0986cd98a5c44ac0ec375deb27eafcf7d06438f252510d87bd91d03e7dc2faed85adcd88ca30e75b1e143a72d94defa187e48b89efbbbcc9b9a9a307353df7a21affce4e9149eb122cbc356cb681365afd979e97b57b596e901864a68679f", 0xc0) r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x40000, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f00000001c0)={0xd2, 0x200, 0x7, 0x0, 0x0}, &(0x7f0000000200)=0x10) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r6, 0x84, 0x6c, &(0x7f0000000540)={r7, 0x8a, "0f6d16a6b2cfe21dafbba9c95bd763b5475a63e1d2026da8a78adf25ace9428ecd4a59e938d206f68873e5c52ccdb701dfaf9f5582d913fae8ed9b69363820d91e84753ca7e8c6564b35726e1092ea47055996e738f268848845b3f0e85690fbc84b89d485d34433bfe7fa60b6db5e49c483f57bad9b3ca198e5bfa5246687d13f1fe2002df175882e4b"}, &(0x7f0000000240)=0x92) keyctl$dh_compute(0x17, &(0x7f0000000100)={r3, r5, r3}, &(0x7f0000a53ffb)=""/5, 0x5, &(0x7f0000c61fc8)={&(0x7f0000a3dffa)={'rmd320\x00'}, 0x0, 0x2}) 2033/05/18 03:38:03 executing program 6: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x11, &(0x7f0000000280), 0x8) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x0, @local={0xac, 0x14, 0x14, 0xaa}, 0x4e24, 0x0, 'dh\x00', 0x4, 0x40, 0x34}, 0x2c) close(r2) close(r1) socket$l2tp(0x18, 0x1, 0x1) 2033/05/18 03:38:03 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:03 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:03 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:03 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100008125000000", 0x29}], 0x1) 2033/05/18 03:38:03 executing program 3: r0 = socket(0xa, 0x1, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") msgrcv(0x0, &(0x7f0000000040)={0x0, ""/161}, 0xa9, 0xffffffff00000000, 0x0) msgsnd(0x0, &(0x7f0000000000)=ANY=[], 0x0, 0x0) 2033/05/18 03:38:03 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025005502", 0x29}], 0x1) 2033/05/18 03:38:03 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10) sendto$inet(r0, &(0x7f0000000280), 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10) r1 = dup2(r0, r0) sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10}, 0x355, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="0000000001000000000000000000840d1ebbeee519025d71de38360bdde371198c6720c5dd34b65d570847d14392a614bf2845cc8efb828a248634461626dbe16d2ba40300000000000000fa7b2f1657e255ebd129df0d52cf67be6112bd02442409a0735919467016fa2876bb79cf171ee5553a4264f79c72258445f38abec2d23d39531a999af406b3a24125d783"], 0x14}, 0x1}, 0x4011) recvfrom$inet6(r1, &(0x7f0000000000)=""/23, 0x17, 0x3, &(0x7f0000000040)={0xa}, 0x930000) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000200)=[@in={0x2, 0x4e23, @multicast1=0xe0000001}, @in6={0xa, 0x4e24, 0x24, @local={0xfe, 0x80, [], 0xaa}, 0x3}, @in={0x2, 0x4e23, @multicast2=0xe0000002}, @in6={0xa, 0x4e21, 0x4, @local={0xfe, 0x80, [], 0xaa}, 0x7f}], 0x58) 2033/05/18 03:38:03 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:03 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:03 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000925000000", 0x29}], 0x1) [ 549.645399] validate_nla: 7 callbacks suppressed [ 549.645409] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:04 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") msgrcv(0x0, &(0x7f0000000040)={0x0, ""/161}, 0xa9, 0xffffffff00000000, 0x0) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000)=0x8, 0x4) msgsnd(0x0, &(0x7f0000000000)=ANY=[], 0x0, 0x0) 2033/05/18 03:38:04 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:38:04 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x4, 0x20000) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000100)=0x7f, 0x8) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r0, 0x28, &(0x7f0000000040)}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1178, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}, @nested={0x1058, 0x13, [@typed={0x8, 0x39, @pid}, @generic="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", @generic="62d279963b0fddb1c6ff2d082e3ff17d36ffb7a2523d32097135369de99d54fc708a7487e0f3106840f4be9cf75367f07c4ba3ba985eeead5bf9fe0ff9679182369df615a8c79eefaa0ae53e"]}, @generic="7fd4380299cee6417439a6fe1b5386ec6de4a0de215b8ab582c3c46dc3370f16d57e51d5940ec0218ee231dd8dc845f68151acca87135f58d41a84e46083be3b6ccb26f91866ef93c0c5fad4f69cca2467aa44e7d23d74487662e869503b9fd42b79f5", @nested={0xa0, 0x24, [@generic="5335cb60b892a3c8580677ea30c694adee0d040d420909c7ed1207395262ccd47ed260419d02abac8ff2feb524ccd02f43e28a23b0180faf9b000616d95f30227192ca6d2d750f9a93b3e76b8d2caaae83f4d1546b64298bc5da0c150cbeda71687903921bbeba19ab961dcc147dabb2160f37a3444781c07248c07c434b91b3156751d70edec680", @typed={0x14, 0x2a, @ipv6=@mcast1={0xff, 0x1, [], 0x1}}]}]}, 0x1178}, 0x1}, 0x0) 2033/05/18 03:38:04 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:04 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:04 executing program 6: r0 = syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x2000) signalfd4(r0, &(0x7f0000000040)={0x71}, 0x8, 0x0) r1 = userfaultfd(0x0) r2 = dup2(r1, r0) getsockopt$kcm_KCM_RECV_DISABLE(r2, 0x119, 0x1, &(0x7f0000000000), 0x4) 2033/05/18 03:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000a25000000", 0x29}], 0x1) [ 550.238682] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:20004 dh [ 550.259287] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:20004 dh 2033/05/18 03:38:04 executing program 3: clone(0x200, &(0x7f0000001900), &(0x7f0000744000), &(0x7f0000001880), &(0x7f0000001900)) mknod(&(0x7f0000000080)='./file0\x00', 0x1040, 0x0) execve(&(0x7f0000ee6ff8)='./file0\x00', &(0x7f00000000c0), &(0x7f0000775000)) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='io\x00') pread64(r0, &(0x7f0000000140), 0x2d8, 0x0) lseek(r0, 0x0, 0x4) write(r0, &(0x7f00000000c0), 0x0) open$dir(&(0x7f0000296ff8)='./file0\x00', 0x27e, 0x0) [ 550.325543] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 550.353626] netlink: 'syz-executor2': attribute type 19 has an invalid length. [ 550.361090] netlink: 260 bytes leftover after parsing attributes in process `syz-executor2'. 2033/05/18 03:38:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110008b025000000", 0x29}], 0x1) 2033/05/18 03:38:04 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:04 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:04 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) [ 550.456987] netlink: 'syz-executor2': attribute type 19 has an invalid length. [ 550.464463] netlink: 260 bytes leftover after parsing attributes in process `syz-executor2'. 2033/05/18 03:38:04 executing program 2: r0 = socket$inet_dccp(0x2, 0x6, 0x0) ioctl(r0, 0x502, &(0x7f0000000000)="3cab1d008bde2036733e0c5476398497a451790e1030bf18fc6c3a4d8a35ed32de36efff1d27b4fecbcd1163") r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000040)=0x1, 0x4) keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000880), 0x0, 0x0) 2033/05/18 03:38:04 executing program 6: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c7361b2c8523bf012cf66f") bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000040)=0x5, 0x4) unshare(0x400) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000000)) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000000c0), &(0x7f0000000100)=0x4) [ 550.633469] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:05 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000f0025000000", 0x29}], 0x1) 2033/05/18 03:38:05 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:05 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000400", 0x29}], 0x1) 2033/05/18 03:38:05 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@mcast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@multicast2}}, &(0x7f0000000080)=0xe8) setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f00000000c0)={@loopback=0x7f000001, @local={0xac, 0x14, 0x14, 0xaa}, r1}, 0xc) perf_event_open(&(0x7f0000000140)={0x2, 0xb1, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0xff, &(0x7f0000ffa000/0x3000)=nil, 0x2) 2033/05/18 03:38:05 executing program 6: r0 = syz_init_net_socket$llc(0x1a, 0x0, 0x0) setsockopt$sock_void(r0, 0x1, 0x24, 0x0, 0x0) r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) listen(r1, 0xffffffffffffff7f) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) r3 = socket$inet6(0xa, 0x5, 0x0) r4 = dup2(r3, r3) connect$inet6(r4, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) dup2(r2, r1) 2033/05/18 03:38:05 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:05 executing program 3: r0 = socket(0x2, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c6262621a39446012cf66f85715b") r1 = syz_open_dev$binder(&(0x7f0000872936)='/dev/binder#\x00', 0x0, 0x800) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000200)={0xa9, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="0f630c4000000000000000000000000000634040000000000000000000000000000010006d000000000000000089782d7d50232383000000000000000000000000000000420819f0c8fddebd140b269eb6d5d1defbe6fae4cf725a428a7074f5c13d52baf2c06a01c3853db4a208c510f73f8136cd845a135d1da610c9f634c9b24a96ab3bf310537136fa593cfd73363710ce2c0000000000", @ANYPTR=&(0x7f00000000c0)=ANY=[], @ANYPTR=&(0x7f0000000140)=ANY=[]], 0x0, 0x0, &(0x7f0000000280)}) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'bcsf0\x00', {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}) 2033/05/18 03:38:05 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:05 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 551.649238] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:05 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000f025000000", 0x29}], 0x1) 2033/05/18 03:38:05 executing program 2: fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f00000000c0)={0x0, 0x0}) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x9, 0xcf68, 0x40, 0x5, 0x0, 0xffffffffffffff55, 0x80000, 0xa, 0x8c, 0x5, 0x100000001, 0xcba, 0x6, 0x4, 0x1f, 0x1000, 0x6, 0x5, 0x2, 0xadb7, 0x7ff, 0xfffffffffffffff7, 0x80000001, 0x1f, 0x7, 0x20, 0x7, 0x5, 0x0, 0x4, 0xfff, 0x1000, 0x5, 0xffffffffffffd738, 0x6, 0x0, 0x0, 0xfffffffffffffff7, 0x0, @perf_config_ext={0x58a7, 0x7fffffff}, 0x820, 0x7fffffff, 0xfffffffffffffeff, 0x1, 0x0, 0x9, 0xfffffffffffffffc}, r0, 0x1, r1, 0x2) r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x59b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x400200, 0x0) 2033/05/18 03:38:05 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:38:05 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:05 executing program 6: r0 = socket(0x10, 0x2, 0x0) fcntl$addseals(r0, 0x409, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x0, 0x0) socket$key(0xf, 0x3, 0x2) sendfile(r0, r1, &(0x7f00000000c0)=0x4, 0x80000002) ioctl$int_in(r1, 0x5421, &(0x7f0000000000)=0x6) 2033/05/18 03:38:05 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) [ 551.769918] binder: 692:693 BC_CLEAR_DEATH_NOTIFICATION invalid ref 0 [ 551.777179] binder: 692:693 transaction failed 29189/-22, size 131-0 line 2856 [ 551.812401] binder: 692:693 BC_CLEAR_DEATH_NOTIFICATION invalid ref 0 [ 551.823849] binder: 692:693 transaction failed 29189/-22, size 131-0 line 2856 2033/05/18 03:38:05 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x6, 0x4) sendto$inet6(r0, &(0x7f0000000140)="3f030000f70800000000000094bc4a91985e7b8e8fbe0d8e", 0x18, 0x0, &(0x7f0000005fe4)={0xa, 0x0, 0x4, @dev={0xfe, 0x80}}, 0x1c) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x1) r2 = socket$netlink(0x10, 0x3, 0x0) setsockopt(r2, 0x10e, 0xb, &(0x7f0000f67000), 0x2) sendto$unix(r1, &(0x7f0000000040)="740959467c47dc1d8c3ebfca0cac74bd971a0837f2aa775c4b70b7dd08190ce9a9e7c32bd494ec0bae47744ee9b154532e7513ea56f6491d4b3a9ddf9fc1d8963ab911bcd30a22fa96a6556499b62f1215cb6b135d06a8aba02ab9e32dd5e4271d6632a7e153213b2ac781d4250ccdabd8995112442ae690868f368aed3fcb1be60a1e28ef4274361de1a4ee7b64fb16af123dffc89838407fec6f956b66178eb084aa63158d3750cc618db3a62a2121825c362477cc", 0xb6, 0x800, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) [ 551.875841] binder: undelivered TRANSACTION_ERROR: 29189 [ 551.882354] binder: undelivered TRANSACTION_ERROR: 29189 2033/05/18 03:38:05 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:05 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000525000000", 0x29}], 0x1) [ 551.971220] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:05 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket(0x400800000000011, 0x2, 0x0) r2 = syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x44900) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000002c0)={"19f93cd700faffffffffffffff00", 0x4500}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x18) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={"69666230000000000000e62100", 0xa201}) 2033/05/18 03:38:05 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000003", 0x29}], 0x1) 2033/05/18 03:38:05 executing program 6: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x0, 0x0) readv(r0, &(0x7f0000001240)=[{&(0x7f0000000000)=""/28, 0x1c}, {&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000000040)=""/22, 0x16}, {&(0x7f0000001100)=""/183, 0xb7}, {&(0x7f00000011c0)=""/117, 0x75}, {&(0x7f0000000080)=""/48, 0x30}], 0x6) r1 = syz_open_dev$audion(&(0x7f0000001340)='/dev/audio#\x00', 0x800, 0x92200) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000001380)=0x67) r2 = creat(&(0x7f00000012c0)='./file0\x00', 0x1) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xfff) fadvise64(r0, 0x0, 0x0, 0x3) syz_open_dev$ndb(&(0x7f0000001300)='/dev/nbd#\x00', 0x0, 0x100) 2033/05/18 03:38:05 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:05 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:05 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff00000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:05 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100090025000000", 0x29}], 0x1) 2033/05/18 03:38:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x4) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000080)={0x0, 0x3}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000180)={0xd537, 0x0, 0x1, 0x9, r3}, &(0x7f00000001c0)=0x10) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000003c0)) ioctl$KVM_SET_PIT(r1, 0x4070aea0, &(0x7f00000000c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]}) 2033/05/18 03:38:06 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500ffff", 0x29}], 0x1) [ 552.222710] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:06 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:06 executing program 6: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getcwd(&(0x7f0000000080)=""/52, 0x34) creat(&(0x7f0000000040)='./file0\x00', 0x10) 2033/05/18 03:38:06 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:06 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000b0025000000", 0x29}], 0x1) 2033/05/18 03:38:06 executing program 3: r0 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x2476, 0x0) ioctl$KVM_ASSIGN_SET_INTX_MASK(r0, 0x4040aea4, &(0x7f00000001c0)={0xe2ba000, 0x0, 0x3, 0xe7e9ec6cd8ec6e7f, 0x9}) r1 = socket(0xa, 0x1, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}}, 0x108) ioctl$sock_bt_bnep_BNEPCONNDEL(r1, 0x400442c9, &(0x7f0000000140)={0x7, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x1f}}) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, {{0xa}}}, 0x108) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000480)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, {{0xa}}}, 0x108) 2033/05/18 03:38:06 executing program 2: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000140)) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) fcntl$getown(r0, 0x9) ioctl$void(r0, 0x5451) ptrace$setopts(0x4206, r1, 0x0, 0x0) r2 = socket(0xa, 0x7, 0x3ff) getsockopt$ax25_int(r2, 0x101, 0x10, &(0x7f00000001c0), &(0x7f0000000200)=0xfffffffffffffe3f) ptrace(0x4207, r1) ptrace$setopts(0x4200, r1, 0x0, 0x0) syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0xb0e, 0xa8800) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4) 2033/05/18 03:38:06 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012c") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) [ 552.430494] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:06 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:38:06 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:06 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700000000000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:06 executing program 6: r0 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x2, 0x0) ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000180)) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000500)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(gcm(aes))\x00'}, 0x58) ioctl(r1, 0x5, &(0x7f0000000100)) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="d179f20600000000001c14b1048c5b1bd2e7fcd330451c64b8614fcff9671a5cf54ab025", 0x24) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x200, 0x0) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r2, 0x29, 0xd3, &(0x7f0000000080)={{0xa, 0x4e24, 0xff, @local={0xfe, 0x80, [], 0xaa}, 0x80000001}, {0xa, 0x4e23, 0x6, @mcast1={0xff, 0x1, [], 0x1}, 0xa393}, 0x10001, [0xfffffffffffffff7, 0x5, 0x3, 0x4, 0x8000, 0x1f, 0x0, 0x4]}, 0x5c) r3 = accept$alg(r1, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x400000, 0x0) sendmsg$alg(r3, &(0x7f0000004c80)={0x0, 0x0, &(0x7f0000004b40)=[{&(0x7f0000003b40)="156faa88ecce35c0f4bac444a1dae5d2868d479b1bd26c5f163658db7f60ecc7de4726734f5e708b08ed1fb7c4bc0ee373dc6a1a2796d41f9957857703aeb82c7be8ecdb1d4f7d11df0ed46d131574ed72bd6c54ff549b08d45769721750011f2743baed403572a6a9e46cfbf20eee4d09f686ae229c221ec23db7ed1c2cc4b0a3fee5062d2fea925112eaf1f1a64af9c6180ebb3fc44a217477a435897107995b36503566db5fd57730f1461709ae75109c17c09830e70f578fb96efd13f3f67f3602b7c17175d94bdeb069f072687544076d5847dfe413f4a7df5a0a04c13b2d0508530b5727028052d5507528d6f20b19717d37f5c95578b9fe6c86392f735f8fa50dd8bc4e1bd464c8f60812283cc834682f8accde89b968be7d2a1a582ecae909ee68572e1fb2e3315209fcc2c86a2e23e54e8ada927214ff7d486252f6f33133ea829b0d42716cfcf38b86651ba4b5347a555e08f88a316985191dc7617a846403435d11a49b51f15129d38cb35695ef899c544b1683318481e9baed46bf9d514b44fc947c23a493ec8f2143c8512b26affda878b5ad5a8ec91800bf71b0eff5134b96f5c6eaa837f63c8c8b0d59bd66594300b49231b2cea25a96fffc13aa8f94b56c9d76e50f13309d93fed4f59b8fa20fc732149ae0bfe47dae5c25ea73e00a95101cca5d20414ae3cb2071727c98d681f83f6393b3bddbefb2352555a2cbfe3ef93603db942599e222c7bf591d26f340e1980c18aa45351b9aa044e804fa688623f89686feb4638d22961c7352c36d1652d8ffd3b54ebb7fcb7f792d9bd01e2c7d335cff8739cee7aa21a3d20aa4f0c67b4b3747bec8e6b90ff07b8a4f3e21488b1efdb34e750a5ffff04eefc12080d5b0bd27dbf42d70b1159a6afa7d093fe80ddf5304a3e8493ef89d61222ab878e1191c2dd3a81c979a474ebfb13d0644ff7ab958c481c7a2de8dee322f1c44f468e79ec91e541a4e473dacb25114aba68fb6a75e769daec1b148e409f39958b131d78a60b49dfc2f5c6244a2d2dba2bdd1fa5a842784d2b08ac7a7233df92e1fcedf3190420155cabbeb647ca7c3b2ffb1e1cdb69384fad4e59d2745c16d63642e26088e92940223acd61847f55bd5e764b6bae4ebc81335a78310e54b555d41486a36ec3e6659bf674f5ec4217ba5cec43d545951a905c4e455be8a939f190713f5d2ac16fdf3bf07161e813278177cad15961f9c0fb5d1f8e14cb9b0f27ec8ed2715d76671cba024b82dbb38f9b088d704cf700b0d46366c74de05991d6258cac29f5167042031ac90ee919356153a14ef5c8e9ad09ca71e0062f274e5b85ca2077343892d07e1bfa6ee68b7931f8752798b3a1b0fa54421d4f00348409d48fbdacd2a8ffb1e987c9f8fa3a745e59daec553ae0548898b51a02a95cdf88a9f6549b007dfb54eebb14a385713330c7ab5c4a61c3879f8925747f8bd390e1df6006673fe696226556ae59a3bef510218d0cc9dee9da5c4a0b6abab0ee385fde5af97ca55c5abad90e303a8fb582c5ff2516435930c7fb03c8a88c0d141ba5127c703a1e70d0e85f577197a142d5f9d58014af9ad403c96d6e2cfd6779f596b585e4521afc9e145d06c992634beaa5b05ebe5be9bd61ad459c2bbd4a00dfb66c6dab003a3255ac8c502ecee0ca16a3c8ed6fd1f9fd8a1d208dcce34c19b3746dbb65f27a34c62b656b60e7ced42b20601e7c1052692ff3767e0aff4de2ad714f5380fa1672e487f5759bc3feb8052808556da2dd1cd78445d901a00b1cd5fbdc7b6cbf3275721df24d39f5fdbd3d43c8a1a1ea27489a7582d789f7c687457277461548dc47053c73fcf03f949d2e5b5acaca7c5ea9b1824d89e4eee8ed4480333ef5b2c528b9ad52002fa4e7de98542cfe00a1cf1d9975c37588b27e6f4874b2ed283f5789562496c27ee046895f3ba030994ba356b07e26a929f5f3b8190c3cc7f0ad88b42435f43acfb17ccd37541d00e192a0d78dd16ec547c7e728a1ceca37022d2fc012fda3ca8217ff61cb3ca2a042e09544d2b1fac1ac17681acbb725084a8aa369ccc61d91efa4f6739b3b3f3f04d7fc3b30233af3802c82ce0c17bf428fd996b985e9f5c1f0e6b2cd7da5febf90780ac75747feccc38c2d809e2ab4a48f62b95d5eeaaf0ed7fab9308e29ad2b612598df7f3c8fd253692d4c18b31df928d622ba1918817d3660833fb93df7aeeed8fa9d41697e914c006428a6f2db08779d255e6bab0a0772df295d3bae5b1f94309329b152626c02d901c767325a8199012fba728820d8190e23a19010101f2789f2ef18df4a1b320ac3e76b2e9ba697d932497925c4d502dda4f8d84a893981df8753106e316ef5709fa51d15af067d86eefb9256dfaf0fd77d79eea0e3e08a6b5df7bb26c65c468f3c0b16edb912ea6161763d22096c695d5a4e04913739a7d56ea7233a244a9f472efc0a40b113912fc48a4f8d29f495e3787d73bc666dae79870866cb76217f4af78283da13a9bfdaba5073e3a81d8ba4564434571814867950437a7f686bf224047cb4ebe5032deb6a5f0ae4a7f0ca123d487c88c19a097b4f52bd8f869c7c744330a0f89178a8f55bdf1546df1a653ab86950bf4838ab54b9fcd2b1841ba78dfc0f591819c7dec6b60537b39f9c6200964f1b3fe3fc7bb049ca3ff55faadfef9569141766356803d1081b9cdc4a4ad6a7e232b5f96622e672f3cbc6afa9c3ebbaf9790b798efc56f84100727e6113ed5f28094a03afb84c94887155dc68517e36c5eea18e1c2fd1e4b42c51e9454c9d088b46b71e426e8db811e463db33625d15734a415927d7309982dd2774f3fc0c046640174192b64207426bbe4261cc8d0c1a3c3df3688ade39a9f61a9608497eacb2cf268a669a552f8d026eb55434f3bf11fb595f52af29d31d1998115810e8979fb7e42ae9db1a169a7245e8281d5cd039602bdb5163a024c53cb35187832f41b0d6afb831e0a3cca327141392a682bb46940563c79b64b208e781c06c0660ce7a38f6338aed67a62531c795e3058f4caef229390cd29e7a52d2c162861b631f4ea70bb6451e529122619a2e184aaeff5ee51dbe61034834eeaed5ce1288fd48f697d42b0dcf8f70b99362ee713a25a4b66a63cbacb0d8071700922df566851fd6d60ec0a5a622b0fd83766d1b40108473a9e26db61b90d73137b948de010755edbdd38aeb076e93b9f11e967a649bb1217bff2dcf29954d99994b6d424939f6fabb202e7dd3e8c5f4c0cc66ec977579c3a0884964d7fbcb5caf0bdb1ea18f41c3b3229307381dd106574dd2b0af4fe491e06907cc09afa46617ac3a7e1b95da53f5c68979cafaa89b90a2d4c0c27ab1c59afa59680caaf44086cf21af46fcc6ffadbc29ea40fbb82c885ffdb2801aed73661e09616657c6a119e9b8600542d7b937c3c3327811e127e2695def0a5e93c04738746f4a6a31b67940b48352f318400e2d5669c5bd45179022e1759074fc921eb19bf9c47584a86d330f4081d064cff64e50475cfaa2370c504d0dd50bfe23fe3c4428b9872adc8a6fb0b7f1f7f2c729934880ac9e9492f7e7631cb9cbf0cee9376277320fbf942c6f7faa57b3b3ca7b8faed61bce1dbeef65a3ceb0700fe59c493c4e5fb89cf246ba01a379aff0c08acecaa7f2801dbfc07a4f3d7bb7029c051c5a7a37d1a0be3dcc31debca3a634a9320bbe1e00e200246a1df70b27a00681e93f14480494aea626bb1e3f7f2d80fc1560e3cd2c2806af4c2356a2f60eb2490d1ec9141418c1c4a9a80eab17aa95579107d47b8ce248e6f201d5bce58c37d5032526e2ace72ddb33e0e11e5c1f7a700f7a6503071d68ca8ce35b061e49bc5571f4f1ce77b62c99508ef7d65eef3588423c89517aaac66ff32604dfce8f66e92f5b32e5c75d74f87ee65860f45a953fb471528b4aa99c66b887fb66e146d7d4e8044bd8e17d3368c5f9ec09f2b298a3143521f6a2b942f70ae0b9c00c7a2e2e472c5fbe12d51e511d5b0a43d056d5e45cfee26100b62068b3d551b3fe13aaa2e884e648c9c1557909484034c1a4b06f8ff751d8cb8b91ccc436966a7dd52233c6f125435b9a8b4b91bc5730f2126b36b06702fd1df9656b0d034293b942de09358a38ef8888c7128a5ac4e5e4c9c1e4dc0446d6f52a600f975a575e8fb98b0e6f5d01841ff309e521602d6b8739720e6e8ce0118b3887d0b004b35bc021ba74c96777000757a437ec2c2a57dd0df7687f6c35ed76a43e8c97030f02c3d2554381b3a2d1181bb4a028532b47a787b72aac61c354c6ef3fde565df0b6f4b491ddb413cbccbcf112ed2b3bdafe7f3155053b41ca091e090d565a3b9a610694c14a3f0e09978b5b1685f65b629a34cc607c7e8e795a5059d16eae1b301641f455023885a8699bed4090297bc749b6c54d4dfb792184dd6cc93cdc16021c35909de", 0xc51}], 0x1, &(0x7f0000004c00)}, 0x0) syz_init_net_socket$nfc_raw(0x27, 0x1, 0x0) recvmsg(r3, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f0000000000)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) 2033/05/18 03:38:06 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100020025000000", 0x29}], 0x1) 2033/05/18 03:38:06 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012c") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:06 executing program 2: r0 = syz_open_pts(0xffffffffffffffff, 0x10000) ioctl$TIOCSBRK(r0, 0x5427) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f0000000040)={0x7, 0x400}) r2 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000080)={0x0, 0x0, 0x101, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, &(0x7f0000000340)={0x0, 0x0, 0x1ff, 'queue1\x00'}) 2033/05/18 03:38:06 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_getres(0x7, &(0x7f0000000000)) clone(0x0, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)) sendfile(r0, r0, 0x0, 0x5) [ 552.750416] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:38:06 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00000000000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:06 executing program 2: r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x3) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x182, &(0x7f0000000040)="c626262c8523bf012cf66f") write$binfmt_elf64(r0, &(0x7f0000000940)=ANY=[@ANYBLOB="f345427ae0424aacfa500f0000000000000000000000000000000000000000004000000000000000000000000000000000627100003800000000000000000000"], 0x40) 2033/05/18 03:38:06 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:06 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100050025000000", 0x29}], 0x1) 2033/05/18 03:38:06 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:38:06 executing program 6: r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x1, 0x2a4080) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000040)={0xfffffffffffffffa, 0x6}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000080)={0x11, 0x1, 'client1\x00', 0x1, "4dd238664b2662f8", "355b82890b99f7c681dbb13ba250238de514c4f713963bdaaa6acb8ee184d5f7", 0x200}) recvfrom$ax25(r0, &(0x7f0000000140)=""/137, 0x89, 0x10000, &(0x7f0000000200)={0x3, {"1b1089ade65824"}, 0xa38e}, 0x10) ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000240)) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000280)={0x4, r0, 0x1}) ioctl$VT_WAITACTIVE(r0, 0x5607) recvfrom$ax25(r0, &(0x7f00000002c0)=""/28, 0x1c, 0x40, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000300)={{{@in6=@mcast2, @in6=@remote}}, {{@in6=@loopback}, 0x0, @in6}}, &(0x7f0000000400)=0xe8) restart_syscall() ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000440)) ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000480)={r0, 0x3f, 0x2, "f15821d9df34b9abcf26827fe4eeec53b4222f4e7bcb35f8f70ab5d166de9494b740f38ed03e668c1dc81b77127597de9eb1abaa9376c42ed585dfef4f6cffd10f8f6812daaf42e77f005f3908c25fc7d0fd64d927835f7dccd39fab3d2c2b5fbd485024421bd55d1fad233463ee4b7abd816743cea7cbcbb38fd583a884d53fb0d6c2dbb7cb65b063db543f904bf7869f65feb21ecaf727f75bce5998c84c5f3812d4e5052af4e90164a2c9c714ce01304eebc4e07c2b9b8e829094e6b4d030088bf9cd20bd6cec0028a5a6d0a2bb02d8e1388a30"}) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000580)=""/145) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000640)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r0, 0xc05c5340, &(0x7f0000000680)={0x0, 0x6, 0x4, {0x0, 0x989680}, 0x7fffffff, 0x4}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000700)='/dev/kvm\x00', 0x210980, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@empty, @multicast1}, &(0x7f0000000780)=0xc) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000800)={r0, 0x28, &(0x7f00000007c0)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000840)={r2, 0x89, 0x8}, 0xc) r3 = add_key$keyring(&(0x7f0000000880)='keyring\x00', &(0x7f00000008c0)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffffb) r4 = request_key(&(0x7f0000000940)='syzkaller\x00', &(0x7f0000000980)={0x73, 0x79, 0x7a, 0x1}, &(0x7f00000009c0)='client1\x00', 0xfffffffffffffff8) keyctl$instantiate(0xc, r3, &(0x7f0000000900)="07c30b97e6b11540b5a2bc1156d0376de210c0791c043ccf87aba4bd8713db93a9b59f", 0x23, r4) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000a00)={'broute\x00'}, &(0x7f0000000a80)=0x78) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f0000000ac0)) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000b00)={0x0, 0x2}, &(0x7f0000000b40)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000b80)={r5, 0x2}, 0x8) getgroups(0x4, &(0x7f0000000bc0)=[0x0, 0x0, 0x0, 0xffffffffffffffff]) getresgid(&(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)=0x0) setregid(r6, r7) 2033/05/18 03:38:06 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012c") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:06 executing program 3: mkdir(&(0x7f0000000300)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000480)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000002c0)={0x2, 0x8000, 0x5809, 0xb77, 0x0}, &(0x7f0000000340)=0x10) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000380)={r2, 0x4}, &(0x7f00000004c0)=0x8) unlink(&(0x7f00000000c0)='./control/file0\x00') creat(&(0x7f0000000540)='./control/file0\x00', 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0x9, @local={0xfe, 0x80, [], 0xaa}}, @in6={0xa, 0x4e20, 0xfffffffffffffff8, @mcast2={0xff, 0x2, [], 0x1}, 0x1}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, @in6={0xa, 0x4e22, 0x8, @mcast1={0xff, 0x1, [], 0x1}, 0x8}, @in={0x2, 0x4e23, @multicast2=0xe0000002}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1a}}, @in={0x2, 0x4e22, @remote={0xac, 0x14, 0x14, 0xbb}}, @in={0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}, @in6={0xa, 0x4e22, 0x2, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x3ff}], 0xc0) rmdir(&(0x7f0000000040)='./control\x00') mount(&(0x7f00000003c0)='./control\x00', &(0x7f0000000400)='./control\x00', &(0x7f0000000440)='tmpfs\x00', 0x0, 0x0) close(r0) mount(&(0x7f0000000080)='./control\x00', &(0x7f00000001c0)='./control/file0\x00', &(0x7f0000000280)='cpuset\x00', 0x1000000, 0x0) 2033/05/18 03:38:07 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400000000000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:07 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000b25000000", 0x29}], 0x1) 2033/05/18 03:38:07 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:07 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000040", 0x29}], 0x1) 2033/05/18 03:38:07 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000002640)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) bind$nfc_llcp(r1, &(0x7f0000000100)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "8811e78754a539d39c2bd6a40fa8c8aa024d86cdc834bc921c0525fec2541e21ccf67e1d7b55cabe9e068dd58ce565aa9a9d325ebac7627ffe7a54cdbd77b3", 0x2b}, 0x60) socketpair(0x5, 0x80009, 0x1000, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x401) dup2(r0, r1) 2033/05/18 03:38:07 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000), 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") rename(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00') r2 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000000080)=[{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="b5cbb3f0784d033f40d43c07b3b9f630850889f7a9e3cd2b8f560df913039673", 0x20}], 0x1}], 0x1, 0x0) recvmsg(r2, &(0x7f0000001200)={&(0x7f0000000000)=@vsock={0x0, 0x0, 0x0, @hyper}, 0x80, &(0x7f00000011c0)=[{&(0x7f0000001140)=""/78, 0xfffffe06}], 0x1}, 0x0) 2033/05/18 03:38:07 executing program 6: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) socketpair$inet(0x1e, 0x1, 0x0, &(0x7f0000000080)={0x0, 0x0}) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x89e0, 0x0) 2033/05/18 03:38:07 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf6") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:07 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000f25000000", 0x29}], 0x1) 2033/05/18 03:38:07 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:38:08 executing program 2: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_GET_FEATURES(r0, 0x8008af00, &(0x7f0000000040)) ioctl$VHOST_GET_FEATURES(r0, 0x8008af00, &(0x7f00000000c0)) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000080)=0x0) sched_rr_get_interval(r1, &(0x7f0000000100)) openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x80000, 0x0) 2033/05/18 03:38:08 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:38:08 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:38:08 executing program 3: r0 = timerfd_create(0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='rdma.current\x00', 0x0, 0x0) ioctl$TUNSETNOCSUM(r1, 0x400454c8, 0x0) timerfd_settime(r0, 0x3, &(0x7f000000b000), &(0x7f000000dfe0)) clock_gettime(0x0, &(0x7f0000000040)) clock_settime(0x0, &(0x7f0000000180)={0x77359400}) close(r0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x80000, 0x0) write$tun(r2, &(0x7f0000000100)={@void, @hdr={0x3, 0x0, 0x9, 0x9, 0x0, 0x40}, @arp=@ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x9, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @local={0xfe, 0x80, [], 0xaa}, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}}}, 0x3e) r3 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x8000402a00) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000002c0)={0x3, 0x100, 0x7d, 'queue1\x00', 0x1}) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r3, 0x84, 0x16, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x12) 2033/05/18 03:38:08 executing program 6: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x1, 0x0) fgetxattr(r0, &(0x7f00000000c0)=@known='com.apple.system.Security\x00', &(0x7f00000002c0)=""/215, 0xd7) accept4$vsock_stream(r0, &(0x7f0000000100)={0x28, 