_read_lock_sched_held+0x110/0x130 [ 389.404611] ? shmem_destroy_callback+0xa0/0xa0 [ 389.409288] shmem_alloc_inode+0x1c/0x50 [ 389.413366] alloc_inode+0x64/0x180 [ 389.417000] new_inode_pseudo+0x19/0xf0 [ 389.420983] new_inode+0x1f/0x40 [ 389.422236] FAULT_INJECTION: forcing a failure. [ 389.422236] name failslab, interval 1, probability 0, space 0, times 0 [ 389.424361] shmem_get_inode+0x75/0x750 [ 389.424376] __shmem_file_setup.part.0+0x111/0x400 [ 389.424387] ? __alloc_fd+0x1d4/0x4a0 [ 389.424398] ? shmem_fill_super+0x8c0/0x8c0 [ 389.424416] SyS_memfd_create+0x1f9/0x3a0 [ 389.424432] ? shmem_fcntl+0x130/0x130 [ 389.460691] ? do_syscall_64+0x53/0x640 [ 389.464663] ? shmem_fcntl+0x130/0x130 [ 389.468546] do_syscall_64+0x1e8/0x640 [ 389.472427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 389.477276] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 389.482470] RIP: 0033:0x45c449 [ 389.485654] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 389.493362] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c449 [ 389.500631] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 389.507888] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 389.515161] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 389.522428] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000002 [ 389.529763] CPU: 0 PID: 18648 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 389.537661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.547007] Call Trace: [ 389.549585] dump_stack+0x142/0x197 [ 389.553202] should_fail.cold+0x10f/0x159 [ 389.557369] should_failslab+0xdb/0x130 [ 389.561355] kmem_cache_alloc+0x2d7/0x780 [ 389.565503] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 389.570944] ? rcu_read_lock_sched_held+0x110/0x130 [ 389.575946] ? shmem_destroy_callback+0xa0/0xa0 [ 389.580614] shmem_alloc_inode+0x1c/0x50 [ 389.584730] alloc_inode+0x64/0x180 [ 389.590009] new_inode_pseudo+0x19/0xf0 [ 389.593988] new_inode+0x1f/0x40 [ 389.597366] shmem_get_inode+0x75/0x750 [ 389.601334] __shmem_file_setup.part.0+0x111/0x400 [ 389.606262] ? __alloc_fd+0x1d4/0x4a0 [ 389.610054] ? shmem_fill_super+0x8c0/0x8c0 [ 389.614375] SyS_memfd_create+0x1f9/0x3a0 [ 389.618630] ? shmem_fcntl+0x130/0x130 [ 389.622553] ? do_syscall_64+0x53/0x640 [ 389.626519] ? shmem_fcntl+0x130/0x130 [ 389.630400] do_syscall_64+0x1e8/0x640 [ 389.634295] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 389.639140] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 389.644324] RIP: 0033:0x45c449 [ 389.647499] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 389.655207] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c449 [ 389.662473] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 389.669738] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 21:55:57 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x1, 0x0) [ 389.677096] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 389.684360] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000002 21:55:57 executing program 4 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:55:57 executing program 2 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 389.721907] BTRFS error (device loop3): open_ctree failed 21:55:57 executing program 3 (fault-call:7 fault-nth:0): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 389.779611] FAULT_INJECTION: forcing a failure. [ 389.779611] name failslab, interval 1, probability 0, space 0, times 0 [ 389.809799] FAULT_INJECTION: forcing a failure. [ 389.809799] name failslab, interval 1, probability 0, space 0, times 0 [ 389.825796] CPU: 1 PID: 18652 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 389.833703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.843069] Call Trace: [ 389.845671] dump_stack+0x142/0x197 [ 389.849318] should_fail.cold+0x10f/0x159 [ 389.853473] should_failslab+0xdb/0x130 [ 389.857448] kmem_cache_alloc+0x2d7/0x780 [ 389.861708] ? shmem_alloc_inode+0x1c/0x50 [ 389.865949] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 389.871410] selinux_inode_alloc_security+0xb6/0x2a0 [ 389.876522] security_inode_alloc+0x94/0xd0 [ 389.878255] FAULT_INJECTION: forcing a failure. [ 389.878255] name failslab, interval 1, probability 0, space 0, times 0 [ 389.880857] inode_init_always+0x552/0xaf0 [ 389.880871] alloc_inode+0x81/0x180 [ 389.880883] new_inode_pseudo+0x19/0xf0 [ 389.880894] new_inode+0x1f/0x40 [ 389.880904] shmem_get_inode+0x75/0x750 [ 389.880924] __shmem_file_setup.part.0+0x111/0x400 [ 389.916238] ? __alloc_fd+0x1d4/0x4a0 [ 389.920038] ? shmem_fill_super+0x8c0/0x8c0 [ 389.924355] SyS_memfd_create+0x1f9/0x3a0 [ 389.928491] ? shmem_fcntl+0x130/0x130 [ 389.932372] ? do_syscall_64+0x53/0x640 [ 389.936336] ? shmem_fcntl+0x130/0x130 [ 389.940226] do_syscall_64+0x1e8/0x640 [ 389.944102] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 389.948937] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 389.954226] RIP: 0033:0x45c449 [ 389.957409] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 389.965109] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c449 [ 389.972371] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 389.979637] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 389.986987] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 389.994247] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000003 [ 390.001529] CPU: 0 PID: 18663 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 390.009413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.018975] Call Trace: [ 390.021563] dump_stack+0x142/0x197 [ 390.025193] should_fail.cold+0x10f/0x159 [ 390.029350] should_failslab+0xdb/0x130 [ 390.033322] __kmalloc_track_caller+0x2ec/0x790 [ 390.037979] ? __sb_end_write+0xc1/0x100 [ 390.042037] ? strndup_user+0x62/0xf0 [ 390.045832] memdup_user+0x26/0xa0 [ 390.049358] strndup_user+0x62/0xf0 [ 390.052979] SyS_mount+0x6b/0x120 [ 390.056434] ? copy_mnt_ns+0x8c0/0x8c0 [ 390.060322] do_syscall_64+0x1e8/0x640 [ 390.064208] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 390.069052] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 390.074337] RIP: 0033:0x45c449 21:55:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000000140)={0x9, &(0x7f0000000180)=[{0x8, 0x20, 0x3, 0x1}, {0x1, 0x20, 0x6, 0x1d}, {0x8, 0x7, 0x0, 0x400}, {0xfff8, 0x8, 0x80, 0x1}, {0x6, 0x80, 0x1, 0x3f}, {0x1, 0x1, 0xcd, 0x1}, {0x9, 0x1, 0x5, 0xc}, {0x200, 0x8e, 0xe3, 0x5}, {0x6, 0x80, 0x1f, 0x5}]}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_NMI(r5, 0xae9a) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 390.077521] RSP: 002b:00007fc2bcac7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 390.085326] RAX: ffffffffffffffda RBX: 00007fc2bcac86d4 RCX: 000000000045c449 [ 390.092587] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 390.099935] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 390.107193] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 390.114455] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000000 [ 390.121733] CPU: 1 PID: 18659 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 21:55:58 executing program 3 (fault-call:7 fault-nth:1): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 390.129627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.138983] Call Trace: [ 390.141576] dump_stack+0x142/0x197 [ 390.145277] should_fail.cold+0x10f/0x159 [ 390.149454] should_failslab+0xdb/0x130 [ 390.153440] kmem_cache_alloc+0x2d7/0x780 [ 390.157595] ? shmem_alloc_inode+0x1c/0x50 [ 390.161844] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 390.167406] selinux_inode_alloc_security+0xb6/0x2a0 [ 390.172518] security_inode_alloc+0x94/0xd0 [ 390.176847] inode_init_always+0x552/0xaf0 [ 390.181094] alloc_inode+0x81/0x180 [ 390.184737] new_inode_pseudo+0x19/0xf0 [ 390.188723] new_inode+0x1f/0x40 [ 390.192095] shmem_get_inode+0x75/0x750 [ 390.196076] __shmem_file_setup.part.0+0x111/0x400 [ 390.201010] ? __alloc_fd+0x1d4/0x4a0 [ 390.204910] ? shmem_fill_super+0x8c0/0x8c0 [ 390.209224] SyS_memfd_create+0x1f9/0x3a0 [ 390.213369] ? shmem_fcntl+0x130/0x130 [ 390.217242] ? do_syscall_64+0x53/0x640 [ 390.221212] ? shmem_fcntl+0x130/0x130 [ 390.225086] do_syscall_64+0x1e8/0x640 [ 390.228959] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 390.233791] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 390.238967] RIP: 0033:0x45c449 [ 390.242206] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 390.249902] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c449 [ 390.257158] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 390.264415] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 390.271869] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 21:55:58 executing program 4 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 390.279138] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000003 [ 390.306773] FAULT_INJECTION: forcing a failure. [ 390.306773] name failslab, interval 1, probability 0, space 0, times 0 [ 390.319293] CPU: 1 PID: 18670 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 390.327194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.336553] Call Trace: [ 390.339147] dump_stack+0x142/0x197 [ 390.342789] should_fail.cold+0x10f/0x159 [ 390.346950] should_failslab+0xdb/0x130 [ 390.350947] kmem_cache_alloc+0x2d7/0x780 [ 390.355233] ? lock_downgrade+0x740/0x740 [ 390.359387] get_empty_filp+0x8c/0x3f0 [ 390.363281] alloc_file+0x23/0x440 [ 390.366829] __shmem_file_setup.part.0+0x1b1/0x400 [ 390.371861] ? __alloc_fd+0x1d4/0x4a0 [ 390.375665] ? shmem_fill_super+0x8c0/0x8c0 [ 390.379998] SyS_memfd_create+0x1f9/0x3a0 [ 390.384159] ? shmem_fcntl+0x130/0x130 [ 390.388105] ? do_syscall_64+0x53/0x640 [ 390.392095] ? shmem_fcntl+0x130/0x130 [ 390.396082] do_syscall_64+0x1e8/0x640 [ 390.400094] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 390.404949] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 390.410137] RIP: 0033:0x45c449 [ 390.413327] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 390.421038] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c449 [ 390.428302] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 390.435570] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 390.442837] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 390.450104] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000004 [ 390.603956] FAULT_INJECTION: forcing a failure. [ 390.603956] name failslab, interval 1, probability 0, space 0, times 0 [ 390.615452] CPU: 1 PID: 18683 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 390.623459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.632916] Call Trace: [ 390.635506] dump_stack+0x142/0x197 [ 390.639127] should_fail.cold+0x10f/0x159 [ 390.643299] should_failslab+0xdb/0x130 [ 390.647267] kmem_cache_alloc+0x2d7/0x780 [ 390.651410] ? __might_fault+0x110/0x1d0 [ 390.655552] getname_flags+0xcb/0x580 [ 390.659351] ? __might_fault+0x110/0x1d0 [ 390.663526] user_path_at_empty+0x2f/0x50 [ 390.667664] do_mount+0x12b/0x27d0 [ 390.671252] ? copy_mount_string+0x40/0x40 [ 390.675528] ? _copy_from_user+0x99/0x110 [ 390.679788] ? memdup_user+0x58/0xa0 [ 390.683483] ? copy_mount_options+0x1fe/0x2f0 [ 390.688006] SyS_mount+0xab/0x120 [ 390.691442] ? copy_mnt_ns+0x8c0/0x8c0 [ 390.695369] do_syscall_64+0x1e8/0x640 [ 390.699252] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 390.704095] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 390.709271] RIP: 0033:0x45c449 [ 390.712546] RSP: 002b:00007fc2bcac7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 390.720241] RAX: ffffffffffffffda RBX: 00007fc2bcac86d4 RCX: 000000000045c449 [ 390.727498] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 390.734754] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 390.742007] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 390.749259] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000001 21:56:00 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8", 0x97}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:00 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000", 0x36, 0x10000}], 0x1, 0x0) 21:56:00 executing program 2 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:00 executing program 4 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x100, 0x0) bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x4}, 0x6) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:56:00 executing program 3 (fault-call:7 fault-nth:2): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 392.135636] FAULT_INJECTION: forcing a failure. [ 392.135636] name failslab, interval 1, probability 0, space 0, times 0 [ 392.154089] FAULT_INJECTION: forcing a failure. [ 392.154089] name failslab, interval 1, probability 0, space 0, times 0 [ 392.176229] FAULT_INJECTION: forcing a failure. [ 392.176229] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 392.188207] CPU: 0 PID: 18693 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 392.196208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.205820] Call Trace: [ 392.208415] dump_stack+0x142/0x197 [ 392.212050] should_fail.cold+0x10f/0x159 [ 392.216200] __alloc_pages_nodemask+0x1d6/0x7a0 [ 392.220871] ? fs_reclaim_acquire+0x20/0x20 [ 392.225185] ? __alloc_pages_slowpath+0x2930/0x2930 [ 392.230196] cache_grow_begin+0x80/0x400 [ 392.234263] kmem_cache_alloc+0x6a6/0x780 [ 392.238403] ? find_held_lock+0x35/0x130 [ 392.242518] getname_flags+0xcb/0x580 [ 392.246319] ? __might_fault+0x110/0x1d0 [ 392.250375] user_path_at_empty+0x2f/0x50 [ 392.254649] do_mount+0x12b/0x27d0 [ 392.258184] ? copy_mount_string+0x40/0x40 [ 392.262411] ? _copy_from_user+0x99/0x110 [ 392.266550] ? memdup_user+0x58/0xa0 [ 392.270256] ? copy_mount_options+0x1fe/0x2f0 [ 392.274742] SyS_mount+0xab/0x120 [ 392.278183] ? copy_mnt_ns+0x8c0/0x8c0 [ 392.282068] do_syscall_64+0x1e8/0x640 [ 392.285955] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 392.290789] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.295988] RIP: 0033:0x45c449 [ 392.299162] RSP: 002b:00007fc2bcac7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 392.306872] RAX: ffffffffffffffda RBX: 00007fc2bcac86d4 RCX: 000000000045c449 [ 392.314151] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 392.321414] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 392.328687] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 392.336560] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000002 [ 392.343837] CPU: 1 PID: 18694 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 392.351721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.361064] Call Trace: [ 392.363665] dump_stack+0x142/0x197 [ 392.367289] should_fail.cold+0x10f/0x159 [ 392.371434] should_failslab+0xdb/0x130 [ 392.375398] kmem_cache_alloc+0x2d7/0x780 [ 392.379532] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 392.384980] ? check_preemption_disabled+0x3c/0x250 [ 392.389992] selinux_file_alloc_security+0xb4/0x190 [ 392.395133] security_file_alloc+0x6d/0xa0 [ 392.399360] get_empty_filp+0x162/0x3f0 [ 392.403325] alloc_file+0x23/0x440 [ 392.406871] __shmem_file_setup.part.0+0x1b1/0x400 [ 392.411915] ? __alloc_fd+0x1d4/0x4a0 [ 392.415714] ? shmem_fill_super+0x8c0/0x8c0 [ 392.420035] SyS_memfd_create+0x1f9/0x3a0 [ 392.424180] ? shmem_fcntl+0x130/0x130 [ 392.428056] ? do_syscall_64+0x53/0x640 [ 392.432018] ? shmem_fcntl+0x130/0x130 [ 392.435945] do_syscall_64+0x1e8/0x640 [ 392.439828] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 392.444670] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.449876] RIP: 0033:0x45c449 [ 392.453053] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 392.460852] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c449 [ 392.468118] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 392.475483] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 21:56:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000000)={0x0, 0x40, 0x8, 0x0, 0x81, 0x3, 0x8, 0x80, 0x40, 0x2, 0x8, 0x6, 0x0, 0xfffffff7, 0x0, 0x5, 0xc9, 0x9, 0xc2, [], 0x81, 0xcac}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 392.482845] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 392.490108] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000005 [ 392.497388] CPU: 0 PID: 18691 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 392.505275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.514629] Call Trace: [ 392.517230] dump_stack+0x142/0x197 [ 392.520886] should_fail.cold+0x10f/0x159 [ 392.525045] should_failslab+0xdb/0x130 [ 392.529050] kmem_cache_alloc+0x2d7/0x780 [ 392.533210] ? lock_downgrade+0x740/0x740 21:56:00 executing program 4 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 392.537369] get_empty_filp+0x8c/0x3f0 [ 392.541262] alloc_file+0x23/0x440 [ 392.544812] __shmem_file_setup.part.0+0x1b1/0x400 [ 392.549743] ? __alloc_fd+0x1d4/0x4a0 [ 392.553554] ? shmem_fill_super+0x8c0/0x8c0 [ 392.557903] SyS_memfd_create+0x1f9/0x3a0 [ 392.562065] ? shmem_fcntl+0x130/0x130 [ 392.565961] ? do_syscall_64+0x53/0x640 [ 392.569944] ? shmem_fcntl+0x130/0x130 [ 392.573959] do_syscall_64+0x1e8/0x640 [ 392.577853] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 392.582707] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.587896] RIP: 0033:0x45c449 [ 392.591087] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 392.598809] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c449 [ 392.598981] FAULT_INJECTION: forcing a failure. [ 392.598981] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 392.606078] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 392.606085] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 21:56:00 executing program 3 (fault-call:7 fault-nth:3): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 392.606090] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 392.606095] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000004 [ 392.667437] CPU: 1 PID: 18714 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 392.675378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.684735] Call Trace: [ 392.687331] dump_stack+0x142/0x197 [ 392.690971] should_fail.cold+0x10f/0x159 [ 392.695141] ? __might_sleep+0x93/0xb0 [ 392.699150] __alloc_pages_nodemask+0x1d6/0x7a0 [ 392.703828] ? __alloc_pages_slowpath+0x2930/0x2930 [ 392.708845] ? lock_downgrade+0x740/0x740 [ 392.713106] alloc_pages_vma+0xc9/0x4c0 [ 392.717095] shmem_alloc_page+0xf6/0x1a0 [ 392.717524] FAULT_INJECTION: forcing a failure. [ 392.717524] name failslab, interval 1, probability 0, space 0, times 0 [ 392.721343] ? shmem_swapin+0x1a0/0x1a0 [ 392.721357] ? cred_has_capability+0x142/0x290 [ 392.721368] ? find_held_lock+0x35/0x130 [ 392.721376] ? check_preemption_disabled+0x3c/0x250 [ 392.721388] ? __this_cpu_preempt_check+0x1d/0x30 [ 392.721398] ? percpu_counter_add_batch+0x112/0x160 [ 392.721411] ? __vm_enough_memory+0x26a/0x490 [ 392.721428] shmem_alloc_and_acct_page+0x12a/0x680 [ 392.721443] shmem_getpage_gfp+0x3e7/0x2870 [ 392.721464] ? shmem_mfill_atomic_pte+0x17e0/0x17e0 [ 392.721474] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 392.721489] shmem_write_begin+0xfd/0x1b0 21:56:00 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x1, 0x0) 21:56:00 executing program 2 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 392.788670] ? trace_hardirqs_on_caller+0x400/0x590 [ 392.793690] generic_perform_write+0x1f8/0x480 [ 392.798272] ? page_endio+0x530/0x530 [ 392.802071] ? current_time+0xb0/0xb0 [ 392.805876] ? generic_file_write_iter+0x9a/0x660 [ 392.810720] __generic_file_write_iter+0x239/0x5b0 [ 392.815667] generic_file_write_iter+0x303/0x660 [ 392.820423] __vfs_write+0x4a7/0x6b0 [ 392.824122] ? selinux_file_open+0x420/0x420 [ 392.828527] ? kernel_read+0x120/0x120 [ 392.832412] ? check_preemption_disabled+0x3c/0x250 [ 392.837426] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 392.842872] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 392.847625] ? __sb_start_write+0x153/0x2f0 [ 392.851942] vfs_write+0x198/0x500 [ 392.855484] SyS_pwrite64+0x115/0x140 [ 392.859279] ? SyS_pread64+0x140/0x140 [ 392.863164] ? do_syscall_64+0x53/0x640 [ 392.867138] ? SyS_pread64+0x140/0x140 [ 392.871022] do_syscall_64+0x1e8/0x640 [ 392.874899] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 392.879736] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.884913] RIP: 0033:0x416247 [ 392.888087] RSP: 002b:00007f6a435d5a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 392.895790] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 0000000000416247 [ 392.903048] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000004 [ 392.910311] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 392.917577] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 392.924837] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000006 [ 392.963348] CPU: 0 PID: 18721 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 392.971256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.980615] Call Trace: [ 392.983224] dump_stack+0x142/0x197 [ 392.986860] should_fail.cold+0x10f/0x159 [ 392.991021] should_failslab+0xdb/0x130 [ 392.995006] kmem_cache_alloc+0x2d7/0x780 [ 392.999162] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 393.004625] ? check_preemption_disabled+0x3c/0x250 21:56:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0x2000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) write$9p(r5, 0x0, 0x0) ioctl$KDSKBSENT(r5, 0x4b49, &(0x7f0000000440)={0x8, "229d7c8a0664812f98ef76e0706f770c2a794ce5ec36254dddc40fb6dd0c2d32bfa9a7062134e586142900bafb9f2887dc6c78f3f99a0c450400fa67474959d598100f71344df5090563e9b0a1f002dd7aab573b584d5ea8d463701ac3df4d9a1a9e8c5d6315879ec87ddca4b271e41f285b51926e883a1b22cc8291d402ce1e6d0e92eb54c819ade5911a39db9d7d520032116be9281b8623b4991ea9b8960b9cfebb690ab5c609df69d36dd0d7c9c7d1617e0d5bd4042cdd70b770348cddb4855910a7e29b2f2c6708388da49cb8a871349514cab6f9a99c1d7bac2299231f9eea030ba2fa41c67633ca0e30ea12f14c580be9884f48386b59c74d79d7d8d2546e7cc0e8e4ce27f3ac8bb2019251196eede75d0bf9d304f11c23a80d933d112d54b17cc97d14e6c988e6c98642af4f61ff970eef817096b2a74964b664b60689c80804773b0557667e296e10b35cd89da7f2b00a2c2203451abd311f84311f4a7c4aded94d965ac0197d8f5ba946f62eda79d97b3d36ccab92a71ee32b46b3facfbcd9a0b6c789e31ee42d350864e60bc042ad5be49992e7158ae65357e37f381ac6e0c3deed9777be59136a065dff599c1d4fb78b8c4ef041b48b545c2941777dd42cdf98eb5e128aa5dc8c708ca1417b35f47be5679a66c8223912f2fae40c183bd0fe55eefb03946984e1e6028ff7f1fbf475c8c16e3021bd24d62de3e0"}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r8 = socket$phonet_pipe(0x23, 0x5, 0x2) r9 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r10 = dup3(r8, r9, 0x0) write$9p(r10, 0x0, 0x0) ioctl$PPPIOCGCHAN(r10, 0x80047437, &(0x7f0000000000)) r11 = dup3(r6, r7, 0x0) write$9p(r11, 0x0, 0x0) r12 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180)='batadv\x00') sendmsg$BATADV_CMD_GET_VLAN(r6, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x32001006}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x24, r12, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x8010}, 0x20000000) write$selinux_create(r11, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x46) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffffffffffff]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 393.009650] selinux_file_alloc_security+0xb4/0x190 [ 393.014669] security_file_alloc+0x6d/0xa0 [ 393.018907] get_empty_filp+0x162/0x3f0 [ 393.022883] alloc_file+0x23/0x440 [ 393.026433] __shmem_file_setup.part.0+0x1b1/0x400 [ 393.031367] ? __alloc_fd+0x1d4/0x4a0 [ 393.035433] ? shmem_fill_super+0x8c0/0x8c0 [ 393.039766] SyS_memfd_create+0x1f9/0x3a0 [ 393.043967] ? shmem_fcntl+0x130/0x130 [ 393.048060] ? do_syscall_64+0x53/0x640 [ 393.052038] ? shmem_fcntl+0x130/0x130 [ 393.055929] do_syscall_64+0x1e8/0x640 [ 393.059842] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 393.064697] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 393.069883] RIP: 0033:0x45c449 [ 393.073053] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 393.080747] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c449 [ 393.088009] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 393.095266] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 393.102526] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 393.109788] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000005 [ 393.334427] FAULT_INJECTION: forcing a failure. [ 393.334427] name failslab, interval 1, probability 0, space 0, times 0 [ 393.345926] CPU: 0 PID: 18743 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 393.353930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 393.363289] Call Trace: [ 393.365890] dump_stack+0x142/0x197 [ 393.369542] should_fail.cold+0x10f/0x159 [ 393.373711] should_failslab+0xdb/0x130 [ 393.377702] kmem_cache_alloc+0x2d7/0x780 [ 393.381863] ? selinux_capable+0x36/0x40 [ 393.385939] getname_kernel+0x53/0x350 [ 393.389839] kern_path+0x20/0x40 [ 393.393302] do_mount+0x910/0x27d0 [ 393.396860] ? copy_mount_string+0x40/0x40 [ 393.401107] ? memdup_user+0x58/0xa0 [ 393.404888] ? copy_mount_options+0x1fe/0x2f0 [ 393.409408] SyS_mount+0xab/0x120 [ 393.412854] ? copy_mnt_ns+0x8c0/0x8c0 [ 393.416741] do_syscall_64+0x1e8/0x640 [ 393.420618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 393.425552] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 393.431211] RIP: 0033:0x45c449 [ 393.434393] RSP: 002b:00007fc2bcac7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 393.442123] RAX: ffffffffffffffda RBX: 00007fc2bcac86d4 RCX: 000000000045c449 [ 393.449410] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 393.456675] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 393.463943] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 393.471205] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000003 21:56:03 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x1, 0x0) 21:56:03 executing program 2 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:03 executing program 4 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:03 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8", 0x97}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:03 executing program 3 (fault-call:7 fault-nth:4): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r3) fsetxattr$security_capability(r0, &(0x7f0000000440)='security.capability\x00', &(0x7f0000000480)=@v1={0x1000000, [{0x5, 0x1}]}, 0xc, 0x3) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x40, 0x0, 0x0, 0x1000, 0x0, 0xfb, 0x7, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1], 0x4000, 0x20400}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r5, 0xc004ae02, &(0x7f00000005c0)=ANY=[@ANYBLOB="010080000000000000aae8ae83d7ba8cffa743eb1eeef846193bded0fdcca21382017b6d02e030ecc355805ce5009648e3820295d9b7c8d45f1984f56afb8168c21ed497d82630e5243e07ab265d9b87e7298705ec80cb9d070f6e46b99e8b21bc00"/108]) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r6 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="a1cb6edbdbd507b4f7c430e7ec56fa0b2ee5b0969bc42abed0509f7277ddbeeaf203cb9f09ce32082f8e1fb755", 0x2d, 0xfffffffffffffff9) r7 = add_key(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz', 0x1}, &(0x7f0000000300)='4', 0x1, 0xfffffffffffffffe) r8 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r8, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r8, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x23, &(0x7f0000002580)=0xffffac6a, 0x4) sendto$inet6(r8, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r8, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet_sctp6_SCTP_INITMSG(r8, 0x84, 0x2, &(0x7f0000000180)={0x8000, 0xfd3, 0x200, 0xb39}, 0x8) r9 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000300)='4', 0x1, 0xfffffffffffffffe) keyctl$link(0x8, r7, r9) r10 = request_key(&(0x7f0000000580)='rxrpc_s\x00', &(0x7f00000001c0)={'syz', 0x0}, &(0x7f00000002c0)='/dev/kvm\x00', r9) keyctl$instantiate(0xc, r6, &(0x7f0000000340)=ANY=[@ANYBLOB="6e747275737465643a776c616e307d203030303030303030304f30303030303030313734000f30dd08abe74dd271159aefc006d419dd5495cc23"], 0x30, r10) ioctl$KVM_NMI(r4, 0xae9a) arch_prctl$ARCH_GET_FS(0x1003, &(0x7f00000004c0)) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 395.179978] FAULT_INJECTION: forcing a failure. [ 395.179978] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 395.185153] FAULT_INJECTION: forcing a failure. [ 395.185153] name failslab, interval 1, probability 0, space 0, times 0 [ 395.203425] CPU: 0 PID: 18756 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 395.205486] FAULT_INJECTION: forcing a failure. [ 395.205486] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 395.211313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.232881] Call Trace: [ 395.235488] dump_stack+0x142/0x197 [ 395.239212] should_fail.cold+0x10f/0x159 [ 395.243358] should_failslab+0xdb/0x130 [ 395.247326] kmem_cache_alloc+0x47/0x780 [ 395.251390] ? __alloc_pages_slowpath+0x2930/0x2930 [ 395.256518] ? lock_downgrade+0x740/0x740 [ 395.260675] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 395.266420] __radix_tree_create+0x337/0x4d0 [ 395.270832] __radix_tree_insert+0xab/0x570 [ 395.275176] ? __radix_tree_create+0x4d0/0x4d0 [ 395.279766] shmem_add_to_page_cache+0x5a4/0x860 [ 395.284511] ? shmem_unused_huge_scan+0xa0/0xa0 [ 395.289178] ? __radix_tree_preload+0x1d2/0x260 [ 395.294090] shmem_getpage_gfp+0x17cc/0x2870 [ 395.298613] ? shmem_mfill_atomic_pte+0x17e0/0x17e0 [ 395.303682] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 395.308865] shmem_write_begin+0xfd/0x1b0 [ 395.313004] ? trace_hardirqs_on_caller+0x400/0x590 [ 395.318009] generic_perform_write+0x1f8/0x480 [ 395.322584] ? page_endio+0x530/0x530 [ 395.326392] ? current_time+0xb0/0xb0 [ 395.330181] ? generic_file_write_iter+0x9a/0x660 [ 395.335036] __generic_file_write_iter+0x239/0x5b0 [ 395.339964] generic_file_write_iter+0x303/0x660 [ 395.344712] __vfs_write+0x4a7/0x6b0 [ 395.348441] ? selinux_file_open+0x420/0x420 [ 395.352857] ? kernel_read+0x120/0x120 [ 395.356733] ? check_preemption_disabled+0x3c/0x250 [ 395.361771] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 395.367225] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 395.371973] ? __sb_start_write+0x153/0x2f0 [ 395.376293] vfs_write+0x198/0x500 [ 395.379827] SyS_pwrite64+0x115/0x140 [ 395.383642] ? SyS_pread64+0x140/0x140 [ 395.387514] ? do_syscall_64+0x53/0x640 [ 395.391475] ? SyS_pread64+0x140/0x140 [ 395.395349] do_syscall_64+0x1e8/0x640 [ 395.399370] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 395.404207] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 395.409381] RIP: 0033:0x416247 [ 395.412554] RSP: 002b:00007f6a435d5a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 395.420260] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 0000000000416247 [ 395.427537] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000004 [ 395.434801] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 395.442061] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 395.449331] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000007 [ 395.456614] CPU: 1 PID: 18755 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 395.464503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.473857] Call Trace: [ 395.476452] dump_stack+0x142/0x197 [ 395.480092] should_fail.cold+0x10f/0x159 [ 395.484246] __alloc_pages_nodemask+0x1d6/0x7a0 [ 395.488918] ? fs_reclaim_acquire+0x20/0x20 [ 395.493239] ? __alloc_pages_slowpath+0x2930/0x2930 [ 395.498256] cache_grow_begin+0x80/0x400 [ 395.502333] kmem_cache_alloc+0x6a6/0x780 [ 395.506483] getname_kernel+0x53/0x350 [ 395.510368] kern_path+0x20/0x40 [ 395.513736] do_mount+0x910/0x27d0 [ 395.517266] ? copy_mount_string+0x40/0x40 [ 395.521490] ? memdup_user+0x58/0xa0 [ 395.525198] ? copy_mount_options+0x1fe/0x2f0 [ 395.529689] SyS_mount+0xab/0x120 [ 395.533131] ? copy_mnt_ns+0x8c0/0x8c0 [ 395.537004] do_syscall_64+0x1e8/0x640 [ 395.540888] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 395.545726] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 395.550899] RIP: 0033:0x45c449 [ 395.554187] RSP: 002b:00007fc2bcac7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 395.561898] RAX: ffffffffffffffda RBX: 00007fc2bcac86d4 RCX: 000000000045c449 [ 395.569163] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 395.576424] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 395.583680] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 395.590938] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000004 [ 395.604060] CPU: 0 PID: 18753 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 395.611959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.621328] Call Trace: [ 395.623934] dump_stack+0x142/0x197 [ 395.627675] should_fail.cold+0x10f/0x159 [ 395.631877] ? __might_sleep+0x93/0xb0 [ 395.635785] __alloc_pages_nodemask+0x1d6/0x7a0 [ 395.640474] ? __alloc_pages_slowpath+0x2930/0x2930 [ 395.645497] ? lock_downgrade+0x740/0x740 [ 395.649662] alloc_pages_vma+0xc9/0x4c0 [ 395.653650] shmem_alloc_page+0xf6/0x1a0 [ 395.657711] ? shmem_swapin+0x1a0/0x1a0 [ 395.661686] ? cred_has_capability+0x142/0x290 [ 395.666268] ? find_held_lock+0x35/0x130 [ 395.670313] ? check_preemption_disabled+0x3c/0x250 [ 395.675317] ? __this_cpu_preempt_check+0x1d/0x30 21:56:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) fcntl$notify(r1, 0x402, 0x11) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = socket$inet6(0xa, 0xa, 0x2) sendto$inet6(r2, &(0x7f0000000840)="736551578851f74182a74b89b27df427aeef05050000004138b5c26a06b6d94c4aefd8fdca10e744391062c8e602721c200516ff7408c077f61e1eb331a4daad402b9885599d0000000000000000", 0x4e, 0x8000, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1fd, 0x0, 0x2, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x2000004, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f0000000e00)=ANY=[@ANYBLOB="c0000000", @ANYRES16=0x0, @ANYBLOB="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"], 0xc0}, 0x1, 0x0, 0x0, 0x20001805}, 0x4000040) ioctl$KVM_RUN(r3, 0xae80, 0x0) r7 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r7, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r7, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r7, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r7, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r7, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) r8 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r8, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) r9 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r9, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r9, 0x29, 0x3e, &(0x7f0000000f80)="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", 0x22e) setsockopt$sock_int(r9, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r9, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r9, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_buf(r9, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r8, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r9, &(0x7f0000000840)="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", 0x599, 0x20008044, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @mcast2, 0x400005}, 0x1c) recvmsg(r8, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r8, 0x84, 0x1a, &(0x7f00000005c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000000)=0xe4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x1f, &(0x7f0000000140)={r10, @in6={{0xa, 0x4e23, 0x4, @empty, 0x6}}, 0x2}, &(0x7f0000000040)=0x90) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 395.680157] ? percpu_counter_add_batch+0x112/0x160 [ 395.685171] ? __vm_enough_memory+0x26a/0x490 [ 395.689809] shmem_alloc_and_acct_page+0x12a/0x680 [ 395.694747] shmem_getpage_gfp+0x3e7/0x2870 [ 395.699112] ? shmem_mfill_atomic_pte+0x17e0/0x17e0 [ 395.704141] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 395.709338] shmem_write_begin+0xfd/0x1b0 [ 395.713495] ? trace_hardirqs_on_caller+0x400/0x590 [ 395.718517] generic_perform_write+0x1f8/0x480 [ 395.723116] ? page_endio+0x530/0x530 [ 395.727877] ? current_time+0xb0/0xb0 [ 395.731685] ? generic_file_write_iter+0x9a/0x660 [ 395.736537] __generic_file_write_iter+0x239/0x5b0 [ 395.741580] generic_file_write_iter+0x303/0x660 [ 395.746339] __vfs_write+0x4a7/0x6b0 [ 395.750046] ? selinux_file_open+0x420/0x420 [ 395.754465] ? kernel_read+0x120/0x120 [ 395.758352] ? check_preemption_disabled+0x3c/0x250 [ 395.763376] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 395.768837] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 395.773707] ? __sb_start_write+0x153/0x2f0 [ 395.778044] vfs_write+0x198/0x500 [ 395.781592] SyS_pwrite64+0x115/0x140 [ 395.785397] ? SyS_pread64+0x140/0x140 [ 395.789287] ? do_syscall_64+0x53/0x640 [ 395.793262] ? SyS_pread64+0x140/0x140 [ 395.797148] do_syscall_64+0x1e8/0x640 [ 395.801029] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 395.805957] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 395.811129] RIP: 0033:0x416247 [ 395.814300] RSP: 002b:00007f921eac3a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 395.822002] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 0000000000416247 21:56:03 executing program 3 (fault-call:7 fault-nth:5): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000", 0x3f, 0x10000}], 0x1, 0x0) [ 395.829270] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000004 [ 395.836532] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 395.843799] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 395.851062] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000006 21:56:04 executing program 2 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 395.930853] FAULT_INJECTION: forcing a failure. [ 395.930853] name failslab, interval 1, probability 0, space 0, times 0 [ 395.942183] CPU: 0 PID: 18782 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 395.950060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.959520] Call Trace: [ 395.962121] dump_stack+0x142/0x197 [ 395.965763] should_fail.cold+0x10f/0x159 [ 395.969928] should_failslab+0xdb/0x130 [ 395.974012] kmem_cache_alloc+0x47/0x780 [ 395.978101] ? __alloc_pages_slowpath+0x2930/0x2930 [ 395.983119] ? lock_downgrade+0x740/0x740 [ 395.987259] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 395.992882] __radix_tree_create+0x337/0x4d0 [ 395.997453] __radix_tree_insert+0xab/0x570 [ 396.001888] ? __radix_tree_create+0x4d0/0x4d0 [ 396.006464] shmem_add_to_page_cache+0x5a4/0x860 [ 396.011223] ? shmem_unused_huge_scan+0xa0/0xa0 [ 396.015888] ? __radix_tree_preload+0x1d2/0x260 [ 396.020560] shmem_getpage_gfp+0x17cc/0x2870 [ 396.024976] ? shmem_mfill_atomic_pte+0x17e0/0x17e0 [ 396.030035] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 396.035229] shmem_write_begin+0xfd/0x1b0 [ 396.039381] ? trace_hardirqs_on_caller+0x400/0x590 [ 396.044497] generic_perform_write+0x1f8/0x480 [ 396.049084] ? page_endio+0x530/0x530 [ 396.052883] ? current_time+0xb0/0xb0 [ 396.056811] ? generic_file_write_iter+0x9a/0x660 [ 396.061642] __generic_file_write_iter+0x239/0x5b0 [ 396.066564] generic_file_write_iter+0x303/0x660 [ 396.071331] __vfs_write+0x4a7/0x6b0 [ 396.075037] ? selinux_file_open+0x420/0x420 [ 396.079435] ? kernel_read+0x120/0x120 [ 396.083311] ? check_preemption_disabled+0x3c/0x250 [ 396.088363] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 396.093803] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 396.098547] ? __sb_start_write+0x153/0x2f0 [ 396.102860] vfs_write+0x198/0x500 [ 396.106385] SyS_pwrite64+0x115/0x140 [ 396.110306] ? SyS_pread64+0x140/0x140 [ 396.114195] ? do_syscall_64+0x53/0x640 [ 396.118172] ? SyS_pread64+0x140/0x140 [ 396.122105] do_syscall_64+0x1e8/0x640 [ 396.125977] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.130819] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.136004] RIP: 0033:0x416247 [ 396.139181] RSP: 002b:00007f921eac3a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 396.146916] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 0000000000416247 [ 396.154185] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000004 [ 396.161439] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 396.168794] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 21:56:04 executing program 4 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 396.176050] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000007 21:56:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x1, 0x0) [ 396.233433] FAULT_INJECTION: forcing a failure. [ 396.233433] name failslab, interval 1, probability 0, space 0, times 0 [ 396.258987] CPU: 0 PID: 18790 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 396.267052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.276404] Call Trace: [ 396.278995] dump_stack+0x142/0x197 [ 396.282625] should_fail.cold+0x10f/0x159 [ 396.286780] should_failslab+0xdb/0x130 [ 396.290742] kmem_cache_alloc+0x2d7/0x780 [ 396.294878] ? vfs_write+0x25f/0x500 [ 396.298626] getname_flags+0xcb/0x580 [ 396.302415] ? check_preemption_disabled+0x3c/0x250 [ 396.307639] getname+0x1a/0x20 [ 396.310867] do_sys_open+0x1e7/0x430 [ 396.314839] ? filp_open+0x70/0x70 [ 396.318402] ? fput+0xd4/0x150 [ 396.321592] ? SyS_pwrite64+0xca/0x140 [ 396.325670] SyS_open+0x2d/0x40 [ 396.328951] ? do_sys_open+0x430/0x430 [ 396.332834] do_syscall_64+0x1e8/0x640 [ 396.336714] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.341554] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.346729] RIP: 0033:0x4161e1 [ 396.349905] RSP: 002b:00007f6a435d5a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 396.357610] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 00000000004161e1 [ 396.364878] RDX: 00007f6a435d5b0a RSI: 0000000000000002 RDI: 00007f6a435d5b00 [ 396.372138] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a 21:56:04 executing program 4 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:04 executing program 2 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 396.379392] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 396.386650] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000008 21:56:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x1, 0x0) [ 396.468150] FAULT_INJECTION: forcing a failure. [ 396.468150] name failslab, interval 1, probability 0, space 0, times 0 [ 396.473038] FAULT_INJECTION: forcing a failure. [ 396.473038] name failslab, interval 1, probability 0, space 0, times 0 [ 396.483579] CPU: 0 PID: 18801 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 396.498568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.507924] Call Trace: [ 396.510618] dump_stack+0x142/0x197 [ 396.514252] should_fail.cold+0x10f/0x159 [ 396.518396] should_failslab+0xdb/0x130 [ 396.522365] kmem_cache_alloc+0x2d7/0x780 [ 396.526508] ? vfs_write+0x25f/0x500 [ 396.530235] getname_flags+0xcb/0x580 [ 396.534030] ? check_preemption_disabled+0x3c/0x250 [ 396.539045] getname+0x1a/0x20 [ 396.542241] do_sys_open+0x1e7/0x430 [ 396.545955] ? filp_open+0x70/0x70 [ 396.549519] ? fput+0xd4/0x150 [ 396.552702] ? SyS_pwrite64+0xca/0x140 [ 396.556595] SyS_open+0x2d/0x40 [ 396.559884] ? do_sys_open+0x430/0x430 [ 396.563764] do_syscall_64+0x1e8/0x640 [ 396.567645] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.572497] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.577682] RIP: 0033:0x4161e1 [ 396.580870] RSP: 002b:00007f921eac3a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 396.588578] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 00000000004161e1 [ 396.595844] RDX: 00007f921eac3b0a RSI: 0000000000000002 RDI: 00007f921eac3b00 [ 396.603107] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 396.610382] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 396.617653] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000008 [ 396.624939] CPU: 1 PID: 18802 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 396.632826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.642182] Call Trace: [ 396.644886] dump_stack+0x142/0x197 [ 396.648531] should_fail.cold+0x10f/0x159 [ 396.652691] should_failslab+0xdb/0x130 [ 396.656669] kmem_cache_alloc+0x2d7/0x780 [ 396.660813] ? save_stack+0xa9/0xd0 [ 396.664440] get_empty_filp+0x8c/0x3f0 [ 396.668331] path_openat+0x96/0x3e50 [ 396.672043] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.677395] ? generic_perform_write+0x34f/0x480 [ 396.682157] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 396.686828] ? save_trace+0x290/0x290 [ 396.690621] ? __alloc_fd+0x1d4/0x4a0 [ 396.694409] do_filp_open+0x18e/0x250 [ 396.698215] ? may_open_dev+0xe0/0xe0 [ 396.702009] ? lock_downgrade+0x740/0x740 [ 396.706155] ? do_raw_spin_unlock+0x174/0x260 [ 396.710648] ? _raw_spin_unlock+0x2d/0x50 [ 396.714795] ? __alloc_fd+0x1d4/0x4a0 [ 396.718614] do_sys_open+0x2c5/0x430 [ 396.722329] ? filp_open+0x70/0x70 [ 396.725855] ? fput+0xd4/0x150 [ 396.729047] ? SyS_pwrite64+0xca/0x140 [ 396.732934] SyS_open+0x2d/0x40 [ 396.736329] ? do_sys_open+0x430/0x430 [ 396.740210] do_syscall_64+0x1e8/0x640 [ 396.744098] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.749168] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.754351] RIP: 0033:0x4161e1 [ 396.757530] RSP: 002b:00007f6a435d5a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 21:56:04 executing program 2 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 396.765333] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 00000000004161e1 [ 396.772599] RDX: 00007f6a435d5b0a RSI: 0000000000000002 RDI: 00007f6a435d5b00 [ 396.779857] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 396.787122] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 396.794502] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000009 [ 396.843393] FAULT_INJECTION: forcing a failure. [ 396.843393] name failslab, interval 1, probability 0, space 0, times 0 [ 396.848513] FAULT_INJECTION: forcing a failure. [ 396.848513] name failslab, interval 1, probability 0, space 0, times 0 [ 396.866533] CPU: 0 PID: 18811 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 396.874427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.883785] Call Trace: [ 396.886374] dump_stack+0x142/0x197 [ 396.890093] should_fail.cold+0x10f/0x159 [ 396.894241] should_failslab+0xdb/0x130 [ 396.898201] kmem_cache_alloc+0x2d7/0x780 [ 396.902356] alloc_vfsmnt+0x28/0x7d0 [ 396.906083] clone_mnt+0x70/0xee0 [ 396.909531] ? is_subdir+0x222/0x389 [ 396.913243] copy_tree+0x33b/0x8a0 [ 396.916773] ? lock_mount+0xf4/0x2c0 [ 396.920487] do_mount+0x1768/0x27d0 [ 396.924117] ? copy_mount_string+0x40/0x40 [ 396.928347] ? memdup_user+0x58/0xa0 [ 396.932053] SyS_mount+0xab/0x120 [ 396.935612] ? copy_mnt_ns+0x8c0/0x8c0 [ 396.939602] do_syscall_64+0x1e8/0x640 [ 396.943492] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 396.948332] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.953514] RIP: 0033:0x45c449 [ 396.956792] RSP: 002b:00007fc2bcac7c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 396.964496] RAX: ffffffffffffffda RBX: 00007fc2bcac86d4 RCX: 000000000045c449 [ 396.971762] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 396.979042] RBP: 000000000076bf20 R08: 0000000000000000 R09: 0000000000000000 [ 396.986298] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 396.994350] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000005 [ 397.007854] CPU: 1 PID: 18812 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 397.015754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 397.025107] Call Trace: [ 397.027711] dump_stack+0x142/0x197 [ 397.031459] should_fail.cold+0x10f/0x159 [ 397.035625] should_failslab+0xdb/0x130 [ 397.040132] kmem_cache_alloc+0x2d7/0x780 [ 397.044301] ? save_stack+0xa9/0xd0 [ 397.047944] get_empty_filp+0x8c/0x3f0 [ 397.051928] path_openat+0x96/0x3e50 [ 397.055647] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 397.061018] ? generic_perform_write+0x34f/0x480 [ 397.065797] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 397.070479] ? save_trace+0x290/0x290 [ 397.074281] ? __alloc_fd+0x1d4/0x4a0 [ 397.078120] do_filp_open+0x18e/0x250 [ 397.081956] ? may_open_dev+0xe0/0xe0 [ 397.085747] ? lock_downgrade+0x740/0x740 [ 397.089895] ? do_raw_spin_unlock+0x174/0x260 [ 397.094395] ? _raw_spin_unlock+0x2d/0x50 [ 397.098539] ? __alloc_fd+0x1d4/0x4a0 [ 397.102345] do_sys_open+0x2c5/0x430 [ 397.106054] ? filp_open+0x70/0x70 [ 397.109581] ? fput+0xd4/0x150 [ 397.112762] ? SyS_pwrite64+0xca/0x140 [ 397.116640] SyS_open+0x2d/0x40 [ 397.119908] ? do_sys_open+0x430/0x430 [ 397.123796] do_syscall_64+0x1e8/0x640 [ 397.127732] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 397.132568] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 397.137740] RIP: 0033:0x4161e1 [ 397.141028] RSP: 002b:00007f921eac3a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 397.148735] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 00000000004161e1 [ 397.155985] RDX: 00007f921eac3b0a RSI: 0000000000000002 RDI: 00007f921eac3b00 [ 397.163248] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 397.170520] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 397.177778] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000009 21:56:06 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8", 0x97}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:06 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f424852", 0x44, 0x10000}], 0x1, 0x0) 21:56:06 executing program 4 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:06 executing program 2 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:06 executing program 3 (fault-call:7 fault-nth:6): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:06 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r2, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nvram\x00', 0x20000, 0x0) accept4$phonet_pipe(r3, &(0x7f00000001c0), &(0x7f00000002c0)=0x10, 0x800) setsockopt$sock_int(r2, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r2, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r2, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_NMI(r4, 0xae9a) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r5, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r5, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r5, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r5, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r5, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) connect$inet6(r5, &(0x7f0000000140)={0xa, 0x4e23, 0x7ff, @local, 0x7fffffff}, 0x1c) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 398.227741] FAULT_INJECTION: forcing a failure. [ 398.227741] name failslab, interval 1, probability 0, space 0, times 0 [ 398.245769] FAULT_INJECTION: forcing a failure. [ 398.245769] name failslab, interval 1, probability 0, space 0, times 0 [ 398.257743] CPU: 0 PID: 18833 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 398.265764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.275123] Call Trace: [ 398.277723] dump_stack+0x142/0x197 [ 398.281461] should_fail.cold+0x10f/0x159 [ 398.285604] should_failslab+0xdb/0x130 [ 398.289570] kmem_cache_alloc+0x2d7/0x780 [ 398.293714] ? save_stack+0xa9/0xd0 [ 398.297341] get_empty_filp+0x8c/0x3f0 [ 398.301219] path_openat+0x96/0x3e50 [ 398.304929] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.310405] ? trace_hardirqs_on+0x10/0x10 [ 398.314641] ? check_preemption_disabled+0x3c/0x250 [ 398.319661] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 398.324357] ? find_held_lock+0x35/0x130 [ 398.328425] ? save_trace+0x290/0x290 [ 398.332233] ? __alloc_fd+0x1d4/0x4a0 [ 398.336037] do_filp_open+0x18e/0x250 [ 398.339834] ? may_open_dev+0xe0/0xe0 [ 398.343621] ? lock_downgrade+0x740/0x740 [ 398.347881] ? do_raw_spin_unlock+0x174/0x260 [ 398.352377] ? _raw_spin_unlock+0x2d/0x50 [ 398.356520] ? __alloc_fd+0x1d4/0x4a0 [ 398.360326] do_sys_open+0x2c5/0x430 [ 398.364046] ? filp_open+0x70/0x70 [ 398.367587] ? fput+0xd4/0x150 [ 398.370776] ? SyS_pwrite64+0xca/0x140 [ 398.374670] SyS_open+0x2d/0x40 [ 398.377937] ? do_sys_open+0x430/0x430 [ 398.381817] do_syscall_64+0x1e8/0x640 [ 398.385700] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 398.390552] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.395828] RIP: 0033:0x4161e1 [ 398.399008] RSP: 002b:00007f6a435d5a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 398.406718] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 00000000004161e1 [ 398.413991] RDX: 00007f6a435d5b0a RSI: 0000000000000002 RDI: 00007f6a435d5b00 [ 398.421271] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 398.428535] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 398.435801] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000a [ 398.443089] CPU: 1 PID: 18834 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 398.446003] FAULT_INJECTION: forcing a failure. [ 398.446003] name failslab, interval 1, probability 0, space 0, times 0 [ 398.450987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.450992] Call Trace: [ 398.451011] dump_stack+0x142/0x197 [ 398.451028] should_fail.cold+0x10f/0x159 [ 398.451044] should_failslab+0xdb/0x130 [ 398.451057] kmem_cache_alloc+0x2d7/0x780 [ 398.451067] ? save_stack+0xa9/0xd0 [ 398.451079] get_empty_filp+0x8c/0x3f0 [ 398.451089] path_openat+0x96/0x3e50 [ 398.451099] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.451111] ? trace_hardirqs_on+0x10/0x10 [ 398.451120] ? check_preemption_disabled+0x3c/0x250 [ 398.451135] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 398.451152] ? find_held_lock+0x35/0x130 [ 398.451161] ? save_trace+0x290/0x290 [ 398.529644] ? __alloc_fd+0x1d4/0x4a0 [ 398.533458] do_filp_open+0x18e/0x250 [ 398.537270] ? may_open_dev+0xe0/0xe0 [ 398.541076] ? lock_downgrade+0x740/0x740 [ 398.545224] ? do_raw_spin_unlock+0x174/0x260 [ 398.549735] ? _raw_spin_unlock+0x2d/0x50 [ 398.553877] ? __alloc_fd+0x1d4/0x4a0 [ 398.557682] do_sys_open+0x2c5/0x430 [ 398.561391] ? filp_open+0x70/0x70 [ 398.565003] ? fput+0xd4/0x150 [ 398.568191] ? SyS_pwrite64+0xca/0x140 [ 398.572081] SyS_open+0x2d/0x40 [ 398.575349] ? do_sys_open+0x430/0x430 [ 398.579234] do_syscall_64+0x1e8/0x640 [ 398.583121] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 398.587967] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.593182] RIP: 0033:0x4161e1 [ 398.596367] RSP: 002b:00007f921eac3a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 398.604224] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 00000000004161e1 [ 398.611490] RDX: 00007f921eac3b0a RSI: 0000000000000002 RDI: 00007f921eac3b00 [ 398.618772] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a 21:56:06 executing program 4 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 398.626039] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 398.633304] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000a [ 398.640584] CPU: 0 PID: 18842 Comm: syz-executor.3 Not tainted 4.14.171-syzkaller #0 [ 398.648484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.657882] Call Trace: [ 398.660482] dump_stack+0x142/0x197 [ 398.664120] should_fail.cold+0x10f/0x159 [ 398.668284] should_failslab+0xdb/0x130 [ 398.672268] __kmalloc_track_caller+0x2ec/0x790 [ 398.676957] ? kstrdup_const+0x48/0x60 [ 398.680964] kstrdup+0x3a/0x70 [ 398.684163] kstrdup_const+0x48/0x60 [ 398.687883] alloc_vfsmnt+0xe5/0x7d0 [ 398.691600] clone_mnt+0x70/0xee0 [ 398.695059] ? get_mountpoint+0x82/0x330 [ 398.698828] ptrace attach of "/root/syz-executor.1"[18846] was attempted by "/root/syz-executor.1"[18847] [ 398.699119] ? rcu_read_lock_sched_held+0x110/0x130 [ 398.699134] copy_tree+0xd0/0x8a0 [ 398.699144] ? get_mountpoint+0x87/0x330 [ 398.699154] ? lock_mount+0xf4/0x2c0 [ 398.725205] do_mount+0x1768/0x27d0 21:56:06 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591", 0xe3}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 398.728869] ? copy_mount_string+0x40/0x40 [ 398.733124] ? memdup_user+0x58/0xa0 [ 398.736854] SyS_mount+0xab/0x120 [ 398.740322] ? copy_mnt_ns+0x8c0/0x8c0 [ 398.744228] do_syscall_64+0x1e8/0x640 [ 398.748134] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 398.752994] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.758188] RIP: 0033:0x45c449 [ 398.761376] RSP: 002b:00007fc2bca85c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 398.769194] RAX: ffffffffffffffda RBX: 00007fc2bca866d4 RCX: 000000000045c449 21:56:06 executing program 2 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 398.776465] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000080 [ 398.783853] RBP: 000000000076c060 R08: 0000000000000000 R09: 0000000000000000 [ 398.791125] R10: 0000000000005110 R11: 0000000000000246 R12: 0000000000000003 [ 398.798832] R13: 000000000000074a R14: 00000000004c9d14 R15: 0000000000000006 [ 398.842171] FAULT_INJECTION: forcing a failure. [ 398.842171] name failslab, interval 1, probability 0, space 0, times 0 [ 398.853669] CPU: 0 PID: 18858 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 398.858519] FAULT_INJECTION: forcing a failure. [ 398.858519] name failslab, interval 1, probability 0, space 0, times 0 [ 398.861660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.861666] Call Trace: [ 398.861685] dump_stack+0x142/0x197 [ 398.861704] should_fail.cold+0x10f/0x159 [ 398.861719] should_failslab+0xdb/0x130 [ 398.861733] kmem_cache_alloc+0x2d7/0x780 [ 398.861743] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 398.861752] ? check_preemption_disabled+0x3c/0x250 [ 398.861766] selinux_file_alloc_security+0xb4/0x190 [ 398.861777] security_file_alloc+0x6d/0xa0 [ 398.861791] get_empty_filp+0x162/0x3f0 [ 398.861801] path_openat+0x96/0x3e50 [ 398.861810] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.861822] ? trace_hardirqs_on+0x10/0x10 21:56:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb, 0x600000]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$SG_GET_ACCESS_COUNT(r3, 0x2289, &(0x7f0000000040)) [ 398.861831] ? check_preemption_disabled+0x3c/0x250 [ 398.861847] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 398.861854] ? find_held_lock+0x35/0x130 [ 398.861876] ? save_trace+0x290/0x290 [ 398.955478] ? __alloc_fd+0x1d4/0x4a0 [ 398.959292] do_filp_open+0x18e/0x250 [ 398.963099] ? may_open_dev+0xe0/0xe0 [ 398.966936] ? lock_downgrade+0x740/0x740 [ 398.971092] ? do_raw_spin_unlock+0x174/0x260 [ 398.975683] ? _raw_spin_unlock+0x2d/0x50 [ 398.979836] ? __alloc_fd+0x1d4/0x4a0 [ 398.983672] do_sys_open+0x2c5/0x430 [ 398.987394] ? filp_open+0x70/0x70 [ 398.990940] ? fput+0xd4/0x150 [ 398.994140] ? SyS_pwrite64+0xca/0x140 [ 398.998134] SyS_open+0x2d/0x40 [ 399.002366] ? do_sys_open+0x430/0x430 [ 399.006263] do_syscall_64+0x1e8/0x640 [ 399.010153] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 399.015017] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.020225] RIP: 0033:0x4161e1 [ 399.023529] RSP: 002b:00007f921eac3a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 399.031406] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 00000000004161e1 [ 399.038691] RDX: 00007f921eac3b0a RSI: 0000000000000002 RDI: 00007f921eac3b00 [ 399.045965] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 399.053246] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 399.060632] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000b [ 399.082874] CPU: 1 PID: 18857 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 399.090874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.100372] Call Trace: [ 399.102984] dump_stack+0x142/0x197 [ 399.106753] should_fail.cold+0x10f/0x159 [ 399.110913] should_failslab+0xdb/0x130 [ 399.114901] kmem_cache_alloc_trace+0x2e9/0x790 [ 399.119797] ? __lockdep_init_map+0x10c/0x570 [ 399.124313] ? loop_get_status64+0x120/0x120 [ 399.128738] __kthread_create_on_node+0xe3/0x3e0 [ 399.133953] ? kthread_park+0x140/0x140 [ 399.137946] ? __fget+0x210/0x370 [ 399.141676] ? loop_get_status64+0x120/0x120 [ 399.146098] kthread_create_on_node+0xa8/0xd0 [ 399.150604] ? __kthread_create_on_node+0x3e0/0x3e0 [ 399.155641] ? __lockdep_init_map+0x10c/0x570 [ 399.160156] lo_ioctl+0xce3/0x1cd0 [ 399.161094] FAULT_INJECTION: forcing a failure. [ 399.161094] name failslab, interval 1, probability 0, space 0, times 0 [ 399.163704] ? debug_check_no_obj_freed+0x2aa/0x7b7 [ 399.163721] ? loop_probe+0x160/0x160 [ 399.163735] blkdev_ioctl+0x95f/0x1850 [ 399.163743] ? blkpg_ioctl+0x970/0x970 [ 399.163760] ? __might_sleep+0x93/0xb0 [ 399.195492] ? __fget+0x210/0x370 [ 399.198954] block_ioctl+0xde/0x120 [ 399.202587] ? blkdev_fallocate+0x3b0/0x3b0 [ 399.207076] do_vfs_ioctl+0x7ae/0x1060 [ 399.210973] ? selinux_file_mprotect+0x5d0/0x5d0 [ 399.215732] ? lock_downgrade+0x740/0x740 [ 399.219983] ? ioctl_preallocate+0x1c0/0x1c0 [ 399.224395] ? __fget+0x237/0x370 [ 399.227843] ? security_file_ioctl+0x89/0xb0 [ 399.232426] SyS_ioctl+0x8f/0xc0 [ 399.235788] ? do_vfs_ioctl+0x1060/0x1060 [ 399.240030] do_syscall_64+0x1e8/0x640 [ 399.244361] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 399.249210] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.254398] RIP: 0033:0x45c2b7 [ 399.257578] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 399.265392] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 399.272663] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 399.280040] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 399.287306] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 21:56:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x1, 0x0) 21:56:07 executing program 2 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 399.294569] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000b [ 399.301854] CPU: 0 PID: 18873 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 399.309834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.319374] Call Trace: [ 399.322090] dump_stack+0x142/0x197 [ 399.325733] should_fail.cold+0x10f/0x159 [ 399.330158] should_failslab+0xdb/0x130 [ 399.334139] kmem_cache_alloc+0x2d7/0x780 [ 399.338427] ? trace_hardirqs_on+0x10/0x10 21:56:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/snapshot\x00', 0x402000, 0x0) sendmsg$NLBL_CALIPSO_C_ADD(r3, &(0x7f0000001b40)={&(0x7f0000001a40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001b00)={&(0x7f0000001a80)={0x5c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x5c}, 0x1, 0x0, 0x0, 0x1}, 0xc041) ioctl$VFIO_GET_API_VERSION(r3, 0x3b64) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:56:07 executing program 3: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="dd43a0d812441970b4664f3584c55cec6cc698f3eebac02d13c586c8c7370db970aa72a3621d6e7b2ca5d5632581689501d5b6cb760660476fefc13c67baa20b1f0d1dd88ab3fe12a95936cba756e6525dee23b96af51f7007640b21e8eeac49b2ff9f98523c55ef5dbfa11de122c024a7539e9c8e9430257a87b9491ce3764c9eebad9e8706a4605d0bbf073a023344e7c0fe80e845f4bf6823fe54687eab0e8a7db01c17da7083862133b6c5211b29d7ebf37073d79c4581d02adb49dce75e59650308cce87f56f37e72bd48b9546db774bb6105525db2a6a4f2c5a608ff4187d67e30a94b0176b5355f835badc3c8a0e7c4bbfeb77dfb84a580a7cacf109b2533c6e31997d30c80dd50afb4d8d34e5a46cdb03fe7596d09c3deeb172f816dfcaf86b642b95c323c971867051bf1ab4451711adcdbb9"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r6, 0x40045612, &(0x7f0000001b40)=0x3) syz_mount_image$btrfs(&(0x7f0000000400)='btrfs\x00', &(0x7f0000000440)='./file0\x00', 0xccb, 0x9, &(0x7f00000019c0)=[{&(0x7f00000004c0)="149788bdc450d0d2b532ad1a1c87967718414abcd21fdb3e6f3db7520cfdb329678c2f5497e489f93819d78f44ee75c63610ecf648e2834fc220e165f254785f1cd956614d99c5aaa5c859992a49fd194603bcf9147927c74eb6ab065d6ef150ec9636701dd3329e26ef7a76fb01b6a45ec1928df1ff3fe1a62c28dde4d130c93b74d173b270f318ca4ccd031b3755333c51363e9000bcedf3ee7d35c89e31aee1109d867efc04ccf524fc080336e449bf2c86751a2fb5cd574fa4c8e3a94cf47b671ba8363c6eac2370e702", 0xcc, 0x100000000}, {&(0x7f00000005c0)="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", 0x1000, 0x5}, {&(0x7f00000015c0)="daf1ffa4010e0e5ec9e9937d5f7dc0eb045760b520f95b9a6194b8c193c60682a78fb6bbff0e021ee34bf013dd1ae7e59997a4f6e14dc1a056ea3e793d95f7d39d992c9d857e14e2da0652fe4d159752abbbe6fc6b4380b137a97fb389cf2ee6969bba7915bc36fe92e09ce5cc40a88ba8a528c6bbf4fa92513bbbdcece8892f246f221a467c255b99cdad40f303e0e977c31a825dc5f367e70c2cd8483b97e24319cd369fdc215e", 