821]  ? __warn+0x105/0x210
[  859.549584][T12821]  ? untrack_pfn+0x222/0x370
[  859.554258][T12821]  __warn+0x20e/0x210
[  859.558258][T12821]  ? untrack_pfn+0x222/0x370
[  859.562853][T12821]  report_bug+0x1b6/0x2f0
[  859.567190][T12821]  ? untrack_pfn+0x222/0x370
[  859.571799][T12821]  do_error_trap+0xd7/0x440
[  859.576307][T12821]  do_invalid_op+0x36/0x40
[  859.580721][T12821]  ? untrack_pfn+0x222/0x370
[  859.585313][T12821]  invalid_op+0x23/0x30
[  859.586898][ T3892] kobject: 'loop5' (0000000090bdfa1c): kobject_uevent_env
[  859.589510][T12821] RIP: 0010:untrack_pfn+0x222/0x370
[  859.596918][ T3892] kobject: 'loop5' (0000000090bdfa1c): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  859.601868][T12821] Code: 4d b0 4c 8d 45 b8 4c 89 ff 31 d2 e8 e8 c5 68 00 41 89 c6 31 ff 89 c6 e8 5c fa 3c 00 45 85 f6 0f 84 af 00 00 00 e8 ae f6 3c 00 <0f> 0b eb 63 e8 a5 f6 3c 00 48 b8 00 00 00 00 00 fc ff df 48 89 c1
[  859.601874][T12821] RSP: 0018:ffff8880a03af9c0 EFLAGS: 00010246
[  859.601882][T12821] RAX: ffffffff81363bc2 RBX: 1ffff11014075f3b RCX: 0000000000040000
[  859.601887][T12821] RDX: ffffc90005c9b000 RSI: 000000000003ffff RDI: 0000000000040000
[  859.601892][T12821] RBP: ffff8880a03afa20 R08: ffffffff81363bb4 R09: ffffed1014fe8382
[  859.601898][T12821] R10: ffffed1014fe8382 R11: 0000000000000000 R12: 1ffff11009a4ee08
[  859.601904][T12821] R13: 0000000000000000 R14: 00000000ffffffea R15: ffff88804d277040
[  859.601922][T12821]  ? untrack_pfn+0x214/0x370
[  859.601933][T12821]  ? untrack_pfn+0x222/0x370
[  859.687235][T12821]  ? uprobe_munmap+0x1a4/0x490
[  859.691991][T12821]  ? mmu_notifier_invalidate_range_start+0xbe/0x100
[  859.698588][T12821]  unmap_single_vma+0x1f4/0x2e0
[  859.703433][T12821]  unmap_vmas+0x163/0x2a0
[  859.707755][T12821]  exit_mmap+0x27b/0x530
[  859.711987][T12821]  __mmput+0x120/0x3a0
[  859.716034][T12821]  dup_mm+0x31b/0x340
[  859.720081][T12821]  copy_process+0x22d6/0x5970
[  859.724768][T12821]  _do_fork+0x13f/0x5b0
[  859.728917][T12821]  ? debug_smp_processor_id+0x1c/0x20
[  859.734269][T12821]  ? fpregs_assert_state_consistent+0xb7/0xe0
[  859.740320][T12821]  __x64_sys_clone+0x1ec/0x230
[  859.745074][T12821]  do_syscall_64+0xf7/0x1c0
[  859.749571][T12821]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  859.755442][T12821] RIP: 0033:0x459a59
[  859.759321][T12821] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  859.778908][T12821] RSP: 002b:00007f3c2aea4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  859.787302][T12821] RAX: ffffffffffffffda RBX: 00007f3c2aea4c90 RCX: 0000000000459a59
[  859.795261][T12821] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  859.803227][T12821] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  859.811186][T12821] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c2aea56d4
[  859.819142][T12821] R13: 00000000004bff58 R14: 00000000004d2130 R15: 0000000000000007
[  859.828829][T12821] Kernel Offset: disabled
[  859.833212][T12821] Rebooting in 86400 seconds..