0x0, 0xffffffff, @any=0xffffffff}, 0x10, 0x800) setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000040)=0x6, 0x4) r1 = socket$inet6(0xa, 0x5, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f00000001c0), &(0x7f0000000280)=0xfffffffffffffccc) r2 = socket$inet6(0xa, 0x800, 0xffff) setsockopt$sock_int(r2, 0x1, 0x0, &(0x7f0000000140)=0x81, 0x4) ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000080)=0x284000) 2033/05/18 03:38:08 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf6") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:38:08 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:20 executing program 6: r0 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = dup(r0) read(r0, &(0x7f0000000100)=""/234, 0x82) r3 = gettid() ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000000300)={0x1, [0x7eb9]}) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x10000, 0x80100) pipe2(&(0x7f0000000280), 0x4000) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1000000000016) getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000340), &(0x7f0000000380)=0xb) ioctl$TIOCSBRK(r2, 0x40044591) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='btrfs\x00', 0x102000, &(0x7f0000000200)="a83ad9c90cfbf3") 2033/05/18 03:33:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000001", 0x29}], 0x1) 2033/05/18 03:33:20 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:20 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:20 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x7fe, 0x1000000ff) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000100)=""/143) sendto$inet6(r0, &(0x7f00000000c0)="6a725a5f62d02a6be55afd02d999", 0xe, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x4, @remote={0xfe, 0x80, [], 0xbb}}, 0x1c) 2033/05/18 03:33:20 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf6") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x100000000000000, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:33:20 executing program 2: r0 = dup(0xffffffffffffffff) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000480)={0x0}, &(0x7f0000000140)=0xc) ioctl$KVM_ASSIGN_SET_INTX_MASK(r0, 0x4040aea4, &(0x7f0000000200)={0x1, 0x3f, 0x3, 0x1, 0x800}) sendmsg$nfc_llcp(r0, &(0x7f0000001fc0)={&(0x7f00000007c0)={0x27, 0x1, 0x0, 0x1, 0x9, 0x8, "a19a6dddec32f142692009851bad09a18882fb82c72e3faa23fd6bce9fa8e05711d421577e0af57a6084aa3f29d91f1c05a70c8d4455096f06d0938cfdbc39", 0x15}, 0x60, &(0x7f0000001e00)=[{&(0x7f0000000840)="4571a512fbdf7a995417639189b6f9318e5f53340671e17f72fd8ab411e0a67a96b25e56a3e29acd772b28921ed83461d9f68508d4764dd60dc6e2bba412058ff2100e2265044644d823db9b2044035a566a2bd88da49009f14b863741008497d309d9e3b37fe288bd73b7693b23186b3c575a4b895e8888416bfb4b", 0x7c}, {&(0x7f00000008c0)="264b3dbe086796d6bf53c4d6513dfec9f6c7480f2ab4511ffb9a9c48358d70d08902cb316b8c6084e546c47254384616a12bf4e4ea091e14c6e7d9be6ce22419e99ec625e22daee08120f842d298c29926abe935d63776c432bf286dd52d2357753332f5047ab6033a6956e04a158376bb353ff70089", 0x76}, {&(0x7f0000000940)="cf73b39783c0a3265eb92252f13765f281c0fda09a1c1c202f4773c8166405cfbfe2c234bbaf5b13ed6175f3951bcd07014daef3838ced699232922ffb5b2633b13b1c4980dc98cf11b1c0310efa135f77fc9930e3833ac7a69e843f007fb1e6f51727314dec4e4f8bbddff6ae1ce7f7ba8fb04e0c4dfe09e65cb736b39f266599eef748b9ed1c1365c10d9d162239455e319849d88f763f48818856e6a1503b1160988eb72f6fd9f4d69fd82ef058715a59acff76955b94172552548266f4cf7d86eefcf2c9bb0f80cc5909d37bc6d06ec53ffe90f8", 0xd6}, {&(0x7f0000000a40)="d2e96eb074ea06376cb6817ab88a29a0e1c85d6df269ff17283423b52563fa0fc95f023795f7ef98325f14dc411d788ed897bdf967014bb087944455d27436c31bc0c9eec10742078cef9ee9d28b5e864038", 0x52}, {&(0x7f0000000ac0)="7620068d52bb658962fb597f10592f149b7673dedb22a42dfd79064eed3d72bc081a782bdabdc8619f894b9ea0a53ebdee48f38af660e2649b19bdb843eb102951fc5f2c7f492f8bc2d6a248801a1c322ab48dc8762c8d3a031e2da4847c0f168d5682c033101a1fdad7c651743fb892a5eb99871c6bf77a047ca17cce3a9297794ca5977fea847329d87473334b41cab1bc94e97b4ba53237b795df2bea2e2c3735e6d6583af9a5662dedd47abc24b4545cda4e58b0313b49bf6fab9d0fa876170bc1c68a318cd3b7b6541f682ad888224489fab1c57c59429634841194906ec4f67cd5def7d1681588341ab9cc7ca702851612986152b137f78d2062e1e6ab1b6fe7c3278532708294248531296ea3c5ece4384c7b283ab78553ceb2434e338f5279ad483102ef4281efc2842d34734564f0489f8d544c2242afaa57c3f82ff5533a754bf3007d81b839edffb7b3278e56cb1f0f417deb3a1ee990a9f60db24df8bb8e16251f10c6f087c0d617ac0a71b48a34fc505a9afc72a7d8033471c68db94a1183b59cdbfe3e43471b537a93172b329aafa71bd1607727ff301241efe798b34e782b9ab17f35c17c3be321e2cc5e9b80c54f83b2938340539587593ad78ea23880f0f909cbc0feb72d25668f176846d32622c04403279048f6070206787bb6e3545ec4f2ee9e2a4baa64e813d4b9c5f95bcdf3c432d097b4e613d64f22c85685d8d760e2a9bd495f09d0915a9622a7547aa9ffeafbab35064d8f97610dc4040d6d70304d9eb2941c2eb57ae42a7eeaac0c5c0e440dbb0fc75a41269c74911478dce3e327c05806ca6a20b1b937375bc665e9dcd308e03e7926cc452a4794e31eda74cae0e6949efaead80aa929c1d796b1ba531d8acd3e75fd49d3b424eadf64f1c4b1f9244710487e41f25f0f81444072661a38f4bcf687332c7dcc8f7658b1e4de32dea802c0a8194d456ca374612a7b06659dd0add945f84af9ae394e1ece90df6f5d8a5ad4b5924d1aff267115bea4776bfe856d3ccdf2bfbde0dbbcffc5bdab96ea1c779ac39337d2b3c30d64312ff991fcaa847e5636d8902049bb8f1e3455735af11fa412710bc72bacfd17ae350913aaa21869e66eb246a86658e83186077db7a150cb9d302617baa596bfb6d2e9c973e4d236a6b0bf233fdaa654c9a3dec523cc41d5c894d6e928218ba3adda2e941b1e4e7868ac51cccd291efb824b97595f682d6570a3946f0b172ccd309a02af82663962503d380c9afba36e1fc8b4aa969e798fc2a232bc181815327ff24611d43cd4f1680b7671e8b349f68f3373e39bf02ea9f63ee6530b235b9567f362c96cfc9193699e270092655e0377509a172c8e576eb05ca5546b62c3821a1eeb7a6bd03133d7e90314a7b97083997441526a3cc9b558206c52d40b0e57ae6cd97df6624377cbd6d527b94c765cdd5cc9ab11316b00ba3957ba5c7ee43b556eb70706dd32723a9acb459fb94e35979f2f12de6aa0d0960cd5425e11ac2b0e54464b80de3298c1a4322c90355c79131497dcb8120e1de00b99d2f8f8a0a0af9697a3f7f463f6bcdc6a250cf177107b843a113dd867ad82393eac63efd073762c4b82550a9d33b3ff3af57dcf1b3a3aa0ca504d34fa559106b81c3719e64f7b7cd7f8b751ae41e904c8ce31aa2d8e0f62d56dd12d429f5c89bd30a81f0e0f5b781046ec7b2fa8cfc383119ba0067970dcbe42af009b8c7d41a9d029543cf5b432a3b8a1f9cccd6bfa30597956422774dfd0e49fb2e17ab118db622328fdb1f5008e7947263350e8849d38e14b64bf3b8d9fb725f922eb90181b42ca2eada1d7e3c2677bbe0bb1f9053305f4ab9db3cc35dd159161b2e70588b4cb6c10cf0dda0f0b2d984ca76dc256c9b51e1b1072e9baea3167f878f62cf977e6f09e9a8da90da593863c906454b99cba1bb488bed40409f19517997567c7a495d1090926468598e5b356414d1c357fe712bbd702fa7da90224a5d53a64d917f49b138fd10c246a3e34206aa106502af7f7dd6daff25a41fbc4f82677d6bfedf1f0bc4eda693df6f08b1fa5ab4bad558a59c71b915bf3d26faf1ae0a04b64338e28c86e3713728b40a8e963ebc9b64d43ccccc25cbe69dc3a571b888f6f9eb649728f89c11abaf0a52073a44986288ac3156d1f8de468e4296a76cf2a8fcfd8a95b3ce1cbb39e560bb4b78d8b8ab819aea7293125f172faeff5d32cbc0d9e5a9f68b72eb7d2b7af48e5c39489d1089c5c84dc9369811b62756a6101ff8e2ea99ec12c72bfdec237e193aa6f43cc0220303266fa77ea72b8b6c5f23c4b9eab74f83900efdd2d8b0c10cec78ad30f330d434f203ea0c67598774f5426d85af177def8bee7e65640c829e0563e97df9706a72af78da3e6a4002251433d4baca02222f0977e1d468afe39ef28eee35341e5f9e368cdca5fa44f34c9f2cd28e48959b8792a3b91bda675287a4c4e949f865ab05e4402a9d8dec3d974a33ef4f281d3855cb21c3ed99561938b055c7294386de8f3a01e9823f027c2d2631201d2435832e3247d7b06f5afd0a59a1e9fed12e0744a62b651a771e1060c4f430acd33884202e31fe657952a9ce8c2a098b63ef8d3f6aadfa297a39b4ffbc73e45a2ad6bc085828d89691095aa9b9eb2e9842b678bea25ecae4d7e795ddbb596005ce844eb5fe008d25badda3475d1a33550d2b168a4d6b3bc120aa19e7280af8f5cc4ff79541f2d19b0d2a330c3f7c1e82e24a795f90930d0a041722f21594d6b90567df645c48536b08c37875ee1a79205485a3ed7785653224f7b9351899d56aaf7d7b702ec8f144ff889028a0a40ea5d64706b74512c350e66a99acd4f87b26db77bf5c3ee150fce421df8f9df4545451c79ca62ca620f991a90268cb27c3232812a5da5417b87d61ae1b3e2770e5eae28cdb2faffb5d86ed8655eeb863a6a0420a1083cb99acac333b18aef703b0cc11b77550fc540dd4f34cf81b7715210366c876b637f6cf95c8848bcc3a011c46e2d71812da41072f14d3900206bc841b85cd5c3c8cbf09f4da3892d14684020b87597eb149005f944569ccf08a28db1d4aa711a1fd28e8673c2538662060a8098f9208455e888af3512470d92c4f75017d8c268c26bc80f92d82305da919d1a6db187b05d403c70a86943fd799b2d463e7a41933ec65684de2e60495bdb5cad8ab73a26d7418d568ae76fd956b0e39bdcd542682a5b378276d7908af10ce66649735fa6ed5091fcb3cf646e3b372bf1e6683f6962e1e7a8999754804e7b95cf73177b0dc6720bda2b254eaaa6b09ff3e808e047dd3591737fe401dfab391adaf15ed0004c3e6372a8870c262e2d652d8e94a0d4072b041973b0c85b8713e4e648a4557a0b811790e9844b1a20d5a1e407c75f55a6aa201668a01edf9a3f0bb55498d020267f1c98112ea9967d57730d5441b899cf33765d8e6ff28491a93a43efcc7e67c4fe7425290f124f4ea04cad2d04b9a607e371f1bfcabce3ab44ad7b7c7f63ad8dae1a158d0c35feba7091fa02b19ce6906512971d829eb8ce1cd17d18efe2e66af283698e80cdd2ca0a6ab87289308f46055a3d282d1832d0189811bf836b3b715b2bd8c4e806b2e43e7777bdc76aa56a73864188ea56c350e3c9303a41a616e2b9340af7142aa509ebd13fc74bce7df956875ad3b428d9b5e69afd5758745599096aa0d9297ece2f32ec88916c5394ee624d31b5c67f05067373aa49075f039e693b9d3403d6540d034616687202fabc8608eeaaca372d922e34500cd57959545b838eefcdff0965d5a90fd6f5a10dd9c049e0cbc2b89806b8643428cb96c85f0f11c6915ef1a9f6e3b971b07638e2e730f8d1ad71ccd5f05f65bada9f85e74a1755633ff9cadc4f748566d851422c787e4e67b9173a4a67fb91496f999db177955f57edb952a65a5bcea528890902b8f878f62ce20730d8d58b02b1920d8677ceb4904f703aabf7c768b0ea82eb2da73a6abeb1e7ede0448158e5284477c7e5a7e32fabcbe8cf5e7d2907ab7cd4e5dd383d1339585e858066995cf70271a5bf86ac1142428d7f89988276d299c19fb0d08ce0776ab36fdb169835fbf01241e57f5f00001a34ba3c316559128871c2e48612d435898424d0a3d3ba2de37fc86dc7613414f975dede32221c59ed1d578fe6ce0373f0adaa4380af9a6da7f6ed4b3c33f267d7e9e6c66be5f3c9c89f9ef36328847659b978bddaca021505f14363ffc1e156f88cecab92436d813af42c926b2ebe045dd8651b5a29daffa97169ab95165f9663adb7a1da08e68a28336ce4edf2edc7df3ee34f959ebd72a6f1ce012d1da2063e3255d12582b9076b381469e8c0735a0c54e6efa443e52f4d2f78dcc150f8cae6e5a751d57b5b97c52b072cf83e00b24984b6ec2ffa42f78d623fd760a2cc93062b2990eb1f0be52891b7aa1ac4d53e5b745e9822aa41f93dd433fadca950c87e1d97ad528d55fd65957db46bc1e7eb56dd849e06629f9ab99f547c18900ae85f2e8e10a2e39b05fb61791ff42234e83cd22ac5792f7975ce42b660f986a82cf1bfdddc2f084107c13be550996de9b8e7ddef5a3a152efa28cc3e082f015d884daec67c04f0327417ffadca6ced6bac8e261e1bdfe25043fb94488716fa1d8b03673e3ac56900d0a0b64a2af476e2224efcb36f060f31b221f0927bf6b4834bb88934c709074e34aa89d8fff9ffcb14d21322b436df5d588c53832cbf4cff6d25e9a35a750b1b367279a7f72a290a0f04304ca2e31febf43476a29c8b502cb905efdf11bad523cc01901a375057ceae9a3704fe1beed19ef3ae08865faa134579066c2501d294c3e56b7c6e649b5a37b65e61190638b69a742d7b24979b6cb3d3263b01c70d0d1c6f9e7c8dba2cca6247e5aff5a9feda9d77a12000cb05657776bb5bc247ef0212376df387eddafe13e0619af3756504311a022065af9a6d03eca11921bf9428b76cebb0c41a0336e60c727e6a50be1d15f4e06c752ca00164216c04503dfc3c3d6052232e56196d0e39aeaabfea60d7a7c68e01875ee7ddb90b35c31f54f9d8fa51bfe4f5a47a2bdd0431470e920b1c5425eeecd7c0db55c4a0bfbeb4f8a360984cb9e5ef5a7d505d468a04fd844f0ac4a8db243d0d8abf6dbcbbd227abc9aa1428a05b908f79170cf7e93f74b07847cabdcf914855f35d0ce0ef082981d5f53dd70718f146d3051f9a60f61069e602e2f25e473ebf5c65411d5db0379461cf7cc57b597463974eb6388a136bfc09059b7eae76dd2f86bfd08d70769b14b5e4022e2f4c3ac4a144c0ecd4537e6c88e940e76b67cf313da27c31780fed81cb626ac798b68c279786c4e0713f1f845f2ee256c067c95524ec96159b83204debc419766dff619760893e374c317d80b7710a8017b31db5fe465fce168ad9c72b6898e2acde9bf4479fc596fb8ffd3583f401c690c713f60102788ccbad4bfec47f3453d2b859c52c88e3eabeda9e9748e65c2c9540fce9770953c484c5ca678420ab7bf30619b3efac0e69702bd836dd7bcb04ba1c514413c5d0952cb0487bffacf25396cf8a472007302003a43e08de2d82905b33d73e46402a083dbb6b1c841c745b9a557267c96c6a7269009357805603f26718e5c48f5153a6179bce401fd5062b99e6c734fd355a07926e9189e653d7b137b5ace5d7e7bec658fa5451014bceab64d9cb6a8c7458db929116253765d69743bd4e28944b5aeb1c72072d917b9e81d34d21f51f86337bc4902c1f27883bbb976ecb", 0x1000}, {&(0x7f0000001ac0)="d7fffa930e786d82c9a977739fa0f7b31227c0680aff3ecc5d829b03118e35624a8c66b01c4e915d3a60ec7755e1172ce80feb0b35fe0a1cda7414bf47e4f9c791a950ef0f189ad38547af50c49616568643016e44af2b3e2ce6397c7a640091a9b8432c8f7fd10ed7cd8ae9afc1cc6ff0ca01dc3a43539853d1e0406e8f669ce5a7efdeb79ce169777a3b764a8e558ea487b50d3b3fbb2649c45080d763fc273628264591ac5d01947ea34ef8a75fdb9b493ce58c4c4688ea93d6bce13bba920a164a0fbbf0677f232bdfc929fc7feaf7811fbc69633a53e33e2cf3a29828d0ce91b68bca2677f4b42b52f1b720e6764a83e4fe886f11322df94df8", 0xfc}, {&(0x7f0000001bc0)="a8b5f014a4f160a5e2032ab76b07d1326cabbdc4d34e117b0157c2b114de43d0de9a30439fd0568bcba136241b518f3826bb272bfda6d0a1adc04091215340ab0503c3fdab6e2c83e9ce3650e21321df458305c8f5816d8fcf0cde065e626d79955db654598c480bda93d70f9318186faba05640b3d32ac403c60f9e5e", 0x7d}, {&(0x7f0000001c40)="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", 0xfd}, {&(0x7f0000001d40)="a74dd2f62cbdf0d021bb223e26fc15b33314d3aaded388ccae3256e148e166ec7e93fa4d98d0bf76e317226b0f75f3d412898a8ca2e3d7502a03e1f1c20b4132bb9a1cfc6179cd28d1efd660a75783e8816cababefad0eb03082a09ec45c7d9835adc54169b209d18b2f2e460f3d2ad0a1f6f6e747ca0efa1ae4ac311c19c0b1e5613099bd61858d637c223c4c9cf58b1336574c8106d626cc1252797b0e15746f797685", 0xa4}], 0x9, &(0x7f0000001ec0)={0xd0, 0x10c, 0x9, "a5191d33a002d589408531ddb5608b5261b886d37e2be4aa96a0585e71775bcabf1ff8862e17f4fa11d0e0c0306022acb914ec1decbba0db3022e07d4fd52a75f9b9824c339ae1564d6c80fb32d44bc934bdcfe1ff5dea244714ef57280e5d31c4a1ddcd09fa222a64c171cf7c63cf474f565e381896a78941b44f97008c322af587ccc31600158d522d05b22301716ed7614da8e640e1fb70205b0597b800552459a2673a723d144cf7edd4b6e6ff05a9808f443b9328855d36"}, 0xd0, 0x4011}, 0x40000) syz_open_procfs$namespace(r1, &(0x7f0000000100)='ns/pid\x00') sendmsg$nl_generic(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xfffffffffffffc31, &(0x7f0000002140)={&(0x7f00000020c0)=ANY=[]}, 0x1, 0x0, 0x0, 0x4008010}, 0x8040) ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000002000)) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) syz_genetlink_get_family_id$fou(&(0x7f00000000c0)='fou\x00') setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000002040)={r2, r3/1000+30000}, 0x10) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000240)={0x0, @dev, @rand_addr}, &(0x7f0000000280)=0xc) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x1, 0x2, 0x3ff, 0x1, 0x0, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r4, &(0x7f0000000040), &(0x7f00000000c0)}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000400)={r4, &(0x7f0000000080), &(0x7f00000002c0), 0x1}, 0x20) r5 = syz_genetlink_get_family_id$fou(&(0x7f0000002080)='fou\x00') sendmsg$FOU_CMD_GET(r0, &(0x7f0000000780)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r5, 0x4, 0x70bd26, 0x25dfdbfe, {0x3}, [@FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e24}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}]}, 0x44}, 0x1, 0x0, 0x0, 0x8800}, 0x20000000) io_setup(0x8, &(0x7f0000000440)) 2033/05/18 03:33:20 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100f00025000000", 0x29}], 0x1) 2033/05/18 03:33:20 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000a0025000000", 0x29}], 0x1) 2033/05/18 03:33:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:20 executing program 3: request_key(&(0x7f0000000200)='dns_resolver\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000040)='user\x00', 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl(r0, 0x3, &(0x7f0000000180)="008f1e0a99a0d019959e07da6ef81283c6f2c631eed973f402be172a9a56c09966709d851d566b025da18c9179bae626b342fc2a50a74583b9100e8f70d98589db201db503bce462e9ea20245ad7d463aa44df1769dc0e5d3c3ebc8a0bf5923719fdaf588e403905b9c2ae8bf6e273") r1 = socket$bt_cmtp(0x1f, 0x3, 0x5) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000080)=0xc) 2033/05/18 03:33:20 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:20 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 554.762633] validate_nla: 4 callbacks suppressed [ 554.762642] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:21 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000100)="c626262c8523bf012cf66f27a370eb7ecf") getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) setpriority(0x3, r1, 0x100000001) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x2, &(0x7f0000000000)={'ah\x00'}, &(0x7f0000000040)=0x1e) 2033/05/18 03:33:21 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:21 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e666174000204010002000270f7f844", 0x17}], 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:33:21 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100100025000000", 0x29}], 0x1) 2033/05/18 03:33:21 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x6, 0x80000) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp-reno\x00', 0xb) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x9, &(0x7f0000000140), 0xffffffffffffff86) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000080)=0x10001, 0x4) syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0xffffffffffffffe0, 0x40000) 2033/05/18 03:33:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025009c06", 0x29}], 0x1) 2033/05/18 03:33:21 executing program 6: r0 = socket(0xa, 0x1, 0x0) r1 = gettid() ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000000)=r1) sendto$inet(r0, &(0x7f0000000040)="3bd89f9c5aab0b36e766944a2171e26bdad2655fbddf88349d2caeed49765d0b60ca27bf9fffd826161ad8998a27b0d94cc85e9595d713e37cc8432654", 0x3d, 0x1, &(0x7f00000000c0)={0x2, 0x4e22, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) ioctl(r0, 0x8912, &(0x7f0000000080)="c626262c8523bf012cf66f") syz_init_net_socket$llc(0x1a, 0x2, 0x0) syz_emit_ethernet(0x3a, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaa1414aa800e05fd00000b4404000123000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="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"], &(0x7f00000002c0)) syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x9b7, 0x101000) 2033/05/18 03:33:21 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:21 executing program 2: r0 = gettid() rt_sigprocmask(0x2, &(0x7f0000037ff8)={0x3}, 0x0, 0xfeca) clock_gettime(0x0, &(0x7f0000000300)={0x0}) r2 = openat$md(0xffffffffffffff9c, &(0x7f0000000180)='/dev/md0\x00', 0x8000, 0x0) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f00000001c0)={[], 0x2, 0xffffffffffff0001, 0x0, 0x7, 0x77fa, r0}) rt_sigtimedwait(&(0x7f0000000100)={0x7fff}, 0x0, &(0x7f0000000080)={r1}, 0x8) clock_nanosleep(0x47, 0x0, &(0x7f00000002c0)={0x77359400}, &(0x7f0000000340)) rt_sigqueueinfo(r0, 0xe, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffffffffffe}) rt_sigqueueinfo(r0, 0x9, &(0x7f0000000240)={0x29, 0x3f, 0x80, 0x7}) [ 555.591718] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:21 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000625000000", 0x29}], 0x1) 2033/05/18 03:33:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:21 executing program 3: sigaltstack(&(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000000)) r0 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x10001, 0x200000) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, &(0x7f0000000080)) r1 = socket$inet6(0xa, 0x802, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000000c0)={0x1, 0x0, [0x0]}) setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000068fe8)="ff0204000000000100000000000000000000000000000205", 0xfffffffffffffe4d) sendto$inet6(r1, &(0x7f0000000200), 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e21, 0x0, @loopback={0x0, 0x1}}, 0x1c) 2033/05/18 03:33:21 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:21 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 555.645598] FAT-fs (loop5): bogus number of reserved sectors [ 555.651525] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:21 executing program 6: r0 = socket(0x8, 0x4, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x8, &(0x7f0000000040)=0x1, 0xfd) r2 = dup2(r1, r1) getsockopt$inet6_tcp_int(r2, 0x6, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4) getsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000000), &(0x7f0000000080)=0x4) 2033/05/18 03:33:21 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x10) [ 555.795323] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 555.943667] FAT-fs (loop5): bogus number of reserved sectors [ 555.949623] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 3: r0 = socket(0xa, 0x6, 0x0) io_setup(0x3ff, &(0x7f0000000080)=0x0) r2 = memfd_create(&(0x7f0000000180)='%,!-vmnet0proc,em1lo(^\x00', 0x1) io_cancel(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7, 0x0, r0, &(0x7f0000000480)="1a5905a1371682c9b94745ce553293a0b26fcfd026aac45a5850a105d500b0676ff53aeb7a8513ff75585f23676b8c485c18bfc99a3c38d1a17379637d8f4f2f8eca0b9d24f537338d6dc59ea39a6e8dd1453518e67067e96ce83abb16c57a643daae5ad14f37cc061d1e748896245006b23f6e835054b02562faafc00000000000000b5000000000000000000000000000000", 0xb5aa2b7e17a6cf67, 0x5af76d21, 0x0, 0x0, r2}, &(0x7f0000000200)) ioctl(r0, 0x8912, &(0x7f0000000280)="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") sendmsg$netlink(0xffffffffffffffff, &(0x7f0000006880)={&(0x7f00000028c0)=@proc={0x10}, 0xc, &(0x7f0000006700), 0x0, &(0x7f00000067c0)}, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff]}}, 0x1c) 2033/05/18 03:33:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100001025000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:22 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:22 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x10) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x80000, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14) write(r0, &(0x7f0000000040)="2400000024007f00000000000000770100008445ce837d49c5ef9fb57455062730b1c4650000000000000100ffffffff0100ff10", 0x34) 2033/05/18 03:33:22 executing program 2: syz_mount_image$msdos(&(0x7f0000000180)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = creat(&(0x7f0000000880)='./file0/f.Le0\x00', 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000040)={'security\x00', 0x2, [{}, {}]}, 0x48) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000200)="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") 2033/05/18 03:33:22 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:33:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000525000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 556.643877] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 556.654806] FAT-fs (loop5): bogus number of reserved sectors [ 556.660780] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:22 executing program 6: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f0000000980)) r0 = creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x200, 0x30}, &(0x7f0000000080)=0xc) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={r1, 0x44b}, 0x8) open_by_handle_at(r0, &(0x7f00000018c0)={0x1008, 0xfffffffffffff801, "bbeb9e01823f164b0812b367d89bfc2375ca990d9dce46db4c0b506bc812648dbed723738293b316c7aad8dc08f07d91b72a60764e92cb5dd94578f811f198be2dfaf9e2b7bb1ccd91a99e092288b3f5f2728ec80056d6df1e32f0b995a0fb9d043cafb6f1d831e6b3736a9dfba6aa8405d69b4d7bad9b0687c0a62783c6efa670fa5880bc2fd4bffb0f7c4743d7a94eb5532b59a120946d55d5bc63d7922c897c5ffac742e7fdc7cc881cc0a33485097a2ca8afc8c100e794c123247a18e98af1adbed815bc7d8cd6021331acee0f53fa504ac9bfb8da6b2e04fd889f93b1864b0951fdcb71c04fe3e016db60b311263086c38486de8a877dc66ecd1156920c74d2d8ea09f4ac67bec49ec5f8d9980e2e9ec756b69d223049ad5046fbd975c38491b04f9ade53988fb1caac229f47f6d8209278fc2775eb1545b802dbed65dc7719c5595d0551e442776e9df5af7365112692e22699508e479faf9b8ceb8e101f87bc6f539b57c405e3d7ce2d2d0d04a8f8fa22da1562356e4e2ef9a19a17d4631f888178d0e67d9f2c2b0c883adde7edd1592a56473e09fd9dd738f55e86d0d2fb21afd7ebe6840c0b4a116affc35d4d7692292004d91e142734f77288eb2262795024e464e1bdfdf0dad9c8bb71701ad262e7cff43f4e92c761c2796c043224799fe2bb50bef38dd3a6eb8b0d50b61bc8863a85522c70b21ed840080c1d4150349bcb903aae1047eda93ed4a12e304cfec3c33a0b50baf2ae8b3ce97657a99d31680aa2b6db762db32d613eef982f121a4bc3b314684d494f78552e9a157c61499968a51e567ed2ee108f8b7069b14e3ff828956a118abd848e25cf80112f50b02815223de559a0fb078837890e03dbb9945a3d9a76a3cf564ea0e091bacbdccb6c7cb58e2b29df462a37ea1f2ccffec495d613432ec0c317243cfe20f80ae2e6b410e57215cfb39ca7fac0a953794260c42206aecb04b7fdc4dfb2659cc79afd2c830151ea8d917fc42f9d1c0cf0f8fdc6ccd2806a687ea4175ea0b861e16b72521f16a3b33a5d0f0ea59922baba8550d3400350be14c849377e7eb796cc151590c9228319f8f9cedf7c758e15976ef9e3638d902142d16a122457be2b1fde0ad6d980b89826bc06df372af8c951fae8fb27c27c22097a2a3bccf4ef76e4386318173574644c2e602bd80840c1450325ce1f4630a5d34541bc21e61d7ddd83272a021c41d2d04e5b4986fe688e3fcd1706dfb2456e2f07f1410361ac4c93958c082f38903306559a02713f288792eb6e4369a42a79406f984906254ffba3e9c31df2dc6528713731b419ec7186093075c9dbaa36015c6e623733e54fba7300fed017bd5d72d0e88ecbf10dbf6a44c0941f0799648659dbc07966c9b5f16f0f807f3f9db9fe0994a9b0a0987da04eb3c59ca96655adb0d73548040320f38db6a700aa2ce9d5cb1f135ba27d4115e442a73fb0cefba12e202dc6510460b07711bf1ec8c86e4e1f33ab44dadfc82e45f140f1a6cdbf062aee1ec859a42f2beeca99cab6788170afdc2116c6d945a691acbf9e9e6961e4166a06a133e42682117a9ef05e5af440edc1ef8091c2144ec9db46eb640e6cfcc47eda9732fd55112b713621a9958dbc9be2345380f2fadb5faee14fbb44a1de7c56cdef300b55a5e9dc85d6e987faa94c2f8027d4778e004ae2e1ebb25deeefe5f5c5568399fea1d6ba588aec188f90a25875ea6ebcf452952c95580eb234014226362fab83c78b47102d11d495c48e669f05f86385f684ef33a4579383cb79c120b9e5aec19187833567d6821c7b24604c7e3009ae579a35ee7ac90659f7ee8cc8e4f30e081a09b0e16e2b4101b88933aee45c646e1050a875d78cf04832d7ccc34a0ae49341aa9ab8445f084a81f9643afdc4627b5ee9b13f9dd9cd07379538f814a0947e7011bba73c89c021835adde4498316c1f9bdf10a5d027def7c371257d313d750ee332cd3b2206b1da693b8ca5e11c22bc7a60c136c5ee425b89737c61e00486f68de14c3c7f88530a8ed0cdc81a5f871cd9ba80eaaa41d192dceee8eeca10df1f46c83710de408f42fbe3e413f4c55eb283e6feec0373d3186bf979399794c1b0987e72134c5919fe53a57dc29a86ed40b5a77b55396b6fe0f05fefee80b1db381996db2519734f8ab3cb0f2d4d2d220479ab7f8fe4280b91dd893c284b2165868ca9b34be928763cbc8d61b94d600ce735fc9450076c4a5881164f4274b26195f806029f41729a9473c6c7674eaa262338f5d5f55edc65df732d1998201c7826eeca0583f4806b6dc02b54c54b61ed694555463e6ec57bcc3b27a0aaa9b87777271ceb02825caec3d9b6abe9caef3a07f33256dc559ed2a23d181d793b7b6f156b671a5dd23d76595677358dce4da8d15fa8ad4616562e614be58137db58a1ef3de1546ff09ff115a1a8fdd0e7e642140bd48ca5c71f275f0f43d18d9714aabfd53afa51069cdcbee22a2cbe7196b46f76935c871f009337d619025cb5ab4c379f437fc8c3d1eb1a75c357e26bd83acb3cb7c4f9d04f522e891327549586cd0c11e541083eb5b1049bf3009adf36f0aabfdf7308dcc44bb650def0d4a3f59c859ba6ff756d50b8934eeb16aec8bd11c9e4eb40581889af522085d255c22ac33e9b6c4c535d7094282587f50c98baf1f1da4da1a2245a1fda569cb9a3f62bf38e04436c38e27ed1045f6605f670f0a98c71ae7a63c196efdc30a5fb5c88141344b19ec69cccda46f24880c7e9bf53314db07f50f7fab2b0efbce6088f870634b9ed1a1c65e2186e641f2a3a297947684dbe4e972497cf87b496c7263f1e6ce53556c90faeac88f9908a9be9b299b9c115209661c04f58f856225e8c0cc2f89d4240c2cfcc1f620b1218a3e11cbc4cb815e2103e2a1aa564c7f95ea211f33ae7718373d8933a5f925e126d271c29e44940e300d1547c11de2d0e052ca82f90f7992931f2bf61f6b29f6bcea18b5b9136523d070c38d0dd31b8e32ed9a750a3e52b60c01059db5804532d2fb32f72e42f3cea1afc307b690261b161a0303dfe418e9b8d899adaaa96dc67b845f703f303297aa89373953cd7622a9ea87ab8d286a182844dcbd66c2b63a2f80d4a06ae375c4a9794157932b9ba1f6218e806378a2017b5f345885620710b01bb43f1747f7a0f33488b2b5de4998bbfd4e3e1e0be9f5aa95129813693617b32b0e11e5864d867bd95554d8f3b36a89815253e08df3c7c3af443fdb5a25ecd67dc5a4a7bc9fceafe08d6223dd3570799dbbc655e2bf5f736802eba0bbb1660f73f8a08455ee34600299fb261ae9191e3eabe30c4942e8bed61e7f148c0b0472ac3ae4ee4006e2c85c911cff52e98b86e1b573697c8d595acdfd00acbe7b77c4b01357f8b6f21e325b9f0a92d768d76448458a64ff041223b133af62c7dae64c1fc8f772ea8f15e1e96566f1650e7ab688cf9fca0889ec07a1e00c45dc0164d313d7137caac7b9cc2dc564575ce5be9755dcf64c9ecd2c896eae1860d5adf42047eb1a30829546db968279f9830771dc4a5a16fe4f273bd6b6c3afa0c62340f81b655d48b7d304dd51d22b07112d417768f390531ad26773e4a623f847173b76081c4786f468fabcd22ef06ae956f44d5e763507f25b706f753eafe80a1e28141c344f3dd9bea449e6b17fe41c051ed97265de6ed7aa5bc55bec628abf2393d8b968477f1d9c4c4fdadb130e9aef30ed3279696ec265120ec41d873db17373c998ac7a3feadbae5c3d6ea756f83d1161e6d0460670ce2a5bbc8f4403b8b88ea9d60ae3cff90d351f39f9f4cc4497bb3916a2c206eb7c22350cdf84d11b5bcb64cf3d88b32f2b5a5cca2fede0606b34526e89e152cf60d3bad2ca7ae49d8fb8bac94d0b383f6c6fdc4d7565a987f0c30e244acaff486c4e1f75432c22674983f63bbb9a4730e7d1c40eef167d17e8cd2b80c6f386b2cffb48b90e38eebd4b5dc24b085d73c9de7be0b43c394e94e90e5c05897fbf29f6e45af02ab35272fa070f019e8d7dff924ea5f728f48d32a2da26625a535a26cf693a5b7fc5e81b33b849e8844a65bc5e25351bafc5553d2aad152a0c48d473e55ffb931ab66e3487c5adb2d720260d9014f39b2741657321ed11855e025cfe4a4f175f280f63085f4d855a86549cf5a42f2cf5b7b55fedd1d6cc55b9172d12e1cc0b3db80e80d749096873fb91020dce447ec629dfd7bba6e2ad1a42a7054089862759cadbab5bd72fe465c5829745ed922e59dc5d524d74f4010054b10a3c5290210ffcd82c846d3ce3d71cbcb58e5e4d3885db349231e2000bc5da85a3d11dee73a41b34f37f7bbce10293439d4d6b9c290d1d6695d37ce2b29e4154fb40f567e98fcd9d0efc880a554720ba02556fd27bdc6a24375ae3d6516a189cdda53a690468a7c9bab1739bf68bc0a20a2e2bacba0c8686d6155caa213c78d8643723d10adb3fa80d6c78a1b63172933d3d6da132298485a0c428d42424e8df12817e0089324b0f4b849c360946d49cdc1ba39335c9de0d2b682638c0ea39f52c47506a8a195742758381aa90349c3934c95e30a6e751c7a86f07363be1dc6953671fdc099c4e66904a2e6f7a5a958192e0efe5c3960021d4e86d3915b4acccf2666f494ebe9ee0150bdb1eca0be324ab187271c91a03c81cc33fa653869922a832b1935a180aad50eefd47cf494e8db4ce2b79b8a291fb945eb3ce2a6be3e612fd20256ef4880203248b37acffa97a9468b0d1b55ff47725ffc0972ea01220026fa48f47be098d8b80ddd9120d0560cdc577fe77f47e25e0a37e9e1bbc7e4655da297365c945754421731ef5299aeba143b3048647148d3cf67bd5a73fb131bc3322c7925dddd7f79acb38d6c2b266dea5d023f8b227d942ed5ec29863992fc3ab84ddefb58ec6295e20702045349eb18a6d85863adfac7fa03096d49d7c71ac1a2959c4c09dbffb2f35b5e912020277e47c137830ddb3dab2373ff4d95cf180dd300645eca664293336f2949b0948c197959c3e0674fecde7e2a873832211368ce47daf8128849f66cca71a4e179c2f7676305a83f7e168f6d0aa6211f053cd3e5453d3827e3c576c8e9733f0ed7b2b00904f7f4b52da4f78188d3700b1b4b7e6f8d1e0b13721fb923ba46e4a5dc7af61bcdc1422f39cbf6e80e99fec93a831eab4eaa3932872a45c5f60a0af001c94c1765281832fda48c00425bd377e962c97ab9c9353e42389c500d11dc8f9b4872c059da4fd821431db711da2ef5f900b180ed58ca07be18ab589544e5906a45eee573eea763b64dc850941ac991d99d6d55c7761c5e2ec19f841e6c74630baae19bc5c8348453d84230459d9d1f11484f5e50545c340293776e84086c975380d237166cf23f9d1cc506bf6dccd91358f120220b59648e9814e9172dd10bc57db94bd8a650048d1f3a79c0889f6b86b044f5380cca8ea872c97664a04f7928334bc2418e9d4a45225c4a6a44ce0bce0e29a49df0d1d2b67e62b96e2981b255ccc2958c1ebe47954e53b398f2a086d05f960f417f41fd0438abcb54f32ee7a47775c646c8c348ebdd0582a89cb8495131ab4e7e5470a8533fed4f8b02467b212ffdc6960fc88ca0922495c2f712fe8fc232bbb4d5bae8a0e950fb5832aa84f2c55821786c90ac55b850953a511cda05b7f8762bd082feb80864fa4ff6b4785bfdc89d9e2bf76521fe395cee9267978ededd0e14eb960203dd84f5cda1b8c37cfba5519ddb86c9d8317963881a41ff939e49101601b5e"}, 