0xa8, 0x8}, {&(0x7f0000001680)="ac669836c4bd1752fae5756e78224b6e59db61239bf5bea21d6d0e16e681346acc0e587d8a73132631cba8dc01d2ad1c98e1fd39b1f89b4fa0e38f4e4de3212078dafeb1e522ac4fbf3d", 0x4a, 0x4}, {&(0x7f0000001700)="28cca887033dd546728b34ddf05f33c6c8577f2272fc03178210626c286d0c44f2fb27ba0d2437384ab6310306af350181ce22c4653fece307b257f341ac8930a54ff5f3465831e6d15cdf53d0643eeb27d8b9f979b01f17848a786a0e1b1a51c3f5b22238a943148d1e11d54f435c7fcc4422473f0deda41b8dce64564bee7253294a331165b467ca44911d08e51b2a9993de26aa6adea53e8cdd559b6501150898e531d3a16b91a6c25e6218d5fdf496dd", 0xb2, 0x1f}, {&(0x7f00000017c0)="a65de28ee7c592cfa915bca9ad7e492b94e6ffc7b2809de098c9ba90b3ca18dc11c723a1d9325a21e20f364e7c1130676115636596f50c03459e42e3e6de8c8dae5bf0eb1fc1d825890e67fcb6c7e2d578bed0a7a3e6afc0236fe3060530af9f95195b9fd38f7cd036702d11e8fb2f21e2a3f5bda03353811c78abdf6ac8e314f3fdbf0956fa6d18ed265f83bb17bc0928c17c40c09f94f2a5404a6e49ef6988e8953e0c19dc267dba07870fe8001808d7e8cf071f", 0xb5, 0x7}, {&(0x7f0000001880)="a5a946dfa59c56c5040e82ff2155422bd1f00ca1ac7f3d30880af71f2c81d3060a5209beceb3ffb8b8c3c53163a4bf4db8ab918b2a6b33b7add1ef9451745352a33a2576", 0x44, 0x3}, {&(0x7f0000001900)="5785f1e03d7fe42d6f82e6056e368cee598b9e104ffbe83925177d6f2eec22a3b72614ee152a807859cf14a80d199d4cdd7ea8039d36883d08b09dac46a9afc242a221c0a0c387cab287cda69c52b8f7", 0x50, 0x4}, {&(0x7f0000001980)="355bf7c42d2a8204094bb5e212007314469621ca8328ae2b0d06434a975fdd90d730f390bf8d9e9e6d0579", 0x2b, 0x7fff}], 0x202010, &(0x7f0000001ac0)={[{@compress_force_algo={'compress-force', 0x3d, 'zstd'}}, {@treelog='treelog'}], [{@audit='audit'}, {@subj_user={'subj_user', 0x3d, 'GPL]@eth0'}}, {@dont_hash='dont_hash'}, {@fsname={'fsname', 0x3d, '/dev/sequencer2\x00'}}]}) ptrace$setregs(0xf, 0xffffffffffffffff, 0x3, &(0x7f0000000180)="cc5fbdd2cb2e26d8c4e6caaf200ff4d70f4c0ac45752e5ca3ccc4e24df9972") [ 399.342693] ? save_trace+0x290/0x290 [ 399.346503] __kernfs_new_node+0x70/0x480 [ 399.350663] kernfs_new_node+0x80/0xf0 [ 399.354563] kernfs_create_dir_ns+0x41/0x140 [ 399.359094] internal_create_group+0xea/0x7b0 [ 399.363603] sysfs_create_group+0x20/0x30 [ 399.367762] lo_ioctl+0x1162/0x1cd0 [ 399.371405] ? loop_probe+0x160/0x160 [ 399.375235] blkdev_ioctl+0x95f/0x1850 [ 399.379140] ? blkpg_ioctl+0x970/0x970 [ 399.383048] ? __might_sleep+0x93/0xb0 [ 399.386939] ? __fget+0x210/0x370 [ 399.390523] block_ioctl+0xde/0x120 [ 399.394191] ? blkdev_fallocate+0x3b0/0x3b0 [ 399.398524] do_vfs_ioctl+0x7ae/0x1060 [ 399.402437] ? selinux_file_mprotect+0x5d0/0x5d0 [ 399.407201] ? lock_downgrade+0x740/0x740 [ 399.411370] ? ioctl_preallocate+0x1c0/0x1c0 [ 399.416744] ? __fget+0x237/0x370 [ 399.420215] ? security_file_ioctl+0x89/0xb0 [ 399.424769] SyS_ioctl+0x8f/0xc0 [ 399.428146] ? do_vfs_ioctl+0x1060/0x1060 [ 399.432304] do_syscall_64+0x1e8/0x640 [ 399.436288] ? trace_hardirqs_off_thunk+0x1a/0x1c 21:56:07 executing program 5: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendmsg$IPCTNL_MSG_EXP_NEW(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYRESHEX=r4], 0x1}, 0x1, 0x0, 0x0, 0x40}, 0x80) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = socket$phonet_pipe(0x23, 0x5, 0x2) r9 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') socket$phonet_pipe(0x23, 0x5, 0x2) r10 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r11 = dup3(0xffffffffffffffff, r10, 0x0) write$9p(r11, 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(r11, 0xc0106426, &(0x7f0000000340)={0x1, &(0x7f0000000180)=[{0x0}]}) ioctl$DRM_IOCTL_SET_SAREA_CTX(r2, 0x4010641c, &(0x7f0000000500)={r12, &(0x7f0000000440)=""/184}) r13 = dup3(r8, r9, 0x0) write$9p(r13, 0x0, 0x0) ioctl$PPPIOCGL2TPSTATS(r13, 0x80487436, &(0x7f0000000000)="c51ab83f38da6baefce92cfc7c6efea33fa2ad6fe43369eed792de1e44f4a32fed3ec973c66d30ac554f8912d1cb98596094fda682b001540186fcfc4022dadd73197948cb69fff7ca8c849fd92a46f093da6ef826f86fad75a8d907dd02fcaa1396b3ae431e82bd4b8033") ioctl$KVM_NMI(r7, 0xae9a) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r7, 0xae80, 0x0) [ 399.441142] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.446338] RIP: 0033:0x45c2b7 [ 399.449533] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 399.457251] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 399.464526] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 399.471977] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 399.479357] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 399.486650] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000c 21:56:07 executing program 4 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x1, 0x0) 21:56:07 executing program 2 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 399.616949] FAULT_INJECTION: forcing a failure. [ 399.616949] name failslab, interval 1, probability 0, space 0, times 0 [ 399.659383] CPU: 1 PID: 18895 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 399.667533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.676980] Call Trace: [ 399.679582] dump_stack+0x142/0x197 [ 399.683341] should_fail.cold+0x10f/0x159 [ 399.684470] FAULT_INJECTION: forcing a failure. [ 399.684470] name failslab, interval 1, probability 0, space 0, times 0 [ 399.687518] should_failslab+0xdb/0x130 [ 399.687534] kmem_cache_alloc+0x2d7/0x780 [ 399.687546] ? trace_hardirqs_on+0x10/0x10 [ 399.687555] ? save_trace+0x290/0x290 [ 399.687569] __kernfs_new_node+0x70/0x480 [ 399.719152] kernfs_new_node+0x80/0xf0 [ 399.723042] kernfs_create_dir_ns+0x41/0x140 [ 399.727453] internal_create_group+0xea/0x7b0 [ 399.731944] sysfs_create_group+0x20/0x30 [ 399.736085] lo_ioctl+0x1162/0x1cd0 [ 399.739832] ? loop_probe+0x160/0x160 [ 399.743628] blkdev_ioctl+0x95f/0x1850 [ 399.747516] ? blkpg_ioctl+0x970/0x970 [ 399.752380] ? __might_sleep+0x93/0xb0 [ 399.756261] ? __fget+0x210/0x370 [ 399.759714] block_ioctl+0xde/0x120 [ 399.763343] ? blkdev_fallocate+0x3b0/0x3b0 [ 399.767684] do_vfs_ioctl+0x7ae/0x1060 [ 399.771573] ? selinux_file_mprotect+0x5d0/0x5d0 [ 399.776321] ? lock_downgrade+0x740/0x740 [ 399.780464] ? ioctl_preallocate+0x1c0/0x1c0 [ 399.784876] ? __fget+0x237/0x370 [ 399.788342] ? security_file_ioctl+0x89/0xb0 [ 399.792763] SyS_ioctl+0x8f/0xc0 [ 399.796133] ? do_vfs_ioctl+0x1060/0x1060 [ 399.800280] do_syscall_64+0x1e8/0x640 [ 399.804193] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 399.809041] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.814228] RIP: 0033:0x45c2b7 [ 399.817414] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 399.825167] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 399.832437] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 399.840325] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 399.847725] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 21:56:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248526653", 0x46, 0x10000}], 0x1, 0x0) [ 399.854998] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000c [ 399.862292] CPU: 0 PID: 18911 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 399.870553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.880294] Call Trace: [ 399.883002] dump_stack+0x142/0x197 [ 399.886653] should_fail.cold+0x10f/0x159 [ 399.890947] should_failslab+0xdb/0x130 [ 399.894936] kmem_cache_alloc+0x2d7/0x780 [ 399.899097] ? trace_hardirqs_on+0x10/0x10 [ 399.903387] ? save_trace+0x290/0x290 [ 399.907192] __kernfs_new_node+0x70/0x480 [ 399.911351] kernfs_new_node+0x80/0xf0 [ 399.915261] kernfs_create_dir_ns+0x41/0x140 [ 399.919670] internal_create_group+0xea/0x7b0 [ 399.924169] sysfs_create_group+0x20/0x30 [ 399.928317] lo_ioctl+0x1162/0x1cd0 [ 399.931944] ? loop_probe+0x160/0x160 [ 399.935742] blkdev_ioctl+0x95f/0x1850 [ 399.939636] ? blkpg_ioctl+0x970/0x970 [ 399.943541] ? __might_sleep+0x93/0xb0 [ 399.947417] ? __fget+0x210/0x370 [ 399.950877] block_ioctl+0xde/0x120 [ 399.954626] ? blkdev_fallocate+0x3b0/0x3b0 [ 399.958958] do_vfs_ioctl+0x7ae/0x1060 [ 399.962856] ? selinux_file_mprotect+0x5d0/0x5d0 [ 399.967603] ? lock_downgrade+0x740/0x740 [ 399.971737] ? ioctl_preallocate+0x1c0/0x1c0 [ 399.976230] ? __fget+0x237/0x370 [ 399.979702] ? security_file_ioctl+0x89/0xb0 [ 399.984104] SyS_ioctl+0x8f/0xc0 [ 399.987463] ? do_vfs_ioctl+0x1060/0x1060 [ 399.991612] do_syscall_64+0x1e8/0x640 [ 399.995510] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 400.000353] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 400.005528] RIP: 0033:0x45c2b7 [ 400.008707] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 400.016408] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 400.023760] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 400.031031] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 400.038762] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 400.046028] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000d 21:56:09 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591", 0xe3}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:09 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x1, 0x0) 21:56:09 executing program 2 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000000080)=0x1000) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0x8) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:56:09 executing program 4 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:09 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x10d00, 0x1) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="c6ec327ab13c3652bbc334f350fda713e518d12fc247c4bebecbeb59bb4bb2dd4629c3e7798f88f6797819335e47b538f1ac8ec6882dd4399b040114531631eb67684b766ca94839fa4aa88c1f8c9230fe65b9c1abd66347582114f0f00f41f3c366378b96c5a27cbcefe376b78aa3d97f3893ca69ba329e425b78d29f80"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) getresuid(&(0x7f0000000540)=0x0, &(0x7f0000000580), &(0x7f00000005c0)) newfstatat(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640), 0x6000) getresuid(&(0x7f0000000780), &(0x7f00000007c0)=0x0, &(0x7f0000000800)) syz_mount_image$xfs(&(0x7f0000000380)='xfs\x00', &(0x7f00000003c0)='./file0\x00', 0x4, 0x2, &(0x7f0000000440)=[{&(0x7f0000000840)="9834a1aef8ac46d4a102600d002ed0b6487615f4c98975ecaad2e47369ac5135009eb3231937a4003c80de7fae9de2a2af47a484a191e3ecc077c9e29c11c310fbcd01aa87c57af2629e89923508b0c37d4cac017724743944a0ab8713bcb4975ee9752967bc40b97bc38fc13c84c94375852d9b17dc55e81dcc642a843f22323613543d42618ff5f8481f60d0c825cb8c0a5021222578952090b68ae90d44bf56137234606c868613c3deffc2529ab81a", 0xb1, 0xc83f}, {&(0x7f00000004c0)="ead8eb35c3e9e2843183c6f483377376ee077f081a4e89b1ed59a5aa88e7d5c015985038a8d3cee98aebb65b9e215df54bb88721cfcceb5f08d48e8c0eb6b4f0afbe81d6cb3993b6ab6f8c89965d86b7b8d6afe9ea90dd80be899ead7ec15c31ffd77e9b8c7c", 0x66, 0x2}], 0x2000080, &(0x7f00000006c0)={[{@nouuid='nouuid'}, {@nolazytime='nolazytime'}], [{@measure='measure'}, {@fowner_gt={'fowner>', r0}}, {@audit='audit'}, {@smackfsdef={'smackfsdef'}}, {@fowner_eq={'fowner', 0x3d, r1}}, {@pcr={'pcr', 0x3d, 0x1a}}, {@fsmagic={'fsmagic', 0x3d, 0xffff}}]}) open(&(0x7f0000000240)='./file0\x00', 0xa7340, 0x80) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000200)=ANY=[@ANYBLOB="cd93473b30cbeb2e24"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) utime(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x47}) [ 401.827262] FAULT_INJECTION: forcing a failure. [ 401.827262] name failslab, interval 1, probability 0, space 0, times 0 [ 401.839987] FAULT_INJECTION: forcing a failure. [ 401.839987] name failslab, interval 1, probability 0, space 0, times 0 [ 401.845941] CPU: 1 PID: 18936 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 401.859070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.868419] Call Trace: [ 401.871014] dump_stack+0x142/0x197 [ 401.874644] should_fail.cold+0x10f/0x159 [ 401.878784] should_failslab+0xdb/0x130 [ 401.882757] kmem_cache_alloc+0x2d7/0x780 [ 401.886904] ? trace_hardirqs_on+0x10/0x10 [ 401.891128] ? save_trace+0x290/0x290 [ 401.894919] __kernfs_new_node+0x70/0x480 [ 401.899068] kernfs_new_node+0x80/0xf0 [ 401.902944] kernfs_create_dir_ns+0x41/0x140 [ 401.907399] internal_create_group+0xea/0x7b0 [ 401.911890] sysfs_create_group+0x20/0x30 [ 401.916024] lo_ioctl+0x1162/0x1cd0 [ 401.919644] ? loop_probe+0x160/0x160 [ 401.923435] blkdev_ioctl+0x95f/0x1850 [ 401.927432] ? blkpg_ioctl+0x970/0x970 [ 401.931311] ? __might_sleep+0x93/0xb0 [ 401.935181] ? __fget+0x210/0x370 [ 401.938633] block_ioctl+0xde/0x120 [ 401.942260] ? blkdev_fallocate+0x3b0/0x3b0 [ 401.946597] do_vfs_ioctl+0x7ae/0x1060 [ 401.950483] ? selinux_file_mprotect+0x5d0/0x5d0 [ 401.956194] ? lock_downgrade+0x740/0x740 [ 401.960332] ? ioctl_preallocate+0x1c0/0x1c0 [ 401.964748] ? __fget+0x237/0x370 [ 401.968194] ? security_file_ioctl+0x89/0xb0 [ 401.972596] SyS_ioctl+0x8f/0xc0 [ 401.975962] ? do_vfs_ioctl+0x1060/0x1060 [ 401.980108] do_syscall_64+0x1e8/0x640 [ 401.983991] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 401.988837] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 401.994013] RIP: 0033:0x45c2b7 [ 401.997187] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 402.004988] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 402.012253] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 402.019515] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 402.026918] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 402.034177] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000d [ 402.041570] CPU: 0 PID: 18937 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 402.049478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.058822] Call Trace: [ 402.061416] dump_stack+0x142/0x197 [ 402.065056] should_fail.cold+0x10f/0x159 [ 402.069198] should_failslab+0xdb/0x130 [ 402.073165] kmem_cache_alloc+0x47/0x780 [ 402.077206] ? save_stack+0x45/0xd0 [ 402.080822] ? kasan_kmalloc+0xce/0xf0 [ 402.084808] ? kasan_slab_alloc+0xf/0x20 [ 402.088848] ? kmem_cache_alloc+0x12e/0x780 [ 402.093157] ? __kernfs_new_node+0x70/0x480 [ 402.097512] ? kernfs_new_node+0x80/0xf0 [ 402.101559] ? kernfs_create_dir_ns+0x41/0x140 [ 402.106123] ? internal_create_group+0xea/0x7b0 [ 402.110786] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 402.116410] idr_get_free_cmn+0x5a4/0x8e0 [ 402.120552] idr_alloc_cmn+0x10e/0x210 [ 402.124512] ? __fprop_inc_percpu_max+0x1e0/0x1e0 [ 402.129488] ? __lock_is_held+0xb6/0x140 [ 402.133538] ? check_preemption_disabled+0x3c/0x250 [ 402.138571] idr_alloc_cyclic+0xd0/0x1e2 [ 402.142628] ? ida_simple_remove+0x60/0x60 [ 402.146946] __kernfs_new_node+0xb0/0x480 [ 402.151084] kernfs_new_node+0x80/0xf0 [ 402.155452] kernfs_create_dir_ns+0x41/0x140 [ 402.159843] internal_create_group+0xea/0x7b0 [ 402.164325] sysfs_create_group+0x20/0x30 [ 402.168464] lo_ioctl+0x1162/0x1cd0 [ 402.172087] ? loop_probe+0x160/0x160 [ 402.175989] blkdev_ioctl+0x95f/0x1850 [ 402.179860] ? blkpg_ioctl+0x970/0x970 [ 402.183733] ? __might_sleep+0x93/0xb0 [ 402.187606] ? __fget+0x210/0x370 [ 402.191051] block_ioctl+0xde/0x120 [ 402.194667] ? blkdev_fallocate+0x3b0/0x3b0 [ 402.199010] do_vfs_ioctl+0x7ae/0x1060 [ 402.202878] ? selinux_file_mprotect+0x5d0/0x5d0 [ 402.207620] ? lock_downgrade+0x740/0x740 [ 402.211753] ? ioctl_preallocate+0x1c0/0x1c0 [ 402.216170] ? __fget+0x237/0x370 [ 402.219666] ? security_file_ioctl+0x89/0xb0 [ 402.224065] SyS_ioctl+0x8f/0xc0 [ 402.227417] ? do_vfs_ioctl+0x1060/0x1060 [ 402.231557] do_syscall_64+0x1e8/0x640 [ 402.235427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 402.240266] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 402.245438] RIP: 0033:0x45c2b7 [ 402.248645] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 402.256520] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 402.263771] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 402.271031] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 402.278333] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 402.285595] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000e [ 402.322163] XFS (loop3): unknown mount option [nolazytime]. 21:56:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000000)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x510e425f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x8000000000000]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x60800, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000180)={0x0, 0x6, 0x8001}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r3, 0x84, 0x5, &(0x7f00000002c0)={r4, @in6={{0xa, 0x4e21, 0x10001, @dev={0xfe, 0x80, [], 0x28}, 0xfffffffc}}}, 0x84) sysfs$1(0x1, &(0x7f0000000080)='/dev/kvm\x00') 21:56:10 executing program 4 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:10 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x1185c82, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="7c9ca90feacd5db0892f"], &(0x7f00000001c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:10 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x1, 0x0) 21:56:10 executing program 2 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 402.522603] FAULT_INJECTION: forcing a failure. [ 402.522603] name failslab, interval 1, probability 0, space 0, times 0 [ 402.533927] FAULT_INJECTION: forcing a failure. [ 402.533927] name failslab, interval 1, probability 0, space 0, times 0 [ 402.533944] CPU: 1 PID: 18969 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 402.552995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.562344] Call Trace: [ 402.564952] dump_stack+0x142/0x197 [ 402.568582] should_fail.cold+0x10f/0x159 [ 402.572720] should_failslab+0xdb/0x130 [ 402.576692] kmem_cache_alloc+0x2d7/0x780 [ 402.580830] ? __mutex_unlock_slowpath+0x71/0x800 [ 402.585666] ? __lock_is_held+0xb6/0x140 [ 402.589725] __kernfs_new_node+0x70/0x480 [ 402.593872] kernfs_new_node+0x80/0xf0 [ 402.597815] __kernfs_create_file+0x46/0x323 [ 402.602220] sysfs_add_file_mode_ns+0x1e4/0x450 [ 402.606886] internal_create_group+0x232/0x7b0 [ 402.611470] sysfs_create_group+0x20/0x30 [ 402.615614] lo_ioctl+0x1162/0x1cd0 [ 402.619228] ? loop_probe+0x160/0x160 [ 402.623021] blkdev_ioctl+0x95f/0x1850 [ 402.626902] ? blkpg_ioctl+0x970/0x970 [ 402.630785] ? __might_sleep+0x93/0xb0 [ 402.634673] ? __fget+0x210/0x370 [ 402.638172] block_ioctl+0xde/0x120 [ 402.641786] ? blkdev_fallocate+0x3b0/0x3b0 [ 402.646102] do_vfs_ioctl+0x7ae/0x1060 [ 402.650018] ? selinux_file_mprotect+0x5d0/0x5d0 [ 402.654775] ? lock_downgrade+0x740/0x740 [ 402.658917] ? ioctl_preallocate+0x1c0/0x1c0 [ 402.663310] ? __fget+0x237/0x370 [ 402.666772] ? security_file_ioctl+0x89/0xb0 [ 402.671202] SyS_ioctl+0x8f/0xc0 [ 402.674555] ? do_vfs_ioctl+0x1060/0x1060 [ 402.678700] do_syscall_64+0x1e8/0x640 [ 402.682584] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 402.687432] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 402.692619] RIP: 0033:0x45c2b7 [ 402.695793] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 402.703497] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 402.710756] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 402.718019] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 402.725281] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 402.732544] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000e [ 402.758497] CPU: 0 PID: 18974 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 21:56:10 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f", 0x47, 0x10000}], 0x1, 0x0) [ 402.766417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.775770] Call Trace: [ 402.778368] dump_stack+0x142/0x197 [ 402.782021] should_fail.cold+0x10f/0x159 [ 402.786179] should_failslab+0xdb/0x130 [ 402.790162] kmem_cache_alloc+0x2d7/0x780 [ 402.794315] ? wait_for_completion+0x420/0x420 [ 402.798916] __kernfs_new_node+0x70/0x480 [ 402.803063] ? kernfs_activate+0x13a/0x190 [ 402.807303] kernfs_new_node+0x80/0xf0 [ 402.811201] __kernfs_create_file+0x46/0x323 [ 402.815746] sysfs_add_file_mode_ns+0x1e4/0x450 [ 402.820430] internal_create_group+0x232/0x7b0 [ 402.825011] sysfs_create_group+0x20/0x30 [ 402.829144] lo_ioctl+0x1162/0x1cd0 [ 402.832769] ? loop_probe+0x160/0x160 [ 402.836556] blkdev_ioctl+0x95f/0x1850 [ 402.840440] ? blkpg_ioctl+0x970/0x970 [ 402.844335] ? __might_sleep+0x93/0xb0 [ 402.848207] ? __fget+0x210/0x370 [ 402.851650] block_ioctl+0xde/0x120 [ 402.855275] ? blkdev_fallocate+0x3b0/0x3b0 [ 402.859595] do_vfs_ioctl+0x7ae/0x1060 [ 402.863473] ? selinux_file_mprotect+0x5d0/0x5d0 [ 402.868227] ? lock_downgrade+0x740/0x740 [ 402.872384] ? ioctl_preallocate+0x1c0/0x1c0 [ 402.876784] ? __fget+0x237/0x370 [ 402.880232] ? security_file_ioctl+0x89/0xb0 [ 402.884741] SyS_ioctl+0x8f/0xc0 [ 402.888097] ? do_vfs_ioctl+0x1060/0x1060 [ 402.892241] do_syscall_64+0x1e8/0x640 [ 402.896128] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 402.900976] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 402.906163] RIP: 0033:0x45c2b7 [ 402.909344] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 402.917044] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 402.924508] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 402.931777] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 402.939139] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 402.946404] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000f 21:56:12 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591", 0xe3}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:12 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb], 0x5000}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:56:12 executing program 4 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:12 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x1, 0x0) 21:56:12 executing program 2 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:12 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r0 = accept(0xffffffffffffffff, &(0x7f00000001c0)=@can, &(0x7f0000000240)=0x80) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000300)) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000340)={0x0, 0x0}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$VIDIOC_QBUF(r3, 0xc058560f, &(0x7f0000000380)={0x0, 0x2, 0x4, 0x40000, 0x6, {r4, r5/1000+10000}, {0x0, 0x8, 0x1, 0x3, 0x8, 0x6, "2536fd0d"}, 0x80, 0x1, @offset=0x2, 0x7fff, 0x0, r8}) ioctl$RTC_PIE_ON(r9, 0x7005) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000040)=@md0='/dev/md0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x307c31, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 404.884900] FAULT_INJECTION: forcing a failure. [ 404.884900] name failslab, interval 1, probability 0, space 0, times 0 [ 404.885033] FAULT_INJECTION: forcing a failure. [ 404.885033] name failslab, interval 1, probability 0, space 0, times 0 [ 404.915407] CPU: 1 PID: 19011 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 404.923310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 404.932706] Call Trace: [ 404.935300] dump_stack+0x142/0x197 [ 404.939469] should_fail.cold+0x10f/0x159 [ 404.943624] should_failslab+0xdb/0x130 [ 404.947606] kmem_cache_alloc+0x2d7/0x780 [ 404.951757] ? wait_for_completion+0x420/0x420 [ 404.956342] __kernfs_new_node+0x70/0x480 [ 404.960489] ? kernfs_activate+0x13a/0x190 [ 404.964728] kernfs_new_node+0x80/0xf0 [ 404.968616] __kernfs_create_file+0x46/0x323 [ 404.973031] sysfs_add_file_mode_ns+0x1e4/0x450 [ 404.977703] internal_create_group+0x232/0x7b0 21:56:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000000)="9a00701d009a0060b1006766c7442400000000006766c744240210dd28fa6766c744240600000000670f01142465260f01bd00106403daf30f20a366f30f09ba2000ec0f45e566b80500000066b9004000000f01d9", 0x55}], 0x1, 0x20, &(0x7f0000000140), 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_NMI(r7, 0xae9a) ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, &(0x7f0000000140)={0xf9, 0x0, 0x81}) [ 404.982292] sysfs_create_group+0x20/0x30 [ 404.986441] lo_ioctl+0x1162/0x1cd0 [ 404.990073] ? loop_probe+0x160/0x160 [ 404.993877] blkdev_ioctl+0x95f/0x1850 [ 404.997772] ? blkpg_ioctl+0x970/0x970 [ 405.001673] ? __might_sleep+0x93/0xb0 [ 405.005562] ? __fget+0x210/0x370 [ 405.009026] block_ioctl+0xde/0x120 [ 405.012769] ? blkdev_fallocate+0x3b0/0x3b0 [ 405.017244] do_vfs_ioctl+0x7ae/0x1060 [ 405.021135] ? selinux_file_mprotect+0x5d0/0x5d0 [ 405.025896] ? lock_downgrade+0x740/0x740 [ 405.030165] ? ioctl_preallocate+0x1c0/0x1c0 [ 405.034578] ? __fget+0x237/0x370 [ 405.038035] ? security_file_ioctl+0x89/0xb0 [ 405.042450] SyS_ioctl+0x8f/0xc0 [ 405.045870] ? do_vfs_ioctl+0x1060/0x1060 [ 405.050041] do_syscall_64+0x1e8/0x640 [ 405.053930] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.058780] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.063983] RIP: 0033:0x45c2b7 [ 405.067172] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 405.075014] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 405.082285] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 405.089555] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 405.096829] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 405.104101] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000010 [ 405.123825] CPU: 0 PID: 19009 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 405.131773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.141388] Call Trace: [ 405.143986] dump_stack+0x142/0x197 [ 405.148311] should_fail.cold+0x10f/0x159 [ 405.152592] should_failslab+0xdb/0x130 [ 405.156560] kmem_cache_alloc+0x2d7/0x780 [ 405.160711] ? __mutex_unlock_slowpath+0x71/0x800 [ 405.165545] ? __lock_is_held+0xb6/0x140 [ 405.170217] __kernfs_new_node+0x70/0x480 [ 405.174365] kernfs_new_node+0x80/0xf0 [ 405.178274] __kernfs_create_file+0x46/0x323 [ 405.182688] sysfs_add_file_mode_ns+0x1e4/0x450 [ 405.187361] internal_create_group+0x232/0x7b0 [ 405.191936] sysfs_create_group+0x20/0x30 [ 405.196073] lo_ioctl+0x1162/0x1cd0 [ 405.199713] ? loop_probe+0x160/0x160 [ 405.203518] blkdev_ioctl+0x95f/0x1850 [ 405.207397] ? blkpg_ioctl+0x970/0x970 [ 405.211303] ? __might_sleep+0x93/0xb0 [ 405.215188] ? __fget+0x210/0x370 [ 405.218644] block_ioctl+0xde/0x120 [ 405.222276] ? blkdev_fallocate+0x3b0/0x3b0 [ 405.226595] do_vfs_ioctl+0x7ae/0x1060 [ 405.230488] ? selinux_file_mprotect+0x5d0/0x5d0 [ 405.235355] ? lock_downgrade+0x740/0x740 [ 405.239492] ? ioctl_preallocate+0x1c0/0x1c0 [ 405.243887] ? __fget+0x237/0x370 [ 405.247331] ? security_file_ioctl+0x89/0xb0 [ 405.251743] SyS_ioctl+0x8f/0xc0 [ 405.255098] ? do_vfs_ioctl+0x1060/0x1060 [ 405.259246] do_syscall_64+0x1e8/0x640 [ 405.263124] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.267959] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.273140] RIP: 0033:0x45c2b7 [ 405.276323] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:56:13 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x1, 0x0) [ 405.284021] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 405.291277] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 405.298544] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 405.305810] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 405.313069] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000f 21:56:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r2, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r2, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r2, &(0x7f0000000840)="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", 0x599, 0x48d4, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @remote}, 0x1c) recvmsg(r2, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r2, 0x8983, &(0x7f0000000140)={0x7, 'ip6erspan0\x00', {0x1000000}, 0x4}) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0xbd58, 0xfb, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r4, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r4, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r4, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d56130f7149fb1111fa116e94324d585a0569fbd311dad54cb4e32ff7f02216844ef42eeb66c3d526c878d5135ad1c9262239339c18885e2a0a95854d6cde3dd2feeaa50216af6c5760923413af81199a65a6332b02ec7bbf79d557c033cbe032fdc44f66a5c59cc4a3c5d218f5896b359d1efd60baf98df6396567478f7b817ce6e11d59a7def452a0e1d0607f57f626a5b8d476636ef1ee76307524009ae49be4db0ab2c8ea0c5ebd1e80fed632155e14da1f7324d97bc61a3c1edc4431ee8a6caa2ed9f85cea5a2a9b263630c7d6fc35dda6002da571a2e51917e7c1019d8ce21a608147e408cc4c7c5f444fab931bda86d977d7c9ccefd881e5ef05b287f41eea526862885881c2cdc687dff02ba9b70a9b08734ac4d62c7f34465c34aa9e9f136c7f796d9eea41aa37f61830508338bb1f887089070567a1dd96cd700e7a098dabedb60f31acd17d487bc8be1a3101d2b5ac1715003793596c6daa93a27f4adb4d6fbea5669c24c206c944317ea18a2c762457f1bc945fec8f849641d44e7e2a24faeee28f3f266395fe18b0dce20c1f64e8896c8ff0e4a44a116fb32462471a0fcde143e551723d57339722765673b4163d66f473ac10f988cb25c89074fcb1bba20c41bddd9ca5cd2f106632f9884a47866d284b4efc6bb1aa74ed48d4a6535795f0873a99907ebc22be2337364cf9acc063e32f7d2ebdfad64d04aa405d2dbdee1128ab1e4761d2dd30885ad37dd168478f10789d172feef4c817a5cd372caade57f23300e45f47e001e3ea09364ab42ee9802477368b9910f4e24037c871cb8251568c792287a6f49fa61b7c2600accaa0e7b40c5912a9e100225c70441144ffa82927fa4802ed9ebb03eea8e945af5f4993f21a7f53baf7ec5bb6cc96b917dde82c18840c3500e9565f68f687b1c73d834c0d99d4acb002dc5682dbcdb1217a98f6c3ef8318b7fa93894e8a097b4511ba5c035e27c9fe8bfe7754741ac21bbc0303b81672e3117e5590fe2d92f912759b9937f64204ec5caa92e218daa5a3ef64617beb30cccb31016b13ed8d7bcabb03e176b1c9bda3bf1c1256ab74ab6f42ed9bafbbd0096263be1a7da1e1c88deec55a653d170e1e13c77dacaa60a37a6ba2383e661ebc9f13dbaade2dd884c9951819fb4608e19e70cd2496ccfb12f24c71f496cfe9bc88fe1bbea1e9a24b1d4664fb0776aca6269b396779680e52f86877d9209988d12ccb137be01ab7496d00547a7d4849d365a18dbb55c429cde87d33c4b74ad2273cdfee88b5418866ef327f25e9cbcd5a64d97184339f7e4cb5f8de171d2779c0f68884ae835e398f982d5749f085628d3608986656ea04b721f828202e9342bd7d19dfa091e772aebf9718030167a8c029df7c58b7f400582bd95e5ad802050d8775ef373e8e2c5bf3525f907add3be426cd5a079c49abffe933e9ee213a3baf34f932d1299312691e1c53e6247ae0989ad66070d51fad22856a8b6b28954e7d41189b11c5321789eec8670de9e8db0b0473ba2e02731e60be632697d61e052c18d4bcc6d1572fdf426f7b2fee6c1dee66c85c497b90facaf63b8ec5cde4a73400f9180bcfc0f81eca9580a7c81462a077f9034026bf72aa7c6de4b3c15d4a2dbd6fd7d87084aea9f25fb4bf5ec83eb56874a760533792dff2695407ccdd6a7375e0007230fd3f6501c152f1c1ff279b1d67cc95f2820762b7927659368e41657bdef2dd15b63498a93b787bdb26809d734aaf98b86fcf9fc643a34d03ebbe072820662d20f4774d66c5ae0a0adade5b8f6242a059b926221ee3d677487471c432b0d6d64dad030703475bb3ecac39b204a814f5ece5961621358e36f8a2cf7196c76959824bbb475a7cad8f57853fe05f59f341b5", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r4, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r4, 0x29, 0x2d, &(0x7f00000002c0)={0x6, {{0xa, 0x4e20, 0x5, @local, 0x4}}}, 0x88) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x60c1c0, 0x0) ioctl$sock_ax25_SIOCADDRT(r5, 0x890b, &(0x7f0000000040)={@bcast, @null, 0x0, [@default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) msgget$private(0x0, 0x82) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffffffffffe], 0xd000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 21:56:13 executing program 2 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:13 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_DIRTYFB(r2, 0xc01864b1, &(0x7f0000000180)={0x5, 0x2, 0x726, 0x2, &(0x7f0000000040)=[{0x9, 0x7, 0x7ff}, {0x1000, 0x9, 0x0, 0x9}]}) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:13 executing program 4 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 405.481187] FAULT_INJECTION: forcing a failure. [ 405.481187] name failslab, interval 1, probability 0, space 0, times 0 [ 405.502617] CPU: 0 PID: 19046 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 405.510883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.516385] FAULT_INJECTION: forcing a failure. [ 405.516385] name failslab, interval 1, probability 0, space 0, times 0 [ 405.520583] Call Trace: [ 405.520603] dump_stack+0x142/0x197 [ 405.520622] should_fail.cold+0x10f/0x159 [ 405.520670] should_failslab+0xdb/0x130 [ 405.546138] kmem_cache_alloc+0x2d7/0x780 [ 405.550285] ? wait_for_completion+0x420/0x420 [ 405.554873] __kernfs_new_node+0x70/0x480 [ 405.559011] ? kernfs_activate+0x13a/0x190 [ 405.563245] kernfs_new_node+0x80/0xf0 [ 405.567130] __kernfs_create_file+0x46/0x323 [ 405.571529] sysfs_add_file_mode_ns+0x1e4/0x450 [ 405.576197] internal_create_group+0x232/0x7b0 [ 405.580783] sysfs_create_group+0x20/0x30 [ 405.584932] lo_ioctl+0x1162/0x1cd0 [ 405.588569] ? loop_probe+0x160/0x160 [ 405.592371] blkdev_ioctl+0x95f/0x1850 [ 405.596251] ? blkpg_ioctl+0x970/0x970 [ 405.600134] ? __might_sleep+0x93/0xb0 [ 405.604020] ? __fget+0x210/0x370 [ 405.607509] block_ioctl+0xde/0x120 [ 405.611140] ? blkdev_fallocate+0x3b0/0x3b0 [ 405.615453] do_vfs_ioctl+0x7ae/0x1060 [ 405.619339] ? selinux_file_mprotect+0x5d0/0x5d0 [ 405.624091] ? lock_downgrade+0x740/0x740 [ 405.628235] ? ioctl_preallocate+0x1c0/0x1c0 [ 405.632655] ? __fget+0x237/0x370 [ 405.636117] ? security_file_ioctl+0x89/0xb0 [ 405.640523] SyS_ioctl+0x8f/0xc0 [ 405.643885] ? do_vfs_ioctl+0x1060/0x1060 [ 405.648027] do_syscall_64+0x1e8/0x640 [ 405.651914] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.656759] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.662142] RIP: 0033:0x45c2b7 [ 405.665321] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 405.673022] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 405.680280] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 405.687539] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 405.694798] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 405.702058] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000011 [ 405.709423] CPU: 1 PID: 19053 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 405.717311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.726664] Call Trace: [ 405.729243] dump_stack+0x142/0x197 [ 405.732872] should_fail.cold+0x10f/0x159 [ 405.737029] should_failslab+0xdb/0x130 [ 405.740993] kmem_cache_alloc+0x2d7/0x780 [ 405.745138] ? wait_for_completion+0x420/0x420 [ 405.749737] __kernfs_new_node+0x70/0x480 [ 405.753906] ? kernfs_activate+0x13a/0x190 [ 405.758144] kernfs_new_node+0x80/0xf0 [ 405.762028] __kernfs_create_file+0x46/0x323 [ 405.766439] sysfs_add_file_mode_ns+0x1e4/0x450 [ 405.771106] internal_create_group+0x232/0x7b0 [ 405.775691] sysfs_create_group+0x20/0x30 [ 405.779836] lo_ioctl+0x1162/0x1cd0 [ 405.783462] ? loop_probe+0x160/0x160 [ 405.787257] blkdev_ioctl+0x95f/0x1850 [ 405.791140] ? blkpg_ioctl+0x970/0x970 [ 405.795027] ? __might_sleep+0x93/0xb0 [ 405.798902] ? __fget+0x210/0x370 [ 405.802351] block_ioctl+0xde/0x120 [ 405.805965] ? blkdev_fallocate+0x3b0/0x3b0 [ 405.810279] do_vfs_ioctl+0x7ae/0x1060 [ 405.814166] ? selinux_file_mprotect+0x5d0/0x5d0 [ 405.818934] ? lock_downgrade+0x740/0x740 [ 405.823078] ? ioctl_preallocate+0x1c0/0x1c0 [ 405.827477] ? __fget+0x237/0x370 [ 405.830927] ? security_file_ioctl+0x89/0xb0 [ 405.835372] SyS_ioctl+0x8f/0xc0 [ 405.838736] ? do_vfs_ioctl+0x1060/0x1060 [ 405.842879] do_syscall_64+0x1e8/0x640 [ 405.846760] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 405.851605] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.856791] RIP: 0033:0x45c2b7 [ 405.860019] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 405.867731] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 405.874990] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 405.882253] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 405.889518] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 405.896789] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000010 21:56:15 executing program 2 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:15 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48}], 0x1, 0x0) 21:56:15 executing program 4 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:15 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/enforce\x00', 0x404000, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000180)={0x7f20, 0x9, 0xff, 0x31f1, 0x101, 0xc3}) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:15 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619e", 0x109}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) getsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r5 = socket$phonet_pipe(0x23, 0x5, 0x2) r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') syz_open_dev$ptys(0xc, 0x3, 0x0) r7 = dup3(r5, r6, 0x0) write$9p(r7, 0x0, 0x0) r8 = openat$cgroup_ro(r7, &(0x7f00000001c0)='cgroup.stat\x00', 0x0, 0x0) setsockopt$bt_BT_DEFER_SETUP(r8, 0x112, 0x7, &(0x7f00000002c0), 0x4) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0xfb, 0x0, 0x0, 0x100000000000, 0x4, 0x0, 0x4, 0x1000000000, 0x800000000, 0xfffffffffffffc01]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) ioctl$KVM_SET_REGS(r12, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_NMI(r9, 0xae9a) ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r9, 0xae80, 0x0) r13 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x2, 0x80a00) ioctl$VIDIOC_G_AUDOUT(r13, 0x80345631, &(0x7f0000000180)) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r13, 0x8982, &(0x7f0000000300)) [ 407.910540] FAULT_INJECTION: forcing a failure. [ 407.910540] name failslab, interval 1, probability 0, space 0, times 0 [ 407.928004] FAULT_INJECTION: forcing a failure. [ 407.928004] name failslab, interval 1, probability 0, space 0, times 0 [ 407.932149] CPU: 0 PID: 19082 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 407.947118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 407.956472] Call Trace: [ 407.959066] dump_stack+0x142/0x197 [ 407.962695] should_fail.cold+0x10f/0x159 [ 407.966854] should_failslab+0xdb/0x130 [ 407.970836] kmem_cache_alloc+0x2d7/0x780 [ 407.975012] ? wait_for_completion+0x420/0x420 [ 407.979728] __kernfs_new_node+0x70/0x480 [ 407.983882] ? kernfs_activate+0x13a/0x190 [ 407.988169] kernfs_new_node+0x80/0xf0 [ 407.992081] __kernfs_create_file+0x46/0x323 [ 407.996480] sysfs_add_file_mode_ns+0x1e4/0x450 [ 408.001151] internal_create_group+0x232/0x7b0 [ 408.005745] sysfs_create_group+0x20/0x30 [ 408.009897] lo_ioctl+0x1162/0x1cd0 [ 408.013594] ? loop_probe+0x160/0x160 [ 408.017396] blkdev_ioctl+0x95f/0x1850 [ 408.021288] ? blkpg_ioctl+0x970/0x970 [ 408.025179] ? __might_sleep+0x93/0xb0 [ 408.029058] ? __fget+0x210/0x370 [ 408.032612] block_ioctl+0xde/0x120 [ 408.036238] ? blkdev_fallocate+0x3b0/0x3b0 [ 408.040560] do_vfs_ioctl+0x7ae/0x1060 [ 408.044443] ? selinux_file_mprotect+0x5d0/0x5d0 [ 408.049193] ? lock_downgrade+0x740/0x740 [ 408.053356] ? ioctl_preallocate+0x1c0/0x1c0 [ 408.057762] ? __fget+0x237/0x370 [ 408.061219] ? security_file_ioctl+0x89/0xb0 [ 408.065640] SyS_ioctl+0x8f/0xc0 [ 408.069004] ? do_vfs_ioctl+0x1060/0x1060 [ 408.073159] do_syscall_64+0x1e8/0x640 [ 408.077049] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.081895] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.087076] RIP: 0033:0x45c2b7 [ 408.090257] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.097964] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 408.105228] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 408.112501] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 408.119767] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 408.127027] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000011 21:56:16 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x109}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 408.154536] CPU: 1 PID: 19087 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 408.162577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.171932] Call Trace: [ 408.174527] dump_stack+0x142/0x197 [ 408.178172] should_fail.cold+0x10f/0x159 [ 408.182446] should_failslab+0xdb/0x130 [ 408.186426] kmem_cache_alloc+0x2d7/0x780 [ 408.190706] ? wait_for_completion+0x420/0x420 [ 408.195296] __kernfs_new_node+0x70/0x480 [ 408.199446] ? kernfs_activate+0x13a/0x190 21:56:16 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 408.203686] kernfs_new_node+0x80/0xf0 [ 408.207580] __kernfs_create_file+0x46/0x323 [ 408.212000] sysfs_add_file_mode_ns+0x1e4/0x450 [ 408.216680] internal_create_group+0x232/0x7b0 [ 408.221277] sysfs_create_group+0x20/0x30 [ 408.225656] lo_ioctl+0x1162/0x1cd0 [ 408.229728] ? loop_probe+0x160/0x160 [ 408.233540] blkdev_ioctl+0x95f/0x1850 [ 408.237443] ? blkpg_ioctl+0x970/0x970 [ 408.241333] ? __might_sleep+0x93/0xb0 [ 408.245213] ? __fget+0x210/0x370 [ 408.248678] block_ioctl+0xde/0x120 [ 408.252301] ? blkdev_fallocate+0x3b0/0x3b0 [ 408.256625] do_vfs_ioctl+0x7ae/0x1060 [ 408.260511] ? selinux_file_mprotect+0x5d0/0x5d0 [ 408.265262] ? lock_downgrade+0x740/0x740 [ 408.269409] ? ioctl_preallocate+0x1c0/0x1c0 [ 408.273822] ? __fget+0x237/0x370 [ 408.277270] ? security_file_ioctl+0x89/0xb0 [ 408.281678] SyS_ioctl+0x8f/0xc0 [ 408.285040] ? do_vfs_ioctl+0x1060/0x1060 [ 408.289188] do_syscall_64+0x1e8/0x640 [ 408.293071] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.297905] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.303085] RIP: 0033:0x45c2b7 [ 408.306259] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.313955] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 408.321224] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 408.328487] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 408.335750] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 408.343005] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000012 21:56:16 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:16 executing program 4 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:16 executing program 2 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000000080)=0x1000) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0x8) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 408.498791] FAULT_INJECTION: forcing a failure. [ 408.498791] name failslab, interval 1, probability 0, space 0, times 0 [ 408.534523] CPU: 1 PID: 19117 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 408.542438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.551924] Call Trace: [ 408.554526] dump_stack+0x142/0x197 [ 408.558160] should_fail.cold+0x10f/0x159 [ 408.562350] should_failslab+0xdb/0x130 [ 408.566318] kmem_cache_alloc+0x2d7/0x780 [ 408.570460] ? wait_for_completion+0x420/0x420 [ 408.575038] __kernfs_new_node+0x70/0x480 [ 408.579166] ? kernfs_activate+0x13a/0x190 [ 408.583399] kernfs_new_node+0x80/0xf0 [ 408.587336] __kernfs_create_file+0x46/0x323 [ 408.591740] sysfs_add_file_mode_ns+0x1e4/0x450 [ 408.596509] internal_create_group+0x232/0x7b0 [ 408.601207] sysfs_create_group+0x20/0x30 [ 408.605350] lo_ioctl+0x1162/0x1cd0 [ 408.609011] ? loop_probe+0x160/0x160 [ 408.612802] blkdev_ioctl+0x95f/0x1850 [ 408.616683] ? blkpg_ioctl+0x970/0x970 [ 408.620567] ? __might_sleep+0x93/0xb0 [ 408.624494] ? __fget+0x210/0x370 [ 408.627934] block_ioctl+0xde/0x120 [ 408.631566] ? blkdev_fallocate+0x3b0/0x3b0 [ 408.635908] do_vfs_ioctl+0x7ae/0x1060 [ 408.639805] ? selinux_file_mprotect+0x5d0/0x5d0 [ 408.644566] ? lock_downgrade+0x740/0x740 [ 408.648720] ? ioctl_preallocate+0x1c0/0x1c0 [ 408.653140] ? __fget+0x237/0x370 [ 408.656717] ? security_file_ioctl+0x89/0xb0 [ 408.661246] SyS_ioctl+0x8f/0xc0 [ 408.664616] ? do_vfs_ioctl+0x1060/0x1060 [ 408.668774] do_syscall_64+0x1e8/0x640 [ 408.672666] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.677523] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.682711] RIP: 0033:0x45c2b7 [ 408.685901] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:56:16 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r6, 0x40045612, &(0x7f0000001b40)=0x3) syz_mount_image$btrfs(&(0x7f0000000400)='btrfs\x00', &(0x7f0000000440)='./file0\x00', 0xccb, 0x9, &(0x7f00000019c0)=[{&(0x7f00000004c0)="149788bdc450d0d2b532ad1a1c87967718414abcd21fdb3e6f3db7520cfdb329678c2f5497e489f93819d78f44ee75c63610ecf648e2834fc220e165f254785f1cd956614d99c5aaa5c859992a49fd194603bcf9147927c74eb6ab065d6ef150ec9636701dd3329e26ef7a76fb01b6a45ec1928df1ff3fe1a62c28dde4d130c93b74d173b270f318ca4ccd031b3755333c51363e9000bcedf3ee7d35c89e31aee1109d867efc04ccf524fc080336e449bf2c86751a2fb5cd574fa4c8e3a94cf47b671ba8363c6eac2370e702", 0xcc, 0x100000000}, {&(0x7f00000005c0)="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", 0x1000, 0x5}, {&(0x7f00000015c0)="daf1ffa4010e0e5ec9e9937d5f7dc0eb045760b520f95b9a6194b8c193c60682a78fb6bbff0e021ee34bf013dd1ae7e59997a4f6e14dc1a056ea3e793d95f7d39d992c9d857e14e2da0652fe4d159752abbbe6fc6b4380b137a97fb389cf2ee6969bba7915bc36fe92e09ce5cc40a88ba8a528c6bbf4fa92513bbbdcece8892f246f221a467c255b99cdad40f303e0e977c31a825dc5f367e70c2cd8483b97e24319cd369fdc215e", 0xa8, 0x8}, {&(0x7f0000001680)="ac669836c4bd1752fae5756e78224b6e59db61239bf5bea21d6d0e16e681346acc0e587d8a73132631cba8dc01d2ad1c98e1fd39b1f89b4fa0e38f4e4de3212078dafeb1e522ac4fbf3d", 0x4a, 0x4}, {&(0x7f0000001700)="28cca887033dd546728b34ddf05f33c6c8577f2272fc03178210626c286d0c44f2fb27ba0d2437384ab6310306af350181ce22c4653fece307b257f341ac8930a54ff5f3465831e6d15cdf53d0643eeb27d8b9f979b01f17848a786a0e1b1a51c3f5b22238a943148d1e11d54f435c7fcc4422473f0deda41b8dce64564bee7253294a331165b467ca44911d08e51b2a9993de26aa6adea53e8cdd559b6501150898e531d3a16b91a6c25e6218d5fdf496dd", 0xb2, 0x1f}, {&(0x7f00000017c0)="a65de28ee7c592cfa915bca9ad7e492b94e6ffc7b2809de098c9ba90b3ca18dc11c723a1d9325a21e20f364e7c1130676115636596f50c03459e42e3e6de8c8dae5bf0eb1fc1d825890e67fcb6c7e2d578bed0a7a3e6afc0236fe3060530af9f95195b9fd38f7cd036702d11e8fb2f21e2a3f5bda03353811c78abdf6ac8e314f3fdbf0956fa6d18ed265f83bb17bc0928c17c40c09f94f2a5404a6e49ef6988e8953e0c19dc267dba07870fe8001808d7e8cf071f", 0xb5, 0x7}, {&(0x7f0000001880)="a5a946dfa59c56c5040e82ff2155422bd1f00ca1ac7f3d30880af71f2c81d3060a5209beceb3ffb8b8c3c53163a4bf4db8ab918b2a6b33b7add1ef9451745352a33a2576", 0x44, 0x3}, {&(0x7f0000001900)="5785f1e03d7fe42d6f82e6056e368cee598b9e104ffbe83925177d6f2eec22a3b72614ee152a807859cf14a80d199d4cdd7ea8039d36883d08b09dac46a9afc242a221c0a0c387cab287cda69c52b8f7", 0x50, 0x4}, {&(0x7f0000001980)="355bf7c42d2a8204094bb5e212007314469621ca8328ae2b0d06434a975fdd90d730f390bf8d9e9e6d0579", 0x2b, 0x7fff}], 0x202010, &(0x7f0000001ac0)={[{@compress_force_algo={'compress-force', 0x3d, 'zstd'}}, {@treelog='treelog'}], [{@audit='audit'}, {@subj_user={'subj_user', 0x3d, 'GPL]@eth0'}}, {@dont_hash='dont_hash'}, {@fsname={'fsname', 0x3d, '/dev/sequencer2\x00'}}]}) ptrace$setregs(0xf, 0xffffffffffffffff, 0x3, &(0x7f0000000180)="cc5fbdd2cb2e26d8c4e6caaf200ff4d70f4c0ac45752e5ca3ccc4e24df9972") 21:56:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r4, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x40, 0x2, 0x8, 0x3, 0x0, 0x0, {0x0, 0x0, 0x1}, [@CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_HEARTBEAT_ACKED={0x8, 0x9, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0x8001}, @CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x1f}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x15}, 0x4020) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180)='NLBL_UNLBL\x00') ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000001c0)={0x18302, 0x0, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x1, 0x0) getsockopt$netlink(r6, 0x10e, 0xa, &(0x7f0000000040)=""/90, &(0x7f0000000140)=0x5a) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_NMI(r5, 0xae9a) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 408.693609] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 408.700877] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 408.708156] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 408.713722] FAULT_INJECTION: forcing a failure. [ 408.713722] name failslab, interval 1, probability 0, space 0, times 0 [ 408.715424] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 408.715430] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000012 [ 408.799960] CPU: 0 PID: 19123 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 408.807988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.817342] Call Trace: [ 408.819943] dump_stack+0x142/0x197 [ 408.823585] should_fail.cold+0x10f/0x159 [ 408.827872] should_failslab+0xdb/0x130 [ 408.831881] kmem_cache_alloc+0x2d7/0x780 [ 408.836032] ? wait_for_completion+0x420/0x420 [ 408.840628] __kernfs_new_node+0x70/0x480 [ 408.844892] ? kernfs_activate+0x13a/0x190 [ 408.849132] kernfs_new_node+0x80/0xf0 [ 408.853028] __kernfs_create_file+0x46/0x323 [ 408.857444] sysfs_add_file_mode_ns+0x1e4/0x450 [ 408.862233] internal_create_group+0x232/0x7b0 [ 408.866825] sysfs_create_group+0x20/0x30 [ 408.870977] lo_ioctl+0x1162/0x1cd0 [ 408.874608] ? loop_probe+0x160/0x160 [ 408.878411] blkdev_ioctl+0x95f/0x1850 [ 408.882308] ? blkpg_ioctl+0x970/0x970 [ 408.886409] ? __might_sleep+0x93/0xb0 [ 408.890314] ? __fget+0x210/0x370 [ 408.893772] block_ioctl+0xde/0x120 [ 408.897513] ? blkdev_fallocate+0x3b0/0x3b0 [ 408.901832] do_vfs_ioctl+0x7ae/0x1060 [ 408.905766] ? selinux_file_mprotect+0x5d0/0x5d0 [ 408.910513] ? lock_downgrade+0x740/0x740 [ 408.914735] ? ioctl_preallocate+0x1c0/0x1c0 [ 408.919150] ? __fget+0x237/0x370 [ 408.922603] ? security_file_ioctl+0x89/0xb0 [ 408.927010] SyS_ioctl+0x8f/0xc0 [ 408.930374] ? do_vfs_ioctl+0x1060/0x1060 [ 408.934533] do_syscall_64+0x1e8/0x640 [ 408.938415] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 408.943249] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.948423] RIP: 0033:0x45c2b7 [ 408.951603] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.959320] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 408.966587] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 408.973852] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 408.981125] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 408.988389] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000013 21:56:17 executing program 4 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:17 executing program 2 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:17 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r6, 0x40045612, &(0x7f0000001b40)=0x3) syz_mount_image$btrfs(&(0x7f0000000400)='btrfs\x00', &(0x7f0000000440)='./file0\x00', 0xccb, 0x9, &(0x7f00000019c0)=[{&(0x7f00000004c0)="149788bdc450d0d2b532ad1a1c87967718414abcd21fdb3e6f3db7520cfdb329678c2f5497e489f93819d78f44ee75c63610ecf648e2834fc220e165f254785f1cd956614d99c5aaa5c859992a49fd194603bcf9147927c74eb6ab065d6ef150ec9636701dd3329e26ef7a76fb01b6a45ec1928df1ff3fe1a62c28dde4d130c93b74d173b270f318ca4ccd031b3755333c51363e9000bcedf3ee7d35c89e31aee1109d867efc04ccf524fc080336e449bf2c86751a2fb5cd574fa4c8e3a94cf47b671ba8363c6eac2370e702", 0xcc, 0x100000000}, {&(0x7f00000005c0)="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", 0x1000, 0x5}, {&(0x7f00000015c0)="daf1ffa4010e0e5ec9e9937d5f7dc0eb045760b520f95b9a6194b8c193c60682a78fb6bbff0e021ee34bf013dd1ae7e59997a4f6e14dc1a056ea3e793d95f7d39d992c9d857e14e2da0652fe4d159752abbbe6fc6b4380b137a97fb389cf2ee6969bba7915bc36fe92e09ce5cc40a88ba8a528c6bbf4fa92513bbbdcece8892f246f221a467c255b99cdad40f303e0e977c31a825dc5f367e70c2cd8483b97e24319cd369fdc215e", 0xa8, 0x8}, {&(0x7f0000001680)="ac669836c4bd1752fae5756e78224b6e59db61239bf5bea21d6d0e16e681346acc0e587d8a73132631cba8dc01d2ad1c98e1fd39b1f89b4fa0e38f4e4de3212078dafeb1e522ac4fbf3d", 0x4a, 0x4}, {&(0x7f0000001700)="28cca887033dd546728b34ddf05f33c6c8577f2272fc03178210626c286d0c44f2fb27ba0d2437384ab6310306af350181ce22c4653fece307b257f341ac8930a54ff5f3465831e6d15cdf53d0643eeb27d8b9f979b01f17848a786a0e1b1a51c3f5b22238a943148d1e11d54f435c7fcc4422473f0deda41b8dce64564bee7253294a331165b467ca44911d08e51b2a9993de26aa6adea53e8cdd559b6501150898e531d3a16b91a6c25e6218d5fdf496dd", 0xb2, 0x1f}, {&(0x7f00000017c0)="a65de28ee7c592cfa915bca9ad7e492b94e6ffc7b2809de098c9ba90b3ca18dc11c723a1d9325a21e20f364e7c1130676115636596f50c03459e42e3e6de8c8dae5bf0eb1fc1d825890e67fcb6c7e2d578bed0a7a3e6afc0236fe3060530af9f95195b9fd38f7cd036702d11e8fb2f21e2a3f5bda03353811c78abdf6ac8e314f3fdbf0956fa6d18ed265f83bb17bc0928c17c40c09f94f2a5404a6e49ef6988e8953e0c19dc267dba07870fe8001808d7e8cf071f", 0xb5, 0x7}, {&(0x7f0000001880)="a5a946dfa59c56c5040e82ff2155422bd1f00ca1ac7f3d30880af71f2c81d3060a5209beceb3ffb8b8c3c53163a4bf4db8ab918b2a6b33b7add1ef9451745352a33a2576", 0x44, 0x3}, {&(0x7f0000001900)="5785f1e03d7fe42d6f82e6056e368cee598b9e104ffbe83925177d6f2eec22a3b72614ee152a807859cf14a80d199d4cdd7ea8039d36883d08b09dac46a9afc242a221c0a0c387cab287cda69c52b8f7", 0x50, 0x4}, {&(0x7f0000001980)="355bf7c42d2a8204094bb5e212007314469621ca8328ae2b0d06434a975fdd90d730f390bf8d9e9e6d0579", 0x2b, 0x7fff}], 0x202010, &(0x7f0000001ac0)={[{@compress_force_algo={'compress-force', 0x3d, 'zstd'}}, {@treelog='treelog'}], [{@audit='audit'}, {@subj_user={'subj_user', 0x3d, 'GPL]@eth0'}}, {@dont_hash='dont_hash'}, {@fsname={'fsname', 0x3d, '/dev/sequencer2\x00'}}]}) ptrace$setregs(0xf, 0xffffffffffffffff, 0x3, &(0x7f0000000180)="cc5fbdd2cb2e26d8c4e6caaf200ff4d70f4c0ac45752e5ca3ccc4e24df9972") 21:56:17 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x129002, 0x41) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 409.161596] FAULT_INJECTION: forcing a failure. [ 409.161596] name failslab, interval 1, probability 0, space 0, times 0 [ 409.180232] FAULT_INJECTION: forcing a failure. [ 409.180232] name failslab, interval 1, probability 0, space 0, times 0 [ 409.193562] CPU: 0 PID: 19152 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 409.201468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 409.210827] Call Trace: [ 409.213549] dump_stack+0x142/0x197 [ 409.217190] should_fail.cold+0x10f/0x159 [ 409.221354] should_failslab+0xdb/0x130 [ 409.225332] kmem_cache_alloc+0x2d7/0x780 [ 409.229468] ? wait_for_completion+0x420/0x420 [ 409.234045] __kernfs_new_node+0x70/0x480 [ 409.238186] ? kernfs_activate+0x13a/0x190 [ 409.242410] kernfs_new_node+0x80/0xf0 [ 409.246285] __kernfs_create_file+0x46/0x323 [ 409.250691] sysfs_add_file_mode_ns+0x1e4/0x450 [ 409.255380] internal_create_group+0x232/0x7b0 [ 409.259971] sysfs_create_group+0x20/0x30 [ 409.264126] lo_ioctl+0x1162/0x1cd0 [ 409.267768] ? loop_probe+0x160/0x160 [ 409.271571] blkdev_ioctl+0x95f/0x1850 [ 409.275461] ? blkpg_ioctl+0x970/0x970 [ 409.279359] ? __might_sleep+0x93/0xb0 [ 409.283245] ? __fget+0x210/0x370 [ 409.286695] block_ioctl+0xde/0x120 [ 409.290324] ? blkdev_fallocate+0x3b0/0x3b0 [ 409.294647] do_vfs_ioctl+0x7ae/0x1060 [ 409.298523] ? selinux_file_mprotect+0x5d0/0x5d0 [ 409.303274] ? lock_downgrade+0x740/0x740 [ 409.307933] ? ioctl_preallocate+0x1c0/0x1c0 [ 409.312434] ? __fget+0x237/0x370 [ 409.315888] ? security_file_ioctl+0x89/0xb0 [ 409.321250] SyS_ioctl+0x8f/0xc0 [ 409.324633] ? do_vfs_ioctl+0x1060/0x1060 [ 409.328767] do_syscall_64+0x1e8/0x640 [ 409.332653] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 409.337490] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 409.342669] RIP: 0033:0x45c2b7 [ 409.345852] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 409.353558] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 409.360839] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 409.368103] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 409.375365] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 409.382624] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000013 [ 409.389896] CPU: 1 PID: 19153 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 409.397778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 409.407124] Call Trace: [ 409.409710] dump_stack+0x142/0x197 [ 409.413340] should_fail.cold+0x10f/0x159 [ 409.417479] should_failslab+0xdb/0x130 [ 409.421439] kmem_cache_alloc+0x2d7/0x780 [ 409.425573] ? wait_for_completion+0x420/0x420 [ 409.430153] __kernfs_new_node+0x70/0x480 [ 409.434293] ? kernfs_activate+0x13a/0x190 [ 409.438524] kernfs_new_node+0x80/0xf0 [ 409.442397] __kernfs_create_file+0x46/0x323 [ 409.446794] sysfs_add_file_mode_ns+0x1e4/0x450 [ 409.451464] internal_create_group+0x232/0x7b0 [ 409.456040] sysfs_create_group+0x20/0x30 [ 409.460181] lo_ioctl+0x1162/0x1cd0 [ 409.463799] ? loop_probe+0x160/0x160 [ 409.467583] blkdev_ioctl+0x95f/0x1850 [ 409.471468] ? blkpg_ioctl+0x970/0x970 [ 409.475347] ? __might_sleep+0x93/0xb0 [ 409.479232] ? __fget+0x210/0x370 [ 409.482678] block_ioctl+0xde/0x120 [ 409.486290] ? blkdev_fallocate+0x3b0/0x3b0 [ 409.490607] do_vfs_ioctl+0x7ae/0x1060 [ 409.494492] ? selinux_file_mprotect+0x5d0/0x5d0 [ 409.499243] ? lock_downgrade+0x740/0x740 [ 409.503381] ? ioctl_preallocate+0x1c0/0x1c0 [ 409.507856] ? __fget+0x237/0x370 [ 409.511315] ? security_file_ioctl+0x89/0xb0 [ 409.515719] SyS_ioctl+0x8f/0xc0 [ 409.519083] ? do_vfs_ioctl+0x1060/0x1060 [ 409.523221] do_syscall_64+0x1e8/0x640 [ 409.527092] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 409.531932] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 409.537107] RIP: 0033:0x45c2b7 [ 409.540286] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 409.547982] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 409.555253] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 409.562517] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 409.569772] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 409.577043] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000014 21:56:19 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x109}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000002c0)={[0x1ff, 0x5, 0x4, 0x6, 0x7f, 0x30a, 0x10000, 0x800, 0x5c4bb0ed, 0x8, 0xc7, 0x0, 0xffffffffffffffe1, 0x3, 0x6, 0xff], 0x5000, 0x202000}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) ioctl$VIDIOC_DECODER_CMD(0xffffffffffffffff, 0xc0485660, &(0x7f0000000440)={0x6, 0x1, @start={0x3ff, 0x1}}) setsockopt$inet6_int(r3, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r3, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$SIOCX25SDTEFACILITIES(r6, 0x89eb, &(0x7f0000000140)={0x401, 0x76, 0x0, 0xe5, 0x1, 0x28, 0x25, "745610c569fa9f6efbe59cd0cdd05ad0ff8a90dc", "d20e3baa1f309b0ff22436b36f43266aedcfc057"}) setsockopt$sock_int(r3, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r3, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r3, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getpeername$l2tp6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, &(0x7f0000000040)=0x20) rt_sigpending(&(0x7f0000000180), 0x8) 21:56:19 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r6, 0x40045612, &(0x7f0000001b40)=0x3) syz_mount_image$btrfs(&(0x7f0000000400)='btrfs\x00', &(0x7f0000000440)='./file0\x00', 0xccb, 0x9, &(0x7f00000019c0)=[{&(0x7f00000004c0)="149788bdc450d0d2b532ad1a1c87967718414abcd21fdb3e6f3db7520cfdb329678c2f5497e489f93819d78f44ee75c63610ecf648e2834fc220e165f254785f1cd956614d99c5aaa5c859992a49fd194603bcf9147927c74eb6ab065d6ef150ec9636701dd3329e26ef7a76fb01b6a45ec1928df1ff3fe1a62c28dde4d130c93b74d173b270f318ca4ccd031b3755333c51363e9000bcedf3ee7d35c89e31aee1109d867efc04ccf524fc080336e449bf2c86751a2fb5cd574fa4c8e3a94cf47b671ba8363c6eac2370e702", 0xcc, 0x100000000}, {&(0x7f00000005c0)="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", 0x1000, 0x5}, {&(0x7f00000015c0)="daf1ffa4010e0e5ec9e9937d5f7dc0eb045760b520f95b9a6194b8c193c60682a78fb6bbff0e021ee34bf013dd1ae7e59997a4f6e14dc1a056ea3e793d95f7d39d992c9d857e14e2da0652fe4d159752abbbe6fc6b4380b137a97fb389cf2ee6969bba7915bc36fe92e09ce5cc40a88ba8a528c6bbf4fa92513bbbdcece8892f246f221a467c255b99cdad40f303e0e977c31a825dc5f367e70c2cd8483b97e24319cd369fdc215e", 0xa8, 0x8}, {&(0x7f0000001680)="ac669836c4bd1752fae5756e78224b6e59db61239bf5bea21d6d0e16e681346acc0e587d8a73132631cba8dc01d2ad1c98e1fd39b1f89b4fa0e38f4e4de3212078dafeb1e522ac4fbf3d", 0x4a, 0x4}, {&(0x7f0000001700)="28cca887033dd546728b34ddf05f33c6c8577f2272fc03178210626c286d0c44f2fb27ba0d2437384ab6310306af350181ce22c4653fece307b257f341ac8930a54ff5f3465831e6d15cdf53d0643eeb27d8b9f979b01f17848a786a0e1b1a51c3f5b22238a943148d1e11d54f435c7fcc4422473f0deda41b8dce64564bee7253294a331165b467ca44911d08e51b2a9993de26aa6adea53e8cdd559b6501150898e531d3a16b91a6c25e6218d5fdf496dd", 0xb2, 0x1f}, {&(0x7f00000017c0)="a65de28ee7c592cfa915bca9ad7e492b94e6ffc7b2809de098c9ba90b3ca18dc11c723a1d9325a21e20f364e7c1130676115636596f50c03459e42e3e6de8c8dae5bf0eb1fc1d825890e67fcb6c7e2d578bed0a7a3e6afc0236fe3060530af9f95195b9fd38f7cd036702d11e8fb2f21e2a3f5bda03353811c78abdf6ac8e314f3fdbf0956fa6d18ed265f83bb17bc0928c17c40c09f94f2a5404a6e49ef6988e8953e0c19dc267dba07870fe8001808d7e8cf071f", 0xb5, 0x7}, {&(0x7f0000001880)="a5a946dfa59c56c5040e82ff2155422bd1f00ca1ac7f3d30880af71f2c81d3060a5209beceb3ffb8b8c3c53163a4bf4db8ab918b2a6b33b7add1ef9451745352a33a2576", 0x44, 0x3}, {&(0x7f0000001900)="5785f1e03d7fe42d6f82e6056e368cee598b9e104ffbe83925177d6f2eec22a3b72614ee152a807859cf14a80d199d4cdd7ea8039d36883d08b09dac46a9afc242a221c0a0c387cab287cda69c52b8f7", 0x50, 0x4}, {&(0x7f0000001980)="355bf7c42d2a8204094bb5e212007314469621ca8328ae2b0d06434a975fdd90d730f390bf8d9e9e6d0579", 0x2b, 0x7fff}], 0x202010, &(0x7f0000001ac0)={[{@compress_force_algo={'compress-force', 0x3d, 'zstd'}}, {@treelog='treelog'}], [{@audit='audit'}, {@subj_user={'subj_user', 0x3d, 'GPL]@eth0'}}, {@dont_hash='dont_hash'}, {@fsname={'fsname', 0x3d, '/dev/sequencer2\x00'}}]}) ptrace$setregs(0xf, 0xffffffffffffffff, 0x3, &(0x7f0000000180)="cc5fbdd2cb2e26d8c4e6caaf200ff4d70f4c0ac45752e5ca3ccc4e24df9972") 21:56:19 executing program 4 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:19 executing program 2 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:19 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) ioctl$SIOCX25SENDCALLACCPT(0xffffffffffffffff, 0x89e9) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 411.258368] FAULT_INJECTION: forcing a failure. [ 411.258368] name failslab, interval 1, probability 0, space 0, times 0 [ 411.280738] FAULT_INJECTION: forcing a failure. [ 411.280738] name failslab, interval 1, probability 0, space 0, times 0 [ 411.301064] CPU: 0 PID: 19183 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 411.308970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.318436] Call Trace: [ 411.321036] dump_stack+0x142/0x197 [ 411.324699] should_fail.cold+0x10f/0x159 [ 411.328847] should_failslab+0xdb/0x130 [ 411.332817] kmem_cache_alloc+0x2d7/0x780 [ 411.336980] ? wait_for_completion+0x420/0x420 [ 411.341571] __kernfs_new_node+0x70/0x480 [ 411.345718] ? kernfs_activate+0x13a/0x190 [ 411.349940] kernfs_new_node+0x80/0xf0 [ 411.353944] __kernfs_create_file+0x46/0x323 [ 411.358347] sysfs_add_file_mode_ns+0x1e4/0x450 [ 411.363013] internal_create_group+0x232/0x7b0 [ 411.367589] sysfs_create_group+0x20/0x30 [ 411.371730] lo_ioctl+0x1162/0x1cd0 [ 411.375368] ? loop_probe+0x160/0x160 [ 411.379170] blkdev_ioctl+0x95f/0x1850 [ 411.383050] ? blkpg_ioctl+0x970/0x970 [ 411.386937] ? __might_sleep+0x93/0xb0 [ 411.390813] ? __fget+0x210/0x370 [ 411.394297] block_ioctl+0xde/0x120 [ 411.397919] ? blkdev_fallocate+0x3b0/0x3b0 [ 411.402233] do_vfs_ioctl+0x7ae/0x1060 [ 411.406114] ? selinux_file_mprotect+0x5d0/0x5d0 [ 411.410860] ? lock_downgrade+0x740/0x740 [ 411.415001] ? ioctl_preallocate+0x1c0/0x1c0 [ 411.419505] ? __fget+0x237/0x370 [ 411.422956] ? security_file_ioctl+0x89/0xb0 [ 411.427368] SyS_ioctl+0x8f/0xc0 [ 411.430725] ? do_vfs_ioctl+0x1060/0x1060 [ 411.434867] do_syscall_64+0x1e8/0x640 [ 411.438746] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 411.443589] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 411.448778] RIP: 0033:0x45c2b7 [ 411.451977] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 411.459695] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 411.466956] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 411.474566] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 411.481830] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 411.489097] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000014 [ 411.496370] CPU: 1 PID: 19188 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 411.504254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.513595] Call Trace: [ 411.516189] dump_stack+0x142/0x197 [ 411.519805] should_fail.cold+0x10f/0x159 [ 411.523941] should_failslab+0xdb/0x130 [ 411.527898] kmem_cache_alloc_trace+0x2e9/0x790 [ 411.532552] ? kernfs_put+0x35e/0x490 [ 411.536337] ? sysfs_add_file_mode_ns+0x1e4/0x450 [ 411.541169] ? devm_device_remove_groups+0x50/0x50 [ 411.546086] kobject_uevent_env+0x208/0xc80 [ 411.550408] ? internal_create_group+0x49a/0x7b0 [ 411.555154] kobject_uevent+0x20/0x30 [ 411.558938] lo_ioctl+0x11d3/0x1cd0 [ 411.562565] ? loop_probe+0x160/0x160 [ 411.566357] blkdev_ioctl+0x95f/0x1850 [ 411.570260] ? blkpg_ioctl+0x970/0x970 [ 411.574154] ? __might_sleep+0x93/0xb0 [ 411.578036] ? __fget+0x210/0x370 [ 411.581483] block_ioctl+0xde/0x120 [ 411.585103] ? blkdev_fallocate+0x3b0/0x3b0 [ 411.589413] do_vfs_ioctl+0x7ae/0x1060 [ 411.593288] ? selinux_file_mprotect+0x5d0/0x5d0 [ 411.598030] ? lock_downgrade+0x740/0x740 [ 411.602172] ? ioctl_preallocate+0x1c0/0x1c0 [ 411.606569] ? __fget+0x237/0x370 [ 411.610031] ? security_file_ioctl+0x89/0xb0 [ 411.614433] SyS_ioctl+0x8f/0xc0 [ 411.617786] ? do_vfs_ioctl+0x1060/0x1060 [ 411.621921] do_syscall_64+0x1e8/0x640 [ 411.625790] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 411.630633] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 411.635813] RIP: 0033:0x45c2b7 [ 411.638987] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 411.646683] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 411.653941] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 411.661192] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 411.668563] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 411.675842] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000015 21:56:19 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r6, 0x40045612, &(0x7f0000001b40)=0x3) syz_mount_image$btrfs(&(0x7f0000000400)='btrfs\x00', &(0x7f0000000440)='./file0\x00', 0xccb, 0x9, &(0x7f00000019c0)=[{&(0x7f00000004c0)="149788bdc450d0d2b532ad1a1c87967718414abcd21fdb3e6f3db7520cfdb329678c2f5497e489f93819d78f44ee75c63610ecf648e2834fc220e165f254785f1cd956614d99c5aaa5c859992a49fd194603bcf9147927c74eb6ab065d6ef150ec9636701dd3329e26ef7a76fb01b6a45ec1928df1ff3fe1a62c28dde4d130c93b74d173b270f318ca4ccd031b3755333c51363e9000bcedf3ee7d35c89e31aee1109d867efc04ccf524fc080336e449bf2c86751a2fb5cd574fa4c8e3a94cf47b671ba8363c6eac2370e702", 0xcc, 0x100000000}, {&(0x7f00000005c0)="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", 0x1000, 0x5}, {&(0x7f00000015c0)="daf1ffa4010e0e5ec9e9937d5f7dc0eb045760b520f95b9a6194b8c193c60682a78fb6bbff0e021ee34bf013dd1ae7e59997a4f6e14dc1a056ea3e793d95f7d39d992c9d857e14e2da0652fe4d159752abbbe6fc6b4380b137a97fb389cf2ee6969bba7915bc36fe92e09ce5cc40a88ba8a528c6bbf4fa92513bbbdcece8892f246f221a467c255b99cdad40f303e0e977c31a825dc5f367e70c2cd8483b97e24319cd369fdc215e", 0xa8, 0x8}, {&(0x7f0000001680)="ac669836c4bd1752fae5756e78224b6e59db61239bf5bea21d6d0e16e681346acc0e587d8a73132631cba8dc01d2ad1c98e1fd39b1f89b4fa0e38f4e4de3212078dafeb1e522ac4fbf3d", 0x4a, 0x4}, {&(0x7f0000001700)="28cca887033dd546728b34ddf05f33c6c8577f2272fc03178210626c286d0c44f2fb27ba0d2437384ab6310306af350181ce22c4653fece307b257f341ac8930a54ff5f3465831e6d15cdf53d0643eeb27d8b9f979b01f17848a786a0e1b1a51c3f5b22238a943148d1e11d54f435c7fcc4422473f0deda41b8dce64564bee7253294a331165b467ca44911d08e51b2a9993de26aa6adea53e8cdd559b6501150898e531d3a16b91a6c25e6218d5fdf496dd", 0xb2, 0x1f}, {&(0x7f00000017c0)="a65de28ee7c592cfa915bca9ad7e492b94e6ffc7b2809de098c9ba90b3ca18dc11c723a1d9325a21e20f364e7c1130676115636596f50c03459e42e3e6de8c8dae5bf0eb1fc1d825890e67fcb6c7e2d578bed0a7a3e6afc0236fe3060530af9f95195b9fd38f7cd036702d11e8fb2f21e2a3f5bda03353811c78abdf6ac8e314f3fdbf0956fa6d18ed265f83bb17bc0928c17c40c09f94f2a5404a6e49ef6988e8953e0c19dc267dba07870fe8001808d7e8cf071f", 0xb5, 0x7}, {&(0x7f0000001880)="a5a946dfa59c56c5040e82ff2155422bd1f00ca1ac7f3d30880af71f2c81d3060a5209beceb3ffb8b8c3c53163a4bf4db8ab918b2a6b33b7add1ef9451745352a33a2576", 0x44, 0x3}, {&(0x7f0000001900)="5785f1e03d7fe42d6f82e6056e368cee598b9e104ffbe83925177d6f2eec22a3b72614ee152a807859cf14a80d199d4cdd7ea8039d36883d08b09dac46a9afc242a221c0a0c387cab287cda69c52b8f7", 0x50, 0x4}, {&(0x7f0000001980)="355bf7c42d2a8204094bb5e212007314469621ca8328ae2b0d06434a975fdd90d730f390bf8d9e9e6d0579", 0x2b, 0x7fff}], 0x202010, &(0x7f0000001ac0)={[{@compress_force_algo={'compress-force', 0x3d, 'zstd'}}, {@treelog='treelog'}], [{@audit='audit'}, {@subj_user={'subj_user', 0x3d, 'GPL]@eth0'}}, {@dont_hash='dont_hash'}, {@fsname={'fsname', 0x3d, '/dev/sequencer2\x00'}}]}) 21:56:19 executing program 4 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfb]}) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x1c, r5, 0x0, 0x70bd29, 0x25dfdbff, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4090) r6 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_LINKS(r4, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r6, 0x1, 0x70bd26, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x8001}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x80c4}, 0x20000800) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 21:56:19 executing program 2 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 411.858908] FAULT_INJECTION: forcing a failure. [ 411.858908] name failslab, interval 1, probability 0, space 0, times 0 [ 411.870429] CPU: 0 PID: 19216 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 411.878341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.887697] Call Trace: [ 411.890293] dump_stack+0x142/0x197 [ 411.894037] should_fail.cold+0x10f/0x159 [ 411.898204] should_failslab+0xdb/0x130 [ 411.902193] __kmalloc+0x2f0/0x7a0 [ 411.905166] FAULT_INJECTION: forcing a failure. [ 411.905166] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 411.905738] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 411.922961] ? kobject_uevent_env+0x208/0xc80 [ 411.927591] ? rcu_read_lock_sched_held+0x110/0x130 [ 411.932595] ? kobject_get_path+0xba/0x190 [ 411.936829] kobject_get_path+0xba/0x190 [ 411.940887] kobject_uevent_env+0x22c/0xc80 [ 411.945210] ? internal_create_group+0x49a/0x7b0 [ 411.949959] kobject_uevent+0x20/0x30 [ 411.953767] lo_ioctl+0x11d3/0x1cd0 [ 411.957394] ? loop_probe+0x160/0x160 [ 411.961195] blkdev_ioctl+0x95f/0x1850 [ 411.965071] ? blkpg_ioctl+0x970/0x970 [ 411.968951] ? __might_sleep+0x93/0xb0 [ 411.972828] ? __fget+0x210/0x370 [ 411.976289] block_ioctl+0xde/0x120 [ 411.979909] ? blkdev_fallocate+0x3b0/0x3b0 [ 411.984230] do_vfs_ioctl+0x7ae/0x1060 [ 411.988122] ? selinux_file_mprotect+0x5d0/0x5d0 [ 411.992868] ? lock_downgrade+0x740/0x740 [ 411.997010] ? ioctl_preallocate+0x1c0/0x1c0 [ 412.001411] ? __fget+0x237/0x370 [ 412.004859] ? security_file_ioctl+0x89/0xb0 [ 412.009269] SyS_ioctl+0x8f/0xc0 [ 412.012627] ? do_vfs_ioctl+0x1060/0x1060 [ 412.016768] do_syscall_64+0x1e8/0x640 [ 412.020658] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 412.025503] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 412.030691] RIP: 0033:0x45c2b7 [ 412.033880] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 412.041590] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 412.048851] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 21:56:20 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$USBDEVFS_RELEASE_PORT(r2, 0x80045519, &(0x7f0000000040)=0xfff) [ 412.056107] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 412.063371] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 412.070633] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000015 [ 412.077907] CPU: 1 PID: 19221 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 412.085790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 412.095242] Call Trace: [ 412.097830] dump_stack+0x142/0x197 [ 412.101449] should_fail.cold+0x10f/0x159 [ 412.105590] __alloc_pages_nodemask+0x1d6/0x7a0 [ 412.110252] ? __alloc_pages_slowpath+0x2930/0x2930 [ 412.115276] cache_grow_begin+0x80/0x400 [ 412.119324] kmem_cache_alloc_trace+0x6b2/0x790 [ 412.123989] ? kernfs_put+0x35e/0x490 [ 412.127786] ? devm_device_remove_groups+0x50/0x50 [ 412.132702] kobject_uevent_env+0x208/0xc80 [ 412.137014] ? internal_create_group+0x49a/0x7b0 [ 412.141758] kobject_uevent+0x20/0x30 [ 412.145549] lo_ioctl+0x11d3/0x1cd0 [ 412.149164] ? loop_probe+0x160/0x160 [ 412.152955] blkdev_ioctl+0x95f/0x1850 [ 412.156841] ? blkpg_ioctl+0x970/0x970 [ 412.160725] ? __might_sleep+0x93/0xb0 [ 412.164598] ? __fget+0x210/0x370 [ 412.168037] block_ioctl+0xde/0x120 [ 412.171651] ? blkdev_fallocate+0x3b0/0x3b0 [ 412.175958] do_vfs_ioctl+0x7ae/0x1060 [ 412.179830] ? selinux_file_mprotect+0x5d0/0x5d0 [ 412.184585] ? lock_downgrade+0x740/0x740 [ 412.188724] ? ioctl_preallocate+0x1c0/0x1c0 [ 412.193121] ? __fget+0x237/0x370 [ 412.196574] ? security_file_ioctl+0x89/0xb0 [ 412.200971] SyS_ioctl+0x8f/0xc0 [ 412.204325] ? do_vfs_ioctl+0x1060/0x1060 [ 412.208457] do_syscall_64+0x1e8/0x640 [ 412.212465] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 412.217835] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 412.223010] RIP: 0033:0x45c2b7 [ 412.226184] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 412.233876] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 412.241131] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 412.248384] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 412.255635] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 412.262890] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000016 21:56:20 executing program 4 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 412.422258] FAULT_INJECTION: forcing a failure. [ 412.422258] name failslab, interval 1, probability 0, space 0, times 0 [ 412.433856] CPU: 1 PID: 19233 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 412.441738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 412.451077] Call Trace: [ 412.453653] dump_stack+0x142/0x197 [ 412.457324] should_fail.cold+0x10f/0x159 [ 412.461475] should_failslab+0xdb/0x130 [ 412.465437] __kmalloc+0x2f0/0x7a0 [ 412.468962] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 412.474394] ? kobject_uevent_env+0x208/0xc80 [ 412.478871] ? rcu_read_lock_sched_held+0x110/0x130 [ 412.483874] ? kobject_get_path+0xba/0x190 [ 412.488091] kobject_get_path+0xba/0x190 [ 412.492139] kobject_uevent_env+0x22c/0xc80 [ 412.496439] ? internal_create_group+0x49a/0x7b0 [ 412.501271] kobject_uevent+0x20/0x30 [ 412.505055] lo_ioctl+0x11d3/0x1cd0 [ 412.508674] ? loop_probe+0x160/0x160 [ 412.512563] blkdev_ioctl+0x95f/0x1850 [ 412.516452] ? blkpg_ioctl+0x970/0x970 [ 412.520343] ? __might_sleep+0x93/0xb0 [ 412.524224] ? __fget+0x210/0x370 [ 412.527661] block_ioctl+0xde/0x120 [ 412.531272] ? blkdev_fallocate+0x3b0/0x3b0 [ 412.535585] do_vfs_ioctl+0x7ae/0x1060 [ 412.539521] ? selinux_file_mprotect+0x5d0/0x5d0 [ 412.544259] ? lock_downgrade+0x740/0x740 [ 412.548388] ? ioctl_preallocate+0x1c0/0x1c0 [ 412.552781] ? __fget+0x237/0x370 [ 412.556217] ? security_file_ioctl+0x89/0xb0 [ 412.560702] SyS_ioctl+0x8f/0xc0 [ 412.564066] ? do_vfs_ioctl+0x1060/0x1060 [ 412.568203] do_syscall_64+0x1e8/0x640 [ 412.572090] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 412.576937] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 412.582108] RIP: 0033:0x45c2b7 [ 412.585280] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 412.592987] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 412.600294] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 412.607543] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 412.614797] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 412.622102] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000016 21:56:22 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef8811", 0x11c}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) write$9p(r5, 0x0, 0x0) ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205647, &(0x7f0000000080)={0x9d0000, 0x22, 0x100, r2, 0x0, &(0x7f0000000040)={0x98091e, 0x4, [], @p_u32=&(0x7f0000000000)=0x1}}) ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r6, 0x8983, &(0x7f0000000140)={0x7, 'veth1_virt_wifi\x00', {0x7}, 0xb}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:56:22 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r6, 0x40045612, &(0x7f0000001b40)=0x3) 21:56:22 executing program 2 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:22 executing program 4 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:22 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000240)=ANY=[@ANYBLOB="e62463e5fb14060627f1dbcc42dde284505bf44523c192b4480bf27d853dd3f2491971518353005b665579f199fc2b24bc048f71d78aae70bdac"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) socket$can_raw(0x1d, 0x3, 0x1) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=""/182) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:22 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/checkreqprot\x00', 0x200000, 0x0) ioctl$KVM_NMI(r0, 0xae9a) ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f00000001c0)={0x980000, 0x8, 0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x9a091f, 0xfd7, [], @p_u8=&(0x7f0000000040)=0x1c}}) accept$unix(r1, &(0x7f0000000200), &(0x7f0000000300)=0x6e) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5411, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) sendmsg$NFT_MSG_GETFLOWTABLE(r4, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x58, 0x17, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x7}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x51) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 414.301485] FAULT_INJECTION: forcing a failure. [ 414.301485] name failslab, interval 1, probability 0, space 0, times 0 [ 414.313842] CPU: 0 PID: 19252 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 414.321739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.331217] Call Trace: [ 414.333816] dump_stack+0x142/0x197 [ 414.337450] should_fail.cold+0x10f/0x159 [ 414.341604] should_failslab+0xdb/0x130 [ 414.345579] kmem_cache_alloc_node_trace+0x280/0x770 [ 414.350669] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 414.356110] __kmalloc_node_track_caller+0x3d/0x80 [ 414.361139] __kmalloc_reserve.isra.0+0x40/0xe0 [ 414.365804] __alloc_skb+0xcf/0x500 [ 414.369413] ? skb_trim+0x180/0x180 [ 414.373021] ? netlink_has_listeners+0x20a/0x330 [ 414.377769] kobject_uevent_env+0x6ea/0xc80 [ 414.382096] ? internal_create_group+0x49a/0x7b0 [ 414.386851] kobject_uevent+0x20/0x30 [ 414.390749] lo_ioctl+0x11d3/0x1cd0 [ 414.394364] ? loop_probe+0x160/0x160 [ 414.398153] blkdev_ioctl+0x95f/0x1850 [ 414.402046] ? blkpg_ioctl+0x970/0x970 [ 414.405929] ? __might_sleep+0x93/0xb0 [ 414.409797] ? __fget+0x210/0x370 [ 414.413237] block_ioctl+0xde/0x120 [ 414.416846] ? blkdev_fallocate+0x3b0/0x3b0 [ 414.421168] do_vfs_ioctl+0x7ae/0x1060 [ 414.425054] ? selinux_file_mprotect+0x5d0/0x5d0 [ 414.429791] ? lock_downgrade+0x740/0x740 [ 414.433927] ? ioctl_preallocate+0x1c0/0x1c0 [ 414.438371] ? __fget+0x237/0x370 [ 414.441823] ? security_file_ioctl+0x89/0xb0 [ 414.446223] SyS_ioctl+0x8f/0xc0 [ 414.449578] ? do_vfs_ioctl+0x1060/0x1060 [ 414.453714] do_syscall_64+0x1e8/0x640 [ 414.457592] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 414.462545] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 414.467730] RIP: 0033:0x45c2b7 [ 414.470928] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 414.478621] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 414.485874] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 414.493244] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 414.500506] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 414.507804] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000017 [ 414.517407] FAULT_INJECTION: forcing a failure. [ 414.517407] name failslab, interval 1, probability 0, space 0, times 0 [ 414.531280] CPU: 1 PID: 19253 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 414.539285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.548634] Call Trace: [ 414.551340] dump_stack+0x142/0x197 [ 414.554988] should_fail.cold+0x10f/0x159 [ 414.559139] should_failslab+0xdb/0x130 [ 414.563145] kmem_cache_alloc_node_trace+0x280/0x770 [ 414.568266] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 414.573711] __kmalloc_node_track_caller+0x3d/0x80 [ 414.578640] __kmalloc_reserve.isra.0+0x40/0xe0 [ 414.583299] __alloc_skb+0xcf/0x500 [ 414.586916] ? skb_trim+0x180/0x180 [ 414.590531] ? netlink_has_listeners+0x20a/0x330 [ 414.595292] kobject_uevent_env+0x6ea/0xc80 [ 414.599618] ? internal_create_group+0x49a/0x7b0 [ 414.604373] kobject_uevent+0x20/0x30 [ 414.608177] lo_ioctl+0x11d3/0x1cd0 [ 414.611827] ? loop_probe+0x160/0x160 [ 414.615614] blkdev_ioctl+0x95f/0x1850 [ 414.619596] ? blkpg_ioctl+0x970/0x970 [ 414.623487] ? __might_sleep+0x93/0xb0 [ 414.627361] ? __fget+0x210/0x370 [ 414.630815] block_ioctl+0xde/0x120 [ 414.634431] ? blkdev_fallocate+0x3b0/0x3b0 [ 414.638740] do_vfs_ioctl+0x7ae/0x1060 [ 414.642663] ? selinux_file_mprotect+0x5d0/0x5d0 [ 414.647416] ? lock_downgrade+0x740/0x740 [ 414.651557] ? ioctl_preallocate+0x1c0/0x1c0 [ 414.655966] ? __fget+0x237/0x370 [ 414.659424] ? security_file_ioctl+0x89/0xb0 [ 414.663834] SyS_ioctl+0x8f/0xc0 [ 414.667191] ? do_vfs_ioctl+0x1060/0x1060 [ 414.671328] do_syscall_64+0x1e8/0x640 [ 414.675200] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 414.680048] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 414.685225] RIP: 0033:0x45c2b7 [ 414.688407] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 414.696109] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 21:56:22 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) [ 414.703370] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 414.710629] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 414.717889] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 414.725144] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000017 21:56:22 executing program 2 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:22 executing program 4 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 414.838639] FAULT_INJECTION: forcing a failure. [ 414.838639] name failslab, interval 1, probability 0, space 0, times 0 [ 414.859058] CPU: 0 PID: 19269 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 414.866960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.876463] Call Trace: [ 414.879059] dump_stack+0x142/0x197 [ 414.882697] should_fail.cold+0x10f/0x159 [ 414.886858] should_failslab+0xdb/0x130 [ 414.890839] kmem_cache_alloc_node+0x287/0x780 [ 414.895429] __alloc_skb+0x9c/0x500 [ 414.899056] ? skb_trim+0x180/0x180 [ 414.902740] ? netlink_has_listeners+0x20a/0x330 [ 414.907523] kobject_uevent_env+0x6ea/0xc80 [ 414.911842] kobject_uevent+0x20/0x30 [ 414.915691] lo_ioctl+0x11d3/0x1cd0 [ 414.919410] ? loop_probe+0x160/0x160 [ 414.923202] blkdev_ioctl+0x95f/0x1850 [ 414.927166] ? blkpg_ioctl+0x970/0x970 [ 414.931059] ? __might_sleep+0x93/0xb0 [ 414.934944] ? __fget+0x210/0x370 [ 414.938382] block_ioctl+0xde/0x120 [ 414.941994] ? blkdev_fallocate+0x3b0/0x3b0 [ 414.946321] do_vfs_ioctl+0x7ae/0x1060 [ 414.950213] ? selinux_file_mprotect+0x5d0/0x5d0 [ 414.955148] ? lock_downgrade+0x740/0x740 [ 414.959334] ? ioctl_preallocate+0x1c0/0x1c0 [ 414.963765] ? __fget+0x237/0x370 [ 414.967319] ? security_file_ioctl+0x89/0xb0 [ 414.971736] SyS_ioctl+0x8f/0xc0 [ 414.975136] ? do_vfs_ioctl+0x1060/0x1060 [ 414.979283] do_syscall_64+0x1e8/0x640 [ 414.983171] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 414.987999] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 414.993183] RIP: 0033:0x45c2b7 [ 414.996363] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 415.004054] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 415.011423] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 415.018691] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 415.025949] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 415.033209] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000018 [ 415.042985] FAULT_INJECTION: forcing a failure. [ 415.042985] name failslab, interval 1, probability 0, space 0, times 0 [ 415.076651] CPU: 0 PID: 19274 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 415.084567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 415.093924] Call Trace: [ 415.096518] dump_stack+0x142/0x197 [ 415.100159] should_fail.cold+0x10f/0x159 [ 415.104321] should_failslab+0xdb/0x130 [ 415.108314] kmem_cache_alloc_node+0x287/0x780 [ 415.112887] __alloc_skb+0x9c/0x500 [ 415.116497] ? skb_trim+0x180/0x180 [ 415.120224] ? netlink_has_listeners+0x20a/0x330 [ 415.125061] kobject_uevent_env+0x6ea/0xc80 [ 415.129402] kobject_uevent+0x20/0x30 [ 415.133188] lo_ioctl+0x11d3/0x1cd0 [ 415.136809] ? loop_probe+0x160/0x160 [ 415.140593] blkdev_ioctl+0x95f/0x1850 [ 415.144467] ? blkpg_ioctl+0x970/0x970 [ 415.149063] ? __might_sleep+0x93/0xb0 [ 415.152985] ? __fget+0x210/0x370 [ 415.156425] block_ioctl+0xde/0x120 [ 415.160081] ? blkdev_fallocate+0x3b0/0x3b0 [ 415.164403] do_vfs_ioctl+0x7ae/0x1060 [ 415.168288] ? selinux_file_mprotect+0x5d0/0x5d0 [ 415.173045] ? lock_downgrade+0x740/0x740 [ 415.177183] ? ioctl_preallocate+0x1c0/0x1c0 [ 415.181592] ? __fget+0x237/0x370 [ 415.185035] ? security_file_ioctl+0x89/0xb0 [ 415.189434] SyS_ioctl+0x8f/0xc0 [ 415.192788] ? do_vfs_ioctl+0x1060/0x1060 [ 415.196931] do_syscall_64+0x1e8/0x640 [ 415.200819] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 415.205662] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 415.210952] RIP: 0033:0x45c2b7 [ 415.214261] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 415.222067] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 415.229406] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 21:56:23 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') dup3(r4, r5, 0x0) 21:56:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) getsockname(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f00000001c0)=0x80) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0112000000009ac70000090000003c00030014000600ff090000002e000000000000000000010800030000000000140002007663616e3000000000600000000000000800010002000000"], 0x50}}, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r3, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0xd8, r5, 0x200, 0x0, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x24, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x11}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xba43}, @IPVS_CMD_ATTR_DAEMON={0x70, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0xff78}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3f}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipvlan1\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@rand_addr="6f3a4a46d692ccd8c38d09e226ac5c05"}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x801}, 0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x2000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r6, 0x84, 0x4, &(0x7f0000000180)=0x9, 0x4) [ 415.236674] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 415.243936] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 415.251199] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000018 [ 415.404035] IPVS: Error joining to the multicast group [ 415.433983] IPVS: Error joining to the multicast group 21:56:25 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x11c}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:25 executing program 2 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:25 executing program 4 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:25 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="dd43a0d812441970b4664f3584c55cec6cc698f3eebac02d13c586c8c7370db970aa72a3621d6e7b2ca5d5632581689501d5b6cb760660476fefc13c67baa20b1f0d1dd88ab3fe12a95936cba756e6525dee23b96af51f7007640b21e8eeac49b2ff9f98523c55ef5dbfa11de122c024a7539e9c8e9430257a87b9491ce3764c9eebad9e8706a4605d0bbf073a023344e7c0fe80e845f4bf6823fe54687eab0e8a7db01c17da7083862133b6c5211b29d7ebf37073d79c4581d02adb49dce75e59650308cce87f56f37e72bd48b9546db774bb6105525db2a6a4f2c5a608ff4187d67e30a94b0176b5355f835badc3c8a0e7c4bbfeb77dfb84a580a7cacf109b2533c6e31997d30c80dd50afb4d8d34e5a46cdb03fe7596d09c3deeb172f816dfcaf86b642b95c323c971867051bf1ab4451711adcdbb9"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') 21:56:25 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_S_MODULATOR(r1, 0x40445637, &(0x7f0000000040)={0x7f, "c54261f02b353ca0e538588cef0593f40317232130c502de1796e6f6c4f56067", 0x40, 0x2, 0x80000001, 0x4, 0x1}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000740)={0x0, 0x0, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d", 0x5a, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 417.353517] FAULT_INJECTION: forcing a failure. [ 417.353517] name failslab, interval 1, probability 0, space 0, times 0 [ 417.369690] CPU: 1 PID: 19309 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 417.378598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 417.388542] Call Trace: [ 417.391257] dump_stack+0x142/0x197 [ 417.394884] should_fail.cold+0x10f/0x159 [ 417.399095] should_failslab+0xdb/0x130 [ 417.403337] kmem_cache_alloc_node+0x287/0x780 [ 417.408058] __alloc_skb+0x9c/0x500 [ 417.411812] ? skb_trim+0x180/0x180 [ 417.415778] ? netlink_has_listeners+0x20a/0x330 [ 417.420536] kobject_uevent_env+0x6ea/0xc80 [ 417.425171] kobject_uevent+0x20/0x30 [ 417.429087] lo_ioctl+0x11d3/0x1cd0 [ 417.432801] ? loop_probe+0x160/0x160 [ 417.436723] blkdev_ioctl+0x95f/0x1850 [ 417.440954] ? blkpg_ioctl+0x970/0x970 [ 417.444841] ? __might_sleep+0x93/0xb0 [ 417.448727] ? __fget+0x210/0x370 [ 417.452249] block_ioctl+0xde/0x120 [ 417.456101] ? blkdev_fallocate+0x3b0/0x3b0 [ 417.460439] do_vfs_ioctl+0x7ae/0x1060 [ 417.464599] ? selinux_file_mprotect+0x5d0/0x5d0 [ 417.469634] ? lock_downgrade+0x740/0x740 [ 417.473915] ? ioctl_preallocate+0x1c0/0x1c0 [ 417.478435] ? __fget+0x237/0x370 [ 417.481973] ? security_file_ioctl+0x89/0xb0 [ 417.486812] SyS_ioctl+0x8f/0xc0 [ 417.490185] ? do_vfs_ioctl+0x1060/0x1060 [ 417.494496] do_syscall_64+0x1e8/0x640 [ 417.498713] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 417.503571] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 417.508904] RIP: 0033:0x45c2b7 [ 417.512097] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 417.519932] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 417.527702] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 417.535152] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 417.542849] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 417.550750] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000019 [ 417.563746] FAULT_INJECTION: forcing a failure. [ 417.563746] name failslab, interval 1, probability 0, space 0, times 0 [ 417.577929] CPU: 0 PID: 19310 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 417.586147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 417.595588] Call Trace: [ 417.598228] dump_stack+0x142/0x197 [ 417.601989] should_fail.cold+0x10f/0x159 [ 417.606268] should_failslab+0xdb/0x130 [ 417.610382] kmem_cache_alloc_node_trace+0x280/0x770 [ 417.615490] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 417.621033] __kmalloc_node_track_caller+0x3d/0x80 [ 417.625965] __kmalloc_reserve.isra.0+0x40/0xe0 [ 417.630641] __alloc_skb+0xcf/0x500 [ 417.634386] ? skb_trim+0x180/0x180 [ 417.638023] ? netlink_has_listeners+0x20a/0x330 [ 417.642782] kobject_uevent_env+0x6ea/0xc80 [ 417.647299] kobject_uevent+0x20/0x30 [ 417.651105] lo_ioctl+0x11d3/0x1cd0 [ 417.654745] ? loop_probe+0x160/0x160 [ 417.658746] blkdev_ioctl+0x95f/0x1850 [ 417.662629] ? blkpg_ioctl+0x970/0x970 [ 417.666649] ? __might_sleep+0x93/0xb0 [ 417.670706] ? __fget+0x210/0x370 [ 417.674177] block_ioctl+0xde/0x120 [ 417.677808] ? blkdev_fallocate+0x3b0/0x3b0 [ 417.682390] do_vfs_ioctl+0x7ae/0x1060 [ 417.686287] ? selinux_file_mprotect+0x5d0/0x5d0 [ 417.691241] ? lock_downgrade+0x740/0x740 [ 417.695581] ? ioctl_preallocate+0x1c0/0x1c0 [ 417.700301] ? __fget+0x237/0x370 [ 417.704051] ? security_file_ioctl+0x89/0xb0 [ 417.708635] SyS_ioctl+0x8f/0xc0 [ 417.713230] ? do_vfs_ioctl+0x1060/0x1060 [ 417.717594] do_syscall_64+0x1e8/0x640 [ 417.721490] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 417.726445] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 417.731988] RIP: 0033:0x45c2b7 [ 417.735176] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 417.742888] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 417.750161] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 417.757557] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 417.764917] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 417.772385] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000019 21:56:25 executing program 3: write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000040)={0xffffffffffffffff}, 0x111, 0x8}}, 0x20) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r1, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r2, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r2, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r2, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r2, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@initdev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@mcast1}}, &(0x7f00000005c0)=0xe8) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000600)={@mcast2, r3}, 0x14) write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f00000001c0)={0x7, 0x8, 0xfa00, {r0, 0x1}}, 0x10) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:25 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) 21:56:25 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/checkreqprot\x00', 0x200000, 0x0) ioctl$KVM_NMI(r0, 0xae9a) ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f00000001c0)={0x980000, 0x8, 0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x9a091f, 0xfd7, [], @p_u8=&(0x7f0000000040)=0x1c}}) accept$unix(r1, &(0x7f0000000200), &(0x7f0000000300)=0x6e) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5411, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) sendmsg$NFT_MSG_GETFLOWTABLE(r4, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x58, 0x17, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x7}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x51) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:26 executing program 4 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:26 executing program 2 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:26 executing program 5 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 417.956270] FAULT_INJECTION: forcing a failure. [ 417.956270] name failslab, interval 1, probability 0, space 0, times 0 [ 417.969488] CPU: 0 PID: 19334 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 417.977761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 417.987415] Call Trace: [ 417.990061] dump_stack+0x142/0x197 [ 417.993764] should_fail.cold+0x10f/0x159 [ 417.998129] should_failslab+0xdb/0x130 [ 418.002117] kmem_cache_alloc_node_trace+0x280/0x770 [ 418.007695] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 418.013283] __kmalloc_node_track_caller+0x3d/0x80 [ 418.018268] __kmalloc_reserve.isra.0+0x40/0xe0 [ 418.023045] __alloc_skb+0xcf/0x500 [ 418.026813] ? skb_trim+0x180/0x180 [ 418.030592] ? netlink_has_listeners+0x20a/0x330 [ 418.035886] kobject_uevent_env+0x6ea/0xc80 [ 418.040463] kobject_uevent+0x20/0x30 [ 418.044272] lo_ioctl+0x11d3/0x1cd0 [ 418.047992] ? loop_probe+0x160/0x160 [ 418.052093] blkdev_ioctl+0x95f/0x1850 [ 418.056126] ? blkpg_ioctl+0x970/0x970 [ 418.060311] ? __might_sleep+0x93/0xb0 [ 418.064290] ? __fget+0x210/0x370 [ 418.067740] block_ioctl+0xde/0x120 [ 418.071632] ? blkdev_fallocate+0x3b0/0x3b0 [ 418.076052] do_vfs_ioctl+0x7ae/0x1060 [ 418.080042] ? selinux_file_mprotect+0x5d0/0x5d0 [ 418.084946] ? lock_downgrade+0x740/0x740 [ 418.089271] ? ioctl_preallocate+0x1c0/0x1c0 [ 418.093679] ? __fget+0x237/0x370 [ 418.097291] ? security_file_ioctl+0x89/0xb0 [ 418.101832] SyS_ioctl+0x8f/0xc0 [ 418.105209] ? do_vfs_ioctl+0x1060/0x1060 [ 418.109822] do_syscall_64+0x1e8/0x640 [ 418.113708] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 418.118721] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 418.123907] RIP: 0033:0x45c2b7 [ 418.127093] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 418.135081] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 418.142717] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 418.150172] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 418.157836] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 418.165243] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001a [ 418.175415] FAULT_INJECTION: forcing a failure. [ 418.175415] name failslab, interval 1, probability 0, space 0, times 0 [ 418.195350] CPU: 0 PID: 19333 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 418.203259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 418.212918] Call Trace: [ 418.215508] dump_stack+0x142/0x197 [ 418.219444] should_fail.cold+0x10f/0x159 [ 418.223869] should_failslab+0xdb/0x130 [ 418.227857] kmem_cache_alloc_node_trace+0x280/0x770 [ 418.232957] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 418.238411] __kmalloc_node_track_caller+0x3d/0x80 [ 418.243480] __kmalloc_reserve.isra.0+0x40/0xe0 [ 418.248162] __alloc_skb+0xcf/0x500 [ 418.252032] ? skb_trim+0x180/0x180 [ 418.255816] ? netlink_has_listeners+0x20a/0x330 [ 418.260575] kobject_uevent_env+0x6ea/0xc80 [ 418.264907] kobject_uevent+0x20/0x30 [ 418.268706] lo_ioctl+0x11d3/0x1cd0 [ 418.272847] ? loop_probe+0x160/0x160 [ 418.276744] blkdev_ioctl+0x95f/0x1850 [ 418.280630] ? blkpg_ioctl+0x970/0x970 [ 418.284744] ? __might_sleep+0x93/0xb0 [ 418.288748] ? __fget+0x210/0x370 [ 418.292300] block_ioctl+0xde/0x120 [ 418.295937] ? blkdev_fallocate+0x3b0/0x3b0 [ 418.300264] do_vfs_ioctl+0x7ae/0x1060 [ 418.304587] ? selinux_file_mprotect+0x5d0/0x5d0 [ 418.309338] ? lock_downgrade+0x740/0x740 [ 418.313875] ? ioctl_preallocate+0x1c0/0x1c0 [ 418.318368] ? __fget+0x237/0x370 [ 418.321932] ? security_file_ioctl+0x89/0xb0 [ 418.326433] SyS_ioctl+0x8f/0xc0 [ 418.329970] ? do_vfs_ioctl+0x1060/0x1060 [ 418.334317] do_syscall_64+0x1e8/0x640 [ 418.338202] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 418.343348] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 418.348651] RIP: 0033:0x45c2b7 [ 418.351952] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 418.360065] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 418.368113] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 418.375503] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 418.383072] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 418.390599] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001a [ 418.532856] FAULT_INJECTION: forcing a failure. [ 418.532856] name failslab, interval 1, probability 0, space 0, times 0 [ 418.547737] CPU: 0 PID: 19349 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 418.555934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 418.565297] Call Trace: [ 418.568018] dump_stack+0x142/0x197 [ 418.571666] should_fail.cold+0x10f/0x159 [ 418.576139] should_failslab+0xdb/0x130 [ 418.580125] __kmalloc+0x2f0/0x7a0 [ 418.583921] ? __sb_end_write+0xc1/0x100 [ 418.588085] ? strnlen_user+0x12f/0x1a0 [ 418.592077] ? SyS_memfd_create+0xba/0x3a0 [ 418.596453] SyS_memfd_create+0xba/0x3a0 [ 418.600654] ? shmem_fcntl+0x130/0x130 [ 418.604694] ? do_syscall_64+0x53/0x640 [ 418.608672] ? shmem_fcntl+0x130/0x130 [ 418.612690] do_syscall_64+0x1e8/0x640 [ 418.616675] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 418.621659] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 418.626963] RIP: 0033:0x45c449 [ 418.630158] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 418.638007] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c449 [ 418.645522] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 418.652918] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 418.660331] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 418.667980] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000000 21:56:28 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x11c}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:28 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:28 executing program 4 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:28 executing program 2 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:28 executing program 5 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:28 executing program 3: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000180)=0xc) setpriority(0x2, r0, 0xffffffffffffffff) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000200)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r3, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x34, r4, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x3}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x4}]}, 0x34}}, 0x24008001) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 420.385742] FAULT_INJECTION: forcing a failure. [ 420.385742] name failslab, interval 1, probability 0, space 0, times 0 [ 420.397605] FAULT_INJECTION: forcing a failure. [ 420.397605] name failslab, interval 1, probability 0, space 0, times 0 [ 420.414544] CPU: 1 PID: 19360 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 420.422764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 420.432686] Call Trace: [ 420.435290] dump_stack+0x142/0x197 [ 420.439240] should_fail.cold+0x10f/0x159 [ 420.443722] should_failslab+0xdb/0x130 [ 420.447852] kmem_cache_alloc+0x2d7/0x780 [ 420.452116] ? __alloc_fd+0x1d4/0x4a0 [ 420.456307] __d_alloc+0x2d/0x9f0 [ 420.459760] ? lock_downgrade+0x740/0x740 [ 420.464031] d_alloc_pseudo+0x1e/0x30 [ 420.467919] __shmem_file_setup.part.0+0xd8/0x400 [ 420.472936] ? __alloc_fd+0x1d4/0x4a0 [ 420.476838] ? shmem_fill_super+0x8c0/0x8c0 [ 420.481516] SyS_memfd_create+0x1f9/0x3a0 [ 420.485809] ? shmem_fcntl+0x130/0x130 [ 420.489701] ? do_syscall_64+0x53/0x640 [ 420.493830] ? shmem_fcntl+0x130/0x130 [ 420.494192] ptrace attach of "/root/syz-executor.1"[19369] was attempted by "/root/syz-executor.1"[19370] [ 420.497888] do_syscall_64+0x1e8/0x640 [ 420.497899] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 420.497918] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 420.497926] RIP: 0033:0x45c449 [ 420.497932] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 420.497945] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c449 [ 420.540594] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 420.548501] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 420.555793] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 420.563385] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000001 [ 420.570837] CPU: 0 PID: 19359 Comm: syz-executor.4 Not tainted 4.14.171-syzkaller #0 [ 420.579044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 420.588781] Call Trace: [ 420.591365] dump_stack+0x142/0x197 [ 420.595127] should_fail.cold+0x10f/0x159 [ 420.599276] should_failslab+0xdb/0x130 [ 420.603405] kmem_cache_alloc_node+0x287/0x780 [ 420.608237] __alloc_skb+0x9c/0x500 [ 420.612023] ? skb_trim+0x180/0x180 [ 420.615743] ? netlink_has_listeners+0x20a/0x330 [ 420.620842] kobject_uevent_env+0x6ea/0xc80 [ 420.625809] kobject_uevent+0x20/0x30 [ 420.629607] lo_ioctl+0x11d3/0x1cd0 [ 420.633247] ? loop_probe+0x160/0x160 [ 420.637492] blkdev_ioctl+0x95f/0x1850 [ 420.641680] ? blkpg_ioctl+0x970/0x970 [ 420.645702] ? __might_sleep+0x93/0xb0 [ 420.649805] ? __fget+0x210/0x370 [ 420.653405] block_ioctl+0xde/0x120 [ 420.657348] ? blkdev_fallocate+0x3b0/0x3b0 [ 420.661947] do_vfs_ioctl+0x7ae/0x1060 [ 420.666129] ? selinux_file_mprotect+0x5d0/0x5d0 [ 420.671017] ? lock_downgrade+0x740/0x740 [ 420.675435] ? ioctl_preallocate+0x1c0/0x1c0 [ 420.680110] ? __fget+0x237/0x370 [ 420.683762] ? security_file_ioctl+0x89/0xb0 [ 420.688444] SyS_ioctl+0x8f/0xc0 [ 420.692142] ? do_vfs_ioctl+0x1060/0x1060 [ 420.696401] do_syscall_64+0x1e8/0x640 [ 420.700624] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 420.705750] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 420.711143] RIP: 0033:0x45c2b7 [ 420.714478] RSP: 002b:00007f6a435d5a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 420.722773] RAX: ffffffffffffffda RBX: 00007f6a435d66d4 RCX: 000000000045c2b7 [ 420.730228] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 21:56:28 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x125}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:28 executing program 5 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 420.737589] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 420.745322] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 420.752690] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001b [ 420.772609] FAULT_INJECTION: forcing a failure. [ 420.772609] name failslab, interval 1, probability 0, space 0, times 0 [ 420.791263] CPU: 1 PID: 19361 Comm: syz-executor.2 Not tainted 4.14.171-syzkaller #0 [ 420.799353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 420.809133] Call Trace: [ 420.810847] FAULT_INJECTION: forcing a failure. [ 420.810847] name failslab, interval 1, probability 0, space 0, times 0 [ 420.811737] dump_stack+0x142/0x197 [ 420.827086] should_fail.cold+0x10f/0x159 [ 420.831278] should_failslab+0xdb/0x130 [ 420.835376] kmem_cache_alloc_node+0x287/0x780 [ 420.840133] __alloc_skb+0x9c/0x500 [ 420.843774] ? skb_trim+0x180/0x180 [ 420.847707] ? netlink_has_listeners+0x20a/0x330 [ 420.852473] kobject_uevent_env+0x6ea/0xc80 [ 420.856808] kobject_uevent+0x20/0x30 [ 420.860623] lo_ioctl+0x11d3/0x1cd0 [ 420.864567] ? loop_probe+0x160/0x160 [ 420.868367] blkdev_ioctl+0x95f/0x1850 [ 420.872283] ? blkpg_ioctl+0x970/0x970 [ 420.876192] ? __might_sleep+0x93/0xb0 [ 420.880078] ? __fget+0x210/0x370 [ 420.883779] block_ioctl+0xde/0x120 [ 420.887414] ? blkdev_fallocate+0x3b0/0x3b0 [ 420.891899] do_vfs_ioctl+0x7ae/0x1060 [ 420.895816] ? selinux_file_mprotect+0x5d0/0x5d0 [ 420.900626] ? lock_downgrade+0x740/0x740 [ 420.904778] ? ioctl_preallocate+0x1c0/0x1c0 [ 420.909271] ? __fget+0x237/0x370 [ 420.912754] ? security_file_ioctl+0x89/0xb0 [ 420.917348] SyS_ioctl+0x8f/0xc0 [ 420.921051] ? do_vfs_ioctl+0x1060/0x1060 [ 420.925401] do_syscall_64+0x1e8/0x640 [ 420.929324] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 420.934218] entry_SYSCALL_64_after_hwframe+0x42/0xb7 21:56:29 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) open(&(0x7f0000000240)='./file0\x00', 0x40000, 0x20) [ 420.939558] RIP: 0033:0x45c2b7 [ 420.942867] RSP: 002b:00007f921eac3a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 420.950705] RAX: ffffffffffffffda RBX: 00007f921eac46d4 RCX: 000000000045c2b7 [ 420.957987] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 420.965454] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 420.973031] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 420.980390] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001b [ 420.987806] CPU: 0 PID: 19373 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 420.995989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.005846] Call Trace: [ 421.008437] dump_stack+0x142/0x197 [ 421.012069] should_fail.cold+0x10f/0x159 [ 421.016228] should_failslab+0xdb/0x130 [ 421.020393] kmem_cache_alloc+0x2d7/0x780 [ 421.024709] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 421.030372] ? rcu_read_lock_sched_held+0x110/0x130 [ 421.035571] ? shmem_destroy_callback+0xa0/0xa0 [ 421.040361] shmem_alloc_inode+0x1c/0x50 [ 421.044738] alloc_inode+0x64/0x180 [ 421.048547] new_inode_pseudo+0x19/0xf0 [ 421.052525] new_inode+0x1f/0x40 [ 421.056173] shmem_get_inode+0x75/0x750 [ 421.060660] __shmem_file_setup.part.0+0x111/0x400 [ 421.065855] ? __alloc_fd+0x1d4/0x4a0 [ 421.069660] ? shmem_fill_super+0x8c0/0x8c0 [ 421.074101] SyS_memfd_create+0x1f9/0x3a0 [ 421.078503] ? shmem_fcntl+0x130/0x130 [ 421.082401] ? do_syscall_64+0x53/0x640 [ 421.086681] ? shmem_fcntl+0x130/0x130 [ 421.090571] do_syscall_64+0x1e8/0x640 [ 421.094572] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.100209] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 421.105518] RIP: 0033:0x45c449 [ 421.108706] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 421.116648] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c449 [ 421.124062] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 421.131517] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 21:56:29 executing program 5 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:29 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="b961bdcd5fddc8513e4d967bb3071f6eb45acb181ffaf49c6946d4fb99da6b03a51699304c8cbf8a67b3ec9823f331997a2a86cf4a5302be00bb80f9379f0ce77dd4f1196fdbbe1e245938d12bfcfe20bb56594f7b3d887ced35b986cbd66a504f3ca3ad0d1a9498ace2fd119268151c4d025e60939e7e377fa58da87b13ee0f1be62656891e35e5942423032895c53581268be786ca"], &(0x7f0000000040)='./file0\x00', 0x0, 0x85050, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 421.138794] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 421.146244] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000002 21:56:29 executing program 4: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/autofs\x00', 0x20000, 0x0) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000540)={0x3, &(0x7f0000000500)=[{0x7ff, 0xbc6e}, {0x4627, 0x4}, {0x401, 0x44}]}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) newfstatat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x400) syz_mount_image$tmpfs(&(0x7f0000000040)='tmpfs\x00', &(0x7f0000000080)='./file0\x00', 0x2, 0x2, &(0x7f00000000c0)=[{&(0x7f00000001c0)="a2b5ca1a07f188bd07ef7384e0545c33e34487ea582028356f43c8c01dbe3cf9db5d56d66cb6926e18c2e60bca14a23fe1567fc1883a061d5f4b8de0141af54d1e369301a4837ac868019564c5b191eb654c14a750aea4cfa4b0b56df625ca33fd5dd0615ac347700d1ebbfe7e6eb04e1b8edeccef21de1e4b3ea80160076653d9577faa8ca4a9aa202ccf42b33131daafafb276c027981f391054b7a6332c37fe96f957fdebfac277d388bb9a6560ddf86b33b24f1a59e4ff347a7abd97876c3af23cf889cc6acd4104bd5ef101b13b63516c5b3b00369d522f9dfa72d1280402f451e707", 0xe5}, {&(0x7f0000000380)="b390684af4304e991c86595420b1acdfa3a9d142e6d3218c4b28a6bc4c2931d5a9c248e1e5ab629dbf6b9adb06787bfc06ef3b89be0890f6faa091a431bda69ec5160b82082f958fb56adcb45b5c5567698c75107818d26b888d7e81", 0x5c, 0x8}], 0x2001000, &(0x7f0000000680)=ANY=[@ANYBLOB="6e725f696e6f6465733d00362d336d2c67695d3da5047ac04aa2b27c189aff091b1c1c4936d6a6fad4a5722aacf51a3db39c8e8e56aff57db3fe17e148de985e6d46595d471aeb88df15a82f1275fc6ba67d8717ad2fb780d6a151120a20b44be6cdd00643a71eb76cb39b5acc5c", @ANYRESHEX=r1, @ANYBLOB=',mode=00000000000000000000005,huge=within_size=,fsuuid=0\x0091df7a-984f-4977-025a-afdb320b,measure,smackfshat=,fscontext=user_u,obj_role=btrfs\x00,uid=', @ANYRESDEC=r2, @ANYBLOB=',fsname=btrfs\x00,dont_hash,measure,func=FILE_MMAP,\x00']) 21:56:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x101100, 0x18c) [ 421.228518] FAULT_INJECTION: forcing a failure. [ 421.228518] name failslab, interval 1, probability 0, space 0, times 0 [ 421.246564] CPU: 0 PID: 19382 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 421.254972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.264464] Call Trace: [ 421.267218] dump_stack+0x142/0x197 [ 421.271110] should_fail.cold+0x10f/0x159 [ 421.275459] should_failslab+0xdb/0x130 [ 421.279972] kmem_cache_alloc+0x2d7/0x780 [ 421.284222] ? shmem_alloc_inode+0x1c/0x50 [ 421.288586] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 421.294310] selinux_inode_alloc_security+0xb6/0x2a0 [ 421.300139] security_inode_alloc+0x94/0xd0 [ 421.304588] inode_init_always+0x552/0xaf0 [ 421.308917] alloc_inode+0x81/0x180 [ 421.312557] new_inode_pseudo+0x19/0xf0 [ 421.316685] new_inode+0x1f/0x40 [ 421.320458] shmem_get_inode+0x75/0x750 [ 421.325057] __shmem_file_setup.part.0+0x111/0x400 [ 421.330193] ? __alloc_fd+0x1d4/0x4a0 [ 421.334190] ? shmem_fill_super+0x8c0/0x8c0 [ 421.338665] SyS_memfd_create+0x1f9/0x3a0 [ 421.342986] ? shmem_fcntl+0x130/0x130 [ 421.347009] ? do_syscall_64+0x53/0x640 [ 421.351081] ? shmem_fcntl+0x130/0x130 [ 421.354981] do_syscall_64+0x1e8/0x640 [ 421.359163] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.364030] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 421.369245] RIP: 0033:0x45c449 21:56:29 executing program 5 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 421.372441] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 421.380162] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c449 [ 421.388164] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 421.396008] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 421.403471] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 421.410883] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000003 21:56:29 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="dd43a0d812441970b4664f3584c55cec6cc698f3eebac02d13c586c8c7370db970aa72a3621d6e7b2ca5d5632581689501d5b6cb760660476fefc13c67baa20b1f0d1dd88ab3fe12a95936cba756e6525dee23b96af51f7007640b21e8eeac49b2ff9f98523c55ef5dbfa11de122c024a7539e9c8e9430257a87b9491ce3764c9eebad9e8706a4605d0bbf073a023344e7c0fe80e845f4bf6823fe54687eab0e8a7db01c17da7083862133b6c5211b29d7ebf37073d79c4581d02adb49dce75e59650308cce87f56f37e72bd48b9546db774bb6105525db2a6a4f2c5a608ff4187d67e30a94b0176b5355f835badc3c8a0e7c4bbfeb77dfb84a580a7cacf109b2533c6e31997d30c80dd50afb4d8d34e5a46cdb03fe7596d09c3deeb172f816dfcaf86b642b95c323c971867051bf1ab4451711adcdbb9"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) [ 421.521028] FAULT_INJECTION: forcing a failure. [ 421.521028] name failslab, interval 1, probability 0, space 0, times 0 [ 421.562943] CPU: 0 PID: 19401 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 421.571269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.581366] Call Trace: [ 421.584063] dump_stack+0x142/0x197 [ 421.587814] should_fail.cold+0x10f/0x159 [ 421.592160] should_failslab+0xdb/0x130 [ 421.596159] kmem_cache_alloc+0x2d7/0x780 [ 421.600566] ? lock_downgrade+0x740/0x740 [ 421.604734] get_empty_filp+0x8c/0x3f0 [ 421.608807] alloc_file+0x23/0x440 [ 421.612509] __shmem_file_setup.part.0+0x1b1/0x400 [ 421.617448] ? __alloc_fd+0x1d4/0x4a0 [ 421.621890] ? shmem_fill_super+0x8c0/0x8c0 [ 421.626221] SyS_memfd_create+0x1f9/0x3a0 [ 421.630605] ? shmem_fcntl+0x130/0x130 [ 421.635055] ? do_syscall_64+0x53/0x640 [ 421.640086] ? shmem_fcntl+0x130/0x130 [ 421.644163] do_syscall_64+0x1e8/0x640 [ 421.648281] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.653739] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 421.659053] RIP: 0033:0x45c449 21:56:29 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) removexattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)=@known='trusted.overlay.nlink\x00') r2 = dup(r1) r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, &(0x7f0000000200)=r3) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYRES16=r4], &(0x7f0000000340)='./file0\x00', 0x0, 0x805110, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r3, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x38, 0x0, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x3531, 0x1}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x3, 0x2}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x7ff, 0x1}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 21:56:29 executing program 5 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 421.662322] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 421.670383] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c449 [ 421.677658] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 421.684925] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 421.692246] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 421.699514] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000004 21:56:29 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="dd43a0d812441970b4664f3584c55cec6cc698f3eebac02d13c586c8c7370db970aa72a3621d6e7b2ca5d5632581689501d5b6cb760660476fefc13c67baa20b1f0d1dd88ab3fe12a95936cba756e6525dee23b96af51f7007640b21e8eeac49b2ff9f98523c55ef5dbfa11de122c024a7539e9c8e9430257a87b9491ce3764c9eebad9e8706a4605d0bbf073a023344e7c0fe80e845f4bf6823fe54687eab0e8a7db01c17da7083862133b6c5211b29d7ebf37073d79c4581d02adb49dce75e59650308cce87f56f37e72bd48b9546db774bb6105525db2a6a4f2c5a608ff4187d67e30a94b0176b5355f835badc3c8a0e7c4bbfeb77dfb84a580a7cacf109b2533c6e31997d30c80dd50afb4d8d34e5a46cdb03fe7596d09c3deeb172f816dfcaf86b642b95c323c971867051bf1ab4451711adcdbb9"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) [ 421.745233] FAULT_INJECTION: forcing a failure. [ 421.745233] name failslab, interval 1, probability 0, space 0, times 0 [ 421.769885] CPU: 0 PID: 19414 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 421.778562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.788190] Call Trace: [ 421.790797] dump_stack+0x142/0x197 [ 421.794794] should_fail.cold+0x10f/0x159 [ 421.799238] should_failslab+0xdb/0x130 [ 421.803217] kmem_cache_alloc+0x2d7/0x780 [ 421.807365] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 421.812996] ? check_preemption_disabled+0x3c/0x250 [ 421.818188] selinux_file_alloc_security+0xb4/0x190 [ 421.823216] security_file_alloc+0x6d/0xa0 [ 421.827449] get_empty_filp+0x162/0x3f0 [ 421.831668] alloc_file+0x23/0x440 [ 421.835432] __shmem_file_setup.part.0+0x1b1/0x400 [ 421.840492] ? __alloc_fd+0x1d4/0x4a0 [ 421.844428] ? shmem_fill_super+0x8c0/0x8c0 [ 421.848791] SyS_memfd_create+0x1f9/0x3a0 [ 421.853035] ? shmem_fcntl+0x130/0x130 [ 421.856921] ? do_syscall_64+0x53/0x640 [ 421.860979] ? shmem_fcntl+0x130/0x130 [ 421.865059] do_syscall_64+0x1e8/0x640 [ 421.868947] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 421.873817] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 421.879219] RIP: 0033:0x45c449 [ 421.882405] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 421.890105] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c449 [ 421.897367] RDX: 0000000020000118 RSI: 0000000000000000 RDI: 00000000004c14f8 [ 421.904636] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 421.911995] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 421.919266] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000005 21:56:31 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x125}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:31 executing program 5 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:31 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/shm\x00', 0x0, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x1) ioctl$USBDEVFS_CLAIMINTERFACE(r0, 0x8004550f, &(0x7f0000000080)=0x832d) 21:56:31 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='security.ima\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="040a85accfe87924ee48734713aa07e4be2320d8"], 0x14, 0x0) 21:56:31 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) write$input_event(r0, &(0x7f0000000040)={{0x0, 0x7530}, 0x1, 0x7fff, 0x2}, 0x18) 21:56:31 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/enforce\x00', 0x40840, 0x0) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f00000001c0)={&(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9, 0x1}) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:31 executing program 3: mkdir(&(0x7f00000000c0)='./file0\x00', 0x2) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f0000000040)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 423.837385] FAULT_INJECTION: forcing a failure. [ 423.837385] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 423.866954] CPU: 0 PID: 19449 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 423.875083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 423.884595] Call Trace: [ 423.887402] dump_stack+0x142/0x197 [ 423.891219] should_fail.cold+0x10f/0x159 [ 423.895380] ? __might_sleep+0x93/0xb0 [ 423.899596] __alloc_pages_nodemask+0x1d6/0x7a0 [ 423.904274] ? __alloc_pages_slowpath+0x2930/0x2930 [ 423.909542] ? lock_downgrade+0x740/0x740 [ 423.914069] alloc_pages_vma+0xc9/0x4c0 [ 423.918179] shmem_alloc_page+0xf6/0x1a0 [ 423.922248] ? shmem_swapin+0x1a0/0x1a0 [ 423.926560] ? cred_has_capability+0x142/0x290 [ 423.931355] ? find_held_lock+0x35/0x130 [ 423.935657] ? check_preemption_disabled+0x3c/0x250 [ 423.940679] ? __this_cpu_preempt_check+0x1d/0x30 [ 423.945681] ? percpu_counter_add_batch+0x112/0x160 [ 423.950875] ? __vm_enough_memory+0x26a/0x490 [ 423.955704] shmem_alloc_and_acct_page+0x12a/0x680 [ 423.960766] shmem_getpage_gfp+0x3e7/0x2870 [ 423.965104] ? shmem_mfill_atomic_pte+0x17e0/0x17e0 [ 423.970627] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 423.976067] shmem_write_begin+0xfd/0x1b0 [ 423.980227] ? trace_hardirqs_on_caller+0x400/0x590 [ 423.985934] generic_perform_write+0x1f8/0x480 [ 423.990657] ? page_endio+0x530/0x530 [ 423.994848] ? current_time+0xb0/0xb0 [ 423.998753] ? generic_file_write_iter+0x9a/0x660 [ 424.003599] __generic_file_write_iter+0x239/0x5b0 [ 424.009546] generic_file_write_iter+0x303/0x660 [ 424.014315] __vfs_write+0x4a7/0x6b0 [ 424.018079] ? selinux_file_open+0x420/0x420 [ 424.022596] ? kernel_read+0x120/0x120 [ 424.026479] ? check_preemption_disabled+0x3c/0x250 [ 424.031508] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 424.036968] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 424.041729] ? __sb_start_write+0x153/0x2f0 [ 424.046273] vfs_write+0x198/0x500 [ 424.049982] SyS_pwrite64+0x115/0x140 [ 424.053775] ? SyS_pread64+0x140/0x140 [ 424.058169] ? do_syscall_64+0x53/0x640 [ 424.062244] ? SyS_pread64+0x140/0x140 [ 424.066674] do_syscall_64+0x1e8/0x640 [ 424.070701] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 424.075882] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 424.081734] RIP: 0033:0x416247 21:56:32 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000003c0)=ANY=[@ANYPTR64=&(0x7f0000001c80)=ANY=[@ANYRES32, @ANYBLOB="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"]], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) [ 424.084927] RSP: 002b:00007f97db781a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 424.092745] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 0000000000416247 [ 424.100367] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000004 [ 424.108067] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 424.115845] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 424.123274] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000006 21:56:32 executing program 5 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 424.211144] FAULT_INJECTION: forcing a failure. [ 424.211144] name failslab, interval 1, probability 0, space 0, times 0 [ 424.223075] CPU: 1 PID: 19464 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 424.231497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 424.241501] Call Trace: [ 424.244199] dump_stack+0x142/0x197 [ 424.247946] should_fail.cold+0x10f/0x159 [ 424.252532] should_failslab+0xdb/0x130 [ 424.256809] kmem_cache_alloc+0x47/0x780 [ 424.261012] ? __alloc_pages_slowpath+0x2930/0x2930 [ 424.266316] ? lock_downgrade+0x740/0x740 [ 424.270579] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 424.276626] __radix_tree_create+0x337/0x4d0 [ 424.281615] __radix_tree_insert+0xab/0x570 [ 424.286410] ? __radix_tree_create+0x4d0/0x4d0 [ 424.291268] shmem_add_to_page_cache+0x5a4/0x860 [ 424.296635] ? shmem_unused_huge_scan+0xa0/0xa0 [ 424.301567] ? __radix_tree_preload+0x1d2/0x260 [ 424.306687] shmem_getpage_gfp+0x17cc/0x2870 [ 424.311649] ? shmem_mfill_atomic_pte+0x17e0/0x17e0 [ 424.317025] ? iov_iter_fault_in_readable+0x1da/0x3c0 [ 424.322636] shmem_write_begin+0xfd/0x1b0 [ 424.327381] ? trace_hardirqs_on_caller+0x400/0x590 [ 424.332656] generic_perform_write+0x1f8/0x480 [ 424.337417] ? page_endio+0x530/0x530 [ 424.341438] ? current_time+0xb0/0xb0 [ 424.345460] ? generic_file_write_iter+0x9a/0x660 [ 424.350592] __generic_file_write_iter+0x239/0x5b0 [ 424.355818] generic_file_write_iter+0x303/0x660 [ 424.360836] __vfs_write+0x4a7/0x6b0 [ 424.364683] ? selinux_file_open+0x420/0x420 [ 424.369499] ? kernel_read+0x120/0x120 [ 424.373822] ? check_preemption_disabled+0x3c/0x250 [ 424.379029] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 424.384970] ? rcu_sync_lockdep_assert+0x6d/0xb0 [ 424.390080] ? __sb_start_write+0x153/0x2f0 [ 424.394756] vfs_write+0x198/0x500 [ 424.398786] SyS_pwrite64+0x115/0x140 [ 424.402684] ? SyS_pread64+0x140/0x140 [ 424.406731] ? do_syscall_64+0x53/0x640 [ 424.411147] ? SyS_pread64+0x140/0x140 [ 424.415192] do_syscall_64+0x1e8/0x640 [ 424.419073] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 424.423956] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 424.429291] RIP: 0033:0x416247 [ 424.432698] RSP: 002b:00007f97db781a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 424.441303] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 0000000000416247 [ 424.449479] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 0000000000000004 [ 424.459752] RBP: 000000000076bf20 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 424.467675] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 424.476293] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000007 21:56:32 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:32 executing program 4: r0 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_stats\x00', 0x0, 0x0) bind$rds(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:32 executing program 5 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 424.685636] FAULT_INJECTION: forcing a failure. [ 424.685636] name failslab, interval 1, probability 0, space 0, times 0 [ 424.701075] CPU: 1 PID: 19494 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 424.708990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 424.718444] Call Trace: [ 424.721505] dump_stack+0x142/0x197 [ 424.726463] should_fail.cold+0x10f/0x159 [ 424.730804] should_failslab+0xdb/0x130 [ 424.734900] kmem_cache_alloc+0x2d7/0x780 [ 424.739043] ? vfs_write+0x25f/0x500 [ 424.742761] getname_flags+0xcb/0x580 [ 424.746801] ? check_preemption_disabled+0x3c/0x250 [ 424.751819] getname+0x1a/0x20 [ 424.755101] do_sys_open+0x1e7/0x430 [ 424.759393] ? filp_open+0x70/0x70 [ 424.762971] ? fput+0xd4/0x150 [ 424.766255] ? SyS_pwrite64+0xca/0x140 [ 424.770151] SyS_open+0x2d/0x40 [ 424.773528] ? do_sys_open+0x430/0x430 [ 424.777423] do_syscall_64+0x1e8/0x640 [ 424.781561] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 424.787492] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 424.792906] RIP: 0033:0x4161e1 [ 424.796487] RSP: 002b:00007f97db781a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 424.804193] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 00000000004161e1 [ 424.811507] RDX: 00007f97db781b0a RSI: 0000000000000002 RDI: 00007f97db781b00 [ 424.819599] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 424.827171] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 424.834878] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000008 21:56:34 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562", 0x125}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:34 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(&(0x7f0000000040)=@sg0='/dev/sg0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='bpf\x00', 0x1000, &(0x7f0000000200)=',\x00') mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:34 executing program 2: syz_mount_image$minix(&(0x7f0000000040)='minix\x00', &(0x7f0000000080)='./file0\x00', 0x7e, 0x5, &(0x7f0000001400)=[{&(0x7f0000000380)="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", 0x1000, 0x113cb2a4}, {&(0x7f00000000c0)="d38d0622d0368ffe9d1b6fba3c8ed2d4ee4f9b1061d0b6", 0x17, 0x7ff}, {&(0x7f00000001c0)="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", 0xfb, 0x6}, {&(0x7f0000000140)="aeef14548ca277f1da18dc557dfe121546a60ef50e8294a4797648629c76c8ec23bf2012bb0b4f6b4fed258f", 0x2c, 0x15}, {&(0x7f0000001380)="4772144f1d19956ffff066d1f257e8c30ee4b327138b5f0bef987be0cfbd0974b769e0f2dcd952eb0374eca5224044825ab473bb349e34848de8466b3fb6249d38c8e04b85a495bf16453728acdf9800b06e1c93fe03bfa725313a4946", 0x5d, 0xfff}], 0x29411, 0x0) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) 21:56:34 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:34 