0x200) pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000008c0)="620f42bb99feef653325ff1c498a0e8bac96bc888461bc3f0713caeb1e5e343923cf46efcdcf8da6cdf675cc5ebe1f02086b1db79caf7093e1d8ed46d572c19bc6a83f728e85508507c914c65f4a14c423dfc98912dc7ba7a7e1cd34f84860e29b0c447698e479178e875d8d2f9fbff2940fdf5fa510f60a33250142247ffba6b3961c9dfcb2bd968e2e7fdbdbfcd42587e36072c25556c9d2ed82050dc17811b2395a188994bda94a5d59c59a92c53c0e202e5486f5218b92fdeaeba844d0ff1e877a9921a141afe908dabe9a8bdc6c7da740e1c401582937bbf52099444186411fb9f1b836b3f8cad3e5064886cf5fa0f5860d2a8d70ab74487459d596768ea7d8f4b7d04725706309c82c89e5e4038222431647c4a2d69f7286a7bf0a382194b1d211dcbfa2db7f474753d441f5e1c4f594667d1748294c0272ed879c0d60645e45e20eb2ab0d2965e8251a11bc38aacccf2ef37065840c6d1a1200d20fbbb3bc68a50e622edc8f37f91f75e80fe1c2e8d6e3f0ed4901fb06aab57260f36bd2a46471a463f5e716d4fd78567a75db83062a7767bb64a7074b9bf795adfc2f65507a7ed243fda3dc5677fa51f22f95ebd04dc43299377b9c6fcfefa68f620f144b2b4d0cf20b37b588d95b865ee165d89e85fa06cf292d3773ef836c0d38190d903d219ca6d3f4c6c486e09d187cbdf10c20a4295d2d3730b897cbf41c91fda04d803101a766a237b13086b86e0474e6ad89ed25fb8e143a8104941256291107fb2d44385b662ef90a1ae71cb3f5cdb5fc1ebf667548a52eab3cb5b54ab6e356cb4cff72ec290858e7e042699a5c5aeaed0352e7091071105f6702ed7de21e48ec87692ce3d699a90b8a639c0e5ebc517045ec06caa236f05923187da92233b109d8a3b27e9317f871d209749262fbd6f05b012115f6d7bf041bd3eb17163c84c378b8fcb7406c711b11fb41aa71200e2fda8c5b4eeaa484aa8b7043b2d5caa12f46e5a9acb0c502fafdfe8e6581f71ef4abd15d02fc3e5cb7cafedb810494fbf53b81acc365b75bb74fca804132c0fc6e03ff76f26fa5e149ca94a2152a2ef74c25a939e60777948a7e315eb959a01ecfa106272232f9a0229cd9cb886e23fc6147ab8e66aa781c14409e1fefc2a7b847dcf14691859eeaef2bb42c5d3936ed6eedd6f6196d127914b1843c85aa56d9dcd9768de2979d51cd41b6d9df290432dea5d39a0c79747bd88cf1e7d18164408b03ce2dceb9760b30b34a6ed530f26d248121aca8a5217e37adf759738be628466f55bbfba7df196b5e5aa681f2c7591cd269b4cc23203ca82a35e4a850c00853f16c29623c4dd98b2e12cd516525dd76d4e8ef8a2a79dc7ec90158529497b3781337d2f2adacccadaf6f5e82d0549b8366503553ea13135a2f2078515d889b256ca33d116b6c03f7afe4787c70981076edd64373954cfc59441c86d1ab15fe441058437062a3e7647924c1c1c86dec491cadf8325ae7817a7e2337aded46c2815b4d7ab894e2eb0b98acac5808d037f668789819854b6271d0c8cda81b2b430d13173423519ecb10e0a5a1ce824aa4590ddb1ef385cf4f8254fa25de530fb2bccccbce2921b4f67f6d9e4711e3885f6ed03b2a94fdb3812618cffd63a3e5ee8be4e896f44dd4ccbaed62421056e1b27446e141e40400c7faadc7f502dbdcb55c6fb972c53e337fa4ab17b3c7c699ad90bc1e5000fbe55864eecb202b0eb7952263dbb391c01bd3ff9646ab7b8546a08b1bc6b5660aa61d9fb72301c17da744f68487652c2aaa172e2d1b388e8de14b14de695a7e7ddc8815f2f18eea9d7fc8eb0349242d181af687c987cf5b9c4d45452ab904f335659de462088a42b8e762981b7ab0f571b79e4c7859a43c42e93cfd030711e070ef993ad618eddf19053e3bf6df6b07bf67952c0572def7d6127768b74cfe3b9be62849413e5efa6fa019456035fe50ed26f1eb5b1f8293014f70f9675b3178a13dc8361e8c8e0ab89ccf3c6016ccaf32e8a3acda442d379a9054dc62da020407c7e87d3f2ae8ec6730bd8cebd3c4d98255cd09b186a61e070dbb5a2f09c6ec39ba0c0c9592e9342b0725b05feaed0a7606160cae5da0511e7cdb17430f8359b33e5381f7efb93662ad8c10e0d7c25d4524117cf95da5f489d7c4175f3854894c6653416412c3894f95343d8107cb97cb5767b727c043f40f7af69dd3f2d34fa7f598bf8822da63f34fc5597cfdacb29f02134d54c08a5a97546ac8e850cd9b088511ce6df1aa02c4dd0ea9a140197c4d73e7481f4f955d772a7c2c1239530053bbc1d9498c438a0dd55788c0fabc60df834aa26e02ff27685bea36f3586859386fa0700f93cd70d9c3d1cc47e113c65a8d4961e3cbe596daf09238b4f83052fb94597375a7ed4863de9d67f496fe53a2d2d7c823e0f86b360b89cb6809c74aa8d1d82103d664fa2db9ca8825fe33e7a0303a79abdda3ccbd8b75f5ec897eeabdf82c2edbacc043360d07bfffda04d12d7ff941e339ff10181522d3f222bbc65d0d1ebe43ee6080d13e3433d1d2fe93bdcc0bfe5818d98a22fc26f15bd107c67d24bc558247ec51aba49d59788784936a7bf52e06339d5faa94dae01f3163b658bda1ca7155820802dc4bef4f4d7cf84520b33eeaa57f38e310f2ec12fbbf9658d589da39ad3932dc40157f7536676c1b4a428a6118e8e0d7521b8241c5eef2c67d67acabf845b80fcaf305b0a44ed910d7bc19cab4d00f5916c1d4d458c184b6f4c7207ad0aafe9b192b88181f00efba90c15ee5549ec35bda4655b4f2d19939cb1c190782db670c5051e901665ab4709abd34418669664a9eb231e35777d4256967590639e75b688dc8d60cb938b0d360a4077209e35bd48bea6a9a01de0b9915fd386bcb266740d6a10da6b6fc3e1c2b16cf45ea0c678e8d99643d98bf374dc9d8a090424d059147ac85db48db7ecd93306bb323990bcd86bbe069fce037d2befcec1ec06aff0d37a4bbb7e28fa9da69399a28164a0bdfc6f3ab28a3d7c95f98611851ae2fcece184d73f4dd928aeebf8db09a7ca248add3dde97248860f61b309cbad3b7bdb309cab9780ed778ef4d9cabb6d3653dd0d7992dc567e3f575e22a6290a74b694ed68bf6214edd40ff89d3ce76f102e222817463dc16b2054aa7c6a0aeb29deab99b362074f7053b11c836e8a1c07aa43c3f686444269bf9324110bccc70ff742291b6bfa13f71ed1616ecb4a24eccfc24cfbc57cce3d0c33452cd41aae5f52463971f3de00985581de70de211864365d72caa20a176e01a50ff44d1aa5aae53a205915be62707f60688743837d340f0a91073d990e59339976f9c10c177366cf18d546bbbb6ece0db7cbffe0261ed183152f0a96de73a9ecb6f8287c8988971b4913fac57e263694956a96ba312a3952cbf409a844fca30fafaa150ff886ce4ded4a2d5670f6dcf18a57e210ff4a9a266f0b7dcbc9e4a4d04b95a43b11f03e55b95869e229d3768477126191cf8aad99a4df54d15ed3842de481777695a8430b623e97bb7428d83b9eed07cb23d309b5feb435a4cd3d63192e8430198262c0b90db7fc37e89042cf6ae02bd580981e5059ebef3f52d57bd4c6298f461aceea6bdc7883de9cce2cc6c3078bb96e4d23ad2180c6a7d0d2328e4dfb8ae5a3f3cc42adc3b3a3707122723fcd288ea10e102fd9d38af916d944a4cad0e04abd6590779759dd4a52470a06fa1b013416fbcf3a5b033fe0bd9a7a6722b4036aac4d851159b73db14ddbb2c618cdc86d6796f025a9e277385d3d5e845d6e0a27fc7e2fca997879e5f1207a70a3e015c83291929bd4a92b9652512eafaf864400d0694aa85d14c734ae588d7e3a8430cd525cfb1e1cad049286019cd61cd92bb23ffe597bb1f25249aef15e72ed723212f337f1f0de40270a04fa373aefa8b8b4069faf3a51aa4cb59245cb58f3f8409e50d53fcd33a09352b628e7a1f21109354a362c0bb8184d042c27e474710310fe5648f1138322b6454abc22d7422e1276e24cf9bd608488161823834f12bb86a6ec4d378f393408f50c300547844b9af09d98513a4b44cd9ef034aba613951a04368d28dc735dd5ac875e7a4f33ce35af94684208ac4ee13f79121c58d801d61ccfe3aaf7dcfcc1541f4f80c2bb65e86d174cd1117ebea1daa8dd9dc70ba1f2885b0b89c0d2d711883e24b9f16a64ed2c3c9961aa711a65e605215ee57aae676b1ea2ed5fd767aba6a8574544776301ba56e9774532167282b8bd953240b3935cdc7850246fbb9b974552010d1c03812a99c184df3a0b969800e1ecc291d2b8b7fea1c51f45ce751699361517ed9834528e8f2bf9269c83bd262dac5fb453a2d8c0f7d0d1eb0deaacd8b155c9f5e979a5a7995454521bdd2a6d22f8c1c449f9354aec01f772962955547c3db1d442d40809ac064547366bf1864f006f27af201a88bce9aa253a8320736c0871cfa2db35d321f90454f63c727bb3253e57be87a4fdb716648873f6b212aba0695463e679109b2658bb8f9f31c642c1c08fe4f48a7c287cabe509b7b8b3ed826797ececafeeec83211aaf2164cf492ab30d6b9803280cd4bcadb0fb22807f88819a7e1913b8a4b446161419f8815a1d5d123fd06950460f2028a94ed0bf1741f2a04bda90db0c43ea9de9a08cb7c0c2a4ee32ccb4bb2b5d598965a2e9e92f909b49d5d28921494922330c03246f27b5509b1e6586ae8aad47a62a2e09bec203c938df05e2d71a7282c33d56999d3623423b28fb6ddc998932947a25e225a55ce8697cfe00d4fa2653a1be4bbb9a20d430aa14e125de487939e6db8922196ef0f28031e56a51b5c8a1c3733fb04757e07a74e0a1317ec5357c260a3b862e9e8a686c69356af0f67576e9108a0ed596fab324da09d3c7472b608dc385ac62cb89450b29d49122cd62c7efb3a7a8ec5e9395fdb2f1233c16c8f77fef5ca8c24a995d81431b2c6b6a14800b8ff074349dd76182709ae8f7639c9042d7693848021cd8c2fbade8b622588ddfca83f7ad5dde4d9492d4369c64cd15c1af72dfb070b22d08db5f084d1dd5ce74ee4ca70a47140a49b041f12b0ea9218adfb3ab7bb46c2cb39dd9bb7026cfdf5e19ace7c753f4437dcb3ce25b273fe23d5fd59ceb9e444045bc52942e6179c43d2a1226c31167eeba2233fda199196c2117d5e5f2af37c1c9df666fb40a41a0d66998af4fc5cda545230aa6622287b3afad1f17619c20d664ed8548cbd21988970435a9a8275f4fb2669e8056f2eee70c1266de8a1348cef6f9e3137fce8d7296f9b40bfb623bb1f52b445d4e0b78870273d31a15f5cf6338d8e7c544351b1dedbb61d75ce889f01c08e718e481cf9df401410220d5062cc468e9ab841dbc571fe2092f7a09c2acbdb6852a1032cd3d97978237e42fc5753a8142c2222086e7c5e3134228db23bf99a1de871521da837f6f11cd2693c9ae8863c4f996df55bf36a3d8340699127e6c830629027f47f889ade96bfe0946958f575c17ee9e11dcccddeb8c5cae42337311710ec08cba022adf13fc5553adb1c38dab5546ebbc4d79253c440da8ffd2e02e6614f96152e8ca05735771528f05844b05e1c0d5a44bf10546bc4e85df5bfe605b62e25404ad02bce65b4f050fc8cbb066727a7d458fa658ce00fe5e43f2e3d71ec25bf908734d1f1bcd7aec54bce2db96961316ad3cfb41241b72f5704443d90a668a7ab2422829419075e750f5595273d80e59f8b8ae7e1017991a882a06ce3bb1f3af7d491b", 0xfff}], 0x1, 0x1) getsockopt$packet_int(r0, 0x107, 0x11, &(0x7f0000000200), &(0x7f0000000240)=0x4) accept4$inet(r0, &(0x7f0000000180)={0x0, 0x0, @rand_addr}, &(0x7f00000001c0)=0x10, 0x80800) 2033/05/18 03:33:22 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:22 executing program 3: socket$unix(0x1, 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x4) r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x8000000080000000, 0x0) getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000040)=0x7f, &(0x7f0000000080)=0x2) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000480)="480000001400197f09004b0101048c590188ffffcf3d3474bc9240e128213ee20600d4ff5bffff00c7e5ed7d00000000c8550000000000002758d638c70000a8cc80dfececb2aa20", 0x48}], 0x1) 2033/05/18 03:33:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025009d06", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:33:22 executing program 2: r0 = socket(0x2, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000005c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc-camellia-asm)\x00'}, 0x58) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x4000, 0x0) ioctl$EVIOCGMTSLOTS(r2, 0x8040450a, &(0x7f0000000380)=""/45) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r3 = accept$alg(r1, 0x0, 0x0) sendto(r3, &(0x7f00000008c0)="22735c63aec86df57969b38bc71cd304", 0x10, 0x0, &(0x7f0000000300)=@ethernet={0x0, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}}, 0x80) recvmsg(r3, &(0x7f0000000000)={&(0x7f0000000080)=@ethernet, 0x80, &(0x7f0000000200)=[{&(0x7f0000000140)=""/170, 0xffffff04}], 0x1, &(0x7f0000000240)=""/148, 0xfffffffffffffe78}, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f00000003c0)=[@in6={0xa, 0x4e22, 0x200, @mcast1={0xff, 0x1, [], 0x1}, 0x1}], 0x1c) 2033/05/18 03:33:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000b25000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 556.891554] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 556.955052] FAT-fs (loop5): bogus number of reserved sectors [ 556.960986] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:22 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000180)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a") pwritev(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="8062cbb1aa5cc43963d75b2361e9126065c369048f38cd855cb73a4056287e78783688e6811bf94fc8d40a66bb2c5be8b0a70743146819bab2e353de42a49d7c70914f9aeb00383a5a67176123414886", 0x50}, {&(0x7f00000001c0)="38ef0a71e62a5ff05e7ab900c114ab04663199e5d5ab16612fb1d51b69f9f7ae4a1133aac69c5eeecb7acef7975ddf07d06f4f4a4a7c16f85570bd508017096cba19f27c6ab7e469f45412e9341df5dae340370934418a746237e9ddb15787266d36a399dce4e466ebb11f2dff19f36d864c3b7551194a6dfec97b1c42e8c92ba57e334e2739a0eb87daabc458273cd0ebd657c3c6a83a2e6d2659aa42181c74fa4e3d815cc1cb98acad401430832d60", 0xb0}], 0x2, 0x31) getsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000000)={@loopback, @rand_addr}, &(0x7f0000000040)=0x8) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0c0583b, &(0x7f0000000140)={0x0, &(0x7f0000000080)}) 2033/05/18 03:33:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:22 executing program 3: r0 = socket(0x4, 0x4, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x3c1, 0x0, 0x90, [0x20000600], 0x0, &(0x7f0000000000), &(0x7f0000000140)=ANY=[@ANYBLOB="000000009411000000000000000000000000000000a89724dc216a4950d385b420000000000000000000ffffffff00000080000000000000000000000000000000000000000000000000000000000000ffffffff000000001400000000000000000000000023000000000000000000000000000000000000000000000000000000000000000060be3578b026739a468edfdd6f886aa354122827680d8fbb995db7363b5e386d93fc9ddff7894ccd42296006b2423acc40d554107ed232091a7417077e43b76b6da92f48ea948c77ebb7d49e146a25941202a2b307a6d3f7f5f0fa5ab84d24d76e8f3360a605f1c93e36dbd3af4d43e117c1334a79e7bd71a55d3cc24f654ac0c362f4b37d8af7797918c042eadb2982c8b130e895e3785fb670a811980473320fee360480269724c752249dfc4162a9fbcbc06d1fdee4"]}, 0x1b5) r1 = socket$bt_bnep(0x1f, 0x3, 0x4) sendfile(r1, r1, &(0x7f0000000040), 0x7fff) 2033/05/18 03:33:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000f25000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x1, 0x10) 2033/05/18 03:33:22 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/udplite\x00') utime(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0xe4, 0x2}) ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f00000000c0)) r1 = socket(0x11, 0x100000803, 0x0) r2 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x2000000000202) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x5001}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'ifb0\x00', 0xa201}) write$tun(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="00810000ac31000000004500001c0000000000009078ac1414bbe00000020000000000089078ab27a038c2fb5129edfe861b6b6e3facb59072a600df1968b416c0e2d4071537282bd29656da749a25deaf8b0eb221dc2c5f0f47a398091544ba559b5c4f3996"], 0x26) [ 557.146768] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000825000000", 0x29}], 0x1) 2033/05/18 03:33:22 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) capset(&(0x7f00001e8ff8)={0x19980330}, &(0x7f0000032fe8)) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x60, &(0x7f0000000100)={'raw\x00'}, &(0x7f0000000040)=0x24) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000000)={r1, @loopback=0x7f000001, @broadcast=0xffffffff}, 0xc) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000140)={0x4}, 0x1) setsockopt$inet_tcp_int(r0, 0x6, 0xf, &(0x7f0000000080)=0xfe, 0x1) 2033/05/18 03:33:22 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:22 executing program 3: r0 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000fcb000), 0x4) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x180) openat$cgroup_int(r1, &(0x7f00000000c0)='io.weight\x00', 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000000180), 0x4) ioctl$EVIOCSABS2F(r0, 0x401845ef, &(0x7f0000000040)={0x3, 0x4, 0x5, 0x0, 0x1, 0x6}) 2033/05/18 03:33:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 557.226172] FAT-fs (loop5): bogus number of reserved sectors [ 557.232126] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:22 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x0, 0x10) 2033/05/18 03:33:22 executing program 2: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x401, 0x5, 0x7601, 0x200, 0xff, 0x1, 0xec, 0x9, 0x40, 0x101}) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{}, {}, {}]}) ioctl$VT_RELDISP(r0, 0x5605) mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x6013, r0, 0x0) 2033/05/18 03:33:23 executing program 6: r0 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r0, 0x2279, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, @buffer={0x0, 0x7f, &(0x7f0000000040)=""/127}, &(0x7f0000000100), &(0x7f0000000180)=""/194, 0x0, 0x0, 0x0, &(0x7f0000000280)}) fcntl$setsig(r0, 0xa, 0x36) 2033/05/18 03:33:23 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000625000000", 0x29}], 0x1) [ 557.410681] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 557.555432] FAT-fs (loop5): bogus number of reserved sectors [ 557.561420] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000068", 0x29}], 0x1) 2033/05/18 03:33:23 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:23 executing program 3: socket$inet(0x2, 0x3ffffffffffffffe, 0x22) 2033/05/18 03:33:23 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:23 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000200)="c626262c8523bf012cf66f") r1 = epoll_create(0x20) fcntl$notify(r1, 0x0, 0x284) r2 = socket(0x1, 0x80f, 0x1) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000000080)=0x4, 0x4) read(r1, &(0x7f0000000040)=""/60, 0x3c) pselect6(0xfe13, &(0x7f0000000680), &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000380), &(0x7f0000000000)={&(0x7f00000003c0), 0x8}) 2033/05/18 03:33:23 executing program 6: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f00003ea000/0x2000)=nil, 0x2000}, 0x1}) ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f0000000080)={&(0x7f0000391000/0x1000)=nil, 0x1000}) 2033/05/18 03:33:23 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000925000000", 0x29}], 0x1) 2033/05/18 03:33:23 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x0, 0x10) 2033/05/18 03:33:23 executing program 3: syz_emit_ethernet(0x7d, &(0x7f0000000000)={@empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [], {@can={0xc, {{0x1, 0x3, 0x5, 0x54ff}, 0x5, 0x1, 0x0, 0x0, "268d529d85f6c194"}}}}, 0x0) 2033/05/18 03:33:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025007400", 0x29}], 0x1) [ 557.767728] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:23 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:23 executing program 2: syz_emit_ethernet(0x2a, &(0x7f0000000140)=ANY=[@ANYBLOB="0145f180c2000000e2701bb6bc8908004500001c000000005b32907800000000ffffffff00009078e00011f0dfd14b480095d9b9196ee138707bf89d0e9c"], &(0x7f0000ea3000)={0x0, 0x2, [0x0, 0xade]}) r0 = accept(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, &(0x7f0000000080)=0x80) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000180)=0x7, 0x4) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f00000001c0)=r2, 0x4) 2033/05/18 03:33:23 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:23 executing program 6: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x1268, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b4066b9cf28218de250ac28d5236d0c8706f4890f243aa9fb8ac44cf2252e103fd69b0c11b1f909f5055db62862dc82762b0cf77b8e22212289a767818a9605f", "d6b8519e2c45c3e949fa456ce1f30874671812f5695a4e68a0bbfb6ae7223559c165e6d272a7afeb089ad7e2bde8a7437b9b10129354c559a236a45c370b511e", "72f091ed164712b28b340d96690e9283b9a120a2e81e67cfc2628d82fdacd2d2"}) r1 = semget$private(0x0, 0x1, 0x100) mkdir(&(0x7f0000000080)='./file0\x00', 0x10) r2 = fcntl$dupfd(r0, 0x0, r0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000000c0)={0x0}, &(0x7f0000000100)=0xc) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000180)=0x40, 0x4) ioctl$TIOCGPTPEER(r2, 0x5441, 0x1) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000240)={{0xffffffffc8394617, 0x0, 0x9, 0x9, "a15c65f18fb5be26252d0201647c1ad2eacf1994c3e09ec28edc5ad43e133e142c75eb2a74a3497d1fd27e87", 0x28}, 0x0, 0x0, 0x80, r3, 0x4, 0x0, "0fc9cfe7851cddd5f844c6fe294f9aa209544aac90a6fcc8cef70607dcc813e92a4561e3f4620c439367b5125a92e670939f565093d44c5eb677311a983a59fd", &(0x7f0000000140)='/dev/loop#\x00', 0xb, [], [0x9, 0x3, 0x9, 0x536a]}) semctl$SEM_INFO(r1, 0x1, 0x13, &(0x7f0000000000)=""/65) [ 557.885629] FAT-fs (loop5): bogus number of reserved sectors [ 557.891565] FAT-fs (loop5): Can't find a valid FAT filesystem [ 558.000234] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:23 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000a25000000", 0x29}], 0x1) 2033/05/18 03:33:23 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x0, 0x10) 2033/05/18 03:33:23 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) r1 = syz_open_dev$admmidi(&(0x7f00000001c0)='/dev/admmidi#\x00', 0x4, 0x424100) connect$bt_sco(r1, &(0x7f0000000200)={0x1f, {0xf71c, 0x3, 0x6, 0x81, 0x7, 0x9}}, 0x8) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000180)={0xaa, 0x100}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") close(r0) recvfrom$unix(r3, &(0x7f0000000000)=""/243, 0xf3, 0x40000000, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) 2033/05/18 03:33:23 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:23 executing program 2: r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f0000003000)=@file={0x1, "e91f7189591e9233614b00"}, 0xc) r2 = socket(0xd, 0x0, 0xfffffffffffbfffd) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r3 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x0, 0x400) ioctl$UFFDIO_WAKE(r3, 0x8010aa02, &(0x7f0000000040)={&(0x7f0000ffb000/0x3000)=nil, 0x3000}) tee(r1, r1, 0x0, 0x1) dup3(r1, r0, 0x0) ioctl$sock_ipx_SIOCAIPXITFCRT(r2, 0x89e0, &(0x7f0000000080)) 2033/05/18 03:33:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500f000", 0x29}], 0x1) 2033/05/18 03:33:23 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:23 executing program 6: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) select(0x40, &(0x7f0000000000)={0x9, 0xfffffffeffffffff, 0xe10e, 0xd82, 0x1ff, 0xfffffffffffffffd, 0x1da, 0x5}, &(0x7f0000000080)={0x7, 0x7ce9, 0xfffffffffffffff7, 0x10000, 0x7ff, 0xfffffffffffffffe, 0x92}, &(0x7f00000000c0)={0x9, 0xffffffffffff0a5e, 0x0, 0x100, 0x80000000, 0xa61b, 0x6d, 0x8}, &(0x7f0000000100)) r1 = socket$inet6(0xa, 0x800, 0x6) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x4237a7869a87e3e9, 0x0) ioctl$TIOCSCTTY(r2, 0x540e, 0x6) connect(r0, &(0x7f0000000580)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x80) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x80, &(0x7f0000000200)=[@in6={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, [], 0xf}, 0xbf90}, @in6={0xa, 0x4e22, 0xf27, @mcast2={0xff, 0x2, [], 0x1}, 0xfffffffffffffff9}, @in={0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4e22, 0x5, @mcast2={0xff, 0x2, [], 0x1}, 0x200}, @in6={0xa, 0x4e20, 0x0, @empty, 0x8001}]}, &(0x7f00000002c0)=0x10) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000300)={r3, 0x6}, 0x8) 2033/05/18 03:33:23 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000225000000", 0x29}], 0x1) [ 558.172829] FAT-fs (loop5): bogus number of reserved sectors [ 558.178992] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:23 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:23 executing program 5: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:23 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000500", 0x29}], 0x1) 2033/05/18 03:33:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="070000000000d9b7ce73442b8665d1f043efc0000000000000dad63f7cd7ec51e2ac65427a427b5f6c0ce92e86e6f7b877733b87fe73e51e76e310e309ba"]}) [ 558.266939] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:23 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 558.505258] FAT-fs (loop5): bogus number of reserved sectors [ 558.511203] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:24 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:24 executing program 6: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000100)={0x1c, 0x0, &(0x7f0000000040)=[@dead_binder_done={0x40086310, 0x3}, @register_looper={0x630b}, @dead_binder_done={0x40086310, 0x4}], 0x68, 0x0, &(0x7f0000000080)="5d93f28d68ae4776a6001ab922cd732f8822dce869a2facda515c3bef3972948ed0b560ac812f9727e804134e675730a8f4c16091d3c5f53d49b87276bd47091e6006696f38bcc781892030e4f8dffe85b562b587d788176d24ab929084ac2baf6f1ed6107aeee6a"}) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @dev={0xac, 0x14, 0x14}, @multicast1=0xe0000001}, @igmp={0x16, 0x0, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}}}}}, 0x0) 2033/05/18 03:33:24 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:24 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0)={0x0, 0x0}) sendmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xff40, &(0x7f0000000380), 0x2f1, &(0x7f0000000600)}, 0x80000000}], 0x4000234, 0x0) pipe(&(0x7f0000000000)) 2033/05/18 03:33:24 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:24 executing program 5 (fault-call:3 fault-nth:0): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:24 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SCSI_RESET(r1, 0x227f, 0x707000) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='pids.events\x00', 0x0, 0x0) ioctl$EVIOCSABS0(r2, 0x401845c0, &(0x7f0000000040)={0x7, 0xfff, 0x6, 0x1f, 0x1}) 2033/05/18 03:33:24 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 559.088321] FAT-fs (loop5): bogus number of reserved sectors [ 559.094292] FAT-fs (loop5): Can't find a valid FAT filesystem [ 559.118948] FAULT_INJECTION: forcing a failure. [ 559.118948] name failslab, interval 1, probability 0, space 0, times 0 [ 559.130336] CPU: 0 PID: 1166 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 2033/05/18 03:33:24 executing program 6: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) clock_gettime(0x0, &(0x7f0000000180)={0x0}) ppoll(&(0x7f0000000140)=[{r0}], 0x1, &(0x7f00000001c0)={r1}, &(0x7f0000000200), 0x8) pwritev(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)="83b3d4d7470ca25b70bff87e5b58b2e9fb9da63fe366a441c194fad5dbd76f5a08e63605", 0x24}], 0x1, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x1, 0x0) 2033/05/18 03:33:24 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000600", 0x29}], 0x1) 2033/05/18 03:33:24 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:24 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:24 executing program 2: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) connect$nfc_llcp(r0, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x7, 0x7f, 0x20, "4dd89d9d149465d0c5eff6d9bc677762386817df8c29a61eccde66e73439d393b4445c85ba6892c54f1db319578083b318444feb36510d8ac7b5d8edd8e22f", 0x24}, 0x2a3) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x2, 0x0) writev(r0, &(0x7f0000000c40)=[{&(0x7f0000000b40)='_', 0x1}], 0x1) ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000100)={0x4, 0x8001, 0x4}) [ 559.137528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 559.146885] Call Trace: [ 559.149496] dump_stack+0x1b9/0x294 [ 559.153146] ? dump_stack_print_info.cold.2+0x52/0x52 [ 559.158355] ? graph_lock+0x170/0x170 [ 559.162174] should_fail.cold.4+0xa/0x1a [ 559.166240] ? lock_downgrade+0x8e0/0x8e0 [ 559.170393] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 559.175499] ? find_held_lock+0x36/0x1c0 [ 559.179570] ? find_held_lock+0x36/0x1c0 [ 559.183653] ? check_same_owner+0x320/0x320 [ 559.187984] ? rcu_note_context_switch+0x710/0x710 [ 559.192920] ? wait_for_completion+0x870/0x870 [ 559.197509] __should_failslab+0x124/0x180 [ 559.201748] should_failslab+0x9/0x14 [ 559.205551] kmem_cache_alloc+0x2af/0x760 [ 559.209708] getname_flags+0xd0/0x5a0 [ 559.213512] getname+0x19/0x20 [ 559.216705] do_sys_open+0x39a/0x740 [ 559.220423] ? filp_open+0x80/0x80 [ 559.223970] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 559.228814] ? ksys_ioctl+0x81/0xd0 [ 559.232446] __x64_sys_open+0x7e/0xc0 [ 559.236247] do_syscall_64+0x1b1/0x800 [ 559.240135] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 559.244980] ? syscall_return_slowpath+0x5c0/0x5c0 [ 559.249915] ? syscall_return_slowpath+0x30f/0x5c0 [ 559.254848] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 559.260221] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 559.265074] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 559.270258] RIP: 0033:0x40fc61 [ 559.273442] RSP: 002b:00007fac4c50e800 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 559.281151] RAX: ffffffffffffffda RBX: 00007fac4c50f6d4 RCX: 000000000040fc61 2033/05/18 03:33:24 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:24 executing program 5 (fault-call:3 fault-nth:1): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 559.288543] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000004ba33e [ 559.295810] RBP: 0000000000001002 R08: 0000000000000001 R09: 0000000000000000 [ 559.303077] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000001 [ 559.310342] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:25 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x40000, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x10000, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x70, 0x800000, 0x4, 0x1, 0x1, 0x0, 0x1, 0x800, 0x1, 0x40, 0x80, 0x101, 0xfff, 0x51a, 0xd2a, 0x7, 0xffffffff, 0x5, 0x1, 0x1f, 0xfff, 0x1, 0x7, 0x6, 0x7, 0x80, 0x0, 0x9000000000, 0x1ff, 0x3, 0x80000001, 0x6, 0x4, 0x9, 0x800, 0x9, 0x80000000, 0x0, 0x0, 0x3, @perf_config_ext={0x400000000000000}, 0x10202, 0x4, 0x6, 0x3, 0x81, 0xffff, 0x2ebcb174}, r1, 0xb, r2, 0xb) syz_emit_ethernet(0x174, &(0x7f0000000500)={@link_local={0x1, 0x80, 0xc2}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, "093a06", 0x3, 0x11, 0x0, @remote={0xfe, 0x80, [], 0xbb}, @mcast2={0xff, 0x2, [], 0x1}, {[], @udp={0x0, 0x0, 0x8}}}}}}, &(0x7f0000000100)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0) [ 559.603795] FAT-fs (loop5): bogus number of reserved sectors [ 559.609751] FAT-fs (loop5): Can't find a valid FAT filesystem [ 559.669880] FAULT_INJECTION: forcing a failure. [ 559.669880] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 559.681726] CPU: 0 PID: 1197 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 559.688905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 559.698250] Call Trace: [ 559.700846] dump_stack+0x1b9/0x294 [ 559.704476] ? dump_stack_print_info.cold.2+0x52/0x52 [ 559.709677] should_fail.cold.4+0xa/0x1a [ 559.713741] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 559.718874] ? debug_check_no_locks_freed+0x310/0x310 [ 559.724073] ? _parse_integer+0x13b/0x190 [ 559.728225] ? graph_lock+0x170/0x170 [ 559.732033] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 559.737569] ? _kstrtoull+0x180/0x230 [ 559.741368] ? _parse_integer+0x190/0x190 [ 559.745515] ? graph_lock+0x170/0x170 [ 559.749314] ? lock_release+0xa10/0xa10 [ 559.753290] ? check_same_owner+0x320/0x320 [ 559.757611] ? find_held_lock+0x36/0x1c0 [ 559.761673] ? graph_lock+0x170/0x170 [ 559.765479] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 559.771018] ? should_fail+0x21b/0xbcd [ 559.774905] ? lock_downgrade+0x8e0/0x8e0 [ 559.779062] __alloc_pages_nodemask+0x34e/0xd70 [ 559.783733] ? find_held_lock+0x36/0x1c0 [ 559.787797] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 559.792820] ? find_held_lock+0x36/0x1c0 [ 559.796906] ? check_same_owner+0x320/0x320 [ 559.801235] cache_grow_begin+0x72/0x6c0 [ 559.805302] kmem_cache_alloc+0x689/0x760 [ 559.809461] getname_flags+0xd0/0x5a0 [ 559.813263] getname+0x19/0x20 [ 559.816460] do_sys_open+0x39a/0x740 [ 559.820180] ? filp_open+0x80/0x80 [ 559.823732] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 559.828579] ? ksys_ioctl+0x81/0xd0 [ 559.832214] __x64_sys_open+0x7e/0xc0 [ 559.836019] do_syscall_64+0x1b1/0x800 [ 559.839912] ? finish_task_switch+0x1ca/0x840 [ 559.844411] ? syscall_return_slowpath+0x5c0/0x5c0 [ 559.849342] ? syscall_return_slowpath+0x30f/0x5c0 [ 559.854278] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 559.859651] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 559.864501] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 559.869686] RIP: 0033:0x40fc61 [ 559.872871] RSP: 002b:00007fac4c50e800 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 559.880583] RAX: ffffffffffffffda RBX: 00007fac4c50f6d4 RCX: 000000000040fc61 [ 559.887855] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000004ba33e [ 559.895120] RBP: 0000000000001002 R08: 0000000000000001 R09: 0000000000000000 [ 559.902385] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000001 [ 559.909652] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 559.949381] Unknown ioctl 44802 2033/05/18 03:33:26 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:26 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000000)=ANY=[@ANYBLOB="020100000a000000000000000000000002001300ff0000000000000000000000030006000000000002000000e00000010000000000000000030005000000000002000000e00000010000000000000000d55ade36bf36724989fce7f3346be0207976de39d9b3a89375eafb2d852aa003cb45d755d65fe41d7917bcd5281c42"], 0x50}, 0x1}, 0x0) 2033/05/18 03:33:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000259effff", 0x29}], 0x1) 2033/05/18 03:33:26 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:26 executing program 5 (fault-call:3 fault-nth:2): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:26 executing program 6: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00007a0000)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000616ff8)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000100)={&(0x7f0000000000)=@abs, 0xe, &(0x7f0000000340), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="66b46db91687687a84973f4ed3eb5be85303f25a300aa1732725690ebf74316ef0849222972f9c934a6bbbfb945fae7643283af06af5fdcee1b990ecd6a73274d683c4e5529fc26573f7da6ff0615c81cdc97ddddcc08448ee21bd6c218ca620be11f2ee4061c130d2"], 0x7d}, 0x0) 2033/05/18 03:33:26 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x40000, 0x0) ioctl$TCSETA(r0, 0x5406, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffffffffead}) 2033/05/18 03:33:26 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:26 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x0) nanosleep(&(0x7f0000000140)={0x77359400}, &(0x7f0000000180)) openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x305000, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="01df4400e070fc8c62e2b70c6d"]) ioctl$SG_GET_COMMAND_Q(r0, 0x2270, &(0x7f0000000040)) syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x3, 0x0) 2033/05/18 03:33:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025f0ffff", 0x29}], 0x1) [ 560.551582] validate_nla: 3 callbacks suppressed [ 560.551592] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 560.588676] FAT-fs (loop5): bogus number of reserved sectors [ 560.594697] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:26 executing program 3: r0 = msgget$private(0x0, 0x8) msgrcv(r0, &(0x7f0000000040)={0x0, ""/21}, 0x1d, 0x0, 0x3000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000004ff0)={0x3, &(0x7f0000002fe8)=[{0x1d, 0x0, 0x4000000000401}, {}, {0x6}]}, 0x10) [ 560.647825] FAULT_INJECTION: forcing a failure. [ 560.647825] name failslab, interval 1, probability 0, space 0, times 0 [ 560.659196] CPU: 0 PID: 1216 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 560.666384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 560.675733] Call Trace: [ 560.678323] dump_stack+0x1b9/0x294 [ 560.681955] ? dump_stack_print_info.cold.2+0x52/0x52 [ 560.687158] should_fail.cold.4+0xa/0x1a [ 560.691225] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 560.696334] ? debug_check_no_locks_freed+0x310/0x310 [ 560.701529] ? print_usage_bug+0xc0/0xc0 [ 560.705595] ? find_held_lock+0x36/0x1c0 [ 560.709677] ? check_same_owner+0x320/0x320 [ 560.714004] ? rcu_note_context_switch+0x710/0x710 [ 560.718942] __should_failslab+0x124/0x180 [ 560.723179] should_failslab+0x9/0x14 [ 560.726981] kmem_cache_alloc+0x2af/0x760 [ 560.731135] ? debug_check_no_locks_freed+0x310/0x310 [ 560.736328] get_empty_filp+0x125/0x520 [ 560.740307] ? proc_nr_files+0x60/0x60 [ 560.744203] ? lock_downgrade+0x8e0/0x8e0 [ 560.748354] ? graph_lock+0x170/0x170 [ 560.752155] ? kasan_check_read+0x11/0x20 [ 560.756308] ? rcu_is_watching+0x85/0x140 [ 560.760462] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 560.765657] path_openat+0x116/0x4e20 [ 560.769473] ? unwind_get_return_address+0x61/0xa0 [ 560.774405] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 560.779426] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 560.784184] ? find_held_lock+0x36/0x1c0 [ 560.788253] ? lock_downgrade+0x8e0/0x8e0 [ 560.792406] ? do_sys_open+0x39a/0x740 [ 560.796299] ? kasan_check_read+0x11/0x20 [ 560.800447] ? do_raw_spin_unlock+0x9e/0x2e0 [ 560.804857] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 560.809440] ? __lock_is_held+0xb5/0x140 [ 560.813511] ? _raw_spin_unlock+0x22/0x30 [ 560.817663] ? __alloc_fd+0x346/0x700 [ 560.821463] ? usercopy_warn+0x120/0x120 [ 560.825540] do_filp_open+0x249/0x350 [ 560.829346] ? may_open_dev+0x100/0x100 [ 560.833325] ? strncpy_from_user+0x3b6/0x500 [ 560.837763] ? mpi_free.cold.1+0x19/0x19 [ 560.841831] ? get_unused_fd_flags+0x121/0x190 [ 560.846412] ? getname_flags+0xd0/0x5a0 [ 560.850390] ? getname_flags+0x26e/0x5a0 [ 560.854459] do_sys_open+0x56f/0x740 [ 560.858181] ? filp_open+0x80/0x80 [ 560.861727] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 560.866577] ? ksys_ioctl+0x81/0xd0 [ 560.870210] __x64_sys_open+0x7e/0xc0 [ 560.874017] do_syscall_64+0x1b1/0x800 [ 560.877909] ? finish_task_switch+0x1ca/0x840 [ 560.882410] ? syscall_return_slowpath+0x5c0/0x5c0 [ 560.887345] ? syscall_return_slowpath+0x30f/0x5c0 [ 560.892725] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 560.898105] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 560.902956] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 560.908144] RIP: 0033:0x40fc61 [ 560.911333] RSP: 002b:00007fac4c50e800 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 560.919046] RAX: ffffffffffffffda RBX: 00007fac4c50f6d4 RCX: 000000000040fc61 [ 560.926314] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000004ba33e [ 560.933582] RBP: 0000000000001002 R08: 0000000000000001 R09: 0000000000000000 [ 560.940850] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000001 2033/05/18 03:33:26 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:26 executing program 5 (fault-call:3 fault-nth:3): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 560.948115] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:26 executing program 6: r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x4, 0x4000) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000080)={[{0x4, 0x5, 0x10000, 0x8, 0x6, 0x41, 0xffff, 0x5, 0xffffffffffffffff, 0x0, 0x3, 0xffffffff, 0xfffffffffffffffa}, {0x8, 0x2, 0x4, 0x3, 0x7, 0x9, 0xfe, 0x4, 0x40, 0x2, 0xfcb, 0x7f, 0x3}, {0x3, 0x80, 0x40, 0x3145, 0x36, 0x1000000000, 0x7fff, 0x7, 0x4, 0x8, 0x8, 0x6, 0x800}], 0x6}) get_mempolicy(&(0x7f0000000180), &(0x7f00000001c0), 0x3ff, &(0x7f0000006000/0x2000)=nil, 0x4) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x80011, r0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000), 0x0) 2033/05/18 03:33:26 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb00000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 561.208122] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 561.292651] FAT-fs (loop5): bogus number of reserved sectors [ 561.298730] FAT-fs (loop5): Can't find a valid FAT filesystem [ 561.333172] FAULT_INJECTION: forcing a failure. [ 561.333172] name failslab, interval 1, probability 0, space 0, times 0 [ 561.344569] CPU: 0 PID: 1241 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 561.351753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 561.361101] Call Trace: [ 561.363696] dump_stack+0x1b9/0x294 [ 561.367332] ? dump_stack_print_info.cold.2+0x52/0x52 [ 561.372525] ? unwind_get_return_address+0x61/0xa0 [ 561.377456] ? __save_stack_trace+0x7e/0xd0 [ 561.381785] should_fail.cold.4+0xa/0x1a [ 561.385857] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 561.390967] ? save_stack+0x43/0xd0 [ 561.394594] ? __kasan_slab_free+0x11a/0x170 [ 561.399006] ? kasan_slab_free+0xe/0x10 [ 561.402996] ? kmem_cache_free+0x86/0x2d0 [ 561.407148] ? do_sys_open+0x554/0x740 [ 561.411034] ? __x64_sys_open+0x7e/0xc0 [ 561.415002] ? do_syscall_64+0x1b1/0x800 [ 561.419058] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 561.424422] ? find_held_lock+0x36/0x1c0 [ 561.428484] ? check_same_owner+0x320/0x320 [ 561.432796] ? rcu_is_watching+0x85/0x140 [ 561.436934] ? rcu_note_context_switch+0x710/0x710 [ 561.441857] __should_failslab+0x124/0x180 [ 561.446098] should_failslab+0x9/0x14 [ 561.449890] __kmalloc_track_caller+0x2c4/0x760 [ 561.454555] ? strncpy_from_user+0x500/0x500 [ 561.458972] ? strndup_user+0x77/0xd0 [ 561.462767] memdup_user+0x2c/0xa0 [ 561.466299] strndup_user+0x77/0xd0 [ 561.469914] ksys_mount+0x3c/0x140 [ 561.473446] __x64_sys_mount+0xbe/0x150 [ 561.477411] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 561.482419] do_syscall_64+0x1b1/0x800 [ 561.486293] ? finish_task_switch+0x1ca/0x840 [ 561.490780] ? syscall_return_slowpath+0x5c0/0x5c0 [ 561.495699] ? syscall_return_slowpath+0x30f/0x5c0 [ 561.500625] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 561.505981] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 561.510819] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 561.515994] RIP: 0033:0x455a09 [ 561.519173] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 561.526875] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 561.534132] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 561.541387] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 561.548656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 561.555923] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:27 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000074", 0x29}], 0x1) 2033/05/18 03:33:27 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:27 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:27 executing program 5 (fault-call:3 fault-nth:4): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:27 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0xce, 0x0, 0x80ffff}]}) openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x0, 0x0) syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x4000) 2033/05/18 03:33:27 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000200)=0x6, 0x4) r1 = socket$inet6(0xa, 0x3, 0xfffffffffffffbff) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x101000, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f0000000380)={r1, r1, 0xc890, 0x3, &(0x7f0000000340)="18e6e68f87f83909ffe64260c20a3d3e2c79f051c7abe05a87", 0x7fffffff, 0x3, 0x4, 0x5d, 0x8001, 0x8, 0x8001, "c47a561b392913c259049a800b69c5e065dce6e02c494094c9b7f2f77e2114f17f640b8c4a8a97bff09775bddd56878b85f4edc167f355ba6b089675c7058d49a0e0770f42f0e9cdf8a7fe49648c790081b0f6a5a765f99230b2ed0f8f2668d2fbc68adda9ffecff87bbd38fa6bcf7cd9452fbb05bda47a354c638d6861285c573af5561f7023b49ec69e982bb0c8b"}) rt_sigpending(&(0x7f00000002c0), 0x8) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x3, 0x20000, @ipv4={[], [0xff, 0xff]}, 0xfffffffffffffffd}, 0x1c) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000000c0)={{{@in6=@ipv4={[], [], @loopback}, @in6=@ipv4={[], [], @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@dev}}, &(0x7f00000001c0)=0xe8) fstat(r1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuseblk_mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0xe002, r3, r4, 0xfffffffffffffff7, 0x5, 0x400) 2033/05/18 03:33:27 executing program 3: clock_gettime(0x1, &(0x7f0000000000)) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_open_procfs(0x0, &(0x7f0000000080)='net/tcp6\x00') syz_open_procfs(0x0, &(0x7f0000000140)="6e65742fae6f75746500") 2033/05/18 03:33:27 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 562.244639] FAT-fs (loop5): bogus number of reserved sectors [ 562.250713] FAT-fs (loop5): Can't find a valid FAT filesystem [ 562.272851] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 562.288777] FAULT_INJECTION: forcing a failure. [ 562.288777] name failslab, interval 1, probability 0, space 0, times 0 [ 562.300151] CPU: 0 PID: 1263 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 562.307343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 562.316692] Call Trace: [ 562.319287] dump_stack+0x1b9/0x294 [ 562.322929] ? dump_stack_print_info.cold.2+0x52/0x52 [ 562.328122] ? __save_stack_trace+0x7e/0xd0 [ 562.332440] should_fail.cold.4+0xa/0x1a [ 562.336488] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 562.341575] ? save_stack+0x43/0xd0 [ 562.345333] ? kasan_kmalloc+0xc4/0xe0 [ 562.349204] ? __kmalloc_track_caller+0x14a/0x760 [ 562.354035] ? memdup_user+0x2c/0xa0 [ 562.357734] ? strndup_user+0x77/0xd0 [ 562.361522] ? graph_lock+0x170/0x170 [ 562.365307] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 562.370659] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 562.376013] ? find_held_lock+0x36/0x1c0 [ 562.380076] ? check_same_owner+0x320/0x320 [ 562.384381] ? lock_release+0xa10/0xa10 [ 562.388344] ? rcu_note_context_switch+0x710/0x710 [ 562.393258] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 562.398258] ? __check_object_size+0x95/0x5d9 [ 562.402739] __should_failslab+0x124/0x180 [ 562.406962] should_failslab+0x9/0x14 [ 562.410747] __kmalloc_track_caller+0x2c4/0x760 [ 562.415400] ? strncpy_from_user+0x500/0x500 [ 562.419794] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 562.425316] ? strndup_user+0x77/0xd0 [ 562.429103] memdup_user+0x2c/0xa0 [ 562.432628] strndup_user+0x77/0xd0 [ 562.436244] ksys_mount+0x73/0x140 [ 562.439771] __x64_sys_mount+0xbe/0x150 [ 562.443737] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 562.448744] do_syscall_64+0x1b1/0x800 [ 562.452622] ? finish_task_switch+0x1ca/0x840 [ 562.457118] ? syscall_return_slowpath+0x5c0/0x5c0 [ 562.462036] ? syscall_return_slowpath+0x30f/0x5c0 [ 562.466954] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 562.472304] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 562.477134] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 562.482307] RIP: 0033:0x455a09 [ 562.485478] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:33:28 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:28 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000020", 0x29}], 0x1) 2033/05/18 03:33:28 executing program 6: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xb, 0x7, 0x7ff, 0xa1, 0x1}, 0xfffffffffffffe31) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x1, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r1, 0xc0045540, &(0x7f0000000080)=0x101) ioctl$KVM_SET_TSC_KHZ(r1, 0xaea2, 0x1000) 2033/05/18 03:33:28 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:28 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 562.493173] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 562.500424] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 562.507687] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 562.514942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 562.522195] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:28 executing program 5 (fault-call:3 fault-nth:5): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:28 executing program 3: r0 = socket(0x10, 0x100000805, 0x20) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r0, 0x111, 0x5, 0x1, 0x4) r1 = syz_open_dev$tun(&(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x20000000002) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x5001}) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f00000007c0)="3c0b487e5baeb5c5e67dfe546200adb5", 0x10) r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x5, 0x40) ioctl$VHOST_GET_VRING_BASE(r2, 0xc008af12, &(0x7f0000000100)) setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f00000002c0)={0x100000001, 0x3, 0x20}, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000080)={'ipddp0\x00', 0x1100}) recvmsg$kcm(r2, &(0x7f0000000780)={&(0x7f0000000480)=@in={0x0, 0x0, @rand_addr}, 0x80, &(0x7f0000000680)=[{&(0x7f0000002500)=""/4096, 0x1000}, {&(0x7f0000000500)=""/119, 0x77}, {&(0x7f0000003500)=""/4096, 0x1000}, {&(0x7f0000000580)=""/82, 0x52}, {&(0x7f0000000340)=""/36, 0x24}, {&(0x7f0000000600)=""/95, 0x5f}], 0x6, &(0x7f0000000700)=""/102, 0x66, 0x2}, 0x10000) socket$inet6_sctp(0xa, 0x1, 0x84) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000280)) write$tun(r1, &(0x7f0000004500)=ANY=[@ANYBLOB="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"], 0xfca) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000180), &(0x7f00000001c0)=0x4) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r2, 0x80045530, &(0x7f0000000200)=""/98) membarrier(0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000300)=0x4) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'teql0\x00'}) setsockopt$inet6_int(r0, 0x29, 0x3f, &(0x7f0000000440)=0x1d, 0x8f) ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000380)=""/152) 2033/05/18 03:33:28 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000e00)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x480, 0x0) setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000100)=0x9, 0x2) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x7fff}) r2 = syz_open_pts(r0, 0x0) ioctl$TCSETAF(r2, 0x5412, &(0x7f00000000c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) 2033/05/18 03:33:28 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:28 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000008", 0x29}], 0x1) [ 562.808978] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:28 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:28 executing program 6: r0 = syz_open_dev$evdev(&(0x7f00000009c0)='/dev/input/event#\x00', 0xfffffffffffffffc, 0x0) ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000000080)=[0x4, 0x21]) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x7, 0x8000) ioctl$BLKFRASET(r1, 0x1264, &(0x7f00000000c0)=0x35d4) ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000040)=""/8) [ 562.862000] FAT-fs (loop5): bogus number of reserved sectors [ 562.867975] FAT-fs (loop5): Can't find a valid FAT filesystem [ 562.892422] FAULT_INJECTION: forcing a failure. [ 562.892422] name failslab, interval 1, probability 0, space 0, times 0 [ 562.903728] CPU: 0 PID: 1295 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 562.910916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 562.920262] Call Trace: [ 562.922854] dump_stack+0x1b9/0x294 [ 562.926488] ? dump_stack_print_info.cold.2+0x52/0x52 [ 562.931682] ? __save_stack_trace+0x7e/0xd0 [ 562.936012] should_fail.cold.4+0xa/0x1a [ 562.940077] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 562.945181] ? kasan_kmalloc+0xc4/0xe0 [ 562.949070] ? __kmalloc_track_caller+0x14a/0x760 [ 562.953916] ? memdup_user+0x2c/0xa0 [ 562.957631] ? strndup_user+0x77/0xd0 [ 562.961434] ? graph_lock+0x170/0x170 [ 562.965236] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 562.970611] ? find_held_lock+0x36/0x1c0 [ 562.974670] ? retint_kernel+0x10/0x10 [ 562.978563] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 562.983593] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 562.988354] ? retint_kernel+0x10/0x10 [ 562.992248] ? __should_failslab+0xea/0x180 [ 562.996572] __should_failslab+0x124/0x180 [ 563.000822] should_failslab+0x9/0x14 [ 563.004638] kmem_cache_alloc_trace+0x2cb/0x780 [ 563.009312] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 563.014852] ? _copy_from_user+0xdf/0x150 [ 563.019005] copy_mount_options+0x5f/0x380 [ 563.023244] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 563.028784] ksys_mount+0xd0/0x140 [ 563.032328] __x64_sys_mount+0xbe/0x150 [ 563.036302] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 563.041321] do_syscall_64+0x1b1/0x800 [ 563.045208] ? finish_task_switch+0x1ca/0x840 [ 563.049717] ? syscall_return_slowpath+0x5c0/0x5c0 [ 563.054660] ? syscall_return_slowpath+0x30f/0x5c0 [ 563.059682] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 563.065050] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 563.069897] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 563.075085] RIP: 0033:0x455a09 [ 563.078271] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 563.085985] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 563.093251] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 563.100519] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 563.107787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 563.115171] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:28 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500f0ff", 0x29}], 0x1) 2033/05/18 03:33:28 executing program 5 (fault-call:3 fault-nth:6): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:28 executing program 3: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000140)="473d9505476fcb9a2ae2eadac788f0ad7480fae1909b989c03a8a309b0c0be486b328af7ded4e8e234ede2bbc3d1fe132e3d5165344cdfa06f5f4c276cac9148b734369c6cc8937e46187573329a5c284f6d2443ba56b88942cb3e89652f67296202b0330497eb06d5a944c2aca754864841bcbd450ef6e23713bd20cf45dd158179956557998a856b6b6b0093197940666fd637ce291f12bad1386b7640082acd7b37106181cb27af90f377", 0xac, 0xfffffffffffffffe) keyctl$instantiate_iov(0x14, r0, &(0x7f0000000080)=[{&(0x7f0000000540)="b23701b61d6656e4b01e57edc0397f43b268840390df669120f6c73c19d6b273cf45d7e95c881e24b1b8b3f061a9cf9eb771a62f142f1d4bd7c193dd87875a2212e760d972049113d0618112f45941d4e12fef0a42ffcd2e5b8b088a6c60844cb0ef36cc6e63c597f9897a5ac6c23c6ef3d812eb3dc088c24c00e02bc4dac34e8ddca7504308aaadf0e1379ea64538710baa0073ba18715e709db152d49bfd4d83f343b6a44ad01e02f9cb813ec29bae75be225ec1a71c0acfa5a620e49c6d95342d506db9f539d731f6543979484864456c09be5d7296d17f62936a92b48c51f3d2216de75af4b57cf79777c1e7ab5c4d76933bbfdb5a6a3b3addfbe41771418b021c292b96499e0f60fb74d73b64ebae1ab4f3633a6512aa642026b3ea56204e081960caca535240a42c64a0f76085410b072edfb074984d1c68e4c499f2afb98e916433fb2f95d57c28ddd5c5b7c4ab14609cc6b170fbba2cc64f6eb013e576fd9ddcc73d945af8bcce4f1c38c1adfa612eae6faca7c8b7edf6b8470ebf992482968e21038ac8f0651d82dd0b15d056711401029a5dace0c7ff3d958dd206413c6d294dae5c7a4a504395ae4af8c36c53d93ab35c04e54eaa0d9522effd29019b7d8ca2f7cef5de774389b60e2b269ca508f4c4c2f53da191c3857ad9b662193a7e54a05218cb30687519c762ff89041c5e80ab07bddd5dd12075cd8d312ae2f01382f2c9a0a6f869b466bdebe994c9f4b434ce98a20428d6daeb47bd5c689ba8821c637ca71c9e80429e5d8fc1e561d97cc630bf6e1f60c4997945c3716a1e70410cbb92da21e000fd40f25189630faf5ade180ce0711934ec77d23c536afbadcb7e031d95211a12198689eef3c64dfb012dbc2dcfb450c0f9e725cfac91f2d14b8a378ed159806ade576216ac760bcab1aabd3e4e61898342a50a382e28b8b64b860693ae2e0d61d9f497d661b4363047af291adcb80653daaff53397a9b3a21f479d78f3fe6ec804d4585e5df0021387ba4c2bb91bf5bea207637a5cb80244f64bfd6f70e61ed9306acbb34bc20c1aae386d12b08869e1ba49b5c4b0827d47d302ca7c26c0d728525f37693ca6e9044ed52a0fd36f4b9e8999022b811ec21a626d2a0770d3fa7c1054339021a2d5a467e08ffa4d277f31ebd453e9e1b5b7834663202475eb16f73c5b61f020bee0b2ac00e716fd155bbefbe257649314652bd9857462abf0d114a8c4b337270284b0a12fb8682f3f863a39cd70e00f42ce675bcbf70f800f597d249ade8654ee9cf9002a3aab261e76e94ea3f155c666059c2fe5a5edd423ddb260176bc2fcd93c19531137768f695ad3b148a4aabbd8b1d30d0fedbe75d574d4a2f7e8b7e0910ae1518ff44541aaec64814ce317f8817298a1a8bed6f3a98013418013794ab32a1645f9e55b1b51ad1e17c5f79db98cff7a44fbe7c98dfbd9ac766894ad881dd65681865fcf61746be5be754e34933e426791f1ccf905b2e78e2740a72e511ec3ca0e273020451265be028a2deaf23add53f90832a7c57d90f44bb2375273e5d11603f16bde02d3bc376c0ae8921b03aff4349fca88bcf57f1024b9cd40f95c091960a71e1666d3c6acfff0810fa0c3aa06cc04ab6084cdbfc8d9975c32c5701b4a2e8c8b662ee0d4f3f76a5d4ff0735fde06bcbc14cd061f732941f47ab8d6165f7b48f2865eed58ca293353bf2cf7870897562fcd98a97b74593a37987109d4b301c93dbc72c5966ebcc8c79548d363556c891dc59ec215cabce363908e034c24435fe60c377d2cc3b94cb841a10269759d4b8d948928b28612af9c5851efbd462a6d16c382934fb45c6c9c2b563cc0f59d1fff52cdcf3c70b916d3ac259552c922dd1c8514fb708a968bba04e65362b9150b96a10663eb9628cd3d78acff548b8c661be22f2f5f4a3d0077e7d5f02da518ce6d919ed9fb0f97a37425390507fec95fae9df8089409aa26e44e5fbb766c878aaf8fea6150d6003381a2b2756712e65bfef98704ffaa9d2d803de77df461ae4fb0015145d7104e595a7e0ed1250cdfedd2b92928c41b5581a5878e1e02efe5efab9d763002008edc6a7bc1b1a7283850bf5f0d1ee4b441ca1a46db3f712f7ff9d9bdcccc43ba089b4e1c83e5cd6380a63543e414ab636ead392af793a07c0ae94cbb30152f8ddb240eb41bde1cbd87d5c21cfde4fb64ceb65a583103c2ca56182b8b99f667f2ac45237dbd611e1284916440fcb934bdbc9d2ecb2d982ef372e0b4102f940eb20aaa0405b7116aa7b2fb66b1f2b382035b206bf705ab7a98877330a8de08dcd6b3d2aeff04ab47ae2b779dcf050abeb984e5d807637b6c98ef9558b350df97bc495154356c22858593b7aaf4a14f1f52612d1d74dc8fc8611a1803c47717f84b5dd480f423b893f7531a2db3d40e7c441b37eb7681bec55aaba9768eafa839e8d422c29ee498386297030611713ddc02f110ec0a3e6cb7742de4b0442dcde6be4b9efce0b7f68a9fbb0a5f089ea0c03a2466ea3e8fe2c4d31f3cbb024a0387d5a56327f2000df31bc4fc6faba888e059c02fe33aaca3e6b314b7a25ac67858559e064fcb6105b6c49493d49e512f6523ba73da6b5020b78a9ba25703021184f0a1202dbccf79bc715359edeb8d5c58c8fec2eba508218708f33f8ff0daa53a94b2f879bce6c2f2a5059e37b23b2dbc38424ffd053cc4a1e5ce2aca6a9f427a78d05891fd9db5458e760c1b6caec06a2d4704553b89cfdc9b902958b0588ce548209fa6c973311b55c835fb32f3d662364cd4bb55e5505eacc6c1abcc8ccf1e13e78f5c257b88bc8eb95a476e9743b2e30fb971215a5b04bfed4692f072c214dd3572b29e80a67e9ed02bdd38482d7783ecccdce45eab5839ee6c0cb14d76b10f937fe4f910b5eea3c1f2f6e42a0e1fdc564bebb61002fdd80b6f9ae6dbaa896f362baaa5ec54cc1e03d316af78ab2d9a20b94c2a0bd33535bd6d51a06a94ea6dbe09905d511d843731d0e53b17ae75f29eda4a25506ff6c65b9f141d01bde933ed0d77078424de0fddb55c8cd4d609094b0c50aac0a98d48bd312ad1a9a220687e65cdbb675ad72677326bc623d3ff3715ff24bf95cba9b76f2a1c4a01bd7374d74c0a0d4df4768f96f7db4b64da9041688b96ab74eecaa3c9f9deda3bd0ac1608fbd4c0012cff89246390b1d64b89a2f9bf96c0a1e821ab24110e974e2e00fc3564efde43dfe09777983b34409114750a52e68f2e480899b7d3f0544f4078d5586cc1ff9df1a3ac531b20e0c0cabacc467ff665b7d50f9a4d3781a58d64f7f4ff18ead04e496594dc11810b23b8ad7a7f2235e911a3c8f903b417447c5e6a79381d9a04209572f1401d75ef412bcf0fd4a9481f4015f1a374ecd2303e9e831b56c6cc4a33448bbac3ca4abca6e116a962d14823ab6ad8f2c6800f22052d2ba80f9ad7b2b0766d21dc91cf7b000fc6dbdc58d11ddb1ee472c8ce356ed8a7c4a15743bbf339513cfc105c16aaa659867237c3f2122ed5fc69ce26e8b5f09e6f423ae1487d6e6693d04101ac1908f808ef6606001085a211cdb4eece2ff350c35afb8bbd3375e67697b83f7dbd58b85c47008ba078ad207a71c0d04993c026da3515b11b5ac14a9ed0cfb206e42bb277c5a914c1a74ffb9d696efee8acb0dedda15ba3a471ee7464c8f595a618e93f4807ad703a442b530852db6f02f4cd3795e2ec31c1b6908f429825e0ec6071f4e256461501f8b079ce615e4ccec365f23a628fb8a358d52fb9b2966bd1fd3f5e7bda66417ddd4d301c962a5db126672f514dd50d7634777789dbc6dd3087ce33c84b615cc4e385e5ac2a8f2d323910eb7d84e46cb6233b5f561542ae094d1c4e9a627ba1680c632f18979c247a1767908c737faecb76370de4da1f2bb2bd8bfaa7ba4f8b8b0826fbaf50016cd256bb2861865433c1686a5cc988001fb5f203f388d9591f4b52ff1e9de6c1d58a7e7bcc2d34940b98ee6d24af11699b1bad6e516842c0ab5d90488bed67caad8c42b4d8c87fc07dd4c2d34f84c1cdffb0bef83a81d761f263455a0f1f89d9032df447e93b7e6c9c4e7d240cea80ea16a34385e2ad9f34d2c1f0fe9829f96c16353ca0eaca3bc208149ee95326227d7e2d8f8d20bf80e1851e5b2ee4c907e917105f6136527af35011cb26b2c5f9a8ac68d4de14aad0700bf687d840718c90dd22ade638ad0168fc60e578f8d7ed47051d7365dffa512e2c8cf6382c03cb0114de48eba069f02947ec9b50eeeadb62e7e120f97e3aef45c7d276e10fffab5b2e4db8ebb6a2b754273d3c7f941d8be2d0e7d36582033edf26509d864fce9157368e8d9ac794df1c151284a43b1bae42d77f31d7023e64f8861dc7c36a8e7d3751510c4cdd94a3230829cbf6dc5b2f6876c6943bbdc72e86c18d5a65e51c39b09b2fa40fbb957c621e26d92cd1a7d8c857c186ada3313c090c15fc9d9f7dab5034aa646a6017c2514f2d823a9d68f8ac73fa60ee18b0734f83af649987bc9420652bdd6e6bc11b2486f70ccf92adbe9d9030fa9faa3effea2d953d1f2f05a168aba0350b73f6960231c186171ad8966d7c3d93a2c98ef4166af4105f4759353a16c883659f428909d1846125f2de9936d3121da6677bcf32a62539cc6d851539130e49504acb0ffcbbfc49ee6bebc6898bb61cecb3020413190ac3222cbfacb9140af8bee207e7aa95498cfcdd6411406083aadc342a1080852276b4bdd3b8d3bcefe7c16475be13c3fd55d4a844ada9ea0edc07f498e32eaf104fc7a62d5c9b3bcc82bd9d441c614729f8b62e6e1c59658d32989794ee9cae7025f8c9b768ad53d63c52dad7c547a2fa82204db0e6476ce119b5d3a2d86eaedf760d280533a538b5ae39b69871f1234683b31e498993d1232318ef42230d87cb511cef1c87c2ca8477e4db28aa9c39abb94909aff0b70bee2618b9132b69c322c01f401445aca3b8de7e6c0450fc2b08de638569d7b467a556a3251f230e272db345effac8b147327454f9e16e2044724bec91662dc1a1e8ec5efa1b3b1af343d4895ff87ba3ab399d5499b56b0174fe82bcf91906b2d7886fd7b9343514378c82b800a966261fa86f4b452554586d2072659e99369fb5dde965fb53bb86e53ade64d453a0dcf7a3f993aaabec0a6beb90e4e5320f2d830e3204c0db2342b2e4b04785c0c552e7f327fa2c76b104ae3215611378f9402c84ae3e913fcf4c656abeecaecbe83798792ef74976c6e0977ad65269576da96ccdf06b00e51e327e7eac68d057f925c27533dead6ca5413460f822c3c7e5de8350321a151732b7b1354959c7b40024626f59862f7b657b96455c5d8839c0b8a704a6f62ee054d4ab90a16520198a3cdf4514c2654044aa0534fc46f3ad9758e141d11e92f9cb9cb682917af232ced961d7f46055911d6ddb795bef62f665f8e13fdb66e28dcbd5f5845dca162e531d7a5aed0e19423d079999b175969adf3a383c4fd6c61558fa7da7ecdfeab3d24aadfe2d34310a5076822e294a4f9add2c92138fad96aebe05142f0dbca392eb24377ccd140ba786b98c3ee18eac970126d592cf5c253df7362625e6d235cb4bb630144512b44f52934aba3e66315c74d3467480228f2ca475f1e7427d80c6f3a975ef8a8daf1d46655c7635dbd7ecb05fb2f40dca739c0853b25a58c2d92c7438b4c0a30cf2db5fd5b234559609adfc6d067c252c2808e9135b0c538562bbdff96e553d5d8f9fd1771b2e44c0afaaac5b60025d0304884ecb755750eb62", 0x1000}], 0x1, r1) r2 = add_key(&(0x7f0000002cc0)="000000800020", &(0x7f0000000300)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000340)="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", 0x310b34b6, 0xfffffffffffffffe) keyctl$read(0xb, r2, &(0x7f0000003f80)=""/245, 0xf5) 2033/05/18 03:33:28 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:28 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:28 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025fffff0", 0x29}], 0x1) 2033/05/18 03:33:28 executing program 6: r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = socket$rds(0x15, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f0000002b80), 0x4) r3 = getpid() r4 = fcntl$getown(r0, 0x9) kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r0, &(0x7f0000000080)={r0, r1, 0x2d}) bind$rds(r2, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x7}, 0x10) openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x980, 0x0) splice(r0, &(0x7f0000001300), r0, &(0x7f0000001340), 0x95c, 0x0) 2033/05/18 03:33:28 executing program 2: r0 = socket(0xa, 0x2, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x204400, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000040)={0x0, 0x0, 0x9}) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f00000000c0)={r2, r3, 0xffff}) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setrlimit(0x40000000000008, &(0x7f00000a3ff0)={0x23, 0x100000000020}) r4 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f00000001c0), &(0x7f0000000200)=0x5) mlock(&(0x7f0000911000/0x1000)=nil, 0x1000) 2033/05/18 03:33:29 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000200", 0x29}], 0x1) [ 563.412747] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:29 executing program 3: syz_mount_image$jfs(&(0x7f0000000200)='jfs\x00', &(0x7f0000000280)='./file0\x00', 0x1000000000000000, 0x3, &(0x7f0000000440)=[{&(0x7f0000000500)="53daef3a4125a0b786c7bb6c3ad36da1bc62ff344bc127c53f70210461f2e594e634736fc13e42add24ff6c7971417a9cf6ed193e10b70aaca822c6e7914b34758f3b30f733bc47af4473a91c8924f2a074d4a210e2028d9fb9126edf920d5c3604a0d57b7ec11bf073687803909fbbe29c200d793635372e7579a3092d24e07b72d693ecb244183d00000000000000000000000000000", 0x97, 0x32}, {&(0x7f00000000c0)="d74b27fbb2b96ddb00bd15eff57fa8c320c8419649b72ed8a5b76162013529c7bf1d9ab66ec886485556f7848d7c174df65d1e1ba32bd974130c447974383db619ffc14eab4bb7e65866f7736fad97fdcb7e06ee9ed98c814c3f6e3d6eba9ab42bf385bcfff2ef8cec362c9b6a529dc3152923361478395cc7dc6d99f038868a9db50275b4849e5571807dd65260d5c52c096756029b4664da68d1afdf82d179da3a51ec705b89132ec62ba36f00c8088163df5d54a778fe7cdc85305341287f0db4561c6516244fa67c9027d2404b980dc9704d372812ed569e79725bdbb5bccea04ab53722658b40e9b3a81a89000000", 0x3e1, 0x5}, {&(0x7f00000002c0)="3e5daeeb1cf44cbe6a95868fea1261d788185cea996d689cefb95f3bd46f32b34e6b9c56b249c323b174e08689027c4226b679a04496ee18e48a901bade4ab1aec7ca13598f4ecc83fbaa3ee67d3d86176e0dc9fc3bf8dadb1e9b45ce99e1970faa1af1e80b53aeb2062fbe53051a089bf85e42a751318fe5d61d3480b0540afadd1fb2d0ed37d10bd935a0738b78d0e9eb36067f2055ca4871db72f43dc245ad5", 0xa1, 0x9a08}], 0x0, &(0x7f00000004c0)={[{@grpquota='grpquota', 0x2c}, {@nodiscard='nodiscard', 0x2c}]}) [ 563.459482] FAT-fs (loop5): bogus number of reserved sectors [ 563.465566] FAT-fs (loop5): Can't find a valid FAT filesystem [ 563.489147] FAULT_INJECTION: forcing a failure. [ 563.489147] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 563.500995] CPU: 0 PID: 1323 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 563.508178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 563.517524] Call Trace: [ 563.520116] dump_stack+0x1b9/0x294 [ 563.523806] ? dump_stack_print_info.cold.2+0x52/0x52 [ 563.529035] ? find_held_lock+0x36/0x1c0 [ 563.533101] should_fail.cold.4+0xa/0x1a [ 563.537164] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 563.542278] ? debug_check_no_locks_freed+0x310/0x310 [ 563.547469] ? debug_check_no_locks_freed+0x310/0x310 [ 563.552661] ? is_bpf_text_address+0xd7/0x170 [ 563.557157] ? kernel_text_address+0x79/0xf0 [ 563.561569] ? __unwind_start+0x166/0x330 [ 563.565720] ? __kernel_text_address+0xd/0x40 [ 563.570219] ? unwind_get_return_address+0x61/0xa0 [ 563.575154] ? __save_stack_trace+0x7e/0xd0 [ 563.579483] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 563.585018] ? should_fail+0x21b/0xbcd [ 563.589286] __alloc_pages_nodemask+0x34e/0xd70 [ 563.594027] ? memdup_user+0x2c/0xa0 [ 563.597744] ? strndup_user+0x77/0xd0 [ 563.601557] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 563.606581] ? find_held_lock+0x36/0x1c0 [ 563.610666] ? check_same_owner+0x320/0x320 [ 563.615008] ? lock_release+0xa10/0xa10 [ 563.618985] ? check_same_owner+0x320/0x320 [ 563.623311] cache_grow_begin+0x72/0x6c0 [ 563.627383] kmem_cache_alloc_trace+0x6a5/0x780 [ 563.632062] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 563.637605] copy_mount_options+0x5f/0x380 [ 563.641844] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 563.647560] ksys_mount+0xd0/0x140 [ 563.651104] __x64_sys_mount+0xbe/0x150 [ 563.655077] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 563.660099] do_syscall_64+0x1b1/0x800 [ 563.663987] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 563.668835] ? syscall_return_slowpath+0x5c0/0x5c0 [ 563.673767] ? syscall_return_slowpath+0x30f/0x5c0 [ 563.678701] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 563.684069] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 563.688918] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 563.694106] RIP: 0033:0x455a09 [ 563.697289] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:33:29 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff00000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 563.704997] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 563.712261] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 563.719528] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 563.726806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 563.734075] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:29 executing program 2: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000006000)={0x7fffffff}, 0x8, 0x0) readv(r0, &(0x7f0000000080)=[{&(0x7f000004f000)=""/128, 0x80}], 0x1) timer_create(0x2, &(0x7f0000000180)={0x0, 0x19, 0x0, @thr={&(0x7f00000001c0), &(0x7f00000000c0)}}, &(0x7f0000000000)) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) timer_settime(0x0, 0x1, &(0x7f00000000c0)={{0x0, 0x1c9c380}, {r1, r2+10000000}}, &(0x7f0000000040)) lseek(r0, 0x0, 0x3) fcntl$setstatus(r0, 0x4, 0x400) [ 563.918472] RDS: rds_bind could not find a transport for 0.0.0.7, load rds_tcp or rds_rdma? [ 563.959867] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:30 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:30 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:30 executing program 5 (fault-call:3 fault-nth:7): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:30 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025004800", 0x29}], 0x1) 2033/05/18 03:33:30 executing program 6: r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = socket$rds(0x15, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f0000002b80), 0x4) r3 = getpid() r4 = fcntl$getown(r0, 0x9) kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r0, &(0x7f0000000080)={r0, r1, 0x2d}) bind$rds(r2, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x7}, 0x10) openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x980, 0x0) splice(r0, &(0x7f0000001300), r0, &(0x7f0000001340), 0x95c, 0x0) 2033/05/18 03:33:30 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:30 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = accept4(r0, 0x0, &(0x7f0000000040), 0x0) sendmmsg$nfc_llcp(r1, &(0x7f0000005a80)=[{&(0x7f0000004bc0)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "72ebe5ce28f42e4905a31b8023d45ad63b9e91a6be25f001e571242a9e554d3f154e012243fae877992b0f36b51d785c1a41dea9db4beada0a16fd870691a4"}, 0x60, &(0x7f0000004d80), 0x0, &(0x7f0000004dc0)={0x10}, 0x10}], 0x1, 0x0) sendto$unix(r1, &(0x7f0000000100), 0x0, 0x4008040, &(0x7f0000000200)=@abs, 0x6e) 2033/05/18 03:33:30 executing program 2: r0 = socket(0x2, 0x1, 0x0) ioctl(r0, 0x8008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x40}) read(r1, &(0x7f00000000c0)=""/128, 0x80) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0) ioctl$KVM_ASSIGN_PCI_DEVICE(r2, 0x8040ae69, &(0x7f0000000040)={0x5, 0x0, 0x100000001, 0x7}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000004fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) clone(0x0, &(0x7f0000000080), &(0x7f0000000380), &(0x7f0000000140), &(0x7f0000000180)) mmap(&(0x7f0000000000/0xfe3000)=nil, 0xfe3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f00000003c0)) [ 565.110825] FAT-fs (loop5): bogus number of reserved sectors [ 565.116749] FAT-fs (loop5): Can't find a valid FAT filesystem [ 565.143942] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x20000200000, 0x0) fchmod(r0, 0x8) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0xc0010015, 0x0, 0x80ffff}]}) 2033/05/18 03:33:30 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:30 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025008100", 0x29}], 0x1) 2033/05/18 03:33:30 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff8000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 565.165571] FAULT_INJECTION: forcing a failure. [ 565.165571] name failslab, interval 1, probability 0, space 0, times 0 [ 565.176936] CPU: 