executing program 5 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:34 executing program 4: r0 = socket$caif_stream(0x25, 0x1, 0x2) getsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000080), &(0x7f00000000c0)=0x10) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0xa4, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1000, 0x0) [ 426.886216] FAULT_INJECTION: forcing a failure. [ 426.886216] name failslab, interval 1, probability 0, space 0, times 0 [ 426.898765] CPU: 1 PID: 19519 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 426.907216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 426.917164] Call Trace: [ 426.919874] dump_stack+0x142/0x197 [ 426.923700] should_fail.cold+0x10f/0x159 [ 426.928369] should_failslab+0xdb/0x130 [ 426.932728] kmem_cache_alloc+0x2d7/0x780 [ 426.937187] ? vfs_write+0x25f/0x500 [ 426.941211] getname_flags+0xcb/0x580 [ 426.945027] ? check_preemption_disabled+0x3c/0x250 [ 426.950220] getname+0x1a/0x20 [ 426.953517] do_sys_open+0x1e7/0x430 [ 426.957496] ? filp_open+0x70/0x70 [ 426.961321] ? fput+0xd4/0x150 [ 426.964529] ? SyS_pwrite64+0xca/0x140 [ 426.968439] SyS_open+0x2d/0x40 [ 426.972050] ? do_sys_open+0x430/0x430 [ 426.976373] do_syscall_64+0x1e8/0x640 [ 426.980477] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 426.985332] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 426.990841] RIP: 0033:0x4161e1 [ 426.994434] RSP: 002b:00007f97db781a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 427.005102] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 00000000004161e1 [ 427.012495] RDX: 00007f97db781b0a RSI: 0000000000000002 RDI: 00007f97db781b00 [ 427.020143] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 427.027530] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 21:56:35 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:35 executing program 5 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 427.035477] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000009 [ 427.076564] FAULT_INJECTION: forcing a failure. [ 427.076564] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 427.088902] CPU: 1 PID: 19529 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 427.098441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 427.108223] Call Trace: [ 427.110959] dump_stack+0x142/0x197 [ 427.114864] should_fail.cold+0x10f/0x159 [ 427.119193] __alloc_pages_nodemask+0x1d6/0x7a0 [ 427.123873] ? fs_reclaim_acquire+0x20/0x20 [ 427.128641] ? __alloc_pages_slowpath+0x2930/0x2930 [ 427.133681] cache_grow_begin+0x80/0x400 [ 427.137977] kmem_cache_alloc+0x6a6/0x780 [ 427.142134] ? vfs_write+0x25f/0x500 [ 427.145858] getname_flags+0xcb/0x580 [ 427.149677] ? check_preemption_disabled+0x3c/0x250 [ 427.154897] getname+0x1a/0x20 [ 427.158106] do_sys_open+0x1e7/0x430 [ 427.161828] ? filp_open+0x70/0x70 [ 427.165463] ? fput+0xd4/0x150 [ 427.168922] ? SyS_pwrite64+0xca/0x140 [ 427.172942] SyS_open+0x2d/0x40 [ 427.176354] ? do_sys_open+0x430/0x430 [ 427.180380] do_syscall_64+0x1e8/0x640 [ 427.184287] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 427.189141] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 427.194788] RIP: 0033:0x4161e1 [ 427.198132] RSP: 002b:00007f97db781a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 427.206018] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 00000000004161e1 [ 427.213772] RDX: 00007f97db781b0a RSI: 0000000000000002 RDI: 00007f97db781b00 [ 427.221532] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 427.229107] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 427.236516] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000a 21:56:35 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x100) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) socket$caif_seqpacket(0x25, 0x5, 0x2) 21:56:35 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x20000, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='cmdline\x00') ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000080)={0x7, 0x1, {0x292dd5918ca2a4de, 0x2, 0x1, 0x3, 0x6d}, 0x364}) 21:56:35 executing program 5 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:35 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f00000001c0)={&(0x7f0000000180), 0x0, 0x400, 0x6, 0x1, 0xdc, 0x8000, 0x6e1c1598, {0xffffffff, 0x9, 0x1, 0x0, 0x468, 0x6, 0x1, 0xab93, 0x3, 0x5, 0xfc74, 0x1, 0x0, 0x20, "d4dbaa865b2eeefef8c575e70873de98ecc6f395acdbc12857ddbc24c30c5fb9"}}) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) [ 427.443055] FAULT_INJECTION: forcing a failure. [ 427.443055] name failslab, interval 1, probability 0, space 0, times 0 [ 427.455139] CPU: 0 PID: 19549 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 427.463586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 427.473148] Call Trace: [ 427.476136] dump_stack+0x142/0x197 [ 427.479794] should_fail.cold+0x10f/0x159 [ 427.484144] should_failslab+0xdb/0x130 [ 427.488145] kmem_cache_alloc+0x2d7/0x780 [ 427.492331] ? save_stack+0xa9/0xd0 [ 427.495997] get_empty_filp+0x8c/0x3f0 [ 427.500168] path_openat+0x96/0x3e50 [ 427.503910] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 427.509410] ? trace_hardirqs_on+0x10/0x10 [ 427.514178] ? check_preemption_disabled+0x3c/0x250 [ 427.519333] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 427.524708] ? find_held_lock+0x35/0x130 [ 427.530348] ? save_trace+0x290/0x290 [ 427.534346] ? __alloc_fd+0x1d4/0x4a0 [ 427.538794] do_filp_open+0x18e/0x250 [ 427.543933] ? may_open_dev+0xe0/0xe0 [ 427.547999] ? lock_downgrade+0x740/0x740 [ 427.552317] ? do_raw_spin_unlock+0x174/0x260 [ 427.556863] ? _raw_spin_unlock+0x2d/0x50 [ 427.561516] ? __alloc_fd+0x1d4/0x4a0 [ 427.565328] do_sys_open+0x2c5/0x430 [ 427.569185] ? filp_open+0x70/0x70 [ 427.572816] ? fput+0xd4/0x150 [ 427.576011] ? SyS_pwrite64+0xca/0x140 [ 427.580063] SyS_open+0x2d/0x40 [ 427.583721] ? do_sys_open+0x430/0x430 [ 427.587750] do_syscall_64+0x1e8/0x640 [ 427.591920] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 427.596900] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 427.602339] RIP: 0033:0x4161e1 [ 427.605647] RSP: 002b:00007f97db781a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 427.613641] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 00000000004161e1 [ 427.621305] RDX: 00007f97db781b0a RSI: 0000000000000002 RDI: 00007f97db781b00 [ 427.628580] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 427.636547] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 427.644625] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000b 21:56:37 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:37 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000040)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10010}], 0x0, 0x0) 21:56:37 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000040)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10e0521c48706ffa8d9daf9074fe17cd23efd9a000001000000000001fffffff60000005f42485266535f4d", 0x58, 0x10000}], 0x20000, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) socket$packet(0x11, 0x3, 0x300) r3 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x4, 0x410000) ioctl$TCSETX(r3, 0x5433, &(0x7f00000001c0)={0x80, 0x200, [0xfcde, 0x7, 0x9, 0x9], 0x4}) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, &(0x7f0000000280)={0x4}) write$9p(r2, 0x0, 0x0) write$FUSE_ATTR(0xffffffffffffffff, &(0x7f0000000200)={0x78, 0x0, 0x1, {0x1, 0x4, 0x0, {0x3, 0x0, 0x0, 0x40, 0x5, 0x7, 0x696, 0xffffff80, 0x854, 0x34f40f03, 0x0, 0xee01, 0xee00, 0x2, 0x7}}}, 0x78) setsockopt$X25_QBITINCL(r2, 0x106, 0x1, &(0x7f0000000000)=0x1, 0x4) 21:56:37 executing program 5 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:37 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000001bc0)={0x3, &(0x7f0000001b80)=[{0x3f, 0x3, 0x1f, 0x1}, {0xfffb, 0x6, 0x7b, 0x81}, {0x1, 0x4, 0x2, 0x20}]}) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:37 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0xa08880, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="aa56c45e5148d4a24bf6f85fcc86b5c8dc9b74b8682562019d155775eb2d57744d03712f5c1f8f2c8d6256c91afe0b3f9686e77a03e9d65649576c6e1f2ab676fff1d0560414dfdc0c9cd637dced6ca3f4e4043656dad365b30535f1fc1a34ee366b1b610ff7519d76a80efb7649aba1b45500a782acc1ecfef9385336446217f026ae58b4a446f0c47971f91834993eeb337a4a4933f2bcad3bcf585f0d22571f7704cb6bcea60b542ab81b87b5aa9ca22e3dc093628eb1205b112fd3a3e37a6a5904e85a4466d7ce81c226b2d3"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 429.886160] FAULT_INJECTION: forcing a failure. [ 429.886160] name failslab, interval 1, probability 0, space 0, times 0 [ 429.928995] CPU: 1 PID: 19574 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 429.937063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 429.946413] Call Trace: [ 429.949357] dump_stack+0x142/0x197 [ 429.953154] should_fail.cold+0x10f/0x159 [ 429.957292] should_failslab+0xdb/0x130 [ 429.961284] kmem_cache_alloc_trace+0x2e9/0x790 [ 429.965943] ? __lockdep_init_map+0x10c/0x570 [ 429.970435] ? loop_get_status64+0x120/0x120 [ 429.974830] __kthread_create_on_node+0xe3/0x3e0 [ 429.979569] ? kthread_park+0x140/0x140 [ 429.983537] ? __fget+0x210/0x370 [ 429.987016] ? loop_get_status64+0x120/0x120 [ 429.991413] kthread_create_on_node+0xa8/0xd0 [ 429.996036] ? __kthread_create_on_node+0x3e0/0x3e0 [ 430.001046] ? __lockdep_init_map+0x10c/0x570 [ 430.005809] lo_ioctl+0xce3/0x1cd0 [ 430.009354] ? debug_check_no_obj_freed+0x2aa/0x7b7 [ 430.014376] ? loop_probe+0x160/0x160 [ 430.018180] blkdev_ioctl+0x95f/0x1850 [ 430.022070] ? blkpg_ioctl+0x970/0x970 [ 430.026268] ? __might_sleep+0x93/0xb0 [ 430.030212] ? __fget+0x210/0x370 [ 430.033842] block_ioctl+0xde/0x120 [ 430.037689] ? blkdev_fallocate+0x3b0/0x3b0 [ 430.043103] do_vfs_ioctl+0x7ae/0x1060 [ 430.046984] ? selinux_file_mprotect+0x5d0/0x5d0 [ 430.051731] ? lock_downgrade+0x740/0x740 [ 430.055977] ? ioctl_preallocate+0x1c0/0x1c0 [ 430.060428] ? __fget+0x237/0x370 [ 430.063882] ? security_file_ioctl+0x89/0xb0 [ 430.068295] SyS_ioctl+0x8f/0xc0 [ 430.071772] ? do_vfs_ioctl+0x1060/0x1060 [ 430.075912] do_syscall_64+0x1e8/0x640 [ 430.079877] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 430.084934] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 430.090226] RIP: 0033:0x45c2b7 [ 430.093403] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 430.101104] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 430.108589] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 430.116893] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a 21:56:38 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:38 executing program 5 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 430.125267] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 430.133596] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000c 21:56:38 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(&(0x7f0000000780)=@nullb='/dev/nullb0\x00', &(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)='msdos\x00', 0x0, &(0x7f0000000840)='fscontext') mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100040, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r3) mount$bpf(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)='bpf\x00', 0x0, &(0x7f0000000340)={[{@mode={'mode', 0x3d, 0x200}}, {@mode={'mode', 0x3d, 0xfff}}, {@mode={'mode', 0x3d, 0x3}}, {@mode={'mode', 0x3d, 0x6}}, {@mode={'mode', 0x3d, 0x99a8}}, {@mode={'mode', 0x3d, 0x3}}], [{@uid_gt={'uid>', r1}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@appraise='appraise'}, {@fowner_eq={'fowner', 0x3d, r3}}, {@obj_role={'obj_role', 0x3d, 'ramfs\x00'}}]}) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) getrandom(&(0x7f00000005c0)=""/65, 0x41, 0x2) r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000640)='/dev/dlm-monitor\x00', 0x100, 0x0) recvfrom$unix(r4, &(0x7f0000000680)=""/89, 0x59, 0x40, &(0x7f0000000700)=@file={0x1, './file0\x00'}, 0x6e) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) r5 = msgget$private(0x0, 0x0) msgrcv(r5, &(0x7f0000000500)={0x0, ""/125}, 0x85, 0x0, 0x1000) msgsnd(r5, &(0x7f0000000000)={0x2}, 0x2000, 0x0) msgctl$IPC_SET(r5, 0x1, &(0x7f0000000340)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) msgctl$MSG_INFO(r5, 0xc, &(0x7f00000004c0)=""/2) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r8 = dup3(r6, r7, 0x0) write$9p(r8, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETFB(r8, 0xc01c64ad, &(0x7f0000000040)={0x1, 0x0, 0x4000f7, 0x1, 0x8, 0x0, 0x9}) setxattr$trusted_overlay_redirect(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.redirect\x00', &(0x7f0000000200)='./file0\x00', 0x8, 0x3) [ 430.207523] FAULT_INJECTION: forcing a failure. [ 430.207523] name failslab, interval 1, probability 0, space 0, times 0 [ 430.245933] CPU: 1 PID: 19594 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 430.253871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 430.263448] Call Trace: [ 430.266059] dump_stack+0x142/0x197 [ 430.269704] should_fail.cold+0x10f/0x159 [ 430.273981] should_failslab+0xdb/0x130 [ 430.278014] kmem_cache_alloc+0x2d7/0x780 [ 430.282175] ? trace_hardirqs_on+0x10/0x10 [ 430.286508] ? save_trace+0x290/0x290 [ 430.290324] __kernfs_new_node+0x70/0x480 [ 430.294644] kernfs_new_node+0x80/0xf0 [ 430.298542] kernfs_create_dir_ns+0x41/0x140 [ 430.302980] internal_create_group+0xea/0x7b0 [ 430.307510] sysfs_create_group+0x20/0x30 [ 430.311673] lo_ioctl+0x1162/0x1cd0 [ 430.315390] ? loop_probe+0x160/0x160 [ 430.319245] blkdev_ioctl+0x95f/0x1850 [ 430.323246] ? blkpg_ioctl+0x970/0x970 [ 430.327176] ? __might_sleep+0x93/0xb0 [ 430.331074] ? __fget+0x210/0x370 [ 430.334543] block_ioctl+0xde/0x120 [ 430.338198] ? blkdev_fallocate+0x3b0/0x3b0 [ 430.342532] do_vfs_ioctl+0x7ae/0x1060 [ 430.346624] ? selinux_file_mprotect+0x5d0/0x5d0 [ 430.351386] ? lock_downgrade+0x740/0x740 [ 430.355542] ? ioctl_preallocate+0x1c0/0x1c0 [ 430.360299] ? __fget+0x237/0x370 [ 430.363778] ? security_file_ioctl+0x89/0xb0 [ 430.368466] SyS_ioctl+0x8f/0xc0 [ 430.371908] ? do_vfs_ioctl+0x1060/0x1060 [ 430.376066] do_syscall_64+0x1e8/0x640 [ 430.379962] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 430.384905] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 430.390544] RIP: 0033:0x45c2b7 [ 430.393737] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:56:38 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') dup3(r0, r1, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) [ 430.401449] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 430.408730] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 430.416375] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 430.423779] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 430.431746] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000d 21:56:38 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0xfffffffffffffffd, 0x1, &(0x7f0000000100)=[{&(0x7f0000005c40)="8d24363ac0e902000a0000000001000000000001f60180001174aeb81e1b00b10efd9a0000f60000005f424800000020000000000000004cd07c7a1dac4c062d6ccffd1a34d3f0bc47bb3337795aeba24a708cd384df1d4c13d21c81a77d2efebda33eb29cfa4baa4d85ec8a51ba71c2536ca98cad66c11866fa3cc59769b2b5d9e54e72280000000000", 0x8a, 0x10000}], 0x2000, 0x0) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, 0x0, 0x0) accept4$packet(r0, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000700)=0x14, 0x80000) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0x30}, r1}, 0x14) sendmmsg$sock(0xffffffffffffffff, &(0x7f0000005ac0)=[{{&(0x7f0000000040)=@ll={0x11, 0x17, r1, 0x1, 0x80, 0x6, @remote}, 0x80, &(0x7f0000000140)=[{&(0x7f00000001c0)="6c3fa784f4da4f409c9d19c9909c376f2ab7d504b16035ce4f31124d57fbbfb43c881fcd0eeac5b5ff72b4d97c5b2a4a2ae335767ec2fbc665b3c6b7af2fe359b40d96024be40a12d9876fa3c34107831f3636af33c972539103428b6e79ca8b87ddb5f78d16a13729c4a0f78020bcf4922069dffd4b2b19f1596707d1814178b4bfa26df116e917842945571e3757e45c84f1c4ee15bee0f66c2234300e19e18d6479c875d5c6d37a436eabcfbc398e50bb34794d8ff7e7424ffb30ed3510dc6e6a9374c27f", 0xc6}, {&(0x7f0000000380)="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", 0x1000}, {&(0x7f00000000c0)="01fba7abf9fb54fbde3c6e1e08c9dbe210d9c72885c489569b5bd228497f8bb0b3893664f7558855ca84300028d5f56ef6d1611d68829ce8627a1815e31547", 0x3f}, {&(0x7f0000001380)="0e1635e60f437c4f6792d25e1318c64c282fb59a5e53e0b7e634fe8566361b33bad3fe3bae0977d02f7bb09b917fb5f068de8a9f6f874a5e128a40c54572e30f25071f848e04c2b35b386259fc5313e8a075aa12fc39e60324131f404f1725d85f6465f50862ff496481ab90434cf530b13e77eb5ea0a060a966762cab3ee9b2376488f57a5427bf30afba4677c62780579a51df", 0x94}], 0x4, &(0x7f0000001440)=[@txtime={{0x18, 0x1, 0x3d, 0x3}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @timestamping={{0x14, 0x1, 0x25, 0x80000000}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}], 0x60}}, {{&(0x7f00000014c0)=@rc={0x1f, @any, 0xe0}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000001540)="b3d0ead211d4324d950367e2a250686a6cadec3534be7c9afc490884508050ac1b2642f9509d3e7f64cbda44698a3b10af7f13f82342c74eb2dee7a81a23a32d0b8b4bad7078b35420", 0x49}], 0x1, &(0x7f00000015c0)=[@timestamping={{0x14, 0x1, 0x25, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x814e}}], 0x30}}, {{&(0x7f0000001600)=@generic={0x6, "a43c00156375172ea69005250ed0bdef22caa270bd962d7baacc48c4cbdcf132f1fbc596a0c670f77b2897f6378f279946779286d3537103ff0394d3b8af775f8cae6b7a1779854136689e36a0154369d14d4050c947ded5f198318e6e58087265167ae8f047752f6c51abe7905ff3a2d6babe44b98678e7e93e7a7eb9d5"}, 0x80, &(0x7f0000001ac0)=[{&(0x7f0000001680)="a6289ba8120bc0a1ace06a13271a8352", 0x10}, {&(0x7f00000016c0)="2cde322d955e0fa5d09f90b1d5d80d5985c165aa3f2690d06eb209ff8ade6689cab688c899163aa820a48e353e57f5f146de2cffde21299f6e8859eaa8371d74135ea17d3a1b18f2ccdaf6148bb7b545c23d3ae123051f8f7b90bbc0adadea820bbe17a6aa4e19c7d7", 0x69}, {&(0x7f0000001740)="4149995eb55a4d0f3e17b69275ebc62d939b71359e61ad3241b9ae4434b545ab206df4ee9655519f3a3e962df959b58ee42811b9dc540dc229fd8a", 0x3b}, {&(0x7f0000001780)="8055bb0ed53be64361131b5b1fe1de2dfaeb014c32fead84c79d9eba695ae941a57f57b721f8c28e708317e77ed7369311d59dc44602d2b6f4b2c48ff6b566132764bf80f815beda41e5928e67594a5b4dceebf6aa4daec8535bd8c784", 0x5d}, {&(0x7f0000001800)="1d23e551b3e0ead86f75798b8ec0e3488aee517638b7bffced11e829d8c734f6a88354b19d963885fc008fc196924271847192ce70bb370c6148081e4fd80902eb370ca847982e5f76e7d6dff16a0b4ee930cc93129af2f980e22ad6d60a628c64ee0d42b05164ae0f801017fb05fc0c3545d63e93a1e305", 0x78}, {&(0x7f0000001880)="5a3df98cc58804acf7674b7908ece943f139c23d58f80cf9d24bdb97b179f5cd45cae2da6ad268e205bcba8910bf5ae1492908138da2ebb2aaa527be1a9f69f0e6a885e28269fa0065c24a2c5415cdc2ad8a274a0b0b47f0154e4e746c5bb947e3c4700a288fd66c3e8bb7fa4dde8ca8fb1e1e4ead8ab9ea92d46918beded6b94b3ddeb8d709b948026f308fe431f19178ddc7aaa0c65d73ae9892b5dc70a104e8e39732495e05d741bdade62c4e99f87888cc6a0bb066c80e3715", 0xbb}, {&(0x7f0000001940)="767f489647cd13239418bb6919ce43cc03f4e988630023863da288117376618c0b45e584c1099c00be08daed985c57a3c008bba744bc6b8ceecc73cc7b07ed77a8964bbf1caa8b42749dcc2fd97f0f05b8bee5f9ac82e6b0313cca6c7ba91a8526045ce3059d346c84c4ae180e19d1929cfaedd54572962a7f16cc87c878a0b66aa9fa10017edcc8e4354c085b810b29de80a6791d70a8b0fc96729a60abda87578771f2bedd90b72cb4e404e4a3c50c95f8de10becabfb674fe7df7680b0710088a33", 0xc3}, {&(0x7f0000001a40)="cf0345c8c0cebbac7ad1fa31d92c1c0bb2c20a067b001db55781d0abfbd3c6094f1f1e1595a65b20265f878883bf1a2b431efcca1d448f64dbde1228ef2defdf91706fe7c023f6f0bf075605e6a1e1a21be20e8bc20917e1219fa4ca792957dc1d476b8f5668fc4ce5d60696d4a66709948a51344191ad9449698c", 0x7b}], 0x8, &(0x7f0000001b40)=[@txtime={{0x18, 0x1, 0x3d, 0x17}}, @timestamping={{0x14, 0x1, 0x25, 0x7f}}, @mark={{0x14, 0x1, 0x24, 0x800}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}], 0x60}}, {{&(0x7f0000001bc0)=@vsock={0x28, 0x0, 0x2711, @hyper}, 0x80, &(0x7f0000003100)=[{&(0x7f0000001c40)="629bda1f025c06f5c6ee5486653917d7490a079ab3bd73d0f837d2d68438c2c71dec768821c782a5ff0c0db4219e22c8edec605ca8e538bea005e3f8ad5cf4fdbd146897c3ca48c0333017d59cb0fe00c09b961cbadadbc2c0eb289d289879bb378078cb62f251b33b55521ebab5f06de78cd54ce3c1e0d95e0f9f75adc36fc8c52d71", 0x83}, {&(0x7f0000001d00)="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", 0x1000}, {&(0x7f0000002d00)="40787fbc6308a373806550ae853e470c9f1f85e8a4a340b7286ee2ffa4fce3e2088d251008bed2d00cd48cbc439dd3f183bff74d27104893ed719d93702907b8937851f23b1c257ab05a10d0d72390a9c10990b2a4655ca8f7412ba598bbdf613f326260c4b4a818f43fcf6eaaefc3a8ce2463a376bde34e3f676ffde5646667767b16a70db538098d2388e45a9d785bac", 0x91}, {&(0x7f0000002dc0)="236f614fce913367b70727c65c35dcc27478916b79606660040affa2e7a9170ad87889fea1ce1e95c6d06d9e543db40f00defb9f6104c15f5cecc504883fd3d0b6fe042ba81da5caeb61bd1756bcd7d6", 0x50}, {&(0x7f0000002e40)="5590a16ad3c2f0c31a32d090cfbc4851b7822b76da870802b684bfba15c1565c1c27eb3e167afaccbee90f96a8706259bf0ef1075907ce9db63c43c1c730808c4f169ef8d4eb4350e5109b513ea3d04e82b12f4abedb1ae4bcda56290338f501f8c4a5aea676847ed6c98cc6089ba704d5776982232ba9d946eb459c97cd724b1e0035896771898aecefe64998d8f57ac88dca4ee5523c6d1b818b02a6e96909d9555caf4d37e58288e8c94d510b2a17ccbca0ec5ff4242c27eb6d4f64a539bd0dcda98fd03eeac60e401eb34e7636018f7f01a91748e8d7d2072198a365e9d92280178b17fee1", 0xe7}, {&(0x7f0000002f40)="3ce33449a5edc75c15a42a47f7bdd3616faa18bc5d12fc5aa0b4e5eca67eea183eef84b9eeece4be0299933679bf6bbdba29b8cba6cbd2d9bd5de87c02b9", 0x3e}, {&(0x7f0000002f80)="c782f1ab44f0a00e13dd3d0aa132c025b03fe3a8c7a3270ab7e347a61575f9d29d9ddc74c237666932f50fa4f21ef779a318a060bdbf7ab4b4acc36ed3347451f36608ef83ecaa74cbd32d2315bf4e484829113e1a843bc817076172b57965702d403a0d2a748ce2352d63546b927915f75257abc5879d1a879282252df1da79d929b631fdf74a", 0x87}, {&(0x7f0000003040)="773f9e16013abc886d30a4c726cd71c38385ceee307c1ff3c902e1b54ef84e28", 0x20}, {&(0x7f0000003080)="0640a27e77021f4ff6ce4f6f53060b90a6f66bc50e6149381889f015707b6549ab7154e3f1e982ae7bebe4f9fec7bf526a0da1c0ce871eade18d8e086ced146cdb1ff40164fd4b5a654424", 0x4b}], 0x9, &(0x7f00000031c0)=[@mark={{0x14, 0x1, 0x24, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x1ff}}], 0x48}}, {{&(0x7f0000003240)=@isdn={0x22, 0x38, 0x3f, 0x0, 0x3}, 0x80, &(0x7f0000004540)=[{&(0x7f00000032c0)="4504be6c32d0a9b7b6c4c952d9d03df4e6d3bf25ee88495f61f11840eaf08f3bb4c62458f32f67b4bc650caad8e88b45cdfae2ffcee5f1b98c6afd297643211ed6ff29f2bc27375ec1c65d401285b72071b4397b2ecb539a22a62d76b6e7d862ad67e10748047c121fb72ac29df99966a4f51667a2c742572f72061c30a8f09d6d5dcbb934cc13ed661520e1ead860bfb1150b3aec8a3b566c7ce8ddc01d35c28f74", 0xa2}, {&(0x7f0000003380)="f911af786a238e75393e4c56feed3174bfa6ef1c014e6b1cd744ee23f4e73dd75d066607442b7a8a1d5e4756b422acf9d342", 0x32}, {&(0x7f00000033c0)="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", 0x1000}, {&(0x7f00000043c0)="22d7f5d94d54d9181b5fb22f348b032c08ef82520fb5bdda859f3f1458cccc92a876a9fe580ef8b6fe3d9f0d6d1ca6d1faa720d94d288c40caa8787a1f84fb669eecaeebd3db7498fff1fedf75d466375ae631167de0fa837fc0f3782a1f9c92", 0x60}, {&(0x7f0000004440)="25b9842636e35626e8893a60d898", 0xe}, {&(0x7f0000004480)="42e00fc99e2e592d8266959b9de49a7ff7a92467350b5e8348b521695d57fdcdd34144e624ad8839ede9db2c8d370f47f758f14bc7abe08996998344728079d171597dd2d398b258ca7e5b65ce51f808ebeb164f4e467c1eb9182eea0fa22210e8a4600346d04fc1ac8d9ade1e486687f66fcbd20c0f3a6392b8e5f622ea961ef89e2e9007d2ab11e53fd41c236ce10279bc953113fa9cd76b6cac8f2ad88874bf3d74e05d0e911211c935327f6f4e0fdcb15ca440889ecf10a7", 0xba}], 0x6, &(0x7f00000045c0)=[@mark={{0x14, 0x1, 0x24, 0x1}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}], 0x30}}, {{&(0x7f0000004600)=@can, 0x80, &(0x7f0000005a00)=[{&(0x7f0000004680)="f70f368d9070f42a6f71952433927839ee4908aabfe3f3e4", 0x18}, {&(0x7f00000046c0)="c0a9415862ce01ea2df78dff30b3d63fe8afbbf179c473cfcec741a9d64b22a195821d9262094b8215760e5e58ef3a2d8ac86ae3806322937f356a985603f51cc57286561f7730f07602caf7c0520a71ee3d1aa78455e25b39f5838fbf292f5a7415de66", 0x64}, {&(0x7f0000004740)="eb05cb8e5bd4a4ae9100f26154b851adde83b9a5bbe4557d997c97a3efdaf4957c1dd822c164f3b6fde100e7b6e87676e3b9eb5125f23864345a", 0x3a}, {&(0x7f0000004780)="8a6696574e9faddd550c21230786e3b027c3c3af2f9b0bb8845a2c8e5b6effa11534c075ed3cfe6ceb63d31de2ce88eadb811b85239869bc768114856834990c58b4ce7f7254508f5f74d8d68da70cc5068d44344a7a202111b5d0936c190ce0cd130765675cef177ee82b6e5443fb510d20a887896d0ce6ccfc467fb591ae1300717a710d6dd5afc57d1d1d48b55c6abbef4a152a8ef02de35455d81939b33ebef5fb21857d15df6dbd3b50", 0xac}, {&(0x7f0000004840)="04371afaafb16a7af4175de53544fc62d32cab8cc6b160dd0cca1f01c8ecc2cf2146291ad81a5ef911c2693f4c759b7258fedcb8e3eae23ded7005bfdaf0796477311edbba29a5120faa401f4334f047df0ed9c13d8e9974e7bf757cd6b5d4025f0607386aef01f8775bb172ef74008ece9b3d1311f5acb9c5d1b3453c307d7ee745753706463cfeaa", 0x89}, {&(0x7f0000004900)="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", 0x1000}, {&(0x7f0000005900)="4940d9ba30fb879bb97456406866490107bd510661f3b760d030ff94a21a3e68a39fbaf6c78bbac8f65f01f85c5e5009a448d30d8f76c1b733bb2ad151d9d2154356a6ba42fa9a672f487991acbd3af3eac6666f70", 0x55}, {&(0x7f0000005980)="491d0dfc8087e3e7e661fe1c67f5cdf162ddf9a05aedfec5b47ba8cc4d51542fd679352eefd6b246884b60e5f69f557cd569fbc87f67e52afe50f0878cceaa26fc969beadbd6720daa44aae7efb54987180d26", 0x53}], 0x8, &(0x7f0000005a80)=[@timestamping={{0x14, 0x1, 0x25, 0x2}}, @mark={{0x14, 0x1, 0x24, 0xffffffff}}], 0x30}}], 0x6, 0x2000c080) 21:56:38 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) [ 430.556900] FAT-fs (nullb0): Unrecognized mount option "fscontext" or missing value [ 430.586848] FAT-fs (nullb0): Unrecognized mount option "fscontext" or missing value 21:56:41 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:41 executing program 5 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:41 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:41 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r0, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r0, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r0, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, 0x0, 0x0) accept4$packet(r1, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000700)=0x14, 0x80000) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0x30}, r2}, 0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'veth0_to_batadv\x00', r2}) connect(r0, &(0x7f0000000500)=@xdp={0x2c, 0x8, r3, 0x2e}, 0x80) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='trusted.overlay.nlink\x00', &(0x7f00000001c0)={'L-', 0xa4}, 0x16, 0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000300)={{{@in6=@mcast1, @in6=@mcast1}}, {{@in6=@remote}, 0x0, @in=@multicast2}}, &(0x7f0000000200)=0xe8) 21:56:41 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x3, &(0x7f00000001c0)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f0000000040)="7417", 0x2, 0x3}, {&(0x7f0000000080)="37863be041743e67c6a0936a5c12c70b49633e77fa51a268122866f573a02eb3cdf491798ce3b7438a8b1b8ec2bcf6da869471919b45182e73e14aa4fc854d00de2e59531622137f073003b6042b1c97b9d6", 0x52, 0x20}], 0x260800, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000100)=0x0) r4 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$EBT_SO_GET_INIT_ENTRIES(r4, 0x0, 0x83, &(0x7f0000000480)={'nat\x00', 0x0, 0x4, 0x7d, [], 0x1, &(0x7f0000000240)=[{}], &(0x7f0000000280)=""/125}, &(0x7f0000000500)=0x78) ptrace$setregset(0x4205, r3, 0x3, &(0x7f0000000140)={&(0x7f0000000380)="dc2b638a094d9cb061e981338a39f48da48f39b40aaac9a7e3a1f97209091125ae8c3d9ae3f1fcb541ef31af311952aa3b365a5bcbc47993652db25c3f273738ef3c78821975d663288868f9bd16d4805b5a40c228d9f8e40310fe4e48121d44472d85fbf2603e3390c5f149dbb18ec5c59279f0120cb478588b135c2a3dbd0270c76a735cc4df103b1f9af4a6c1870f1445a99a5d0aba4f58d8020090b3745819b5799f79583ff6d359b22e7a522c5b887ea413338183390d2c069208e11e3eb58d8bb0688f5966baf5fbb72634b809245aa27f6908e348db", 0xd9}) timer_create(0x6, &(0x7f0000000540)={0x0, 0x33, 0x4, @tid=r3}, &(0x7f0000000580)=0x0) timer_delete(r5) 21:56:41 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000480)=@random={'trusted.', '\xae/em1^posix_acl_access+em0\\'}, &(0x7f00000004c0)='cifs\x00', 0x5, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) sendto$unix(r2, &(0x7f0000000040)="005cf44540795fc893962ffdc11794740a", 0xffcf, 0xfffffffffbfeffee, 0x0, 0x0) recvfrom(r2, &(0x7f0000001240)=""/4096, 0xffffff7e, 0x0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000340)='NLBL_MGMT\x00') sendmsg$NLBL_MGMT_C_REMOVEDEF(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x64, r3, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x33}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x21}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev={0xfe, 0x80, [], 0x14}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr="e66f2f0024052ef35bff271ee0991851"}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) sendmsg$NLBL_MGMT_C_REMOVE(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x870023}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x58, r3, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @empty}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xfffffffffffffffe}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x58}, 0x1, 0x0, 0x0, 0x44000814}, 0x5) r4 = creat(&(0x7f0000000500)='./file0\x00', 0x6) clock_gettime(0x0, &(0x7f0000000740)={0x0, 0x0}) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f00000007c0)={0x6, 0x5, 0x4, 0x80000000, 0x6, {r5, r6/1000+30000}, {0x3, 0x1, 0x1, 0xe1, 0x4, 0x40, "23aa898d"}, 0x2, 0x3, @planes=&(0x7f0000000780)={0xb0df, 0x6, @mem_offset=0x401, 0x7}, 0x6, 0x0, 0xffffffffffffffff}) r8 = getpid() sched_setscheduler(r8, 0x5, &(0x7f00000001c0)) getpgid(r8) ioctl$RTC_WKALM_RD(r7, 0x80287010, &(0x7f0000000840)) r9 = socket$phonet_pipe(0x23, 0x5, 0x2) r10 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r11 = dup3(r9, r10, 0x0) write$9p(r11, 0x0, 0x0) ioctl$TUNGETFEATURES(r11, 0x800454cf, &(0x7f0000000580)) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000540)=0x8, 0x4) ioctl$HCIINQUIRY(r7, 0x800448f0, &(0x7f0000000880)={0x3, 0x2, "118a93", 0x40, 0x1}) syz_mount_image$cifs(&(0x7f0000000040)='cifs\x00', &(0x7f0000000080)='./file0\x00', 0x3, 0x3, &(0x7f0000000240)=[{&(0x7f00000000c0)="5b6c9960bc82ce657512cc8e69ce490045f44bf3cd995533384aaddab1bc19a90bf4df2ac3d45617666ba51b636760cd4f455c8019a67fed00f200b141", 0x3d, 0x7}, {&(0x7f00000001c0)="94f902daf540c681f6bd119c9d6a3fc6993b8d2dfb0515db858c64e75dd11ddba80be03a0a94861710a2231f8bdf4e35df10703db94cd09388d666556d60c4ba0548c1bb", 0x44, 0x1}, {&(0x7f0000000380)="c9e4917f2a22794e675ebd652699010129b07296cd985cd21cfd74c5e4858524ae1f1f1318a59ae6d6c5fc8387fb821d46a7c63bd8eb2247c9730c98d6bb6e497bbf31acf83fda0af172f0ed129ff3a06204caffa81afd7a238444d11c40731c2c2311ac17d9f17e031e964400fcbfb81189f3d6207ffec91deb1a87c9dc696c8232d81f98789dcaadfdd37f13e8c71664ecced4619cfcabcb30a4f02b61c86949608ccb817cd6df76cbb15272ec6aaa07eb07b20f1c7473db017c618df600bf7033cd65801a04c5717b313dd56d116a9a56c75c", 0xd4, 0xfffffffffffff970}], 0x2400, &(0x7f0000000140)='btrfs\x00') 21:56:41 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 432.943053] FAULT_INJECTION: forcing a failure. [ 432.943053] name failslab, interval 1, probability 0, space 0, times 0 [ 432.977201] CPU: 1 PID: 19637 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 432.985261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 432.994736] Call Trace: [ 432.997449] dump_stack+0x142/0x197 [ 433.001106] should_fail.cold+0x10f/0x159 [ 433.005545] should_failslab+0xdb/0x130 [ 433.009514] kmem_cache_alloc+0x2d7/0x780 [ 433.013666] ? __mutex_unlock_slowpath+0x71/0x800 [ 433.018568] ? __lock_is_held+0xb6/0x140 [ 433.022758] __kernfs_new_node+0x70/0x480 [ 433.026898] kernfs_new_node+0x80/0xf0 [ 433.030792] __kernfs_create_file+0x46/0x323 [ 433.035225] sysfs_add_file_mode_ns+0x1e4/0x450 [ 433.039909] internal_create_group+0x232/0x7b0 [ 433.044493] sysfs_create_group+0x20/0x30 [ 433.048790] lo_ioctl+0x1162/0x1cd0 [ 433.052454] ? loop_probe+0x160/0x160 [ 433.056243] blkdev_ioctl+0x95f/0x1850 [ 433.060133] ? blkpg_ioctl+0x970/0x970 [ 433.064177] ? __might_sleep+0x93/0xb0 [ 433.068057] ? __fget+0x210/0x370 [ 433.071538] block_ioctl+0xde/0x120 [ 433.075165] ? blkdev_fallocate+0x3b0/0x3b0 [ 433.079703] do_vfs_ioctl+0x7ae/0x1060 [ 433.083580] ? selinux_file_mprotect+0x5d0/0x5d0 [ 433.088354] ? lock_downgrade+0x740/0x740 [ 433.092542] ? ioctl_preallocate+0x1c0/0x1c0 [ 433.096950] ? __fget+0x237/0x370 [ 433.100412] ? security_file_ioctl+0x89/0xb0 [ 433.104826] SyS_ioctl+0x8f/0xc0 [ 433.108184] ? do_vfs_ioctl+0x1060/0x1060 [ 433.112332] do_syscall_64+0x1e8/0x640 [ 433.116280] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 433.121137] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 433.126368] RIP: 0033:0x45c2b7 [ 433.129543] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 433.137345] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 433.144604] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 433.151865] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 433.159126] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 433.166390] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000e 21:56:41 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:41 executing program 5 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:41 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) socket$phonet_pipe(0x23, 0x5, 0x2) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:41 executing program 2: r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f00000001c0)) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:41 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="4ef4ffadf9082729fbd50771cdb2b8055566d2a9d1ced11d456f390d33898f2204b3726b46a97946a8d7201cfe0449413ab9b917b213fba973cbeee66dfe71976555fee4a15b368f998e6f8d8bcb0000000000"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 433.385690] FAULT_INJECTION: forcing a failure. [ 433.385690] name failslab, interval 1, probability 0, space 0, times 0 [ 433.424248] CPU: 0 PID: 19670 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 433.432176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 433.441769] Call Trace: [ 433.444372] dump_stack+0x142/0x197 [ 433.448006] should_fail.cold+0x10f/0x159 [ 433.452158] should_failslab+0xdb/0x130 [ 433.456121] kmem_cache_alloc+0x2d7/0x780 [ 433.460276] ? __mutex_unlock_slowpath+0x71/0x800 [ 433.465125] ? __lock_is_held+0xb6/0x140 [ 433.469198] __kernfs_new_node+0x70/0x480 [ 433.473338] kernfs_new_node+0x80/0xf0 [ 433.477228] __kernfs_create_file+0x46/0x323 [ 433.481749] sysfs_add_file_mode_ns+0x1e4/0x450 [ 433.486412] internal_create_group+0x232/0x7b0 [ 433.491010] sysfs_create_group+0x20/0x30 [ 433.495156] lo_ioctl+0x1162/0x1cd0 [ 433.498769] ? loop_probe+0x160/0x160 [ 433.502568] blkdev_ioctl+0x95f/0x1850 [ 433.506448] ? blkpg_ioctl+0x970/0x970 [ 433.510327] ? __might_sleep+0x93/0xb0 [ 433.514306] ? __fget+0x210/0x370 [ 433.517865] block_ioctl+0xde/0x120 [ 433.521480] ? blkdev_fallocate+0x3b0/0x3b0 [ 433.525802] do_vfs_ioctl+0x7ae/0x1060 [ 433.529682] ? selinux_file_mprotect+0x5d0/0x5d0 [ 433.534435] ? lock_downgrade+0x740/0x740 [ 433.538573] ? ioctl_preallocate+0x1c0/0x1c0 [ 433.542968] ? __fget+0x237/0x370 [ 433.546423] ? security_file_ioctl+0x89/0xb0 [ 433.550827] SyS_ioctl+0x8f/0xc0 [ 433.554195] ? do_vfs_ioctl+0x1060/0x1060 [ 433.558334] do_syscall_64+0x1e8/0x640 [ 433.562222] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 433.567057] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 433.572233] RIP: 0033:0x45c2b7 [ 433.575416] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:56:41 executing program 0: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) [ 433.583120] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 433.590384] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 433.597646] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 433.605011] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 433.612291] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000000f 21:56:41 executing program 5 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:41 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = socket$phonet_pipe(0x23, 0x5, 0x2) r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r7 = dup3(r5, r6, 0x0) write$9p(r7, 0x0, 0x0) sendmmsg$unix(r7, &(0x7f0000000140)=[{&(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001500)=[{&(0x7f0000000040)="0f165f5db0b07833612b00cc20999eae37722e836be36f7c3bdcb0b41a2a594bb14756febca3fc1307", 0x29}, {&(0x7f0000000240)="e01afa99414576aed1c22c06d62f17fcf619d7cac9e701c68f0d45b178429d79eac58ab0b8763483917a07a7bd6a5072112e7600f8892656c7f436c1bb501a38d479801f3af1d7034abaf6b9508eb89fb168e9a0a3585a2b488729d6ef7b42", 0x5f}, {&(0x7f0000000380)="3730df58becfda4f1b26329a2943b3b65c869b36dd4845a6c4bf33aacde66c624301e4264dc43c4cefcbdd2f1d1cfbfcdf5f862fc7b4c652f6d5c7d576fb0faef279be8332847ff7f5cef09397f4bf5c95c472cf6fc3f079af076d1a721f8c1d4284684e2306cd10a03a6360899132fdb3d5d5c194d61bd9129c94218bdbe1e2f0ab9c9f73479f1804d60f7ec3d8a1d9f1a8304fe896848a072d53dad4dc3ff067c7a7c0bc21b75e8a9e22e2", 0xac}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000001440)="f62e245a9534e4b4188c49dd583e8a3587ff441b5175de3c96765e4c008ef01b87b5372121f10372c53af8f458655befdce14d1262c0fa291f0a7240be246b119f59a3643bfec57155c6a93f0805d2f8e78b6e54d804f9b2b6577510a1b55311e1fdfaf6bb2dae2bc42fb10a6647e65e32f5fcda3d8a1d0f31bdb6033d17d399b514ca7632f68a87da6dd8ffdfa41829f13763fdb957babdaf72d4b4afeed5002e06e90dd4f8e7bbeb16b7b4246971a432616c71e0dc3b", 0xb7}], 0x5}], 0x1, 0x4040) r8 = dup3(r3, r4, 0x0) write$9p(r8, 0x0, 0x0) r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$KDGETLED(r9, 0x4b31, &(0x7f0000000080)) [ 433.866386] FAULT_INJECTION: forcing a failure. [ 433.866386] name failslab, interval 1, probability 0, space 0, times 0 [ 433.893475] CPU: 0 PID: 19698 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 433.901494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 433.910855] Call Trace: [ 433.913677] dump_stack+0x142/0x197 [ 433.917320] should_fail.cold+0x10f/0x159 [ 433.921484] should_failslab+0xdb/0x130 [ 433.925467] kmem_cache_alloc+0x2d7/0x780 [ 433.929754] ? wait_for_completion+0x420/0x420 [ 433.934349] __kernfs_new_node+0x70/0x480 [ 433.938521] ? kernfs_activate+0x13a/0x190 [ 433.942764] kernfs_new_node+0x80/0xf0 [ 433.946659] __kernfs_create_file+0x46/0x323 [ 433.951079] sysfs_add_file_mode_ns+0x1e4/0x450 [ 433.955865] internal_create_group+0x232/0x7b0 [ 433.960473] sysfs_create_group+0x20/0x30 [ 433.964629] lo_ioctl+0x1162/0x1cd0 [ 433.968268] ? loop_probe+0x160/0x160 [ 433.972092] blkdev_ioctl+0x95f/0x1850 [ 433.975982] ? blkpg_ioctl+0x970/0x970 [ 433.979901] ? __might_sleep+0x93/0xb0 [ 433.983775] ? __fget+0x210/0x370 [ 433.987220] block_ioctl+0xde/0x120 [ 433.990843] ? blkdev_fallocate+0x3b0/0x3b0 [ 433.995248] do_vfs_ioctl+0x7ae/0x1060 [ 433.999605] ? selinux_file_mprotect+0x5d0/0x5d0 [ 434.004356] ? lock_downgrade+0x740/0x740 [ 434.008502] ? ioctl_preallocate+0x1c0/0x1c0 [ 434.012909] ? __fget+0x237/0x370 [ 434.016359] ? security_file_ioctl+0x89/0xb0 [ 434.020785] SyS_ioctl+0x8f/0xc0 [ 434.024149] ? do_vfs_ioctl+0x1060/0x1060 [ 434.028525] do_syscall_64+0x1e8/0x640 [ 434.032408] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 434.037240] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 434.042426] RIP: 0033:0x45c2b7 [ 434.045608] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 434.053320] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 434.060588] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 434.067874] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 434.075144] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 434.082411] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000010 21:56:44 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:44 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x1, 0x2) ioctl$VIDIOC_SUBDEV_G_FMT(r0, 0xc0585604, &(0x7f0000000180)={0x1, 0x0, {0x7fff, 0x7fffffff, 0x3006, 0x6, 0x0, 0x7, 0x2, 0x6}}) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:44 executing program 4: 21:56:44 executing program 5 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:44 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) recvfrom$llc(r2, &(0x7f0000000040)=""/167, 0xa7, 0x40000023, 0x0, 0x0) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/load\x00', 0x2, 0x0) 21:56:44 executing program 4: 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) [ 435.997169] FAULT_INJECTION: forcing a failure. [ 435.997169] name failslab, interval 1, probability 0, space 0, times 0 [ 436.049479] CPU: 1 PID: 19727 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 436.057393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 436.066755] Call Trace: [ 436.069358] dump_stack+0x142/0x197 [ 436.073048] should_fail.cold+0x10f/0x159 [ 436.077226] should_failslab+0xdb/0x130 [ 436.081329] kmem_cache_alloc+0x2d7/0x780 [ 436.085494] ? wait_for_completion+0x420/0x420 [ 436.090085] __kernfs_new_node+0x70/0x480 [ 436.094322] ? kernfs_activate+0x13a/0x190 [ 436.098605] kernfs_new_node+0x80/0xf0 [ 436.102507] __kernfs_create_file+0x46/0x323 [ 436.106930] sysfs_add_file_mode_ns+0x1e4/0x450 [ 436.111724] internal_create_group+0x232/0x7b0 [ 436.116335] sysfs_create_group+0x20/0x30 [ 436.120521] lo_ioctl+0x1162/0x1cd0 [ 436.124191] ? loop_probe+0x160/0x160 [ 436.128005] blkdev_ioctl+0x95f/0x1850 [ 436.131902] ? blkpg_ioctl+0x970/0x970 [ 436.135799] ? __might_sleep+0x93/0xb0 [ 436.139692] ? __fget+0x210/0x370 [ 436.143153] block_ioctl+0xde/0x120 [ 436.146784] ? blkdev_fallocate+0x3b0/0x3b0 [ 436.151113] do_vfs_ioctl+0x7ae/0x1060 [ 436.155003] ? selinux_file_mprotect+0x5d0/0x5d0 [ 436.159766] ? lock_downgrade+0x740/0x740 [ 436.163924] ? ioctl_preallocate+0x1c0/0x1c0 [ 436.168341] ? __fget+0x237/0x370 [ 436.171813] ? security_file_ioctl+0x89/0xb0 [ 436.176229] SyS_ioctl+0x8f/0xc0 [ 436.179857] ? do_vfs_ioctl+0x1060/0x1060 [ 436.184014] do_syscall_64+0x1e8/0x640 [ 436.188047] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 436.192902] entry_SYSCALL_64_after_hwframe+0x42/0xb7 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:44 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12c}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') mount(0x0, 0x0, 0x0, 0x0, 0x0) 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') mount(0x0, 0x0, 0x0, 0x0, 0x0) 21:56:44 executing program 4: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x880, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r6, 0x800455d1, &(0x7f0000000340)) ioctl$DRM_IOCTL_RES_CTX(r3, 0xc0106426, &(0x7f0000000140)={0x7, &(0x7f0000000100)=[{0x0}, {}, {}, {}, {}, {}, {}]}) ioctl$DRM_IOCTL_NEW_CTX(r0, 0x40086425, &(0x7f0000000300)={r7, 0x1}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x8000000, 0x5, &(0x7f0000000380)=[{&(0x7f0000000040)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f00000001c0)="5d6eeb546b42c74698cb66b180082488013992b50729cff5a2e600ce936fc030390a088d2378a425dd2066f3aade6f00dbe9a6ae8af2b2d6ead6d8951160dd62dac353774d54c57a7d4367ce9f862ab09fe6838292167932c46eae9c07e2a1d318feb2b7ed10f7b971125dc262a702ac974a0874639a46f7e4cb12451e990ebb5e6adaaa3ed7be97c7edcc1974a1565301da1b2b22d3d751aa7ff34fbac88656e4584a5059f71673d9e5048be1632505ce96383b682507bd99350147ffe50fcc16ac0c9926100f6af4be42ae8856b5bf8321639ca26a97db920086c1372747fe4ee2fcc6afb7a24b5b7b4b60cc915e", 0xef, 0x463}, {&(0x7f0000000400)="621f5385ab47c44999731e7ebe476269904933974278ce9317271a9a1b74e01139c979d9ea616e0e17116c4b21e345f06b74270dff041ae9fc4906a02b", 0x3d, 0x8}, {&(0x7f0000000140), 0x0, 0x5}, {&(0x7f00000002c0)="66b0e694b1ef53c890e36df39c", 0xd, 0xfffffffffffffbff}], 0x0, 0x0) [ 436.198101] RIP: 0033:0x45c2b7 [ 436.201293] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 436.209006] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 436.216277] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 436.223678] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 436.230980] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 436.238427] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000011 21:56:44 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000200)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="8584b3d66e70765fdb0457d0f772ded426e0c9439f82a9ae3892000c279d22ada095230676013b42b4dd428a3cda3c301d123a5adfd61082e967ad453127b318eac745bed9e8f1a65baac930cfe01f42885a463b3d8a5a1c20c94632ce0d0fbe62104dd69329c4a94b4310323f5aa8bbe5cbcac0b8"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:44 executing program 0: syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') mount(0x0, 0x0, 0x0, 0x0, 0x0) 21:56:44 executing program 5 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:44 executing program 2: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x24300, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000040)) 21:56:44 executing program 0: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000480)=@random={'trusted.', '\xae/em1^posix_acl_access+em0\\'}, &(0x7f00000004c0)='cifs\x00', 0x5, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) sendto$unix(r2, &(0x7f0000000040)="005cf44540795fc893962ffdc11794740a", 0xffcf, 0xfffffffffbfeffee, 0x0, 0x0) recvfrom(r2, &(0x7f0000001240)=""/4096, 0xffffff7e, 0x0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000340)='NLBL_MGMT\x00') sendmsg$NLBL_MGMT_C_REMOVEDEF(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x64, r3, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x33}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x21}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev={0xfe, 0x80, [], 0x14}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr="e66f2f0024052ef35bff271ee0991851"}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) sendmsg$NLBL_MGMT_C_REMOVE(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x870023}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x58, r3, 0x10, 0x70bd26, 0x25dfdbff, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @empty}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xfffffffffffffffe}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x58}, 0x1, 0x0, 0x0, 0x44000814}, 0x5) r4 = creat(&(0x7f0000000500)='./file0\x00', 0x6) clock_gettime(0x0, &(0x7f0000000740)={0x0, 0x0}) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f00000007c0)={0x6, 0x5, 0x4, 0x80000000, 0x6, {r5, r6/1000+30000}, {0x3, 0x1, 0x1, 0xe1, 0x4, 0x40, "23aa898d"}, 0x2, 0x3, @planes=&(0x7f0000000780)={0xb0df, 0x6, @mem_offset=0x401, 0x7}, 0x6, 0x0, 0xffffffffffffffff}) r8 = getpid() sched_setscheduler(r8, 0x5, &(0x7f00000001c0)) getpgid(r8) ioctl$RTC_WKALM_RD(r7, 0x80287010, &(0x7f0000000840)) r9 = socket$phonet_pipe(0x23, 0x5, 0x2) r10 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r11 = dup3(r9, r10, 0x0) write$9p(r11, 0x0, 0x0) ioctl$TUNGETFEATURES(r11, 0x800454cf, &(0x7f0000000580)) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000540)=0x8, 0x4) ioctl$HCIINQUIRY(r7, 0x800448f0, &(0x7f0000000880)={0x3, 0x2, "118a93", 0x40, 0x1}) syz_mount_image$cifs(&(0x7f0000000040)='cifs\x00', &(0x7f0000000080)='./file0\x00', 0x3, 0x3, &(0x7f0000000240)=[{&(0x7f00000000c0)="5b6c9960bc82ce657512cc8e69ce490045f44bf3cd995533384aaddab1bc19a90bf4df2ac3d45617666ba51b636760cd4f455c8019a67fed00f200b141", 0x3d, 0x7}, {&(0x7f00000001c0)="94f902daf540c681f6bd119c9d6a3fc6993b8d2dfb0515db858c64e75dd11ddba80be03a0a94861710a2231f8bdf4e35df10703db94cd09388d666556d60c4ba0548c1bb", 0x44, 0x1}, {&(0x7f0000000380)="c9e4917f2a22794e675ebd652699010129b07296cd985cd21cfd74c5e4858524ae1f1f1318a59ae6d6c5fc8387fb821d46a7c63bd8eb2247c9730c98d6bb6e497bbf31acf83fda0af172f0ed129ff3a06204caffa81afd7a238444d11c40731c2c2311ac17d9f17e031e964400fcbfb81189f3d6207ffec91deb1a87c9dc696c8232d81f98789dcaadfdd37f13e8c71664ecced4619cfcabcb30a4f02b61c86949608ccb817cd6df76cbb15272ec6aaa07eb07b20f1c7473db017c618df600bf7033cd65801a04c5717b313dd56d116a9a56c75c", 0xd4, 0xfffffffffffff970}], 0x2400, &(0x7f0000000140)='btrfs\x00') [ 436.432230] FAULT_INJECTION: forcing a failure. [ 436.432230] name failslab, interval 1, probability 0, space 0, times 0 [ 436.466605] CPU: 0 PID: 19778 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 436.474669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 436.484290] Call Trace: [ 436.486890] dump_stack+0x142/0x197 [ 436.490535] should_fail.cold+0x10f/0x159 [ 436.494696] should_failslab+0xdb/0x130 [ 436.498672] kmem_cache_alloc+0x2d7/0x780 [ 436.502818] ? wait_for_completion+0x420/0x420 [ 436.507395] __kernfs_new_node+0x70/0x480 [ 436.511536] ? kernfs_activate+0x13a/0x190 [ 436.515769] kernfs_new_node+0x80/0xf0 [ 436.519648] __kernfs_create_file+0x46/0x323 [ 436.524157] sysfs_add_file_mode_ns+0x1e4/0x450 [ 436.528820] internal_create_group+0x232/0x7b0 [ 436.533588] sysfs_create_group+0x20/0x30 [ 436.537772] lo_ioctl+0x1162/0x1cd0 [ 436.541400] ? loop_probe+0x160/0x160 [ 436.545194] blkdev_ioctl+0x95f/0x1850 [ 436.549175] ? blkpg_ioctl+0x970/0x970 [ 436.553279] ? __might_sleep+0x93/0xb0 [ 436.557165] ? __fget+0x210/0x370 [ 436.560629] block_ioctl+0xde/0x120 [ 436.564272] ? blkdev_fallocate+0x3b0/0x3b0 [ 436.568595] do_vfs_ioctl+0x7ae/0x1060 [ 436.572481] ? selinux_file_mprotect+0x5d0/0x5d0 [ 436.577232] ? lock_downgrade+0x740/0x740 [ 436.581382] ? ioctl_preallocate+0x1c0/0x1c0 [ 436.585901] ? __fget+0x237/0x370 [ 436.589366] ? security_file_ioctl+0x89/0xb0 [ 436.594230] SyS_ioctl+0x8f/0xc0 [ 436.597592] ? do_vfs_ioctl+0x1060/0x1060 [ 436.601814] do_syscall_64+0x1e8/0x640 [ 436.605703] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 436.610544] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 436.615819] RIP: 0033:0x45c2b7 [ 436.619082] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:56:44 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0112000000009ac70000090000003c00030014000600ff090000002e000000000000000000010800030000000000140002007663616e3000000000600000000000000800010002000000"], 0x50}}, 0x0) sendmsg$IPVS_CMD_NEW_DEST(r2, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0xf4, r4, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x40, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e23}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, [], 0x33}}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xe7b9}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}]}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xfe}]}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffffffa1}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x2f}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x40000}, 0x4) [ 436.626822] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 436.634093] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 436.641374] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 436.648941] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 436.656214] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000012 21:56:44 executing program 5 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 436.863196] IPVS: Error joining to the multicast group [ 436.888445] FAULT_INJECTION: forcing a failure. [ 436.888445] name failslab, interval 1, probability 0, space 0, times 0 [ 436.914979] CPU: 1 PID: 19810 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 436.922891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 436.932417] Call Trace: [ 436.935007] dump_stack+0x142/0x197 [ 436.938641] should_fail.cold+0x10f/0x159 [ 436.942894] should_failslab+0xdb/0x130 [ 436.946897] kmem_cache_alloc+0x2d7/0x780 [ 436.951044] ? wait_for_completion+0x420/0x420 [ 436.955619] __kernfs_new_node+0x70/0x480 [ 436.959763] ? kernfs_activate+0x13a/0x190 [ 436.964002] kernfs_new_node+0x80/0xf0 [ 436.967882] __kernfs_create_file+0x46/0x323 [ 436.972419] sysfs_add_file_mode_ns+0x1e4/0x450 [ 436.977091] internal_create_group+0x232/0x7b0 [ 436.981673] sysfs_create_group+0x20/0x30 [ 436.985808] lo_ioctl+0x1162/0x1cd0 [ 436.989442] ? loop_probe+0x160/0x160 [ 436.993251] blkdev_ioctl+0x95f/0x1850 [ 436.997159] ? blkpg_ioctl+0x970/0x970 [ 437.001048] ? __might_sleep+0x93/0xb0 [ 437.004930] ? __fget+0x210/0x370 [ 437.008386] block_ioctl+0xde/0x120 [ 437.012532] ? blkdev_fallocate+0x3b0/0x3b0 [ 437.016853] do_vfs_ioctl+0x7ae/0x1060 [ 437.020744] ? selinux_file_mprotect+0x5d0/0x5d0 [ 437.025499] ? lock_downgrade+0x740/0x740 [ 437.029649] ? ioctl_preallocate+0x1c0/0x1c0 [ 437.034057] ? __fget+0x237/0x370 [ 437.037520] ? security_file_ioctl+0x89/0xb0 [ 437.041928] SyS_ioctl+0x8f/0xc0 [ 437.045295] ? do_vfs_ioctl+0x1060/0x1060 [ 437.049625] do_syscall_64+0x1e8/0x640 [ 437.053636] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 437.058495] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 437.063680] RIP: 0033:0x45c2b7 [ 437.066857] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 437.074699] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 437.081972] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 437.089583] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 437.096846] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 437.104104] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000013 21:56:47 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12c}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:47 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x1000, 0x0, &(0x7f0000000100), 0x0, 0x0) 21:56:47 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x180) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x115002, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000180)=0x100000000) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="bd81b2a2ca07e350f75329b844054502f150a440b29ee1d28ff172b295c4cab9ebfa979b826731680d2a630559871351eea2caaf7bffd1ee0ee551b5dbaea710a6ca50edf25ed3a55062be44f6a9041096ac15e40fb85d42d6e4c61c818084c27b9bada06e58442295aa751bc9fdc42814a0b971d44ca7c36f88a3f5d2c6cac8a9fb3c30928aa99a6610f2a313ded72185d1f8cba2480f7a27590843768ed94a574f08218bb0b24ff386cb8e8bb5429cccbad32b73a06911fb95dee266fd0f6051785629ecea64ed51f9de7bd682a557710fdd14245f4084794f89514078437e39aa0fd81e6e94ba5466f0cbc9"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:47 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1054803, 0x0) futex(&(0x7f0000000040)=0x1, 0x8d, 0x1, &(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)=0x2, 0x1) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/status\x00', 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_RESUME(r0, 0x4147, 0x0) 21:56:47 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:47 executing program 5 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 439.186660] FAULT_INJECTION: forcing a failure. [ 439.186660] name failslab, interval 1, probability 0, space 0, times 0 [ 439.208188] CPU: 1 PID: 19833 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 439.216110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 439.225470] Call Trace: [ 439.228077] dump_stack+0x142/0x197 [ 439.231726] should_fail.cold+0x10f/0x159 [ 439.235909] should_failslab+0xdb/0x130 [ 439.240014] kmem_cache_alloc+0x2d7/0x780 [ 439.244313] ? wait_for_completion+0x420/0x420 [ 439.249231] __kernfs_new_node+0x70/0x480 [ 439.253364] ? kernfs_activate+0x13a/0x190 [ 439.257735] kernfs_new_node+0x80/0xf0 [ 439.261615] __kernfs_create_file+0x46/0x323 [ 439.266022] sysfs_add_file_mode_ns+0x1e4/0x450 [ 439.270741] internal_create_group+0x232/0x7b0 [ 439.275334] sysfs_create_group+0x20/0x30 [ 439.279512] lo_ioctl+0x1162/0x1cd0 [ 439.283145] ? loop_probe+0x160/0x160 [ 439.286962] blkdev_ioctl+0x95f/0x1850 [ 439.290853] ? blkpg_ioctl+0x970/0x970 [ 439.294732] ? __might_sleep+0x93/0xb0 [ 439.298612] ? __fget+0x210/0x370 [ 439.302053] block_ioctl+0xde/0x120 [ 439.305684] ? blkdev_fallocate+0x3b0/0x3b0 [ 439.310261] do_vfs_ioctl+0x7ae/0x1060 [ 439.314149] ? selinux_file_mprotect+0x5d0/0x5d0 [ 439.318922] ? lock_downgrade+0x740/0x740 [ 439.323286] ? ioctl_preallocate+0x1c0/0x1c0 [ 439.327706] ? __fget+0x237/0x370 [ 439.331275] ? security_file_ioctl+0x89/0xb0 [ 439.335857] SyS_ioctl+0x8f/0xc0 [ 439.339464] ? do_vfs_ioctl+0x1060/0x1060 [ 439.343663] do_syscall_64+0x1e8/0x640 [ 439.347536] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 439.352386] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 439.357568] RIP: 0033:0x45c2b7 [ 439.360746] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 439.368440] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 439.375704] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 21:56:47 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 439.382965] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 439.390226] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 439.397688] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000014 21:56:47 executing program 2: r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS32(r0, 0x806c4120, &(0x7f0000000580)) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2, &(0x7f00000000c0)=[{&(0x7f00000001c0)="f3dffa70c886cceefd9c857a1d34a7559aa58738ae5d8e467758d94a83fbd5ddbeac93175164d6410151ab6cc9c2f912d91a917180db73d7ef6eb991f8c406eea19f06948e57a626a9cef77bfa6ce7e58db270efb14723cf1dc2deac3816232492459d58c3af830c699b85c3302768a21a7fdddececd669edb2263445001c3de7cbdd7b760b2d30c7ffb8322be6628087959a35685912b8aec91a79f1de53a3b685bacf268e220dd0ea3d8c5444fa39b3ea99151ec70078c120bf2800a9476e840ab243fce84c0dbe9f8955d823fcce5bdfb084686c93aedd32e6757b648602c3018857d7790657ab07fc60f1cef52dd0b9813a7344c23aa6c69d1a8b2e8", 0xfe, 0xfffffffffffffffe}, {&(0x7f0000000380)="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", 0xfb, 0x400}], 0xa0, &(0x7f0000000480)={[{@utf8no='utf8=0'}, {@fat=@debug='debug'}, {@rodir='rodir'}, {@shortname_mixed='shortname=mixed'}, {@rodir='rodir'}], [{@obj_user={'obj_user'}}, {@fsuuid={'fsuuid', 0x3d, {[0x30, 0x66, 0x62, 0x65, 0x51, 0x31, 0x61, 0x73], 0x2d, [0x35, 0x35, 0x38, 0x66], 0x2d, [0x34, 0x30, 0x66, 0x38], 0x2d, [0x33, 0x37, 0x63, 0x33], 0x2d, [0x38, 0x38, 0x36, 0x39, 0x30, 0x39, 0x66, 0x31]}}}, {@context={'context', 0x3d, 'user_u'}}, {@hash='hash'}, {@subj_role={'subj_role', 0x3d, 'btrfs\x00'}}]}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz0\x00', 0x1ff) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) ioctl$SNDRV_PCM_IOCTL_START(r3, 0x4142, 0x0) write$9p(r3, 0x0, 0x0) ioctl$VIDIOC_SUBDEV_S_CROP(r3, 0xc038563c, &(0x7f00000002c0)={0x0, 0x0, {0x800, 0x40000000, 0xf6b, 0x1}}) 21:56:47 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0xaa, 0x10000}], 0x0, 0x0) ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000040)) 21:56:47 executing program 5 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 439.585708] FAULT_INJECTION: forcing a failure. [ 439.585708] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 439.597695] CPU: 0 PID: 19866 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 439.605580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 439.616157] Call Trace: [ 439.618790] dump_stack+0x142/0x197 [ 439.622547] should_fail.cold+0x10f/0x159 [ 439.626711] __alloc_pages_nodemask+0x1d6/0x7a0 [ 439.631405] ? __alloc_pages_slowpath+0x2930/0x2930 [ 439.636471] cache_grow_begin+0x80/0x400 [ 439.640554] kmem_cache_alloc_trace+0x6b2/0x790 [ 439.645313] ? kernfs_put+0x35e/0x490 [ 439.649106] ? devm_device_remove_groups+0x50/0x50 [ 439.654122] kobject_uevent_env+0x208/0xc80 [ 439.658449] ? internal_create_group+0x49a/0x7b0 [ 439.663213] kobject_uevent+0x20/0x30 [ 439.667049] lo_ioctl+0x11d3/0x1cd0 [ 439.670684] ? loop_probe+0x160/0x160 [ 439.674619] blkdev_ioctl+0x95f/0x1850 [ 439.678510] ? blkpg_ioctl+0x970/0x970 [ 439.682421] ? __might_sleep+0x93/0xb0 [ 439.686294] ? __fget+0x210/0x370 [ 439.689741] block_ioctl+0xde/0x120 [ 439.693360] ? blkdev_fallocate+0x3b0/0x3b0 [ 439.697675] do_vfs_ioctl+0x7ae/0x1060 [ 439.701669] ? selinux_file_mprotect+0x5d0/0x5d0 [ 439.706418] ? lock_downgrade+0x740/0x740 [ 439.711148] ? ioctl_preallocate+0x1c0/0x1c0 [ 439.715590] ? __fget+0x237/0x370 [ 439.719055] ? security_file_ioctl+0x89/0xb0 [ 439.723622] SyS_ioctl+0x8f/0xc0 [ 439.726980] ? do_vfs_ioctl+0x1060/0x1060 [ 439.731236] do_syscall_64+0x1e8/0x640 [ 439.735113] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 439.739964] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 439.745239] RIP: 0033:0x45c2b7 [ 439.748582] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 439.756391] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 439.763874] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 439.771402] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 439.778720] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 439.785988] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000015 21:56:48 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$afs(&(0x7f0000000040)='afs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2, &(0x7f0000000140)=[{&(0x7f0000000380)="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", 0x1000, 0x6}, {&(0x7f00000000c0)="dd9eec0aa8496d66364b17dcc92d436891387c11a478a225fcb05691040bd1029e3c3a09b757956e3f4d39654e1443", 0x2f, 0x1}], 0x0, &(0x7f00000001c0)={[{@source={'source', 0x3d, 'btrfs\x00'}}, {@flock_strict='flock=strict'}, {@flock_write='flock=write'}, {@flock_write='flock=write'}, {@flock_local='flock=local'}, {@autocell='autocell'}], [{@smackfsroot={'smackfsroot', 0x3d, 'nodev--'}}, {@context={'context', 0x3d, 'sysadm_u'}}]}) 21:56:48 executing program 5 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 439.948485] FAULT_INJECTION: forcing a failure. [ 439.948485] name failslab, interval 1, probability 0, space 0, times 0 [ 439.959979] CPU: 1 PID: 19894 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 439.968741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 439.978105] Call Trace: [ 439.986870] dump_stack+0x142/0x197 [ 439.990527] should_fail.cold+0x10f/0x159 [ 439.994874] should_failslab+0xdb/0x130 [ 439.998864] kmem_cache_alloc_node+0x287/0x780 [ 440.003468] __alloc_skb+0x9c/0x500 [ 440.007197] ? skb_trim+0x180/0x180 [ 440.010858] ? netlink_has_listeners+0x20a/0x330 [ 440.015962] kobject_uevent_env+0x6ea/0xc80 [ 440.020280] ? internal_create_group+0x49a/0x7b0 [ 440.025037] kobject_uevent+0x20/0x30 [ 440.028849] lo_ioctl+0x11d3/0x1cd0 [ 440.032479] ? loop_probe+0x160/0x160 [ 440.036280] blkdev_ioctl+0x95f/0x1850 [ 440.040379] ? blkpg_ioctl+0x970/0x970 [ 440.044476] ? __might_sleep+0x93/0xb0 [ 440.048406] ? __fget+0x210/0x370 [ 440.051856] block_ioctl+0xde/0x120 [ 440.055527] ? blkdev_fallocate+0x3b0/0x3b0 [ 440.059869] do_vfs_ioctl+0x7ae/0x1060 [ 440.063752] ? selinux_file_mprotect+0x5d0/0x5d0 [ 440.068605] ? lock_downgrade+0x740/0x740 [ 440.072749] ? ioctl_preallocate+0x1c0/0x1c0 [ 440.077151] ? __fget+0x237/0x370 [ 440.080606] ? security_file_ioctl+0x89/0xb0 [ 440.085233] SyS_ioctl+0x8f/0xc0 [ 440.088591] ? do_vfs_ioctl+0x1060/0x1060 [ 440.092741] do_syscall_64+0x1e8/0x640 [ 440.096617] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 440.101453] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 440.106628] RIP: 0033:0x45c2b7 [ 440.109801] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.117499] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 440.124760] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 440.132020] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 440.139291] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 440.146553] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000016 21:56:50 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12c}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:50 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000000c0)=@sg0='/dev/sg0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x2941930, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000200)=0x177, 0x4) setsockopt$sock_int(r1, 0x1, 0x29, &(0x7f0000000280)=0x58, 0x4) r2 = socket$inet6(0xa, 0x80003, 0x6b) ioctl(r2, 0x1000008912, &(0x7f0000000040)="080db5055e0bcfe8479071") sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000040)={0xa, 0x4c20, 0x0, @mcast2}, 0x1c) recvmmsg(r1, &(0x7f0000f61000), 0x3ffffffffffff07, 0x2040, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(0xffffffffffffffff, r4, 0x0) r6 