0 PID: 1353 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 565.184130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 565.193486] Call Trace: [ 565.196177] dump_stack+0x1b9/0x294 [ 565.199824] ? dump_stack_print_info.cold.2+0x52/0x52 [ 565.205029] ? find_held_lock+0x36/0x1c0 [ 565.209110] should_fail.cold.4+0xa/0x1a [ 565.213186] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 565.218305] ? kasan_check_read+0x11/0x20 [ 565.222466] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 565.227656] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 565.232853] ? find_held_lock+0x36/0x1c0 [ 565.236921] ? tipc_group_update_rcv_win+0xda0/0x1530 [ 565.242123] ? check_same_owner+0x320/0x320 [ 565.246451] ? rcu_note_context_switch+0x710/0x710 [ 565.251385] ? save_stack+0xa9/0xd0 [ 565.255015] __should_failslab+0x124/0x180 [ 565.259257] should_failslab+0x9/0x14 [ 565.263059] kmem_cache_alloc+0x2af/0x760 [ 565.267209] ? find_held_lock+0x36/0x1c0 [ 565.271276] getname_flags+0xd0/0x5a0 [ 565.275083] user_path_at_empty+0x2d/0x50 [ 565.279231] do_mount+0x172/0x3070 [ 565.282771] ? do_raw_spin_unlock+0x9e/0x2e0 [ 565.287877] ? copy_mount_string+0x40/0x40 [ 565.292115] ? rcu_pm_notify+0xc0/0xc0 [ 565.296008] ? copy_mount_options+0x5f/0x380 [ 565.300420] ? rcu_read_lock_sched_held+0x108/0x120 [ 565.305439] ? kmem_cache_alloc_trace+0x616/0x780 [ 565.310287] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 565.315832] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 565.321368] ? copy_mount_options+0x285/0x380 [ 565.325869] ksys_mount+0x12d/0x140 [ 565.329501] __x64_sys_mount+0xbe/0x150 [ 565.333476] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 565.338495] do_syscall_64+0x1b1/0x800 [ 565.342387] ? finish_task_switch+0x1ca/0x840 [ 565.346890] ? syscall_return_slowpath+0x5c0/0x5c0 [ 565.351825] ? syscall_return_slowpath+0x30f/0x5c0 [ 565.356760] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 565.362128] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 565.366976] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 565.372163] RIP: 0033:0x455a09 [ 565.375350] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 565.383061] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 565.390330] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 565.397595] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 565.405016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 2033/05/18 03:33:31 executing program 6: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x809, 0x0) write$binfmt_elf32(r0, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x20}}, 0x38) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x42}) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="e23d7978829c49502cf43575d6b11a26", 0x10) r1 = dup2(r0, r0) mq_timedsend(r1, &(0x7f00000000c0)="e431ae606e3088960212f5c567666136a99252b2925bd18f8f0621a5433f36a015d388b2665644f42aaa32eddb8fc547721fd857099dfac75deedaef2a64ddcf2cdc8147afe4dd03f6eda94a604733e54feb10d538d6348662987e", 0x5b, 0x58d, &(0x7f0000000140)={0x77359400}) 2033/05/18 03:33:31 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 565.412281] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:31 executing program 5 (fault-call:3 fault-nth:8): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 565.657008] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:31 executing program 6: r0 = socket(0xa, 0x1, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000040)={0x52, 0x0, 0xfffffffffffffff9, {0x2, 0x4}, {0x6, 0x100000000}, @period={0x0, 0xffffffffffffff0f, 0x4, 0x81, 0x8, {0xffffffffffffff5a, 0x1, 0x5d, 0x7}, 0x7, [0x5, 0x2, 0x3, 0xf6e, 0x6, 0x11e, 0x9]}}) write$binfmt_elf32(r1, &(0x7f00000000c0)=ANY=[@ANYPTR64=&(0x7f0000000040)=ANY=[]], 0x8) openat$cgroup_ro(r1, &(0x7f0000000180)='cgroup.controllers\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r1, 0x227e, &(0x7f0000000080)=0x1) mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000003, 0x1813, r1, 0x0) pread64(r0, &(0x7f0000000100)=""/94, 0x5e, 0x0) mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000ffb000/0x1000)=nil) 2033/05/18 03:33:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025100000", 0x29}], 0x1) [ 565.736255] FAT-fs (loop5): bogus number of reserved sectors [ 565.742204] FAT-fs (loop5): Can't find a valid FAT filesystem [ 565.813350] FAULT_INJECTION: forcing a failure. [ 565.813350] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 565.825288] CPU: 0 PID: 1390 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 565.832468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 565.841816] Call Trace: [ 565.844410] dump_stack+0x1b9/0x294 [ 565.848041] ? dump_stack_print_info.cold.2+0x52/0x52 [ 565.853238] should_fail.cold.4+0xa/0x1a [ 565.857305] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 565.862415] ? pcpu_balance_workfn+0x16d0/0x16d0 [ 565.867174] ? find_held_lock+0x36/0x1c0 [ 565.871260] ? check_same_owner+0x320/0x320 [ 565.875588] ? __lockdep_init_map+0x105/0x590 [ 565.880091] ? rcu_note_context_switch+0x710/0x710 [ 565.885020] ? lockdep_init_map+0x9/0x10 [ 565.889085] ? __might_sleep+0x95/0x190 [ 565.893062] __alloc_pages_nodemask+0x34e/0xd70 [ 565.897738] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 565.902760] ? kasan_check_read+0x11/0x20 [ 565.906909] ? rcu_pm_notify+0xc0/0xc0 [ 565.910795] ? trace_hardirqs_off+0xd/0x10 [ 565.915035] ? putname+0xf2/0x130 [ 565.918507] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 565.924053] alloc_pages_current+0x10c/0x210 [ 565.928467] __get_free_pages+0xf/0x40 [ 565.932361] get_zeroed_page+0x11/0x20 [ 565.936251] mount_fs+0x210/0x328 [ 565.939707] ? mpi_free.cold.1+0x19/0x19 [ 565.943774] vfs_kern_mount.part.34+0xd4/0x4d0 [ 565.948364] ? may_umount+0xb0/0xb0 [ 565.951994] ? _raw_read_unlock+0x22/0x30 [ 565.956140] ? __get_fs_type+0x97/0xc0 [ 565.960038] do_mount+0x564/0x3070 [ 565.963586] ? copy_mount_string+0x40/0x40 [ 565.967821] ? rcu_pm_notify+0xc0/0xc0 [ 565.971717] ? copy_mount_options+0x5f/0x380 [ 565.976125] ? rcu_read_lock_sched_held+0x108/0x120 [ 565.981143] ? kmem_cache_alloc_trace+0x616/0x780 [ 565.985996] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 565.991533] ? copy_mount_options+0x285/0x380 [ 565.996032] ksys_mount+0x12d/0x140 [ 565.999668] __x64_sys_mount+0xbe/0x150 [ 566.003643] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 566.008669] do_syscall_64+0x1b1/0x800 [ 566.012558] ? finish_task_switch+0x1ca/0x840 [ 566.017056] ? syscall_return_slowpath+0x5c0/0x5c0 [ 566.021992] ? syscall_return_slowpath+0x30f/0x5c0 [ 566.026925] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 566.032293] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 566.037140] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 566.042329] RIP: 0033:0x455a09 [ 566.045521] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 566.053232] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 566.060505] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 566.067775] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 566.075044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.082312] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:32 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:32 executing program 3: ioctl$TCSETSF(0xffffffffffffffff, 0x5101, &(0x7f0000000000)) dup(0xffffffffffffffff) 2033/05/18 03:33:32 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:32 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:32 executing program 5 (fault-call:3 fault-nth:9): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:32 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:32 executing program 6: r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000900)=@ipv6_delroute={0x1c, 0x19, 0x701, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0ffff}}, 0x1c}, 0x1}, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x58, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x80000000, @empty, 0x8}, @in={0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}, @in6={0xa, 0x4e20, 0x100, @remote={0xfe, 0x80, [], 0xbb}, 0x8000}, @in={0x2, 0x4e23, @loopback=0x7f000001}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000001c0)={r1, @in6={{0xa, 0x4e24, 0x1, @dev={0xfe, 0x80, [], 0xb}, 0x39fedf2}}, 0x1, 0xffffffff00000001}, &(0x7f0000000280)=0x90) 2033/05/18 03:33:32 executing program 2: r0 = socket(0xa, 0x6, 0x2000000000000) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000040)=""/148) [ 567.261316] FAT-fs (loop5): bogus number of reserved sectors [ 567.267272] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:32 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff00000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:32 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000f00", 0x29}], 0x1) 2033/05/18 03:33:32 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r0, &(0x7f0000000200)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={0xffffffff}, 0x2}}, 0x20) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x400000, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r2, 0x4010ae74, &(0x7f0000000080)={0xfff, 0x3, 0x800}) write$eventfd(r2, &(0x7f00000002c0)=0x8cf9, 0x8) write$rdma_cm(r0, &(0x7f0000004340)=@set_option={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000000), r1, 0x0, 0x2, 0x4}}, 0x20) ioctl$BLKROSET(r2, 0x125d, &(0x7f0000000100)=0xc74) write$rdma_cm(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="030000000000000000000000ef108965081b08a4fd901b17bf53fc4a00000001000000ca0a"], 0x25) setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000001080)={0x4, {{0xa, 0x4e22, 0xb59, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0x8}}}, 0x88) syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x3, 0x100) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001000)=@nat={'nat\x00', 0x19, 0x3, 0xcb8, [0x20000340, 0x0, 0x0, 0x20000370, 0x20000ca0], 0x0, &(0x7f0000000140), &(0x7f0000000340)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc}, {0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x1, [{{{0x9, 0x32, 0x86dd, 'nr0\x00', 'ipddp0\x00', 'irlan0\x00', 'vcan0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, [0xff, 0xff, 0xff, 0xff, 0x0, 0xff], @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [0x0, 0x0, 0xff, 0xff, 0xff], 0x858, 0x8c8, 0x900, [@u32={'u32\x00', 0x7c0, {{[{[{0x8, 0x3}, {0x8, 0x3}, {0x7ff, 0x2}, {0x0, 0x1}, {0x5}, {0x101, 0x2}, {0x400, 0x3}, {0x2df}, {0x3f, 0x1}, {0xffffffffffffff00}, {0x3, 0x3}], [{0x95}, {0x7, 0xc4a}, {0x7fff, 0x6}, {0x1, 0xffffffffffff23d3}, {0x7, 0xfffffffffffffffa}, {0x5, 0x100000000}, {0x7, 0x4}, {0x9, 0x4}, {0x277, 0x1}, {0x3, 0x4}, {0x1, 0x5}], 0x9, 0x8}, {[{0x1000, 0x3}, {}, {0x8, 0x3}, {}, {}, {0x7ff, 0x1}, {0x1f, 0x3}, {0x725}, {0x0, 0x3}, {0x2, 0x2}, {0xfffffffffffffff8, 0x3}], [{0x1, 0x1ff}, {0xb7a, 0x3}, {0x3ff, 0x6}, {0x0, 0x9}, {0x100000000, 0x8a}, {0x8, 0x7}, {0x1000, 0x5}, {0x9, 0x1}, {0x4, 0x3}, {0x9, 0x2}, {0x2, 0x8}], 0x4, 0x6}, {[{0x0, 0x2}, {0x6, 0x3}, {0x3, 0x2}, {0x4, 0x3}, {0x0, 0x1}, {0x3, 0x2}, {0x3, 0x3}, {0xdf7b, 0x2}, {0xff, 0x3}, {0x7, 0x3}, {0xd5f, 0x1}], [{0xfffffffffffffffe, 0x100000001}, {0x7ed, 0x3}, {0x0, 0x8}, {0xffffffffffff1976, 0x4}, {0x9, 0x1}, {0x4, 0x1000}, {0x80, 0xf4}, {0x3, 0x2}, {0x3f, 0x800}, {0x7f, 0x3}, {0x8, 0x648}], 0x2, 0x5}, {[{0x4657, 0x1}, {0x7, 0x2}, {0x1, 0x3}, {0x40, 0x3}, {0x4, 0x3}, {0x8, 0x3}, {0x2895}, {0x400, 0x3}, {0x7fffffff, 0x1}, {0x2, 0x3}, {0x2}], [{0x46, 0x8}, {0x2, 0x9}, {0x5, 0x80}, {0xffffffffffffff33, 0x300000}, {0x80000001, 0x3}, {0xace0, 0x4}, {0xef, 0x81}, {0xfffffffffffffff9, 0xf7}, {0x1000, 0x9}, {0x81, 0x8000000000000000}, {0x200, 0x9}], 0x7, 0x3}, {[{0xfffffffffffffff7, 0x3}, {0x9b8d, 0x2}, {0x1ff}, {0x38e, 0x3}, {0x0, 0x3}, {0x3, 0x3}, {0x5, 0x1}, {0x71602329, 0x3}, {0x7, 0x3}, {0x200, 0x2}, {0x42d, 0x3}], [{0x1, 0x7}, {0x7, 0x5}, {0xe00000000, 0x585}, {0x1, 0x1}, {0x8, 0x2}, {0x80000000, 0x40}, {0x1000, 0x7}, {0x4aab5eb5, 0x7}, {0x9, 0x212c}, {0x5, 0x5}, {0x1, 0x1f}], 0x4, 0x6}, {[{0x4, 0x3}, {0x4, 0x3}, {0x2, 0x2}, {0x7, 0x2}, {0x1f, 0x3}, {0x4, 0x1}, {0x7, 0x3}, {0xffff, 0x1}, {0x7}, {0x0, 0x3}, {0x7}], [{0xfff, 0x7}, {0x9, 0x800}, {0x4, 0x6}, {0x4, 0xfff}, {0x100000000, 0xff}, {0x6d6, 0x87}, {0x8001, 0x6}, {0x5, 0x8000}, {0x800, 0x5b}, {0x2, 0x401}, {0x0, 0x5}], 0xb, 0x2}, {[{0x5, 0x3}, {0x1000000000, 0x3}, {}, {0x9}, {0xfa0f00000, 0x3}, {0x9, 0x1}, {0x4b2}, {0x8, 0x3}, {0x7f, 0x2}, {0x1, 0x3}, {0x10000, 0x3}], [{0x4d, 0x9}, {0x7fffffff, 0x5}, {0x64, 0x4f}, {0x6, 0x4}, {0xffffffff}, {0xfffffffffffffeff, 0x9}, {0x9, 0x10001}, {0x1, 0x8}, {0x20}, {0x7, 0x800}, {0x8000, 0x5a3ccd68}], 0x8, 0x6}, {[{0x40, 0x3}, {0x3ff, 0x1}, {0x8, 0x2}, {0xa39, 0x1}, {0x4c5, 0x2}, {0x2, 0x2}, {0xfffffffffffffffc, 0x2}, {0x0, 0x3}, {0x401, 0x3}, {0x7ff}, {0x1, 0x3}], [{0x9, 0x3}, {0x3, 0x9}, {0x7, 0x5}, {0x20, 0xd9a6}, {0x3, 0x7}, {0x8, 0x4}, {0x4, 0x8000}, {0x8, 0x8}, {0x4, 0x200000}, {0x9, 0x7}, {0x4, 0x200}], 0xb, 0x3}, {[{0xdde, 0x3}, {0x80, 0x3}, {0x7ff, 0x1}, {0xf169}, {0x1b7, 0x1}, {0x1, 0x3}, {0x6, 0x3}, {0x4, 0x3}, {0x401, 0x3}, {0x7, 0x1}, {0x1f}], [{0x400, 0x9}, {0x7ff, 0x6}, {0x0, 0x3f}, {0x9, 0x1000}, {0xa4f8, 0x7fffffff}, {0x7, 0x9}, {0x1000, 0x6}, {0x7, 0x100000001}, {0xa36, 0x1}, {0x1000, 0x2}, {0x8, 0x4}], 0x2, 0x7}, {[{0x3, 0x1}, {0x26753e6f, 0x3}, {0x1000, 0x3}, {0x8, 0x3}, {0x4, 0x2}, {0x1f}, {0x0, 0x3}, {0x2, 0x1}, {0xffffffffffffffff}, {0x1, 0x3}, {0x8001, 0x3}], [{0x10000000000000, 0x100}, {0x9, 0x9}, {0x4, 0x1ff}, {0x6, 0x3}, {0x1f, 0x8}, {0x0, 0x2}, {0x6, 0x101}, {0x9, 0x101}, {0x4}, {0x5, 0xffff}, {0x1, 0x7fff}], 0x0, 0x7}, {[{0x7, 0x1}, {0x9, 0x3}, {0x4, 0x1}, {0x8, 0x3}, {0xfffffffffffffff9, 0x1}, {0x6, 0x3}, {0x31, 0x3}, {0x6, 0x1}, {0x1, 0x2}, {0x0, 0x1}, {0x100, 0x3}], [{0x9c, 0x7}, {0xfff, 0x200}, {0x7, 0x80000000}, {0x1000, 0x100}, {0x6, 0x7}, {0x2, 0x1}, {0x5, 0x1}, {0x2, 0x1f}, {0x10001, 0x96}, {0x2, 0x6}, {0x5, 0x6}], 0x4, 0x9}], 0x6, 0x1}}}]}, [@snat={'snat\x00', 0x10, {{@empty, 0xffffffffffffffff}}}, @arpreply={'arpreply\x00', 0x10, {{@empty, 0xffffffffffffffff}}}]}, @arpreply={'arpreply\x00', 0x10, {{@empty, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x2, [{{{0x9, 0x40, 0xf8, 'veth1_to_bond\x00', 'syzkaller1\x00', 'veth0_to_bond\x00', 'gre0\x00', @empty, [0x0, 0xff, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0xff, 0x0, 0xff, 0x0, 0xff], 0x70, 0xe0, 0x118}, [@snat={'snat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0xffffffffffffffff}}}, @snat={'snat\x00', 0x10, {{@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xf}, 0xfffffffffffffffe}}}]}, @arpreply={'arpreply\x00', 0x10, {{@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 0xffffffffffffffff}}}}, {{{0x11, 0x70, 0xdada, 'lo\x00', 'gre0\x00', 'bridge0\x00', 'team_slave_1\x00', @random="f424213907c7", [0x0, 0x0, 0xff, 0x0, 0xff], @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x1b}, [0xff, 0xff, 0x0, 0xff, 0xff], 0x70, 0x1d8, 0x210}, [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x3, 'system_u:object_r:auditd_log_t:s0\x00'}}}, @snat={'snat\x00', 0x10, {{@random="b1de21b77767", 0xfffffffffffffffe}}}]}, @snat={'snat\x00', 0x10, {{@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}}}}]}]}, 0xd30) write$eventfd(r2, &(0x7f0000000280)=0x6, 0x8) [ 567.305105] FAULT_INJECTION: forcing a failure. [ 567.305105] name failslab, interval 1, probability 0, space 0, times 0 [ 567.316446] CPU: 0 PID: 1401 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 567.323640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 567.332998] Call Trace: [ 567.335600] dump_stack+0x1b9/0x294 [ 567.339258] ? dump_stack_print_info.cold.2+0x52/0x52 [ 567.344467] ? kasan_check_write+0x14/0x20 [ 567.348719] should_fail.cold.4+0xa/0x1a 2033/05/18 03:33:32 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = semget(0x0, 0x3, 0x528) semctl$SEM_INFO(r1, 0x4, 0x13, &(0x7f0000000000)=""/57) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000140)={'ip_vti0\x00'}) syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x200000) [ 567.352795] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 567.357913] ? find_next_zero_bit+0x111/0x140 [ 567.362429] ? rcu_is_watching+0x85/0x140 [ 567.366590] ? rcu_pm_notify+0xc0/0xc0 [ 567.370495] ? find_held_lock+0x36/0x1c0 [ 567.374583] ? check_same_owner+0x320/0x320 [ 567.378910] ? rcu_note_context_switch+0x710/0x710 [ 567.383849] __should_failslab+0x124/0x180 [ 567.388088] should_failslab+0x9/0x14 [ 567.391893] kmem_cache_alloc_trace+0x2cb/0x780 [ 567.396569] ? kasan_check_write+0x14/0x20 [ 567.400806] ? do_raw_spin_lock+0xc1/0x200 [ 567.405052] sget_userns+0x1c7/0xf00 [ 567.408767] ? get_anon_bdev+0x2f0/0x2f0 [ 567.412839] ? destroy_unused_super.part.11+0x110/0x110 [ 567.418207] ? __alloc_pages_nodemask+0xacf/0xd70 [ 567.423057] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 567.428086] ? kasan_check_read+0x11/0x20 [ 567.432252] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 567.437794] ? cap_capable+0x1f9/0x260 [ 567.441694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 567.447391] ? security_capable+0x99/0xc0 [ 567.451551] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 567.457095] ? ns_capable_common+0x13f/0x170 [ 567.461515] ? get_anon_bdev+0x2f0/0x2f0 [ 567.465580] sget+0x10b/0x150 [ 567.468695] ? fuse_get_root_inode+0x190/0x190 [ 567.473285] mount_nodev+0x33/0x110 [ 567.476916] fuse_mount+0x2c/0x40 [ 567.480377] mount_fs+0xae/0x328 [ 567.483780] vfs_kern_mount.part.34+0xd4/0x4d0 [ 567.488372] ? may_umount+0xb0/0xb0 [ 567.492007] ? _raw_read_unlock+0x22/0x30 [ 567.496154] ? __get_fs_type+0x97/0xc0 [ 567.500050] do_mount+0x564/0x3070 [ 567.503598] ? copy_mount_string+0x40/0x40 [ 567.507836] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 567.512856] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 567.517617] ? retint_kernel+0x10/0x10 [ 567.521518] ? copy_mount_options+0x1f0/0x380 [ 567.526013] ? copy_mount_options+0x1fa/0x380 [ 567.530514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 567.536053] ? copy_mount_options+0x285/0x380 [ 567.540554] ksys_mount+0x12d/0x140 [ 567.544190] __x64_sys_mount+0xbe/0x150 [ 567.548169] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 567.553193] do_syscall_64+0x1b1/0x800 [ 567.557080] ? finish_task_switch+0x1ca/0x840 [ 567.561577] ? syscall_return_slowpath+0x5c0/0x5c0 [ 567.566511] ? syscall_return_slowpath+0x30f/0x5c0 [ 567.571446] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 567.576819] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 567.581669] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 567.586858] RIP: 0033:0x455a09 [ 567.590042] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 567.597756] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 2033/05/18 03:33:33 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:33 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:33 executing program 5 (fault-call:3 fault-nth:10): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 567.605022] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 567.612292] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 567.619557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 567.626821] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 567.640719] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:33 executing program 6: r0 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x2000, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e21, 0x439, @loopback={0x0, 0x1}}], 0x1c) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000107ff8)={0x0, 0x10040000}, 0x8) connect$inet6(r0, &(0x7f00008c0000)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f000081e000)={0x0, 0x2}, 0x8) 2033/05/18 03:33:33 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025b00800", 0x29}], 0x1) [ 567.896226] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 567.933831] FAT-fs (loop5): bogus number of reserved sectors [ 567.939771] FAT-fs (loop5): Can't find a valid FAT filesystem [ 567.978575] FAULT_INJECTION: forcing a failure. [ 567.978575] name failslab, interval 1, probability 0, space 0, times 0 [ 567.989932] CPU: 0 PID: 1438 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 567.997124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 568.006481] Call Trace: [ 568.009076] dump_stack+0x1b9/0x294 [ 568.012708] ? dump_stack_print_info.cold.2+0x52/0x52 [ 568.017901] ? kernel_text_address+0x79/0xf0 [ 568.022310] ? __unwind_start+0x166/0x330 [ 568.026457] ? __kernel_text_address+0xd/0x40 [ 568.030957] should_fail.cold.4+0xa/0x1a [ 568.035021] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 568.040244] ? save_stack+0x43/0xd0 [ 568.043872] ? kasan_kmalloc+0xc4/0xe0 [ 568.047761] ? kasan_slab_alloc+0x12/0x20 [ 568.051908] ? kmem_cache_alloc+0x12e/0x760 [ 568.056230] ? alloc_vfsmnt+0xe0/0x9d0 [ 568.060116] ? vfs_kern_mount.part.34+0x88/0x4d0 [ 568.064872] ? find_held_lock+0x36/0x1c0 [ 568.068953] ? check_same_owner+0x320/0x320 [ 568.073278] ? rcu_note_context_switch+0x710/0x710 [ 568.078218] __should_failslab+0x124/0x180 [ 568.082456] should_failslab+0x9/0x14 [ 568.086259] __kmalloc_track_caller+0x2c4/0x760 [ 568.090933] ? kasan_check_read+0x11/0x20 [ 568.095081] ? do_raw_spin_unlock+0x9e/0x2e0 [ 568.099493] ? kstrdup_const+0x66/0x80 [ 568.103385] kstrdup+0x39/0x70 [ 568.106580] kstrdup_const+0x66/0x80 [ 568.110297] alloc_vfsmnt+0x1b3/0x9d0 [ 568.114101] ? mnt_free_id.isra.27+0x60/0x60 [ 568.118511] ? kasan_check_read+0x11/0x20 [ 568.122660] ? graph_lock+0x170/0x170 [ 568.126460] ? rcu_pm_notify+0xc0/0xc0 [ 568.130346] ? trace_hardirqs_off+0xd/0x10 [ 568.134587] ? putname+0xf2/0x130 [ 568.138040] ? putname+0xf2/0x130 [ 568.141494] ? find_held_lock+0x36/0x1c0 [ 568.145563] ? lock_downgrade+0x8e0/0x8e0 [ 568.149709] ? module_unload_free+0x5b0/0x5b0 [ 568.154227] ? lock_release+0xa10/0xa10 [ 568.158211] ? mpi_free.cold.1+0x19/0x19 [ 568.162279] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 568.167823] vfs_kern_mount.part.34+0x88/0x4d0 [ 568.172408] ? may_umount+0xb0/0xb0 [ 568.176037] ? _raw_read_unlock+0x22/0x30 [ 568.180189] ? __get_fs_type+0x97/0xc0 [ 568.184084] do_mount+0x564/0x3070 [ 568.187626] ? do_raw_spin_unlock+0x9e/0x2e0 [ 568.192031] ? interrupt_entry+0xb1/0xf0 [ 568.196093] ? copy_mount_string+0x40/0x40 [ 568.200332] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 568.205092] ? retint_kernel+0x10/0x10 [ 568.208989] ? copy_mount_options+0x213/0x380 [ 568.213484] ? write_comp_data+0x11/0x70 [ 568.217551] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 568.223103] ? copy_mount_options+0x285/0x380 [ 568.227613] ksys_mount+0x12d/0x140 [ 568.231243] __x64_sys_mount+0xbe/0x150 [ 568.235225] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 568.240242] do_syscall_64+0x1b1/0x800 [ 568.244127] ? finish_task_switch+0x1ca/0x840 [ 568.248626] ? syscall_return_slowpath+0x5c0/0x5c0 [ 568.253555] ? syscall_return_slowpath+0x30f/0x5c0 [ 568.258491] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 568.263858] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 568.268703] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 568.273890] RIP: 0033:0x455a09 [ 568.277078] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 568.284784] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 568.292049] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 568.299315] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 568.306582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 568.313846] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:34 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80ffff, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:34 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:34 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f0000000500)=""/246) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x20000000000000, 0x44031, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:34 executing program 2: ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f0000000100)) r0 = socket$netlink(0x10, 0x3, 0x4) openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x1, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000040)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f000000d379)={&(0x7f0000000080)={0x18, 0x14, 0x21, 0x0, 0x0, {0x1e}, [@generic='#']}, 0x18}, 0x1}, 0x0) r1 = getpgid(0x0) capget(&(0x7f0000000140)={0x0, r1}, &(0x7f0000000180)={0xfffffffffffffffb, 0x3, 0x8, 0x8, 0x80000000, 0x7fff}) 2033/05/18 03:33:34 executing program 5 (fault-call:3 fault-nth:11): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:34 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:34 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000b00", 0x29}], 0x1) 2033/05/18 03:33:34 executing program 6: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") clock_gettime(0x5, &(0x7f0000000000)) 2033/05/18 03:33:34 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:34 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000000)=0x6b65a878, 0x4) sendto$inet6(r0, &(0x7f0000000100), 0x0, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x5, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}, 0x1c) fcntl$setpipe(r0, 0x407, 0x5) [ 568.654928] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 568.697662] FAT-fs (loop5): bogus number of reserved sectors [ 568.703738] FAT-fs (loop5): Can't find a valid FAT filesystem [ 568.735596] FAULT_INJECTION: forcing a failure. [ 568.735596] name failslab, interval 1, probability 0, space 0, times 0 [ 568.747704] CPU: 0 PID: 1465 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 568.754898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 568.764250] Call Trace: [ 568.766842] dump_stack+0x1b9/0x294 [ 568.770472] ? dump_stack_print_info.cold.2+0x52/0x52 [ 568.775664] ? kernel_text_address+0x79/0xf0 [ 568.780074] ? __unwind_start+0x166/0x330 [ 568.784227] should_fail.cold.4+0xa/0x1a [ 568.788295] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 568.793402] ? graph_lock+0x170/0x170 [ 568.797207] ? save_stack+0x43/0xd0 [ 568.800832] ? kasan_kmalloc+0xc4/0xe0 [ 568.804718] ? __kmalloc+0x14e/0x760 [ 568.808433] ? __list_lru_init+0xdd/0x790 [ 568.812585] ? find_held_lock+0x36/0x1c0 [ 568.816651] ? __lock_is_held+0xb5/0x140 [ 568.820726] ? check_same_owner+0x320/0x320 [ 568.825053] ? rcu_note_context_switch+0x710/0x710 [ 568.829985] __should_failslab+0x124/0x180 [ 568.834222] should_failslab+0x9/0x14 [ 568.838026] kmem_cache_alloc_node_trace+0x26f/0x770 [ 568.843134] ? mark_held_locks+0xc9/0x160 [ 568.847291] ? __raw_spin_lock_init+0x1c/0x100 [ 568.851883] __kmalloc_node+0x33/0x70 [ 568.855686] kvmalloc_node+0x6b/0x100 [ 568.859487] __list_lru_init+0x559/0x790 [ 568.863550] ? list_lru_destroy+0x4c0/0x4c0 [ 568.867869] ? mark_held_locks+0xc9/0x160 [ 568.872021] ? __raw_spin_lock_init+0x1c/0x100 [ 568.876606] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 568.881622] ? __lockdep_init_map+0x105/0x590 [ 568.886119] ? lockdep_init_map+0x9/0x10 [ 568.890560] sget_userns+0x73a/0xf00 [ 568.894273] ? get_anon_bdev+0x2f0/0x2f0 [ 568.898341] ? destroy_unused_super.part.11+0x110/0x110 [ 568.903704] ? __alloc_pages_nodemask+0xacf/0xd70 [ 568.908552] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 568.913574] ? kasan_check_read+0x11/0x20 [ 568.917728] ? cap_capable+0x1f9/0x260 [ 568.921625] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 568.927173] ? security_capable+0x99/0xc0 [ 568.931331] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 568.936867] ? ns_capable_common+0x13f/0x170 [ 568.941279] ? get_anon_bdev+0x2f0/0x2f0 [ 568.945340] sget+0x10b/0x150 [ 568.948449] ? fuse_get_root_inode+0x190/0x190 [ 568.953030] mount_nodev+0x33/0x110 [ 568.956657] fuse_mount+0x2c/0x40 [ 568.960116] mount_fs+0xae/0x328 [ 568.963490] vfs_kern_mount.part.34+0xd4/0x4d0 [ 568.968079] ? may_umount+0xb0/0xb0 [ 568.971705] ? _raw_read_unlock+0x22/0x30 [ 568.975849] ? __get_fs_type+0x97/0xc0 [ 568.979740] do_mount+0x564/0x3070 [ 568.983287] ? copy_mount_string+0x40/0x40 [ 568.987520] ? rcu_pm_notify+0xc0/0xc0 [ 568.991414] ? copy_mount_options+0x5f/0x380 [ 568.995824] ? rcu_read_lock_sched_held+0x108/0x120 [ 569.000839] ? kmem_cache_alloc_trace+0x616/0x780 [ 569.005685] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 569.011222] ? _copy_from_user+0xdf/0x150 [ 569.015375] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 569.020911] ? copy_mount_options+0x285/0x380 [ 569.025411] ksys_mount+0x12d/0x140 [ 569.029038] __x64_sys_mount+0xbe/0x150 [ 569.033011] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 569.038027] do_syscall_64+0x1b1/0x800 [ 569.041915] ? finish_task_switch+0x1ca/0x840 [ 569.046414] ? syscall_return_slowpath+0x5c0/0x5c0 [ 569.051344] ? syscall_return_slowpath+0x30f/0x5c0 [ 569.056282] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 569.061651] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 569.066513] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 569.071699] RIP: 0033:0x455a09 [ 569.074884] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 569.082597] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 569.089861] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 569.097130] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 569.104399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 569.111667] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:35 executing program 6: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000080)) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x490003, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f00000001c0)) fchmod(r0, 0x120) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x1, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x90) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x200000, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='htcp\x00', 0x5) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x30, &(0x7f0000678f70)={0x1, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x90) 2033/05/18 03:33:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea11000000250000f0", 0x29}], 0x1) 2033/05/18 03:33:35 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:35 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000000)={0x0, 0x80}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffff9c, 0x84, 0x66, &(0x7f00000001c0)={0x0, 0xbb}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000240)={0xfffffffffffffff8, 0x8, 0x0, 0x17}, &(0x7f0000000280)=0x10) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000002c0)={0x0, 0xfff, 0x53, 0x9, 0x8, 0x4}, &(0x7f0000000300)=0x14) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000340)={0x0, 0x9}, &(0x7f0000000380)=0x8) getsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f00000000c0)={@ipv4={[], [], @multicast1}}, &(0x7f0000000100)=0x14) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000140), &(0x7f0000000480)=0x30) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000003c0)={r1, @in={{0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}}, 0xffffffffffffff34) r2 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x80, 0x200000) setsockopt$kcm_KCM_RECV_DISABLE(r2, 0x119, 0x1, &(0x7f0000000040)=0x8d5e, 0x4) 2033/05/18 03:33:35 executing program 5 (fault-call:3 fault-nth:12): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:35 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000600", 0x29}], 0x1) 2033/05/18 03:33:35 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='task\x00') getdents(r0, &(0x7f0000000380)=""/206, 0x56) exit(0x3) r1 = socket(0xa, 0x1, 0x0) ioctl$KVM_SET_TSC_KHZ(r0, 0xaea2, 0x401) ioctl(r1, 0x8912, &(0x7f0000000080)="c626262c8523bf012cf66f") getdents64(r0, &(0x7f0000000340)=""/57, 0x45) 2033/05/18 03:33:35 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400000000000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:35 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025004003", 0x29}], 0x1) 2033/05/18 03:33:35 executing program 3: r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6100) ftruncate(r0, 0x208200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r2, 0x0) mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='selinuxfs\x00', 0x0, &(0x7f0000000740)="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") fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000180)=0x4) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000280)={{{@in=@multicast1, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in6=@mcast1}}, &(0x7f0000000380)=0xe8) getresuid(&(0x7f00000003c0), &(0x7f0000000400)=0x0, &(0x7f0000000440)) setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@loopback={0x0, 0x1}, @in6=@ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}, 0x4e23, 0x6, 0x4e21, 0x10000, 0xa, 0x80, 0x80, 0x2f, r3, r4}, {0x5, 0xb883, 0x9, 0xfffffffffffffe01, 0xfff, 0x6, 0x10000, 0x4}, {0x20, 0x1, 0x2, 0xfffffffffffffff9}, 0x2ede, 0x6e6bb3, 0x0, 0x1, 0x1, 0x3}, {{@in6=@remote={0xfe, 0x80, [], 0xbb}, 0x4d4, 0x7e}, 0xa, @in=@broadcast=0xffffffff, 0x0, 0x1, 0x0, 0x3, 0x6, 0xc67f, 0x80000000}}, 0xe8) r5 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0x0) keyctl$invalidate(0x15, r5) r6 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) sendfile(r0, r6, &(0x7f0000d83ff8), 0x8000fffffffe) 2033/05/18 03:33:35 executing program 6: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000140)={{0x0, @multicast2=0xe0000002, 0x4e24, 0x2, 'nq\x00', 0x9, 0x80, 0x4a}, {@broadcast=0xffffffff, 0x4e20, 0x2, 0x10000, 0x8e, 0x200}}, 0x44) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x400000, 0x0) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000100)={0x12711, 0x0, &(0x7f0000ffb000/0x3000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f009d020000000f0f631ab49a0c0100001501b96c090000b844000000ba000000000f3066b82b000f00d866baf80cb848ecf782ef66bafc0cb800000000efc744240000800000c744240236802fbcc7442406000000000f011c240f01cf0f005b0c0f21e1", 0x65}], 0x1, 0x0, &(0x7f0000000100), 0x0) [ 569.550773] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 569.581535] FAT-fs (loop5): bogus number of reserved sectors [ 569.587656] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025004c00", 0x29}], 0x1) [ 569.640438] FAULT_INJECTION: forcing a failure. [ 569.640438] name failslab, interval 1, probability 0, space 0, times 0 [ 569.651873] CPU: 0 PID: 1484 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 569.659060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 569.668412] Call Trace: [ 569.671001] dump_stack+0x1b9/0x294 [ 569.674632] ? dump_stack_print_info.cold.2+0x52/0x52 [ 569.679824] ? pcpu_next_unpop+0x83/0xf0 [ 569.683891] should_fail.cold.4+0xa/0x1a [ 569.687955] ? kasan_check_write+0x14/0x20 [ 569.692201] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 569.697308] ? graph_lock+0x170/0x170 [ 569.701109] ? wait_for_completion+0x870/0x870 [ 569.705693] ? graph_lock+0x170/0x170 [ 569.709500] ? find_next_zero_bit+0x111/0x140 [ 569.714000] ? find_held_lock+0x36/0x1c0 [ 569.718073] ? __lock_is_held+0xb5/0x140 [ 569.722147] ? intel_bios_init+0x3700/0x7b40 [ 569.726571] ? check_same_owner+0x320/0x320 [ 569.730900] ? __might_sleep+0x95/0x190 [ 569.734877] ? rcu_note_context_switch+0x710/0x710 [ 569.739809] __should_failslab+0x124/0x180 [ 569.744052] should_failslab+0x9/0x14 [ 569.747855] __kmalloc+0x2c8/0x760 [ 569.751396] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 569.756415] ? __lockdep_init_map+0x105/0x590 [ 569.760913] ? __list_lru_init+0xdd/0x790 [ 569.765069] __list_lru_init+0xdd/0x790 [ 569.769047] ? list_lru_destroy+0x4c0/0x4c0 [ 569.773450] ? mark_held_locks+0xc9/0x160 [ 569.777602] ? __raw_spin_lock_init+0x1c/0x100 [ 569.782187] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 569.787202] ? __lockdep_init_map+0x105/0x590 [ 569.791703] ? lockdep_init_map+0x9/0x10 [ 569.795767] sget_userns+0x73a/0xf00 [ 569.799492] ? get_anon_bdev+0x2f0/0x2f0 [ 569.803564] ? destroy_unused_super.part.11+0x110/0x110 [ 569.808931] ? __alloc_pages_nodemask+0xacf/0xd70 [ 569.813780] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 569.818801] ? kasan_check_read+0x11/0x20 [ 569.822957] ? cap_capable+0x1f9/0x260 [ 569.826853] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 569.832392] ? security_capable+0x99/0xc0 [ 569.836548] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 569.842097] ? ns_capable_common+0x13f/0x170 [ 569.846511] ? get_anon_bdev+0x2f0/0x2f0 [ 569.850574] sget+0x10b/0x150 [ 569.853687] ? fuse_get_root_inode+0x190/0x190 [ 569.858269] mount_nodev+0x33/0x110 [ 569.861896] fuse_mount+0x2c/0x40 [ 569.865354] mount_fs+0xae/0x328 [ 569.868728] vfs_kern_mount.part.34+0xd4/0x4d0 [ 569.873311] ? may_umount+0xb0/0xb0 [ 569.876938] ? _raw_read_unlock+0x22/0x30 [ 569.881085] ? __get_fs_type+0x97/0xc0 [ 569.884977] do_mount+0x564/0x3070 [ 569.888516] ? do_raw_spin_unlock+0x9e/0x2e0 [ 569.892927] ? copy_mount_string+0x40/0x40 [ 569.897161] ? rcu_pm_notify+0xc0/0xc0 [ 569.901059] ? copy_mount_options+0x5f/0x380 [ 569.905467] ? rcu_read_lock_sched_held+0x108/0x120 [ 569.910485] ? kmem_cache_alloc_trace+0x616/0x780 [ 569.915333] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 569.920875] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 569.926410] ? copy_mount_options+0x285/0x380 [ 569.930911] ksys_mount+0x12d/0x140 [ 569.934539] __x64_sys_mount+0xbe/0x150 [ 569.938515] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 569.943537] do_syscall_64+0x1b1/0x800 [ 569.947423] ? finish_task_switch+0x1ca/0x840 [ 569.951920] ? syscall_return_slowpath+0x5c0/0x5c0 [ 569.956852] ? syscall_return_slowpath+0x30f/0x5c0 [ 569.961786] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 569.967153] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 569.972004] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 569.977191] RIP: 0033:0x455a09 [ 569.980376] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:33:35 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:35 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:35 executing program 5 (fault-call:3 fault-nth:13): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 569.988085] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 569.995356] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 570.002621] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 570.009888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 570.017154] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:35 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250b0000", 0x29}], 0x1) [ 570.272921] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:20004 nq [ 570.274049] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 570.291874] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:20004 nq 2033/05/18 03:33:35 executing program 6: r0 = socket$inet(0x2, 0x3, 0x7f) accept4$packet(0xffffffffffffff9c, &(0x7f0000006fc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000007000)=0x14, 0x80000) sendmmsg(r0, &(0x7f000000bec0)=[{{&(0x7f0000000080)=@nfc={0x27, 0x0, 0x0, 0x4}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000180)="824eef87d6066372e8bb1e55dbff437fd74d0e72dec29315312ae9b3eae9970dc68c81a5ee28668d82852e960ccba832a45cbc12ca95e283056242d95dc95654cc387ab81cef95043f46d60f546dbe8488d48e852ff761cc3bac11f19ce6761a44a0e1f8907956654591359c76dfa0640afa60b6506da1e92a080fef3775e8746c11ad612858897dac5ec6ae65b8d5d5703212b87270282e750f3fa2ab0a371783dcc7cc559c67ccf23faa1258034f4c47", 0xb1}, {&(0x7f0000000240)="3bd32bcb7e9e69e7eacf98bbc066f10ce7f0b7b3cba2accd1b3fefeba0010b955170732fde784ab610d7bbb2def3c7d72522ed7d15abaf74170ad3bb3c6278dde87da7f26e8ad27896f9898e25ca99b21c47e662091ef263a05bb22cd87ee17d2881d850101bae802646da2871592b653825b2cd15f1068cc843c923d9471bd441164cc575", 0x85}, {&(0x7f0000000300)="006b40c57e86bd5b23cd2ae874b79ec0d2c1fe7f5a7e38ae3d464970cc1c358c03307925a70bf258e47bd07db9c097", 0x2f}], 0x3, &(0x7f00000005c0)=[{0x18, 0x100, 0x9, "1651f510e52716"}, {0x60, 0x107, 0x8, "1fc1299df6200f1f39e7bd61dba3f9d0cde70d5e2f5b212504716547c53a4d2bb9ba7e1967eb2a2dd9a643280be3794dad2b3a50aec2a077cb1d805b787632539400a3a149813617ea26285e"}, {0xf0, 0xff, 0x3, "8a2db2c76825c545f131121fb6635b45791e927b5d9710355698946481704f4494ccd0670f022f62a391cc07e3218990687aa3ab6ee7986924537c72215a5e5f90e0ffa2636735a5717a0e5c7b94e412ef4d45078a6706a33aa1bbaa12ce321af90d3ca560d6644d122f7c223a457165b705b397819cd7f3df0a62ceeccba7ccba993430ddcd2835134cade3b4d853e1df2fbca47f5800cac33d6492ebea813f0e421a8b4f88a99782307ddf779613be229265edc488e9fb3a7167d025246c7753ea6574051f381af8928ed40c2ee46d84c9dfaa8c46f4ccf531aef8f466"}, {0xb0, 0x10d, 0x1000, "5dcfb2f3bc70ec24a241dbd517e012c9e3d43cbe08b39180f71f8b5637d5c0be0b5b1d3894490b43420288379b377db861594094c6a2fdf08355a9fe3a5fdc8bf3ff6056c11a619d971c1cae3d876b36ce5c4aa64d097460013563125ff3805adc064714cd287a9f80cb9fa36efd8716e5a9ecd5c54bf5e9aa0024fb523e2bc5281ed055c1424a25ccc97907d9b44ccab921eaac0cbd085e4093d861"}], 0x218, 0x40000}, 0x9}, {{&(0x7f0000000380)=@generic={0xf, "b7ec9dbdff63597a28b9572efeabbe39f0760b7984f1774983d865f4d36b5ceaadcff5f369a7967efee711ebaa1fabb62522e61e6fe6f72d75d344e3adb45d7e63685eab09993214e7a971eb9ce52b709d72eb6e8f808be88d825b9c6e0fda2c37ee52e0971ad337a9e0c26d08bf87bd96150396665cfed3a0a0300649b8"}, 0x80, &(0x7f0000000b00)=[{&(0x7f0000000400)="8ed8432b97c4a52c694774ee7e6172cbe31a14bfad2e8e271d5dfbed27464256d8a02a9ba76fdd021563399d0ab5fd9e89625dee48968aaa77ec5c8c70f5a652fb683dca71abb2a7524734c469b4eeb82804604f300bc4137b255ebc0b8795c35a8ca040a406d716f534d87b363b57de97c1040c369d268202eb01bffa847347b7388fc64b3dbf28260f2974e464bdcac5491852e37548c76dc1e295044ef9daab201e48b60b7157bf7dc6cb37b86e1929f12f38db0c4d83b2", 0xb9}, {&(0x7f00000004c0)="8782138bc187f1d2e917b2b1c7aa0322b1d5e971cb104c13845d7b1143a44ef0439db0eead0104d65911bf9a2ba80eaa2518a75c5cb5cdca76aad9f5c90ecd86f6f1bac22ffee628bad3d352bd0614362681d20b0b4862e5720f05486e0c13d3bbe34b56a379dc0e7b4eb83260c8657c421247e3a0258a94e70b94947f43f039507e1d7ee172c62165a1da1782c903439362", 0x92}, {&(0x7f0000000800)="b1ae19a0d1147deff5aada7fcffce76c5012699826f22efb48682524981be81388c2bbe3615b06a46e3212e31603a271253ae1685215aafd28b866fd61b37bdf4f4efe4d5cefc6dd3ff4c6b398726c7aa274b11ede9dd95ef3c892bc34d42f1422f97b76df8b00313e2138859f7f8383283a149d3cf5e46b8d178ae0add6764e512ff4deb0185fda1e8cb7b2e0fd25a05d68ce4b77ddd7a3ca9bd24d9c01d6a064b97b88c7d15b4272919ce1158102542c52a837", 0xb4}, {&(0x7f00000008c0)="29d8dddaf977a6a2a7e0e515", 0xc}, {&(0x7f0000000900)="0eb100492502eac2ea83ff35746af46c7ea424ecf2dff7b0b9e653e9c88ee86c8f063746b4bb65d48b1d3f7fd1f20622afba423d7442b1f9f8d83cb494e4092d7d64747bb8b3d04cfba7dbea428af1453895b9aa58", 0x55}, {&(0x7f0000000980)="c9fe306eb2506a26284654805519a664124bdf5e3eeb29ed568ad03909b9", 0x1e}, {&(0x7f00000009c0)="b0edcb0040fb8897cfb0e8a054751414f26d5759cddab88bc9be07a16d2f87298b1c4c6024a2a7d4014fe962ecda19264ec8bc69f36eaf99bc1be662162772f9b4bcdbd7611aea3f21d3da1c666d781849db3149be058abebb29eed888002eb52c9745baf066a680202fec", 0x6b}, {&(0x7f0000000a40)="118c7d6852eafbb04b85d7c33fd342b202f0576718cef01c7d1d82e0127d5aac8a5b6c80faba2e6867d6e7076dc163c7f329249b97d4f4ca46c07e78c9f9b6689141d03b4d69d501ebcd65417d4fa062eec2668aec337a9c349ebc7ccd88b00c4b42c9a8eab29a6bb27b0dc30050b63281cceaf6cecdb3e732a56f63543dde27b66c0fd9ac4a86122b2c79a277ff86e01e7f22a72593c2fe6476bdd4621e65", 0x9f}], 0x8, 0x0, 0x0, 0x800}, 0x3}, {{&(0x7f0000000b80)=@nfc_llcp={0x27, 0x0, 0x0, 0x7, 0xfffffffffffffff9, 0x900, "f37de5aa55ff3dbf69b0cff2b52992fa18218ad149395510b75e4dfd9cfc5291377ed7441fd3757afc5611990d04d71aaaf0cb177cc7e14e9e03bf5c6417c5", 0x1c}, 0x80, &(0x7f0000001f00)=[{&(0x7f0000000c00)="aac7fbb74f3f0480d43b75f7e79b51195791bbbfd6f7e8e7c3143c1956", 0x1d}, {&(0x7f0000000c40)="80975cb49820cc9b82", 0x9}, {&(0x7f0000000c80)="dc0598bd755132150bf555a09d8103648e6c3d240939ba67552c12d89213f38ba37b0cef87a6eeddd52d89f6618de745b9704a91928080cfd11c740099dc356b8fd479cd0327512612ee08792ad007ae1dc9c000334fa1139809a8af453b9c8353aec5641393f16a996c8fa45bd9fbfea303946bbedfc6bcef2661e505b8d6eec5534f31884e956d3991f397e64fd236d30529f7b5091b5e34864f73d3ff51ba12899ec8efba1ca3801c", 0xaa}, {&(0x7f0000000d40)="2b44a3b5ea43dcb89f488534cb027ad7d24d5933c6e3d25623ec5198ce96224b5efb9fa552fd9aff2862043918144820f525328ef1106da6756dcc4384169db1562bf3cdef31d3befd6b0397b38f99f25d", 0x51}, {&(0x7f0000000dc0)="dc5e174ba02f0f0a5517de87f8549cb00ad7734b53addbf7b3363be27b3fae0d81cce05738d455bf912b9500558b94034bf2bb49fc0b05c471bde8abe3a3ebe953c5b42a78fafa5668d63eddd8c88d055a0726a96e984ae8d09edbe8bee1bb11", 0x60}, {&(0x7f0000000e40)="6a3295011f1c06551558481134fd020d40e13f014832ade766f53fb1a71bc4a78eb62ed6715ad380ef7718188685c0e593210218baf405d08dced1bf9dbbe210804faf09e0359500ab86d654f27e7461381c61c65331d977e23b300b78eeae70194e269a520a2f323c8d7afbf1c6b1dc1c81de619fe0abf6acd319e27605a69eda0153b05f6e44340c922ecb4a25704e5bc13d982b975e3e9d382882a06549dda79020bb9a675628ea0d71377d2ad6575a6e5d393d13e270c1ce5310d063915875770ab011f2bc12f4432d95a7525532096256567f1dba497ad405d65fd07943da579b1662967f3093df93ca6600256d1c2533f892560b01f60a795a1d38e160a0e31ebfcb5ff4c5f47c853fe420a043268f3ccfbb86723367eeea5c05bfa17d192f68e6ef2507db705d56cc98ecd534f11f49af57412beff5f010f44ef214955f61242a6ae106f4d807f8a1c64cd9acd08082feabf4ce9ea85acc11f075d122269d2ff4b7bdca460787970a067792b105840d06610ff95593229333d2e08b052b4d0a2df70c193ce943ba68b5acd9abc7d1b65dccbea2cb8380662d1d0438f9ed24b0f8b4ce177b0aef636d25554f8cb95f2f6941ce3359a3c2e0be90b1f0b929b192498bd6e279920c2c4eaf76b68ff3759f6db44b0bd15b143852c8354466a0afd8c422c2a1d1e62b2b31c92dc0aa169855071af94a0ec9863de92a435e3db9bc554203e86ee988ef5e150a270f55abf390f9b77e952fa770bb344c66ed809b5f63918e4db10733bd797f6051b25dc7163a6eaa60e3f086530042b5ecb2895f6a1a4306bf176acdcdb99efaa9f93a3ecdf96f123a7fe2dc97e8b4b39d3544de6582a21ab149e4f7f16c000ff2831204669e772665a4303b46383e26cb1e2067335a7e61358fe9ccac3b19b892c61f262e66c421fddda70bba03572498bd5afa77db979362be4e515ad458ab916670164eeb04298e46fab63afadc5cd3c669dbe0fa8273700070e61ebdd184428d0d3b0713312a37cc8e4daceea254551590904726ffdbf87f18638ae083783983a028de48035b81013e0a0fadcb96120b673a3754ef6e7022341c3bbdba14019ab9ab16f69256e6582fb8dcff2f789c8085ccb6a3a2ec74918a72d5056386a299f6e3f1b5e2ae49962bdc3994d84fd9948cb5622d9d042a9177cf1a1e6742db59cfaf9362ac9a11c00e744627d6d6db09991e5c8dc4ce0600745e61d6cdd453e15cd31a343d288de5b1d2e24e72c0b1709d416d4d8e9d2e40158e9213d02bfb000f40b0e3b2c08d2485dadda08a0ccc2825804a58d0a528f1b5ae045cc9a3fd448edb7d76868b610167a91d6cc5cd7db38d0e4642a3c2f3d54d814d450153ee85cbede8e75b926dc5949379518fb21047b95b45340b3e4374b5d20714a44f2d01dc6247a4f2bd7ec30398c9b7fd87b03370c4d8d6fdd173fc0b2e6e7cd321e69fc5c76aa095bea2c9c6f6fcf94e6c05bac36a3d6082683860eb3ce52aafa62f2c73fa6b2358edf846ed9fab28cd99ca0939a6bbb5d8a5501a7d56076a5d060f84ab250a6a47974e385afd0d0449aaa019138c04d6669509fb49fdd35b32fde531b58caf5645436436a8e41a952333c2d47dbc36acc38ad994186f4b61aec3730e38b47cdbf7ef801ec7688ed4c9bdde8560795af4e971d8f7f252937b9a33050767f379b96b0b250acd4c96b81067d94122f35d1f9138d545f858161e7bb8518fb8f3acbe690866241194b98c6bcd710eecff4867489022579241ce930922782f6de7c10a56081beb7f70d55e393c0d87fb533dde37547bcc155d6d22638eee2149bfafddff8c186db346284ad8a7e74f7aa5c1ec1405be13b0e5b3ce7e91f912f6cb7e6f8ab934c7ad972b887e04bbbfbcba206bfe506d10a9777f2ea0071c6a3118efbf1159a78f258c04d301701177bfe279f9d9b7ba835595bac7184a455ac42a82962c4ced38b425fd02d4cf7d6afd6b305242bad4efa87de97d1cc5ccb8b86e71195b0c210570520324b1875700c39be11ae02180f7eee187f616a417ad34f3dc078ffb32e66b387a6951763d9e25c3813e88710b99682f23648d634936143d289a471e1d8618daa688df2c28eed025403b5b97497cb2a3a78ab766cd814f9de2fa27d5b5a73170e1599fd64b9eafb84092b07efad09983cd9f0237809b6279cac46a9955e27632c932efe0427b309001529ff26165ee008b299dc72cb23d638c1d7e82cb53a6293643808ed8b26d3c0089adce2dea9ab4accfd8ac059822045e12287d1470a8732e7db6513a8d2e0aeeec918456b2bd9309d8f4e710d63e29820fb77b818179518f09341d0509c5028a05ff65acd9749950aca903fbf164698e88403a00c28e54a5b716e6ce065f732449bfab279e5c78bc612ac10b0226cd0528b12f5adbf4fbe6d0a1b7be2a3939ca439c98f67be43e94ad6737a8f22bd51ac681eda8b37e82c546974f38c6f24be9eb2521b236f5643c544b533b61a24d00382adbb611e44177704795ec2dfbaa91cb6cffcca8f9c4ec7c8ca5ddb2912972ab9dd688c81d303cdd07dc78a38fbf985bfc3fdf4e3b8c5145eb4170fa6fdc4e6b5b061672f9a88cf6f60ed618b186cbd5aea0d95e9475bd4065f9be46992f475792c8b9ad5b6f13e50be53301ec60e29667a34a29ce1696910ba473834cdde7ee79a9f209f9e6dde27fdc378b7c00169714768e31662d1f0d9a2d30fbd4437215be342d59719f21cfb164c3b8ab85d48dd9ad4aaa390d8245be3350001e4e3336a3673b4c2b614bbdd13c39cae59fc7dee06cb2af71afc3fe1be6118354bccff6908ad0aaa1e241697ce5a1a55d5b275c8056dc503168ffe10c6308f035646544f847272288f889eedca353fffc8367e05aabd2a5f36c378e155e432121d8b121c69fe638e0742e3ef3c94303761267fb1da970f1f74194ca4150138de0b85ae07919c5f729e2153172132f411fb018a903a482c916a132445dc49025b69381f2aa64480bcf76ce5d16b0976dffdac1f8d58c995331280f151c8b81967ab6244c30bd86c05c984886724e20a3144e3086e0db0ee00a850f7aa9ab8e74ee091d9419e0ca355b9d70a09c73df9d38d5cd20e4ec1ec70e1e6efa7bb7fde5bc0a98fc0aee1ef31e688a3997f9c17f0a0d3bc4bbf919f9e0343940a5e21277f468ae7f5961ed2b0101b9f71c20efd785dfc1cf5c3d644544f18eea6d78d6060fece4689781186aa5d62016c8da6a67645aae25f01fe5839a4459b3afe8a679cd01ac180fb587c7a0d93cd945d3897c5aeb1b4eb9bd1acb77752196759bbb6fd990d9e9e9c55def73bd872b1a791705d9c9a480022b4fbb5c65376184ae74d28e20e84385b9b5660a8d127ada4af28bcf475fedf2770c41d0bbf35a02f463299772855fce5e54b7836d0516f2952e10561311208b0f0bc24daedd33c7e2488f8062b98b8cf74d0888977b06897fc440fbb9decc35f33f5faa18ddd69a5aba79cd7f2c5fe89e997a37210479dfafb9e9459fa0ffa05418ed09b4f996dd0a7d0d5df2fbb46dad0313dfbd17b91ddc6d8e770affc3f5e8935458210e53254c1cc41bf8f57f038a97d5e466c0404f3031828be479bd16e12b5178271cdf4918db88b69790528c2b6c10e4e6022bf0e8b38c1994df8c85c164f87764d757c05756de382ae2abd88a68bcadb9df9d7b174119cb00ec5a3fc6168e57739f938f22694c6a3f0d9cc7294ed8b4e5531305d8ad7055f50043ee585fa8d3421c28d91d6b13638169268cd9afedb5fef9e72446f7d93cff6da2093f504cf81838466705230fc8b1f38a3a510735a463df5047f624683f980cbc300fc164aabbdbd9ca19a57ad47cac88307dfe0ed57875f48732c8b9538f7802eb82f2caa246372005614633a06aebd1bd27157485523a6ce4fdae915c8d79dc8f7c8d0e98ef38c065ac515c97959f18a4c01deef1c9c2abc704ea5499e818da6c2151a5f353603cf74c16ed8c24e084ab34d549b90361b3d80a97e695f15b4b4ca6254c451e27a70e0260a7f4c81439ee73ed66f9305cf378b02fdcbef9f93fe93ccfacad3ca34c16521d5005af6983db5830bb647789676ef98acda71964febbadace81d0e9903fcab517a72020e10f8751f00820f1b62fc6299c5ff7fcf23e3a7a42662d7956e82e0b5d06916e95768662ec30a804452bf7f0bfdd86c31f5b68a0d639adcc463febcc8b28828db9176e675cbf2bc35b623bca575c2346a9fff3cbfcec9c9d378e8ea5c602bd9ef4760403a7538a85d29b634719c46b18b77e0c9e963236386014f2d8d2ff3161906d4dd8416a514f5c24029ec4c157661d50ce31fc806cf9f5c06817eb7d4c5470178059b88c6f7cd40ebb0365c8d2d2481d9c321dffdb3993ebe5518f4d891a6c8f84fb904095dd744847b91d8b2f38c0a2181c746870884813f94744ad5b379fcc98012b4126e7cf37d47d4a9347f6d7f6506a9a9e38156d38049824065376bf12927be91cf1f3a89ecaf376b0f518e94d25d6e96645967dbb95341d2f0e22aa7ad4c6452df42741085c4f981d15670281d7ef48537a913d37529cb753ce608f91f0462c148eef0c93bac2d1ea8896bcae9d58f480e0ee40ed38fd008f62b5af778af2975cdc2b0f8bee0c3985f997cf886b08c328e70eec52eda44394e3a3cc5c8e8fe8ec602b3cef87395cdc8ffd3491595412ed181eebfdce6a4c0c9c2fe91530af2f4417cc3268fce3bd2474dc733836acf3ecffd18d2a132e4d6c778fee1a8ef38a63137207d3c6de67582516d3644865e52f3421d3cf0d6d8286e520c30ca3f70b90f49b34b8629e90e32ed8ee61e1a25060773aa743f943561cd150419b33b5063ac44352edd182f1732c083b7974f7404aff6c7488b4d562b33238a7d07bfc367c7c04ddf8be930ffcce92114e47df8128e838e8a63a315ff303ada4b804e3959fdc01182ccfff7738fa1e4c4a7cced7fd0e1f1ec758d269f20b799634009d511582970e1716d55cf87c54e3e9f1cd68c4c623132d874b12cae48f0e45eb57496b2d2c3ae4439d71ca67f30f24fd54b996a8b65b28bc1261ef5a49149308b6134eb0737127c815b67f43361fece13d9bbbd15f4ab10eb2e67ab36942873bde007e62d26cf0712ce2b8752efdfab92535b0ab8396fabca9cd98b9b584114c99c0366e9045e66dd23ed9ecf271814e9077788afa6bacc04e1bed47aee07ebb9a3ecfed4b3962576f0c28ef197deddd51a4d164582f483f50c08a9d8897c0751547e61873b4cc41c25091fbf2dacffcf064a6f4b428d74003305b346e5ea94f7310b800b760bd2384c4a7e9dba40522af71cdb539391cb4f405caafb920eec655dbc9f0b6ade9badf836f1af4b6bc0aea03a6bc0052a34b33f45b2b26dfc8a036eb5cec173b6f7d2f582831f710d62533bac40c6a538d810af1303af794ff7b29794875a54a15eb8dfcea7616e7a1fbfd46f42d0160ba14c8951934f2ad9adf888a67e6e0db38cd4848e00272e1bd900f06f78d5f255a94b4c1c66c418b8c7a920195ebd8731e3419764d95ee56dd756f86e8555a8e1440b9eecb09d617b2307de48f34bd6358808d7280b9cae7272bbf873e917a755c8094cb73a8dd340cd157c4c8536c3bf616a6b8f5a160fce0265a447c07fc32c229d45935b2cf0f8eb6f8816942396c8b75d0e66f2412c0305bafd397e2b7fb6a007991a5f83b76d7ba28da360108271aafb66731c2eb32a5d60690db36654f62bf2d92c5a7b2d522b841567fbb89f911364b20c2f", 0x1000}], 0x6, &(0x7f0000001f80)=[{0x70, 0x1ff, 0x9, "6bf25b9bac396c52487238cf833fb5e773201be43168767946ca2f8458008640c5ae84f5d02c99b3b18878f71c1017e18ec9f68384d508afa0e5273d0132d7f10b8cd14e97a3413b83378f8168f39c96b7688e13428aa5c46f12f3095f8d"}, {0x88, 0x107, 0x8, "bc672562a072921f119c308efcc39c5de8f7e621b76f825ea0c5223053c3dea010e7af689735d40a2a6d7ed220718604bfa66f8afe44f62ab25823979f690b31c5dd2a09458ae463834405e1f3e610c53bde63cc981be2e0e14818bda8a6fc0d31c2a42d91c9280cf761944395f0a4e9e3040667b7"}], 0xf8, 0x4004000}, 0x1fc6}, {{&(0x7f0000002080)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x0, 0x1, 0x2, 0x1}}, 0x80, &(0x7f0000002400)=[{&(0x7f0000001e40)="53b8878c00e414c1782b2e3a48f6608679a0d073e157e27728bb4ab0d1", 0x1d}, {&(0x7f0000002100)="5c242f3cec9fdde63bb83ccec385de18cd643953977b6698b81cc0845148ff6edf0cfad86ae7735c473e956ba216e6ae1a26a7cae5fa65cecbd3d806ee77e5c7d4cca8ccb48bc80872ecf205e24aeb492816a2410a6b9b83baa54670aa8cbb9e2221c23bb3936690fab4b49b9822e23428f23ad0448bf089b021631d540f1f3079900dee60da", 0x86}, {&(0x7f00000021c0)="35a7313b81c5fe680dbf3bda5c9b70666ca4c1277f8f54bad3b51c9013b4878bae79", 0x22}, {&(0x7f0000002200)="b6e037", 0x3}, {&(0x7f0000002240)="bfe176dbada36670d2465e265b74ad2020f99f4a571bd5b658e45624dd80139caa4763a94a05fd71a0ad5ca77e18c31447e40cc188670925a8c1b6d27be51960abf718980f728e1028eb485ced7253c0ef865337c7d782d4505415c6dd24d70a728c2bf58c30f14aedc46ba289d7589be26273b1e452c0a489437ee2bc3b5b098c45672ab259ab2bcb7e4a53163602924c8e1d432cc4955324d35e47b3266abda5f9427f661340ff8ffd", 0xaa}, {&(0x7f0000002300)="7014e1cdadecabf1aa51c2c1bbd71d61b6198cedbac4037737caf51263a85031508a71486b7ddf94b49de3930fae6c88fc241769037483abc7ff09c3a73a514c1df58c64d05b99c25382911edb271fc744b1840d9694bca1fa63ef22e34e532e235f094f1c46e635821c2d65b5c870117f7e0c4c8a2b2a652882251b413d48da69e3610683bb0d9e87add2958d838e3def96d66cbb43f23e842c949aefd1cdad330f29af5150e1fc9c16d945143837ef07a8ee059fba1a43eae0ead3d049419dee0a4608d9f83f683ba0c238b453168060e4210329796a231a036167fad907f6817a58aec114d2", 0xe7}], 0x6, 0x0, 0x0, 0x4005}, 0x6}, {{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000002480)="ff9a", 0x2}, {&(0x7f00000024c0)="bd0e6e8430f339828eede1e5e15d4c4ef93c5dc08fc589e24607018327574309df824029666124f999e7922eeaeb931134a7ce4a6718fea497f03562", 0x3c}, {&(0x7f0000002500)="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", 0xfa}, {&(0x7f0000002600)}], 0x4, &(0x7f0000002680)=[{0x1010, 0x107, 0x7, "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"}, {0xe8, 0x13f, 0x6b, "1574d8e9b17f53f3a66f14f4e106b7e4e98f6064fdf723158ef68e0f8dc9f7ea7fbc631d364576d3c9ae79a4c2eaf8188d7dedded59105c81fea062e322c50e6e8fbfec8e466804e031e81918eb30c811ac14c52d055c8b0fe440afc334d93721088ea03d2cc91646d38376a87fd93090bd53f6f486f36a73392b582f2065d403e4e689ff83f0688ba875e6d29c07c9974b788ae4a413ef5cc1850633384641f09427c0ec73cfc5a24e1643a18fc548ecc99baad1c60dd0d48525ba9df953b8d186bf25e24845ddda2b16f90ea8060ebd4aff6b8b1"}, {0x1010, 0x105, 0x401, "f6b5a29034d4f5b477890b85d2dc7d137e2fe35bd3935b7f2cdb75e8c3a6a52d4b5f86be245c5b8773d460004ed140839f099df2f2c28899998bafde58184f3cac739ff8d999b51487e6bbc0209e290894b9cb226f8b9e566ebbb78cdcfa04a9316c441a9ca4715beeee5edd37d8e447dd486c1682487fe75cf7be259d4d1534ea89a269462efc94f9b328b4c1241fb64c51ace686d12ad44e12f09e89430334e4e72295095f691033c529a0a0b91b10db20200b5e652c34153a5c970229b869a71f21d75556b7d4a57615eac2bda630fba207d5b358e6490dd4ece99aa24baa7eda375e0ec414a4b61a63f2e5f926582074a62b70f1ac1c4a2cf489531b06d704c5bdcb4445fc20d19a780c6e1873774b871ccd63701c7ade4b596a10c36cecb8fef9f6145d7b7f3de03014c957fed6c2d979cd6dbcc515ba07d9c005842cbf3257256a470789dac2c1b6d14fa5d9be40f33f6ad062ec1b2c45bd9aba74318e7a6b371ab83a24f15ba24f487a59d7ea78696c6a1f256c53162655a428ffadfabbb6321e95d63b255671ec9f2b5432ffc44aee9f606a448b8a88c2b57eb90e9e73af6fe32cfda5f482c7b7b288815c90b2d2c5f7270f2788fb3af45bcdf09f040bdae90571deb3305396cceb4a0faad22af372f22d1d07b619b0724937552fb7b8e6a6d9a244bc5482443f73e62eac577fbe497fce456b48366b9c56f8433a64a788149f6b767a67a3a8991d4ad0b57a8f8c73070c823ac83821feac91d3377dbac795e40960ca415b438672676551398573ac1657f26bc3d2998a0faa05e41741b5389e51cb9968c72a98c340666f016f290fd7ad4b8b5eb79bc2fa818700cf74e383743fc51663a537cb8f763888b0be5dc60bae14b950cdd18a13ee1f872349fe2890c67bade0277627a37569824d0359a925e01d70d4b0065044b87a90de726342c738167ecb714648e253a8c2a2573ed2df6ecb5313af3a5493ad8d2b8dfdf6ed629b996b16775a172c33b1377d4d78f06c4df1c6102712bb69396044945ccc5cb8202ab100694164346d570c7c0965cd2cabcd180a6672e3c9b7ea62903ea15453df37559f0d5f0b3c0f14531685c793720497ab8fa200409c4602395c9ab164c85ec356e03e4e0cc06937033320c29d483cf0a9d816472c2015b20fd014bcd2badb6c9621dd368c7009d05d048ce8e0a890fee7e494bbb3ecde473e74c62df5531ca96b5cf92fa83113f5fe4b5690b1e6e55b3ff5affea2dc53e32441aeb854db692993f730fde6536aedf649fdc3cc954c8c9068e801362d27a228b5a429c3f12d6af7329666d8a0ea9239d1d2b2ce12292532aa112fe1035785363c0e8f598a1992bdaeb6ff82ceed8477a3f669610d8808ed813cccfe402be0abf3337f96864288161d8214b1e6be6b5f09de4a6cbd2364b53c882bf6e3ee7bf57f2b7848f92951c19bd21d256b4b137b156304997c6306bf50d902bbd82daf185ff16ecc0551b7c8fe256eec8bacf0d5634f0ca392e565796f90b197441699eebc1ac69c3f8df9442b1c56bb124ec10a8f8f5d3ca00047b4cc8c7a8c84b34435058da0874b1f0a658b8d2ed8febc93c1cd00393502d65772a47ef7db39044a72b913ec75ba46af9c9a3836710941a41da9b45bceabcdd4ed6690bb0d90594f0438ff35611e61e6f4589280c4779397a398dfb400703db9c8aecd59615927eb61adb455270dd84088d7e2dcbf573be035f59ad49b089ed2e38a7f401270ee74a7c1a21efa288836e815f7636f74a9ad2eae4cdda576a3b25dc724d2586a614e4ad26d2111a4d3a1302783d00e4a8bb01e4dbefe57b6c57d6571d526b1d2f876a1780c50673515ce1c36aaf12eee8a652c65d7e1da1af718c7f010e1d825ebf0853130abc5c4bd9766e3b1f5e5059b2215f721e7f2470ca604ab9e001f72fdb1524830e3b11bd755e6c22b98b79c99075abacc21138ce3ca9a078bcdca1e01f5f05c7e650194c52d37b1f28ab84570077e927bb135b1abf087b3e2655686bc517531668615a91764f5cb9c1c2b1760b7549020e0ddf11d48ca8913466da3bed10b69c5d4081c1aa916c1de758a744e2637b83e653c0c68173638d684b9123b6021e4adeeb0053232ca148865947d5ee4bea5856fb447b4199ed1162e909716d263d2d810ced3e09ae4f42dfc7342fc9b1f1c853b333bc9064c415765d466d0c2ec2cdd18887149822c1b7058f49f57701a98e26d5eef3d03505903a93159cf36585fe56e671da20d364904c2c896904af9637b9c69e82873d4ee0fa8d8d48191a2407069e11c99ce41d6c9c36b6a8678c6b54cca60142297a6c0c4e671e44bb2664c2899276443acc9bf767758760fd6593f6821f8e7f93f9dc7628acfcede5ec3985817f0c2abef1ba4099d78a547c6e0048fa22715f0cb30824629a1df5c95bce130a82cfcfc82d458b7eb4529367f9f0ca2fad6de738c4d94b9baae8fbfc0df4aa4b32082bc05b26f6e478dfbb7580ad63f7c997ed91f985acf95f6edcc621cbedae68d152da9713151daa5242eb96b4286d8810c8ca949b24e8f569a2d5e49d472ad480b7c52de2e1e16bd0f4606b78701792027432c0cac5c83c8e314ff32bcb7dc95e626261848bc721ddb07fde5a43d8be40bcf00d45a1c5c2d2ae4da1d66848d413d89599a58bf1df364849fdf613ec820a69afe3f17fd7a9664e027f0d306b4ff75e33ece51b2f2d5fb4977183e2d03b31e7d0b9cdaa14e9c4367940789eb2de5b57f60224ebc488f6af1f356e57f4b5ffd68af9ab9a428107556990e11e840befe6bd78d5c1afdc63be6b7508802433410c7968a5f25820a461f26db1d71a48e9c0baa3d401f71001e963d525bfcd965cb7344b894d4c5ce494c2c89705d5525b1e2cfeb3577fbad56a420f33d9eb8d8aa5ef8338477bf7d63f6392230168ff59bb5a26b2827d804a4c06416873aaeb9b123b28bb4b2d729f86f68ea6575b27e52590d419512f00127c7d3a4b72c6b244affc4f72e764d0a33ae6ad0bdb50b5ec5a6b4f502568f9e29c504f7a3a2b8c80a43d69af1bd9384c32671ccbc7ac7396929c619af6ff21aedd5fbc0d34064a43d793397d1fae34ba531a2d7fdac9520562bb355a09d69e42d8e61f8832654150e28534e32f7951c10fb9434c64e6068f8cbaa86637d109397ed1d4f5bdb4854e096129851438be212ed4d03792129a878bc915601d77ef9191c7966443f6a8b88dca872a0cbee40de7d5ad6ab73ed9c10ba8ee9c2324c6a15102d301812846b167c1351315f19da09ec600224e5cab5d42d3250ea70bde8b4e39546c52aec6d6828033724e3d667c3659fafba3b5a3175b6d522f9fc40d2e050793f2ae10f315772f268102a08decd89e3917f9eb98151f370f649091c7238ed19ac57953617eb6eef664392ac29cc870ed86950eac4445d2104b8087aa2cbc9def8ce359aee7d963672753338d52eed08b777afd64aca64917b544418bf53a31647148991a0f056000e71fdca93c908acc87d1067929f67c3ab0d4feaf9a1b0dbf5738e6e0702f70ac184de137574bfdef1550fdbbe381f64634a4319862c89058c307cd5482684586bf74f74c260ad24035171241f0be8fef72fe85a5931d2d43f55f6d2ea05c055488dea42c2c1af1e3e1859d183d7ee0a6f6b2e2554c0c03de904671adb7d6ab892766d7a0308dbbfb3b769b988791366435796e3f5fe01b8faab94a025a4ba6f6af6bfcb8a1f0ddaea9c8007c013275d28e00bd85f83ee7d2030377664e04a27f56e08878068720f4ac3e68ad2cd8dda188e1c9651ea319d961217099be7f7e8d6b79031721233b4446d81b3ed478bd7cb8466345f9c0191c0e4e2d3204a8f5bc0f2a24e4c6ebd73d4fc20e85747a44c0265019cf358cdff4f6a35d871d57502b469a1d4ad20127d976f3ac8d830c810ba3076f8014b6f7fb131bab319376bb6355e2e8fbeb8ce610339c69d2b73d9d9f9086034a251c2a5a729a68733485e3630eec4056b55c5069a8eb65ecbb6b046b9c69e7edaafdffe7a1a60aeb119e9865cb3f71137410dc3b60b2e1092970ec1b96af566941f814103f222f541642286060e45d6c17259d7636d9831b1e033a3319c4329e09a4c3df3fd21eb1e3d27788f87f9e5e14ce3f1a106fbed4b91139b11652bf13b63feb8d475af54f3fbd0c5fffb64845ab78ae058d16d487f52bd19e2d2f86212c38c73de257db20b5f3af3e8f68d4402e88093105e9d642514bb85a5c90f148739886acb693338d3c6370b8f94122b687b67a6689f55fa1dcff779bbbde3449f76fe0b4bcd0a29456e663b86ee694b26ee5327f66108057d7dc8e70b7977ede261cf15768cca678d8273e84af6d2f4feaafd8a22b89038269b0b0a4480d8bda61b30ba7a29fcbd61c2c172ca98da14f2998ed0548af61ee6d07d4dd1a0cc7e3dc1469af433e0763616f079b809dfb7c741448493751742002a6319b5ef699f079446982d5a40833771367c311cdf05eb90b98a564ccea4c30c4896e4bdad4ea6a289cdf50920d66ab64aa6127ee02efa1622b1703e2e38cd0761141c95df59825b6f858ced7292ed39c22710a29d82811f9e760f5f2c3dc532bd62d4f3ceecc7f166a1c348d50244703bb0f3ae518f7df949d22db2f4060561a04f99ab2b63159919feb87fa9f1e115b8cd314bee5657d32b4279cc80f771d04631c0ec22c8e82880130bd935284f0dd889daaec7c45ca0d5a312967521ae32ce764d4b93c64ccca94df55891020e9c9dc073e65486ddb998c72ab5f1d5ed29d37ca24191db5f611840020f3d0f565287b3acff2f8a360c234ad3bad00cea10f0e982183e810989e7ebae3afc4a8a5f61940879f4d4f4cd9ae127e3b80c39e7b8f042cf9ab9b5ca8f34a5b7fa7fbead93a44adbcfe590b46540d82419b36d7877041007e5744e7c5826a39233709def8d6823626ba1ccdb33d3f3251e237320ddf4c454cb7e1dcd5d9173304a4a7becab4ceaced9b038abe207a7bf352094570b4d161e9f8cf27bb21e47dd06e701d5269f4bfd2f851b9f7a71d026c829449f2f9ba029ae0019e3460968f67e8c57abc42e274d3124b169bb9071a93d5a3d0b927e53e9c34efde40aa10d45ce48e7e53d5e0b5f77fb41b47211ed4a52afd10516587d572af4fddcc4e49534de36445465596a0c8db8cab2880fa10a14bb8c1e39932d24ed12ec062299d79d225e8f5ef93be0540d3c2b07140aa43e7323e69569a615e1379bf02488140a24a119cffb5983881ce38d53449be3be9bd6e1503cfa644416590da6d74e5973b99b50ca5ef12f0ef0bfacb69201eb9bbad5349a010942578c0173351274602d34a85695aa9c0e11a45ab70fd758b3de41d50e57c3838f0a971c8052c278d810c8959fd6defd1dccf64d99a3152d225c7615d3ee63e942342a56b2e18a25075f42b9b66306c7403d3eab3020b85a5568953444be140e9922f539f815170a7fd947ab81cb78bb852ca478404847b73853014cd4a98735d60936c38c955bb22b91963c34c48ad347a46cad81c7281f3eb0162c4f078a8525458cd475e04ac594e8d73264c865a81441f5e849b3c2a9342f4cbfd1905dd54687731b5908d5540963354081c08355dd8c6a67155488ecb2c9fcf98f43a277fcc419f842ef6b849df3fcaa2c33d7efa76374a19019c921211444c58561ba4774484c72c8359e7eaf2698055f93fb9612bc4c61f540cff49b44e540e23d4d9adedeac5d10829e0bfd6bd9c193bbeb68ce6bd97cac34b70251fc2a"}], 0x2108, 0x8851}, 0x200}, {{&(0x7f00000047c0)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e21, @loopback=0x7f000001}, 0x3, 0x1, 0x4}}, 0x80, &(0x7f0000004a80)=[{&(0x7f0000004840)="0e6740d9d6c6d1a4cb306bbcfa65ff1559e84da9cf2780d339bcde2c10cc82515ac080d3f3257370526dc7650d3287342fa283fbccb9ad7277b185df9cdb37", 0x3f}, {&(0x7f0000004880)="32706f5be3fbfd0444e62ebe63b67afe94a7b6cdbbe0a6fe6f5d0e7be64154b6e41187d6dc", 0x25}, {&(0x7f00000048c0)}, {&(0x7f0000004900)="65f1196d81e7a8333de3a8fbe10851d1c2f5787a26a707b8374b6d6a1ccb51878d963c62f8bf37a254e45af628c855899ecf4aa922ed99bcecf5fda1acf3f3e7511ac8e4ffbfe5ff0fdd97d023fbc139b0551d82c99942ba11cfb64fade4", 0x5e}, {&(0x7f0000004980)="23838211750b987a4661097df1ffe45d212d16e7d88b8bc481b5cdbe2399a513003502758a4cd5d4fbd7734e0c30efc0cca05631280f5bc23773b5f96b8f837cf7341dd02e7ad4ae3e1fd7f492c8f265d481ea1dc2762a2dd7b193125bab2aeb9d6951172cc50a1023869b3462b11c838d7fbf639b1c687461980965dca2ac70c79ce91cb47ee9a7fde82be10f9f75458c2de6f6b6b8c6d23e2feba4c517698a05b8c1a678d890eaa99c5a1d803fe338268d11571e9713f73ac869ce416ddcc7b20dbb0c63fdda6c809cf381ab11b39a3b50407092447e0832b2b9a17d9ce3af927324530c572d", 0xe7}], 0x5, 0x0, 0x0, 0x4}, 0xd5}, {{0x0, 0x0, &(0x7f0000004bc0)=[{&(0x7f0000004b00)="fbb97443b15493953df404281cd9ba75c5436feee8be5db321855600eca5a426bad01edc01a97dc63d71ac93bfabc50e7191ea587c4bdf7b6ffb9b54d0299eb9708db7114972522db88d00426aab549c01d1ef7d22db8365450c30b1af376fcd58f6d8c68c02e61943338d7bd0bdbad3535ddef1537ca0b6fc764d79b2c66944aa2c37e7638127c96c6ee5810ac98dea4ffc18a5cbf902ccd8481f14bfbb9b5bc3e62980d3affd86dbd0e1028793", 0xae}], 0x1, &(0x7f0000004c00)=[{0x110, 0x117, 0x5, "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"}, {0x20, 0x117, 0x81, "20b217a2ea71b1082eb10a02e3bb9759"}, {0x1010, 0x187, 