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r6) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) ioctl$UI_SET_SWBIT(0xffffffffffffffff, 0x4004556d, 0x4) connect$tipc(r6, &(0x7f0000000300)=@name={0x1e, 0x2, 0x0, {{0x42, 0x4}}}, 0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r6, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r8}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r8, 0x9}, &(0x7f00000001c0)=0x18) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r5, 0x84, 0x10, &(0x7f0000000040)=@sack_info={r8, 0x3d0, 0x4}, &(0x7f0000000200)=0xc) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="4dce0555089539c04936d62821c8569381ed3de775fea431157ba80a3437177bc3a8bcd4c1efc9b496c83ececb02207fba32d6c0e532f1341dea8313871ee841ce9e0d962fc4560aa8d60ce2ff89e13b31027a5ed12808"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:50 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0xfffffffffffffeff, 0x6, &(0x7f0000000480)=[{&(0x7f0000000040)="33873b37b12fc77d5849a909906a6c0a7539332d21ea83087f889aa5e2c2235ce9d7f7d9accb513a389c5d301dad71316889cbb12bb7cdc6bf835907c2f4e81347cea82fd8b47d5c8000f0a2a7a257dbd57c06568abc26dab847c6a6b5d773a264e329cc6340b55aa84c9f438e72e577dbff32d9b65b372c0bb03083382c5db871fda5fd35f907bb620057cc97", 0x8d, 0x100000000}, {&(0x7f00000001c0)="5aec29f3410e4f87acfea54b8c2f46d08ffd696300fdc76fef49577a7feedd0fac8abd5b1ee9126752ba1c7affa2e0379106a9638f71457532b524d673a52d4ec7f71397bbfaa4ca5cd971259ac8d8f6df17b24d780249237d96119c2d8925c3b5a5cf74d1c2fda54915c773e0f8c6e85d6598b9cd5b9018423698aa698c8f1c27e8b12aead86f6443206fcc2277a428ed98d8a33587301f405a3bab31f02071e99c4023e9ff6fc1b8644fa337d6978ad20533cd667393fabeb13b4c013027d2d1", 0xc1, 0x2}, {&(0x7f0000000140)="d55e89ad34473cca3c125a316f32420d32e80c031cf6b88804f36aed2f25ab2e7c4e84d74641a11bcb9594709c3796ffbe086dd9a13dc10f675e", 0x3a, 0x8}, {&(0x7f00000002c0)="cc8562f9c5a9144c07736830a08f3002a89fd4d9956c74d75df1e88f316fe142332cf11ee2a4f1cfa39ac188c7b633d99f3ae79a0f7c85", 0x37, 0x9}, {&(0x7f0000000380)="d6303ffdde8141cded935737d3dcfb910e6e7751aa887f4f61", 0x19, 0x5}, {&(0x7f00000003c0)="e3510c463f859f5a8b7b18182c69e18b8c935bd3b6990cbcba4a452b470f14c0f57ee1eaba1c01dad87225045485b5a8748c657880e6b113dc3c881a88d90930ea009ba7cb73a3053809dfb9397caa4c1158ccdcdf35a3b75941b0c1587cb37e6787f2387784b260ee4f2a8316414da364454a97bcdb5632bfd2bb9af5d752f4656a1cc003dcc8c109c23d8fc81e", 0x8e, 0x4}], 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r0, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r0, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r0, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000100)={0x8, 'bond_slave_1\x00', {'hsr0\x00'}, 0x7}) 21:56:50 executing program 5 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:50 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x4, 0x1, &(0x7f0000000100)=[{&(0x7f0000000040)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x4}], 0x0, 0x0) 21:56:50 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 442.226510] FAULT_INJECTION: forcing a failure. [ 442.226510] name failslab, interval 1, probability 0, space 0, times 0 [ 442.271801] CPU: 0 PID: 19919 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 442.279732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 442.289095] Call Trace: [ 442.291700] dump_stack+0x142/0x197 [ 442.295328] should_fail.cold+0x10f/0x159 [ 442.299471] should_failslab+0xdb/0x130 [ 442.303468] __kmalloc+0x2f0/0x7a0 [ 442.307107] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 442.312690] ? kobject_uevent_env+0x208/0xc80 [ 442.317182] ? rcu_read_lock_sched_held+0x110/0x130 [ 442.322191] ? kobject_get_path+0xba/0x190 [ 442.326446] kobject_get_path+0xba/0x190 [ 442.330500] kobject_uevent_env+0x22c/0xc80 [ 442.334823] ? internal_create_group+0x49a/0x7b0 [ 442.339623] kobject_uevent+0x20/0x30 [ 442.343424] lo_ioctl+0x11d3/0x1cd0 [ 442.347053] ? loop_probe+0x160/0x160 [ 442.350859] blkdev_ioctl+0x95f/0x1850 [ 442.354760] ? blkpg_ioctl+0x970/0x970 [ 442.358660] ? __might_sleep+0x93/0xb0 [ 442.362543] ? __fget+0x210/0x370 [ 442.365992] block_ioctl+0xde/0x120 [ 442.369692] ? blkdev_fallocate+0x3b0/0x3b0 [ 442.374040] do_vfs_ioctl+0x7ae/0x1060 [ 442.377930] ? selinux_file_mprotect+0x5d0/0x5d0 [ 442.382689] ? lock_downgrade+0x740/0x740 [ 442.386829] ? ioctl_preallocate+0x1c0/0x1c0 [ 442.391229] ? __fget+0x237/0x370 [ 442.394692] ? security_file_ioctl+0x89/0xb0 [ 442.399122] SyS_ioctl+0x8f/0xc0 [ 442.402483] ? do_vfs_ioctl+0x1060/0x1060 [ 442.406731] do_syscall_64+0x1e8/0x640 [ 442.410628] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 442.416333] entry_SYSCALL_64_after_hwframe+0x42/0xb7 21:56:50 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x3d, 0x1, &(0x7f0000000140)=[{&(0x7f0000000040)="38858c92d634a7dd05ad167deebad70c4184601e8ab187dfb624419344e620aedae0853f6a02aa93717cfed05cdbd42c995025c545eaceed604fdde44cedb9812b2fafcd360eb366469bff7f9b97468390fe6e127828fbe162df34bc44251347f55b08c5ede97f1c6e837dc33c70e1db1e489f17e4aa10e1f41bb9a443e6b8cbedeae2a9f1ea6ed46e7256a4f3734a4f278489d776913c245b9328a9041cc87561ef850bbc3e53c124fba5095f3008b2a13299d31fe1f348346f8b", 0xbb, 0xc}], 0x0, 0x0) [ 442.421533] RIP: 0033:0x45c2b7 [ 442.425071] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 442.433071] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 442.440607] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 442.447991] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 442.455247] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 442.462504] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000017 21:56:50 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f0000000300)={0x16, 0x98, 0xfa00, {&(0x7f00000001c0)={0xffffffffffffffff}, 0x4, 0xffffffffffffffff, 0x10, 0x0, @ib={0x1b, 0x2, 0x4, {"34e897bca1cf5b7b6dabc9cc58161cba"}, 0x4, 0x4, 0x10000}}}, 0xa0) write$RDMA_USER_CM_CMD_LEAVE_MCAST(r0, &(0x7f0000000200)={0x11, 0x10, 0xfa00, {&(0x7f0000000180), r1}}, 0x18) mkdir(&(0x7f0000000000)='./file0\x00', 0x2d) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r5, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r5, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r5, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r5, &(0x7f0000000840)="51e251578851f74182a74b89b27df427aeef44966d202e4138b5a18e75a0424e7fe93b0d32c7abba87b65f97aba1c26a06b6d94c4aefd8fdca10e744391062c8e602721c20051608d9aa6dacf61e1eb331a4daad402b9885599d56130f7149fb1111fa116e94324d585a0569fbd311dad54cb4e32ff7f02216844ef42eeb66c3d526c878d5135ad1c9262239339c18885e2a0a95854d6cde3dd2feeaa50216af6c5760923413af81199a65a6332b02ec7bbf79d557c033cbe032fdc44f66a5c59cc4a3c5d218f5896b359d1efd60baf98df6396567478f7b817ce6e11d59a7def452a0e1d0607f57f626a5b8d476636ef1ee76307524009ae49be4db0ab2c8ea0c5ebd1e80fed632155e14da1f7324d97bc61a3c1edc4431ee8a6caa2ed9f85cea5a2a9b263630c7d6fc35dda6002da571a2e51917e7c1019d8ce21a608147e408cc4c7c5f444fab931bda86d977d7c9ccefd881e5ef05b287f41eea526862885881c2cdc687dff02ba9b70a9b08734ac4d62c7f34465c34aa9e9f136c7f796d9eea41aa37f61830508338bb1f887089070567a1dd96cd700e7a098dabedb60f31acd17d487bc8be1a3101d2b5ac1715003793596c6daa93a27f4adb4d6fbea5669c24c206c944317ea18a2c762457f1bc945fec8f849641d44e7e2a24faeee28f3f266395fe18b0dce20c1f64e8896c8ff0e4a44a116fb32462471a0fcde143e551723d57339722765673b4163d66f473ac10f988cb25c89074fcb1bba20c41bddd9ca5cd2f106632f9884a47866d284b4efc6bb1aa74ed48d4a6535795f0873a99907ebc22be2337364cf9acc063e32f7d2ebdfad64d04aa405d2dbdee1128ab1e4761d2dd30885ad37dd168478f10789d172feef4c817a5cd372caade57f23300e45f47e001e3ea09364ab42ee9802477368b9910f4e24037c871cb8251568c792287a6f49fa61b7c2600accaa0e7b40c5912a9e100225c70441144ffa82927fa4802ed9ebb03eea8e945af5f4993f21a7f53baf7ec5bb6cc96b917dde82c18840c3500e9565f68f687b1c73d834c0d99d4acb002dc5682dbcdb1217a98f6c3ef8318b7fa93894e8a097b4511ba5c035e27c9fe8bfe7754741ac21bbc0303b81672e3117e5590fe2d92f912759b9937f64204ec5caa92e218daa5a3ef64617beb30cccb31016b13ed8d7bcabb03e176b1c9bda3bf1c1256ab74ab6f42ed9bafbbd0096263be1a7da1e1c88deec55a653d170e1e13c77dacaa60a37a6ba2383e661ebc9f13dbaade2dd884c9951819fb4608e19e70cd2496ccfb12f24c71f496cfe9bc88fe1bbea1e9a24b1d4664fb0776aca6269b396779680e52f86877d9209988d12ccb137be01ab7496d00547a7d4849d365a18dbb55c429cde87d33c4b74ad2273cdfee88b5418866ef327f25e9cbcd5a64d97184339f7e4cb5f8de171d2779c0f68884ae835e398f982d5749f085628d3608986656ea04b721f828202e9342bd7d19dfa091e772aebf9718030167a8c029df7c58b7f400582bd95e5ad802050d8775ef373e8e2c5bf3525f907add3be426cd5a079c49abffe933e9ee213a3baf34f932d1299312691e1c53e6247ae0989ad66070d51fad22856a8b6b28954e7d41189b11c5321789eec8670de9e8db0b0473ba2e02731e60be632697d61e052c18d4bcc6d1572fdf426f7b2fee6c1dee66c85c497b90facaf63b8ec5cde4a73400f9180bcfc0f81eca9580a7c81462a077f9034026bf72aa7c6de4b3c15d4a2dbd6fd7d87084aea9f25fb4bf5ec83eb56874a760533792dff2695407ccdd6a7375e0007230fd3f6501c152f1c1ff279b1d67cc95f2820762b7927659368e41657bdef2dd15b63498a93b787bdb26809d734aaf98b86fcf9fc643a34d03ebbe072820662d20f4774d66c5ae0a0adade5b8f6242a059b926221ee3d677487471c432b0d6d64dad030703475bb3ecac39b204a814f5ece5961621358e36f8a2cf7196c76959824bbb475a7cad8f57853fe05f59f341b5", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r5, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000240)={0x0, 0x3, 0x4}, &(0x7f00000003c0)=0x8) setsockopt$inet_sctp_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000400)=@assoc_value={r6, 0x8000}, 0x8) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f00000004c0)=ANY=[@ANYBLOB="c988c5badaf7310314f525040c52a1bab4232edbc62a6a8b527fe3def2c711bdb4a3770a2d1edd76ca18342e7844b40d54a6d49111115cd2bb5e1833fd183a65013748b830d14be2c465d66f7a0051e8e84fff846ac00bebd16bb76acdb23e782018286b0afa8f7fa4cecb7289c37991c0525414828dd1b058891789213f4c4569953ef9fe921e9ef25ca884015f2de36c681b5e5b520c00933575d5fb212bd904ce590152e952b99cbb808467ef28433075e37cdd1475af91ea9e1567ee1d2368e16feb78bd2f31a6a5305606eb729a4a5c99a15e3225a14636adca79db156a13cc59a2f3899367c9c62a1492d4ea704acf66bc2792199935d9a0b0a8f155cf6137332815f04714a3dcfb45065980e7f6aa231bbb71b1b9b93404e2c972e23935b15f3b626b27d9dbac89441a76098501256ac11d22e10b3029da28fbf490567043d3a9af957df68492569779747d0e81fea6f95fb313e80b84c84b9f626d9c4269559f391a83cf515ebcd63adae9a947c817a49c3324d922becf23a3e58adac984aa66840cd9249b802bb63e3943952f56c8d0fc402600c986f11f84bfa54e66a99a0b0a9dc3e420b30ebed1cdb228a7c4e876e2"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:50 executing program 2: ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f00000001c0)={0x100, 0x1, &(0x7f0000000040)=[0x3ff], &(0x7f0000000080)=[0xa9, 0x3f, 0x8000], &(0x7f00000000c0)=[0x8, 0x5, 0x6], &(0x7f0000000140)=[0x10001], 0x0, 0x1000}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0xa0042, 0x0) 21:56:50 executing program 5 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:50 executing program 4: prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa) r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/avc/hash_stats\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x8) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1, 0x0) creat(&(0x7f0000000200)='./file0\x00', 0x1c3) ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f00000001c0)) 21:56:50 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x3, 0x1, &(0x7f0000000100)=[{&(0x7f0000000040)="8da4363ac0e102000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a00000189b3783c017de04f5a000000000001fffffff60000005f42485266535f4d", 0x51, 0x2}], 0x10020, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000001c0)='NLBL_CALIPSO\x00') sendmsg$NLBL_CALIPSO_C_LISTALL(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x600, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x1c}}, 0x0) [ 442.713362] FAULT_INJECTION: forcing a failure. [ 442.713362] name failslab, interval 1, probability 0, space 0, times 0 [ 442.737667] CPU: 0 PID: 19954 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 442.745581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 442.754935] Call Trace: [ 442.757536] dump_stack+0x142/0x197 [ 442.761179] should_fail.cold+0x10f/0x159 [ 442.765345] should_failslab+0xdb/0x130 [ 442.769328] kmem_cache_alloc_node_trace+0x280/0x770 [ 442.774442] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 442.779902] __kmalloc_node_track_caller+0x3d/0x80 [ 442.784841] __kmalloc_reserve.isra.0+0x40/0xe0 [ 442.789519] __alloc_skb+0xcf/0x500 [ 442.793157] ? skb_trim+0x180/0x180 [ 442.796793] ? netlink_has_listeners+0x20a/0x330 [ 442.801614] kobject_uevent_env+0x6ea/0xc80 [ 442.805926] ? internal_create_group+0x49a/0x7b0 [ 442.810933] kobject_uevent+0x20/0x30 [ 442.814715] lo_ioctl+0x11d3/0x1cd0 [ 442.818524] ? loop_probe+0x160/0x160 [ 442.822321] blkdev_ioctl+0x95f/0x1850 [ 442.826299] ? blkpg_ioctl+0x970/0x970 [ 442.830203] ? __might_sleep+0x93/0xb0 [ 442.834107] ? __fget+0x210/0x370 [ 442.837562] block_ioctl+0xde/0x120 [ 442.841191] ? blkdev_fallocate+0x3b0/0x3b0 [ 442.845506] do_vfs_ioctl+0x7ae/0x1060 [ 442.849417] ? selinux_file_mprotect+0x5d0/0x5d0 [ 442.854167] ? lock_downgrade+0x740/0x740 [ 442.858322] ? ioctl_preallocate+0x1c0/0x1c0 [ 442.862716] ? __fget+0x237/0x370 [ 442.866209] ? security_file_ioctl+0x89/0xb0 [ 442.870635] SyS_ioctl+0x8f/0xc0 [ 442.873991] ? do_vfs_ioctl+0x1060/0x1060 [ 442.878190] do_syscall_64+0x1e8/0x640 [ 442.883017] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 442.887859] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 442.893038] RIP: 0033:0x45c2b7 [ 442.896210] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 442.903926] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 442.911179] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 442.918438] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 442.925703] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 442.932999] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000018 [ 442.953059] BTRFS error (device loop5): superblock checksum mismatch [ 443.010168] BTRFS error (device loop5): open_ctree failed 21:56:53 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28d836ae", 0x12d}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:53 executing program 3: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000180)="38415e6ca6667c1aefe40880cd3a05c7fab9e9e705e9ab59528ba7ade1a43a8e1fdea40f24d4d94de3c6937163aba164dfa9346259d01c41df9ec8186684d7b6d80c16e69436558ff475bc2028dfebbbd3a440b6a1e01d44f40cd5393ac8ed8ba0f64e29758d0c1337b91b71daf3a840f8b9a213d0f5c701f5aa5c9b3497d53b9c76da7e4c54958eda2fff3181902fda3a70de8b64e0b9d181ec47ebceece233adf2768f8cfa73b5ec6ecfe2148831e24e08f4125d5da69a9e9fb3d1391a25fe8bc127033423e20846f3a9abf474665a02481d48daf0160cced97469477a607db652b1a16a345b94b7", 0xe9) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) ioctl$PPPIOCGUNIT(r2, 0x80047456, &(0x7f00000003c0)) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040)='NLBL_UNLBL\x00') mount(&(0x7f0000000300)=ANY=[@ANYBLOB="0aa51dde0330edda4bfe250ac93f30298119973c9975ca262821f2b8c168ace670523151d36ad4eb8f0ccdeada5868033f0b5c7c0d2e4906f5b51419c2e7d340ab9fd71b64e851422756a8685285269f453a27229d7113a1a9bbae68f79ab10784cb06ebe94d7dba0bbdc480d87bbf0b04117b606713ca155e1d82bc27f701e4c44c3210"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:53 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0x65, 0x0, &(0x7f0000000100), 0x8402, 0x0) 21:56:53 executing program 5 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:53 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x1200400, 0x0) 21:56:53 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 445.297039] FAULT_INJECTION: forcing a failure. [ 445.297039] name failslab, interval 1, probability 0, space 0, times 0 [ 445.308624] CPU: 0 PID: 19993 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 445.316626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 445.326629] Call Trace: [ 445.329216] dump_stack+0x142/0x197 [ 445.332852] should_fail.cold+0x10f/0x159 [ 445.337007] should_failslab+0xdb/0x130 [ 445.340973] kmem_cache_alloc_node_trace+0x280/0x770 [ 445.346171] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 445.352077] __kmalloc_node_track_caller+0x3d/0x80 [ 445.357358] __kmalloc_reserve.isra.0+0x40/0xe0 [ 445.362019] __alloc_skb+0xcf/0x500 [ 445.365640] ? skb_trim+0x180/0x180 [ 445.369268] ? netlink_has_listeners+0x20a/0x330 [ 445.374158] kobject_uevent_env+0x6ea/0xc80 [ 445.378543] kobject_uevent+0x20/0x30 [ 445.382336] lo_ioctl+0x11d3/0x1cd0 [ 445.386542] ? loop_probe+0x160/0x160 [ 445.390345] blkdev_ioctl+0x95f/0x1850 [ 445.394228] ? blkpg_ioctl+0x970/0x970 [ 445.398146] ? __might_sleep+0x93/0xb0 [ 445.402184] ? __fget+0x210/0x370 [ 445.405765] block_ioctl+0xde/0x120 [ 445.409437] ? blkdev_fallocate+0x3b0/0x3b0 [ 445.413765] do_vfs_ioctl+0x7ae/0x1060 [ 445.417648] ? selinux_file_mprotect+0x5d0/0x5d0 [ 445.422539] ? lock_downgrade+0x740/0x740 [ 445.426679] ? ioctl_preallocate+0x1c0/0x1c0 [ 445.431084] ? __fget+0x237/0x370 [ 445.434537] ? security_file_ioctl+0x89/0xb0 [ 445.439210] SyS_ioctl+0x8f/0xc0 [ 445.442571] ? do_vfs_ioctl+0x1060/0x1060 [ 445.446744] do_syscall_64+0x1e8/0x640 [ 445.450633] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 445.459558] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 445.464743] RIP: 0033:0x45c2b7 [ 445.467928] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 445.475630] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 445.482992] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 445.490250] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 445.497629] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 445.504956] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000019 21:56:53 executing program 2: r0 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r2}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r2, 0x9}, &(0x7f00000001c0)=0x18) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000001c0)={r2, @in={{0x2, 0x4e24, @rand_addr=0x685}}, [0x9, 0x3, 0x6, 0x400, 0x8, 0xffff, 0x40, 0x10000, 0x6849, 0x2, 0x8, 0x0, 0x20000000004, 0x64, 0x40d]}, &(0x7f0000000040)=0x100) setsockopt$inet_sctp_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000080)=r3, 0x4) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:53 executing program 5 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:53 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$reiserfs(&(0x7f0000000080)='reiserfs\x00', &(0x7f00000000c0)='./file0\x00', 0xe5, 0x7, &(0x7f0000001500)=[{&(0x7f00000001c0)="0ea62357bd968b8584bfe35fbaa1abc8b0becefdf07edcf1e5e4a4cd5f190a03a353a40fbf595f9782446b7bd27e425b68620747414512968ca7ad65eca438d103e087bb3f769683c5623e", 0x4b, 0x6}, {&(0x7f0000000140)="a85bb957ef54f2c45270dc707b07ac0a4f07bda00a42c00f98ce3bcdc12c3c4719c660e8", 0x24, 0x1}, {&(0x7f0000000240)="beaa7d43b7b8bc42305d9efa8660384382042e34d9f8872d5bb223d9ad4c7885ac49fc39936c2fc4211b56053de170cab67d24c761cb85a0c6ecbb4a352310d19cb58ecc4f3977605ed117d6d1eede7884ed5985814b41a8f8", 0x59, 0x5}, {&(0x7f0000000380)="896ebffee9342400024680dee2716e59c817139e014052322a95dc59715fe1cc872eaec8f55474ebb04b6cd445a8a3832aafc2348ec292db3b5ac8f5669b01a85ab99073c19fc319a92320d89daf92b741c2fcee1127128115fd530acd9492ff5b55b9eca48662da6aef16b2541d0e5572aff41057a1acb7e480f5b3ce15dfb6db33b2665d6cdcca440688e1e45a3e377782952faa2430c42f269e56aadc0a3f9397e7f97ad1064289348c260c8d1ac12f78dd0241369ada07088fa67a825fa48afd93bf8fb3dbade04ccd0f8039f5d6f0fd7e2a99b3051bd6a0565970bb1c00c7d63aa47509913e1f44", 0xea, 0x8}, {&(0x7f0000000480)="857a74c3eeb874dadfdf0a2292eb96acae85155f092285326aa4e8bf120fcc342783a354ece61055d9dba616289a59a75ad2011ef4f0c200baf2f428be9b78d0a2f608893071b3bfa1fcacd8", 0x4c, 0x9889}, {&(0x7f0000000500)="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", 0x1000, 0x1}, {&(0x7f00000002c0)="e21187f1cc4ac2486da79f0841f48e7f85d71188fbf8f6e7a9738f9a464d", 0x1e}], 0x400, &(0x7f00000015c0)={[{@usrquota='usrquota'}], [{@dont_measure='dont_measure'}, {@subj_user={'subj_user', 0x3d, 'vmnet0GPLkeyringwlan0em1eth1'}}]}) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000001680)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, &(0x7f00000016c0)={0x4, r0}) r1 = open(&(0x7f0000000040)='./file0\x00', 0x101080, 0x6) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000001600), &(0x7f0000001640)=0x14) 21:56:53 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000040)=ANY=[@ANYBLOB="040500000000000000"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 445.618796] FAULT_INJECTION: forcing a failure. [ 445.618796] name failslab, interval 1, probability 0, space 0, times 0 [ 445.634979] CPU: 1 PID: 20014 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 445.642915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 445.652302] Call Trace: [ 445.654905] dump_stack+0x142/0x197 [ 445.658547] should_fail.cold+0x10f/0x159 [ 445.662714] should_failslab+0xdb/0x130 [ 445.666703] kmem_cache_alloc_node_trace+0x280/0x770 [ 445.671829] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 445.678681] __kmalloc_node_track_caller+0x3d/0x80 [ 445.683620] __kmalloc_reserve.isra.0+0x40/0xe0 [ 445.688306] __alloc_skb+0xcf/0x500 [ 445.691941] ? skb_trim+0x180/0x180 [ 445.695582] ? netlink_has_listeners+0x20a/0x330 [ 445.700356] kobject_uevent_env+0x6ea/0xc80 [ 445.704679] kobject_uevent+0x20/0x30 [ 445.708628] lo_ioctl+0x11d3/0x1cd0 [ 445.712300] ? loop_probe+0x160/0x160 [ 445.716126] blkdev_ioctl+0x95f/0x1850 [ 445.720073] ? blkpg_ioctl+0x970/0x970 [ 445.724484] ? __might_sleep+0x93/0xb0 [ 445.728521] ? __fget+0x210/0x370 [ 445.731975] block_ioctl+0xde/0x120 [ 445.735699] ? blkdev_fallocate+0x3b0/0x3b0 [ 445.740047] do_vfs_ioctl+0x7ae/0x1060 [ 445.743977] ? selinux_file_mprotect+0x5d0/0x5d0 [ 445.748718] ? lock_downgrade+0x740/0x740 [ 445.752859] ? ioctl_preallocate+0x1c0/0x1c0 [ 445.757262] ? __fget+0x237/0x370 [ 445.760822] ? security_file_ioctl+0x89/0xb0 [ 445.765251] SyS_ioctl+0x8f/0xc0 [ 445.768617] ? do_vfs_ioctl+0x1060/0x1060 [ 445.772771] do_syscall_64+0x1e8/0x640 [ 445.776648] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 445.781496] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 445.786680] RIP: 0033:0x45c2b7 [ 445.789849] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 445.797548] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 445.804821] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 445.812085] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 445.819353] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 445.826609] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001a 21:56:54 executing program 5 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:54 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 446.082179] FAULT_INJECTION: forcing a failure. [ 446.082179] name failslab, interval 1, probability 0, space 0, times 0 [ 446.093828] CPU: 0 PID: 20048 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 446.101719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 446.111078] Call Trace: [ 446.113679] dump_stack+0x142/0x197 [ 446.117320] should_fail.cold+0x10f/0x159 [ 446.121471] should_failslab+0xdb/0x130 [ 446.125435] kmem_cache_alloc_node_trace+0x280/0x770 [ 446.130529] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 446.135973] __kmalloc_node_track_caller+0x3d/0x80 [ 446.140889] __kmalloc_reserve.isra.0+0x40/0xe0 [ 446.145657] __alloc_skb+0xcf/0x500 [ 446.149271] ? skb_trim+0x180/0x180 [ 446.152928] ? netlink_has_listeners+0x20a/0x330 [ 446.157674] kobject_uevent_env+0x6ea/0xc80 [ 446.162003] kobject_uevent+0x20/0x30 [ 446.165804] lo_ioctl+0x11d3/0x1cd0 [ 446.169417] ? loop_probe+0x160/0x160 [ 446.173202] blkdev_ioctl+0x95f/0x1850 [ 446.177072] ? blkpg_ioctl+0x970/0x970 [ 446.180948] ? __might_sleep+0x93/0xb0 [ 446.184818] ? __fget+0x210/0x370 [ 446.188262] block_ioctl+0xde/0x120 [ 446.191883] ? blkdev_fallocate+0x3b0/0x3b0 [ 446.196197] do_vfs_ioctl+0x7ae/0x1060 [ 446.200078] ? selinux_file_mprotect+0x5d0/0x5d0 [ 446.204828] ? lock_downgrade+0x740/0x740 [ 446.208964] ? ioctl_preallocate+0x1c0/0x1c0 [ 446.213357] ? __fget+0x237/0x370 [ 446.216859] ? security_file_ioctl+0x89/0xb0 [ 446.221262] SyS_ioctl+0x8f/0xc0 [ 446.224622] ? do_vfs_ioctl+0x1060/0x1060 [ 446.228762] do_syscall_64+0x1e8/0x640 [ 446.232712] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 446.237601] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 446.242794] RIP: 0033:0x45c2b7 [ 446.245974] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 446.253666] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 446.261068] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 446.268327] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 446.275582] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 446.282908] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001b [ 447.841168] NOHZ: local_softirq_pending 08 [ 447.845474] NOHZ: local_softirq_pending 08 21:56:56 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12d}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:56 executing program 4: prctl$PR_GET_SECCOMP(0x15) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$NBD_DO_IT(r2, 0xab03) 21:56:56 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, &(0x7f00000001c0)={{0xffffffffffffffff, 0x2, 0x4, 0x3, 0x3}, 0x0, 0x7d, 'id0\x00', 'timer0\x00', 0x0, 0x20000000000000, 0x9, 0x5, 0x8001}) 21:56:56 executing program 5 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:56 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000040)=ANY=[@ANYBLOB="5cdb738f21ad"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:56 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:56 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-control\x00', 0x204000, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x18, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1}, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000240)=ANY=[@ANYBLOB='\x00 \x00\x00\x00\x00\x00\x00'], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="fd9668c82ebdfc099cd052c348bdf9e4e65dc15acedce9b82125bc2900e4ef7df44531fbc02b8f95642551fae5b985a5d343ea9ab81e9a9daf39c3408343ccc2f8bed4e4eb2d9406fb3ad0f2146c9fe073fcc3c450704e20a7a5acd39feba7378c318f637c830e3616e2e87fc45205dc9db77ade229efeb10e0752d7eb38c361777ca9541e2933012156"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r9 = dup3(r7, r8, 0x0) write$9p(r9, 0x0, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r6, 0x8004e500, &(0x7f0000000440)=r9) [ 448.329622] FAULT_INJECTION: forcing a failure. [ 448.329622] name failslab, interval 1, probability 0, space 0, times 0 [ 448.355586] CPU: 1 PID: 20075 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 448.363506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 448.372862] Call Trace: [ 448.375438] dump_stack+0x142/0x197 [ 448.379063] should_fail.cold+0x10f/0x159 [ 448.383218] should_failslab+0xdb/0x130 [ 448.387301] kmem_cache_alloc_node_trace+0x280/0x770 [ 448.392448] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 448.397885] __kmalloc_node_track_caller+0x3d/0x80 [ 448.402811] __kmalloc_reserve.isra.0+0x40/0xe0 [ 448.407473] __alloc_skb+0xcf/0x500 [ 448.411097] ? skb_trim+0x180/0x180 [ 448.414708] ? netlink_has_listeners+0x20a/0x330 [ 448.419447] kobject_uevent_env+0x6ea/0xc80 [ 448.423770] kobject_uevent+0x20/0x30 [ 448.427562] lo_ioctl+0x11d3/0x1cd0 [ 448.431205] ? loop_probe+0x160/0x160 [ 448.434990] blkdev_ioctl+0x95f/0x1850 [ 448.438860] ? blkpg_ioctl+0x970/0x970 [ 448.442742] ? __might_sleep+0x93/0xb0 [ 448.446621] ? __fget+0x210/0x370 [ 448.450087] block_ioctl+0xde/0x120 [ 448.453716] ? blkdev_fallocate+0x3b0/0x3b0 [ 448.458026] do_vfs_ioctl+0x7ae/0x1060 [ 448.462021] ? selinux_file_mprotect+0x5d0/0x5d0 [ 448.466773] ? lock_downgrade+0x740/0x740 [ 448.470914] ? ioctl_preallocate+0x1c0/0x1c0 [ 448.475309] ? __fget+0x237/0x370 [ 448.478753] ? security_file_ioctl+0x89/0xb0 [ 448.483299] SyS_ioctl+0x8f/0xc0 [ 448.486793] ? do_vfs_ioctl+0x1060/0x1060 [ 448.490947] do_syscall_64+0x1e8/0x640 [ 448.494879] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 448.499718] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 448.504958] RIP: 0033:0x45c2b7 [ 448.508136] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 448.515834] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 448.523114] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 448.530381] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 448.537641] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 448.544900] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001c 21:56:56 executing program 5 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 448.676646] FAULT_INJECTION: forcing a failure. [ 448.676646] name failslab, interval 1, probability 0, space 0, times 0 [ 448.688984] CPU: 1 PID: 20091 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 448.696886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 448.706244] Call Trace: [ 448.708844] dump_stack+0x142/0x197 [ 448.712489] should_fail.cold+0x10f/0x159 [ 448.716650] should_failslab+0xdb/0x130 [ 448.720639] kmem_cache_alloc_node+0x287/0x780 [ 448.725236] __alloc_skb+0x9c/0x500 [ 448.728869] ? skb_trim+0x180/0x180 [ 448.732500] ? netlink_has_listeners+0x20a/0x330 [ 448.737274] kobject_uevent_env+0x6ea/0xc80 [ 448.741612] kobject_uevent+0x20/0x30 [ 448.745419] lo_ioctl+0x11d3/0x1cd0 [ 448.749052] ? loop_probe+0x160/0x160 [ 448.752852] blkdev_ioctl+0x95f/0x1850 [ 448.756741] ? blkpg_ioctl+0x970/0x970 [ 448.760630] ? __might_sleep+0x93/0xb0 [ 448.764517] ? __fget+0x210/0x370 [ 448.767979] block_ioctl+0xde/0x120 [ 448.771608] ? blkdev_fallocate+0x3b0/0x3b0 [ 448.776451] do_vfs_ioctl+0x7ae/0x1060 [ 448.780342] ? selinux_file_mprotect+0x5d0/0x5d0 [ 448.785098] ? lock_downgrade+0x740/0x740 [ 448.789248] ? ioctl_preallocate+0x1c0/0x1c0 [ 448.793665] ? __fget+0x237/0x370 [ 448.797127] ? security_file_ioctl+0x89/0xb0 [ 448.801544] SyS_ioctl+0x8f/0xc0 [ 448.804909] ? do_vfs_ioctl+0x1060/0x1060 [ 448.809063] do_syscall_64+0x1e8/0x640 [ 448.812950] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 448.817799] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 448.822985] RIP: 0033:0x45c2b7 [ 448.826171] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 448.833885] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 448.841177] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 448.848446] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 448.855713] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 448.862980] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001d 21:56:57 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='trusted.overlay.redirect\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x0) 21:56:57 executing program 5 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 449.027280] FAULT_INJECTION: forcing a failure. [ 449.027280] name failslab, interval 1, probability 0, space 0, times 0 [ 449.049740] CPU: 1 PID: 20107 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 449.057746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 449.067107] Call Trace: [ 449.069731] dump_stack+0x142/0x197 [ 449.073377] should_fail.cold+0x10f/0x159 [ 449.077559] should_failslab+0xdb/0x130 [ 449.081553] kmem_cache_alloc_node_trace+0x280/0x770 [ 449.086662] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 449.092118] __kmalloc_node_track_caller+0x3d/0x80 [ 449.097055] __kmalloc_reserve.isra.0+0x40/0xe0 [ 449.101875] __alloc_skb+0xcf/0x500 [ 449.105513] ? skb_trim+0x180/0x180 [ 449.109144] ? netlink_has_listeners+0x20a/0x330 [ 449.113905] kobject_uevent_env+0x6ea/0xc80 [ 449.118338] kobject_uevent+0x20/0x30 [ 449.122143] lo_ioctl+0x11d3/0x1cd0 [ 449.125790] ? loop_probe+0x160/0x160 [ 449.129593] blkdev_ioctl+0x95f/0x1850 [ 449.133487] ? blkpg_ioctl+0x970/0x970 [ 449.137386] ? __might_sleep+0x93/0xb0 [ 449.141284] ? __fget+0x210/0x370 [ 449.144746] block_ioctl+0xde/0x120 [ 449.148376] ? blkdev_fallocate+0x3b0/0x3b0 [ 449.152700] do_vfs_ioctl+0x7ae/0x1060 [ 449.156589] ? selinux_file_mprotect+0x5d0/0x5d0 [ 449.161342] ? lock_downgrade+0x740/0x740 [ 449.165628] ? ioctl_preallocate+0x1c0/0x1c0 [ 449.170039] ? __fget+0x237/0x370 [ 449.173503] ? security_file_ioctl+0x89/0xb0 [ 449.177923] SyS_ioctl+0x8f/0xc0 [ 449.181297] ? do_vfs_ioctl+0x1060/0x1060 [ 449.185459] do_syscall_64+0x1e8/0x640 [ 449.189348] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 449.194198] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 449.199390] RIP: 0033:0x45c2b7 [ 449.202579] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 449.210296] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 449.217563] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 449.224832] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 449.232237] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 449.239506] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001e 21:56:57 executing program 5 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:57 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000180)={0x5, 0x70, 0x5, 0x40, 0x4, 0x2, 0x0, 0xfffffffffffffffb, 0x5aa, 0xa, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000040), 0x5}, 0x40083, 0x0, 0xfffffffa, 0x4, 0x2, 0x1ff, 0x2}, 0xffffffffffffffff, 0xb, r2, 0x0) fsetxattr$trusted_overlay_redirect(r3, &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x0) [ 449.432274] FAULT_INJECTION: forcing a failure. [ 449.432274] name failslab, interval 1, probability 0, space 0, times 0 [ 449.453914] CPU: 0 PID: 20118 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 449.461846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 449.471205] Call Trace: [ 449.473806] dump_stack+0x142/0x197 [ 449.477447] should_fail.cold+0x10f/0x159 [ 449.481609] should_failslab+0xdb/0x130 [ 449.485597] kmem_cache_alloc_node+0x287/0x780 [ 449.490208] __alloc_skb+0x9c/0x500 [ 449.493941] ? skb_trim+0x180/0x180 [ 449.497574] ? netlink_has_listeners+0x20a/0x330 [ 449.502344] kobject_uevent_env+0x6ea/0xc80 [ 449.506683] kobject_uevent+0x20/0x30 [ 449.510499] lo_ioctl+0x11d3/0x1cd0 [ 449.514133] ? loop_probe+0x160/0x160 [ 449.517940] blkdev_ioctl+0x95f/0x1850 [ 449.521846] ? blkpg_ioctl+0x970/0x970 [ 449.525743] ? __might_sleep+0x93/0xb0 [ 449.529645] ? __fget+0x210/0x370 [ 449.533110] block_ioctl+0xde/0x120 [ 449.536763] ? blkdev_fallocate+0x3b0/0x3b0 [ 449.541102] do_vfs_ioctl+0x7ae/0x1060 [ 449.545018] ? selinux_file_mprotect+0x5d0/0x5d0 [ 449.549786] ? lock_downgrade+0x740/0x740 [ 449.553944] ? ioctl_preallocate+0x1c0/0x1c0 [ 449.558365] ? __fget+0x237/0x370 [ 449.561832] ? security_file_ioctl+0x89/0xb0 [ 449.566245] SyS_ioctl+0x8f/0xc0 [ 449.569619] ? do_vfs_ioctl+0x1060/0x1060 [ 449.573773] do_syscall_64+0x1e8/0x640 [ 449.577672] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 449.582524] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 449.587715] RIP: 0033:0x45c2b7 [ 449.590994] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 449.598707] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 449.606032] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 449.613311] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 449.620589] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 449.627955] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000001f 21:56:59 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12d}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:56:59 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r2, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r2, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r2, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r2, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r2, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) recvmsg(r2, &(0x7f0000000800)={&(0x7f00000001c0)=@xdp, 0x80, &(0x7f0000000f80)=[{&(0x7f0000000240)=""/125, 0x7d}, {&(0x7f0000000380)=""/214, 0xd6}, {&(0x7f0000000480)=""/176, 0xb0}, {&(0x7f0000000140)=""/39, 0x27}, {&(0x7f0000000540)=""/143, 0x8f}, {&(0x7f0000000600)=""/211, 0xd3}, {&(0x7f0000000700)=""/197, 0xc5}, {&(0x7f0000000e00)=""/236, 0xec}, {&(0x7f0000000f00)=""/67, 0x43}], 0x9, &(0x7f00000002c0)}, 0x2000) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) socket$bt_hidp(0x1f, 0x3, 0x6) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r3, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r3, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r3, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r3, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r3, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) recvmsg(r3, &(0x7f00000055c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xe7b54a785b94653a) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r0, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) socketpair(0x22, 0x3, 0xf8, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r4) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r0, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r0, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x3, 0x4) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:59 executing program 5 (fault-call:0 fault-nth:32): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:59 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r0 = socket(0x18, 0x3, 0x1f) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./control\x00', 0xee00, r1) r2 = getegid() r3 = getgid() r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./control\x00', 0xee00, r5) getresgid(&(0x7f0000000040), &(0x7f0000000180), &(0x7f00000001c0)=0x0) r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./control\x00', 0xee00, r8) r9 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./control\x00', 0xee00, r10) r11 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r11, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./control\x00', 0xee00, r12) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000000400)=0xc) chown(&(0x7f0000000000)='./control\x00', 0xee00, r13) getgroups(0x6, &(0x7f0000000200)=[r1, r10, r12, 0xffffffffffffffff, 0xee00, r13]) setgroups(0x8, &(0x7f0000000240)=[r1, r2, r3, r5, 0xee00, r6, r8, r14]) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f00000004c0)=ANY=[@ANYBLOB="f85e717e825ea85cca1274c41222586316fa53459a237ea4cd568f7dc78382b70213ae1bb0750d83734e0dc2e87e4b9b8d44e4caff1901f046449b13dba4f70f7a6f437793aa48055bc54b01a47f7d876c446efa89bf155c2a02824972a11ff219463edd7f77a89fe53936a06dacc8cca65398149d81082eb5677a33e6c0c856ed0bb829fbe9f5873b327ab0a2313b39aa0f5f58d95a25cbc25bb3ad"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000340)=ANY=[@ANYBLOB="c2e82a86cbca042dded6af5141796c1c1be6a880a3e5767a44cb5db75213903ea098d6962e559c588ae3f41673a59cddff4da3944cf3e5524aa4c0f51fac4860057f9cf857065aabb3e8635c36dcc18e56571fe91746dc91b7b3b96cd8d8c85b50b5485f59ad7531db31f09c3e9a339a03a8be0488ae421d41487040ee778e3ceebaa7fc85d2ab511743baa0593e725634303179553a54c646bb9faeea8b987c0505916fa500a8a336f5fac4a35b9d35"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:56:59 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$cont(0x20, r0, 0x0, 0x0) [ 451.377186] FAULT_INJECTION: forcing a failure. [ 451.377186] name failslab, interval 1, probability 0, space 0, times 0 [ 451.394998] CPU: 0 PID: 20136 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 451.402911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 451.412266] Call Trace: [ 451.414954] dump_stack+0x142/0x197 [ 451.418597] should_fail.cold+0x10f/0x159 [ 451.422771] should_failslab+0xdb/0x130 [ 451.426880] kmem_cache_alloc_node_trace+0x280/0x770 [ 451.431994] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 451.437467] __kmalloc_node_track_caller+0x3d/0x80 [ 451.442422] __kmalloc_reserve.isra.0+0x40/0xe0 [ 451.447230] __alloc_skb+0xcf/0x500 [ 451.450861] ? skb_trim+0x180/0x180 [ 451.454493] ? netlink_has_listeners+0x20a/0x330 [ 451.459273] kobject_uevent_env+0x6ea/0xc80 [ 451.463614] kobject_uevent+0x20/0x30 [ 451.467430] lo_ioctl+0x11d3/0x1cd0 [ 451.471068] ? loop_probe+0x160/0x160 21:56:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) ioctl$USBDEVFS_GET_CAPABILITIES(r3, 0x8004551a, &(0x7f0000000100)) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r6 = dup3(r4, r5, 0x0) write$9p(r6, 0x0, 0x0) r7 = socket(0x100001400000010, 0x2, 0x0) write(r7, &(0x7f0000000080)="2400000052001f0014f97407010904000200071008000100010000000800800000000000", 0x54a) r8 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000240)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(r7, &(0x7f0000000700)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80308330}, 0xffffffffffffff3e, &(0x7f00000006c0)={&(0x7f0000000280)={0x14, r8, 0x300, 0x70bd2b, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x0) sendmsg$NET_DM_CMD_STOP(r6, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r8, 0x800, 0x70bd29, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x40001) ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f0000000000)) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x2, 0x0, &(0x7f0000000100), 0x4082, 0x0) r9 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x48c902, 0x0) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r9, 0x12, 0x2, &(0x7f0000000640)=""/206, &(0x7f0000000740)=0xce) getresuid(&(0x7f0000000340), &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r11 = request_key(&(0x7f0000000400)='cifs.spnego\x00', &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='md5sumvmnet0\x00', 0xfffffffffffffff8) keyctl$get_persistent(0x16, r10, r11) [ 451.474873] blkdev_ioctl+0x95f/0x1850 [ 451.478765] ? blkpg_ioctl+0x970/0x970 [ 451.482666] ? __might_sleep+0x93/0xb0 [ 451.486559] ? __fget+0x210/0x370 [ 451.490418] block_ioctl+0xde/0x120 [ 451.494178] ? blkdev_fallocate+0x3b0/0x3b0 [ 451.498593] do_vfs_ioctl+0x7ae/0x1060 [ 451.502475] ? selinux_file_mprotect+0x5d0/0x5d0 [ 451.507219] ? lock_downgrade+0x740/0x740 [ 451.511357] ? ioctl_preallocate+0x1c0/0x1c0 [ 451.515756] ? __fget+0x237/0x370 [ 451.519196] ? security_file_ioctl+0x89/0xb0 [ 451.523595] SyS_ioctl+0x8f/0xc0 [ 451.526947] ? do_vfs_ioctl+0x1060/0x1060 [ 451.531086] do_syscall_64+0x1e8/0x640 [ 451.535234] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 451.540213] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 451.545388] RIP: 0033:0x45c2b7 [ 451.548575] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 451.556271] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 451.563523] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 451.570780] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a 21:56:59 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ext4\x00', 0x200041, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="814ddda3bb66f4a546dc09b0ee477c42c409eb02dc85679d94f400199f612c9acc8c223225a37decb63c78e3d7f2a031f1254c62b5f0948815263156419aed91af12aaa02fc20e9904167296eee93fea5860a3ab6e2be9f3f591cb571576061d8f13680cdcfd0afefdaad38b67c975f7aaa599a290cfad5ae8f70975d6e63105d9e9ab6262f5c5e0946be2ffa3c263d39fae706cd75cb3e53518eb5c0e3f1ffddbd2628871acdf4be2a3201751ce4b37da1c1aaa42a28ef73b281ceee60eefc4d8271510451d700e76b8b96c196d31c65882395c4cbb6b64f405dd85017f65af0d4265f2a1d1c7ed2252c6f42b98f379d6"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x20000, 0x1a0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f0000000300)) [ 451.578037] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 451.585325] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000020 21:56:59 executing program 5 (fault-call:0 fault-nth:33): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:56:59 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f0000000040)="9abae3e5b4857a19c8fdbe959afc28ab0d52a925a440fb020168ede2d5000005e16a67e97058e66c31245dc6aa083878ae017b24", 0x34, 0x3}], 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x1fd, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) write$9p(r5, 0x0, 0x0) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r6, 0x407, 0x0) write(r6, 0x0, 0x0) accept4$packet(r6, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000700)=0x14, 0x80000) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0x30}, r7}, 0x14) sendmsg$nl_route_sched(r5, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=@newchain={0x94, 0x64, 0x400, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0xffe8, 0x5}, {0x1, 0xffe0}, {0x1}}, [@TCA_RATE={0x6, 0x5, {0x5}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x48, 0x2, [@TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_NAME={0xc, 0x7, './file1\x00'}, @TCA_BPF_OPS={{0x6, 0x4, 0x4}, {0x24, 0x5, [{0x0, 0x1f, 0x6, 0xffffffc1}, {0x9, 0x1, 0xc3, 0x6}, {0x5, 0x80, 0x40, 0x5}, {0x1, 0x5, 0x1f, 0x3ff}]}}]}}, @TCA_CHAIN={0x8, 0xb, 0x50}, @TCA_RATE={0x6, 0x5, {0x1f, 0xe1}}, @TCA_RATE={0x6, 0x5, {0x1f, 0x4}}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000010}, 0x40000) r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r9 = dup3(r2, r8, 0x0) write$9p(r9, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0x6, r9, 0x1}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r13, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_HAS_DEVICE_ATTR(r10, 0x4018aee3, &(0x7f0000000140)={0x0, 0x2, 0x5, &(0x7f0000000100)=0xfffffffffffffbff}) 21:56:59 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x82056, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) lsetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=@random={'os2.', 'ramfs\x00'}, &(0x7f0000000200)='GPL\x00', 0x4, 0x3) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="89b1a85903cb3eb711076c09738265f246ee5f38cd58c11ca454115fc372b90e72d7d0f94e5ccaab3f3e4519c0e039dd6499f2037a5ebe969dea6823104b196add438ef35b70c8fc7b6f39c68829d9596f29dd49018057cea7c22ecdd0acb3f4cbcc8be4891fd9f407d249025edd1e67bc348ae2e9baf2b4bf538f5ffe7971e27563e23e0d196437674e500b12d22ff46aa06b85b11b33e15622c65b4e672b04a42a63dc2ac19bd02598c63a205c8a4b68c7d6712990520bd8ea58b8d3"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080)=@sg0='/dev/sg0\x00', &(0x7f0000000180)='./file1\x00', 0x0, 0x800008, 0x0) [ 451.831453] FAULT_INJECTION: forcing a failure. [ 451.831453] name failslab, interval 1, probability 0, space 0, times 0 [ 451.846090] CPU: 1 PID: 20170 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 451.853985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 451.863406] Call Trace: [ 451.865995] dump_stack+0x142/0x197 [ 451.869630] should_fail.cold+0x10f/0x159 [ 451.873769] should_failslab+0xdb/0x130 [ 451.877736] kmem_cache_alloc_node+0x287/0x780 [ 451.882423] __alloc_skb+0x9c/0x500 [ 451.886048] ? skb_trim+0x180/0x180 [ 451.889757] ? netlink_has_listeners+0x20a/0x330 [ 451.894565] kobject_uevent_env+0x6ea/0xc80 [ 451.898882] kobject_uevent+0x20/0x30 [ 451.902679] lo_ioctl+0x11d3/0x1cd0 [ 451.906427] ? loop_probe+0x160/0x160 [ 451.910309] blkdev_ioctl+0x95f/0x1850 [ 451.914265] ? blkpg_ioctl+0x970/0x970 [ 451.918158] ? __might_sleep+0x93/0xb0 [ 451.922041] ? __fget+0x210/0x370 [ 451.925501] block_ioctl+0xde/0x120 [ 451.929137] ? blkdev_fallocate+0x3b0/0x3b0 [ 451.933465] do_vfs_ioctl+0x7ae/0x1060 [ 451.937364] ? selinux_file_mprotect+0x5d0/0x5d0 [ 451.942117] ? lock_downgrade+0x740/0x740 [ 451.946280] ? ioctl_preallocate+0x1c0/0x1c0 [ 451.950695] ? __fget+0x237/0x370 [ 451.954162] ? security_file_ioctl+0x89/0xb0 [ 451.958586] SyS_ioctl+0x8f/0xc0 [ 451.961960] ? do_vfs_ioctl+0x1060/0x1060 [ 451.966227] do_syscall_64+0x1e8/0x640 [ 451.970112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 451.974966] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 451.980150] RIP: 0033:0x45c2b7 [ 451.983337] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 451.991059] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 451.998334] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 452.005665] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 452.012929] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 452.020290] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000021 21:57:00 executing program 5 (fault-call:0 fault-nth:34): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 452.157321] FAULT_INJECTION: forcing a failure. [ 452.157321] name failslab, interval 1, probability 0, space 0, times 0 [ 452.174409] CPU: 0 PID: 20188 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 452.182319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 452.191677] Call Trace: [ 452.194281] dump_stack+0x142/0x197 [ 452.198019] should_fail.cold+0x10f/0x159 [ 452.202189] should_failslab+0xdb/0x130 21:57:00 executing program 2: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$UI_SET_RELBIT(r2, 0x40045566, 0x3) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = getpid() r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r4, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r4, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r4, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r4, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) r5 = accept(r4, &(0x7f0000000080)=@un=@abs, &(0x7f0000000140)=0x80) setsockopt$inet6_buf(r5, 0x29, 0xf1, &(0x7f0000000200)="297b52d2e1e0fca05d9a3ad30f3a2bf815e1cec7a99561019b64ef6489ab2421fe6f15b09e9e834ae551b8286b8cb4dd66203eb6cf48fe02584f46d530ac66a1d89e7bf5bb3a53517975dd0a89", 0x4d) stat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380)) r6 = socket$caif_seqpacket(0x25, 0x5, 0x1) ioctl$SIOCGSTAMP(r6, 0x8906, &(0x7f0000000540)) sched_setscheduler(r3, 0x5, &(0x7f00000001c0)) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x8, 0x1f, r3}) ioctl$TIOCSIG(0xffffffffffffffff, 0x40045436, 0x16) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/hwrng\x00', 0x243, 0x0) setsockopt$inet6_group_source_req(r7, 0x29, 0x2c, &(0x7f0000000400)={0x3, {{0xa, 0x4e24, 0xfffff6b5, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x2}}, {{0xa, 0x4e23, 0x6, @loopback, 0xfffe}}}, 0x108) [ 452.206283] kmem_cache_alloc_node+0x287/0x780 [ 452.210871] __alloc_skb+0x9c/0x500 [ 452.214501] ? skb_trim+0x180/0x180 [ 452.218147] ? netlink_has_listeners+0x20a/0x330 [ 452.222908] kobject_uevent_env+0x6ea/0xc80 [ 452.227242] kobject_uevent+0x20/0x30 [ 452.231032] lo_ioctl+0x11d3/0x1cd0 [ 452.234663] ? loop_probe+0x160/0x160 [ 452.238451] blkdev_ioctl+0x95f/0x1850 [ 452.242335] ? blkpg_ioctl+0x970/0x970 [ 452.247020] ? __might_sleep+0x93/0xb0 [ 452.250966] ? __fget+0x210/0x370 [ 452.254464] block_ioctl+0xde/0x120 [ 452.258088] ? blkdev_fallocate+0x3b0/0x3b0 [ 452.262411] do_vfs_ioctl+0x7ae/0x1060 [ 452.266301] ? selinux_file_mprotect+0x5d0/0x5d0 [ 452.271045] ? lock_downgrade+0x740/0x740 [ 452.275291] ? ioctl_preallocate+0x1c0/0x1c0 [ 452.279696] ? __fget+0x237/0x370 [ 452.283138] ? security_file_ioctl+0x89/0xb0 [ 452.287631] SyS_ioctl+0x8f/0xc0 [ 452.290998] ? do_vfs_ioctl+0x1060/0x1060 [ 452.295146] do_syscall_64+0x1e8/0x640 [ 452.299021] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 452.303858] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 452.309037] RIP: 0033:0x45c2b7 [ 452.312281] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 452.319989] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 452.327347] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 452.334607] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 452.341865] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 452.349129] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000022 21:57:02 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:02 executing program 5 (fault-call:0 fault-nth:35): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:02 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000080)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x4}], 0x0, 0x0) 21:57:02 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r0, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r0, 0x1, 0x27, &(0x7f0000002580)=0x800, 0x4) sendto$inet6(r0, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r0, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r1) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r3, 0x9}, &(0x7f00000001c0)=0x18) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={r3, 0x2}, 0xc) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:02 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f00000001c0)) r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0xc0143, 0x0) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000480)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @dev}, r3}}, 0x30) write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f00000000c0)=0x7f, r3, 0x0, 0x0, 0x1}}, 0x20) r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) fcntl$setown(r8, 0x8, r5) chown(&(0x7f0000000000)='./control\x00', 0xee00, r6) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000580)={{{@in=@multicast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@remote}}, &(0x7f00000004c0)=0xe8) r10 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r11) syz_mount_image$f2fs(&(0x7f0000000200)='f2fs\x00', &(0x7f0000000240)='./file0\x00', 0x4, 0x2, &(0x7f00000002c0)=[{&(0x7f0000000280)="67c9549df9c0538a20e0af4b1defb6", 0xf, 0x1000}, {&(0x7f0000000380)="8543a5afe30d5eba6d76068f4b37e7586fde5dff1369ab847f62f394dad5cb902b885e3c2bf5bc4c02a83cf314e5c3fca5238435fffbb83358ee5e3e8cbcd003509dc44469d9eda4a3cc1d465b98a1fecca7a00faebb3c5b285c173caebfddff8279f3665404096fb334309ee2f3d3a00a66013c11b6d01715249ba091b5816c15d592c947243a6cddf4f5b9a252f70f40931f0c897c4b58f18178d7c0f8bb4eb0a9e61c7da7664a465b3d90b3e38a3834559e566560dd55610fb3514764081c7b0ff42c0fb420acc929abbbdbe607dabe6f709784bd8f09be452884dbe8390fe9fae1ffc87a64e67c", 0xe9, 0x9}], 0x880022, &(0x7f0000000680)=ANY=[@ANYBLOB='nouser_xattr,resgid=', @ANYRESHEX=r6, @ANYBLOB=',fowner>', @ANYRESDEC=r9, @ANYBLOB="2c707bc177d846333fe572656374696f2c657569643d", @ANYRESDEC=r11, @ANYBLOB=',fscontext=unconfined_u,\x00']) prctl$PR_SET_PTRACER(0x59616d61, r0) ioctl$PPPIOCGUNIT(0xffffffffffffffff, 0x80047456, &(0x7f0000000040)) 21:57:02 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$cont(0x20, r0, 0x0, 0x0) [ 454.413403] FAULT_INJECTION: forcing a failure. [ 454.413403] name failslab, interval 1, probability 0, space 0, times 0 [ 454.447801] CPU: 0 PID: 20226 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 454.455715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 454.465159] Call Trace: [ 454.467748] dump_stack+0x142/0x197 [ 454.471372] should_fail.cold+0x10f/0x159 [ 454.475532] should_failslab+0xdb/0x130 [ 454.479508] kmem_cache_alloc_node_trace+0x280/0x770 [ 454.484608] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 454.490349] __kmalloc_node_track_caller+0x3d/0x80 [ 454.495380] __kmalloc_reserve.isra.0+0x40/0xe0 [ 454.500055] __alloc_skb+0xcf/0x500 [ 454.503680] ? skb_trim+0x180/0x180 [ 454.507308] ? netlink_has_listeners+0x20a/0x330 [ 454.512152] kobject_uevent_env+0x6ea/0xc80 [ 454.516643] kobject_uevent+0x20/0x30 [ 454.520475] lo_ioctl+0x11d3/0x1cd0 [ 454.524093] ? loop_probe+0x160/0x160 [ 454.527881] blkdev_ioctl+0x95f/0x1850 [ 454.531752] ? blkpg_ioctl+0x970/0x970 [ 454.535682] ? __might_sleep+0x93/0xb0 [ 454.539552] ? __fget+0x210/0x370 [ 454.542991] block_ioctl+0xde/0x120 [ 454.546661] ? blkdev_fallocate+0x3b0/0x3b0 [ 454.551066] do_vfs_ioctl+0x7ae/0x1060 [ 454.555027] ? selinux_file_mprotect+0x5d0/0x5d0 [ 454.559784] ? lock_downgrade+0x740/0x740 [ 454.563917] ? ioctl_preallocate+0x1c0/0x1c0 [ 454.568356] ? __fget+0x237/0x370 [ 454.571805] ? security_file_ioctl+0x89/0xb0 [ 454.576274] SyS_ioctl+0x8f/0xc0 [ 454.579633] ? do_vfs_ioctl+0x1060/0x1060 [ 454.583773] do_syscall_64+0x1e8/0x640 [ 454.587656] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 454.592500] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 454.597675] RIP: 0033:0x45c2b7 [ 454.600850] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:57:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) ioctl$KVM_GET_FPU(0xffffffffffffffff, 0x81a0ae8c, &(0x7f00000004c0)) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x0, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x1], 0x1f000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r7, r10, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f0000000400)="6766c74424000c0000006766c74424021b0000006766c744240600000000670f011c240f01ca0f23500f01cb660f383df30f01c4ea00004900dbe33e0f229b66b9800000c00f326635000800000f30", 0x4f}], 0x1, 0x2, &(0x7f0000000680)=[@cr0={0x0, 0x20010020}, @cr0={0x0, 0x8}], 0x2) ioctl$KVM_SET_CPUID(r5, 0x4008ae8a, &(0x7f00000006c0)=ANY=[@ANYBLOB="070000000000000002000000050000000800000038000000070000000000000007000080e1ffffff40000000030000000700000000000000000000c001010000200000000600000004000000000000001900008007000000060000008100000002000000000000000500000002000000ffff000000000000060000000000000019000080030000000600000001000080ff0700000000000019000080fdffffff04000000010000001700000000000000f836670fa7e7ec4576eed3d3"]) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 454.608542] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 454.616231] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 454.623510] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 454.630764] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 454.638417] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000023 21:57:02 executing program 5 (fault-call:0 fault-nth:36): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:02 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x9}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) write$P9_ROPEN(r2, &(0x7f0000000040)={0x18, 0x71, 0x1, {{0x1, 0x0, 0x4}, 0xffff0001}}, 0x18) [ 454.828050] FAULT_INJECTION: forcing a failure. [ 454.828050] name failslab, interval 1, probability 0, space 0, times 0 [ 454.845906] CPU: 0 PID: 20259 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 454.853962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 454.863326] Call Trace: [ 454.865922] dump_stack+0x142/0x197 [ 454.869569] should_fail.cold+0x10f/0x159 [ 454.873724] should_failslab+0xdb/0x130 [ 454.877700] kmem_cache_alloc_node_trace+0x280/0x770 [ 454.882796] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 454.888281] __kmalloc_node_track_caller+0x3d/0x80 [ 454.893209] __kmalloc_reserve.isra.0+0x40/0xe0 [ 454.897877] __alloc_skb+0xcf/0x500 [ 454.901494] ? skb_trim+0x180/0x180 [ 454.905143] ? netlink_has_listeners+0x20a/0x330 [ 454.909904] kobject_uevent_env+0x6ea/0xc80 [ 454.914218] kobject_uevent+0x20/0x30 [ 454.918036] lo_ioctl+0x11d3/0x1cd0 [ 454.921717] ? loop_probe+0x160/0x160 [ 454.925510] blkdev_ioctl+0x95f/0x1850 [ 454.929400] ? blkpg_ioctl+0x970/0x970 [ 454.933282] ? __might_sleep+0x93/0xb0 [ 454.937158] ? __fget+0x210/0x370 [ 454.940812] block_ioctl+0xde/0x120 [ 454.944435] ? blkdev_fallocate+0x3b0/0x3b0 [ 454.948815] do_vfs_ioctl+0x7ae/0x1060 [ 454.952696] ? selinux_file_mprotect+0x5d0/0x5d0 [ 454.957448] ? lock_downgrade+0x740/0x740 [ 454.961608] ? ioctl_preallocate+0x1c0/0x1c0 [ 454.966019] ? __fget+0x237/0x370 [ 454.969462] ? security_file_ioctl+0x89/0xb0 [ 454.973862] SyS_ioctl+0x8f/0xc0 [ 454.977318] ? do_vfs_ioctl+0x1060/0x1060 [ 454.981457] do_syscall_64+0x1e8/0x640 [ 454.985336] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 454.990183] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 454.995358] RIP: 0033:0x45c2b7 [ 454.998527] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 455.006274] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045c2b7 [ 455.013843] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 455.021101] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a 21:57:03 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x20, &(0x7f0000000040)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001024d010000000000000000007a00000b18d779601cedc49db3000000247db31d000048aeb81e1b00b10efd9a000001000000000001fffffff600", 0x48, 0x10000}], 0x2200000, 0x0) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x2, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000001c0)={0x2, [0x0, 0x0]}, &(0x7f0000000200)=0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000240)={0xfff, 0x3f, 0x4000, 0x6, 0x5b5, 0x3, 0x100, 0x7, r4}, &(0x7f0000000280)=0x20) ioctl$VIDIOC_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f00000000c0)={0x0, @bt={0x7fffffff, 0xc5ef, 0x1, 0x2, 0x7, 0x6, 0xfffffffb, 0x7, 0x8, 0xea, 0x78b, 0x0, 0x8, 0x0, 0x18, 0xa, {0x1, 0x3}}}) [ 455.028481] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 455.035744] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000024 21:57:03 executing program 5 (fault-call:0 fault-nth:37): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 455.185178] FAULT_INJECTION: forcing a failure. [ 455.185178] name failslab, interval 1, probability 0, space 0, times 0 [ 455.233462] CPU: 1 PID: 20281 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 455.241385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 455.250920] Call Trace: [ 455.253527] dump_stack+0x142/0x197 [ 455.257173] should_fail.cold+0x10f/0x159 [ 455.261337] should_failslab+0xdb/0x130 [ 455.265321] kmem_cache_alloc+0x2d7/0x780 [ 455.269590] ? selinux_file_mprotect+0x5d0/0x5d0 [ 455.274368] ? lock_downgrade+0x740/0x740 [ 455.278525] ? ioctl_preallocate+0x1c0/0x1c0 21:57:03 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x22000, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 455.282953] getname_flags+0xcb/0x580 [ 455.286871] SyS_mkdir+0x7e/0x200 [ 455.290335] ? SyS_mkdirat+0x210/0x210 [ 455.294226] ? do_syscall_64+0x53/0x640 [ 455.298204] ? SyS_mkdirat+0x210/0x210 [ 455.302100] do_syscall_64+0x1e8/0x640 [ 455.305996] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 455.310857] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 455.316054] RIP: 0033:0x45b867 [ 455.319276] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 455.326983] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 455.334264] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 455.341542] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 455.348964] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 455.356266] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000025 21:57:05 executing program 5 (fault-call:0 fault-nth:38): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:05 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)) r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000080)=0x4) 21:57:05 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28d836ae78", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:05 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000240)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440)='l2tp\x00') sendmsg$L2TP_CMD_SESSION_GET(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x14, r4, 0x1}, 0x14}}, 0x0) r5 = socket$phonet_pipe(0x23, 0x5, 0x2) r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r7 = dup3(r5, r6, 0x0) write$9p(r7, 0x0, 0x0) ioctl$ASHMEM_SET_NAME(r7, 0x41007701, &(0x7f0000000200)='btrfs\x00') sendmsg$L2TP_CMD_TUNNEL_GET(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="08032dbd7000ffdbdf2504000000050006000100000008000c000000000006000e0081000000060001000b00000005000d000100000006000e000700000014001f00fe8000000000000000000000000000bb06001d00b60200000600030005000000"], 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) 21:57:05 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ncpfs\x00', 0x11c800, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="29df2973f3d265f05b744d5a3dbb92e51790dee67c106f6cbcd75a388dce38bdb8ad2c9a01e497dab447fc9a56b46171af50146114aeeb40c678753702826abcd021504eca9828c18e6382"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) getpid() r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x140, 0x0) bind$unix(r0, &(0x7f0000000200)=@file={0x0, './file0\x00'}, 0x6e) 21:57:05 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 457.445779] FAULT_INJECTION: forcing a failure. [ 457.445779] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 457.457614] CPU: 0 PID: 20318 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 457.465501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 457.474861] Call Trace: [ 457.477444] dump_stack+0x142/0x197 [ 457.481084] should_fail.cold+0x10f/0x159 [ 457.485233] __alloc_pages_nodemask+0x1d6/0x7a0 [ 457.490544] ? fs_reclaim_acquire+0x20/0x20 [ 457.494862] ? __alloc_pages_slowpath+0x2930/0x2930 [ 457.499887] cache_grow_begin+0x80/0x400 [ 457.503954] kmem_cache_alloc+0x6a6/0x780 [ 457.508100] ? selinux_file_mprotect+0x5d0/0x5d0 [ 457.512846] ? lock_downgrade+0x740/0x740 [ 457.516993] getname_flags+0xcb/0x580 [ 457.520786] SyS_mkdir+0x7e/0x200 [ 457.524355] ? SyS_mkdirat+0x210/0x210 [ 457.528229] ? do_syscall_64+0x53/0x640 [ 457.532211] ? SyS_mkdirat+0x210/0x210 [ 457.536087] do_syscall_64+0x1e8/0x640 [ 457.539974] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 457.544814] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 457.549997] RIP: 0033:0x45b867 [ 457.553201] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 457.560901] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 457.568164] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 457.575521] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 457.582784] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 457.590048] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000026 21:57:05 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f0000000240)) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x80, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="009b0f3423540cc294c8debb2469480ca92ff2595155f4db1f00000083073d9549d554fd81cf2707092e568e56c7776238b0e1cc5db8ded936ef0671a163e2087cb59582f8e2480200000071f10ba5bd6c3d1da37e4e323d922cfd7efd781e56"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200)='/dev/nvme-fabrics\x00', 0x402400, 0x0) ioctl$KDSETLED(r0, 0x4b32, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:05 executing program 5 (fault-call:0 fault-nth:39): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:05 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 457.798787] FAULT_INJECTION: forcing a failure. [ 457.798787] name failslab, interval 1, probability 0, space 0, times 0 [ 457.815309] CPU: 0 PID: 20345 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 457.823478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 457.832838] Call Trace: [ 457.835440] dump_stack+0x142/0x197 [ 457.839087] should_fail.cold+0x10f/0x159 [ 457.843252] should_failslab+0xdb/0x130 [ 457.847240] kmem_cache_alloc+0x2d7/0x780 [ 457.851394] ? __d_lookup+0x3a2/0x670 [ 457.855205] ? mark_held_locks+0xb1/0x100 [ 457.859362] ? d_lookup+0xe5/0x240 [ 457.862921] __d_alloc+0x2d/0x9f0 [ 457.866393] d_alloc+0x4d/0x270 [ 457.869688] __lookup_hash+0x58/0x180 [ 457.873608] filename_create+0x16c/0x430 [ 457.877682] ? kern_path_mountpoint+0x40/0x40 [ 457.882194] SyS_mkdir+0x92/0x200 [ 457.885662] ? SyS_mkdirat+0x210/0x210 [ 457.889554] ? do_syscall_64+0x53/0x640 [ 457.893545] ? SyS_mkdirat+0x210/0x210 [ 457.897443] do_syscall_64+0x1e8/0x640 [ 457.901343] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 457.906199] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 457.911395] RIP: 0033:0x45b867 [ 457.914688] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 457.922386] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 457.929644] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 457.937028] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 457.944291] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 457.951553] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000027 21:57:06 executing program 5 (fault-call:0 fault-nth:40): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:06 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000100000001fffffff600d13c9b16485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000001c0)={0x0, 0x0}) r4 = getpid() r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) kcmp(r3, r4, 0x3, r6, 0xffffffffffffffff) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x28, &(0x7f0000000040)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000000c0)={r7, 0x8001, 0x8}, 0xc) 21:57:06 executing program 4: [ 458.157757] FAULT_INJECTION: forcing a failure. [ 458.157757] name failslab, interval 1, probability 0, space 0, times 0 [ 458.195000] CPU: 0 PID: 20369 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 458.203027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.212478] Call Trace: [ 458.215064] dump_stack+0x142/0x197 [ 458.218704] should_fail.cold+0x10f/0x159 [ 458.223005] should_failslab+0xdb/0x130 [ 458.226981] kmem_cache_alloc+0x2d7/0x780 [ 458.231294] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 458.236747] ? ext4_sync_fs+0x800/0x800 [ 458.240722] ext4_alloc_inode+0x1d/0x610 [ 458.244782] alloc_inode+0x64/0x180 [ 458.248397] new_inode_pseudo+0x19/0xf0 [ 458.252369] new_inode+0x1f/0x40 [ 458.255896] __ext4_new_inode+0x32c/0x4860 [ 458.260133] ? avc_has_perm+0x2df/0x4b0 [ 458.264106] ? ext4_free_inode+0x1210/0x1210 [ 458.268506] ? dquot_get_next_dqblk+0x160/0x160 [ 458.273173] ext4_mkdir+0x331/0xc20 [ 458.276807] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 458.281473] ? security_inode_mkdir+0xd0/0x110 [ 458.286056] vfs_mkdir+0x3ca/0x610 [ 458.290208] SyS_mkdir+0x1b7/0x200 [ 458.293748] ? SyS_mkdirat+0x210/0x210 [ 458.297632] ? do_syscall_64+0x53/0x640 [ 458.301601] ? SyS_mkdirat+0x210/0x210 [ 458.305487] do_syscall_64+0x1e8/0x640 [ 458.309367] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 458.314212] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 458.319397] RIP: 0033:0x45b867 [ 458.322577] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 458.330277] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 458.337539] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 458.344916] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a 21:57:06 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x1) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:06 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000140)={&(0x7f00000001c0)="3009c4925dee5d8eec9e9daba33a8b5947f41fa724c9f72e55d57dba8cf18763b8248bb7cd8c32b1b21a9cd25c0f532982bff279de768910cfa12403102210f074e16670f1120faa51497be245c408c1fa33ed656e06d519efc95910f5e8cab3076ab1b26781d27104cedf970d4a1500f291bb5dff9e6eb13fbbb7e40c8b9eef88ccaef056422402a11c9b620050fdd8f50d2f97b761e1117e8d2f9b58d1", &(0x7f00000000c0)=""/43, &(0x7f0000000280)="0584f662a2fb173468ea5973848a5172850ac8e601f1a1d84dd1fa52e3b13ccf154f9dcb18e551aa6f52c9b3b9284586ec4ed4db29d995455c1ef473f0b6490243", &(0x7f0000000380)="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", 0x2, r3}, 0x38) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r0, r4, 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r6, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r6, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r6, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r6, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r6, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) r7 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r7) r8 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r8, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r9}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r9, 0x9}, &(0x7f00000001c0)=0x18) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r6, 0x84, 0x17, &(0x7f0000001380)={r9, 0x7, 0x3b, "0853e3d937118f59a092fa7e82ed2a91afbf15dad37f39edbc0cd8f3a99212a1e850a11f9dbc7fa955665693a80f0aeb7bbe7b6d30eae90579f189"}, 0x43) write$9p(r5, 0x0, 0x0) ioctl$VIDIOC_G_SELECTION(r5, 0xc040565e, &(0x7f0000000040)={0x5, 0x0, 0x1, {0x400, 0x0, 0x2b, 0x3}}) [ 458.352182] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 458.359454] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000028 21:57:08 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:08 executing program 5 (fault-call:0 fault-nth:41): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:08 executing program 2: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) write$P9_RFLUSH(0xffffffffffffffff, &(0x7f00000001c0)={0x7, 0x6d, 0x1}, 0x7) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') accept$netrom(0xffffffffffffffff, &(0x7f0000000200)={{}, [@remote, @null, @bcast, @bcast, @default, @rose, @remote, @bcast]}, &(0x7f0000000280)=0x48) r2 = dup3(r0, r1, 0x0) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) write$9p(r5, 0x0, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000140)={0x0, 0x80}, &(0x7f00000002c0)=0x8) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r5, 0x84, 0x13, &(0x7f0000000300)={r6}, &(0x7f0000000340)=0x8) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r9 = dup3(r7, r8, 0x0) write$9p(r9, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_SETCRTC(r9, 0xc06864a2, &(0x7f0000000540)={&(0x7f0000000500)=[0x5, 0x0, 0x120000], 0x3, 0x9de, 0x1, 0x401, 0xcb, 0x3, 0x4, {0x1000, 0x400, 0xa02, 0x2, 0x0, 0xe000, 0x2, 0x3, 0x4, 0xfffb, 0x1000, 0x1ff, 0x8, 0x1f, "d9260a829a2bc922727c328b390da430f967960ebc58fae6ea4b0f90de566fdd"}}) write$9p(r2, 0x0, 0x0) sendmsg$OSF_MSG_REMOVE(r2, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000001340)=ANY=[@ANYBLOB="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"], 0xe0c}, 0x1, 0x0, 0x0, 0x24048004}, 0x1) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000380)="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", 0x154, 0x10000}], 0x200000, 0x0) 21:57:08 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) write$selinux_create(r0, &(0x7f0000000180)=@objname={'system_u:object_r:sshd_exec_t:s0', 0x20, '/usr/sbin/ntpd', 0x20, 0x9, 0x20, './file0\x00'}, 0x4d) 21:57:08 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f13000)={0xa, 0x4e22}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="580000001500add427323b472545b4560a117fffffff81004e22000d00ff0028925aa80020007b00090006000efffeffe809000000ff0000f03ac7100003ffffffffffffffefffffffe7ee00000000000000000200000000", 0x58}], 0x1) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:08 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 460.511404] FAULT_INJECTION: forcing a failure. [ 460.511404] name failslab, interval 1, probability 0, space 0, times 0 [ 460.533663] BTRFS: device label ÊÁåŽåŠ=A-Õ ÓQ¸&6QsÆE}òz0–ˆ[å"šqÏ~ɦžÛA devid 983315576559808301 transid 8306579969262538893 /dev/loop2 [ 460.544974] CPU: 1 PID: 20423 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 460.554090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 460.563588] Call Trace: [ 460.566185] dump_stack+0x142/0x197 [ 460.569830] should_fail.cold+0x10f/0x159 [ 460.574099] should_failslab+0xdb/0x130 [ 460.578089] kmem_cache_alloc+0x2d7/0x780 [ 460.582240] ? __debug_object_init+0x171/0x8e0 [ 460.586831] ? ext4_alloc_inode+0x1d/0x610 [ 460.591082] selinux_inode_alloc_security+0xb6/0x2a0 [ 460.596187] security_inode_alloc+0x94/0xd0 [ 460.600511] inode_init_always+0x552/0xaf0 [ 460.604739] alloc_inode+0x81/0x180 [ 460.608357] new_inode_pseudo+0x19/0xf0 [ 460.612334] new_inode+0x1f/0x40 [ 460.615705] __ext4_new_inode+0x32c/0x4860 [ 460.620072] ? avc_has_perm+0x2df/0x4b0 [ 460.624145] ? ext4_free_inode+0x1210/0x1210 [ 460.628543] ? dquot_get_next_dqblk+0x160/0x160 [ 460.633213] ext4_mkdir+0x331/0xc20 [ 460.636853] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 460.641955] ? security_inode_mkdir+0xd0/0x110 [ 460.646530] vfs_mkdir+0x3ca/0x610 [ 460.650070] SyS_mkdir+0x1b7/0x200 [ 460.653605] ? SyS_mkdirat+0x210/0x210 [ 460.657487] ? do_syscall_64+0x53/0x640 [ 460.661472] ? SyS_mkdirat+0x210/0x210 [ 460.665483] do_syscall_64+0x1e8/0x640 [ 460.669376] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 460.674220] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 460.679510] RIP: 0033:0x45b867 [ 460.682683] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 460.690385] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 460.697719] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 460.704980] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 460.712254] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 460.719516] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000029 21:57:08 executing program 5 (fault-call:0 fault-nth:42): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2400, 0x108) r1 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040)={0xffffffffffffffff}, 0xc) ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000080)=r1) [ 460.768767] print_req_error: I/O error, dev loop4, sector 128 [ 460.777833] BTRFS error (device loop2): unsupported checksum algorithm 25459 [ 460.794293] BTRFS error (device loop2): superblock checksum mismatch 21:57:08 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) socketpair(0x4, 0x5, 0x6, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$sock(r0, &(0x7f0000000780)={&(0x7f0000000180)=@isdn={0x22, 0x8, 0xa6, 0x4, 0xfe}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000300)="fce6762810030dc5bd1ae2b7999a4917249c81c76ed11b569fa7ed93b80f9bf8c6e909f2c4c9331786699c4ed0bdafca654010c280aa89a29a736070dd003e7f4add27c52f2f731c0e46cc7033a0934ef0ed757881cee77513ce2575c4b54552e5fc2800a5bdac1643bead28ee1ecba2eb256ca8932247cc7e61c2a0f4054f8bd72f70cebcff0c3eaa6045684a6581e8ed5ca068db67d33c5f868d1a2032a3597abdc218fdd8608e3491c16e6b", 0xad}, {&(0x7f00000003c0)="02dba0402f62e453c98c50931ee9f90f0f826f21fdc2b05b62b7e05e4689ba9e445c5ca53d6daaf5542bd1c82ed32cf7b559412758e0c18a79355263b8af2b9461ad13ee38d92d8e3b811b6cb2c128f4dd4530abababf7239a51bda978a59a5271efaf910acf2d2a1dd21a7dc6cdbe9e23e6314aa62af5849eac501c861261f0eca14b7e6b694d17551bb272a3ce3e7ff16cf7f754d6b4b8f828c928e84038ef61163adfa3086662237fe730533b1c48e372e5", 0xb3}, {&(0x7f0000000200)="c2f5e1", 0x3}, {&(0x7f00000004c0)="86b760674456ed33a5632ae934e63cfb5a2bb132be8311cd86f3d07a392a9cee9e7203c8aa2dc1fa9194da5a85426b97a30eebcb3cdcd774c1a221ce57cc841eeda6974def10fe1a8c6658d6dc3a5711159f8b50eb5d1b559d95cc80f434a920a9ee208128a663f65578ebc8e6a0211b6c3aa5b04d51c2751e3c129f9d68bc24850b3d7a4e117fbf4e59461a8e2ff3ff8b6acc6e5aee95793835ee576e1f4ff005ac22bf2337c97d24048b44472775f6144c51ceee89c99a76644ab4ab30dd3e0aa739344ab9fac79d9bf7f6f706b375fe71ee091a35a19a6f8ec53a254fbe1d186b4ee07cfe", 0xe6}, {&(0x7f00000005c0)="10729632d3ceaf1137ed35d6d73e4be3b0cd237d053780ca9d5240e4653a5429dc5a619dce8a16f622af26504d49b1fdd97bb053d0350db80af61673ce46917710956aed999b7aeeddf14ea5d2f2f02905b1e8a152b39e38365ddbb9b1555842a917359c7d4149d333f97d491810a4d8387c9c958a62462fe14277765706ae78e4614ae2b6d59d26f87af8b1997520f562b796282c096c80ee23920ceeba9dddf27872252b82dd562865b83810297d97afe77bac509d5ed94d1dce49fa2fc5dc1d89b8e4bfb36ed9ffbc31429359c63fd460edfb2785bc80ceea962a4a2e0708215a9fe07cf80b12369fef8d8be153a75f25702c496a6b", 0xf7}, {&(0x7f0000000240)="50b72d23d9", 0x5}], 0x6, &(0x7f0000000740)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x8}}], 0x30}, 0x48004) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000800)=ANY=[@ANYBLOB="485f9a747ea5730f2ac02425729406b4d0bc3cd993c4ac7a6cba5f6ee4627c40fec0d03eaa497084ee7655c8362bb6e4f085c4b50461b3fe659d092c6550cc5aa99d7eec8de05c5dfa81e5d8a68aaf3e2b9d468e"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f00000007c0)=ANY=[@ANYBLOB="eb102857129cc89cccb51a4bf0d1cc0643d8dcf789e7836ac69b672bc88e92b7c28368d468888206d9547e414e9f08165c00"/59], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 460.840027] FAULT_INJECTION: forcing a failure. [ 460.840027] name failslab, interval 1, probability 0, space 0, times 0 [ 460.866056] BTRFS error (device loop2): open_ctree failed [ 460.875362] CPU: 0 PID: 20441 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 460.883270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 460.892628] Call Trace: [ 460.895225] dump_stack+0x142/0x197 [ 460.898864] should_fail.cold+0x10f/0x159 21:57:09 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) clock_getres(0x4, &(0x7f0000000040)) getsockopt$inet_mreqsrc(r2, 0x0, 0x28, &(0x7f00000000c0)={@initdev, @multicast2, @dev}, &(0x7f0000000080)=0xc) [ 460.903018] should_failslab+0xdb/0x130 [ 460.907002] __kmalloc+0x2f0/0x7a0 [ 460.910549] ? ext4_find_extent+0x709/0x960 [ 460.914875] ext4_find_extent+0x709/0x960 [ 460.919033] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 460.924592] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 460.929110] ? save_trace+0x290/0x290 [ 460.932928] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 460.938035] ? __lock_is_held+0xb6/0x140 [ 460.942115] ? lock_acquire+0x16f/0x430 [ 460.946095] ? ext4_map_blocks+0x402/0x17c0 [ 460.950418] ext4_map_blocks+0xd3c/0x17c0 [ 460.954607] ? __lock_is_held+0xb6/0x140 [ 460.958787] ? check_preemption_disabled+0x3c/0x250 [ 460.963807] ? ext4_issue_zeroout+0x160/0x160 [ 460.968317] ? __brelse+0x50/0x60 [ 460.971775] ext4_getblk+0xac/0x450 [ 460.975395] ? ext4_iomap_begin+0x8a0/0x8a0 [ 460.979706] ? ext4_free_inode+0x1210/0x1210 [ 460.984123] ext4_bread+0x6e/0x1a0 [ 460.987663] ? ext4_getblk+0x450/0x450 [ 460.991662] ext4_append+0x14b/0x360 [ 460.995372] ext4_mkdir+0x531/0xc20 [ 460.998995] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 461.003666] ? security_inode_mkdir+0xd0/0x110 [ 461.008239] vfs_mkdir+0x3ca/0x610 [ 461.011798] SyS_mkdir+0x1b7/0x200 [ 461.015437] ? SyS_mkdirat+0x210/0x210 [ 461.019316] ? do_syscall_64+0x53/0x640 [ 461.023278] ? SyS_mkdirat+0x210/0x210 [ 461.027159] do_syscall_64+0x1e8/0x640 [ 461.031037] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 461.036040] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 461.041328] RIP: 0033:0x45b867 [ 461.044514] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 461.052433] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 461.059848] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 461.067434] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 461.074695] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 461.081999] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000002a [ 461.099893] print_req_error: I/O error, dev loop2, sector 128 21:57:09 executing program 5 (fault-call:0 fault-nth:43): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 461.265348] BTRFS error (device loop2): unsupported checksum algorithm 25459 [ 461.277170] BTRFS error (device loop2): superblock checksum mismatch [ 461.298641] FAULT_INJECTION: forcing a failure. [ 461.298641] name failslab, interval 1, probability 0, space 0, times 0 [ 461.310999] CPU: 0 PID: 20465 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 461.318956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 461.328526] Call Trace: [ 461.331172] dump_stack+0x142/0x197 [ 461.334807] should_fail.cold+0x10f/0x159 [ 461.338954] should_failslab+0xdb/0x130 [ 461.343086] __kmalloc+0x2f0/0x7a0 [ 461.346650] ? check_preemption_disabled+0x3c/0x250 [ 461.351658] ? ext4_find_extent+0x709/0x960 [ 461.355980] ext4_find_extent+0x709/0x960 [ 461.360126] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 461.365601] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 461.370085] ? save_trace+0x290/0x290 [ 461.373894] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 461.378926] ? __lock_is_held+0xb6/0x140 [ 461.383137] ? lock_acquire+0x16f/0x430 [ 461.387208] ? ext4_map_blocks+0x829/0x17c0 [ 461.391531] ext4_map_blocks+0x881/0x17c0 [ 461.395688] ? ext4_issue_zeroout+0x160/0x160 [ 461.400181] ? __brelse+0x50/0x60 [ 461.403745] ext4_getblk+0xac/0x450 [ 461.407500] ? ext4_iomap_begin+0x8a0/0x8a0 [ 461.411816] ? ext4_free_inode+0x1210/0x1210 [ 461.416214] ext4_bread+0x6e/0x1a0 [ 461.419749] ? ext4_getblk+0x450/0x450 [ 461.423638] ext4_append+0x14b/0x360 [ 461.427341] ext4_mkdir+0x531/0xc20 [ 461.430997] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 461.435675] ? security_inode_mkdir+0xd0/0x110 [ 461.440267] vfs_mkdir+0x3ca/0x610 [ 461.443816] SyS_mkdir+0x1b7/0x200 [ 461.447345] ? SyS_mkdirat+0x210/0x210 [ 461.451335] ? do_syscall_64+0x53/0x640 [ 461.455439] ? SyS_mkdirat+0x210/0x210 [ 461.459321] do_syscall_64+0x1e8/0x640 [ 461.463209] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 461.468046] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 461.473233] RIP: 0033:0x45b867 [ 461.476434] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 461.484133] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 461.491588] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 461.498851] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 461.506113] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 21:57:09 executing program 5 (fault-call:0 fault-nth:44): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 461.513388] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000002b [ 461.570291] BTRFS error (device loop2): open_ctree failed [ 461.592847] FAULT_INJECTION: forcing a failure. [ 461.592847] name failslab, interval 1, probability 0, space 0, times 0 [ 461.604726] CPU: 0 PID: 20470 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 461.612615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 461.622085] Call Trace: [ 461.624681] dump_stack+0x142/0x197 [ 461.628355] should_fail.cold+0x10f/0x159 [ 461.632631] ? __es_tree_search.isra.0+0x15f/0x1c0 [ 461.637562] should_failslab+0xdb/0x130 [ 461.641529] kmem_cache_alloc+0x47/0x780 [ 461.645722] __es_insert_extent+0x26c/0xe60 [ 461.650057] ext4_es_insert_extent+0x1f0/0x590 [ 461.654810] ? check_preemption_disabled+0x3c/0x250 [ 461.659833] ? ext4_es_find_delayed_extent_range+0x960/0x960 [ 461.665734] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 461.671174] ? ext4_es_find_delayed_extent_range+0x31d/0x960 [ 461.676968] ext4_ext_put_gap_in_cache+0xcb/0x110 [ 461.681899] ? ext4_zeroout_es+0x170/0x170 [ 461.686127] ? ext4_find_extent+0x64c/0x960 [ 461.690446] ext4_ext_map_blocks+0x1d4b/0x4fa0 [ 461.695033] ? save_trace+0x290/0x290 [ 461.698834] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 461.703837] ? __lock_is_held+0xb6/0x140 [ 461.707891] ? lock_acquire+0x16f/0x430 [ 461.711855] ? ext4_map_blocks+0x402/0x17c0 [ 461.716177] ext4_map_blocks+0xd3c/0x17c0 [ 461.720314] ? __lock_is_held+0xb6/0x140 [ 461.724372] ? check_preemption_disabled+0x3c/0x250 [ 461.729396] ? ext4_issue_zeroout+0x160/0x160 [ 461.733882] ? __brelse+0x50/0x60 [ 461.737335] ext4_getblk+0xac/0x450 [ 461.740965] ? ext4_iomap_begin+0x8a0/0x8a0 [ 461.745402] ? ext4_free_inode+0x1210/0x1210 [ 461.749804] ext4_bread+0x6e/0x1a0 [ 461.753473] ? ext4_getblk+0x450/0x450 [ 461.757374] ext4_append+0x14b/0x360 [ 461.761078] ext4_mkdir+0x531/0xc20 [ 461.764703] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 461.769366] ? security_inode_mkdir+0xd0/0x110 [ 461.773956] vfs_mkdir+0x3ca/0x610 [ 461.777510] SyS_mkdir+0x1b7/0x200 [ 461.781050] ? SyS_mkdirat+0x210/0x210 [ 461.784954] ? do_syscall_64+0x53/0x640 [ 461.788926] ? SyS_mkdirat+0x210/0x210 [ 461.792830] do_syscall_64+0x1e8/0x640 [ 461.796702] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 461.801541] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 461.806842] RIP: 0033:0x45b867 [ 461.810055] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 461.818026] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 461.825308] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 461.832634] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 461.839931] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 461.847302] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000002c 21:57:11 executing program 2: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x101000, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000001c0)={0x15, {{0xa, 0x4e20, 0x7, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x4}}}, 0x88) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:11 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r3) r4 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000240)=ANY=[@ANYBLOB="1c1ad63f371b7b72658724346b66e5ff335540861312e25d28e24ac4da43ce852305133282bdc43731e3ae13370654e39de27a775a92479a8a1c77afee608c38d40a807f866036c7602a401f7a57fb690779b13a790e5b4800"/98, @ANYRES32=0x0], &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r5}, &(0x7f0000000040)=0x10) r7 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r7, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r7, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r7, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r7, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r7, &(0x7f00000055c0)={0x0, 0x0, 0x0, 0xfffffffffffffebb}, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r7, 0x84, 0x22, &(0x7f00000000c0)={0xff, 0x8208, 0x0, 0x9f06, r6}, 0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r5, 0x9}, &(0x7f00000001c0)=0x18) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000040)={r5, 0x4}, &(0x7f0000000080)=0x8) 21:57:11 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:11 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="f7079da17d174fb1ed000d4b30acee79b39f1f49f5d6f1985f3e4da75c0f62f58b200c31c11e01008463ef29cf1c38327b345de69193a77a78e8ef20dfad65c5861bd2d68ca587bd853022dd4d7b761558ffc183e98216612dd169363c43e08616208b245c442ad805e6ee6bbdabdac2fb626167d3baa85da22aa32c9546c7b2e5d9a0094da32c9563a688f332f2b6663cc8b61059eab05aec8b1de94a8f83b37681b8df3ec768f787cf42199c9c37b34d340ff89351017866f61862bd0c65b85e8e8c31fce2c33ca425573400000000"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:11 executing program 5 (fault-call:0 fault-nth:45): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:11 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 463.553404] FAULT_INJECTION: forcing a failure. [ 463.553404] name failslab, interval 1, probability 0, space 0, times 0 [ 463.577261] CPU: 1 PID: 20497 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 463.585332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 463.594689] Call Trace: [ 463.597313] dump_stack+0x142/0x197 [ 463.601094] should_fail.cold+0x10f/0x159 [ 463.605258] should_failslab+0xdb/0x130 [ 463.609448] __kmalloc+0x2f0/0x7a0 [ 463.612987] ? check_preemption_disabled+0x3c/0x250 [ 463.618006] ? ext4_find_extent+0x709/0x960 [ 463.622322] ext4_find_extent+0x709/0x960 [ 463.626628] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 463.632086] ext4_ext_map_blocks+0x1a3/0x4fa0 [ 463.636577] ? save_trace+0x290/0x290 [ 463.640379] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 463.645407] ? __lock_is_held+0xb6/0x140 [ 463.649491] ? lock_acquire+0x16f/0x430 [ 463.653477] ? ext4_map_blocks+0x829/0x17c0 [ 463.657863] ext4_map_blocks+0x881/0x17c0 [ 463.662084] ? ext4_issue_zeroout+0x160/0x160 [ 463.666579] ? __brelse+0x50/0x60 [ 463.670044] ext4_getblk+0xac/0x450 [ 463.673667] ? ext4_iomap_begin+0x8a0/0x8a0 [ 463.678197] ? ext4_free_inode+0x1210/0x1210 [ 463.682606] ext4_bread+0x6e/0x1a0 [ 463.686216] ? ext4_getblk+0x450/0x450 [ 463.690096] ext4_append+0x14b/0x360 [ 463.693826] ext4_mkdir+0x531/0xc20 [ 463.697441] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 463.702134] ? security_inode_mkdir+0xd0/0x110 [ 463.706715] vfs_mkdir+0x3ca/0x610 [ 463.710245] SyS_mkdir+0x1b7/0x200 [ 463.713770] ? SyS_mkdirat+0x210/0x210 [ 463.717642] ? do_syscall_64+0x53/0x640 [ 463.721650] ? SyS_mkdirat+0x210/0x210 [ 463.725524] do_syscall_64+0x1e8/0x640 [ 463.729393] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 463.734239] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 463.739415] RIP: 0033:0x45b867 [ 463.742587] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 21:57:11 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 463.750278] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 463.757640] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 463.764916] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 463.772170] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 463.788496] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000002d 21:57:11 executing program 5 (fault-call:0 fault-nth:46): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 463.878275] FAULT_INJECTION: forcing a failure. [ 463.878275] name failslab, interval 1, probability 0, space 0, times 0 [ 463.894815] CPU: 1 PID: 20516 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 463.902734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 463.912196] Call Trace: [ 463.914794] dump_stack+0x142/0x197 [ 463.918425] should_fail.cold+0x10f/0x159 [ 463.922887] should_failslab+0xdb/0x130 [ 463.926866] kmem_cache_alloc+0x2d7/0x780 [ 463.931012] ? rcu_read_lock_sched_held+0x110/0x130 [ 463.936022] ? __mark_inode_dirty+0x2b7/0x1040 [ 463.940677] ext4_mb_new_blocks+0x513/0x3b30 [ 463.945093] ? ext4_find_extent+0x709/0x960 [ 463.949440] ext4_ext_map_blocks+0x26cd/0x4fa0 [ 463.954060] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 463.959133] ? __lock_is_held+0xb6/0x140 [ 463.963202] ? lock_acquire+0x16f/0x430 [ 463.967261] ext4_map_blocks+0x881/0x17c0 [ 463.971478] ? ext4_issue_zeroout+0x160/0x160 [ 463.975966] ? __brelse+0x50/0x60 [ 463.979480] ext4_getblk+0xac/0x450 [ 463.983197] ? ext4_iomap_begin+0x8a0/0x8a0 [ 463.987588] ? ext4_free_inode+0x1210/0x1210 [ 463.992102] ext4_bread+0x6e/0x1a0 [ 463.995634] ? ext4_getblk+0x450/0x450 [ 463.999524] ext4_append+0x14b/0x360 [ 464.003257] ext4_mkdir+0x531/0xc20 [ 464.006892] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 464.011574] ? security_inode_mkdir+0xd0/0x110 [ 464.016161] vfs_mkdir+0x3ca/0x610 [ 464.019693] SyS_mkdir+0x1b7/0x200 [ 464.023273] ? SyS_mkdirat+0x210/0x210 [ 464.027217] ? do_syscall_64+0x53/0x640 [ 464.031189] ? SyS_mkdirat+0x210/0x210 [ 464.035074] do_syscall_64+0x1e8/0x640 [ 464.038954] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 464.043877] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 464.049064] RIP: 0033:0x45b867 [ 464.052241] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 464.059939] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 464.067198] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 21:57:12 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair(0x1, 0x0, 0xf8, &(0x7f0000000040)={0xffffffffffffffff}) r1 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r1) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r3, 0x9}, &(0x7f00000001c0)=0x18) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000001c0)={r3, @in={{0x2, 0x4e23, @local}}, 0xffffffff, 0x20, 0xfffff001, 0x0, 0xf5ae}, &(0x7f0000000080)=0x98) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r5, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r5, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r5, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r5, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r5, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f00000002c0)=0x1285, 0x4) r6 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r6) r7 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r6, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r8}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r8, 0x9}, &(0x7f00000001c0)=0x18) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000380)={r8, 0x800, 0x9d1, 0x0, 0x6, 0x1, 0x4, 0xffff, {0x0, @in={{0x2, 0x4e23}}, 0x7ff, 0x3, 0x0, 0xaf, 0x7}}, &(0x7f00000000c0)=0xb0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000440)={r4, 0x2, 0x4, 0x1, 0x7, 0x200, 0xdba3, 0x22, {r9, @in={{0x2, 0x2, @local}}, 0x7, 0xffffffc0, 0x8, 0x1f, 0x9}}, &(0x7f0000000140)=0xb0) eventfd2(0x1, 0x81800) [ 464.074598] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 464.081861] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 464.089129] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000002e 21:57:12 executing program 5 (fault-call:0 fault-nth:47): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 464.222058] FAULT_INJECTION: forcing a failure. [ 464.222058] name failslab, interval 1, probability 0, space 0, times 0 [ 464.233731] CPU: 0 PID: 20530 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 464.241774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.251266] Call Trace: [ 464.253863] dump_stack+0x142/0x197 [ 464.257510] should_fail.cold+0x10f/0x159 [ 464.261820] ? __es_tree_search.isra.0+0x15f/0x1c0 [ 464.267205] should_failslab+0xdb/0x130 21:57:12 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x100048, 0x0) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) write$P9_RREADDIR(r0, &(0x7f00000001c0)={0x2a, 0x29, 0x1, {0x7, [{{0x10, 0x0, 0x8}, 0x1, 0x0, 0x7, './file0'}]}}, 0x2a) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x101000, 0x0) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r1, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000040)=""/87, &(0x7f00000000c0)=0x57) [ 464.271191] kmem_cache_alloc+0x47/0x780 [ 464.275285] ? ext4_es_can_be_merged+0x16e/0x230 [ 464.280072] __es_insert_extent+0x26c/0xe60 [ 464.284436] ext4_es_insert_extent+0x1f0/0x590 [ 464.289033] ? ext4_es_find_delayed_extent_range+0x960/0x960 [ 464.294859] ext4_map_blocks+0xab1/0x17c0 [ 464.299028] ? ext4_issue_zeroout+0x160/0x160 [ 464.303531] ? __brelse+0x50/0x60 [ 464.307002] ext4_getblk+0xac/0x450 [ 464.310638] ? ext4_iomap_begin+0x8a0/0x8a0 [ 464.314969] ? ext4_free_inode+0x1210/0x1210 [ 464.319388] ext4_bread+0x6e/0x1a0 [ 464.322945] ? ext4_getblk+0x450/0x450 [ 464.326847] ext4_append+0x14b/0x360 [ 464.330576] ext4_mkdir+0x531/0xc20 [ 464.334217] ? ext4_init_dot_dotdot+0x4c0/0x4c0 [ 464.338909] ? security_inode_mkdir+0xd0/0x110 [ 464.343486] vfs_mkdir+0x3ca/0x610 [ 464.347036] SyS_mkdir+0x1b7/0x200 [ 464.350568] ? SyS_mkdirat+0x210/0x210 [ 464.354506] ? do_syscall_64+0x53/0x640 [ 464.358474] ? SyS_mkdirat+0x210/0x210 [ 464.362353] do_syscall_64+0x1e8/0x640 [ 464.366241] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 464.371273] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 464.376458] RIP: 0033:0x45b867 [ 464.379640] RSP: 002b:00007f97db781a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 464.387410] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045b867 [ 464.394672] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000000 [ 464.401951] RBP: 000000000076bf20 R08: 0000000000000000 R09: 000000000000000a [ 464.409274] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 464.416533] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000002f [ 464.436678] IPVS: length: 87 != 24 21:57:12 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="f37f34c22b0754d8f2327f4dc68011f6c2c5739789c4e01ab88b27a28b9d3fbb8ce623897af7a67d08e9fd2a8be2df946926033d7d2342f3c0e2596d12837a981ad94bd37b0bc0da334217bdb569a47c262ea3ba19675f7e3da5c317f628010704a60313dee8c344774b11117585aca1e641a26a2d89138766195bf543aada60e142"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000000300)) r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ocfs2_control\x00', 0x2000, 0x0) ioctl$SOUND_MIXER_READ_CAPS(r0, 0x80044dfc, &(0x7f0000000240)) 21:57:12 executing program 5 (fault-call:0 fault-nth:48): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 464.512633] IPVS: length: 87 != 24 21:57:12 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x6}], 0x0, 0x0) [ 464.628299] FAULT_INJECTION: forcing a failure. [ 464.628299] name failslab, interval 1, probability 0, space 0, times 0 [ 464.640883] CPU: 0 PID: 20563 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 464.648876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.658235] Call Trace: [ 464.660847] dump_stack+0x142/0x197 [ 464.664497] should_fail.cold+0x10f/0x159 [ 464.668775] should_failslab+0xdb/0x130 [ 464.672821] __kmalloc_track_caller+0x2ec/0x790 [ 464.677493] ? strndup_user+0x62/0xf0 [ 464.681284] memdup_user+0x26/0xa0 [ 464.684816] strndup_user+0x62/0xf0 [ 464.688528] SyS_mount+0x3c/0x120 [ 464.691975] ? copy_mnt_ns+0x8c0/0x8c0 [ 464.695986] do_syscall_64+0x1e8/0x640 [ 464.699875] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 464.704723] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 464.709916] RIP: 0033:0x45ee9a [ 464.713098] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 464.720800] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 464.728120] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 464.735393] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 464.742657] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 464.749926] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000030 21:57:14 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:14 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvram\x00', 0x54b01, 0x0) ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r3, 0xc0405519, &(0x7f00000000c0)={0x6, 0x5, 0x80000000, 0x3, 'syz1\x00', 0x6}) 21:57:14 executing program 5 (fault-call:0 fault-nth:49): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:14 executing program 4: openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/commit_pending_bools\x00', 0x1, 0x0) connect$pptp(r0, &(0x7f00000000c0)={0x18, 0x2, {0x1, @dev={0xac, 0x14, 0x14, 0x3f}}}, 0x1e) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000002380)={0x4, 0x5, 0x4, 0x20000000, 0x1, {0x77359400}, {0x2, 0x0, 0x3f, 0x9, 0x1, 0x7f, "dc275ca9"}, 0x20, 0x2, @offset=0x3, 0x2, 0x0, 0xffffffffffffffff}) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, 0x0, 0x0) accept4$packet(r2, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000700)=0x14, 0x80000) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0x30}, r3}, 0x14) bind$can_raw(r1, &(0x7f0000002400)={0x1d, r3}, 0x10) 21:57:14 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000180)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=@del={0xf0, 0x11, 0x2, 0x70bd28, 0x25dfdbfc, {{'ecb(aes)\x00'}, [], [], 0x0, 0x4000}, [{0x8, 0x1, 0x9}, {0x8, 0x1, 0x100}]}, 0xf0}, 0x1, 0x0, 0x0, 0x40004}, 0xb0435a13617bb41e) 21:57:14 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 466.603138] FAULT_INJECTION: forcing a failure. [ 466.603138] name failslab, interval 1, probability 0, space 0, times 0 [ 466.618922] CPU: 1 PID: 20588 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 466.626852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 466.636395] Call Trace: [ 466.639002] dump_stack+0x142/0x197 [ 466.642655] should_fail.cold+0x10f/0x159 [ 466.646825] should_failslab+0xdb/0x130 [ 466.650819] kmem_cache_alloc_trace+0x2e9/0x790 [ 466.655490] ? kasan_check_write+0x14/0x20 [ 466.659723] ? _copy_from_user+0x99/0x110 [ 466.663978] copy_mount_options+0x5c/0x2f0 [ 466.668265] SyS_mount+0x87/0x120 [ 466.671702] ? copy_mnt_ns+0x8c0/0x8c0 [ 466.675666] do_syscall_64+0x1e8/0x640 [ 466.679538] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 466.684370] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 466.689553] RIP: 0033:0x45ee9a [ 466.692730] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 466.700443] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 466.707699] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 466.714964] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 466.722221] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 466.729481] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000031 21:57:14 executing program 5 (fault-call:0 fault-nth:50): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:14 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) readlink(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000200)=""/7, 0x7) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f00000001c0)=@filename='./file0/file0\x00', &(0x7f0000187ff8)='.', 0x0, 0x40000, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 466.818564] FAULT_INJECTION: forcing a failure. [ 466.818564] name failslab, interval 1, probability 0, space 0, times 0 [ 466.832305] CPU: 0 PID: 20610 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 466.840323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 466.849705] Call Trace: [ 466.852298] dump_stack+0x142/0x197 [ 466.856057] should_fail.cold+0x10f/0x159 [ 466.860225] should_failslab+0xdb/0x130 [ 466.864212] kmem_cache_alloc_trace+0x2e9/0x790 [ 466.869014] ? kasan_check_write+0x14/0x20 [ 466.873263] ? _copy_from_user+0x99/0x110 [ 466.877426] copy_mount_options+0x5c/0x2f0 [ 466.881752] SyS_mount+0x87/0x120 [ 466.885196] ? copy_mnt_ns+0x8c0/0x8c0 [ 466.889074] do_syscall_64+0x1e8/0x640 [ 466.892967] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 466.897821] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 466.903017] RIP: 0033:0x45ee9a [ 466.906196] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 466.914012] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 466.921284] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 466.928558] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 466.935832] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 466.943100] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000032 21:57:15 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x100) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) write$9p(r5, 0x0, 0x0) ioctl$VIDIOC_DQEVENT(r5, 0x80885659, &(0x7f00000001c0)={0x0, @src_change}) 21:57:15 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000080)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x8001}], 0x1022000, 0x0) getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="7365812e3e00006504"], &(0x7f00000001c0)=""/28, 0x1c) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$USBDEVFS_FREE_STREAMS(r2, 0x8008551d, &(0x7f0000000200)={0xb69e, 0x13, [{0x5, 0x1}, {0xb, 0x1}, {0x6, 0x1}, {0x7}, {0x2, 0x1}, {0x9, 0x1}, {0xe}, {0x4}, {}, {0xf, 0x1}, {0xd}, {0xf}, {0x3, 0x1}, {0xd}, {0xd}, {0xb, 0x1}, {}, {0x4}, {0x6, 0x1}]}) 21:57:15 executing program 5 (fault-call:0 fault-nth:51): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 467.110468] FAULT_INJECTION: forcing a failure. [ 467.110468] name failslab, interval 1, probability 0, space 0, times 0 [ 467.123440] CPU: 1 PID: 20633 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 467.131379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 467.140748] Call Trace: [ 467.143400] dump_stack+0x142/0x197 [ 467.147046] should_fail.cold+0x10f/0x159 [ 467.151199] should_failslab+0xdb/0x130 [ 467.155166] kmem_cache_alloc+0x2d7/0x780 [ 467.159315] ? fs_reclaim_acquire+0x20/0x20 [ 467.163739] ? find_held_lock+0x35/0x130 [ 467.167822] getname_flags+0xcb/0x580 [ 467.171727] user_path_at_empty+0x2f/0x50 [ 467.175865] do_mount+0x12b/0x27d0 [ 467.179448] ? copy_mount_options+0x5c/0x2f0 [ 467.183849] ? rcu_read_lock_sched_held+0x110/0x130 [ 467.188868] ? copy_mount_string+0x40/0x40 [ 467.193124] ? _copy_from_user+0x99/0x110 [ 467.197284] ? copy_mount_options+0x1fe/0x2f0 [ 467.201786] SyS_mount+0xab/0x120 [ 467.205406] ? copy_mnt_ns+0x8c0/0x8c0 [ 467.209291] do_syscall_64+0x1e8/0x640 [ 467.213179] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 467.218126] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 467.223317] RIP: 0033:0x45ee9a [ 467.226646] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 467.234520] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 467.241875] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 467.249153] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 467.256707] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 467.263971] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000033 21:57:15 executing program 5 (fault-call:0 fault-nth:52): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 467.365973] FAULT_INJECTION: forcing a failure. [ 467.365973] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 467.377846] CPU: 1 PID: 20647 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 467.385848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 467.395218] Call Trace: [ 467.397827] dump_stack+0x142/0x197 [ 467.401478] should_fail.cold+0x10f/0x159 [ 467.405645] __alloc_pages_nodemask+0x1d6/0x7a0 [ 467.410329] ? fs_reclaim_acquire+0x20/0x20 [ 467.414668] ? __alloc_pages_slowpath+0x2930/0x2930 [ 467.419709] cache_grow_begin+0x80/0x400 [ 467.423901] kmem_cache_alloc+0x6a6/0x780 [ 467.428063] ? fs_reclaim_acquire+0x20/0x20 [ 467.432396] getname_flags+0xcb/0x580 [ 467.436191] user_path_at_empty+0x2f/0x50 [ 467.440338] do_mount+0x12b/0x27d0 [ 467.443985] ? copy_mount_options+0x5c/0x2f0 [ 467.448389] ? rcu_read_lock_sched_held+0x110/0x130 [ 467.453464] ? copy_mount_string+0x40/0x40 [ 467.457786] ? _copy_from_user+0x99/0x110 [ 467.462004] ? copy_mount_options+0x1fe/0x2f0 [ 467.466541] SyS_mount+0xab/0x120 [ 467.470005] ? copy_mnt_ns+0x8c0/0x8c0 [ 467.473983] do_syscall_64+0x1e8/0x640 [ 467.478085] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 467.482929] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 467.488119] RIP: 0033:0x45ee9a [ 467.491302] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 467.499008] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 467.506272] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 467.513545] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 467.520807] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 467.528241] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000034 [ 468.321183] NOHZ: local_softirq_pending 08 21:57:17 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:17 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x10000, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) setsockopt$inet_udp_int(r4, 0x11, 0xa, &(0x7f00000056c0), 0x4) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r1, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) pipe(&(0x7f00000052c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_PCM_IOCTL_DRAIN(r5, 0x4144, 0x0) recvmmsg(r1, &(0x7f00000054c0)=[{{&(0x7f00000001c0)=@un=@abs, 0x80, &(0x7f0000000140)=[{&(0x7f0000000240)=""/148, 0x94}], 0x1, &(0x7f0000000380)=""/10, 0xa}, 0x8}, {{&(0x7f00000003c0)=@l2tp6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000440)=""/116, 0x74}, {&(0x7f00000004c0)=""/141, 0x8d}, {&(0x7f0000000580)=""/79, 0x4f}], 0x3}, 0xffffff0c}, {{0x0, 0x0, &(0x7f00000018c0)=[{&(0x7f0000000640)=""/231, 0xe7}, {&(0x7f0000000740)=""/76, 0x4c}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/245, 0xf5}], 0x4, &(0x7f0000001900)=""/146, 0x92}, 0xff}, {{&(0x7f00000019c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}}}, 0x80, &(0x7f0000001c00)=[{&(0x7f0000001a40)=""/140, 0x8c}, {&(0x7f0000001b00)=""/227, 0xe3}], 0x2, &(0x7f0000001c40)=""/202, 0xca}, 0x445}, {{&(0x7f0000001d40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000003e40)=[{&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/4096, 0x1000}, {&(0x7f0000003dc0)=""/110, 0x6e}], 0x3, &(0x7f0000003e80)=""/152, 0x98}, 0x6}, {{0x0, 0x0, &(0x7f0000005140)=[{&(0x7f0000003f40)=""/174, 0xae}, {&(0x7f0000004000)=""/28, 0x1c}, {&(0x7f0000004040)=""/98, 0x62}, {&(0x7f00000040c0)=""/59, 0x3b}, {&(0x7f0000004100)=""/4096, 0x1000}, {&(0x7f0000005100)=""/25, 0x19}], 0x6, &(0x7f00000051c0)=""/38, 0x26}, 0x80}, {{&(0x7f0000005200)=@un=@abs, 0x80, &(0x7f0000005440)=[{&(0x7f0000005280)=""/50, 0x32}, {&(0x7f00000052c0)}, {&(0x7f0000005300)=""/68, 0x44}, {&(0x7f0000005380)=""/126, 0x7e}, {&(0x7f0000005400)=""/46, 0x2e}], 0x5}, 0x3f}], 0x7, 0x10000, &(0x7f0000005680)={0x77359400}) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@rand_addr="4699783e3a4733d2b5cea74dd4ef8747", 0x24000, 0x0, 0x1, 0x0, 0x91, 0x4}, &(0x7f00000000c0)=0x20) 21:57:17 executing program 5 (fault-call:0 fault-nth:53): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:17 executing program 4: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) sendmsg$NFT_MSG_GETRULE(r2, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000980)={0x1d4, 0x7, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x33}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFTA_RULE_EXPRESSIONS={0x190, 0x4, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, [@dup_ipv6={{0x8, 0x1, 'dup\x00'}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x17}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xa}]}}, @match={{0xa, 0x1, 'match\x00'}, @void}, @connlimit={{0xe, 0x1, 'connlimit\x00'}, @void}, @notrack={{0xc, 0x1, 'notrack\x00'}, @void}]}, {0x20, 0x1, 0x0, 0x1, [@osf={{0x8, 0x1, 'osf\x00'}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}]}, {0x68, 0x1, 0x0, 0x1, [@dup={{0x8, 0x1, 'dup\x00'}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x2}]}}, @dynset={{0xb, 0x1, 'dynset\x00'}, @void}, @limit={{0xa, 0x1, 'limit\x00'}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0xfff}]}}, @dynset={{0xb, 0x1, 'dynset\x00'}, @void}, @immediate={{0xe, 0x1, 'immediate\x00'}, @void}, @nat={{0x8, 0x1, 'nat\x00'}, @void}]}, {0x74, 0x1, 0x0, 0x1, [@dup_ipv6={{0x0, 0x1, 'dup\x00'}, @val={0x0, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x0, 0x1, 0x1, 0x0, 0x12}, @NFTA_DUP_SREG_ADDR={0x0, 0x1, 0x1, 0x0, 0xe}]}}, @flow_offload={{0x11, 0x1, 'flow_offload\x00'}, @void}, @byteorder={{0xe, 0x1, 'byteorder\x00'}, @void}, @connlimit={{0x0, 0x1, 'connlimit\x00'}, @val={0x0, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS, @NFTA_CONNLIMIT_FLAGS, @NFTA_CONNLIMIT_FLAGS={0x0, 0x2, 0x1, 0x0, 0x1}]}}, @nat={{0x8, 0x1, 'nat\x00'}, @void}, @osf={{0x8, 0x1, 'osf\x00'}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_TTL={0x5, 0x2, 0x4}]}}, @counter={{0xc, 0x1, 'counter\x00'}, @void}, @dup={{0x8, 0x1, 'dup\x00'}, @void}]}, {0x48, 0x1, 0x0, 0x1, [@quota={{0xa, 0x1, 'quota\x00'}, @void}, @dup_ipv4={{0x8, 0x1, 'dup\x00'}, @val={0x0, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x0, 0x1, 0x1, 0x0, 0x11}]}}, @numgen={{0xb, 0x1, 'numgen\x00'}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NG_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_NG_OFFSET={0x45, 0x4, 0x1, 0x0, 0x6}, @NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x8cb4}]}}]}]}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x20004088}, 0x800) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:17 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000300)={0x0, 0x0}) r1 = mq_open(&(0x7f0000000380)='#]eth1em1{[ppp0\x00', 0x800, 0x40, &(0x7f00000003c0)={0x9, 0x52f, 0x7ff, 0x6}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) kcmp(r0, 0xffffffffffffffff, 0x0, r1, r2) r3 = syz_open_dev$media(&(0x7f0000000200)='/dev/media#\x00', 0x4, 0x441) ioctl$PPPIOCSFLAGS1(r3, 0x40047459, &(0x7f0000000240)=0x4610004) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f00000004c0)=ANY=[@ANYBLOB="6c5d79f21ae97367025f2becfda2af6b6f46f804c3a25fad841949e6c036b9c0912d65efb253a5aeaeb68fb937188da52af6e8afac4d6322ccc3292e9d9fa92eddc57a97504e17285622f8dd336f4c50c5f5b24a2a6a4181d4e7ad5ad22f2e638ea350678ab992269aa3303eae49ef3ed1744a701da32a8ea2b300f7fd684dcf44443417"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000180)='.', 0x0, 0x5010, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x301000, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:17 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 469.627447] FAULT_INJECTION: forcing a failure. [ 469.627447] name failslab, interval 1, probability 0, space 0, times 0 [ 469.657032] CPU: 0 PID: 20670 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 469.665045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 469.674523] Call Trace: [ 469.677254] dump_stack+0x142/0x197 [ 469.680906] should_fail.cold+0x10f/0x159 [ 469.685190] should_failslab+0xdb/0x130 [ 469.689186] kmem_cache_alloc+0x2d7/0x780 [ 469.693451] ? lock_downgrade+0x740/0x740 [ 469.697613] alloc_vfsmnt+0x28/0x7d0 [ 469.701337] vfs_kern_mount.part.0+0x2a/0x3d0 [ 469.705841] do_mount+0x417/0x27d0 [ 469.709400] ? copy_mount_options+0x5c/0x2f0 [ 469.713806] ? rcu_read_lock_sched_held+0x110/0x130 [ 469.718817] ? copy_mount_string+0x40/0x40 [ 469.723076] ? copy_mount_options+0x1fe/0x2f0 [ 469.727753] SyS_mount+0xab/0x120 [ 469.731218] ? copy_mnt_ns+0x8c0/0x8c0 [ 469.735169] do_syscall_64+0x1e8/0x640 [ 469.739066] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 469.743922] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 469.749278] RIP: 0033:0x45ee9a [ 469.752509] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 469.760240] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 469.767508] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 469.774807] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 469.782168] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 469.789494] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000035 21:57:17 executing program 3: mkdir(&(0x7f0000000040)='./file0/file0\x00', 0xc2) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ubi_ctrl\x00', 0x401, 0x0) fanotify_mark(r0, 0xb1, 0x48000031, r1, &(0x7f00000001c0)='./file0\x00') 21:57:17 executing program 5 (fault-call:0 fault-nth:54): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 469.897378] FAULT_INJECTION: forcing a failure. [ 469.897378] name failslab, interval 1, probability 0, space 0, times 0 [ 469.909679] CPU: 1 PID: 20693 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 469.917864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 469.927325] Call Trace: [ 469.930002] dump_stack+0x142/0x197 [ 469.933654] should_fail.cold+0x10f/0x159 [ 469.938032] should_failslab+0xdb/0x130 [ 469.942000] kmem_cache_alloc+0x2d7/0x780 [ 469.946281] ? cache_grow_end.part.0+0x92/0x160 [ 469.950947] getname_flags+0xcb/0x580 [ 469.954739] ? lock_downgrade+0x740/0x740 [ 469.958883] user_path_at_empty+0x2f/0x50 [ 469.963026] do_mount+0x12b/0x27d0 [ 469.966558] ? copy_mount_options+0x5c/0x2f0 [ 469.970957] ? rcu_read_lock_sched_held+0x110/0x130 [ 469.975976] ? copy_mount_string+0x40/0x40 [ 469.980233] ? copy_mount_options+0x1fe/0x2f0 [ 469.984720] SyS_mount+0xab/0x120 [ 469.988168] ? copy_mnt_ns+0x8c0/0x8c0 [ 469.992068] do_syscall_64+0x1e8/0x640 [ 469.995951] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 470.000944] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 470.006133] RIP: 0033:0x45ee9a [ 470.009355] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 470.017052] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 470.024415] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 470.031677] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 470.038936] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 470.046202] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000036 21:57:18 executing program 5 (fault-call:0 fault-nth:55): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$FIBMAP(r2, 0x1, &(0x7f0000000040)=0x7) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:18 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x604001) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) utimensat(r0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={{r1, r2/1000+30000}, {0x0, 0x2710}}, 0x100) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 470.193520] FAULT_INJECTION: forcing a failure. [ 470.193520] name failslab, interval 1, probability 0, space 0, times 0 [ 470.208106] CPU: 0 PID: 20707 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 470.216028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 470.225485] Call Trace: [ 470.228070] dump_stack+0x142/0x197 [ 470.231705] should_fail.cold+0x10f/0x159 [ 470.235906] should_failslab+0xdb/0x130 [ 470.239871] __kmalloc_track_caller+0x2ec/0x790 [ 470.244530] ? unwind_get_return_address+0x61/0xa0 [ 470.249445] ? __save_stack_trace+0x7b/0xd0 [ 470.253763] ? btrfs_parse_early_options+0xa3/0x310 [ 470.258786] kstrdup+0x3a/0x70 [ 470.261971] btrfs_parse_early_options+0xa3/0x310 [ 470.266803] ? btrfs_freeze+0xc0/0xc0 [ 470.270597] ? find_next_bit+0x28/0x30 [ 470.274473] ? pcpu_alloc+0xcf0/0x1050 [ 470.278376] ? find_held_lock+0x35/0x130 [ 470.282433] ? pcpu_alloc+0xcf0/0x1050 [ 470.286312] btrfs_mount+0x11d/0x2b28 [ 470.290115] ? lock_downgrade+0x740/0x740 [ 470.294257] ? find_held_lock+0x35/0x130 [ 470.298311] ? pcpu_alloc+0x3af/0x1050 [ 470.302188] ? _find_next_bit+0xee/0x120 [ 470.306240] ? check_preemption_disabled+0x3c/0x250 [ 470.311250] ? btrfs_remount+0x11f0/0x11f0 [ 470.315486] ? rcu_read_lock_sched_held+0x110/0x130 [ 470.320541] ? __lockdep_init_map+0x10c/0x570 [ 470.325029] ? __lockdep_init_map+0x10c/0x570 [ 470.329532] mount_fs+0x97/0x2a1 [ 470.332915] vfs_kern_mount.part.0+0x5e/0x3d0 [ 470.337417] do_mount+0x417/0x27d0 [ 470.340959] ? copy_mount_options+0x5c/0x2f0 [ 470.345415] ? rcu_read_lock_sched_held+0x110/0x130 [ 470.350441] ? copy_mount_string+0x40/0x40 [ 470.354679] ? copy_mount_options+0x1fe/0x2f0 [ 470.359172] SyS_mount+0xab/0x120 [ 470.362610] ? copy_mnt_ns+0x8c0/0x8c0 [ 470.366484] do_syscall_64+0x1e8/0x640 [ 470.370368] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 470.375201] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 470.380386] RIP: 0033:0x45ee9a [ 470.383558] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 470.391270] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 470.398548] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 470.405823] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 470.413147] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 470.420414] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000037 21:57:18 executing program 5 (fault-call:0 fault-nth:56): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 470.528723] FAULT_INJECTION: forcing a failure. [ 470.528723] name failslab, interval 1, probability 0, space 0, times 0 [ 470.542991] CPU: 1 PID: 20722 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 470.550895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 470.560250] Call Trace: [ 470.562848] dump_stack+0x142/0x197 [ 470.566519] should_fail.cold+0x10f/0x159 [ 470.570682] should_failslab+0xdb/0x130 [ 470.574658] __kmalloc_track_caller+0x2ec/0x790 [ 470.579328] ? kstrdup_const+0x48/0x60 [ 470.584180] kstrdup+0x3a/0x70 [ 470.587402] kstrdup_const+0x48/0x60 [ 470.591372] alloc_vfsmnt+0xe5/0x7d0 [ 470.595089] vfs_kern_mount.part.0+0x2a/0x3d0 [ 470.599573] do_mount+0x417/0x27d0 [ 470.603201] ? copy_mount_options+0x5c/0x2f0 [ 470.608375] ? rcu_read_lock_sched_held+0x110/0x130 [ 470.613378] ? copy_mount_string+0x40/0x40 [ 470.617888] ? copy_mount_options+0x1fe/0x2f0 [ 470.622371] SyS_mount+0xab/0x120 [ 470.625807] ? copy_mnt_ns+0x8c0/0x8c0 [ 470.629682] do_syscall_64+0x1e8/0x640 [ 470.633554] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 470.638391] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 470.643563] RIP: 0033:0x45ee9a [ 470.646738] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 470.654797] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 470.662058] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 470.669317] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 470.676587] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 470.683856] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000038 [ 471.520682] NOHZ: local_softirq_pending 08 [ 471.525113] NOHZ: local_softirq_pending 08 21:57:20 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28d836ae78", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:20 executing program 2: ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, &(0x7f0000000040)={0x0, @adiantum}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x400000000000006, 0x8, &(0x7f0000001600)=[{&(0x7f0000000080)="47418fd6317b5e8261f741f553cea3b97d31325122371ec7ec668b4d74a2161c7691c9ab48", 0x25, 0x7ffd}, {&(0x7f00000000c0)="33e929e541ff28c49c2ac4bbcad3423f0c09c74054af02eb30ad9174b1b8345801d3c1dd93459831053875b164e6b1186798af16bbf530a2f6d417bd74f3f0e92e6c27b8465214e29076e30927", 0x4d}, {&(0x7f0000000140)="fabf", 0x2, 0x3}, {&(0x7f0000001800)="dc9250d64dae77cf8eb848709b2b49d5abe095f1e234ac0234dfddd90b145a8289f7f9df2eb7d4b9", 0x28, 0x5}, {&(0x7f0000000380)="2c15c455c425ccb07e8fc42db693dab6518d1a446c045e1aa53721eec54571c389c4edd8e74348477e1453cb259be40a9841aeec954c0f51187f22b8c79222af25241144625a412d5cf3aed56721c6b36a7b96409b3112ee5d4a2382388054c1d06e5bea9aef1442b88c2cf165627a5a2621d0caa8d4546dd8d4cdb62f1d7a087c3694fea34163a72d92b714c3ac66eb9d6919248c3b407c3b7663f708385f0f95d69d3bf4fee264733a3dc275667a2bd7958a458b6e4bb136f701f9856dd259a6e92da95d59ec096fc3d98df13dad24fda7643603a2ceb23d9fc8024e148cb07c50c60d599bc09ad0ad8a29bb9361226cc6e186f01d464705b431acade0e671bd95c43ee0c666f9b31365532176d1f47baaa558ad6b9bd9ecb42dad53e5951c12154509acfeec63c03ec130f4e38fa089cd7efeff79274063e6c037ca739b7aa4529e4529707b1288523174d737e24e5bd06a1550694b1291dafbbb9ff52b9baa93de04396ff0dab3fc05eec00bf5597275dd249895128e376c34480c8dc4520f65870f9ebe3a4623790ef64baf5fd131b052184d3fb81e37d6a50cf091e49a1303664549d37dcf536cf2c27a6a2fa105e9a541f5713015b596715b8962cd05794c37a1610100145d7e1984fe5985417be2366093873e2d09988876b7b5f878f740e67040cbe32262408af8b0e0883d69b0a8c8e11a7954df68de90613145c5091dde491fa033013d35562881c59d5b64ad7ff3ab077eac4cc7f6f5ca0580f99200ea077cae6d9698402d8955b6bdbef8a5651b565b75bbf2798731cb1f2d654c69626fe134252a7443c49a42dece1e039b4c7e74e04434ea8cb0b641b19f0e6420252f3a1c1ac9a25607b14e79ac7c28c4d74a0897899511d5ebca3431ce7e1d604ec568e1dd90a38b385ae3f0985d93be511d5bae0f53c64532d6886e5e84f643f5b4728e6d1411e6ac0d2eb6454f16a94402765bc2da1976ef2a42cf2cff1060d33f300ab4e8a1e287d7be03bcf3274916e076b56fd8e82a3548a17961017810e0d9a1f62e6cc0c0ac4b221ea196e1116573ac80481e99c63893300fef1e1406ec9cc7c37fec8e1d2a54f6db5d1c5a94636ab86a516af93f2edc95541e43449157dd4c9711ee702555e732782a7da0f637eea94b60aa3560427b9de1673a0ebfb3beb717f546697ca243c52c429a2b2df0538d277b2adea6ef727a28508bb3c8da2c44dadaf7484fe0d12c13a61ab80a78d29ad6f6067dd0035a97e396bf916dcd8448f4fb4ad4d206dfaec4d2584c9c5e4e3e9021407763c202ce7f6a3cb032037b8dd6c198a5f7ba090e6abdba546058451dbda1feef0da14b035a52efe3f4ad7d72663576d71f65af3537289f75ed856cd54298eb54d62b94648356cb59ae58b59eb1fc9252f72081f8014a93b2ca292d195914664266cd9cdd07b8b49a4857ae47294f9b8b8b88b2fd60b0f407b947e10ef7d935820079b4b6c3e0d6699235c56cb87fafe813c32d351b959a267af2ea648bc51a86f89c0c9c2bf022be876777ba8c6ec3ebc059f25c261fd0ebb68794d8306bd4af470c03740af24cb80a760ff3c029b96035ce71371884b43933bb8634c38726bf3e44abd7ad0c381aa312f580076c8e46ab59581055a18e65f78924dfbeb0edc35b03d1ffdc291ec2ae0c408263ba96833cfe04e19d9d6ed8fcb0775cd10bab2556adfcbbad7921db7a90926237874455f6bff0c5afd77ab4ba3fb615fcfc474cc2e999e104b646ffc3b2ed4eb2d33c768d300f85fce1ea8aaaccb464ae04c2d884cea9ef568541d6a77e9bbc866e264cee73fc532257ce5ede4acd0a090469127ab6cb81295fc055dbf978ebc2e07a170ad737b872b708207f72ac7bdb9068da1e5c65a6971c0dab065494e092f786da3244be2a3ec1d23423fa13f702ab078923538a024b4534d6d7534f58571cfaf1da9c03ded2274ce01b742e7a452b23f88f1264c5565cc8469010081e45b1f74b14267723012bad2f5192bc40e1b2a1ef8927f73a788faf4e18b5413bd405196a659ec9fd4176554cb2029967fd8e993c73ae792d31295136b229f45136c953fb0527da1062c8312c534d2a69583e0514585157d35b6e69e8813f88aa1046d01a52a2985db35d03e25e12f07d70f24ba0388fff8eef39911c8d26598b2546aab9938edc14ad11daa12eed9c595e855d34ed397656a5123ac30c5cbc34407fdb88772aec03aac8d5aeda48cebb84ae3550439e3cba0e3e11b67934115d776ee360faa05466f12acfd7d4346eeef5f83aeca7cf21c6e3f25c1b8bd2423d469d369312d550eab33f4ded1eb96247318c9ffb6b8e52c7bfa890df16e0e0e6f9f41436bcbc487f5af18243387b7593e35f37f0e721c3a21423e93496c94c49afa59d61487c831e5a487a66d6ac8e72a7a9b461776813d3f08e2e60c2c2f55a91b6eecf0be4e691b1e56285f2385db7d85c889240b1fe871c9ae2d53e49ce32d5e784b06eb161ac75e9d36071a61e465bfe0a2b1e23a27587d21fb2ef9e9454380776879e3d709c2c5e118ecd05822b96d16b0066904a8a8dcfec5431c14fd4e0a2db54f3defe262d1fc6f502c271b83087cb9e72100bf1baf0c89860c896808ec024c2815223399bf8c8bb822e98bf613946672ea490abec3201765670f0f55c1c45285fa322441db2503a6659dc4b42b0afb04add577a4a749528e796a42427aba4a9d2a246c57fc7c91051c25bbc7762ce32932163df9b689c8997cc5b088b693a6a35a64c0164e7580d2faac04ef4b62fc1b5d37ece638e1f51b92504e68fa29b8efd7a47e5fb3d6e4ad5f13c3b85b5af7de16fa93cee7a2bf395fa56a369d0a89db8b7d5ffb2c9ca3467fa89afe477d60ed765ecd93b2538ec15b3e2f34c746870cae721e4ebdc1ed2b4880692e2d143ea36176aa1c57e95c4b7c157b9f4eacc712840a0ac52bffb40a15c2aa812e6b634a54ab25a94960748348a6d82ff01a11d410b6ebe4ebdd327aa51450773da615d5180e013722d1556e2dcb9be050cf2daf50bb93dbcc6d43064f2c94f7bba503362d6fac85658755c97228d1dcb1e3827da37e001431f226f70b55229d25dfce7470f5d5503907e4244631fd32a5ac2c9d2e788540a6b4071bd06bb5101c555e239576d2ff3c002e3df71e807ec2a4a419705bd320eb17c3d0a1b6c35732e9d061d5042068e8b1c852bb5d8363099eb6b3a29ee042d71bd646e0b8d3a02a1c090be7b5ae9239bfe61fdb444385582d91f8a5a844622b58b0e98a4258a9d00d5dfd9deba11721a3ce094aae29849d1a14fce1ca91c87280387fd157930157d7c0c2226c7bc4735953a896f8e008f979624e507f6274368f679ee53d1c8800a2cc041e480f5906e6fc2c53fa67e0eea62ff9ac21c0d7284bbe25c6407508f710d596a4096470ca91b06f1b3c6aaf1560f441161fc27e71c4d781f08dbbea597bcab37e6289bf20bb883370736e1eaf71f7e396b48f84ecb4c0170dd22810c71c2f06e639275870be296e1aefb176e46eeb5865c9b8ae144fb683cbcbd2ab79cdb941fee8007a6a3da63d4af4094e117d770a86415c1ce589c6e4786725099ffcc7e8d9d098a6dcafa5531ca1318a43d0bf6370a7cbfd17ba92d0cbe0338ef84448ef20929e8d5410745339d8ab42c388fd35a20c4b54ee16411d2d1e5684df84e82be78589796b31b998253b8e301be1a35c4f8267986116afd35131f737866a56e8ad2e1324d7c550c2cd0461d3ce87af7a762c86cd1af40234bccd1895052d498160563e28b074872a4b31dfb3a5be3359a0aece80607eabd621c5bd990a78ab48ec3bb91bdef6481038c8bdbbf47b5feb6a5a57658c53263d57d0eaabb4b5471ff1a7fba2564222edd2a9b288eff4bb8fc27a04f3c5b3b4689aafd76d2be79518c8024f1e257a1928bcada8848f0c3b6cb00efc326c9134a1826d913f1deff1e7f05ba18514d9be1d1675a9cab5bc89e6616f114f5ad3bb85bec1c15defa20454da439707fd35f899ff4c5ef6339c5db94b03c3899517f1261a0d3fde2ca3fad239d2752416a668fc7aa081601396488acad7d860954178aa40f8ebb84c14ed8b01ee14a15857267b1794c74f6518530c90f1903e8d98aeeb0525ae41e12c853d561733b860e8fd5ce2d641b5af1a1a3b4c022ea0a8e8e45871ee43378b768065c61c7331e9c42732cf11ceb7026cc70bb85ebfffab46953d4d4540be5ec07f6e2369b36e4c788f8a27bfc1c941d4bef331b27f13fe1467e93e57a2b9a9b59b5f8926eacf957612dfa5055eecce1028bb288a80c0e30d0c09b67897f20059bfb9cf39be2cfdf4d4b524f07c30a105d398ac7fe08e49e4e0cbef4e9660e6d4c3701f98b781fd7441d6656048a5bccafa6a1e82e1bb57b3c9b455c1f7d8c3fcee4c914b8e2dc73b453c2a134b514ba3ae811385ef6abded9ae1639fba115cdb8f125b637ea5103a94955b82832f890b885e22ddeb2c6bfb27e26b4b23cf83ae0783af2f7ee44f01ebd8b3b07871dade523749917c21ceb2062a7b396b113a874601c0d57b89d252710994001e5f192ec2dfe82db4e45889977874c659551159457439cb7387b4fc196241bf290f460e4ae59aba36de525ebd3c574044c6f69b561f597feb2f88754ea31b1e1b5877dd0f3c0e47b75b4e314c4495629e5965796914e6e1a66fc73b1d34d264349c6d50451a1426af3a7024222c961f9c30f5f825c530982246c06cc2c365a1c78665926485ea248c7d45b1dcdc864cdd749d51d3b27c6da1173560ec76620e5686d50f69ae5b9d7deacefbecd7a9bb5259314d9b9eecb51b04346bfaa1570d6a6fdde6c1e0717ca2c988dbc053571cd072c18d505291c9e5d8625485273eba41576be157429762b913fc302805e5e38e9515c5a08c09cec592d827be80dafca97eb7731210d9994610db5b0cb2027fb86a7406b9d4be0cdf1d3b8f04bf1d4c15be6d7465e675ca0a011063d71e87eff10a3bcb4b910cde6297b75fab901298f5f3d100d6a221781084187ccdb0916e5596def832d5488189911f65741b66641990c63c851173a6e141a65c786a7a1322935cdcce6883c784fba2ffae49ec57e8ee05a4fb5787bfac105b3846011b186b613bf0f1edbcc4f421f3688181d1d539ab84c60d0c4cfd2e9414317aa2fef9f066e084b938d809ba6bef93b111c825fbf36f04d6381ecd4354e92527e9effd7e41449156e179390ea04dcaa235b3afc28d3dcbf77ed583853d9c2c18eae9368305544a3de89e1590704f317c52292134da48b446c411f929737063091220851df65a36957d74484e564b6fe05834959f3165fc54eca2a9293b0863716ffa310ba95c75080505e4ae49030c4c9acef061dbe88e02853278f03159cd7a16d97dba308b17029787ad01f2e6898651c0afbd6ec591c81b030d65d22ab6edf8d1bfb93afa1bb0beece72ea64dcfbeba299322689197b25922ba95d74a503c059a311edf796bc444c762ef349599eb611f3670d34e4b2cf035642032533fbd26e4702eaf14fddaf3fdf35cf5cf31664d0723865db725aecd5f87343a8001c047216456f1fb84da16c0410413c1abe89d8bb773e3e3a927311605b654522a97287291145fef118e63dc86aacaae78a27ae94fbd6814bde889860c005f7c3c19261d7b8a7617d45323892cfd6def7b14602f9af4fbdd2c1716ea2711c7320bb34775150860ceb64ef6a688719b8f8d8aa02a4b98678ab3b79f67cf089a892b02228e5d957791891a0c53f81bc859084", 