0x234e, "fc6c5db9ee29e6ff906b9d7233302d3307bd8f8ef4f6e2c7b0ef6aafb2631755aba434b1b10512f97fb3d23e39ace5dbfc71cd5df31d9b4e0bae6621764f69bfc1baefa379aec2c4b5adfafe3de9fe16aedeffeddd9fe4632dade1e2e2668fd8bbd9746f2acb5982a0317525e0c2aaed2a314c0f2e779227bd9864241813b34ee93cafd341f31a5b2f1b623a314eabcb7d9026aaee802d1c59d7e6674b83b03ee34ecf3057aa34156558c606d849705bdf9e8d0f36f86448ac1be0c243d18f7180acdf46e5b96fa5312cd8f46e358e5767de2aaa9e8006ef8ba15d420b0838b04a3ee084f905bc751fa779a9b9142ecc43b1d7ae8eef64237871725b3639cb1f19809a90ee91d844f4ea81aab10e676629fe3936020e3da5ba2bc660585db000e204436a5ed6f86a5b96fa7a50c7e025ab171c3385fabc287ec3aba5d74a6a829cca00a10a9ebacf0ea43ab35b0d427141d8fca8c2db5511ada8f7832e88c5da969d5daf437769dd17249973bb082590465521f07b6b8966dd06da37612064fd3a48413184ef71e96f46fabb530f6ba0fc1fd995e3f9edbbf22f7edfb8ab09071f58ba2a54016d6a6bf63b44c37086e736b694ebf76726117e330b6d345628c679d871fc6582ae81fdd5797f33e065388b16face38230ed092a61ab7b151f3c2c9f04655d6ce3439b0381bc216474208ba3e24de254fc04e2eb5eed8c298a8eddfe3ec34be0572e04bca288cd95e4825d2a7d753bd2917b080e687c7bce69ac22b8e90898b42626f35a440f6d27da609c824cabbab0338e410b1f330b8c98df1465e2ebe1df6abc4562fcdae8993e1c453c14aabf743c8176669592f75f63d3fdd9f91ead1a9dbe57c4a1a2bb35bbbcc98252c52a6263e19cc81d44cd7d35dd0347b06d2f68d64081aaf4513e447fb606f07a5354e203d7d97d567700abdce2d5aebc25244a5bda369ed2ebbc9b6c2b7e51e4697ca38659b184dd81eaa534941c0ab25bfb650eac743f459ec2fde4453f7c6e7a073f8aa6b1961fa9192e72e4f753aea3cc2537f3debf5e14b065c1d7053ef9b34d604ea8d1197a06646c68626568a6e7c88596526a6f5bbc62232f3888b6df2222c234d1efb2b8c6b5d69cfc8d2b2edbc0c2dcf49dc58daf6fc4a3d01a055392f0a9132ee1193e74bff0a2df148a9a8c4c16879578c895bac45e696d0a21d0dbcae821a2336c98a04e855b2fb44ee52393ccf88bc02e8140b3ddd5c673d17d593f80f4e951043aa7289645b9ed1dc908b289e9099b0c7fc2413b7f809e751ae8bcdb2b6e3ccc6551c5d4fca982b6fa8afd309ef4b21d189c27e4c2e10055694852e9ab66b4b61715c438e91595542ce890e34167dc0b1c09426cfe39096e29ba02b3fb7c7ce1d2cba0c94dc7e9b39f76b8fe5e11ab2141d4da1fe872b6e4fd0cd35b00e726d69d599f70f633cc90d1aef36436e56844ddc63d7ccaebcdceb7566e3af6be359b162f01d4af96d60fc6958a5daa44bf475aac04bc3a25adfcc8125e01bfd62f0f6108b47f00d07f2e7aa0ffd3ecbe3272c56fd934112e82f6c87cd1481b6a80c7a621d44edd375b38f51cbc2206265ed5e566462307a85a21b410f62537f08a389b0d0f1d79f87f5cea061d65b7f843a51397df02f6d24c29b983c8f6083a04aa3f7b4eea0a83f68160fcc8278770d129974dfaf3f131d5a761aa0f39c2156b57b01ffb9bb8c0caf9641652e097f33b5668c24b7ff5b2a7f829474af4c4de3ff94fe9767849f180b9db5912e9047d1771331100208f44c85416f458bcc6278ef1984280b702be11631a21472f353785f9b249f50bac7495b0fa4e5289cdf87a35d6b86b7200e6f6802ab2bb7cd76aed8b29e92ce619ef033479cdd505046beadee073da77a121895c90843785f58e958d14216e7646060f68d1b8014e7ccdd7bc7939cc4196869729de8102779a75d9dc841844f38765fe3a6b17eef103e5e917acab3cd32f94c3790d74d3d329d5c617d80ad1b2ed940dd2efdabf309499017219c39871d20b5cd6b6059a509b80f2aa5503d9b84714b5d75d3be4e9d9caed69d9d5c34623a580bacaf576f7b59233fca863fdc1622ca23852a39747d9f907660d91589139d2d06100dbd1340e6feaafbb9114f608e8769b9298244e4731498cc308e60cca120bb2ef1434e7b18844a79dc037539803038abb6d0af295e9fd9d1f7682ee1131c8c2999b2193e199f3964f192569bb0a55104a2d66b6e9445cc046daa26abdf3a2a2bb32bc2326af8d2ca3ca83b2ea5816765963df487d1c6522d6a39264ba1296d117c51c4823e512b572b6a6972d64554e704cbbf925d010fffb85ecf48a5d75b4cfe5759945b33d43c3a16776f8cd819b9b6b8683a948d537209c79d2836cb27873efbe9bfec71bd6d1e2f7b99064f22553874db5bb1c58a8dc2952b6ffa24daaf4095deb102890c2d01008cafe8dc734dbc11abef84fcadef9a78177c9e1898c4e60094f402d9e1b0ddc945f73760c89e4d9c1d96e131a2a2afa7b2f89ff69d7986acfabbf185ad0dace0cd74eafb96d6cee5df70d2ceff4b7896be014530c77910e5da2f5c130666f6ae67890c939f219e48ff6722183337fc5816f6b3bc430695d166b3400b59fd1570b21bf7657b99713ff825ab5a1257f247186610bcb2097a09304800316177ccbbf3ed95fc3911f6a4eda309e2ae96dde28b78e23f47ff13bc98364135b4ad9287c06d39d91ef82a4fa79f520921db79e2908a8722a221fd2e17c123ec5e9588f12cfe882d59430752e3b69c6739500ae249e30278ed0b665fed83b94e8dcb1112cda1cedeca8c2d30a61c109304d7e1ce3285fc206d4b9af943484ce57a2d9cb6a7f0bc7b47966fda09de841afb7ee964e765ac05cb29f8f2a5d5a60bd7f2df4b2c2344fc6b7137d4499669c8234b69e04308ccf6a7452d3e6138931198868a54ace1cb69b5f1b385627abfd274df7c7fc205b612a3acdeb189e565cd13ed484cb8a57d1d766c88dab5d9c7d9d88a8c753c543cb3936ddcc0ba11aaf5d3ef5a68819897486769da29328ee8d90259e0fa9d070a2126d2c410e307434346a029347e3b1d3343ead57e2b2d7c0d392158b9339fa76404d223ed81119825d45e83b510360bee87395ff1b6e887761ac9cfae3dce27f63ed595ccd52108c8be64ba745520285760f2d625f24b84c84e462ae05b7378292ac9e386c40150e4cf3fed583dbf5e15d923030333d8d59f5783f43adfddbce40285925999f650418719ad64feedb5cf5b049dd34e569b30989a880bba27481fabac0615854b2076f5244cf6902be540436357d82ee535400133fea1d14afa632d9cf2477a6553a18251a8c176f9657fb0f149fc486a17076fc395fa44579b1b97fc188395a75f75e6846a5aea274fd2896153bc308ddfaa414b851969c7c85fc2784eb4588ea2ee40f9084784a99ba942c51bc377051f767a43f8402a31f8603ad8bb3c316c38d50b4e910ad52a0523fd75111c132d6baa7cc7a69b1c21f2bdf801429039b61ae9eee784c39cd2ca61073579836fdf03b75f9c4745ec375f705773ae6f5c33803876e0ceea4e954d972155188a25170b72bf49217de2c5e10037d6521ac557c53435e0752138680a15280ad8750f365e899292fcf7470165a2dac1648b5607a528fcaaad56ac880513abd8dcad3295df244ed6f37e7c8c4b528bde5c9b217acbaf6e9ee9a6928ec541fa9c76fc26fe7f4e1f6bb68f2723ff31a9a8e3efd2ee76eefa4f0fc21e8954068cced06119ff7082c04f65ad62b71df718b6a0b4f5c39f7730cca031fb34307e5075feb12e176017cdbc78ca4d3bbb3f552076a4a9ddd23364c290b1e5a74f6ecdc3b37115f845115f97c4ce5e11dd9890da35cc2dbd233e99d72f2834b36a5a26d22a741e21901d42cee121cba6f3f133cb455d8ab2224a5788d0c5810a6ba25a2df2d99dd841b95ace9a018af6f9526945429a9cbe3cdfd042fe31b3edb4683996c708034dcedffd048fb2ef605e49ebbdd7ae9618fe1ced4c0752177058c594b1e756d6dbd0f36f278b08ca25b230dc8f5fa0af827aaf643b2f303edba224758fe19073f61a233363d8c9834f72c8c78cf50ff377400768cdcfb57ddcf25a35467c31456d1f0f89825ac9e966a8ffb393e456ad3a7666a60d46f6d947f7605a6f8fce9a2a04a0aa2f6e717cf5985d1a43bd781682b9e369767eefc4b2bb6c309e1cbe0fc0e442f7f9bdd50981c2e66ae5464919746d2b96caf1aff5aee467fae49666590c68648a1ff198effd122cd375868203c10fd1164a1666ca664f36b64f8fbd62a9299c8d50c8faf77a6ba67b16692345d6ae4c08ecd96f2c9019f7c87b6255c70768b9a677de1a52a6abac6a7c2601bf1e36bdc682c72b85bac1667e6540478e99cf5db93592f38a76e1b03942204389571347d43d12da9e17bdd485f41985b8baf439f885b911f61fdbd9fac7aaa7e8392a4f03a88410318e659bd3a00105455100d29a65c417b6e37ecd1b99d2d339eb961bba36d90752ef7954d88f4017ec8c5fc43d998bc382249a833eb70bb04866d9723e94d600ff413793fa9040e47796d1d94e1f06a512c3e46415138deead86afdf9106bbdb5e5d884fb53b47604989f72e7bfb78546613a5fd1d9a988c29f88499302a50eccc1f7b63a1d226b59a64d8dd8d8e1463a186a5a5562df4389a34dd8e5f1d01aea247e838692e887e1c8ae70de4cdba38810929aad2fe478f13ea460291d59f12cebc01d27e94f04523503b788ba8a392d178acf532c4c2caf9b1e326e68afa14fef5193bdd2b1cbd1cca116e156e3e9dd09769261ac88fb543f499c57cf7b66dffaa881570c2d0adf4b7182854935b74708fd75158aa4e981d436eee1fa1b8dc880fa8137e03efa9ae09de0542453fa32d051f55e33730ef9a663cc3006ccac99e2549101220487fa763890dd5175d5950720afe1fef9f335bb89d39a71ed48382051e19ab9145d35bcc963862ecd0a541065d3be29a92f49abfef9e3bc2f2519c5d73006cad6933b62e992ec99e9bcce2657d95a75f4a3d37544741530c7ed9165df2d54473eb03f97f76d4871df20b2f652d531eaf77a1f38ab57dd7d67cb0e66670238e6864a19c7b4fd021826d8f10e0e9d4470517f407332151c3a20e6ef921ae6244c1822474234e7176ae85f28e699c9452464f6193ca17195aeede6a2dea8e31a27c1e56bdacad3f3d5a120913aa56f29196c48fcc2a74deaa1bbee02e32f556b699f1dd32eda12723b294425269bfe2569f467900c250b243541fddbaeadaa54afdbce8a98fa03548b97dc1e97afe44d7bcc731b8d2b28db55a288ee8b60ddd9f21f5e5845b8b379f6c358b6601d33ab27d647ebff2e7506f3bf42294bb5a35cb23b27f81f9842c38c785747637e1b1b8785db29990a0d8c39f9f9a0e19f87826e743c2d3092d956159b1919dfac107e9d162988aa95e08db43f85169b7b4e38e650fc02aeab831794f2ae2c38c638ebe27f58d9920147ffa726e3aaf8b448ba66ebab258e011afe0d806b0f49ec6058f38fa1c5951b1ad8f785d273977a105c3dac56bec7bd7fbe6152760745695602fe90c314103ae3e15dc6de0c6147dd48782dce8e007a300874eae9059da27271b7963eb8e161387b21ec793386ca59d0d725d63441130662181f2f0742311f46ed9b3ffdd43541c2cff267d6b718f6e07a86abbe8d0fa062011ce991ebf076588eeba1328f349abd95748bd9a0f14513da22613889df72a96aede2128b4103e"}, {0xa8, 0x0, 0x800, "249abf47f3d200f70415229d75ef20f9ef0c18181868c61b9e7b7143d4b436dc3397bb146c992ea5be6420e2c0f5abe93a57c6f2977e215aaa801a89f4f36ba1c740378cd03b275aabbb334edd1d963e519f2c21eceaf1acf2069f2264bb5eb11c0de7740a797b3cf49cd02639ca82848c8c67cabfb43b7cb9f5a2f8afd163c50dc6e57924c9938ba8ac90d4d0c1836b7d"}, {0x1010, 0xfcc79cc5526cb0c6, 0x80, "95bda7b1083d6ce99d9ed80fdc878a36371055fcd401f7e35cd4f12d5b2b8a55ffec1fda0355b3718c3070ab8b8291773e093a28c1642105cb3837e65dafa522def1fdcb1416befe7acbec00ca1b6c5d6d9a9b265af16bf0841c27d5d84f3a7fb68b980b025a5b3b28e5bcdb86f3053e16c47a9e98041eb09931afd6c7af53cf17afe1a61af6b7395daba0fa06a9e240e9c143356af5c7eafdac64b04c7151fbe9cd7ef5b2fbbdba30a0dba40547c1bc78e017fe21e8444899daf33c5c0b117cbd314d6a98a447d32eb480fb343583be6df04e17cfee5ddcdb14c69dfad8017dc3d3ed43414b5925c4fca7a4aed372fffc45899a2974384bbe2125c8c110cf4330bd1b09053b90349551cfc32db13a3fa946b246770dcca4e4baf72ac18a1703935e4acd9ed9c4d2a9c8c06c0557119f7c6061756f64859d7dbd72745aca986ee41fcf4ea596eca3e1b4183e8a5d36f4d16f4ad7f33b3137626559021451cd8a2401d207cbf7ffde4de76038063f71bc71a600bc1df7c835ee28c2ff30a2200564942fec2e070bc61b551a7fd1cecf649eb1cda1ad7f7fa5f471d39344b1823a89a75c5249bb336911113402a8770700d90bf53206f168bacd7d87996189e0c44d9d7ad74515ba453f9def16d9d2fa3275ad3e6683b00c0deecd2ff23f09e9b99ba1870a2b3c878c829979e77fbbcdac66fe2bb336d9c97b7f6f7cc12da3c6dda0c386c026fab060a66add58179e2e6582815d472af12681e088576ee5916c99f1c65499bb818648e0d856c750fb5599871febb1975d8e004e63be6265b42975658a2646ef932e1928256a03492b8b1bda62e080386a718b1ac5d01a98f201ccb1792052155f25ced53a75368a9f87049b7afda708c3db5cb23f14bc63919470a990810412d06955665fd44d82c2195f0e9ebcf151500dd7fe523c772f77f0ae569b7ce1b76b7ef971e0719eaeb10ff0d424ceb644b5acb78538e70d52e3f7be8b7217f88d622c919f8a580d8d67c7f788c83b13db64c65477ee74b6c52da112e15753585c3aea6ab88fc7369b214ad37bded6f100f3278538e74ac558d1b6b77ae4f4deaff494fa1b5b138108ee5f3fbeb7c1a8a96b42493a99a63963281beb97cfebf5ec72c5543661838ba4694fda8940de2387195e625ca77550a05178196d74632dfdf18353fcf5076d36d7b325bbee2450bb28dfed3a4dee2c13186ebbd8f56be6bbc89e06dce989fdcbd232aa1363c09860e2040989cc6436c0a2a21b62e5479b80cd96852473ab1913753111d10a06f168976de612d8d42e181a31fe7edeed61883df3ee8b1791c7d5666bc21da173701de8a2e15fcbe386ef7b3c33f1a72c9aad4393f99fe671ed4cc39f68648c2e34ef56971bb9618989b0ae6c2c8bb8b56a1ae72be2a9916e4685959240c3aef800d8dce0dedb8c220be71e5cd37bd73120ac335c38976de9f23d60d190c27017fbcf17ae6277a2f5750be9b3addc388e07be64b081e729b0800b5d5b9198d5356ea6f97fb4226553c2948e23ea7b104a0a5f0fa5e0fcd58ef50c6efedf1798289906c66c02c279b73510fcb553e941af4b4a6b88855818a505ca417ef03c363d96d8e14a7f8e33586f8e376b237067fc7b1ae72ae4e2df94b531153b293a4e97dff90fcde4e8e2d610ce3dea969cf751f58597b0960c7ddb1d5aa3350b605e5e25ccf9c80eb45b3129b9d7321c3b3ef488cf42b7781cd4016e257780d7aeef4e345d899f4638b3a2d47fe13449f9e690400458abfe7b8daf0b4bca0d7bcb47a906ba27bf2a34e6099dbd7643e9db4090af6c57d551bf4d2ad1bcf70f30f7498d75d558ebe2717e7a3bd5341e5c03d968a45dfca84decd0b082dcd3e03b76184b6a6b84b827705be075aead703ce9eb2d92a990643843ea9cefe4de629ec952014bfd8695ddc7469be7c6c32578c40b76d78d9bc1885dd6fbc024703b730babe958b68db4c31ffe51082ee62c15c0282c2a089d3680e012befdd9de12f4634f8b84947849878c57303407aa2ea89e9e7b94d07c63cadaf04f0ce88262a585c0480c1e6484ebe3faa9ef35c85f0e01cc4519ee6b00a4f73e58fcfbeb81467ffbd6546ad34c4044810bc210c792e3bdf58acf02f30ec4bae4cdb64ab0f30553ffd7f9d8723fbdd650bcc7267cc88b59b8a83244ae164b41c6addf032838618a4eb0ad980f38351da2d31a4cf82b01d723e33bb968528ac8e26cc7fe759d83e9320d58faf51861ae7659603049006bf32b826652966762b9dea2650b40ee33ebe1ec066e8a6e3fc566f5840d40b1dd76fa72ae7e59bf2c4bb039d9489753e8e9db0645ee3bfd382b524b06a9d71e17ab9ab2a7bc660f9bedcf7f5d668978c5eaf597d224885258e633d5538bfcc98d04ae59ea943959455c1b4d3ca205894641c637825b3c7f2643922560099dd64ce7350b9378a6eadd0388007430b3b99c443f631dfb38ea8ed850ade734670ff2ad7c76f13c95b82e1fd9363cd84cf1cd3154d584ded0d8f6a790f59cf334478ffda5f55c9088084c3bb26d166b5b8829eab7de752b0dbccba672ef67b63644739f7fd77ff04f8755091e10f891cdd0d9f0265841c459af8b3e6ab7eba833be966a797312b1a6f394ef5e82a52a3ec4cbb29d323d8e12c09b48c37c5fdb4f2ac9737b91595d44db2d8def37b27b1d71a926036f47066a3b31abc5ec0e0d67f457c2518064429788e908dbd528da8913942ff7051e2c758d7ff7cd452d0bd7c661b11888416388c096428223b931ed9b92df06f956712917208cf80214ffc87e4e52b79dc41d1cc5dcfc3e524ad14411e1f7d18dc1202c6909db55912e5a5dc879c471696bbb32b9cba0964d86c6465b734138000b69851c4486500d3de707f58f6bade8a500429ab3e6f69ddd1e56dacd4f45b213c11573eb47e4a1a3dfca6a8af630d1cce02cb1b409ff6feb53387cc46e76d442533c8fccd615e121c024b08dcf7bf55a35d21d69700c21019c9b38129641724b84f063c9e4ab26a822f3ca1d835bcf76eba45d0162f6a3808813b0b41824292968967af8d0600a84aba61e49cd093f28b059f50413178ceb84aaebdd89d0aa7b595af8375f623c0671dbf406bfb25d57b493d7475e9933506ef90ab1429d1ef7cbd1c885fc380631fae3cb118c51b478b0315562d1c5d14bab53b0672959fd8c001b54f02f4745fc21ef5cbd7baa794a282fc856d85bb2f8b7d322b36f5c438df30d8ba0ff76ead9838fd460219a239445c2cb7960d38db043714d3656a23043e27f68dd450c57a67bf5a2c1025bd92abaabf276744759d1579967afc9594dcd05cbba8905b7e7a453622a2a40e56710d70b6bafa50c51b96db1f1e2e1a4ffd42a0dc9c4f965a81435e32b35b78c9e02d38d3d9f7c52c19104ab1db5d562d0fb83a8700474515d59b7cc875034efa41978f0eb8317e1599c517c7f0f6f264b03815fe4336ecb03351e43415557fce25b214deee795e107674435a6a7a4f1efec69752f200adbf90f9f98c37e2dd3f77c3ba6ff557533eb824e6b8df115fc99bbe3ec620028bed4dfb2a0aa72b9aabd402389045dcc056f208534838cb480c8a5bfb5afbf241d89becf7e34d3cbf79da616b4a4ce2322301cc71f22b4661bf195be5ce3577263e78c78c2bf9feef4674d60a75c641c985628eb8cd69a938f1df95624b4cecc0675b42e20122b2033c408ffbf975b20533eadebaed56c6341f0d195f350f200b34a39c162415d8fca49ff16c5c1b0bb9743c76b10b07a7b6aa05f17477984831df5a15c6e3513e5a72fb127355d7904e43db0923491f6c70831f75608bcc298f90219c001094e8a648080d69fc8543f90cc9fd15755d897c947674c8517d393bc8a295a0f532a027468db90c7779117ad5b81234f4ddba256fd5f12b59fd0b67fb797286db55bfb55254914d8f07618b5a9588a9e7e34426425179a1cc064bf090ce1fb7a3b423e12d87d3997fd0e59586ef7b8da307771eaee6878de39a0072a532a009230af051b94a1c613bfb41d43ae93e02829e9f8eb806869b4988cac61947817474952440cda45291f7b8d297ffe2d8751d3828864c1b8168b5f96d10b2cc13dbf0ff70687d63593616db0c68d638daa0e999700bf0e2c7f7ea207bd123dbfbc0dd2b2d654945b0a0abeedcbddef4d3ac31dff6d3274357de2bf6330eb889013bc5ed2db2e180903c1b762ceeab270cbb2e3ebf28938ab8ea063c2bae8a40282fd8d0d6435cc1bf48a249325544d8ed478c4288cd36fec8400cbece37507134eaaa081cb466f7550fe39b7b1101c0913a87c24814658a6a9f90b5f411bebc89bcbf3d63025c0476489045646c7705116a121df342efe42f269b807e953670d907b585d4b68672a0f7834afd3f3aca2968d8446ab9fd6778d2914e873f12361348b9be393b62ba4f16d1265911c8219ad9ad4fed20cb299fbd8de9fabb33dcdabbb249f7a250ad76cba5983b90127f4e060737613f81c949277b9df14ad19db4f6aae878c670d6ed3dbe3bf9f133b284b92a86542f34eea7fbfd88af441911e6d4cef3e32313b74f4143de0b66f99743fe829c113cc00aefc54b4b715192473d30c1073b53c884f704f501f59fdaf1012337709770594e4636d0ea8b11bf5aafd0a8ba9d0bb859722e27acfd021269947dfa16789fc3ec67d0cc0d2b0b429dc0a1df6068802c72f46714e4bef0dbabd20f1a38a9f788c0dcc7b5c9712d0f1cb606acc24539d0a8f096afbcfb545d48a5dde56fbb348c87ae0af48eb2e8b8ad50f4be87f9bd1e9eb4f7d9f2d9d1c4aadffb3bfde48b9cdc6c1b1d2d26e9efd7d94e8dd1311ab89eb31f8e738f819aaf6a8db32958a688d83b6a65b61ad0d2c2786110f7991a799e3a8522bd723c241fa047953a7720cd076236c678f20338c527095e4ec711c387709fa4c0209f26e186f41cf77a2f3ea520054ab0febe330d7334fe03048ea02940f6a057a4478a6cf826ca41033c46808cd13560d3197bc6c1ee5e64e5d0b609fee215bda85a0682f6d1a09f8dc44f00279e145abbb59b23956a5b27c96a1054188356f8fbd6325f58fee09e98fc1ad55cfa934083394103dbaadfe08c06b938197f10e82ec605fc543249358f8c3898e90d556de44bc582235fd5f224223bd18781966fafb4a949e7d8c706ac6f47892e45bdde14889e5e578f389f00308003150c5081999deef141fb6c812420fed7c55e9ffd08b5f263b7100397dfef1939dfceb552f5459b0c3b50a58bb19681f270dbc3b9ec846247685a05de75d9eb1c1e435d1f9aca34d39ed4594b7f823b63350e89af8b547c01ad393e0499cadcb560d59d7641113d71137a7c5f328657e950bc94919285e54f63931f3307841323ce3b1d2f6216dbf08fec64a2841acf6df5ec7ac4f1b16bfd67c5d593c2a17b9e516b7c2fc1a55cef1227f67c649965002963ced84a8e1d7f8029f62bf2518101ea420c88d06e3a4237132b7760d5450f6efa599bf9de10a5cd0cfce63147d5bab710aa427006b569f02d665e91e81e93b2539ec17af25279fbc7492f96c8d23be0433a6ccef034606d61c7e29689015cdacad5c1bea8aa94f7eebda1cb04c9ff7e650b8b41660ea8419c8fcedc5c66b734c45d683bade2ebf0f9e8af38c02536fa5ace9d9bb13f32429457ea5a12b657273b7083f97a921e222cb58a563820fe72b37219211603d68f606296ab22a3082fc68bb84723e3b5d234621579bc14926e837a06cdb6a5959708dd8663d48b755a84b41f329adbf309ee3b2bc"}, {0x10, 0x113, 0x5}, {0xc0, 0x1bf, 0x80000001, "b04b2b606c9bb632fd4fb15965a6b095838e21de32fb2efa24c34fc308578014816df33e184a7f1f6006117877d9c8aaa7047fd58db7b66081b2a4ad45b453fc8b24c3727194c8aa7ad41ab78ec55d22ba1ae2f368383cda61ff4101b3d5243e94fc11acbebb2f497b4950ed731144d3e039db2fcc3d2ffd716e82208279ea3f1083dfe38db33fd2ce4f7dac4b7f0850e8049438ca828e3262a1f86c17b33582aea25cb5387bd0a21e86be4098eade9b"}], 0x22c8, 0x20040000}, 0x9}, {{&(0x7f0000007040)=@can={0x1d, r1}, 0x80, &(0x7f0000007100)=[{&(0x7f00000070c0)="d669b300e0dff9ce753605ef099c8b7a45ed9677e7ad76329babdffbad74e975a37efd", 0x23}], 0x1, &(0x7f0000007140)=[{0x78, 0x117, 0x8000, "a906f6d8152ee13629b6b4de915246ea8a59d729d6b5ca048f04f14f68e4cc4e895280c1c1784c5206c49a9a361fdc8ed5d016f3c161ea968c4fb3d0b54fa4c72dac7b9d93db2759ae5f19718c51cd1c57f084833bca38871331c643bd0622b2336b4b31"}, {0xd0, 0x1, 0x4f8b, "417458503be54c3a71642f68c80e85f7e76209c0fabf041d79caeff7f6ef3920de7875de0cc2986b714f7d35a9a7cf8896dc9e12c36f09639496ba2dc7d63c2c73078ee75448e5b689e01f0dddbdb577661c4aeec7b9147144d652ed0de2118ff26f8e3c13298e02cdfc927ca6240a24777416616b617c5393badd97b7590979cfd7fe2eefe3d8ac0a07b5df3a6c9b09ec62479cd87d68dfce969817fd1480aaca5e919a5e54c96dc9229048eaabb67863c015718e0a7350d0f81bfd"}], 0x148, 0x20000000}}, {{&(0x7f00000072c0)=@ethernet={0x1, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x80, &(0x7f0000007580)=[{&(0x7f0000007340)="daaacb46082b1a235754fe921be251e5cadd5c2be8be3b93f4659216c03dab33c3078607125ca96a82422bea060cc92a09b37fcd9e87240b4bd177dbd43cfe1dfb85ec1c5dd0107303f0d2e6e20c75533a4ae4ed2d836d3198e62445c412ae7dfe7e00338fc1002ad1a84cb07c76aa5ba5acd5719a24702ec492de12047eb54a4e7046e7c8c3841423e586528d90fd3f2e62a52dcdcdab46c8b116a4a16bb92e9198435892d04bf41091ff5e3375133cbd5afa22b9be2099f82435d86455f8f2f4576a8c4f2d54b304b5b8faee7ae9d6ca8d14be8d6405ebba76dd74bb19ee7cfcac041e4c83b438ec4333d59129caa485ee99", 0xf3}, {&(0x7f0000007440)="7b2a96ed", 0x4}, {&(0x7f0000007480)="8f92e5d58b9dcde8eec1e859629ca14e77e1c96810eb6f1b744174a22e357e2dbf497846faecc0b67259c9f46449a94423690728358d9a315cbcdc61386f739194cfd35a537d89754046ebd92acfe66cadfbb0cbd3ee1178ad7e47669dc3b7c0873586d4a2ffb5e777c954dd1b90b157b096922e056d82023cfec748145b97eb09b69f28ddc6f0de68568d25c2863f600998aa9f728bc3c99622ad10be868715ee1a9b15f427916b66288dd2c8c092a00d9b90a4d90c0a0d22645469b766", 0xbe}, {&(0x7f0000007540)="3508db449bd299f80ce629c7832e", 0xe}], 0x4, &(0x7f00000075c0)=[{0x1010, 0x102, 0x5, "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"}, {0xb8, 0x18d, 0x2, "8b077b3033c22676d85eb516577fa83de35ec4d9e6e509175eb46fb8cd35674fcf80f1200ac2d1955995e02ec09bffef44b2f21f70066e9feb669090e80e1444a8e5f64e577a26e384076273c64cedffe1413ccf6db3013780668a88709f46f2a13349c70daff6e7a1ba800c65524b92d08fe48de4002fe4661f4acfbcaacf0508d41beed4a6aa7b28dea79120b291aadfd9eb6eaf9b3be007ea96b262d7f1ae533d"}, {0x70, 0x11f, 0x3, "b87eb6061d7e1b325b0bfc7f50ed3fba616967435593b88eea9fa6438004f06abcfa59f74834ed75d462fcf47e0492b0adba3f4ac12f1c0c16b074fc52a63b94f60df28fb2beb7111d1324a7ffa1f70419f32175e123a52f3183b23186"}, {0xb8, 0x119, 0x81, "dee509487be97ace775da970d2dbffb334b9e0776a9d23f901d206f20351d96ea5518fd70c7191b2f1b74dd10ea8b3ad372993cdbcf6c625933f245d162f80f65f260673bd9d583fd11b60696e03e4d1c573f0f3127f7913ca0f8aaf67aa50bf2509639d35c52ae28d6d56ac1d1924ad6da5ac1b7cce3b31fe5ec5b653cbdd87de06812fec6346e5294c2e4e3a69a9245098f27798aa51029a1fe00223e5c18bd732e9fb8ecb92"}, {0x50, 0x19f, 0x3, "3b1d5b0b106397d3c59ac6b9cad520f01a245f4c573d7bcecff36a3deec923fc113be52d66e6cf3ffc49277b124e9c77eb4bf7c34a9bfb82ebb4423d9f81"}, {0x1010, 0x84, 0x80000000, "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"}, {0x18, 0x115, 0x7ff, "06de0e0322"}], 0x2268, 0x80}, 0x401}, {{&(0x7f0000009840)=@rc={0x1f, {0x92c, 0x7f, 0x4, 0x3, 0x1, 0xffff}, 0x3f8}, 0x80, &(0x7f000000bc40)=[{&(0x7f00000098c0)="2b7a0d4157e13415f076aa62420dc6c69c05eca66a350327cf7521e5ce434ed72055abbdc24d3f4ee757033dfdbf5a02345bc9a6fb40b6fa9c262dcaee29210ece4a687c7228cc79a484040f951a2d035d02735db32925f33725665eb897d6058d0af8bc0a2d9fa5e6c96d8fc5c3109f6afd4a6a43f2b9f83d73bcca60960bfa5a48da5ff43e51", 0x87}, {&(0x7f0000009980)="19fe8e2e947f86f707691beff9d8af89e608280d8f25b823622f24733d1d35d45757636dca893da9793c1bc95f695e14e29fbdcb7d04656245e0f455024cf933b54dc13bb59501f6ffa9f3356100370faefec9348767b3ad43e70714294581d5", 0x60}, {&(0x7f0000009a00)="3570d2d704bb40c4fa37039abb487dbad7073389897eae1c6cdb7b1e4ccdf055702ddfdc7d5bf12dc0f6b96709b92e03b320aee80598bce00e32301dc346be5978c94a9bc3ee7aa5d7e5414b3fa72c4f95ccede908a9313efa732964372b7f2f4051b748b6ee90afe43ff2f7f8b5a3140b226278b2229ef261ab67304d6d879e3d7f960153f720cea23736cfe7ffdf6b207931cbc79a195f6b95fe58d06da3fe74c6bc4f85e236571435255bb1bd344a07", 0xb1}, {&(0x7f0000009ac0)="ad8194c25cb66c23080a421f0042251ff22287fc2fc3dba472e2a51b05c69d5c594d21b43cacbb6e60a43f5c32517488587e3ac7afb513a6d7b689489b2996c804c2f5ea77d311416759cf61f32192b1b5e07eb86314805d1f86d0d962aa1dff5c82c2b11acdc16a3e26a25a93fa4e3b3f1d6bd35b9bbde0c0bb8748437c4d7a464a2f40f969b4fcc04617bc509351a80b955a1d58ab7e99c0b62afff58c7ff617b0646f60ceb4b1376e46dbe631e5a187da783d70bba8923e7838d6df97897e3e7431fcd106c57407e76f5f065618e82815b80e445c96af8effc28e6d6c81cd6e21a8a3de91f07685b63e031c68dfd333002264c05aac4cf9f4f69a6dec9de8ca1ed04bb3ca3d019fff35c144e0228c030a83072010e092164030a87eb9d9fc24802c80b939f17a4959ac13abcb8aadfcc44a6c1f809e74669d18fc2693e88083b3c71427a3f4655137d088d6c9be154ffbca5e0667cdeaf1f040d88900b1b86ad843aedcd6529d92f3de273dcf75a73c06fcfecde32c2ac8530941185f7752a1a2624cc8b09d0ad9f371d4097f32e27c3c49d8332fcbb533cff41685851ab95cb8d841246dd5c41b9529dc35665e56fbd3f1286998d14f6d7feb00b2ee646e2b068995aa4b37c7de0c698e460d7766fb9a655fbdc8c02d7dc1167213260400eec1d2981d778cb372d5be1b0637b71d915d9c4e7ac3d23cb62de38e99e856c9dcdc31605e34831183247426dbbea3e69fb9af7f30f2bc35fa54a34acc66439b3f25a97568cb7710df83c7cee6fe50db4f1ca0fb23f070c0624938173324fc557496ddaad8b57ef744d4411670ed4f380665ea1f295cc94f160f6c1b8f35c96b96e3be2715728ad6f53310411aaf1fa3daf1d57271b87ac580380fe3eeda2ccef45eba38ab88518dcf08af3b938de7d0d1db691202db5774c0623b0cfea04836a57127c1ac4571320e0330e7381836cf99da713b56a5caf44beb6f8b875366bad9bd840bf52b0210760fda7ffa012aa48c97d9e430682bf7826654ad0a9488bdb02bda5fc971c48073957d670564cf109548de2b449b104d6a9dd5b4a7862dcecef6ccfc1c2f7509aafd08cabf7e8adda4551aa11c07c6c28abcfa54be643ce25ad0b58186f667c41c69b4a9a0e54f6bb1f733eed2ff7b0610a212353b68cbbffcf8bf7f8c1367f577a14d558013f82f5697fb9e04840177ec3b6fae020ed51a56d6b19de9675e684f4cd0b0fbb2c2cd761aebde37f504a01625dc8ffaf4ab442307728eac6232c41e2d4bbaae788828923fcadab84afdb82be704d5ce7c0d6a8398f090b6f640a8ac91ea12d6bcb597326fd02d28793063224edcb9e8e9d0a0a7dd894d11a9435de82913ad5bfcfaa2c0d5bc51ee2256ca637f51f3de7153cb46eee3a295ce7205ebf43a5e2c3c7604fafa030e8f9427f84f68ac02ec1f1e2bc96e8a039819602ce394790a1a06dd28a2bf1e3695ee7fe38996fdbbb823ecb6e32deac4ec53cea5cef34a416135cb387cc03073494623e48533dcc7d0a5e63e2d839050655fb3eedccebe186cf2855d1c99473a435e501e235a2fe63dd6ddd50c87f859d28896859b60624a6ca6f474d30556e190a59c58bdf3969d173e4e01f21f9053aaae06e424def3c28d4bcffb60c402957e1c23950e57457edfabcefcbf70e9a28f3641428c6cfe75c31eb413d06eb71aed7f4657b718ac7a489f284c7af096e5a0b24f2597328ff668088dab927c50fa058c6ec495f70d028888cbee007b0e67da40af25d312bbe480c64225a7af01e57eec433367270038fe74731b7522bbb05300c635fc7f4fe41b22efb8063aa9e0a9630eab18521f005d80c0b6e626ca146197fef6f26416f8bce2c8784dbd121b2d184b500b23a155d5e9f37b63571ff9e40ec6977a029ae22c9fb67c860caed4ec76ac1e8bb182669f99c15353e995646ab868fa1b2c25ee64c8b3812a27291460994b204196b420afa9884f458986dcd7f76ab9c1719d368366aafff9260e625326b4168736132f2b580accf41f438ea9e6129a365bacc592d7db2494ba0eee2790ad2d7dfc1a018398380aea810ba1814be896a388c8a82d0b6c9f6665cfcddba553664a73c18aeb134cb1b2040afc5d38518df1e1b1bc7b10b15d2dcb56c6b1d7f8db0dd7e88a608e31c5bd9840b7dcbe95efc4523ad6f5b40ca58b464fe3298364e884d83938ceebc396958f88bb89ecc0f6d52cff7bfd5723818ca278b837b76262764457f46910ae0e67305fa7e99f1d36444582cd924cedee766765ae8d0b0716ff260586024bca7fea110f46ee4ca28fb205bb9d6c7cc2631272202a52e99bf29118e7dd12507e96af14ec16682f3e1a148cd816567ae2040f75fcd023fbdcefec9d396ddc69a5d782897773c1061491e4454f7f21b0b627663b5986edf90435f56541ea9b6fade8ac8c14e177bd15498ddf4687a7780d0c0f40639c461ea3a5893926dfe77b0d5fbff7b97a7ce18a77443e364ed5bb0fac75b499891980cd5fe4365f90674a0d71ce176ee5fdf31985470b4daba815a2023475b22d3723164d0870cd82761d008796212bef9679a9fb1b14cea1405b975512e58a8e47f8b056ede22e8804c84624fd9a0a52f8e7dd35753129d8bbab3556be6816dd932cd2855d457e8142066863103217b9af534103954f0a21a9f103d1b994f1b9a9fdf8bbe2d206191e2d33a98adc8682c251e08e57a711a4c0dac9cb54c130192eb3804a3db5e2aeff4af5455c2e6fe1deea9356f2867f660c92e52ce3305d63e96e24a04267abef19e3040911fb9fc33f56f41f611a53a5b24ef1d70fd5a0757ac2de57e04200f5302fc75295961d3a93b0d765172670a946917b0685cd590ca131f711ae576d61a7df8803ccb84342702b1b03bb90fcf168426fa12cdd069576ab209681620cd044e01f8c843f1734791fb9b9d5d019fb8de3bd67ec66ef0795e9e0f46edd9fbab58c0d495a1de1e8c69885a1379f9faa98b62674ef5361bb29f1c2ea0d5dbb8a66ed71f3eefe20f39c281c96d7981c73354fabf3a96016413d133cc6dbce87d90c6d879861424f7ba56af3cee7e24d037041aebf4b0295bd3a24b356d2ae9c7ab46ee931fcb46919b84ceac490c08375faed386cadc1ddfdede600927cf80d81b1d711cf3df3774cb08cfdd7a6fd04176bdc46167c3126f2adda48853849f766f631e5a0ecfbec08a4b8dcf2e4b858576f1334d6c89266413570a0c30350944c13eb69fd8ffc411b13b5c2dc57fed78f125e07ee3e263f313c74611068fd7a9761152a1b2d41be7d538bf4ae76c8e9b44851ec2fcde7dc5d521dc442f2fcb000769b437c5fa6e16be81f612432a52b7475c43982fdf4a7fb6894f86ad8972f06f4a527f48b5d395eae427609f65a09649f08efa669a12c5716b2752407a51a929136d64214d550acbbe60e58daaa70c835a3c29a7debd0977355c1e1b1156a52ccb666ac5955548ea4175a2988fb865726eac5a7991392fc468bd1470a0e41c67b6351499ec47b8d512fe996e28719b772b4a9cb632eac2149a847e0a9ac1623459e85d0f302b4e9438d69a02c49edb841c0fd3a621c141abb24031aa8c76758a1655890053874452bc8c6924a82b6a0dff8184d2eed602b893856044302edf072166818eadee97e873094c22abca32de652ed39f1cdb7394031e3d5f077be1ae40fa482c5ea216f0e2a82db6962a5f791f1a1c849b8b3829de0300f7ca006d354fec8053b413717268398b4fbd5899749634654d292f3af09cfd9f86c032b4e44be9473e580d6a676cf6c4bf520a0a8764e9ec2a803dce5959bda7d357a64265542ed1db75fd3972ff9f7f98050bf0309f22a5500bb117d7f660267864385ed4598deb4a6b9062f256221a9df268277152756faa9b505b8a18df5c4646a602524fa4c0a0db3a9518b3d762ec2f7b08764f45dd1d289c0ee0ef7e33b4ec9c4a2272af1f9eecb36cd66a6e993da2c3d6145dad20652e335612b2b5b438a57046878f0c85540a53a10b7870ffc02481a59ccb92de44a11d09758d0b6cd0c22239a5eccf3d935ded65bf21d24c78d48ce2d2d18e66d142c2b56e0afed852cfdafb8e3fbef31c58ad4c6385fbc870e532f18315bec062b7a72738b879301b1766ceaad747f74959110463bfe7d50c055b773a031ee615ac1de29c33b125e47a5201743b9cafd698a6fc504f7bf0d2261eedaea8ec4eb115f5a3c2b2863d091b057b4a830e7b6b33919c0c0f670f8c290a824f5343e4755d3101ce19b86294efab913adeb6a6bd0f961c09fb0e6d06ed53295c9e694caf5de4a1ca74d1e27442d497d3ecba0b7262717640668206c37d520eb8decd28b0d80c87c5838edf4a21cf2b8c5962371cace70869014c13ecba40e771c21bc2c83edc683b9ff67b8a9196b5ff7528920e6fefa1325c270e316f9da655a5c0656f649f99280f537cd8ff4a0709386a9eca58871571fa6423808e39e8eb1fb481d1f26b55eff8e64008afc44a22f9973d6e515f8faa4204abebe54a3533d9aae71424cca50781ed36dc77e709b8344b3b44c7c31ed5346167cc1ed9db209e58214b61c0c0ca535063cad293543d8b393ff2c487681bfc3dc5ea51a48a018ef85b948a7e9238f9aeedcfceddfede38aa824c82c7987ec4de77b49efa330614cae136faddef75c792d1b4ad3fb87d8b7044c2ac9757a159f469f780430526f6921a17238a597cb09d0a7afbdc265846ba0794513b0eedf7ae1cd1b249308e01b91cc26d086121486d926a82bca3271692bcadf2d3f52c12f2d2aaf59a0d05355235caaa7ed080b09fdbfacdb9c018f4c55f5222c1760386a8912f9cc56e64a668cfccfdaea9c827beacd8f0d4b177f795088c259366de50e8a6649a555105b5c7ebde7b5ad51ca5aed57e0e1ee021f3074e34f18a8bd6d9de661b596ac9db46ab2c8e078d3119d41cb437a70a680adf816489f8ae3446c62bc158fdd42669ec5babf7a9fbb020953c48ed41205f51597631b4b58ee24220ceaae32b3617f1ed2eb02e6a7563cc2ffac2f216a07e7e92b49189dde73e3ee1b87507c39ade6169ca215ab8405a0a3796fd74fcfb8d983561fd4db8cf8658d3c02933858e2b89ac2b3f64c5630918a65a330c8d53741f44a8662c6889125c2fa5648fcdbc19419053421a8294ae6a0df577258f9d7df9bf40d4a83c10cf4712c753595cdc629ee62d86376eba96f98265f2b2eec851b7d6dd757ca40607bb144b9b5719e8468393ba5d47689ddef6c4dc73380b4054d63e57d65bce2c9d2143b3e0451bb46495e26866a2d48ab29b2a56a755656063f245e56575152cff2b8df7ad42619fe577bf516356e55e8e2d3d0634711d3807200129c9fd573996022541282e278654290c309a56716a96643f67ab22ca24fe4c4d286387f1894aa83d97c6d1dbe1d10cc6b400034a9eb1918f558357ab17c8699aa9ccf5d2106c5647fd815f29870d0c80910687cc4af87007b19fe801745c64242e77b23c5dd1ddf71e1ed1f6b05988da25df610a480ed9fef15a11bf7629a4b1e515eeb1ea46086e67fcf76884c4648bc967f822859d8fd42d325f258334a948edb1d7626d988e979f47a4fc1f466370e39fe28515274018a6b61e13bd1f5d265068502b5db9e1f9a78768d218559a28641270ca9ead4db11faeadfedbcd695b41ca89744a9e3943bb76442ad3c50a5b15a26313bee526da2ac0ae172307dd1cc7ed98ea4c2cef15d37acec66e4dcce7ed0845482c563bb10abf264d07b857204a759", 0x1000}, {&(0x7f000000aac0)="d3160429573048d840044f769b67b0522a31eb4f1cf6dec33eca09e2b3df8a18ee577cd40ae813bd181b4b5369176e19230f19290dac27f78d85682c245cc16ae9d194ea294cb1e19763982d45cd237902a01d8ca102572653eec4d7bbfbd483876f09274092dac9de7836ed33fce3f0be47d9f5becf9f2f61d09d6891710c7b8ee614ffd50c7dd410cd0d48852774a7b864ee8caabd4f8603e8b0be71ff86b976146f58d2683ca3cfebfb0686afaf4d9c7b7e770cd0706400204dafd1c5e9189d5c0150478fb8a617ab396d17929340b4410af467e550c7c9b9bd7d08256692b7a09726581ea865db69b977a1f4626c942f1cb891b761f2b348c14be38d661d54d99ef914fcaeab19d9acf96ed4a2693a86bb6f9fae864e186462a5cdecb97f44e2116623430fdd1bbac01f18213473fbc127df1c1cbc932f192ee8f23e8b077a46632babf0258c3a1d4872d28c726ad12cc70e9c56ee01c65c361f65c4e5b723857999fabec174371f5a05d7f0a4c09ca065615cba4457507722d3bd911ee9b623c7b20ab1670fff2ad9aed00d35bb028e622efd5524c29a5210f5c4a8ed52c498d5cf79c928551f908b0eb481a407a6160485f9ee609f3d1a094d6471cd53ad2262fd478259bcab49dde42f53ee42f09b9ed57539e7ebf1ab3a148b8eb96dc99dbbfe6eb6a7452d00c8f77b3076b906b82b038839597a5badcec0fca3aa3e0ab4c9942f1ed8e64b56ce0373f03651f22feb99e4f3ea6a81af8ec8a205194b4ccec272d3e15bc39ebe15bdcbff28a8d1b285bd7004b6405bec873ff9a7c6f642ec1f5e8c0982a06ffd98fe6c47c1506a35560f1e10c1a012ad21f0cb909c4681d5551f3ee42f2f0515d2d186161610e90fd49690d881ff3f41010ee462089317187570496f775d729cca8ceb2baa42f8cf4cd55e31a8f5946856fd0a91771f8d97798c7aaf37bb26338055c2e721eff2e22477d2d1f07c43e468460a88042c76b03d4517d4b83e1874083d4a47628b9b871821cde6b1ba8c48b16e553bce7d29059a74e1f20df8b8fff4bf3cff3571d1b72a65bbbe3daa2edebe3af702e9edcd7610fe6bc5dc286657b3556facf046ba882bd565a083d90799069fc85c08d4adf38032299c9a0116ba1da55b3646cd8c57c3295824a8257d5b3c1ee33291df4868d9dddb196a91a9146328345b135b265ea4b016edfb36e831497b8bd264152a092e6a0cccbbda7abea690c56df9d6cc3c45f5cec532489468bba0be40955bf2fa75f8d9a0b59cba0061193019d603553ff8918c0503a776a084bdcb763224885cfbf8c584bee313ddda29897dfc494b55a616e269b1fd175c52e61aa89f44756c7c1e359346279b9ee93f37ae49a1ccdb119a005c2b08b53b47c5ce683118af623922d234f5b1e566f7817c8bf7d10b8b3398c905b4a84ac9f4b8682952fa09a787a42ee4135c3bbaed72bb9c099004d2fb0aeccb6519436fa418c73c009e691d857358be5c2e22e47d35f3b79ff96f4cc8f56b11878cad50cfa83414a30f6b475531dfff6ad5254553b74f59eb9898746b62163593c63e78d560ccde9a1d0feff3d4cfeed4468cb734bc6cc224574515a3135ef7373d8a08864996deb846a58eaf19d62a88d107aa25869fe7e8660e78b8e5fc90e01189413f5ac0f61018ef749d849a0fa673a40e9ff0048cc69d5adf6c19088625d09034cda6b926c47d1fa174e5fb1298b612ea2ed8fc31b8885349020cf7b79385699caccea23f4260ba414c5b0978b99da480c732f079ab2ae8fb3798547b2a891a3c630113f4aa84698517ad4801c1dadbcb1fb79f891944dc2e1e5a751f605741a301f7fbc0c88040421713dea5097d8d4cacef602ac89b25813e53590a79e977d353d271c234c8fe09c0aae77909408ba10f0ca8698575c796ad10f01caa98b4e47f4ab93847b90ea972d727f25ef91df2ce440cbd2554a53bc5587453c8dbdf9257fd197496d24bc548ccaff9f84df7a7aee27fddac459d69b8083e7e4f062d43c808b931c731cfe75594fe67218a26ec6a73b5d45136779425b47295458fa4ed8a2bc369a2f0a7894a79e6c4619f8f36c59213b3fd90ba649642aa2d5a2c1ecd8aec19918cab83c941dcadad534e86cab6dce77842989fb2d3d8610c1f303e283e93a9239e3386e3f3fd1d135e3d67f565ec7f103df5da0f9bfa16f9fed8372db139603fce8eb0584d54eebc47fbf62be338a64462955c52dc176f09adbfb9d5117a58914377fe5fa310874fbc5e4f6e55cf5d69933f5331a28ab09c2254097f5a7735fa648f1c4f3adcf50479e552a1573be7c3c94b8c09b35fa28d0ca169c20a95800d5b8e712bae1d17d182eac05cc84bb4b86d051e13bab3de3785a69dc750e2f623ed188df39a9708a854744b80fb1762a5c960a53a4a6cc9922d6002fb4d365250f161256a69f5a347dbd247d9aaf6ede7c0e8064a9ca8701d01eba716805c71ccfaa21f6a7d6c6d33ff61d644542ad401f89a233bae3e6c8dbedc8fc52477d3f791320d3d376de70880c33fdd19421f6fc0f813f3fdfc8442e4ee72349b1e12438d5c964ef4960cafb011c26506ae6a18c722d8b365440b8241b098a2f98577e8a51cd7a8aee69029a75240800802f403bb2b7236f8f88cb2d9d69ab37069c408eefcc56bdfea8c7177fd1f2836fa014f3f40bd3ba9b0fb555cbb88549852fcaf430a8ea31d9204ac0a99ed16b16bc049a8810fb07e082890bbf9be142f3a0de8806c0fdfbea22de7781048add3f84b7c98b4ae3a048bb4b2410859cbcbb450a95ed7091711715f278b4b52d03f5af377a4979ceac3dd486b23bb659fd6c36b84b90bad4e174ca2696bf99355f8ff391d12970bd872bbebbc392ca59e4c0e5b9c33c78279cfaca68e17e4c9fa39da4b252d08c732f1a9032d9824b1ca08dcabc26067815d6ce3c0e6e1732537c6afd110d448c02c919fc466dbcedf4d522040f7c44aeb199012f25fd0c77a4f7fe0feba8045ceab800ff3af5ae57a7e14b1269237420f6633150ceaef40ccffa0ef7902fec80c6065f6e48a49ae2bd1629739d0ddf0990b8f976c435152e66b8c3e975e459f5d6abb8d9cb16bc36eff910afc03c0a7e1b3c00658e4ee0b6713e38ca3a028d49eb26a6e3f503c8190a32509f3b00bb504e816f98f2e9794aab007b2781af5ebe1bd76b4ff6bc9f50d5d66c0674f0516c24b08daafcb56e3172eea8b7bd98ad81f6802f583271008c0e338ee222635a08ba66f7a63403185aca0b6afb325fcd802cce6983ed4ee1adf16308b2a3d865373302895f1dfffdffd5cc1f6c46caa67b21e06dc01c1d2898aa593377cccb3f4b23e99fed3c3c8b213347827213992e8869a58fda0b03c608d9fc752d88fec8d8205186818737299c294c03420e68b4a350d63b857f0d86174671eb333065e941701f771a5949b0c143280ccaf01f2b6a4ff4f9b19aef3eaf4dff003273c7a1d470b504bb64303ab447602850db82f33ddd9ab4db831bb89bed87ca895929dee3f7d9cf6dfb64d5caac79d265933f0c9f0ad99124febe91fe842020362bb24838efe4f7a600905b60bbfc8260910d114c64154316a6ac414f74668f774fc459ab8dd0b30ddfb3858b694dc846abadae3da8f32242da5488a517855065812fc05f0143e45c0ca1f40eb1f712403ced4233d360e7100149a657fd41f2c7b7d7758b6c96aa8466cbb65df82a4cd558e63bfcc25f984bb0df06d506042d4c3550015625546fe8bb895055ac77913770698b3c074af1c95b0972464cb706cf6814e0ca7a2f1249e3864fe993b17f0c3074e1fc1a8a1bbd881637b5a6752c1c4744cded0341242faea766e3974c0eebea88148c8c81b43fb11297e2a5827281744fa3f9a11eeb737a87288895ec8f6aa935aaa4ea47480812965792e0c5ed7f736248ad480450555a13ecf8b74819a61a75b81ee4a8beb2ccccd74b69cc9c52ac9b7b2c78748ac1659752c27dbd30c989dd0e34c234c4a80197dc9fbdb9ed0347670dfccf189c253c439f33a582acd204efddec267c93db189bf2d9e51dfd87308e4976f4611bd3c56f8b19369609b05055697c1b8bfeed056757c491770c7f38a2fef653ca05dc4ec929c0e070ff5f9bf2d03e248ee85d279d2741c8a53a350fe590ce3e909a0fb9590958025c234d9a1e8012bad7ff3e670c2eea32d7393bc76fc015d5aa7747fa13376afd38e74fa575dd2782831b2f2364a040d00c6997eaa36044ee13133b66eabeb13eb8c480fa28e304cfdc946a81009e7efa711fbfc082871ab461619141d3679acaed90ed8eaedc88a241b5fb3498b32af7b78a9d7dcc5a38d3e96422f307812eab821d77d59fd958b73d401ded1e23404a484699e368b1061e91a2c00ce7527919902f703253f608c6504d8ae3ce421363d5c8c8945d28cdc12e22947b63fcbed6678e8e9441dabd8c3777b27006aeff8fc61d4984ba00e75cce99cea09ae2c10259bdb82ce6e097e9860cd020d77e414630e6808f6c51e18208eae50f2babd938eaf567225219643f15a0ab595fb0f69a0513db251f99eca9556c560a1d6a17148fac8222035c82657df62816f0e84d6f1a751c9fa6cbf27bf27bd6a873ca4cb86143e9f175ef679fefdc6e34e920fb7835783ca5daf36d23e21687f0d0ea2220797d5034b28e91a4d02ee9a789890e1ff6f9e8325c8bdfc9c6616492ab7c5a6706a365159248d6ca882915458aea26b12e0391b779897a67a2b0ba9505a6c92cc9a2efcf9e0dab5d56a9b556648a334f070f92e28b013e1d26b5979ec0c6f96b7d8be34e4c7c0d768fe0ef6152af667b72ba2b2a1f7e43221708dd59d2d92cbcc09f971692eec32c11669b568d3aa07aff6cf51f2ad3bfb075ab3913b00b23d3f302fb605d48885e15e3f371020580f7366225e57bc90dd54af9760ad478f78ca3b574308e8ba578984261bd51d1fb8e20fed53510f9b04c7b4a34f140c1c8be5e7a111f7fe4e071645fa373dfc592f1e2a643cf82342df829ff95c73e313347ab83124b35fdae3513108d941fbb2cf969b544bff4d8644c1c2818fcdee47646f7369f5e0f741e52e4f584d942ec4c56d09e9e1875d736f9ddb3800ff44c18df85befdcaaa7e5956fc1d31cb2374913a4c89737246a8c20cbef7fb88be0f4520dfe49e31bf03a37fd311fa2051fbbea0f60af9af98854ff6dab2d3e6e2715ae898ea8fcb036835806224e5fb8d131374f35a82ffd798fd64ced17372b90644409a6faf590533aa0ffe008f0755d36ef99cbba748892b09a670aa5f577db0dbf885b50677b02955354cfd797cb9d408bd99ed4a2e3175d8740266f30ca012e4554bd92bbc25b8d336594b6b1c6f82180994def97d615166f96c495ecf1fa90e7de749c895d8f66343a8c548f57834db385b76b821e522a703a1791a9afe26cfbc95fbd7480c873dd242444f19e52c4390bc13d6462a01f000debb9e08939f94ad9aba8003f7ed7726d64bf86920efc45e57b264d8ce07a23b7d840e02b555a51ab79cce35f0e84d922ba89f7511cc1f4c2ac826eabd8edd69d137b495acac62b5545b209bf87f4fd81ffff86ed1193288ec2aa209448dcfd8312cb9eb92464fed27e31a110d72e6540e7437e80cfc454b402d522a5a4340c0c595af4fce4f3eec857009f3c496919987601bb206d42c4eb2b0ef15e6034b6c3e1a474c45e690d95d3103dd0d0491f9daadbd7037509dd3b240f8469fd57958d1926f2b1783560b0c804f56b5e9bf7cdd5fba50c4a0a034e01d3f446ee6c", 