0x1000, 0x80000001}, {&(0x7f0000001380)="c20cdbddd4de34b88d1790a21758f668617d22a91613f65fb34f76e26af5ff22678e6e84f0a24ee46aa2aad5e33dd38bf2795525d26e5e04eae8024ffe0400de5cce7e6f7a1535a7ccf64cd4fdb71107571bf054fa7d75b139afe00e4ebaa1f5e9aef450342379be06039b6e32a759e3294d472e73a3e5bac9f0a525ca6e", 0x7e, 0x6}, {&(0x7f00000016c0)="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", 0x124, 0x8}, {&(0x7f0000001500)="0fd2aabcd476633e5ddbde9dbc86b3ba3b4a5b106f92778cc3a26ca66fb01d5cc48263c8ae96a1a80e92c5b5196f0e02bceadf0e9f0627622c4fb276db39b9b3657c77b07e1b3747f55a30b7a6e5504dcc304d043827ba4e0bbd181cfd2b46523a6064d298a290cb407fb978167ab1a01ab14f674866a1351b3941565aa9a422251b557ab83e52b9aa6ce494fa29f0bd658f2eb5b074fd249f9cf2d4672bf5ff4c346265604f075b09526c179266cc112a1a0ec9cb08f82c9abb4a82b7e5356ccc713b1c9165d794e0adc73881ef642c66353e02fb468e6103ca8ca644d4edf085330ac28b0ccb0868436a", 0xeb, 0x1}], 0x80000, 0x0) 21:57:20 executing program 5 (fault-call:0 fault-nth:57): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:20 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) 21:57:20 executing program 3: statfs(&(0x7f00000000c0)='./file0\x00', &(0x7f00000004c0)=""/4096) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x400000, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='trusted.overlay.upper\x00', &(0x7f0000000300)={0x0, 0xfb, 0x42, 0x7, 0x20, "480f51f3ba88b979186c11ce78c0624f", "e97be93b7ec05953b5284bc7ff2dc6feadb53ddf326e55c89d1e67790cc45ad9358ff32f9253ccb20f3a0a2bb8"}, 0x42, 0x1) ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x1) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000200), &(0x7f0000000180)='./file0\x00', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:20 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 472.669482] FAULT_INJECTION: forcing a failure. [ 472.669482] name failslab, interval 1, probability 0, space 0, times 0 [ 472.707536] CPU: 0 PID: 20751 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 21:57:20 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 472.715469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 472.724877] Call Trace: [ 472.727547] dump_stack+0x142/0x197 [ 472.731232] should_fail.cold+0x10f/0x159 [ 472.735486] should_failslab+0xdb/0x130 [ 472.739452] __kmalloc_track_caller+0x2ec/0x790 [ 472.744116] ? kstrdup_const+0x48/0x60 [ 472.748775] kstrdup+0x3a/0x70 [ 472.751958] kstrdup_const+0x48/0x60 [ 472.755660] alloc_vfsmnt+0xe5/0x7d0 [ 472.759362] vfs_kern_mount.part.0+0x2a/0x3d0 [ 472.763847] ? find_held_lock+0x35/0x130 [ 472.767898] vfs_kern_mount+0x40/0x60 [ 472.771687] btrfs_mount+0x3ce/0x2b28 [ 472.775476] ? lock_downgrade+0x740/0x740 [ 472.779666] ? find_held_lock+0x35/0x130 [ 472.783728] ? pcpu_alloc+0x3af/0x1050 [ 472.787629] ? btrfs_remount+0x11f0/0x11f0 [ 472.791864] ? rcu_read_lock_sched_held+0x110/0x130 [ 472.796875] ? __lockdep_init_map+0x10c/0x570 [ 472.801403] ? __lockdep_init_map+0x10c/0x570 [ 472.805902] mount_fs+0x97/0x2a1 [ 472.809259] vfs_kern_mount.part.0+0x5e/0x3d0 [ 472.813749] do_mount+0x417/0x27d0 [ 472.817281] ? copy_mount_options+0x5c/0x2f0 [ 472.821691] ? rcu_read_lock_sched_held+0x110/0x130 [ 472.826705] ? copy_mount_string+0x40/0x40 [ 472.830927] ? copy_mount_options+0x1fe/0x2f0 [ 472.835412] SyS_mount+0xab/0x120 [ 472.838863] ? copy_mnt_ns+0x8c0/0x8c0 [ 472.842747] do_syscall_64+0x1e8/0x640 [ 472.846626] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 472.851457] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 472.856678] RIP: 0033:0x45ee9a [ 472.859862] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 472.867563] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 472.874829] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 472.882091] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 472.889434] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 472.896704] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000039 21:57:21 executing program 5 (fault-call:0 fault-nth:58): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:21 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) mknod(&(0x7f0000000040)='./file0/file0\x00', 0x4, 0x7) 21:57:21 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000040)="8da4363ac0e902000a00000000e248b4278e4fd5a2c08d11cc1326bd1f01004d010000000000000000007a0000e5900001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x58, 0x10000}], 0x0, 0x0) [ 473.065972] FAULT_INJECTION: forcing a failure. [ 473.065972] name failslab, interval 1, probability 0, space 0, times 0 [ 473.081292] CPU: 1 PID: 20775 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 473.089223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 473.098577] Call Trace: [ 473.101165] dump_stack+0x142/0x197 [ 473.104794] should_fail.cold+0x10f/0x159 [ 473.108956] should_failslab+0xdb/0x130 [ 473.112932] kmem_cache_alloc+0x2d7/0x780 [ 473.117070] ? check_preemption_disabled+0x3c/0x250 [ 473.122093] alloc_vfsmnt+0x28/0x7d0 [ 473.125814] vfs_kern_mount.part.0+0x2a/0x3d0 [ 473.130327] ? find_held_lock+0x35/0x130 [ 473.134389] vfs_kern_mount+0x40/0x60 [ 473.138324] btrfs_mount+0x3ce/0x2b28 [ 473.142119] ? lock_downgrade+0x740/0x740 [ 473.146266] ? find_held_lock+0x35/0x130 [ 473.150326] ? pcpu_alloc+0x3af/0x1050 [ 473.154213] ? btrfs_remount+0x11f0/0x11f0 [ 473.158477] ? rcu_read_lock_sched_held+0x110/0x130 [ 473.163503] ? __lockdep_init_map+0x10c/0x570 [ 473.167990] ? __lockdep_init_map+0x10c/0x570 [ 473.172487] mount_fs+0x97/0x2a1 [ 473.175852] vfs_kern_mount.part.0+0x5e/0x3d0 [ 473.180366] do_mount+0x417/0x27d0 [ 473.183937] ? copy_mount_options+0x5c/0x2f0 [ 473.188335] ? rcu_read_lock_sched_held+0x110/0x130 [ 473.193355] ? copy_mount_string+0x40/0x40 [ 473.197597] ? copy_mount_options+0x1fe/0x2f0 [ 473.202096] SyS_mount+0xab/0x120 [ 473.205649] ? copy_mnt_ns+0x8c0/0x8c0 [ 473.209532] do_syscall_64+0x1e8/0x640 [ 473.213423] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 473.218268] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 473.223455] RIP: 0033:0x45ee9a [ 473.226630] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 473.234422] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 473.241695] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 473.248965] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 473.257193] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 473.264460] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000003a 21:57:21 executing program 5 (fault-call:0 fault-nth:59): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$TCSETA(r3, 0x5406, &(0x7f0000000080)={0x100, 0x4, 0x8e2, 0x9, 0x3, "98d74857f0e521b9"}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r5, 0xc0406619, &(0x7f0000000000)={{0x3, 0x0, @identifier="d0b662b8e97a8df151270777e640791c"}}) r6 = getpid() sched_setscheduler(r6, 0x5, &(0x7f00000001c0)) ptrace$pokeuser(0x6, r6, 0x200, 0x9) prctl$PR_SET_FPEMU(0xa, 0x1) connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000040)={0x1f, @any, 0x5}, 0xa) r7 = socket$phonet_pipe(0x23, 0x5, 0x2) r8 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r9 = dup3(r7, r8, 0x0) write$9p(r9, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={0xffffffffffffffff}, 0x13f, 0x9}}, 0x20) r11 = socket$phonet_pipe(0x23, 0x5, 0x2) r12 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r13 = dup3(r11, r12, 0x0) write$9p(r13, 0x0, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r3, &(0x7f0000000180)={0x12, 0x10, 0xfa00, {&(0x7f00000000c0), r10, r13}}, 0x18) [ 473.411004] FAULT_INJECTION: forcing a failure. [ 473.411004] name failslab, interval 1, probability 0, space 0, times 0 [ 473.468536] CPU: 1 PID: 20796 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 473.476452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 473.485811] Call Trace: [ 473.488519] dump_stack+0x142/0x197 [ 473.492165] should_fail.cold+0x10f/0x159 [ 473.496434] should_failslab+0xdb/0x130 [ 473.500415] __kmalloc+0x2f0/0x7a0 [ 473.503966] ? match_token+0x22b/0x480 [ 473.507864] ? match_strdup+0x5f/0xa0 [ 473.511790] match_strdup+0x5f/0xa0 [ 473.515433] btrfs_parse_early_options+0x241/0x310 [ 473.520501] ? btrfs_freeze+0xc0/0xc0 [ 473.524311] ? find_next_bit+0x28/0x30 [ 473.528209] ? pcpu_alloc+0xcf0/0x1050 [ 473.532128] ? pcpu_alloc+0xcf0/0x1050 [ 473.536025] btrfs_mount+0x11d/0x2b28 [ 473.539832] ? lock_downgrade+0x740/0x740 [ 473.543983] ? find_held_lock+0x35/0x130 [ 473.548054] ? pcpu_alloc+0x3af/0x1050 [ 473.551957] ? _find_next_bit+0xee/0x120 [ 473.556023] ? check_preemption_disabled+0x3c/0x250 [ 473.561043] ? btrfs_remount+0x11f0/0x11f0 [ 473.565288] ? rcu_read_lock_sched_held+0x110/0x130 [ 473.570298] ? __lockdep_init_map+0x10c/0x570 [ 473.574789] ? __lockdep_init_map+0x10c/0x570 [ 473.579321] mount_fs+0x97/0x2a1 [ 473.582677] vfs_kern_mount.part.0+0x5e/0x3d0 [ 473.587159] ? find_held_lock+0x35/0x130 [ 473.591247] vfs_kern_mount+0x40/0x60 [ 473.595046] btrfs_mount+0x3ce/0x2b28 [ 473.598837] ? lock_downgrade+0x740/0x740 [ 473.602981] ? find_held_lock+0x35/0x130 [ 473.607045] ? pcpu_alloc+0x3af/0x1050 [ 473.610929] ? btrfs_remount+0x11f0/0x11f0 [ 473.615188] ? rcu_read_lock_sched_held+0x110/0x130 [ 473.620208] ? __lockdep_init_map+0x10c/0x570 [ 473.624696] ? __lockdep_init_map+0x10c/0x570 [ 473.629182] mount_fs+0x97/0x2a1 [ 473.632536] vfs_kern_mount.part.0+0x5e/0x3d0 [ 473.637067] do_mount+0x417/0x27d0 [ 473.640599] ? copy_mount_string+0x40/0x40 [ 473.644823] ? copy_mount_options+0x18f/0x2f0 [ 473.649566] ? __sanitizer_cov_trace_pc+0x4a/0x60 [ 473.654449] ? copy_mount_options+0x1fe/0x2f0 [ 473.658937] SyS_mount+0xab/0x120 [ 473.662376] ? copy_mnt_ns+0x8c0/0x8c0 [ 473.666370] do_syscall_64+0x1e8/0x640 [ 473.670308] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 473.675147] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 473.680327] RIP: 0033:0x45ee9a [ 473.683506] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 473.691214] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 473.698477] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 473.705743] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 473.713011] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 473.720268] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000003b 21:57:23 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:23 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/status\x00', 0x0, 0x0) ioctl$KVM_HYPERV_EVENTFD(0xffffffffffffffff, 0x4018aebd, &(0x7f0000000080)={0x4, r0, 0x1}) 21:57:23 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r0, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r0, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r0, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getpeername$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @ipv4={[], [], @dev}}, &(0x7f0000000340)=0x1c) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0205647, &(0x7f0000000180)={0x9f0000, 0x101, 0xffffff37, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xa00905, 0x1, [], @ptr=0x7}}) setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x2a, &(0x7f00000001c0)={0x1f, {{0xa, 0x4e22, 0x1, @local, 0x101}}}, 0x88) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:23 executing program 5 (fault-call:0 fault-nth:60): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:23 executing program 4: syz_init_net_socket$ax25(0x3, 0xd7d359a24214aec5, 0x6) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0) 21:57:23 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:23 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 475.730481] FAULT_INJECTION: forcing a failure. [ 475.730481] name failslab, interval 1, probability 0, space 0, times 0 [ 475.754829] CPU: 0 PID: 20832 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 475.762868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 475.772223] Call Trace: [ 475.774821] dump_stack+0x142/0x197 21:57:23 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:23 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 475.779890] should_fail.cold+0x10f/0x159 [ 475.784058] should_failslab+0xdb/0x130 [ 475.788044] __kmalloc+0x2f0/0x7a0 [ 475.791597] ? match_token+0x22b/0x480 [ 475.795509] ? match_strdup+0x5f/0xa0 [ 475.799327] match_strdup+0x5f/0xa0 [ 475.802966] btrfs_parse_early_options+0x241/0x310 [ 475.807919] ? btrfs_freeze+0xc0/0xc0 [ 475.812052] ? pcpu_alloc+0xcf0/0x1050 [ 475.815946] ? pcpu_alloc+0xcf0/0x1050 [ 475.819844] btrfs_mount+0x11d/0x2b28 [ 475.823648] ? lock_downgrade+0x740/0x740 [ 475.827804] ? find_held_lock+0x35/0x130 [ 475.831875] ? pcpu_alloc+0x3af/0x1050 [ 475.835770] ? _find_next_bit+0xee/0x120 [ 475.839840] ? check_preemption_disabled+0x3c/0x250 [ 475.844866] ? btrfs_remount+0x11f0/0x11f0 [ 475.849116] ? rcu_read_lock_sched_held+0x110/0x130 [ 475.854155] ? __lockdep_init_map+0x10c/0x570 [ 475.858651] ? __lockdep_init_map+0x10c/0x570 [ 475.863134] mount_fs+0x97/0x2a1 [ 475.866485] vfs_kern_mount.part.0+0x5e/0x3d0 [ 475.870967] ? find_held_lock+0x35/0x130 [ 475.875016] vfs_kern_mount+0x40/0x60 [ 475.878803] btrfs_mount+0x3ce/0x2b28 [ 475.882610] ? lock_downgrade+0x740/0x740 [ 475.886786] ? find_held_lock+0x35/0x130 [ 475.890846] ? pcpu_alloc+0x3af/0x1050 [ 475.894723] ? btrfs_remount+0x11f0/0x11f0 [ 475.898953] ? rcu_read_lock_sched_held+0x110/0x130 [ 475.904095] ? __lockdep_init_map+0x10c/0x570 [ 475.908577] ? __lockdep_init_map+0x10c/0x570 [ 475.913181] mount_fs+0x97/0x2a1 [ 475.916537] vfs_kern_mount.part.0+0x5e/0x3d0 [ 475.921053] do_mount+0x417/0x27d0 [ 475.924581] ? retint_kernel+0x2d/0x2d [ 475.928458] ? copy_mount_string+0x40/0x40 [ 475.932741] ? copy_mount_options+0x195/0x2f0 [ 475.937235] ? copy_mount_options+0x1fe/0x2f0 [ 475.941738] SyS_mount+0xab/0x120 [ 475.945184] ? copy_mnt_ns+0x8c0/0x8c0 [ 475.949062] do_syscall_64+0x1e8/0x640 [ 475.952950] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 475.957782] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 475.963080] RIP: 0033:0x45ee9a [ 475.966291] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 475.974052] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 475.981309] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 475.988573] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 475.996061] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 476.003321] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000003c 21:57:24 executing program 4: socketpair(0x15, 0x800, 0x75, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$IMHOLD_L1(r0, 0x80044948, &(0x7f0000000080)=0xc9d) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd], 0x1f000}) r4 = syz_genetlink_get_family_id$l2tp(&(0x7f00000001c0)='l2tp\x00') sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"], 0x24}, 0x1, 0x0, 0x0, 0x891}, 0x85) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = dup3(0xffffffffffffffff, r3, 0x80000) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$USBDEVFS_GET_SPEED(r6, 0x551f) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r5, 0x8982, &(0x7f00000000c0)={0x0, 'veth0_to_batadv\x00', {}, 0x1}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:24 executing program 5 (fault-call:0 fault-nth:61): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:24 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 476.128822] FAULT_INJECTION: forcing a failure. [ 476.128822] name failslab, interval 1, probability 0, space 0, times 0 [ 476.171025] CPU: 0 PID: 20862 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 476.179137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 476.188761] Call Trace: [ 476.191368] dump_stack+0x142/0x197 [ 476.195100] should_fail.cold+0x10f/0x159 [ 476.199254] should_failslab+0xdb/0x130 [ 476.203315] __kmalloc+0x2f0/0x7a0 [ 476.206853] ? match_token+0x22b/0x480 [ 476.210745] ? match_strdup+0x5f/0xa0 [ 476.214565] match_strdup+0x5f/0xa0 [ 476.218199] btrfs_parse_early_options+0x241/0x310 [ 476.223246] ? btrfs_freeze+0xc0/0xc0 [ 476.227055] ? find_next_bit+0x28/0x30 [ 476.231014] ? pcpu_alloc+0xcf0/0x1050 [ 476.234935] ? pcpu_alloc+0xcf0/0x1050 [ 476.238942] btrfs_mount+0x11d/0x2b28 [ 476.242848] ? lock_downgrade+0x740/0x740 [ 476.247116] ? find_held_lock+0x35/0x130 [ 476.251193] ? pcpu_alloc+0x3af/0x1050 [ 476.255095] ? _find_next_bit+0xee/0x120 [ 476.259157] ? check_preemption_disabled+0x3c/0x250 [ 476.264178] ? btrfs_remount+0x11f0/0x11f0 [ 476.268532] ? rcu_read_lock_sched_held+0x110/0x130 [ 476.273568] ? __lockdep_init_map+0x10c/0x570 [ 476.278273] ? __lockdep_init_map+0x10c/0x570 [ 476.282772] mount_fs+0x97/0x2a1 [ 476.286145] vfs_kern_mount.part.0+0x5e/0x3d0 [ 476.290635] ? find_held_lock+0x35/0x130 [ 476.294697] vfs_kern_mount+0x40/0x60 [ 476.298500] btrfs_mount+0x3ce/0x2b28 [ 476.302299] ? lock_downgrade+0x740/0x740 [ 476.306448] ? find_held_lock+0x35/0x130 [ 476.310506] ? pcpu_alloc+0x3af/0x1050 [ 476.314400] ? btrfs_remount+0x11f0/0x11f0 [ 476.318637] ? rcu_read_lock_sched_held+0x110/0x130 [ 476.323675] ? __lockdep_init_map+0x10c/0x570 [ 476.328171] ? __lockdep_init_map+0x10c/0x570 [ 476.332767] mount_fs+0x97/0x2a1 [ 476.336150] vfs_kern_mount.part.0+0x5e/0x3d0 [ 476.340832] do_mount+0x417/0x27d0 [ 476.344385] ? copy_mount_options+0x5c/0x2f0 [ 476.348829] ? rcu_read_lock_sched_held+0x110/0x130 [ 476.353849] ? copy_mount_string+0x40/0x40 [ 476.358131] ? copy_mount_options+0x1fe/0x2f0 [ 476.362634] SyS_mount+0xab/0x120 [ 476.366087] ? copy_mnt_ns+0x8c0/0x8c0 [ 476.369977] do_syscall_64+0x1e8/0x640 [ 476.373873] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 476.378725] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 476.383912] RIP: 0033:0x45ee9a [ 476.387096] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 476.394818] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 476.402081] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 476.409496] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 476.416768] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 476.424038] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000003d 21:57:26 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28d836ae78", 0x12e}], 0x3, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:26 executing program 2: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$SIOCX25SDTEFACILITIES(r2, 0x89eb, &(0x7f0000000000)={0x100, 0x7ff, 0x5, 0x0, 0x3, 0x8, 0x28, "153c9afa77d8334d7f533fd829af952818426fd9", "3676fdbeb3508425b3ae1aeef47bfc592b109c02"}) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f00000000c0)) 21:57:26 executing program 5 (fault-call:0 fault-nth:62): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:26 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0) ioctl$VIDIOC_G_OUTPUT(r0, 0x8004562e, &(0x7f0000000080)) 21:57:26 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000040), &(0x7f0000000180)=0x4) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 478.752561] FAULT_INJECTION: forcing a failure. [ 478.752561] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 478.779492] CPU: 1 PID: 20891 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 478.787429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 478.797013] Call Trace: [ 478.799595] dump_stack+0x142/0x197 [ 478.803224] should_fail.cold+0x10f/0x159 [ 478.807461] ? __might_sleep+0x93/0xb0 [ 478.811384] __alloc_pages_nodemask+0x1d6/0x7a0 [ 478.816153] ? trace_hardirqs_on+0xd/0x10 [ 478.820310] ? __alloc_pages_slowpath+0x2930/0x2930 [ 478.825318] ? btrfs_parse_early_options+0x1a2/0x310 [ 478.830534] alloc_pages_current+0xec/0x1e0 [ 478.834854] __get_free_pages+0xf/0x40 [ 478.838728] get_zeroed_page+0x11/0x20 [ 478.842608] parse_security_options+0x1f/0xa0 [ 478.847094] btrfs_mount+0x2bb/0x2b28 [ 478.850976] ? lock_downgrade+0x740/0x740 [ 478.855181] ? find_held_lock+0x35/0x130 [ 478.859238] ? pcpu_alloc+0x3af/0x1050 [ 478.863164] ? btrfs_remount+0x11f0/0x11f0 [ 478.867466] ? rcu_read_lock_sched_held+0x110/0x130 [ 478.872536] ? __lockdep_init_map+0x10c/0x570 [ 478.877028] mount_fs+0x97/0x2a1 [ 478.880401] vfs_kern_mount.part.0+0x5e/0x3d0 [ 478.884998] ? find_held_lock+0x35/0x130 [ 478.889172] vfs_kern_mount+0x40/0x60 [ 478.892985] btrfs_mount+0x3ce/0x2b28 [ 478.896779] ? lock_downgrade+0x740/0x740 [ 478.900918] ? find_held_lock+0x35/0x130 [ 478.904970] ? pcpu_alloc+0x3af/0x1050 [ 478.908951] ? btrfs_remount+0x11f0/0x11f0 [ 478.913552] ? rcu_read_lock_sched_held+0x110/0x130 [ 478.918998] ? __lockdep_init_map+0x10c/0x570 [ 478.923604] ? __lockdep_init_map+0x10c/0x570 [ 478.928101] mount_fs+0x97/0x2a1 [ 478.931461] vfs_kern_mount.part.0+0x5e/0x3d0 [ 478.935951] do_mount+0x417/0x27d0 [ 478.939477] ? copy_mount_options+0x5c/0x2f0 [ 478.944070] ? rcu_read_lock_sched_held+0x110/0x130 [ 478.949257] ? copy_mount_string+0x40/0x40 [ 478.953502] ? copy_mount_options+0x1fe/0x2f0 [ 478.958007] SyS_mount+0xab/0x120 [ 478.961467] ? copy_mnt_ns+0x8c0/0x8c0 [ 478.965351] do_syscall_64+0x1e8/0x640 [ 478.969240] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 478.974092] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 478.979498] RIP: 0033:0x45ee9a [ 478.982687] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 478.990508] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a 21:57:27 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 478.997855] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 479.005382] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 479.012673] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 479.020190] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000003e 21:57:27 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="7b406d70d828aa0c88b2fa3a187d76c80d947157ab201c0b06a1989ef8bfd08e0184606bdd3d0e3e6e0b65d193969e5e2a"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000040)=@md0='/dev/md0\x00', &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:27 executing program 5 (fault-call:0 fault-nth:63): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:27 executing program 2: r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r9 = fcntl$dupfd(r6, 0x406, r8) r10 = getpid() sched_setscheduler(r10, 0x5, &(0x7f00000001c0)) write$P9_RGETLOCK(r9, &(0x7f0000000140)={0x24, 0x37, 0x2, {0x2, 0x800, 0x4, r10, 0x6, 'btrfs\x00'}}, 0x24) write$9p(r5, 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x0}, {}, {}]}) ioctl$DRM_IOCTL_NEW_CTX(r2, 0x40086425, &(0x7f00000000c0)={r11}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 479.141753] FAULT_INJECTION: forcing a failure. [ 479.141753] name failslab, interval 1, probability 0, space 0, times 0 [ 479.154315] CPU: 0 PID: 20914 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 479.162227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 479.171591] Call Trace: [ 479.174198] dump_stack+0x142/0x197 [ 479.177838] should_fail.cold+0x10f/0x159 [ 479.182012] should_failslab+0xdb/0x130 [ 479.185988] kmem_cache_alloc_trace+0x2e9/0x790 [ 479.190766] selinux_parse_opts_str+0x3c1/0xa30 [ 479.195552] ? selinux_sb_show_options+0xd50/0xd50 [ 479.200574] ? free_pages+0x46/0x50 [ 479.204208] ? selinux_sb_copy_data+0x21e/0x390 [ 479.208876] security_sb_parse_opts_str+0x75/0xb0 [ 479.213895] parse_security_options+0x4e/0xa0 [ 479.218391] btrfs_mount+0x2bb/0x2b28 [ 479.222182] ? lock_downgrade+0x740/0x740 [ 479.226315] ? find_held_lock+0x35/0x130 [ 479.230365] ? pcpu_alloc+0x3af/0x1050 [ 479.234259] ? btrfs_remount+0x11f0/0x11f0 [ 479.238609] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.243657] ? __lockdep_init_map+0x10c/0x570 [ 479.248152] mount_fs+0x97/0x2a1 [ 479.251521] vfs_kern_mount.part.0+0x5e/0x3d0 [ 479.256007] ? find_held_lock+0x35/0x130 [ 479.260065] vfs_kern_mount+0x40/0x60 [ 479.263868] btrfs_mount+0x3ce/0x2b28 [ 479.267684] ? lock_downgrade+0x740/0x740 [ 479.271943] ? find_held_lock+0x35/0x130 [ 479.276002] ? pcpu_alloc+0x3af/0x1050 [ 479.279891] ? btrfs_remount+0x11f0/0x11f0 [ 479.284129] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.289166] ? __lockdep_init_map+0x10c/0x570 [ 479.293651] ? __lockdep_init_map+0x10c/0x570 [ 479.298167] mount_fs+0x97/0x2a1 [ 479.301542] vfs_kern_mount.part.0+0x5e/0x3d0 [ 479.306038] do_mount+0x417/0x27d0 [ 479.309574] ? copy_mount_options+0x5c/0x2f0 [ 479.313972] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.319105] ? copy_mount_string+0x40/0x40 [ 479.323363] ? copy_mount_options+0x1fe/0x2f0 [ 479.327863] SyS_mount+0xab/0x120 [ 479.331314] ? copy_mnt_ns+0x8c0/0x8c0 [ 479.335206] do_syscall_64+0x1e8/0x640 [ 479.339101] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 479.343952] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 479.349255] RIP: 0033:0x45ee9a [ 479.352437] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 479.360143] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 479.367410] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 479.374775] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 479.382039] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 479.389304] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000003f 21:57:27 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000080)="273e15933a58d8a2fff225d89603d0e51f973d1966", 0x15, 0x7}, {&(0x7f0000000100)="ff992d12ac57a6024b448bcc6be9c828fe299d9c2281ec04f15a038eec8d0e467961ce12e7a2f32da6afcbf370377440c9d0695f69d2ccbb664f115e6e3a8039faad19b5357c51f64bd517d6f728afe1fdb8829299012ff8ced2fcddcdd2e05eed43f8b385f57cdd1331fd0aae4715b972efec1196b315baac9d3528047dcd612731f0437d03f25e46651a95632b31f0bb3131ec7cef0498f36184e6fdac5789a5ad7a5560dd72057dee04b595dd36c22e1bf682b1e98c708faf033eae047b25e80428c8c59e23f711e7", 0xca, 0x3}], 0x80b, 0x0) 21:57:27 executing program 5 (fault-call:0 fault-nth:64): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 479.574127] FAULT_INJECTION: forcing a failure. [ 479.574127] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 479.595200] CPU: 0 PID: 20933 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 479.603134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 479.612498] Call Trace: [ 479.615095] dump_stack+0x142/0x197 [ 479.618780] should_fail.cold+0x10f/0x159 [ 479.622928] ? __might_sleep+0x93/0xb0 [ 479.626834] __alloc_pages_nodemask+0x1d6/0x7a0 [ 479.631504] ? check_preemption_disabled+0x3c/0x250 [ 479.636514] ? __alloc_pages_slowpath+0x2930/0x2930 [ 479.641530] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 479.647028] ? __alloc_pages_nodemask+0x639/0x7a0 [ 479.651873] alloc_pages_current+0xec/0x1e0 [ 479.656286] ? btrfs_parse_early_options+0x1a2/0x310 [ 479.661395] __get_free_pages+0xf/0x40 [ 479.665283] get_zeroed_page+0x11/0x20 [ 479.669172] selinux_sb_copy_data+0x2a/0x390 [ 479.673587] security_sb_copy_data+0x75/0xb0 [ 479.678041] parse_security_options+0x37/0xa0 [ 479.682533] btrfs_mount+0x2bb/0x2b28 [ 479.686344] ? lock_downgrade+0x740/0x740 [ 479.690548] ? find_held_lock+0x35/0x130 [ 479.694607] ? pcpu_alloc+0x3af/0x1050 [ 479.698483] ? btrfs_remount+0x11f0/0x11f0 [ 479.702720] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.707799] ? __lockdep_init_map+0x10c/0x570 [ 479.712289] mount_fs+0x97/0x2a1 [ 479.715648] vfs_kern_mount.part.0+0x5e/0x3d0 [ 479.720158] ? find_held_lock+0x35/0x130 [ 479.724228] vfs_kern_mount+0x40/0x60 [ 479.728027] btrfs_mount+0x3ce/0x2b28 [ 479.731823] ? lock_downgrade+0x740/0x740 [ 479.735961] ? find_held_lock+0x35/0x130 [ 479.740022] ? pcpu_alloc+0x3af/0x1050 [ 479.743939] ? btrfs_remount+0x11f0/0x11f0 [ 479.748175] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.753186] ? __lockdep_init_map+0x10c/0x570 [ 479.757685] ? __lockdep_init_map+0x10c/0x570 [ 479.762188] mount_fs+0x97/0x2a1 [ 479.765901] vfs_kern_mount.part.0+0x5e/0x3d0 [ 479.770385] do_mount+0x417/0x27d0 [ 479.773913] ? copy_mount_options+0x5c/0x2f0 [ 479.778373] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.783397] ? copy_mount_string+0x40/0x40 [ 479.787629] ? copy_mount_options+0x1fe/0x2f0 [ 479.792221] SyS_mount+0xab/0x120 [ 479.795664] ? copy_mnt_ns+0x8c0/0x8c0 [ 479.799552] do_syscall_64+0x1e8/0x640 [ 479.803456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 479.808305] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 479.813484] RIP: 0033:0x45ee9a [ 479.816663] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 21:57:28 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8db4363ac0e902000a0000000001004d010000000000000000007a000000000001f60150c67ec44fa0cd4a00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0)='tls\x00', 0x4) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f00000001c0)) capset(&(0x7f0000000040)={0x19980330, r0}, &(0x7f0000000080)={0x7fffffff, 0x9, 0x8, 0x2, 0x0, 0x3f}) [ 479.824364] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 479.831752] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 479.839009] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 479.846275] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 479.853541] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000040 [ 479.891188] BTRFS: device fsid 01f60150-c67e-c44f-a0cd-4a00b10efd9a devid 0 transid 0 /dev/loop4 21:57:29 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:29 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="2e092f66696c653000d05679bc0aa2b1bc8784327de030982cba64fe3296be760ddf7034c54c62ec66b55dd6b15b4115f7895b1205aa7ca2820ddb"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:29 executing program 5 (fault-call:0 fault-nth:65): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:29 executing program 4: prctl$PR_SVE_SET_VL(0x32, 0x1e4a8) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000080)={0x8, 0x4}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:29 executing program 2: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x10000, 0x5, &(0x7f0000000540)=[{&(0x7f00000001c0)="7b4f1df8806c05f282550f7d470a4dd72d7f0a94968ae00a0afcf11dee4251b6041ae97294585772271c207ec653a2517e7bec7d281b3dca74efa0328842cf95781749e2606542f9eb461dafdb7da972740eec4d9d55df56f8a6dc324072101ee012e68be35b85e45688aed219408a2260228cbeac2da376ce5fb1", 0x7b, 0x5}, {&(0x7f00000000c0), 0x0, 0x9}, {&(0x7f0000000240)="3b47c6bc4ccd0913b6a411f55597cbae1ed8ee5fc37168247dd2fc553455dade10d8d282544498f61e8de2634655eddee226f384513398d5de5c146cc7cf0ee19e70d9844445b5815a55342c5a14a977470de874f233655b8039253f7f1bcae56b72980b85cf8e6465995596ad4adbc21a6e05f3a84950bffde8122ce5cbdaf60e796688", 0x84, 0x10000}, {&(0x7f0000000380)="651ca13b1094fa36cbf2ff5a686576578cc868322e298a014d416c575b21fe3820552449e94f53e1952787a829cc46d9b6ef56712c05cfd72b083b64deba73fb732be3b33b0ebbd03d5c2c5f3dc54dbd530abeb101dadf0401a819e3c831ad25ac33bacfc3e6465384108e2d07ce788b7309075dcd44b4fb75c9f8f94a6033bf0e2d8b146bdff0a81585553cf23fc474cfbf5fe8c4617c0c376697c11aa2c6a30c0b31adfae1ed5ce1fbbb8ed93881b2747d6c543a92f4a1b48dce0d6efef42d5bae7696639db12511702ce697d33724c45b", 0xd2, 0x100}, {&(0x7f0000000480)="9d2a1c8a88d4c6607e17e5483df28cbd4dd189424a0c1aa6729028746a45255fad4b0248863a011f8d2816d4b7889757883835c587c9054f3a3f2d1e865a46a2c018eb90c8693125156fbad731d966dfd510395a2d7bfc35387f5cc0e20a8ac23fa64243c27ff8fc6b13ed4f0853a657595c5f2779edf681f230831908a76bdb37f3d4502ec75d06afcfef1c30ba05c303555d8a0597d44fdb4d8939e8a4028c7aab30eab656e7f9a79055868491ede041dbaac676b8f974a8c4475c9a", 0xbd, 0xfffffffffffffd2a}], 0x800000, &(0x7f00000005c0)={[{@datasum='datasum'}, {@space_cache='space_cache'}, {@fragment_data='fragment=data'}, {@datasum='datasum'}, {@treelog='treelog'}], [{@pcr={'pcr', 0x3d, 0x3c}}, {@audit='audit'}]}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 481.798023] FAULT_INJECTION: forcing a failure. [ 481.798023] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 481.813734] CPU: 0 PID: 20971 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 481.821642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 481.830998] Call Trace: [ 481.833595] dump_stack+0x142/0x197 [ 481.837238] should_fail.cold+0x10f/0x159 [ 481.841397] ? __might_sleep+0x93/0xb0 [ 481.845296] __alloc_pages_nodemask+0x1d6/0x7a0 [ 481.849978] ? __alloc_pages_slowpath+0x2930/0x2930 [ 481.855002] ? lock_downgrade+0x740/0x740 [ 481.859166] alloc_pages_current+0xec/0x1e0 [ 481.863494] __page_cache_alloc+0x248/0x3e0 [ 481.867807] do_read_cache_page+0x6d5/0x1320 [ 481.872217] ? blkdev_writepages+0xd0/0xd0 [ 481.876463] ? find_get_pages_contig+0xcf0/0xcf0 [ 481.881223] ? blkdev_get+0xb0/0x8e0 [ 481.884938] ? dput.part.0+0x170/0x750 [ 481.889006] ? bd_may_claim+0xd0/0xd0 [ 481.892802] ? path_put+0x50/0x70 [ 481.896238] ? lookup_bdev.part.0+0xe1/0x160 [ 481.901608] read_cache_page_gfp+0x6e/0x90 [ 481.905832] btrfs_read_disk_super+0xdd/0x530 [ 481.910358] btrfs_scan_one_device+0xc6/0x4e0 [ 481.914910] ? device_list_add+0x8d0/0x8d0 [ 481.919252] ? __free_pages+0x54/0x90 [ 481.923036] ? free_pages+0x46/0x50 [ 481.926766] btrfs_mount+0x2e3/0x2b28 [ 481.930558] ? lock_downgrade+0x740/0x740 [ 481.934690] ? find_held_lock+0x35/0x130 [ 481.938750] ? pcpu_alloc+0x3af/0x1050 [ 481.942625] ? btrfs_remount+0x11f0/0x11f0 [ 481.946847] ? rcu_read_lock_sched_held+0x110/0x130 [ 481.951853] ? __lockdep_init_map+0x10c/0x570 [ 481.956341] mount_fs+0x97/0x2a1 [ 481.959694] vfs_kern_mount.part.0+0x5e/0x3d0 [ 481.964172] ? find_held_lock+0x35/0x130 [ 481.968219] vfs_kern_mount+0x40/0x60 [ 481.972003] btrfs_mount+0x3ce/0x2b28 [ 481.975800] ? lock_downgrade+0x740/0x740 [ 481.979952] ? find_held_lock+0x35/0x130 [ 481.984016] ? pcpu_alloc+0x3af/0x1050 [ 481.987901] ? btrfs_remount+0x11f0/0x11f0 [ 481.992198] ? rcu_read_lock_sched_held+0x110/0x130 [ 481.997252] ? __lockdep_init_map+0x10c/0x570 [ 482.001786] ? __lockdep_init_map+0x10c/0x570 [ 482.006285] mount_fs+0x97/0x2a1 [ 482.009644] vfs_kern_mount.part.0+0x5e/0x3d0 [ 482.014241] do_mount+0x417/0x27d0 [ 482.017782] ? copy_mount_options+0x5c/0x2f0 [ 482.022240] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.027260] ? copy_mount_string+0x40/0x40 [ 482.031492] ? copy_mount_options+0x1fe/0x2f0 [ 482.036056] SyS_mount+0xab/0x120 [ 482.039494] ? copy_mnt_ns+0x8c0/0x8c0 [ 482.043373] do_syscall_64+0x1e8/0x640 21:57:30 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:30 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 482.047329] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 482.052182] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 482.057372] RIP: 0033:0x45ee9a [ 482.060566] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 482.068277] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 482.075550] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 482.082824] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 482.090085] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 21:57:30 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:30 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, 0x5010, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_NEW(r3, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x60000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x70, 0x0, 0x7, 0x0, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x7}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x7}]}, 0x70}, 0x1, 0x0, 0x0, 0x8001}, 0x40000) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r0, r4, 0x0) write$9p(r5, 0x0, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e21, 0x5, @rand_addr="4d18cd8f5c6dd2b1ac13819a7b0b5592", 0x9}}, 0x0, 0x0, 0x3f, 0x0, "b80a0ed63faed3dce3d192206b6b5a132a485c2e5993f3e729cf3a2785b7281ccda25b7e16496d6333426a97dd35320a94142a53d8f252b027607ca601c8138d630352e238c9f44772df58acc0ee0dd9"}, 0xd8) mount(&(0x7f00000001c0)=ANY=[@ANYBLOB="d7c96b85054116d7367ab5906e24da94042190b6d00542ffb914973f528dd9d24921e27126071a89d96fe97a73445a75e12dca7da570002d74169b11806b51b659b75e187a4c20ce15"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 482.097348] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000041 21:57:30 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:30 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:30 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:30 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:30 executing program 5 (fault-call:0 fault-nth:66): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 482.202974] print_req_error: I/O error, dev loop2, sector 128 21:57:30 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) futimesat(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={{0x77359400}, {0x77359400}}) [ 482.294242] FAULT_INJECTION: forcing a failure. [ 482.294242] name failslab, interval 1, probability 0, space 0, times 0 [ 482.314860] CPU: 1 PID: 21018 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 482.322791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 482.332160] Call Trace: [ 482.334748] dump_stack+0x142/0x197 [ 482.338370] should_fail.cold+0x10f/0x159 [ 482.342516] should_failslab+0xdb/0x130 [ 482.346478] kmem_cache_alloc_trace+0x2e9/0x790 [ 482.351140] selinux_parse_opts_str+0x42c/0xa30 [ 482.355802] ? selinux_sb_show_options+0xd50/0xd50 [ 482.360731] ? free_pages+0x46/0x50 [ 482.364346] ? selinux_sb_copy_data+0x21e/0x390 [ 482.369007] security_sb_parse_opts_str+0x75/0xb0 [ 482.373847] parse_security_options+0x4e/0xa0 [ 482.378328] btrfs_mount+0x2bb/0x2b28 [ 482.382114] ? lock_downgrade+0x740/0x740 [ 482.386246] ? find_held_lock+0x35/0x130 [ 482.390292] ? pcpu_alloc+0x3af/0x1050 [ 482.394170] ? btrfs_remount+0x11f0/0x11f0 [ 482.398430] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.403468] ? __lockdep_init_map+0x10c/0x570 [ 482.407964] mount_fs+0x97/0x2a1 [ 482.411336] vfs_kern_mount.part.0+0x5e/0x3d0 [ 482.415826] ? find_held_lock+0x35/0x130 [ 482.419876] vfs_kern_mount+0x40/0x60 [ 482.423666] btrfs_mount+0x3ce/0x2b28 [ 482.427475] ? lock_downgrade+0x740/0x740 [ 482.431609] ? find_held_lock+0x35/0x130 [ 482.435671] ? pcpu_alloc+0x3af/0x1050 [ 482.439562] ? btrfs_remount+0x11f0/0x11f0 [ 482.443794] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.448805] ? __lockdep_init_map+0x10c/0x570 [ 482.453288] ? __lockdep_init_map+0x10c/0x570 [ 482.457773] mount_fs+0x97/0x2a1 [ 482.461129] vfs_kern_mount.part.0+0x5e/0x3d0 [ 482.465611] do_mount+0x417/0x27d0 [ 482.469646] ? copy_mount_options+0x5c/0x2f0 [ 482.474055] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.479082] ? copy_mount_string+0x40/0x40 [ 482.483312] ? copy_mount_options+0x1fe/0x2f0 [ 482.487801] SyS_mount+0xab/0x120 [ 482.491244] ? copy_mnt_ns+0x8c0/0x8c0 [ 482.495123] do_syscall_64+0x1e8/0x640 [ 482.499085] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 482.503921] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 482.509096] RIP: 0033:0x45ee9a [ 482.512286] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 482.519984] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 482.527243] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 482.534508] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 482.541764] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 482.549020] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000042 21:57:30 executing program 5 (fault-call:0 fault-nth:67): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:30 executing program 4: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x10200, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r1, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e22, @local}}, [0x1ff, 0x994c, 0x1d37, 0x100000000, 0x4, 0x1be, 0xfffffffffffffc01, 0x5b4, 0x2, 0x10000, 0x7, 0x0, 0x280, 0x3, 0x1]}, &(0x7f00000000c0)=0x100) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000300)={r2, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x10}}}, 0xfffb, 0x4aed}, 0x90) ioctl$SCSI_IOCTL_SYNC(r0, 0x4) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000003c0)=0x84000) r3 = getpid() sched_setscheduler(r3, 0x5, &(0x7f00000001c0)) syz_open_procfs(r3, &(0x7f0000000080)='net/kcm\x00') syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0) [ 482.688464] FAULT_INJECTION: forcing a failure. [ 482.688464] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 482.702325] CPU: 0 PID: 21034 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 482.710228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 482.719585] Call Trace: [ 482.722272] dump_stack+0x142/0x197 [ 482.725917] should_fail.cold+0x10f/0x159 [ 482.730074] ? __might_sleep+0x93/0xb0 [ 482.733972] __alloc_pages_nodemask+0x1d6/0x7a0 [ 482.738653] ? __alloc_pages_slowpath+0x2930/0x2930 [ 482.743717] ? lock_downgrade+0x740/0x740 [ 482.747857] alloc_pages_current+0xec/0x1e0 [ 482.752168] __page_cache_alloc+0x248/0x3e0 [ 482.756532] do_read_cache_page+0x6d5/0x1320 [ 482.760927] ? blkdev_writepages+0xd0/0xd0 [ 482.765148] ? find_get_pages_contig+0xcf0/0xcf0 [ 482.769890] ? blkdev_get+0xb0/0x8e0 [ 482.773589] ? dput.part.0+0x170/0x750 [ 482.777472] ? bd_may_claim+0xd0/0xd0 [ 482.781310] ? path_put+0x50/0x70 [ 482.784749] ? lookup_bdev.part.0+0xe1/0x160 [ 482.789143] read_cache_page_gfp+0x6e/0x90 [ 482.793365] btrfs_read_disk_super+0xdd/0x530 [ 482.797860] btrfs_scan_one_device+0xc6/0x4e0 [ 482.802346] ? device_list_add+0x8d0/0x8d0 [ 482.806565] ? __free_pages+0x54/0x90 [ 482.810393] ? free_pages+0x46/0x50 [ 482.814008] btrfs_mount+0x2e3/0x2b28 [ 482.817795] ? lock_downgrade+0x740/0x740 [ 482.821925] ? find_held_lock+0x35/0x130 [ 482.825968] ? pcpu_alloc+0x3af/0x1050 [ 482.829841] ? btrfs_remount+0x11f0/0x11f0 [ 482.834360] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.839384] ? __lockdep_init_map+0x10c/0x570 [ 482.843920] mount_fs+0x97/0x2a1 [ 482.847274] vfs_kern_mount.part.0+0x5e/0x3d0 [ 482.851768] ? find_held_lock+0x35/0x130 [ 482.855836] vfs_kern_mount+0x40/0x60 [ 482.859642] btrfs_mount+0x3ce/0x2b28 [ 482.863424] ? lock_downgrade+0x740/0x740 [ 482.867568] ? find_held_lock+0x35/0x130 [ 482.871611] ? pcpu_alloc+0x3af/0x1050 [ 482.875484] ? btrfs_remount+0x11f0/0x11f0 [ 482.879708] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.884729] ? __lockdep_init_map+0x10c/0x570 [ 482.889217] ? __lockdep_init_map+0x10c/0x570 [ 482.893808] mount_fs+0x97/0x2a1 [ 482.897179] vfs_kern_mount.part.0+0x5e/0x3d0 [ 482.901659] do_mount+0x417/0x27d0 [ 482.905179] ? copy_mount_options+0x5c/0x2f0 [ 482.909583] ? rcu_read_lock_sched_held+0x110/0x130 [ 482.914593] ? copy_mount_string+0x40/0x40 [ 482.918838] ? copy_mount_options+0x1fe/0x2f0 [ 482.923346] SyS_mount+0xab/0x120 [ 482.926789] ? copy_mnt_ns+0x8c0/0x8c0 [ 482.930670] do_syscall_64+0x1e8/0x640 [ 482.934547] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 482.939377] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 482.944550] RIP: 0033:0x45ee9a [ 482.947720] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 482.955433] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 482.962738] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 482.970003] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 482.977314] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 482.984570] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000043 21:57:33 executing program 5 (fault-call:0 fault-nth:68): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:33 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000180)=0xa0090) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x1c9c380}}, 0x0) mount(&(0x7f00000001c0)=ANY=[@ANYBLOB="e5c05e57b18f0600897e5b9eb8a65506dbfe68903e29b8f6bb59db88957c65eeb5cb22c93d3633d44eaab986298ec4aa74698aeb1a5c4e9da34fe82713dd4a8b7fec6b265e8f96503cd7c683d71fb484ddc3a2d27094de23e832ab4e2ef4fe6c3aa0b45b615167dc070678fcd447f48c3ee06b00fd6ede17ce5542ed6b2a79"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:33 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_stats\x00', 0x0, 0x0) getsockopt$inet_dccp_buf(r0, 0x21, 0xe, &(0x7f0000000380)=""/251, &(0x7f00000000c0)=0xfb) openat$cgroup(r0, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:33 executing program 2: ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x408c5333, &(0x7f0000000040)={0x76, 0x2, 0x0, 'queue0\x00', 0x6fdf9aaf}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$sock_rose_SIOCRSCLRRT(r2, 0x89e4) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 485.136012] FAULT_INJECTION: forcing a failure. [ 485.136012] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 485.147937] CPU: 0 PID: 21062 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 485.155848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 485.165210] Call Trace: [ 485.167809] dump_stack+0x142/0x197 [ 485.171451] should_fail.cold+0x10f/0x159 [ 485.175619] __alloc_pages_nodemask+0x1d6/0x7a0 [ 485.180304] ? __alloc_pages_slowpath+0x2930/0x2930 [ 485.185336] cache_grow_begin+0x80/0x400 [ 485.189400] kmem_cache_alloc+0x6a6/0x780 [ 485.193547] getname_kernel+0x53/0x350 [ 485.197439] kern_path+0x20/0x40 [ 485.200875] lookup_bdev.part.0+0x63/0x160 [ 485.205105] ? blkdev_open+0x260/0x260 [ 485.209048] ? free_hot_cold_page+0x763/0xca0 [ 485.213593] blkdev_get_by_path+0x76/0xf0 [ 485.217786] btrfs_scan_one_device+0x97/0x4e0 [ 485.222454] ? device_list_add+0x8d0/0x8d0 [ 485.226695] ? __free_pages+0x54/0x90 [ 485.230534] ? free_pages+0x46/0x50 [ 485.235152] btrfs_mount+0x2e3/0x2b28 [ 485.239043] ? lock_downgrade+0x740/0x740 [ 485.243178] ? find_held_lock+0x35/0x130 [ 485.247235] ? pcpu_alloc+0x3af/0x1050 [ 485.251172] ? btrfs_remount+0x11f0/0x11f0 [ 485.255440] ? rcu_read_lock_sched_held+0x110/0x130 [ 485.260618] ? __lockdep_init_map+0x10c/0x570 [ 485.265123] mount_fs+0x97/0x2a1 [ 485.268568] vfs_kern_mount.part.0+0x5e/0x3d0 [ 485.273064] ? find_held_lock+0x35/0x130 [ 485.277134] vfs_kern_mount+0x40/0x60 [ 485.280934] btrfs_mount+0x3ce/0x2b28 [ 485.284726] ? lock_downgrade+0x740/0x740 [ 485.288875] ? find_held_lock+0x35/0x130 [ 485.292928] ? pcpu_alloc+0x3af/0x1050 [ 485.296815] ? btrfs_remount+0x11f0/0x11f0 [ 485.301057] ? rcu_read_lock_sched_held+0x110/0x130 [ 485.306246] ? __lockdep_init_map+0x10c/0x570 [ 485.310734] ? __lockdep_init_map+0x10c/0x570 [ 485.315322] mount_fs+0x97/0x2a1 [ 485.318681] vfs_kern_mount.part.0+0x5e/0x3d0 [ 485.323174] do_mount+0x417/0x27d0 [ 485.326715] ? copy_mount_string+0x40/0x40 [ 485.330938] ? copy_mount_options+0x18f/0x2f0 [ 485.336032] ? __sanitizer_cov_trace_pc+0x4e/0x60 [ 485.340975] ? copy_mount_options+0x1fe/0x2f0 [ 485.345468] SyS_mount+0xab/0x120 [ 485.348920] ? copy_mnt_ns+0x8c0/0x8c0 [ 485.352930] do_syscall_64+0x1e8/0x640 [ 485.356827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 485.361680] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 485.366907] RIP: 0033:0x45ee9a [ 485.370091] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 485.377809] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a 21:57:33 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0xe) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, 0x0, 0x0, 0x0) [ 485.385127] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 485.392439] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 485.399698] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 485.406955] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000044 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0xe) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, 0x0, 0x0, 0x0) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0xe) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, 0x0, 0x0, 0x0) 21:57:33 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="2891d59a7e95ce3d8b19570a8e71554149abc9305dc9592d227e4c57973e6af4e06db3ff6c24a9c556b49524df0ca9c4cebdf4f1fa6b12c206b8e2659d228237363a332738439d028e5565aa745a"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:33 executing program 5 (fault-call:0 fault-nth:69): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:33 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) dup3(r0, r1, 0x0) 21:57:33 executing program 4: setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, &(0x7f00000000c0)={0x1}, 0x4) ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f00000014c0)={0x0, 0x80, 0x10000, 0xffffffffffffffff, 0x0, &(0x7f0000001480)={0x9e0901, 0x1712, [], @string=&(0x7f0000001440)=0xc1}}) setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, &(0x7f0000001500)='\'^\x00', 0x3) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001400)=0xffffffff) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) mount$9p_rdma(&(0x7f0000000340)='127.0.0.1\x00', &(0x7f0000001600)='./file0/file0\x00', &(0x7f0000001640)='9p\x00', 0x180000, &(0x7f0000001780)={'trans=rdma,', {'port', 0x3d, 0x4e20}, 0x2c, {[{@timeout={'timeout'}}, {@common=@noextend='noextend'}, {@rq={'rq', 0x3d, 0x80000001}}, {@rq={'rq', 0x3d, 0xb5e8}}, {@common=@noextend='noextend'}, {@common=@afid={'afid', 0x3d, 0x9}}, {@timeout={'timeout'}}], [{@subj_role={'subj_role', 0x3d, ')['}}, {@smackfsfloor={'smackfsfloor', 0x3d, ').cgroup'}}]}}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x4000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000001880)='/dev/vhost-vsock\x00', 0x2, 0x0) ftruncate(r3, 0x5) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000001680)='./file0/file0\x00', 0x10000000000ff, 0x3, &(0x7f00000002c0)=[{&(0x7f00000016c0)="e1778395c7c14401dc8d8ad0361f1515bd037bb06cfbace6e56a5a86e9dc23e0776fec60a4100aeed2da2c77aba4f0", 0x2f, 0x1}, {&(0x7f0000001700)="afcbf3079eb195d423b51249a87292ea2e0c60406e5157af858b237031d5535c464491cc53d3c248b19cdec26e3f6fbf379f2c2df60fd51cbdc60bf536ced3992087e81aa3d322c24d086fd187b00b3804a4fae30ec4541a", 0x58, 0x8}, {&(0x7f0000001580)="326f87dee9a07276418972faf4db80367ab11112a8789999b5c6bdc42389e84ccc665260c7995553d638f13d2bf6c2deef59ff0100f4ffffffff140617a9c380fefc37e5f4c0b888d36e3376814884b899a50400000000000000b024acbaafa3d38f8e30a140a6229b393d76e6b10e", 0x6f}], 0x0, 0x0) syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x1, 0x5, &(0x7f0000001380)=[{&(0x7f0000000380)="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", 0x1000, 0x4}, {&(0x7f0000001a00)="a07b6419cbc520d2bc147cb0b67ccd24c875db9b91ff038054c38683642ef47959e31c801aca7046aabae17be13eea59e3b88b34954592956a1b26309b11b3333f14e712f5a8f4c6b87877564d5c0a0d088cdf752566fe31b9c719fac7c6355d3e13e6fafe63c8c1f09303959e015ab9397f3e0268ed3bc1324a67ebd197c6133e7f7041039c720d4c8bee96bbf334af471174ad406227a69de5fe3d72c4d9cdaa20ac75f2ebb20a601ff5222423849a11e7743c6a1602436985a80c1b85dca0de415c27c1bc6396b674", 0xca, 0xfff}, {&(0x7f00000001c0)="83c4e829db06f670676570df174e32c343e26adab3def20ea8b91c26c188f46db919ffb88946a1de202cacdb554dbf74e553f5abe8ad277049192685d401051973dd943d1ab728d7d591bac8cee09d6c", 0x50, 0x3f}, {&(0x7f0000000140)="b3f6bc079f7d4b468559927509df245ac74bf8ca7a91104cfb49034586bf2b4f0ed04871a398698d76699938", 0x2c, 0x10000000000001}, {&(0x7f00000018c0)="675159a544bea5436f71ac117945105a16823a7c521236551b9e78793ecc38eaa0a31cd0b609f17b41ef918328e2e0cdf4cf9936cb9bb95ed6b5ed5289fc19cbebf8211b79c5fb25b7ff3a792d83ae7366b286a2e79243c47b2783fd6e85d1a6764da4bbff7b145207a25de0974f6086ba87df594b1dae981600de422f7fe7cc374ffe50367d21a1001b95726aa5eae6efb7ec09c543ed2cd75eff24d22fbb3cc20fb4349c02c9260e2753de280cfb66c882c870d432588f0ed23c72f4196bc53b3ff38c3631d1ed35785f0d2ad60e69a852ad817f3c306f7a73ec47450901ac6a1fb95c8d63ab299450522bc82ca3c381fd2105de2afd77db7219e1fce78d73480db41b82002ebac51b0010a2de0c50a8a6e1fbfc2ce1f1e4f91c57cc0c4092a5f0ccf2a1c711fb94e1773ef0a2a87173246724cdb7af", 0x137, 0x4}], 0x1000, &(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f0000000100)=ANY=[@ANYPTR64]]) [ 485.792571] FAULT_INJECTION: forcing a failure. [ 485.792571] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:57:33 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000040)=0x8, 0x4) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="00b342f24e5f40b1cc941f79b968a3bca63a86bcd6d4ab27c1a1ab48b6940cebf841c5734cb28554612cd5c9f0db2e7283a14b12ebb894fd35017ca914203bb3ba9f476ee4386c169fa855f09cff0aad000000000000190c0429ae783659fb657750"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r1, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000340)={{{@in=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@remote}}, &(0x7f0000000440)=0xe8) mount$9p_xen(&(0x7f0000000200)='syz\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)='9p\x00', 0x1000000, &(0x7f00000004c0)={'trans=xen,', {[{@msize={'msize', 0x3d, 0x7f}}, {@fscache='fscache'}, {@debug={'debug', 0x3d, 0xffff}}, {@mmap='mmap'}, {@privport='privport'}], [{@appraise_type='appraise_type=imasig'}, {@fowner_lt={'fowner<', r2}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x30, 0x3, 0x62, 0x38, 0x36, 0x33, 0x62], 0x2d, [0x32, 0x65, 0x39, 0x31], 0x2d, [0x6, 0x61, 0x59, 0x36], 0x2d, [0x63, 0x62, 0x33, 0x63], 0x2d, [0x31, 0x61, 0x39, 0x0, 0x65, 0x66, 0x62, 0x61]}}}, {@euid_lt={'euid<', 0xee00}}]}}) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 485.843105] CPU: 1 PID: 21122 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 485.851157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 485.860644] Call Trace: [ 485.863292] dump_stack+0x142/0x197 [ 485.866992] should_fail.cold+0x10f/0x159 [ 485.871259] ? __might_sleep+0x93/0xb0 [ 485.875154] __alloc_pages_nodemask+0x1d6/0x7a0 [ 485.879837] ? __alloc_pages_slowpath+0x2930/0x2930 [ 485.884851] ? lock_downgrade+0x740/0x740 [ 485.889135] alloc_pages_current+0xec/0x1e0 [ 485.893462] __page_cache_alloc+0x248/0x3e0 [ 485.897788] do_read_cache_page+0x6d5/0x1320 [ 485.902211] ? blkdev_writepages+0xd0/0xd0 [ 485.906441] ? find_get_pages_contig+0xcf0/0xcf0 [ 485.911191] ? blkdev_get+0xb0/0x8e0 [ 485.914902] ? dput.part.0+0x170/0x750 [ 485.918869] ? bd_may_claim+0xd0/0xd0 [ 485.922764] ? path_put+0x50/0x70 [ 485.926233] ? lookup_bdev.part.0+0xe1/0x160 [ 485.930640] read_cache_page_gfp+0x6e/0x90 [ 485.934990] btrfs_read_disk_super+0xdd/0x530 [ 485.939488] btrfs_scan_one_device+0xc6/0x4e0 [ 485.944862] ? device_list_add+0x8d0/0x8d0 [ 485.949101] ? __free_pages+0x54/0x90 [ 485.953001] ? free_pages+0x46/0x50 [ 485.956717] btrfs_mount+0x2e3/0x2b28 [ 485.960616] ? lock_downgrade+0x740/0x740 [ 485.964850] ? find_held_lock+0x35/0x130 [ 485.968914] ? pcpu_alloc+0x3af/0x1050 [ 485.972810] ? btrfs_remount+0x11f0/0x11f0 [ 485.977048] ? rcu_read_lock_sched_held+0x110/0x130 [ 485.982072] ? __lockdep_init_map+0x10c/0x570 [ 485.986623] mount_fs+0x97/0x2a1 [ 485.990022] vfs_kern_mount.part.0+0x5e/0x3d0 [ 485.994522] ? find_held_lock+0x35/0x130 [ 485.998587] vfs_kern_mount+0x40/0x60 [ 486.002391] btrfs_mount+0x3ce/0x2b28 [ 486.006195] ? lock_downgrade+0x740/0x740 [ 486.010336] ? find_held_lock+0x35/0x130 [ 486.014397] ? pcpu_alloc+0x3af/0x1050 [ 486.018290] ? btrfs_remount+0x11f0/0x11f0 [ 486.022554] ? rcu_read_lock_sched_held+0x110/0x130 [ 486.027580] ? __lockdep_init_map+0x10c/0x570 [ 486.032085] ? __lockdep_init_map+0x10c/0x570 [ 486.036659] mount_fs+0x97/0x2a1 [ 486.040035] vfs_kern_mount.part.0+0x5e/0x3d0 [ 486.044612] do_mount+0x417/0x27d0 [ 486.048159] ? copy_mount_options+0x5c/0x2f0 [ 486.052560] ? rcu_read_lock_sched_held+0x110/0x130 [ 486.057582] ? copy_mount_string+0x40/0x40 [ 486.061828] ? copy_mount_options+0x1fe/0x2f0 [ 486.066327] SyS_mount+0xab/0x120 [ 486.069772] ? copy_mnt_ns+0x8c0/0x8c0 [ 486.073667] do_syscall_64+0x1e8/0x640 [ 486.077556] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 486.082407] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 486.087593] RIP: 0033:0x45ee9a 21:57:34 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 486.090790] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 486.098533] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 486.105924] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 486.113416] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 486.120785] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 486.128155] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000045 [ 486.307164] 9pnet: Could not find request transport: xen [ 486.338861] 9pnet: Could not find request transport: xen 21:57:36 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:36 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:36 executing program 5 (fault-call:0 fault-nth:70): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:36 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = syz_open_dev$audion(&(0x7f00000003c0)='/dev/audio#\x00', 0x10000, 0x28000) recvfrom$inet6(r0, &(0x7f0000000400)=""/26, 0x1a, 0x2000, 0x0, 0x0) 21:57:36 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0xc0080, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={&(0x7f0000000580)={0xac, r1, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_DAEMON={0x0, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x0, 0x5, @remote}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x0, 0x6, @rand_addr="96f0c9df9cf44cfcf9a7d4c4a99e9f03"}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x0, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x0, 0x8, 0xd4}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x1, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x18f4}, @IPVS_CMD_ATTR_DAEMON={0x48, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'macvtap0\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x80}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x5}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x41f3}]}, 0xac}, 0x1, 0x0, 0x0, 0x440e0}, 0x4004000) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="9fe0746c6e2d5d002d3a21029cb5ab41dd8c420121808b665b6a2d165e509f22d60d590e2d336610d8336522fe57ad81fa97b06cb5591dc69370bc52e949ba777a1ac970fd4336a90e7904df0745852dedfa176820b86b05ead4398a657a5ec7b3f3e7cc52fb8893d9201afaf6858acf42955107d616f06a632b2f696c683db1f89567d2c75ba8b04d0bdf7f1f511c7f2a7743753dcaf0159dc2c83c651695e02ac960878cdf48cc5a5a1c7798f40da5cf48734774c0a99e19fe311237afc8a761434e2545a7"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) bind$netlink(r4, &(0x7f0000000400)={0x10, 0x0, 0x25dfdbff, 0x20000000}, 0xc) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:36 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x800, 0x5, &(0x7f0000000280)=[{&(0x7f00000001c0)="1f8aee93784ef4a910944379e062b04f5de6aba7081034ff1208074a4e5bfd365b696e7efe20f8a29e6f1ae007d4f1e5624f7dba777041470d29d833357999885540a3d710e2f427c40b5190b3965a023228a546c644fd557d87eaf7cdf753ab8719d11ab7f10cae20aa9c28ee5d68a2b73c986dbbb517393806e7e89d53da40bed538999ef34edfbc7ff52e0cc6fd68eabc1107daea6d61d4", 0x99, 0xffffffffffffffe1}, {&(0x7f0000000380)="d1bc571fe8c74c583ef4ff9b04ad7b2b6abc3f66e35a5ab12b2c554b301e88ca94bed59a1941363ea443b1af39934169e0a7f9973769dc3db52dcfbe785a6d7b65799cd42a00e596d0fb319ca99d1a0f63d77372184ce53e7e381887b69edf47ea1ddcc75fc338426b4e46fc433a58773d416fb4e31172ae57fd004310d3691b834d89c164f785cdf04fb8ff35b49bf7b1ea47f3", 0x94, 0x10000}, {&(0x7f0000000440)="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", 0x1000, 0x100000000}, {&(0x7f0000001440)="95f356b827cfb2e3d523c6dce84aabcbbb14390316425fd489442ce4589eafb38972678c32ffb5c725192d2a83959421ffe7b48c533b048d88f63136aa7f4eb0b6e31cee6535d8bc437abf899d9bffaebb7bceea1d1ddd39f94e52515e0a19a97b20083013bebbd9b7787a3da3728cf68aba7b7d181b2a3d7fcbcfeb210e7eee4b51d5fab15fdf8d28750bc0d76564a3091c226618bf9a61305ecd4eb4f294c5f57ce806ada00c4cd7ab43e249604695bbadea665417dc9f2ab9998253aa390b58d6b0b48f8ade0731a09022e4cb18527a3b981809414b9f2867655c760d39c684389b1e80149b392c610179ec51db560b143ceb955c7b89e1d1ad0731ca482b8e39969728db7133591f7025129e60633f7328715bad97e737f8a41a65fac794c336dbca7bc0ab9257e6ac87da418331549cb71fa7038c8aa12b893a6d7a8b8d2beebf44ec84e461edd6a6d06af7b498f5dc7c3329309880ee2bb594139a33766dce766e61ca9aea7473c11f8ebcc03b2c05315ddb0afd36fedff34944169e656ccddb1530d474fefd219c3e60257d4181704b15f9669ef7b9e75ad1e0df196702e21f2c97eb8a440692ee796a621adba4728ff65df4d7c63f78f8e728b77d51f2ce50bec188ffcfe5910caefe092e00dd93315d22f9b8c51a83b3b9c8fcf677eaaa62191ad7879accf7a40b0764f35529f065d7f0511484cddf65dd2fc07bd0c0c412d08cb8a95cbb4d29b2a3da5780b6d86ed67e4b8eb6d5e01bdeaa66fcfc54b1b49633c06d59fc3f8340d2af6f1e966c629d19990afc5d1adb4059ccb69c40448b086dff632e59f4a0fc06d6b8f59452a318800fb4883a13f965fb6828498c4b94a303dc146ea4b4089edfbe66ee8aa7d18db1c19e232fa15719be3e7049ad9492645c91d123502c0977dfd9389e4c205a2e513461fdf42e5747beafd533259e5fb04bd123e2727871f76ce08dd5e2d0cc3d4a7524839358e34c84830b96fbaca3a3b519ce8e3eb9b69b59b5ad080b6d4b69d9ecc67f9ab57d2ebd7cf77952b38de3bc0287e13a26448a1e2d9f00930c107bd9b539b8f9994559fe9c2ae9d112f61278fc9deb2f10c1ae3e7555377daa2a67e86857d41654d07c5ddde6b056668cfe615d52c0566602ffaac3b87637edcabed87f6096c0629bf94d0b76f457318ae2b2b4d2365e5f93c8913522c1b07c302164e98844ff07fbd2c74e02462f2be9cbf3f1430ea8aa380b035bcb67bdb4bcef519ac34b6748ce6d98a653292466714c4d5c53f60adb28325b4170c4e564b33a67e81b724ed96677f16a67638d0c6546b235964fd39affc23e7247ca10a1d188e1e352110e270d84929f56fba3593f2e07e45f99f65478710944be389b2c097fadb34fcc6d3202fbb1f71a19d6e7837b3d4eebc4a037f4de533abe79ea9ec8874a5bfa40c894f8246a3894a1e2b339a86663fa404ae713b0bb1877ce5b610954074fc3dc6427f7e965bbc74805ce68ecf0e7383d662302ce858bddc44387c4aff81a226d440a1fcafca13aa2209a06e495601a2c8d656ea25e40619fe4bc087b34c6389f15c33dc3880d05e386c34dbcd90e46449128b99fad1fceb81f9d02681782a819eec389e371ff582019724bf0b0bef3c08aea88a11d08c5e99687038be65758b111e61b81fe11ddb009716d2139cb167567efd66c4eaa60fcb53024e55667bed062cc00fb2a66bcd316a445d465f552f6c616c5ed42f88ee0a375e6f0f0a6088f3a4e6e37af7a8e6ccd2e9166107ed69ff977a9e2d4ea96673a3015d4b09e4cdff3f87eb28d286ee317494f13586d3e6cb93a8c6505f80e7772aff0831d8be78d982d349734c7ae727bff04bf6ed5de01961ac3509e13c4d3b6503742d9b766d3f3e351bf4a7d043077d16a81b27ffb5d9488943df79ba1ceaf3115df9ace1813c5d3bf6c3e892932b2dbcf8178d1b267b0d6717b38de44828db02b352531e25c9862a5177c93cf251fac9c63c66a42ff7ff0c334a72a76900de330246f1155b42226e4d5ad93fc1c1a2069b63fb88eb710a4afacb621d38e2d3992d20bc210167c63c29dbb50f08f279ffb17d79975667b9bd80356f6ce7a88d294976e2941b93f95845e939622b24715c2344d439c136a6381c9781f3e73d18068f84e2cf125795fee9b4d3c4d23739f77c80947ed207af2babc25d5f37e85e8d230f7ab7f4d94c6be1e045bf4b1d0b2def8687d24dee2119f3edcf2004a9f857eb172bda24c3499157548b92d9aba39cc7491c47b060ae7c1a4fa09f6eece4058b5dcacc0c4f28cadff768c3d8481e9d97c43940e62fbd8837a85b6588594bc30d6d03bae178fa8c0d737ff264950f69d1b1c5e6e497f9b302aa25a5713ade45c947ee8d786099fbbbfd5e1cc972a14c8c584893de21a91c843160f33e1d9239c9d7c7758a37a4e6737b9bc0459517af66ce05206a23f36036fbd8a09102d2908129a7fb3642a057f4903af16e7ecd4c2455662e9cba4c737a166597fb93a4aa0a88ca6f5adf985e57fdb56d047e43ea1a2c465a159144fcc3c45ad3803539784ce30c81850ed7aede523e2a90922cabd37264aa2466359b30117933c9727b7a3ce9e710c5f2d51484fb86a5fcd7830eb8f30485d9bc3de7bea5fdf2167cbcf0d7d13dda46efe88994fcd69ec0d381d54b0221b1879ff7ef1b2f88403b033726df6072b22a7903070b7423329d385987b9eabae3d453253f85febfbd2dd99873876d28331612cd15b7ba7a68acfe418650e147a466c0f9eddb35b77af7cc840f362949d9d02b6d9fd07cc4042e5bda8a4146f2fdf087aecc9a015fe3e910a7cb01c9dc3ae9f04e44d7f038caf29bcc98dce7cdd7e3255ee392674793f23cb1cf83256ab170cf2889de434637599d9a300df611a5d0652a8329ca0aee4fd817711ad65d47b1dbcd6ed888d363c5fa34faf5b68a62e93ebc57e44dbf25c31dcb6612c606703e1dce7b847973a4683aceaebf0123a8476c3ae1ac16ff7de304de12939bb226ed7fbb279c826ad029506439817c401fe1f61b945be24c0e771f60a4e4c5ca268ac40bd9cf60dec35d462126ad5732c0904b9306e4daa427ec858044aee5b4efa71de48c8411918968c1665fcca3a4e893b48ee7555849e95590f3ccd42bad43f39f9bc9e533f98fb3165a2bc37f6a30098db3a5482bd25c6d6a2ed7e74501e476fb03ac300a03c478e87a798cd7a0b0c2e3a340fefda5b9f5c0d185d0bb7546388d211ad0f074110693794e27dbb938e329dbacbb4f367454ebc76417d57babdd754bae0ec58a408357878e3f1ff6b77bb54bf46aa1296466988ab624adb1b0a59986a0f81f3f2da49069ffcb78f4a33a7a813891ea016f380ce4c93779607e87efba82ef6173f3ec36fef84ee9f5d7b8226c7eebf755eb0562c8b11c8dfdc51eb9a4f9f69a0cdca0a3cb3427496fee9cc06f4beb38a49835d8b06e10846808c3755027f27b80a10f7f944937a37b9e9be4f5a3228203a7f625c24e30fa8dfbc88c4e23d42bf71abce7663edef5dd34e3eb7eb6e96d743492fa4d399c463194a90c94cf196b6e7f84b6f1e8b2a238d6379c2a99aaffc7319e016c01d6a50ac6d39ff95b0b796642a837472267185fdc07227afc40986b7bdd9aa2bf6761a5996440b9bc298f5354d02f7608bb0ad37c237c41d5af6ea963612b2299480b4ae0a7ba0a13f4a37c2bf03321579df27594e6047d29183fb3316a565fed15263a656253046f8bd8216b0cc23cf2cf492f40d3a272d44cfa4fc3dc03a809de9c31a7b3859134f7cf5b2be54a5dce6796e0e703db018947a5bfdfea6c19ee0a2db99dfc5b4be3c56edd0cd304777f7f343cbf650e670c3ee1e963a5ed8237e4f9da590e470c92359d523cf86a5f53ca710a6fe1e4209a16103a7e2a2d8c5b04992c6808efb54e17c820d17ac410ea90df16c1d04c138999cd834af5150b90ce7781eff42c18bebb3c793003046128b58b9d9e7b62775eb35552cbe3ac041b4e046c436b92fc50204a281e8237b6763ed191af2717e5f1e80bdbb0ceff076d5dbcff4a67372881dfa323125beb94af60f8cc1dd45b0af9119a5d61ecd1b902131338ae22071f4e198c40b9c4e3a487c8de5f1d9f4e0fcfaec24c7656c43654d83ae4fcb61f4071a9c74ad31b6381e729c553ad6cff89fbe61123c1b47ff0826c295796809a8c09a886d35460445bd566fed0f4188d83ddddc6de0509b7ddaef8efb2b49f2f81467da2e5d5aaa4d5d111dac1927b7ab5f8898b88679fc11b7bd1c846291986de173422eceb21f561a3946477b928683ba076bc6066aa3b22217f08d7ea47306405f51a6e82ba996e33443a162dc4f9cf4b30bee46f55c542a2233377662ac9865b8aaa601fa359ead3112b49402eea49e5bd947ebb08cf6142bc60664abbbbe70f6d467b6077b0d7ba0f969326d691d0d371a6e4b123b7fd7b546bbfafadcda6067287ed05a933f4202a62ff4fd09cf35fe675082e4477a30bf96e67b35e490a294ef2271ca5ccdce16fabb71878f7f4ffd0433aabfe4dfcd9f274a60b5767138e9f523d23f4e5c79e74d1ce3d9afdb394395bb83dbac031710b916443471ced0fa60f31dad746aa9cf8182096670203de30cd76c1e942aeb46d438275181cbfbdb7e4b76da1fd9f8312c2af5a042b1025cce3f2d7573bd36bd15e027404645bf11f53c9336b21ba9165bbb83ce8ae4c92f7ee8e14604cd1433d1e832464d18bf4d892fbdcc9b5290d233da3694a4b639c7bc5289a4d3fa4ef6c4d83422fe42861adde65f97f29ba0211d3324696cf3570cce09170857341963191768742ff508c0fead6e7b594e0a2f6e20a3b02252c696bd543c0a1ad5f423496b65ae2dced13aa0e939a560aedd1ed8b1d8edb344ae2352ab2e60bad2a2a9e5ef62e5fa179c4a2f365968782ed6dc2be827a5652502518fcb429f5bdf7eaa1bd8fe034ba4bcd208a058d115f57fa4f5aaef39146dc9bd1f275889f0d9b72d7ed14d6b5b773ada58b9082356b39c879c0f0ef64a21895dedba67bdda27ffbac6a692fe49024b8ac9048632ba3114a5ab2521af1983239c7ed68c2eb48d0b3711870475c69e4ba45edc428b9462df31dfea10e9f2aca158050fa8bade530fac56966cce0285297bf58a04a8faed34943e3f6bbba6b84af2e0e451034914b390ae9bd7976fad53a9b3b735c19e3b695c057cf4b81123a914af45a2cbd083703e67e4834f49880a713cbf4e71a8c80707d7dd6d5453cb2aab818b99c69c75daa4253d5d93ab243a838a09b3a96e36739b12185ccb02074fb7b87b4895e750e31d9726e30480c68d2ad05f26d6df9ee224d90fd607d280a224228a859f4b46b4168a71e0d3c9b702b9df90f2b457bfefb2e8f059ddeaaa753e0d0278ed022452c4d2fcc48468820b7e81c0fab51a540e4dd6aa7f42d98346e0454ddf3236d241cdbcef59927eea7e848f9b8401995d5c8cb91aee75950382577bcbfad7b680a9b469073c91b4ee881fa37beac893d6843cd74b36ae8004e2f8bb23ff776631ab4a756580b10065c9402f741b031ef32a0e4c3269627c39ddd19294fe3a8eb26e3a4437c342d1d07032436c123e1d6155a3189d792705834fc7c3c563226cf7bfcbe00b006b96dae50891e0228b613d96f7d749a6c9870331098ca2110ade87998cb37b8c8cc00bc84d6426f7a2e3f27f523e3bd70657465c4a7f0d6a41acd4c22b8f3fbe03d6a3ba420d5b30e64d29648cc8625e941877da54640df1ac86fa68d5a14ad553f587f4a575666bf11b", 0x1000, 0x9}, {&(0x7f00000000c0)="aa6ad49a4ac45f569598ff2926d5adcbe695554e819d1ef527b6763778ab286e0047a79dabe82575da50", 0x2a, 0x7}], 0x11480c, &(0x7f0000002440)={[{@discard='discard'}, {@commit={'commit', 0x3d, 0x8}}, {@max_inline={'max_inline', 0x3d, [0x38, 0x39, 0x25, 0x6d, 0x35, 0x30, 0x6b, 0x67, 0x63]}}, {@noacl='noacl'}, {@compress='compress'}, {@compress_force_algo={'compress-force', 0x3d, 'zstd'}}], [{@permit_directio='permit_directio'}, {@euid_lt={'euid<', r1}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@smackfsdef={'smackfsdef', 0x3d, 'btrfs\x00'}}]}) 21:57:36 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 488.497426] FAULT_INJECTION: forcing a failure. [ 488.497426] name failslab, interval 1, probability 0, space 0, times 0 [ 488.504346] ptrace attach of "/root/syz-executor.0"[21184] was attempted by "/root/syz-executor.0"[21187] [ 488.556238] CPU: 0 PID: 21179 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 488.564168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 488.570141] ptrace attach of "/root/syz-executor.0"[21197] was attempted by "/root/syz-executor.0"[21198] [ 488.573527] Call Trace: [ 488.573563] dump_stack+0x142/0x197 [ 488.573581] should_fail.cold+0x10f/0x159 [ 488.573597] ? __lock_is_held+0xb6/0x140 [ 488.597979] ? mempool_free+0x1d0/0x1d0 [ 488.601961] should_failslab+0xdb/0x130 21:57:36 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:36 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 488.605947] kmem_cache_alloc+0x47/0x780 [ 488.607488] ptrace attach of "/root/syz-executor.0"[21202] was attempted by "/root/syz-executor.0"[21203] [ 488.610018] ? mempool_free+0x1d0/0x1d0 [ 488.610030] mempool_alloc_slab+0x47/0x60 [ 488.610041] mempool_alloc+0x138/0x300 [ 488.610057] ? remove_element.isra.0+0x1b0/0x1b0 [ 488.610067] ? find_held_lock+0x35/0x130 [ 488.610077] ? create_empty_buffers+0x2d3/0x480 [ 488.610086] ? save_trace+0x290/0x290 [ 488.610101] bio_alloc_bioset+0x368/0x680 [ 488.655297] ? bvec_alloc+0x2e0/0x2e0 [ 488.659101] submit_bh_wbc+0xf6/0x720 [ 488.663154] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 488.668664] block_read_full_page+0x7a2/0x960 [ 488.673318] ? set_init_blocksize+0x210/0x210 [ 488.678017] ? __bread_gfp+0x290/0x290 [ 488.681973] ? add_to_page_cache_lru+0x159/0x310 [ 488.686731] ? add_to_page_cache_locked+0x40/0x40 [ 488.691579] blkdev_readpage+0x1d/0x30 [ 488.695504] do_read_cache_page+0x721/0x1320 [ 488.699912] ? blkdev_writepages+0xd0/0xd0 [ 488.704176] ? find_get_pages_contig+0xcf0/0xcf0 [ 488.708937] ? blkdev_get+0xb0/0x8e0 [ 488.712670] ? dput.part.0+0x170/0x750 [ 488.716746] ? bd_may_claim+0xd0/0xd0 [ 488.720612] ? path_put+0x50/0x70 [ 488.724189] ? lookup_bdev.part.0+0xe1/0x160 [ 488.728764] read_cache_page_gfp+0x6e/0x90 [ 488.733014] btrfs_read_disk_super+0xdd/0x530 [ 488.737518] btrfs_scan_one_device+0xc6/0x4e0 [ 488.742049] ? device_list_add+0x8d0/0x8d0 [ 488.746287] ? __free_pages+0x54/0x90 [ 488.750158] ? free_pages+0x46/0x50 [ 488.753786] btrfs_mount+0x2e3/0x2b28 [ 488.757595] ? lock_downgrade+0x740/0x740 [ 488.762017] ? find_held_lock+0x35/0x130 [ 488.766073] ? pcpu_alloc+0x3af/0x1050 [ 488.769957] ? btrfs_remount+0x11f0/0x11f0 [ 488.775158] ? rcu_read_lock_sched_held+0x110/0x130 [ 488.780271] ? __lockdep_init_map+0x10c/0x570 [ 488.784762] mount_fs+0x97/0x2a1 [ 488.788122] vfs_kern_mount.part.0+0x5e/0x3d0 [ 488.792607] ? find_held_lock+0x35/0x130 [ 488.796655] vfs_kern_mount+0x40/0x60 [ 488.800447] btrfs_mount+0x3ce/0x2b28 [ 488.804246] ? lock_downgrade+0x740/0x740 [ 488.808384] ? find_held_lock+0x35/0x130 [ 488.812441] ? pcpu_alloc+0x3af/0x1050 [ 488.816335] ? btrfs_remount+0x11f0/0x11f0 [ 488.820579] ? rcu_read_lock_sched_held+0x110/0x130 [ 488.825598] ? __lockdep_init_map+0x10c/0x570 [ 488.830252] ? __lockdep_init_map+0x10c/0x570 [ 488.834860] mount_fs+0x97/0x2a1 [ 488.838270] vfs_kern_mount.part.0+0x5e/0x3d0 [ 488.842759] do_mount+0x417/0x27d0 [ 488.846289] ? copy_mount_options+0x5c/0x2f0 [ 488.850699] ? rcu_read_lock_sched_held+0x110/0x130 [ 488.855713] ? copy_mount_string+0x40/0x40 [ 488.859958] ? copy_mount_options+0x1fe/0x2f0 [ 488.864450] SyS_mount+0xab/0x120 [ 488.867888] ? copy_mnt_ns+0x8c0/0x8c0 [ 488.871832] do_syscall_64+0x1e8/0x640 [ 488.875718] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 488.880556] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 488.885731] RIP: 0033:0x45ee9a [ 488.889006] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 488.896699] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a 21:57:37 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 488.903963] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 488.911525] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 488.918788] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 488.926115] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000046 21:57:37 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = fcntl$dupfd(r1, 0x0, r2) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r3, &(0x7f0000000180)="639d3c7451c67eb677979b924a8167fdd2cb19abc33c99dc105933c528ad359fba8a50eb6b9cf2f52f02f2e8f9cd1f39acf50b791bf0967350d237d2d35f7b0095037bedccffe9be63aa44ad17842c2f32365d4b684305a5113af8ba8c35210341d75ecaae953e1e9536818cda591c757656e74b5a7f0c1604424e70c1e08c076c026d9e086b21084734ce005b8d7192b582ca32514cb79979e2e1fb1cb20c859fe8bf3a6bba3f3f50ab391fc69767d06555042e410b7b33cc95bda3f9fdd48c7643b418", &(0x7f0000000300)="fa68318ca526461a0d2af36182f4a4fd0daafed26599e054bdda7935c0988e5511b60a35ed754bb7bed6a4631ae07123db10c430a3b0e267f27f7ee6b11feb3b38ee346d24efb6d13a2a9e15feb710b08b159aec23f4d9c1b639f1ba9ca6cf0495e3d8f2b22556dcc44f206a560c2601b289cbf7851fd5156334fdad8ed5be03ca198b9815eb02ed4b6e71aa74c068a6ba0972", 0x1}, 0x20) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:37 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:39 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28d836ae78", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:39 executing program 5 (fault-call:0 fault-nth:71): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:39 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/status\x00', 0x0, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0) close(r1) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={r3, 0x9}, &(0x7f00000001c0)=0x18) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000080)={r3, 0x6}, 0x8) 21:57:39 executing program 4: ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f0000000040)={0x5, 0x6, 0x4, 0x4000, 0xb8, {}, {0x5, 0xc, 0x35, 0x20, 0x1, 0x2, "08bb6692"}, 0x4, 0x4, @offset=0x4, 0x5, 0x0, 0xffffffffffffffff}) setsockopt$inet6_buf(r0, 0x29, 0x36, &(0x7f00000000c0)="3818bfa4cb9ce393bb4c5dbe73c76dd5f26aeb282441a3e7199d156a8b7d14885d087d87fd02286245a42e7eed0dc7f980e628b773d554eaa0", 0x39) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:39 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:39 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000340)={{{@in=@initdev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000440)=0xe8) syz_mount_image$gfs2(&(0x7f0000000040)='gfs2\x00', &(0x7f0000000180)='./file0\x00', 0x3f, 0x1, &(0x7f0000000300)=[{&(0x7f00000001c0)="90878fef97a848bd8223e333108a66b0e0f326398a8f6593e6f0a5644d501c6087aa76a7d4c52f4d31d0bb91b303fa6b0e5d13229e0d432b5f3a2da3516ff05407c2cbf16f8aa8e0e57e42700e957c085748cc91bb793e573a67c8aabde62e284ebd7ea5bcc1d1c6529b2bc9ecffedd0f7198debb1ed573107e398e199a8d163c6b00eb0d395d2287b98d1c1970e159825b85ececcd151bf95a1", 0x9a, 0x8}], 0x401, &(0x7f00000004c0)={[{@norgrplvb='norgrplvb'}, {@rgrplvb='rgrplvb'}, {@quota='quota'}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@dont_appraise='dont_appraise'}, {@euid_gt={'euid>', r3}}, {@smackfsdef={'smackfsdef', 0x3d, '\xecselinux\\^'}}]}) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:39 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:39 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="6653070000053c07bc3376003639405cb4aed12f000000000015ffa8ee79cfde47a110126616e608ceae47a825d86800278dcff47d010000805ae64f8f36460234432479aed75d4979e65199615607672c5995c9e79066e3ceb991601d4b8a6355ddc55368aa1938f1a25958737a63d7da119b71c4444cf18e38d2b30dbb21ad45e199815491be65cb154ad160c3b3ea8100cbb96a06f8b0dd4c6ad7ec5678f5900c32c2393f1d4010577a7ab0f26501c03a7c3e1d2104e948cd2a88309f748594f12bf72a1390327ba114af6071764f185268dac8650786bc215fe30e91909a321591f55cda9a591e6fc80509aa1bc925423384eeffffff6899ad18b091791dfb8be2d9c70315619ea42f0ecb26eb3c87702cf6d85025f46aef88118dd9b12c7b39791562be3e200d28", 0x12a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 491.531609] FAULT_INJECTION: forcing a failure. [ 491.531609] name failslab, interval 1, probability 0, space 0, times 0 21:57:39 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 491.578044] CPU: 1 PID: 21252 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 491.585977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 491.595335] Call Trace: [ 491.597936] dump_stack+0x142/0x197 [ 491.601592] should_fail.cold+0x10f/0x159 [ 491.605863] should_failslab+0xdb/0x130 [ 491.609852] kmem_cache_alloc_node+0x56/0x780 [ 491.614357] ? mount_fs+0x97/0x2a1 [ 491.617911] create_task_io_context+0x31/0x3d0 [ 491.622503] generic_make_request_checks+0x1505/0x1ac0 [ 491.627769] ? rcu_read_lock_sched_held+0x110/0x130 [ 491.632774] ? blk_cleanup_queue+0x610/0x610 [ 491.637222] ? trace_hardirqs_on+0x10/0x10 [ 491.641508] generic_make_request+0x7d/0xa40 [ 491.645901] ? save_trace+0x290/0x290 [ 491.649740] ? blk_queue_enter+0x520/0x520 [ 491.653960] ? find_held_lock+0x35/0x130 [ 491.658070] ? guard_bio_eod+0x161/0x530 [ 491.662204] submit_bio+0x1a5/0x3e0 [ 491.665818] ? submit_bio+0x1a5/0x3e0 [ 491.669813] ? generic_make_request+0xa40/0xa40 [ 491.674525] ? guard_bio_eod+0x1fd/0x530 [ 491.678576] submit_bh_wbc+0x550/0x720 [ 491.682463] block_read_full_page+0x7a2/0x960 [ 491.686955] ? set_init_blocksize+0x210/0x210 [ 491.691492] ? __bread_gfp+0x290/0x290 [ 491.695372] ? add_to_page_cache_lru+0x159/0x310 [ 491.700111] ? add_to_page_cache_locked+0x40/0x40 [ 491.704938] blkdev_readpage+0x1d/0x30 [ 491.708812] do_read_cache_page+0x721/0x1320 [ 491.713213] ? blkdev_writepages+0xd0/0xd0 [ 491.717441] ? find_get_pages_contig+0xcf0/0xcf0 [ 491.722193] ? blkdev_get+0xb0/0x8e0 [ 491.726077] ? dput.part.0+0x170/0x750 [ 491.729961] ? bd_may_claim+0xd0/0xd0 [ 491.733748] ? path_put+0x50/0x70 [ 491.737193] ? lookup_bdev.part.0+0xe1/0x160 [ 491.741593] read_cache_page_gfp+0x6e/0x90 [ 491.745827] btrfs_read_disk_super+0xdd/0x530 [ 491.750335] btrfs_scan_one_device+0xc6/0x4e0 [ 491.754842] ? device_list_add+0x8d0/0x8d0 [ 491.759087] ? __free_pages+0x54/0x90 [ 491.762886] ? free_pages+0x46/0x50 [ 491.766500] btrfs_mount+0x2e3/0x2b28 [ 491.770294] ? lock_downgrade+0x740/0x740 [ 491.774433] ? find_held_lock+0x35/0x130 [ 491.778563] ? pcpu_alloc+0x3af/0x1050 [ 491.782440] ? btrfs_remount+0x11f0/0x11f0 [ 491.786679] ? rcu_read_lock_sched_held+0x110/0x130 [ 491.791815] ? __lockdep_init_map+0x10c/0x570 [ 491.796440] mount_fs+0x97/0x2a1 [ 491.799802] vfs_kern_mount.part.0+0x5e/0x3d0 [ 491.804285] ? find_held_lock+0x35/0x130 [ 491.808338] vfs_kern_mount+0x40/0x60 [ 491.812137] btrfs_mount+0x3ce/0x2b28 [ 491.815937] ? lock_downgrade+0x740/0x740 [ 491.820078] ? find_held_lock+0x35/0x130 [ 491.824132] ? pcpu_alloc+0x3af/0x1050 [ 491.828020] ? btrfs_remount+0x11f0/0x11f0 [ 491.832254] ? rcu_read_lock_sched_held+0x110/0x130 [ 491.837260] ? __lockdep_init_map+0x10c/0x570 [ 491.841858] ? __lockdep_init_map+0x10c/0x570 [ 491.846339] mount_fs+0x97/0x2a1 [ 491.849715] vfs_kern_mount.part.0+0x5e/0x3d0 [ 491.854201] do_mount+0x417/0x27d0 [ 491.857730] ? copy_mount_options+0x5c/0x2f0 [ 491.862132] ? rcu_read_lock_sched_held+0x110/0x130 [ 491.867134] ? copy_mount_string+0x40/0x40 [ 491.871365] ? copy_mount_options+0x1fe/0x2f0 [ 491.875844] SyS_mount+0xab/0x120 [ 491.879284] ? copy_mnt_ns+0x8c0/0x8c0 [ 491.883159] do_syscall_64+0x1e8/0x640 [ 491.887030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 491.891933] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 491.897118] RIP: 0033:0x45ee9a [ 491.900293] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 491.908162] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 491.915422] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 491.922683] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 491.929938] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 491.937193] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000047 [ 491.947829] gfs2: invalid mount option: dont_appraise [ 491.963218] gfs2: can't parse mount arguments 21:57:40 executing program 5 (fault-call:0 fault-nth:72): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 492.061115] gfs2: invalid mount option: dont_appraise [ 492.080836] gfs2: can't parse mount arguments [ 492.131885] FAULT_INJECTION: forcing a failure. [ 492.131885] name failslab, interval 1, probability 0, space 0, times 0 [ 492.148723] CPU: 0 PID: 21291 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 492.156653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 492.166022] Call Trace: [ 492.168619] dump_stack+0x142/0x197 [ 492.172254] should_fail.cold+0x10f/0x159 [ 492.176507] should_failslab+0xdb/0x130 21:57:40 executing program 4: r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000080)={0x2, 0x40}, 0x2) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 492.180532] kmem_cache_alloc_node+0x56/0x780 [ 492.185048] ? mount_fs+0x97/0x2a1 [ 492.188613] create_task_io_context+0x31/0x3d0 [ 492.193210] generic_make_request_checks+0x1505/0x1ac0 [ 492.198499] ? rcu_read_lock_sched_held+0x110/0x130 [ 492.203528] ? blk_cleanup_queue+0x610/0x610 [ 492.207949] ? trace_hardirqs_on+0x10/0x10 [ 492.212193] generic_make_request+0x7d/0xa40 [ 492.216612] ? save_trace+0x290/0x290 [ 492.220424] ? blk_queue_enter+0x520/0x520 [ 492.224672] ? find_held_lock+0x35/0x130 [ 492.228825] ? guard_bio_eod+0x161/0x530 [ 492.232885] submit_bio+0x1a5/0x3e0 [ 492.236499] ? submit_bio+0x1a5/0x3e0 [ 492.240401] ? generic_make_request+0xa40/0xa40 [ 492.245067] ? guard_bio_eod+0x1fd/0x530 [ 492.249122] submit_bh_wbc+0x550/0x720 [ 492.252998] block_read_full_page+0x7a2/0x960 [ 492.257476] ? set_init_blocksize+0x210/0x210 [ 492.261953] ? __bread_gfp+0x290/0x290 [ 492.265824] ? add_to_page_cache_lru+0x159/0x310 [ 492.270621] ? add_to_page_cache_locked+0x40/0x40 [ 492.275454] blkdev_readpage+0x1d/0x30 [ 492.279339] do_read_cache_page+0x721/0x1320 [ 492.283863] ? blkdev_writepages+0xd0/0xd0 [ 492.288103] ? find_get_pages_contig+0xcf0/0xcf0 [ 492.292886] ? blkdev_get+0xb0/0x8e0 [ 492.296706] ? dput.part.0+0x170/0x750 [ 492.300659] ? bd_may_claim+0xd0/0xd0 [ 492.304454] ? path_put+0x50/0x70 [ 492.307897] ? lookup_bdev.part.0+0xe1/0x160 [ 492.312297] read_cache_page_gfp+0x6e/0x90 [ 492.316562] btrfs_read_disk_super+0xdd/0x530 [ 492.321050] btrfs_scan_one_device+0xc6/0x4e0 [ 492.325597] ? device_list_add+0x8d0/0x8d0 [ 492.329921] ? __free_pages+0x54/0x90 [ 492.333704] ? free_pages+0x46/0x50 [ 492.337321] btrfs_mount+0x2e3/0x2b28 [ 492.341112] ? lock_downgrade+0x740/0x740 [ 492.345363] ? find_held_lock+0x35/0x130 [ 492.349526] ? pcpu_alloc+0x3af/0x1050 [ 492.353523] ? btrfs_remount+0x11f0/0x11f0 [ 492.357765] ? rcu_read_lock_sched_held+0x110/0x130 [ 492.362801] ? __lockdep_init_map+0x10c/0x570 [ 492.367300] mount_fs+0x97/0x2a1 [ 492.370655] vfs_kern_mount.part.0+0x5e/0x3d0 [ 492.375190] ? find_held_lock+0x35/0x130 [ 492.379246] vfs_kern_mount+0x40/0x60 [ 492.383031] btrfs_mount+0x3ce/0x2b28 [ 492.386829] ? lock_downgrade+0x740/0x740 [ 492.390975] ? find_held_lock+0x35/0x130 [ 492.395028] ? pcpu_alloc+0x3af/0x1050 [ 492.398905] ? btrfs_remount+0x11f0/0x11f0 [ 492.403141] ? rcu_read_lock_sched_held+0x110/0x130 [ 492.408167] ? __lockdep_init_map+0x10c/0x570 [ 492.412666] ? __lockdep_init_map+0x10c/0x570 [ 492.417153] mount_fs+0x97/0x2a1 [ 492.420593] vfs_kern_mount.part.0+0x5e/0x3d0 [ 492.425084] do_mount+0x417/0x27d0 [ 492.428623] ? copy_mount_options+0x5c/0x2f0 [ 492.433024] ? rcu_read_lock_sched_held+0x110/0x130 [ 492.438029] ? copy_mount_string+0x40/0x40 [ 492.442331] ? copy_mount_options+0x1fe/0x2f0 [ 492.446824] SyS_mount+0xab/0x120 [ 492.450272] ? copy_mnt_ns+0x8c0/0x8c0 [ 492.454152] do_syscall_64+0x1e8/0x640 [ 492.458200] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 492.463067] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 492.468255] RIP: 0033:0x45ee9a [ 492.471432] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 21:57:40 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000406, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f00000001c0)) write$binfmt_aout(r0, &(0x7f0000000680)=ANY=[@ANYPTR64=&(0x7f0000000040)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=r2]], 0x8) ioctl$TCSETAW(r0, 0x5407, &(0x7f00000001c0)={0xfffa, 0x0, 0x0, 0xfffe, 0x0, "9f3e5f0b00"}) r3 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r3, 0x5412, &(0x7f00000000c0)={0xedf, 0x0, 0x0, 0x0, 0x0, "00000000000000000000000000000000001000"}) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 492.479128] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 492.486390] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 492.493705] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 492.500972] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 492.508239] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000048 21:57:42 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:42 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) r0 = getpid() mount(&(0x7f00000003c0)=@nullb='/dev/nullb0\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='bdev\x00', 0x4, &(0x7f00000004c0)='binder\x00') sched_setscheduler(r0, 0x5, &(0x7f00000001c0)) sched_setparam(r0, &(0x7f0000000040)=0x8) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000500)='/dev/ubi_ctrl\x00', 0x80000, 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, &(0x7f0000000540)={{0x1, 0x1, 0x1, 0x6, 0x800}, 0x1, 0x8001, 'id0\x00', 'timer0\x00', 0x0, 0xfffffffffffffffa, 0x7, 0x6, 0x8}) mount(&(0x7f0000000180)=@sr0='/dev/sr0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='binder\x00', 0x1041005, &(0x7f0000000300)='ramfs\x00') r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) ioctl$DRM_IOCTL_GEM_CLOSE(r2, 0x40086409, &(0x7f0000000380)) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:42 executing program 5 (fault-call:0 fault-nth:73): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:42 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x101000, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000280)) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r3 = dup3(r1, r2, 0x0) write$9p(r3, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000bf7000)={0x10002, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) splice(r5, &(0x7f0000000200)=0x4, r6, &(0x7f0000000240), 0xff, 0x7) sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x110000}, 0xc, &(0x7f0000000140)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x1a68}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000) ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000080)={0x111, 0x20, &(0x7f0000000380)}) 21:57:42 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = socket$phonet_pipe(0x23, 0x5, 0x2) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r4 = dup3(r2, r3, 0x0) write$9p(r4, 0x0, 0x0) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140)='ethtool\x00') pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r6, 0x407, 0x0) write(r6, 0x0, 0x0) accept4$packet(r6, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14, 0x800) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0x30}, r7}, 0x14) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000540)={{0x6000, 0x4000, 0x3, 0x0, 0x7, 0xf0, 0x81, 0x1, 0x1, 0x7e, 0x2, 0x5}, {0x1000, 0x4, 0xf, 0x40, 0x8, 0x60, 0x2a, 0x6, 0xfb, 0x9, 0x3, 0x7f}, {0x0, 0xf000, 0xc, 0x1, 0x0, 0x5, 0x3f, 0x40, 0x7, 0x5, 0x80}, {0x5000, 0x3000, 0x4, 0x0, 0x7, 0x1, 0x80, 0x1, 0x8, 0x0, 0x3, 0x3}, {0x100000, 0x4, 0x0, 0xff, 0x8, 0x1, 0x1, 0x40, 0x87, 0x4, 0x3f, 0x1}, {0x2, 0x100000, 0xd, 0x80, 0x8, 0x7, 0x3, 0x1, 0x1, 0x3, 0x5, 0x1f}, {0xd000, 0x0, 0x3, 0x7f, 0xe, 0x7, 0x1, 0x2, 0x7f, 0x5, 0x4, 0x1}, {0x5000, 0x3000, 0xf, 0xfe, 0xf4, 0x1f, 0x3f, 0xff, 0x20, 0x3, 0x2}, {0x6000, 0xf000}, {0x3002, 0x100000}, 0x80040028, 0x0, 0x102006, 0x4, 0x0, 0x2100, 0x10000, [0x100000000, 0x3, 0x40, 0x9]}) r9 = socket$phonet_pipe(0x23, 0x5, 0x2) r10 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') dup3(r9, r10, 0x0) setns(r10, 0x80) fcntl$setpipe(r8, 0x407, 0x0) write(r8, 0x0, 0x0) accept4$packet(r8, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000700)=0x14, 0x80000) ioctl$VIDIOC_QUERYBUF(r8, 0xc0585609, &(0x7f00000004c0)={0x8ae, 0x4, 0x4, 0x8, 0x7, {0x77359400}, {0x5, 0x0, 0x5, 0x7, 0x0, 0x7, "eb6bc1da"}, 0x2, 0x3, @userptr=0x80000000, 0x6, 0x0, r2}) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0x30}, r11}, 0x14) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xc0, r5, 0x800, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x40}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x8}, @ETHTOOL_A_LINKINFO_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x3}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0xfc}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x2}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x3}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x3}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xe}]}, 0xc0}, 0x1, 0x0, 0x0, 0x8000800}, 0x4) r12 = dup3(r0, r1, 0x0) write$9p(r12, 0x0, 0x0) ioctl$SNDCTL_DSP_STEREO(r12, 0xc0045003, &(0x7f0000000040)=0x1) r13 = socket$phonet_pipe(0x23, 0x5, 0x2) r14 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r15 = dup3(r13, r14, 0x0) write$9p(r15, 0x0, 0x0) accept$inet(r15, &(0x7f00000003c0)={0x2, 0x0, @multicast1}, &(0x7f0000000480)=0x10) 21:57:42 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:42 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 494.597716] FAULT_INJECTION: forcing a failure. [ 494.597716] name failslab, interval 1, probability 0, space 0, times 0 [ 494.645796] CPU: 0 PID: 21341 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 494.653717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 494.663073] Call Trace: [ 494.665677] dump_stack+0x142/0x197 [ 494.669397] should_fail.cold+0x10f/0x159 [ 494.673551] should_failslab+0xdb/0x130 [ 494.677529] kmem_cache_alloc+0x2d7/0x780 [ 494.681668] ? delete_node+0x1fb/0x690 [ 494.685562] ? save_trace+0x290/0x290 [ 494.689356] alloc_buffer_head+0x24/0xe0 [ 494.693407] alloc_page_buffers+0xb7/0x200 [ 494.697633] create_empty_buffers+0x39/0x480 [ 494.702039] ? __lock_is_held+0xb6/0x140 [ 494.709582] ? check_preemption_disabled+0x3c/0x250 [ 494.714593] create_page_buffers+0x153/0x1c0 [ 494.718995] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 494.724610] block_read_full_page+0xcd/0x960 [ 494.729028] ? set_init_blocksize+0x210/0x210 [ 494.733521] ? __lru_cache_add+0x18a/0x250 [ 494.737764] ? __bread_gfp+0x290/0x290 [ 494.741653] ? add_to_page_cache_lru+0x159/0x310 [ 494.746412] ? add_to_page_cache_locked+0x40/0x40 [ 494.751249] blkdev_readpage+0x1d/0x30 [ 494.755133] do_read_cache_page+0x721/0x1320 [ 494.759558] ? blkdev_writepages+0xd0/0xd0 [ 494.763791] ? find_get_pages_contig+0xcf0/0xcf0 [ 494.768561] ? blkdev_get+0xb0/0x8e0 [ 494.772282] ? dput.part.0+0x170/0x750 [ 494.776173] ? bd_may_claim+0xd0/0xd0 [ 494.780011] ? path_put+0x50/0x70 [ 494.783468] ? lookup_bdev.part.0+0xe1/0x160 [ 494.787917] read_cache_page_gfp+0x6e/0x90 [ 494.792175] btrfs_read_disk_super+0xdd/0x530 [ 494.797204] btrfs_scan_one_device+0xc6/0x4e0 [ 494.801713] ? device_list_add+0x8d0/0x8d0 [ 494.805954] ? __free_pages+0x54/0x90 [ 494.809741] ? free_pages+0x46/0x50 [ 494.813360] btrfs_mount+0x2e3/0x2b28 [ 494.817170] ? lock_downgrade+0x740/0x740 [ 494.821329] ? find_held_lock+0x35/0x130 [ 494.825387] ? pcpu_alloc+0x3af/0x1050 [ 494.829269] ? btrfs_remount+0x11f0/0x11f0 [ 494.833497] ? rcu_read_lock_sched_held+0x110/0x130 [ 494.838521] ? __lockdep_init_map+0x10c/0x570 [ 494.843022] mount_fs+0x97/0x2a1 [ 494.846406] vfs_kern_mount.part.0+0x5e/0x3d0 [ 494.850891] ? find_held_lock+0x35/0x130 [ 494.854943] vfs_kern_mount+0x40/0x60 [ 494.858748] btrfs_mount+0x3ce/0x2b28 [ 494.862548] ? lock_downgrade+0x740/0x740 [ 494.866695] ? find_held_lock+0x35/0x130 [ 494.870746] ? pcpu_alloc+0x3af/0x1050 [ 494.874623] ? btrfs_remount+0x11f0/0x11f0 [ 494.878860] ? rcu_read_lock_sched_held+0x110/0x130 [ 494.883915] ? __lockdep_init_map+0x10c/0x570 [ 494.888409] ? __lockdep_init_map+0x10c/0x570 [ 494.892898] mount_fs+0x97/0x2a1 [ 494.896256] vfs_kern_mount.part.0+0x5e/0x3d0 [ 494.900755] do_mount+0x417/0x27d0 [ 494.904297] ? copy_mount_options+0x5c/0x2f0 [ 494.908706] ? rcu_read_lock_sched_held+0x110/0x130 [ 494.913720] ? copy_mount_string+0x40/0x40 [ 494.917957] ? copy_mount_options+0x1fe/0x2f0 [ 494.922442] SyS_mount+0xab/0x120 [ 494.925894] ? copy_mnt_ns+0x8c0/0x8c0 [ 494.929884] do_syscall_64+0x1e8/0x640 [ 494.933771] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 494.939573] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 494.944779] RIP: 0033:0x45ee9a [ 494.947969] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 494.955769] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 494.963042] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 494.970306] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 494.977591] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 494.984857] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 0000000000000049 21:57:43 executing program 5 (fault-call:0 fault-nth:74): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:43 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) write$FUSE_GETXATTR(r2, &(0x7f0000000040)={0x18, 0x0, 0x1, {0x9400}}, 0x18) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 495.170692] print_req_error: I/O error, dev loop2, sector 128 [ 495.188024] FAULT_INJECTION: forcing a failure. [ 495.188024] name failslab, interval 1, probability 0, space 0, times 0 [ 495.199394] CPU: 0 PID: 21366 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 495.207579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 495.216922] Call Trace: [ 495.219504] dump_stack+0x142/0x197 [ 495.223123] should_fail.cold+0x10f/0x159 [ 495.227407] should_failslab+0xdb/0x130 [ 495.231376] kmem_cache_alloc_node+0x56/0x780 [ 495.235967] ? mount_fs+0x97/0x2a1 [ 495.239514] create_task_io_context+0x31/0x3d0 [ 495.244097] generic_make_request_checks+0x1505/0x1ac0 [ 495.249484] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.254543] ? blk_cleanup_queue+0x610/0x610 [ 495.258950] ? trace_hardirqs_on+0x10/0x10 [ 495.263175] generic_make_request+0x7d/0xa40 [ 495.267688] ? save_trace+0x290/0x290 [ 495.271816] ? blk_queue_enter+0x520/0x520 [ 495.276042] ? find_held_lock+0x35/0x130 [ 495.280195] ? guard_bio_eod+0x161/0x530 [ 495.284246] submit_bio+0x1a5/0x3e0 [ 495.287857] ? submit_bio+0x1a5/0x3e0 [ 495.291860] ? generic_make_request+0xa40/0xa40 [ 495.296540] ? guard_bio_eod+0x1fd/0x530 [ 495.300729] submit_bh_wbc+0x550/0x720 [ 495.304613] block_read_full_page+0x7a2/0x960 [ 495.309099] ? set_init_blocksize+0x210/0x210 [ 495.313601] ? __bread_gfp+0x290/0x290 [ 495.317480] ? add_to_page_cache_lru+0x159/0x310 [ 495.322233] ? add_to_page_cache_locked+0x40/0x40 [ 495.327075] blkdev_readpage+0x1d/0x30 [ 495.330961] do_read_cache_page+0x721/0x1320 [ 495.335560] ? blkdev_writepages+0xd0/0xd0 [ 495.340393] ? find_get_pages_contig+0xcf0/0xcf0 [ 495.345135] ? blkdev_get+0xb0/0x8e0 [ 495.348840] ? dput.part.0+0x170/0x750 [ 495.352843] ? bd_may_claim+0xd0/0xd0 [ 495.356645] ? path_put+0x50/0x70 [ 495.360088] ? lookup_bdev.part.0+0xe1/0x160 [ 495.364486] read_cache_page_gfp+0x6e/0x90 [ 495.368775] btrfs_read_disk_super+0xdd/0x530 [ 495.373278] btrfs_scan_one_device+0xc6/0x4e0 [ 495.377770] ? device_list_add+0x8d0/0x8d0 [ 495.382000] ? __free_pages+0x54/0x90 [ 495.385920] ? free_pages+0x46/0x50 [ 495.389537] btrfs_mount+0x2e3/0x2b28 [ 495.393334] ? firmware_map_remove+0x196/0x196 [ 495.397906] ? btrfs_remount+0x11f0/0x11f0 [ 495.402139] ? ___preempt_schedule_notrace+0x16/0x2c [ 495.407452] ? pcpu_alloc+0x585/0x1050 [ 495.411331] ? __lockdep_init_map+0x10c/0x570 [ 495.415820] mount_fs+0x97/0x2a1 [ 495.419182] vfs_kern_mount.part.0+0x5e/0x3d0 [ 495.423672] vfs_kern_mount+0x40/0x60 [ 495.427464] btrfs_mount+0x3ce/0x2b28 [ 495.431266] ? retint_kernel+0x2d/0x2d [ 495.435231] ? btrfs_remount+0x11f0/0x11f0 [ 495.439469] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.444482] ? __lockdep_init_map+0x10c/0x570 [ 495.448971] ? __lockdep_init_map+0x10c/0x570 [ 495.453456] mount_fs+0x97/0x2a1 [ 495.456976] vfs_kern_mount.part.0+0x5e/0x3d0 [ 495.461469] do_mount+0x417/0x27d0 [ 495.465011] ? copy_mount_options+0x5c/0x2f0 [ 495.469511] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.474568] ? copy_mount_string+0x40/0x40 [ 495.479398] ? copy_mount_options+0x1fe/0x2f0 [ 495.483902] SyS_mount+0xab/0x120 [ 495.487365] ? copy_mnt_ns+0x8c0/0x8c0 [ 495.491256] do_syscall_64+0x1e8/0x640 [ 495.495210] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 495.500159] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 495.505351] RIP: 0033:0x45ee9a [ 495.508546] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 495.516241] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 495.523562] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 495.530824] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 495.538095] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 495.545420] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004a 21:57:43 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f00000001c0)) r2 = syz_open_procfs$namespace(r1, &(0x7f0000000280)='ns/net\x00') r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000380)=ANY=[]) ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f00000005c0)) r6 = dup3(r0, r2, 0x0) write$9p(r6, 0x0, 0x0) setsockopt$SO_RDS_TRANSPORT(r6, 0x114, 0x8, &(0x7f0000000080), 0x4) r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x4002, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x14, r9, 0xab9535e9a6578fc1, 0x0, 0x0, {0x6b}}, 0x14}}, 0x0) sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)={0x38, r9, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "b393d568e1"}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x20008040) ioctl$KVM_GET_MSRS(r7, 0xc008ae88, &(0x7f00000001c0)={0x8, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}) sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x2, 0x32d4, 0x6, 0x8, 0x9, 0xffffffffffff3bdc, 0x4, 0x3}, 0x0) 21:57:43 executing program 5 (fault-call:0 fault-nth:75): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:43 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x80000000, 0x1, &(0x7f0000000000)=[{&(0x7f00000001c0)="ac85bd03128dd56ef2119047de551bfb3ec559afa811d53e82e94465cf24fe1db0c3a465503633009d72a9b4de4a18caabe0b9927d02eca7bda3ad00794ed82237322b52cd10f2b870b5b9b48427591f23af1cd1c64962f40457da7dcc0bb5a62e7fa8c07606c17cd5a87ebafdd42d4460b4f4b39b555b396a431b5b217dc3aeae17e63a25410fbcf71ccb9e29e03ec8e5c099203b87b3d5cbbb5929eb0663d27a8bb12b6bc0360b618f06441ee0cd29f7647a2b119cfe2877f82c720d9e38e20bb3fd94c33816d090730817dae8699ec833c10bafbb6c400ab2851b19b1212f30cfaf1ec9f606f19d7bccced7e1f0ab", 0xf0, 0x8000}], 0x228300e, 0x0) [ 495.751997] FAULT_INJECTION: forcing a failure. [ 495.751997] name failslab, interval 1, probability 0, space 0, times 0 [ 495.763492] CPU: 0 PID: 21384 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 495.771386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 495.780755] Call Trace: [ 495.783402] dump_stack+0x142/0x197 [ 495.787075] should_fail.cold+0x10f/0x159 [ 495.791235] should_failslab+0xdb/0x130 [ 495.795284] kmem_cache_alloc+0x2d7/0x780 [ 495.799470] ? add_to_page_cache_lru+0x159/0x310 [ 495.804228] ? add_to_page_cache_locked+0x40/0x40 [ 495.809072] alloc_buffer_head+0x24/0xe0 [ 495.813241] alloc_page_buffers+0xb7/0x200 [ 495.817496] __getblk_gfp+0x334/0x7b0 [ 495.821517] ? lru_add_drain_all+0x18/0x20 [ 495.825750] __bread_gfp+0x2e/0x290 [ 495.829375] btrfs_read_dev_one_super+0x9f/0x270 [ 495.834169] btrfs_read_dev_super+0x5d/0xb0 [ 495.838489] ? btrfs_read_dev_one_super+0x270/0x270 [ 495.843495] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 495.848008] __btrfs_open_devices+0x194/0xab0 [ 495.852771] ? check_preemption_disabled+0x3c/0x250 [ 495.857781] ? find_device+0x100/0x100 [ 495.861653] ? btrfs_mount+0x1069/0x2b28 [ 495.865703] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.870716] btrfs_open_devices+0xa4/0xb0 [ 495.875144] btrfs_mount+0x11b4/0x2b28 [ 495.879026] ? lock_downgrade+0x740/0x740 [ 495.883234] ? find_held_lock+0x35/0x130 [ 495.887279] ? pcpu_alloc+0x3af/0x1050 [ 495.891221] ? btrfs_remount+0x11f0/0x11f0 [ 495.895567] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.900622] ? __lockdep_init_map+0x10c/0x570 [ 495.905106] mount_fs+0x97/0x2a1 [ 495.908532] vfs_kern_mount.part.0+0x5e/0x3d0 [ 495.913030] ? find_held_lock+0x35/0x130 [ 495.917094] vfs_kern_mount+0x40/0x60 [ 495.920898] btrfs_mount+0x3ce/0x2b28 [ 495.924711] ? lock_downgrade+0x740/0x740 [ 495.928946] ? find_held_lock+0x35/0x130 [ 495.933033] ? pcpu_alloc+0x3af/0x1050 [ 495.936920] ? btrfs_remount+0x11f0/0x11f0 [ 495.941272] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.946301] ? __lockdep_init_map+0x10c/0x570 [ 495.950893] ? __lockdep_init_map+0x10c/0x570 [ 495.955388] mount_fs+0x97/0x2a1 [ 495.958750] vfs_kern_mount.part.0+0x5e/0x3d0 [ 495.963253] do_mount+0x417/0x27d0 [ 495.966843] ? copy_mount_options+0x5c/0x2f0 [ 495.972195] ? rcu_read_lock_sched_held+0x110/0x130 [ 495.977206] ? copy_mount_string+0x40/0x40 [ 495.981887] ? copy_mount_options+0x1fe/0x2f0 [ 495.986388] SyS_mount+0xab/0x120 [ 495.989829] ? copy_mnt_ns+0x8c0/0x8c0 [ 495.993715] do_syscall_64+0x1e8/0x640 [ 495.997592] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 496.002427] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 496.007717] RIP: 0033:0x45ee9a [ 496.010940] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 496.018637] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 496.025897] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 496.033175] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 496.040430] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 496.047688] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004b 21:57:44 executing program 5 (fault-call:0 fault-nth:76): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:44 executing program 4: ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x4) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r5 = dup3(r3, r4, 0x0) write$9p(r5, 0x0, 0x0) r6 = socket$phonet_pipe(0x23, 0x5, 0x2) r7 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r8 = dup3(r6, r7, 0x0) write$9p(r8, 0x0, 0x0) ioctl$KDGKBLED(r8, 0x4b64, &(0x7f0000000140)) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:44 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, &(0x7f0000000040)={0x40, 0xb, 0x0, 0x664, "ac708d1fca6519feefd68b71c1ef0c0a09d3dd465ec45609c132f0bd5bf87334"}) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) [ 496.283321] FAULT_INJECTION: forcing a failure. [ 496.283321] name failslab, interval 1, probability 0, space 0, times 0 [ 496.307136] CPU: 0 PID: 21404 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 496.315058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 496.324540] Call Trace: [ 496.327144] dump_stack+0x142/0x197 [ 496.330789] should_fail.cold+0x10f/0x159 [ 496.334960] should_failslab+0xdb/0x130 [ 496.338951] kmem_cache_alloc+0x2d7/0x780 [ 496.343108] ? save_stack_trace+0x16/0x20 [ 496.347270] ? save_stack+0x45/0xd0 [ 496.350996] ? kasan_kmalloc+0xce/0xf0 [ 496.354897] ? kmem_cache_alloc_trace+0x152/0x790 [ 496.359745] ? btrfs_mount+0x1069/0x2b28 [ 496.363813] ? mount_fs+0x97/0x2a1 [ 496.367477] getname_kernel+0x53/0x350 [ 496.371400] kern_path+0x20/0x40 [ 496.374777] lookup_bdev.part.0+0x63/0x160 [ 496.379054] ? blkdev_open+0x260/0x260 [ 496.382953] ? btrfs_open_devices+0x27/0xb0 [ 496.388280] blkdev_get_by_path+0x76/0xf0 [ 496.392439] btrfs_get_bdev_and_sb+0x38/0x2e0 [ 496.397055] __btrfs_open_devices+0x194/0xab0 [ 496.401888] ? check_preemption_disabled+0x3c/0x250 [ 496.406914] ? find_device+0x100/0x100 [ 496.410851] ? btrfs_mount+0x1069/0x2b28 [ 496.415031] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.420172] btrfs_open_devices+0xa4/0xb0 [ 496.424363] btrfs_mount+0x11b4/0x2b28 [ 496.428256] ? lock_downgrade+0x740/0x740 [ 496.432550] ? find_held_lock+0x35/0x130 [ 496.436610] ? pcpu_alloc+0x3af/0x1050 [ 496.440493] ? btrfs_remount+0x11f0/0x11f0 [ 496.444738] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.449827] ? __lockdep_init_map+0x10c/0x570 [ 496.454323] mount_fs+0x97/0x2a1 [ 496.457685] vfs_kern_mount.part.0+0x5e/0x3d0 [ 496.462169] ? find_held_lock+0x35/0x130 [ 496.466271] vfs_kern_mount+0x40/0x60 [ 496.470071] btrfs_mount+0x3ce/0x2b28 [ 496.473871] ? lock_downgrade+0x740/0x740 [ 496.479064] ? find_held_lock+0x35/0x130 [ 496.483212] ? pcpu_alloc+0x3af/0x1050 [ 496.487146] ? btrfs_remount+0x11f0/0x11f0 [ 496.491441] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.496628] ? __lockdep_init_map+0x10c/0x570 [ 496.501208] ? __lockdep_init_map+0x10c/0x570 [ 496.505715] mount_fs+0x97/0x2a1 [ 496.509082] vfs_kern_mount.part.0+0x5e/0x3d0 [ 496.513735] do_mount+0x417/0x27d0 [ 496.517292] ? copy_mount_options+0x5c/0x2f0 [ 496.521747] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.526757] ? copy_mount_string+0x40/0x40 [ 496.530984] ? copy_mount_options+0x1fe/0x2f0 [ 496.535596] SyS_mount+0xab/0x120 [ 496.539195] ? copy_mnt_ns+0x8c0/0x8c0 [ 496.543514] do_syscall_64+0x1e8/0x640 [ 496.547394] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 496.552237] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 496.557774] RIP: 0033:0x45ee9a [ 496.560956] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 496.568865] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 496.576190] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 21:57:44 executing program 2: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x220402, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r1, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r1, 0x1, 0x23, &(0x7f0000000240)=0x24000, 0x4) sendto$inet6(r1, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) recvmsg(r1, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB="5e000400f28b3517c716ba19759b73dbb5774b141f87f315a59dceec8f11b3d8922f2eb97faffefe1c6ff9f7cf0d18ce9adaa6ded6bf2c54d083fa2701c584967128d056b10b6ab7ee327c9e8a07570450ce99bb35e148fc1b6fd13325e996ffeb23"], &(0x7f0000000140)=0x66) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000001c0)={r2, 0x3}, &(0x7f0000000200)=0x8) [ 496.583854] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 496.591127] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 496.598395] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004c 21:57:44 executing program 5 (fault-call:0 fault-nth:77): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 496.749576] FAULT_INJECTION: forcing a failure. [ 496.749576] name failslab, interval 1, probability 0, space 0, times 0 [ 496.761112] CPU: 1 PID: 21439 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 496.769164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 496.778576] Call Trace: [ 496.781182] dump_stack+0x142/0x197 [ 496.784800] should_fail.cold+0x10f/0x159 [ 496.789046] should_failslab+0xdb/0x130 [ 496.793161] kmem_cache_alloc+0x47/0x780 [ 496.797333] radix_tree_node_alloc.constprop.0+0x1c7/0x310 [ 496.802967] __radix_tree_create+0x337/0x4d0 [ 496.807379] page_cache_tree_insert+0xa7/0x2d0 [ 496.812179] ? file_check_and_advance_wb_err+0x380/0x380 [ 496.817616] ? debug_smp_processor_id+0x1c/0x20 [ 496.822287] __add_to_page_cache_locked+0x2ab/0x8c0 [ 496.827355] ? find_lock_entry+0x4b0/0x4b0 [ 496.831594] add_to_page_cache_lru+0xf4/0x310 [ 496.836077] ? add_to_page_cache_locked+0x40/0x40 [ 496.840905] ? __page_cache_alloc+0xdd/0x3e0 [ 496.845552] pagecache_get_page+0x1f5/0x9e0 [ 496.849865] __getblk_gfp+0x23d/0x7b0 [ 496.853660] ? lru_add_drain_all+0x18/0x20 [ 496.857885] __bread_gfp+0x2e/0x290 [ 496.861562] btrfs_read_dev_one_super+0x9f/0x270 [ 496.866316] btrfs_read_dev_super+0x5d/0xb0 [ 496.870647] ? btrfs_read_dev_one_super+0x270/0x270 [ 496.875885] btrfs_get_bdev_and_sb+0xdc/0x2e0 [ 496.880395] __btrfs_open_devices+0x194/0xab0 [ 496.884931] ? check_preemption_disabled+0x3c/0x250 [ 496.890489] ? find_device+0x100/0x100 [ 496.894411] ? btrfs_mount+0x1069/0x2b28 [ 496.898583] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.903588] btrfs_open_devices+0xa4/0xb0 [ 496.907746] btrfs_mount+0x11b4/0x2b28 [ 496.911899] ? lock_downgrade+0x740/0x740 [ 496.916042] ? find_held_lock+0x35/0x130 [ 496.920243] ? pcpu_alloc+0x3af/0x1050 [ 496.924125] ? btrfs_remount+0x11f0/0x11f0 [ 496.928397] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.933499] ? __lockdep_init_map+0x10c/0x570 [ 496.938019] mount_fs+0x97/0x2a1 [ 496.941385] vfs_kern_mount.part.0+0x5e/0x3d0 [ 496.946050] ? find_held_lock+0x35/0x130 [ 496.950152] vfs_kern_mount+0x40/0x60 [ 496.953981] btrfs_mount+0x3ce/0x2b28 [ 496.957775] ? lock_downgrade+0x740/0x740 [ 496.961915] ? find_held_lock+0x35/0x130 [ 496.965967] ? pcpu_alloc+0x3af/0x1050 [ 496.969842] ? btrfs_remount+0x11f0/0x11f0 [ 496.974065] ? rcu_read_lock_sched_held+0x110/0x130 [ 496.979173] ? __lockdep_init_map+0x10c/0x570 [ 496.983764] ? __lockdep_init_map+0x10c/0x570 [ 496.988308] mount_fs+0x97/0x2a1 [ 496.991680] vfs_kern_mount.part.0+0x5e/0x3d0 [ 496.996371] do_mount+0x417/0x27d0 [ 496.999955] ? copy_mount_options+0x5c/0x2f0 [ 497.004350] ? rcu_read_lock_sched_held+0x110/0x130 [ 497.009462] ? copy_mount_string+0x40/0x40 [ 497.013780] ? copy_mount_options+0x1fe/0x2f0 [ 497.018275] SyS_mount+0xab/0x120 [ 497.021780] ? copy_mnt_ns+0x8c0/0x8c0 [ 497.025680] do_syscall_64+0x1e8/0x640 [ 497.029797] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 497.034814] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 497.039987] RIP: 0033:0x45ee9a [ 497.043160] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 497.050884] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 497.058160] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 497.065426] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 497.072966] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 497.080363] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004d 21:57:45 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000600)="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", 0x12e}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:45 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0xe) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 21:57:45 executing program 2: socket$phonet_pipe(0x23, 0x5, 0x2) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = dup3(r5, r2, 0x0) write$9p(r6, 0x0, 0x0) setsockopt$bt_BT_DEFER_SETUP(r6, 0x112, 0x7, &(0x7f0000000040), 0x4) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 21:57:45 executing program 3: mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="4277d446c6884d493eccad7864ea4f57256ff327e529c2a20373b4f0ff1352390fff99426ebf98caa557c7aa5cad92a0d88bf27ba21bf4e69b5c8dd04f4a463f48f06cf8f886b32b2005e3ce33dffdc83a7a7e4d343a39acc9b36d3da132e57ebcae0e57b1757b5c275625e3b47ee4a5e7133b41a2c47ac819b883be"], &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e24, @remote}, 0x10) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r3, 0x29, 0x3c, &(0x7f0000311ffc)=0x1, 0x4) setsockopt$inet6_buf(r3, 0x29, 0x3e, &(0x7f00002cef88)="d84f7398", 0x4) setsockopt$sock_int(r3, 0x1, 0x23, &(0x7f0000002580)=0xffffffffffffac6e, 0x4) sendto$inet6(r3, &(0x7f0000000840)="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", 0xffffff4a, 0x20008044, &(0x7f0000000080)={0xa, 0x1000000000004e20, 0x0, @mcast2}, 0x1c) mount(&(0x7f0000000200)=@loop={'/dev/loop', 0x0}, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)='rpc_pipefs\x00', 0x2000000, &(0x7f0000000340)='ns/uts\x00') recvmsg(r3, &(0x7f00000055c0)={0x0, 0x0, 0x0}, 0x0) getsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000000), 0x10) 21:57:45 executing program 4: syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/status\x00', 0x0, 0x0) write$9p(r2, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0x110, 0x0, 0x1, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, [@CTA_NAT_DST={0xc, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, @CTA_SEQ_ADJ_REPLY={0x4c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x8000}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x800}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1b40400}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x200}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x20}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x40}]}, @CTA_PROTOINFO={0x5c, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x58, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x5}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x81}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0xbb}, @CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0x4}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x2}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x3}, @CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0x401}, @CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0x100000000}, @CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0xa6}]}}, @CTA_ZONE={0x6}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x2}, @CTA_NAT_SRC={0x1c, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V4_MINIP={0x8, 0x1, @rand_addr=0x17}]}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x7}]}]}, 0x110}, 0x1, 0x0, 0x0, 0xc0}, 0x4040810) 21:57:45 executing program 5 (fault-call:0 fault-nth:78): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 497.698258] FAULT_INJECTION: forcing a failure. [ 497.698258] name failslab, interval 1, probability 0, space 0, times 0 [ 497.729199] CPU: 1 PID: 21459 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 497.737207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 497.746700] Call Trace: [ 497.749299] dump_stack+0x142/0x197 [ 497.752935] should_fail.cold+0x10f/0x159 [ 497.757090] should_failslab+0xdb/0x130 [ 497.761082] kmem_cache_alloc_trace+0x2e9/0x790 [ 497.765887] btrfs_mount+0x1069/0x2b28 [ 497.769892] ? lock_downgrade+0x740/0x740 [ 497.774040] ? find_held_lock+0x35/0x130 [ 497.778102] ? pcpu_alloc+0x3af/0x1050 [ 497.782040] ? btrfs_remount+0x11f0/0x11f0 [ 497.786287] ? rcu_read_lock_sched_held+0x110/0x130 [ 497.791345] ? __lockdep_init_map+0x10c/0x570 [ 497.795863] mount_fs+0x97/0x2a1 [ 497.799238] vfs_kern_mount.part.0+0x5e/0x3d0 [ 497.803731] ? find_held_lock+0x35/0x130 [ 497.807808] vfs_kern_mount+0x40/0x60 [ 497.811604] btrfs_mount+0x3ce/0x2b28 [ 497.815481] ? lock_downgrade+0x740/0x740 [ 497.819742] ? find_held_lock+0x35/0x130 [ 497.823797] ? pcpu_alloc+0x3af/0x1050 [ 497.827683] ? btrfs_remount+0x11f0/0x11f0 [ 497.831914] ? rcu_read_lock_sched_held+0x110/0x130 [ 497.836959] ? __lockdep_init_map+0x10c/0x570 [ 497.841458] ? __lockdep_init_map+0x10c/0x570 [ 497.845969] mount_fs+0x97/0x2a1 [ 497.849344] vfs_kern_mount.part.0+0x5e/0x3d0 [ 497.854103] do_mount+0x417/0x27d0 [ 497.857647] ? copy_mount_options+0x5c/0x2f0 [ 497.862074] ? rcu_read_lock_sched_held+0x110/0x130 [ 497.868048] ? copy_mount_string+0x40/0x40 [ 497.872291] ? copy_mount_options+0x1fe/0x2f0 [ 497.876786] SyS_mount+0xab/0x120 [ 497.880233] ? copy_mnt_ns+0x8c0/0x8c0 [ 497.884130] do_syscall_64+0x1e8/0x640 [ 497.888008] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 497.892876] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 497.898071] RIP: 0033:0x45ee9a [ 497.901253] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 497.908959] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 497.916242] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 497.923524] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 497.930783] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 497.938237] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004e 21:57:46 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000300)=ANY=[@ANYBLOB="eec6f66fcde32b70471f05869b3b0864b85de9c85f936067d38334eeb5c271235d554b420d07279c93ef4eea445bdbb371af3e641e7097d27f74ff0d000b8ea7126b3f821b4b080e0fc49f3e49d80613bfbf52ee7edc9b98de68461f"], &(0x7f00000000c0)='.', 0x0, 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='trusted.overlay.upper\x00', &(0x7f00000004c0)={0x0, 0xfb, 0x9d, 0x4, 0x94, "59c57d32207eeee01e6a4a4b6ac9fbd3", "dc9294ac45ae0bc69b8a9b2df04ad11fd13d748ab2004e2c8172ce8bfcaf666a8f3c692fb46274e809eb44893f6892bdfb3a5178cce85f72d6c0f7532fd436d43417b5081e3a0b504d735c14a1ecbae44035c981bf5a473baa10b84dfd166987b8ad7037c9e242a45dc5099b2d703fdb4e2166ea72df89e34e4fc8d965f3966ef46af1c9291ccb0d"}, 0x9d, 0x3) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB="0ade2b020f9f77a85b1f5bc2066abeabc06d45a0fcb4f5c2ed659046bc4e43ec3894a5e09a58eee26abcb8a04590d57307c7b1d057e43155637633d8ac105c0649f59cd42c901df55e12a019983d23dc6b623d7ec8643b255137d8b82b35ff1ec76d9a89c9352ba9125e66f224ac5cc0518350fde40a9efd16852d004e293989a19161d0cbf9f7061fa1bec85361b202eaf93313771184929f0276bcab8e8c8e6165655ecbf3d4bd468c4c638de2c6b5959ab22c7f2390354b245a7952250ebf058cbf6da7abea0d093784f4129033dcb6a9f3"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000040)={0x6, 0x2}) mount(&(0x7f0000000580)=ANY=[@ANYBLOB="43a66573f7786af9d51b8f4d235df2af059d0928674f6ae513e6ed1010c326a744da230b25181a046b67803fa7c9d88fee7738a776d5b1b91f53d449591bb936e658aedab7d0fbff0c3398ea2d7e997d4fc78131395d7f4401c1a8b134936af6c42cff6d13fd0deaad3ddcd6de2c9ec405dfd5ae9844185ddb7f693fa2d142a6bead1d072d2e489297119eff463cc9b7096857726b493e78e912a3b03ea7262da2e44b6b64b74b00ef35e10e04f2"], &(0x7f0000000140)='.', 0x0, 0x5110, 0x0) 21:57:46 executing program 5 (fault-call:0 fault-nth:79): syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000300)="8da4363ac0e902000a0000000001004d010000000000000000007a000000000001f60180000048aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 498.027382] print_req_error: I/O error, dev loop2, sector 128 [ 498.044760] FAULT_INJECTION: forcing a failure. [ 498.044760] name failslab, interval 1, probability 0, space 0, times 0 [ 498.068718] CPU: 0 PID: 21487 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 498.076654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 498.086039] Call Trace: [ 498.088639] dump_stack+0x142/0x197 [ 498.092397] should_fail.cold+0x10f/0x159 [ 498.096555] should_failslab+0xdb/0x130 [ 498.100528] __kmalloc+0x2f0/0x7a0 [ 498.104058] ? __lock_is_held+0xb6/0x140 [ 498.108167] ? check_preemption_disabled+0x3c/0x250 [ 498.113177] ? bio_alloc_bioset+0x3ae/0x680 [ 498.117505] bio_alloc_bioset+0x3ae/0x680 [ 498.121650] ? btrfs_alloc_device+0xa4/0x6a0 [ 498.126071] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.131087] ? bvec_alloc+0x2e0/0x2e0 [ 498.134882] btrfs_alloc_device+0xc3/0x6a0 [ 498.139131] ? btrfs_find_device_by_devspec+0xf0/0xf0 [ 498.144437] __btrfs_close_devices+0x2c6/0xa90 [ 498.149015] ? __mutex_unlock_slowpath+0x71/0x800 [ 498.153851] ? btrfs_alloc_device+0x6a0/0x6a0 [ 498.158344] btrfs_close_devices+0x29/0x140 [ 498.162807] btrfs_mount+0x1fd9/0x2b28 [ 498.166711] ? lock_downgrade+0x740/0x740 [ 498.170857] ? find_held_lock+0x35/0x130 [ 498.174911] ? pcpu_alloc+0x3af/0x1050 [ 498.178791] ? btrfs_remount+0x11f0/0x11f0 [ 498.183039] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.188055] ? __lockdep_init_map+0x10c/0x570 [ 498.192569] mount_fs+0x97/0x2a1 [ 498.196278] vfs_kern_mount.part.0+0x5e/0x3d0 [ 498.200775] ? find_held_lock+0x35/0x130 [ 498.204853] vfs_kern_mount+0x40/0x60 [ 498.208648] btrfs_mount+0x3ce/0x2b28 [ 498.212449] ? lock_downgrade+0x740/0x740 [ 498.216597] ? find_held_lock+0x35/0x130 [ 498.220651] ? pcpu_alloc+0x3af/0x1050 [ 498.224538] ? btrfs_remount+0x11f0/0x11f0 [ 498.228811] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.233833] ? __lockdep_init_map+0x10c/0x570 [ 498.238318] ? __lockdep_init_map+0x10c/0x570 [ 498.242833] mount_fs+0x97/0x2a1 [ 498.246193] vfs_kern_mount.part.0+0x5e/0x3d0 [ 498.250688] do_mount+0x417/0x27d0 [ 498.254412] ? copy_mount_options+0x5c/0x2f0 [ 498.258826] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.263833] ? copy_mount_string+0x40/0x40 [ 498.268177] ? copy_mount_options+0x1fe/0x2f0 [ 498.272682] SyS_mount+0xab/0x120 [ 498.276199] ? copy_mnt_ns+0x8c0/0x8c0 [ 498.280092] do_syscall_64+0x1e8/0x640 [ 498.283968] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 498.288803] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 498.294155] RIP: 0033:0x45ee9a [ 498.297356] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 498.305113] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 498.312400] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 498.319701] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 498.326973] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 498.334246] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004f [ 498.344199] ------------[ cut here ]------------ [ 498.349079] kernel BUG at fs/btrfs/volumes.c:890! [ 498.354855] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 498.360372] Modules linked in: [ 498.363596] CPU: 0 PID: 21487 Comm: syz-executor.5 Not tainted 4.14.171-syzkaller #0 [ 498.371475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 498.380841] task: ffff8880991ce640 task.stack: ffff888054810000 [ 498.386914] RIP: 0010:__btrfs_close_devices+0x7d8/0xa90 [ 498.392289] RSP: 0018:ffff888054817700 EFLAGS: 00010246 [ 498.397666] RAX: 0000000000040000 RBX: ffff8880a8bba900 RCX: ffffc90005e14000 [ 498.404943] RDX: 0000000000040000 RSI: ffffffff8299e4b8 RDI: 0000000000000282 [ 498.412224] RBP: ffff8880548177c8 R08: ffff8880991ce640 R09: ffff8880991cef08 [ 498.419505] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88809bf31c80 21:57:46 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x192) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000000), &(0x7f00000000c0)='.', 0x0, 0x23080, 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0) mount(&(0x7f0000000080), &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') r2 = dup3(r0, r1, 0x0) write$9p(r2, 0x0, 0x0) ioctl$VIDIOC_G_PARM(r2, 0xc0cc5615, &(0x7f0000000180)={0x4, @raw_data="5e19205546cd7cf0ac8ce555adca52738d26f6a2cd260a7e2fb18b70352b506da9a0626d188c74985700336fd4eb9a4891dffebb3c1c78816f9721bed1743407b1065b2adb1dd768d1ed6a46a2ee05929e2bd2986bc7d69bdeaef07d66fb6d22a9f55aba8d674ec741be1d690fd2934827579860ed7bf6bfeb8291711bb6e314cab8f2b83b88d1b1f134927e497c21256222d0e47f5f1fa613d85ce361f6e676711e618514cb3db2622f8dc45a05d11626e3de4179dc3d373b1b76baf1435e9bc407b09452bf631b"}) mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x2000000, 0x0) [ 498.426782] R13: ffff8880a8bba9c8 R14: fffffffffffffff4 R15: dffffc0000000000 [ 498.434490] FS: 00007f97db782700(0000) GS:ffff8880aec00000(0000) knlGS:0000000000000000 [ 498.442886] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 498.448906] CR2: 00007f6a43593db8 CR3: 00000000a80c5000 CR4: 00000000001426f0 [ 498.456265] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 498.463668] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 498.470947] Call Trace: [ 498.473637] ? __mutex_unlock_slowpath+0x71/0x800 [ 498.478549] ? btrfs_alloc_device+0x6a0/0x6a0 [ 498.483153] btrfs_close_devices+0x29/0x140 [ 498.487467] btrfs_mount+0x1fd9/0x2b28 [ 498.491559] ? lock_downgrade+0x740/0x740 [ 498.495701] ? find_held_lock+0x35/0x130 [ 498.499750] ? pcpu_alloc+0x3af/0x1050 [ 498.503623] ? btrfs_remount+0x11f0/0x11f0 [ 498.507967] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.513006] ? __lockdep_init_map+0x10c/0x570 [ 498.517502] mount_fs+0x97/0x2a1 [ 498.520868] vfs_kern_mount.part.0+0x5e/0x3d0 [ 498.525379] ? find_held_lock+0x35/0x130 [ 498.529424] vfs_kern_mount+0x40/0x60 [ 498.533205] btrfs_mount+0x3ce/0x2b28 [ 498.537003] ? lock_downgrade+0x740/0x740 [ 498.541143] ? find_held_lock+0x35/0x130 [ 498.545198] ? pcpu_alloc+0x3af/0x1050 [ 498.549131] ? btrfs_remount+0x11f0/0x11f0 [ 498.553361] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.558374] ? __lockdep_init_map+0x10c/0x570 [ 498.562855] ? __lockdep_init_map+0x10c/0x570 [ 498.567344] mount_fs+0x97/0x2a1 [ 498.570697] vfs_kern_mount.part.0+0x5e/0x3d0 [ 498.575328] do_mount+0x417/0x27d0 [ 498.578854] ? copy_mount_options+0x5c/0x2f0 [ 498.583248] ? rcu_read_lock_sched_held+0x110/0x130 [ 498.588938] ? copy_mount_string+0x40/0x40 [ 498.593198] ? copy_mount_options+0x1fe/0x2f0 [ 498.597687] SyS_mount+0xab/0x120 [ 498.601139] ? copy_mnt_ns+0x8c0/0x8c0 [ 498.605025] do_syscall_64+0x1e8/0x640 [ 498.608952] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 498.613785] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 498.619068] RIP: 0033:0x45ee9a [ 498.622241] RSP: 002b:00007f97db781a68 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 498.630042] RAX: ffffffffffffffda RBX: 00007f97db7826d4 RCX: 000000000045ee9a [ 498.637366] RDX: 00007f97db781ae0 RSI: 0000000020000000 RDI: 00007f97db781b00 [ 498.645179] RBP: 000000000076bf20 R08: 00007f97db781b40 R09: 00007f97db781ae0 [ 498.652634] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000003 [ 498.659907] R13: 0000000000000ba6 R14: 00000000004cd85d R15: 000000000000004f [ 498.667523] Code: c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 59 02 00 00 48 8b 45 80 c7 80 10 01 00 00 00 00 00 00 e9 e2 f8 ff ff e8 a8 e3 c2 fe <0f> 0b e8 a1 e3 c2 fe 0f 0b 48 89 f7 e8 37 73 ed fe e9 ad f8 ff [ 498.686807] RIP: __btrfs_close_devices+0x7d8/0xa90 RSP: ffff888054817700 [ 498.693917] ---[ end trace b62cb6d4ff507142 ]--- [ 498.698860] Kernel panic - not syncing: Fatal exception [ 498.705858] Kernel Offset: disabled [ 498.709491] Rebooting in 86400 seconds..