0x1000}, {&(0x7f000000bac0)="d1ed02d6e6fc17efddfb746ad9aab4f5603367c6cf9a4e0bb7b30f831bcc3b91c87458fdbbddaa20add33463b0a835450722f6dde36918753ee8a024815e591266c0336aa54376fe16a0d9ac67c4cc54bfb181dcde25f0ec00c4cb30e553459ba44957e5988030682ca16266edbe1b25f66010771e9033353f26396733f791d8bafffecaaf9f8b847e9e54c779dd4cbe562f7ed5033809c669b5560b9df8f954bfa0cf5e7522d253fee5f012dfdb313e2bfc5f14b8cf024e78f1fa279148d6c4c6b470e3361bcb529427bf27e2b83bd812405c46f695b8423d030db660a6960db5e207", 0xe3}, {&(0x7f000000bbc0)="b9128436199fd7a39e577596099b4fe868cf2c6b3d8d871cf9030273cb73801a0a925f9f694ff6db42c08bba69b99f1772d6b5c37fdf8cc860eada6491fe68f514ef0c9d73756b114e31cf47793a511e3b77f81044a94a79203efadbf414f16dcb478d11c84530", 0x67}], 0x7, &(0x7f000000c140)=ANY=[@ANYBLOB="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"], 0x1f0, 0xc0}, 0x1}], 0xa, 0x20000000) sendmmsg(r0, &(0x7f0000001e80)=[{{&(0x7f0000000000)=@in={0x2}, 0x80, &(0x7f00000000c0), 0x0, &(0x7f0000000580)}}, {{&(0x7f0000000100)=@in={0x2, 0x0, @broadcast=0xffffffff}, 0x80, &(0x7f0000000080), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="14000000000000000000000001000000a6000000"], 0x14}}], 0x2, 0x0) 2033/05/18 03:33:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:35 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 570.368289] FAT-fs (loop5): bogus number of reserved sectors [ 570.374221] FAT-fs (loop5): Can't find a valid FAT filesystem [ 570.404594] FAULT_INJECTION: forcing a failure. [ 570.404594] name failslab, interval 1, probability 0, space 0, times 0 [ 570.416058] CPU: 0 PID: 1515 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 570.423243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 570.432593] Call Trace: [ 570.435190] dump_stack+0x1b9/0x294 [ 570.438827] ? dump_stack_print_info.cold.2+0x52/0x52 [ 570.444025] ? kernel_text_address+0x79/0xf0 [ 570.448440] ? __unwind_start+0x166/0x330 [ 570.452596] should_fail.cold.4+0xa/0x1a [ 570.456661] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 570.461771] ? graph_lock+0x170/0x170 [ 570.465571] ? save_stack+0x43/0xd0 [ 570.469200] ? kasan_kmalloc+0xc4/0xe0 [ 570.473089] ? __kmalloc+0x14e/0x760 [ 570.476800] ? __list_lru_init+0xdd/0x790 [ 570.480951] ? find_held_lock+0x36/0x1c0 [ 570.485024] ? __lock_is_held+0xb5/0x140 [ 570.489098] ? check_same_owner+0x320/0x320 [ 570.494124] ? rcu_note_context_switch+0x710/0x710 [ 570.499059] __should_failslab+0x124/0x180 [ 570.503303] should_failslab+0x9/0x14 [ 570.507250] kmem_cache_alloc_node_trace+0x26f/0x770 [ 570.512353] ? mark_held_locks+0xc9/0x160 [ 570.516507] ? __raw_spin_lock_init+0x1c/0x100 [ 570.521096] __kmalloc_node+0x33/0x70 [ 570.524902] kvmalloc_node+0x6b/0x100 [ 570.528707] __list_lru_init+0x559/0x790 [ 570.532770] ? list_lru_destroy+0x4c0/0x4c0 [ 570.537097] ? mark_held_locks+0xc9/0x160 [ 570.541248] ? __raw_spin_lock_init+0x1c/0x100 [ 570.545836] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 570.550859] ? __lockdep_init_map+0x105/0x590 [ 570.555374] ? lockdep_init_map+0x9/0x10 [ 570.559446] sget_userns+0x73a/0xf00 [ 570.563162] ? get_anon_bdev+0x2f0/0x2f0 [ 570.567232] ? destroy_unused_super.part.11+0x110/0x110 [ 570.572597] ? __alloc_pages_nodemask+0xacf/0xd70 [ 570.577448] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 570.582471] ? kasan_check_read+0x11/0x20 [ 570.586623] ? cap_capable+0x1f9/0x260 [ 570.590521] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 570.596059] ? security_capable+0x99/0xc0 [ 570.600229] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 570.605773] ? ns_capable_common+0x13f/0x170 [ 570.610207] ? get_anon_bdev+0x2f0/0x2f0 [ 570.614269] sget+0x10b/0x150 [ 570.617384] ? fuse_get_root_inode+0x190/0x190 [ 570.621973] mount_nodev+0x33/0x110 [ 570.625606] fuse_mount+0x2c/0x40 [ 570.629070] mount_fs+0xae/0x328 [ 570.632443] vfs_kern_mount.part.34+0xd4/0x4d0 [ 570.637026] ? may_umount+0xb0/0xb0 [ 570.640661] ? _raw_read_unlock+0x22/0x30 [ 570.644806] ? __get_fs_type+0x97/0xc0 [ 570.648700] do_mount+0x564/0x3070 [ 570.652247] ? copy_mount_string+0x40/0x40 [ 570.656483] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 570.661499] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 570.666260] ? retint_kernel+0x10/0x10 [ 570.670154] ? copy_mount_options+0x1f0/0x380 [ 570.674652] ? copy_mount_options+0x202/0x380 [ 570.679154] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 570.684690] ? copy_mount_options+0x285/0x380 [ 570.689189] ksys_mount+0x12d/0x140 [ 570.692818] __x64_sys_mount+0xbe/0x150 [ 570.696792] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 570.701810] do_syscall_64+0x1b1/0x800 [ 570.705697] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 570.710543] ? syscall_return_slowpath+0x5c0/0x5c0 [ 570.715478] ? syscall_return_slowpath+0x30f/0x5c0 [ 570.720413] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 570.725786] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 570.730638] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 570.735827] RIP: 0033:0x455a09 [ 570.739015] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 570.746724] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 570.753999] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 570.761698] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 570.768966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 570.776235] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 571.020267] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:36 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:36 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket(0xa, 0x2, 0x0) ioctl(r1, 0x8912, &(0x7f0000000080)="c6262676ce23070000806fc4fb926116acd716395d6ff80d2d4b1e43a117e5bc345644eafb120107783a8a3c8abe1e1d840762e0e7eac4f3076de7da685e224c8a292359be2f5afc2bf62d5c2f613ecf17aec66d39cebd47f707edadedf559bfdfe339864062208b54562ad59ec6c1dce785095d318e52a3d65d207d59074e98a9fc0f") setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000140)=[@in6={0xa, 0x4e24, 0x7f, @loopback={0x0, 0x1}, 0x8}, @in6={0xa, 0x4e23, 0x4, @mcast1={0xff, 0x1, [], 0x1}, 0x4}, @in={0x2, 0x4e23}], 0x48) bind$inet(r0, &(0x7f0000000280)={0x2, 0x40000000004e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='yeah\x00', 0x5) sendto$inet(r0, &(0x7f0000a88f88), 0x6a96c, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10) ioctl(r1, 0x1, &(0x7f00000001c0)="dacb4d2c2dddbd556365148ca0e4a530486b4b921fed70538c560f64ceaf50f38bdb4dd65661f2f6e810339737ef994d98eecf31fd8928dbef168529b170314e3b1fed17b5b02911f15436504ffd95dbb6b8f72745d7bb61185a1ac6377c4aa581cd63769afc1419c6d295835fe2d123a7345a2878fe05bf29f09b6d19433e24bbdff696cfbe85f08e6f6df0d016af3880925b3cf26be91dbbe8") 2033/05/18 03:33:36 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl(r0, 0x0, &(0x7f0000000180)="f9f1d6be36e35d12e870ea588cf222be3040f255e6e0475bf84276a1233b586c5222bb4790145edf23edf7a4d5f22689dea2ffc468cfde47a6088cf55887bed27a749dcad7f5b5519d364d1e01307b27f892f85e0f0bb140dd7ee5d98d126a549984a84b055979a3758e") r1 = epoll_create1(0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)) r2 = syz_open_pts(r0, 0x0) r3 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x6e, 0x40) ioctl$DRM_IOCTL_AUTH_MAGIC(r3, 0x40046411, &(0x7f0000000140)=0x800) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)) ioctl$TCFLSH(r0, 0x540b, 0x99) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0)='tls\x00', 0x4) timerfd_gettime(0xffffffffffffffff, &(0x7f0000000080)) 2033/05/18 03:33:36 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:36 executing program 5 (fault-call:3 fault-nth:14): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:36 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@dev={0xfe, 0x80, [], 0x10}, 0x6, 0x1, 0xff, 0x6, 0x80000001, 0x0, 0x400}, 0x20) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0x2) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000040)={0x3, 0x400, 0x3b}) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, &(0x7f0000013e95), 0x4) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x4, 0x4) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8970, &(0x7f0000001000)={'team0\x00'}) close(r3) close(r2) 2033/05/18 03:33:36 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:36 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 571.215395] FAT-fs (loop5): bogus number of reserved sectors [ 571.221423] FAT-fs (loop5): Can't find a valid FAT filesystem [ 571.248560] FAULT_INJECTION: forcing a failure. [ 571.248560] name failslab, interval 1, probability 0, space 0, times 0 2033/05/18 03:33:36 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025ea1100", 0x29}], 0x1) 2033/05/18 03:33:36 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 571.260150] CPU: 0 PID: 1544 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 571.267347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 571.276704] Call Trace: [ 571.279303] dump_stack+0x1b9/0x294 [ 571.282948] ? dump_stack_print_info.cold.2+0x52/0x52 [ 571.288144] ? kernel_text_address+0x79/0xf0 [ 571.292563] ? __unwind_start+0x166/0x330 [ 571.296723] should_fail.cold.4+0xa/0x1a [ 571.300796] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 571.305911] ? graph_lock+0x170/0x170 [ 571.309731] ? save_stack+0x43/0xd0 2033/05/18 03:33:36 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'speck128\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000028c0)="b7f2288a933d66593ae164c990a0028e", 0x10) r1 = accept$alg(r0, 0x0, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'crct10dif-generic\x00'}, 0x58) sendmsg$IPVS_CMD_DEL_DEST(r1, &(0x7f0000000100)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000340)={0x11, 0x0, 0x0, 0x0, 0x0, {0x7}}, 0xfffffdcd}, 0x1}, 0x50) [ 571.313362] ? kasan_kmalloc+0xc4/0xe0 [ 571.317253] ? __kmalloc+0x14e/0x760 [ 571.320967] ? __list_lru_init+0xdd/0x790 [ 571.325121] ? find_held_lock+0x36/0x1c0 [ 571.329202] ? __lock_is_held+0xb5/0x140 [ 571.333292] ? check_same_owner+0x320/0x320 [ 571.337624] ? rcu_note_context_switch+0x710/0x710 [ 571.342566] __should_failslab+0x124/0x180 [ 571.346809] should_failslab+0x9/0x14 [ 571.350615] kmem_cache_alloc_node_trace+0x26f/0x770 [ 571.355726] ? mark_held_locks+0xc9/0x160 [ 571.359886] ? __raw_spin_lock_init+0x1c/0x100 2033/05/18 03:33:36 executing program 6: r0 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'team_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000440)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000400)={&(0x7f00000000c0)=@delqdisc={0x24, 0x25, 0x1, 0x0, 0x0, {0x0, r2, {}, {0xffff, 0xffff}}}, 0x24}, 0x1}, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000100)={{0x0, 0x1}, 'port1\x00'}) [ 571.364483] __kmalloc_node+0x33/0x70 [ 571.368297] kvmalloc_node+0x6b/0x100 [ 571.372107] __list_lru_init+0x559/0x790 [ 571.376178] ? list_lru_destroy+0x4c0/0x4c0 [ 571.380501] ? mark_held_locks+0xc9/0x160 [ 571.384653] ? __raw_spin_lock_init+0x1c/0x100 [ 571.389237] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 571.394262] ? __lockdep_init_map+0x105/0x590 [ 571.398768] ? lockdep_init_map+0x9/0x10 [ 571.402837] sget_userns+0x73a/0xf00 [ 571.406558] ? get_anon_bdev+0x2f0/0x2f0 [ 571.410641] ? destroy_unused_super.part.11+0x110/0x110 [ 571.416025] ? __alloc_pages_nodemask+0xacf/0xd70 [ 571.420876] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 571.425899] ? kasan_check_read+0x11/0x20 [ 571.430054] ? cap_capable+0x1f9/0x260 [ 571.433954] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 571.439491] ? security_capable+0x99/0xc0 [ 571.443643] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 571.449178] ? ns_capable_common+0x13f/0x170 [ 571.453589] ? get_anon_bdev+0x2f0/0x2f0 [ 571.457650] sget+0x10b/0x150 [ 571.460766] ? fuse_get_root_inode+0x190/0x190 [ 571.465349] mount_nodev+0x33/0x110 [ 571.468977] fuse_mount+0x2c/0x40 [ 571.472431] mount_fs+0xae/0x328 [ 571.475800] vfs_kern_mount.part.34+0xd4/0x4d0 [ 571.480384] ? may_umount+0xb0/0xb0 [ 571.484012] ? _raw_read_unlock+0x22/0x30 [ 571.488161] ? __get_fs_type+0x97/0xc0 [ 571.492056] do_mount+0x564/0x3070 [ 571.495604] ? copy_mount_string+0x40/0x40 [ 571.499841] ? rcu_pm_notify+0xc0/0xc0 [ 571.503736] ? copy_mount_options+0x5f/0x380 [ 571.508146] ? rcu_read_lock_sched_held+0x108/0x120 [ 571.513163] ? kmem_cache_alloc_trace+0x616/0x780 [ 571.518016] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 571.523554] ? copy_mount_options+0x285/0x380 [ 571.528200] ksys_mount+0x12d/0x140 [ 571.531833] __x64_sys_mount+0xbe/0x150 [ 571.535808] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 571.540828] do_syscall_64+0x1b1/0x800 [ 571.544714] ? finish_task_switch+0x1ca/0x840 [ 571.549213] ? syscall_return_slowpath+0x5c0/0x5c0 [ 571.554145] ? syscall_return_slowpath+0x30f/0x5c0 [ 571.559082] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 571.564449] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 571.569297] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 571.574481] RIP: 0033:0x455a09 [ 571.577667] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 571.585375] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 571.592643] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 571.599913] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 571.607224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 2033/05/18 03:33:37 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 571.614491] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 571.626499] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:37 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:37 executing program 5 (fault-call:3 fault-nth:15): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:37 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250a0000", 0x29}], 0x1) 2033/05/18 03:33:37 executing program 6: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") unshare(0x400) r1 = getpgrp(0x0) r2 = gettid() rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xffffffffffffff7f}, 0x0, 0x8) rt_tgsigqueueinfo(r1, r2, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x6}) r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={0x62}, 0xfffffffffffffff7, 0x800) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) read(r3, &(0x7f0000481000)=""/128, 0x80) 2033/05/18 03:33:37 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 571.946720] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:37 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:37 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 572.016644] FAT-fs (loop5): bogus number of reserved sectors [ 572.022701] FAT-fs (loop5): Can't find a valid FAT filesystem [ 572.053732] FAULT_INJECTION: forcing a failure. [ 572.053732] name failslab, interval 1, probability 0, space 0, times 0 [ 572.065266] CPU: 0 PID: 1578 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 572.072455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 572.081802] Call Trace: [ 572.084394] dump_stack+0x1b9/0x294 [ 572.088029] ? dump_stack_print_info.cold.2+0x52/0x52 [ 572.093220] ? kernel_text_address+0x79/0xf0 [ 572.097630] ? __unwind_start+0x166/0x330 [ 572.101962] should_fail.cold.4+0xa/0x1a [ 572.106028] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 572.111141] ? graph_lock+0x170/0x170 [ 572.114952] ? save_stack+0x43/0xd0 [ 572.118590] ? kasan_kmalloc+0xc4/0xe0 [ 572.122479] ? __kmalloc+0x14e/0x760 [ 572.126193] ? __list_lru_init+0xdd/0x790 [ 572.130344] ? find_held_lock+0x36/0x1c0 [ 572.134410] ? __lock_is_held+0xb5/0x140 [ 572.138482] ? check_same_owner+0x320/0x320 [ 572.143243] ? rcu_note_context_switch+0x710/0x710 [ 572.148177] __should_failslab+0x124/0x180 [ 572.152417] should_failslab+0x9/0x14 [ 572.156222] kmem_cache_alloc_node_trace+0x26f/0x770 [ 572.161324] ? mark_held_locks+0xc9/0x160 [ 572.165476] ? __raw_spin_lock_init+0x1c/0x100 [ 572.170067] __kmalloc_node+0x33/0x70 [ 572.173879] kvmalloc_node+0x6b/0x100 [ 572.177686] __list_lru_init+0x559/0x790 [ 572.181750] ? list_lru_destroy+0x4c0/0x4c0 [ 572.186073] ? mark_held_locks+0xc9/0x160 [ 572.190224] ? __raw_spin_lock_init+0x1c/0x100 [ 572.194806] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 572.199824] ? __lockdep_init_map+0x105/0x590 [ 572.204321] ? lockdep_init_map+0x9/0x10 [ 572.208385] sget_userns+0x73a/0xf00 [ 572.212095] ? get_anon_bdev+0x2f0/0x2f0 [ 572.216165] ? destroy_unused_super.part.11+0x110/0x110 [ 572.221534] ? __alloc_pages_nodemask+0xacf/0xd70 [ 572.226470] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 572.231489] ? kasan_check_read+0x11/0x20 [ 572.235640] ? cap_capable+0x1f9/0x260 [ 572.239535] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 572.245073] ? security_capable+0x99/0xc0 [ 572.249226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 572.254761] ? ns_capable_common+0x13f/0x170 [ 572.259171] ? get_anon_bdev+0x2f0/0x2f0 [ 572.263234] sget+0x10b/0x150 [ 572.266348] ? fuse_get_root_inode+0x190/0x190 [ 572.270929] mount_nodev+0x33/0x110 [ 572.274557] fuse_mount+0x2c/0x40 [ 572.278013] mount_fs+0xae/0x328 [ 572.281383] vfs_kern_mount.part.34+0xd4/0x4d0 [ 572.285967] ? may_umount+0xb0/0xb0 [ 572.289596] ? _raw_read_unlock+0x22/0x30 [ 572.293740] ? __get_fs_type+0x97/0xc0 [ 572.297631] do_mount+0x564/0x3070 [ 572.301171] ? do_raw_spin_unlock+0x9e/0x2e0 [ 572.305580] ? interrupt_entry+0xb1/0xf0 [ 572.309643] ? copy_mount_string+0x40/0x40 [ 572.313885] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 572.318646] ? retint_kernel+0x10/0x10 [ 572.322539] ? copy_mount_options+0x213/0x380 [ 572.327039] ? write_comp_data+0x11/0x70 [ 572.331104] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 572.336639] ? copy_mount_options+0x285/0x380 [ 572.341139] ksys_mount+0x12d/0x140 [ 572.344772] __x64_sys_mount+0xbe/0x150 [ 572.348746] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 572.353768] do_syscall_64+0x1b1/0x800 [ 572.357654] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 572.362499] ? syscall_return_slowpath+0x5c0/0x5c0 [ 572.367431] ? syscall_return_slowpath+0x30f/0x5c0 [ 572.372368] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 572.377737] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 572.382585] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 572.387771] RIP: 0033:0x455a09 [ 572.390956] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 572.398667] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 572.405935] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 572.413202] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 572.420468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 572.427733] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:38 executing program 2: r0 = socket(0x10, 0x1, 0x20) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$alg(0x26, 0x5, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000000), &(0x7f0000000040)=0x4) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(aes-fixed-time)\x00'}, 0xfffffffd) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20480}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xac, r2, 0x400, 0x70bd2c, 0x25dfdbfd, {0xf}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffffffffffffb}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9}]}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x6f2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x40}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xc2a}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x8000}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}]}, 0xac}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) close(r1) 2033/05/18 03:33:38 executing program 5 (fault-call:3 fault-nth:16): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:38 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025080000", 0x29}], 0x1) 2033/05/18 03:33:38 executing program 3: pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, &(0x7f0000000000), &(0x7f000044cfc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, &(0x7f0000000ff8)={0x0, 0x989680}, &(0x7f0000000ff8)={&(0x7f00000000c0), 0x8}) 2033/05/18 03:33:38 executing program 6: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x21) sendto$ipx(r1, &(0x7f0000000080)="00018301a412087a324b0d76b940b4f6551b6e858927f89501bfa3f5ece8b18cdca4d6e5cd1031cc3e49072e780bdfc2fcaa90c79dc391b34477f67f414b36381953888ecf3532dbbf953c38fd86db37580822ee67e2f5f68f73a450ed520112711f2ae98a679c4e31085195d8e613a0244c92fc5ec7e8bdccb47509", 0x7c, 0x800, 0x0, 0x0) 2033/05/18 03:33:38 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:38 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025007a00", 0x29}], 0x1) 2033/05/18 03:33:38 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 572.702573] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 572.807857] FAT-fs (loop5): bogus number of reserved sectors [ 572.813806] FAT-fs (loop5): Can't find a valid FAT filesystem [ 572.841674] FAULT_INJECTION: forcing a failure. [ 572.841674] name failslab, interval 1, probability 0, space 0, times 0 2033/05/18 03:33:38 executing program 2: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x80000, 0x0) openat(r0, &(0x7f0000000080)='./file0\x00', 0x40000, 0x60) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='/exe\x00\x00\x00\x00\x00\x00') fcntl$setstatus(r1, 0x4, 0x4000000000046800) io_setup(0x8000000007, &(0x7f0000000140)=0x0) io_submit(r2, 0x1, &(0x7f0000000100)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000200)="30bfff3c45f732fbd4a8b85478382238dc455864074c85e9a64e89d56db57f2ca5aec9bd93d5ba4f2e4545715d4740cb34dc4742c8a37d368395f31e3990320771e86ec357e24d4239063c60dba6ffd0488c074de1a8806590d36ed3c1b0514f958d79117ec174be838a214b3d493fc6b51511ff13961dc0a72dde3d92404b319a98c2c72b9bad03f6ff985dfa79cd49bd512b1b656876dc8c2cfeb8791dae605d2d37515534fd712e9595f5a7d51020bc5e08b55e2e9242b23bd846fe3412b406075e86914ee00a97da6bc732be9fc89ba4a75b0ae7e1cc21f2e2cb83d2bc4a09d445ed8fa05f4849afcc3fe84f1e6598e3f36a938386c114263747c5db325533a2288fb1c5a5ae46c30616a347466fd0da1732c871acd62464f3b09128143e244a8a0769882a321c64a72229c9d0b80a5ab185981ba598643438cc7071e48e73775c5f37b1d85b302e1489691a3b641c174b9727585054f7c6f31e3b188d96e58e4ad31019e7d269ac6d577bad905b691558525d8f69ae8266fa2a0b77aac91c837e167b669e13c513e0591fe854340f61dacb1f362a9edc611a6aed623f88e4aa102ea816548ed0f512835a3a66a64211df80fa57cc8aed54a2259e2b430eb6c8653af000eb1c5d23bb3b4f68afe5bc6f05000363c1afc262a99c794fbca1b79d87ce770266592cdf645c375d94bb9e6a0c2ab33f8394a09c7949c8243e5f", 0x200}]) [ 572.853341] CPU: 0 PID: 1602 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 572.860536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 572.869890] Call Trace: [ 572.872488] dump_stack+0x1b9/0x294 [ 572.876127] ? dump_stack_print_info.cold.2+0x52/0x52 [ 572.881324] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 572.886522] should_fail.cold.4+0xa/0x1a [ 572.891032] ? is_bpf_text_address+0xd7/0x170 [ 572.895532] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 572.900641] ? unwind_get_return_address+0x61/0xa0 2033/05/18 03:33:38 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 572.905572] ? __save_stack_trace+0x7e/0xd0 [ 572.909895] ? graph_lock+0x170/0x170 [ 572.913703] ? find_held_lock+0x36/0x1c0 [ 572.917769] ? __lock_is_held+0xb5/0x140 [ 572.921942] ? check_same_owner+0x320/0x320 [ 572.926280] ? rcu_note_context_switch+0x710/0x710 [ 572.931221] __should_failslab+0x124/0x180 [ 572.935461] should_failslab+0x9/0x14 [ 572.939261] kmem_cache_alloc_trace+0x2cb/0x780 [ 572.943933] ? __kmalloc_node+0x33/0x70 [ 572.947906] ? __kmalloc_node+0x33/0x70 [ 572.951890] ? rcu_read_lock_sched_held+0x108/0x120 [ 572.956911] __memcg_init_list_lru_node+0x17d/0x2c0 [ 572.961929] ? kvfree_rcu+0x20/0x20 [ 572.965557] ? __kmalloc_node+0x47/0x70 [ 572.969547] __list_lru_init+0x456/0x790 [ 572.973611] ? list_lru_destroy+0x4c0/0x4c0 [ 572.977934] ? mark_held_locks+0xc9/0x160 [ 572.982078] ? __raw_spin_lock_init+0x1c/0x100 [ 572.986661] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 572.991681] ? __lockdep_init_map+0x105/0x590 [ 572.996178] ? lockdep_init_map+0x9/0x10 [ 573.000242] sget_userns+0x73a/0xf00 [ 573.003953] ? get_anon_bdev+0x2f0/0x2f0 [ 573.008026] ? destroy_unused_super.part.11+0x110/0x110 [ 573.013389] ? __alloc_pages_nodemask+0xacf/0xd70 [ 573.018239] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 573.023262] ? kasan_check_read+0x11/0x20 [ 573.027414] ? cap_capable+0x1f9/0x260 [ 573.031308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 573.036845] ? security_capable+0x99/0xc0 [ 573.040997] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 573.046531] ? ns_capable_common+0x13f/0x170 [ 573.050943] ? get_anon_bdev+0x2f0/0x2f0 [ 573.055003] sget+0x10b/0x150 [ 573.058115] ? fuse_get_root_inode+0x190/0x190 [ 573.062699] mount_nodev+0x33/0x110 [ 573.066342] fuse_mount+0x2c/0x40 [ 573.069803] mount_fs+0xae/0x328 [ 573.073179] vfs_kern_mount.part.34+0xd4/0x4d0 [ 573.077760] ? may_umount+0xb0/0xb0 [ 573.081387] ? _raw_read_unlock+0x22/0x30 [ 573.085533] ? __get_fs_type+0x97/0xc0 [ 573.089425] do_mount+0x564/0x3070 [ 573.092967] ? do_raw_spin_unlock+0x9e/0x2e0 [ 573.097379] ? copy_mount_string+0x40/0x40 [ 573.101614] ? rcu_pm_notify+0xc0/0xc0 [ 573.105515] ? copy_mount_options+0x5f/0x380 [ 573.109929] ? rcu_read_lock_sched_held+0x108/0x120 [ 573.114950] ? kmem_cache_alloc_trace+0x616/0x780 [ 573.119809] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 573.125355] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 573.130894] ? copy_mount_options+0x285/0x380 [ 573.135398] ksys_mount+0x12d/0x140 [ 573.139027] __x64_sys_mount+0xbe/0x150 [ 573.143004] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 573.148028] do_syscall_64+0x1b1/0x800 [ 573.151919] ? finish_task_switch+0x1ca/0x840 [ 573.156423] ? syscall_return_slowpath+0x5c0/0x5c0 [ 573.161382] ? syscall_return_slowpath+0x30f/0x5c0 [ 573.166320] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 573.171696] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 573.176547] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 573.181734] RIP: 0033:0x455a09 [ 573.184923] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 573.192636] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 573.199908] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 573.207180] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 573.214449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 573.221719] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:38 executing program 5 (fault-call:3 fault-nth:17): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:38 executing program 6: r0 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x8, 0x10000) r1 = getpgid(0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000240)={0x5, 0x2, {0xffffffffffffffff, 0x3, 0x81, 0x1, 0x6}}) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000100)={{0x8, 0x7, 0x9, 0x7, "ab0b9985300a2a73387a1287bcdafd6012ad21fa006c7480bd22178a62d04a81bbd8190b293732304edbc7d4", 0x1}, 0x0, 0x0, 0x3, r1, 0x0, 0xfffffffffffffffb, "7a1c9d19621210f695fd93027e44fded90eca2ec46542ce9336a0125c98fe795e38ef92651d46fc0df1ec52710acaaaaccd91381b7ac4e1b2e7a9c75fd02ceff", &(0x7f00000000c0)='em1#\x00', 0x5, [], [0x8, 0x9, 0x8, 0x7]}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x0, 0x800, @dev={0xfe, 0x80}}, {0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x0, [0x0, 0x2, 0x7, 0x5, 0x0, 0x0, 0x2, 0x200000000000]}, 0x5c) socket$inet6(0xa, 0x6, 0xfffffffffffffff8) 2033/05/18 03:33:39 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 573.344134] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:39 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 573.475470] FAT-fs (loop5): bogus number of reserved sectors [ 573.481545] FAT-fs (loop5): Can't find a valid FAT filesystem [ 573.501507] FAULT_INJECTION: forcing a failure. [ 573.501507] name failslab, interval 1, probability 0, space 0, times 0 [ 573.512918] CPU: 0 PID: 1626 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 573.520114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 573.529464] Call Trace: [ 573.532057] dump_stack+0x1b9/0x294 [ 573.535690] ? dump_stack_print_info.cold.2+0x52/0x52 [ 573.540886] ? __save_stack_trace+0x7e/0xd0 [ 573.545215] should_fail.cold.4+0xa/0x1a [ 573.549282] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 573.554496] ? save_stack+0x43/0xd0 [ 573.558139] ? kasan_kmalloc+0xc4/0xe0 [ 573.562031] ? kmem_cache_alloc_trace+0x152/0x780 [ 573.566990] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 573.572185] ? __list_lru_init+0x456/0x790 [ 573.576418] ? sget_userns+0x73a/0xf00 [ 573.580308] ? graph_lock+0x170/0x170 [ 573.584109] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 573.588865] ? do_mount+0x564/0x3070 [ 573.592578] ? ksys_mount+0x12d/0x140 [ 573.596379] ? __x64_sys_mount+0xbe/0x150 [ 573.600528] ? do_syscall_64+0x1b1/0x800 [ 573.604594] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 573.609965] ? find_held_lock+0x36/0x1c0 [ 573.614035] ? __lock_is_held+0xb5/0x140 [ 573.618163] ? check_same_owner+0x320/0x320 [ 573.622527] ? rcu_note_context_switch+0x710/0x710 [ 573.627463] __should_failslab+0x124/0x180 [ 573.631708] should_failslab+0x9/0x14 [ 573.635518] kmem_cache_alloc_trace+0x2cb/0x780 [ 573.640187] ? __kmalloc_node+0x33/0x70 [ 573.644162] ? __kmalloc_node+0x33/0x70 [ 573.648136] ? rcu_read_lock_sched_held+0x108/0x120 [ 573.653159] __memcg_init_list_lru_node+0x17d/0x2c0 [ 573.658185] ? kvfree_rcu+0x20/0x20 [ 573.661815] ? __kmalloc_node+0x47/0x70 [ 573.665796] __list_lru_init+0x456/0x790 [ 573.669862] ? list_lru_destroy+0x4c0/0x4c0 [ 573.674185] ? mark_held_locks+0xc9/0x160 [ 573.678343] ? __raw_spin_lock_init+0x1c/0x100 [ 573.682929] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 573.688060] ? __lockdep_init_map+0x105/0x590 [ 573.692563] ? lockdep_init_map+0x9/0x10 [ 573.696627] sget_userns+0x73a/0xf00 [ 573.700342] ? get_anon_bdev+0x2f0/0x2f0 [ 573.704410] ? destroy_unused_super.part.11+0x110/0x110 [ 573.709793] ? __alloc_pages_nodemask+0xacf/0xd70 [ 573.714644] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 573.719670] ? kasan_check_read+0x11/0x20 [ 573.723829] ? cap_capable+0x1f9/0x260 [ 573.727725] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 573.733265] ? security_capable+0x99/0xc0 [ 573.737417] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 573.742955] ? ns_capable_common+0x13f/0x170 [ 573.747368] ? get_anon_bdev+0x2f0/0x2f0 [ 573.751431] sget+0x10b/0x150 [ 573.754542] ? fuse_get_root_inode+0x190/0x190 [ 573.759125] mount_nodev+0x33/0x110 [ 573.762762] fuse_mount+0x2c/0x40 [ 573.766222] mount_fs+0xae/0x328 [ 573.769592] vfs_kern_mount.part.34+0xd4/0x4d0 [ 573.774178] ? may_umount+0xb0/0xb0 [ 573.777810] ? _raw_read_unlock+0x22/0x30 [ 573.781955] ? __get_fs_type+0x97/0xc0 [ 573.785846] do_mount+0x564/0x3070 [ 573.789391] ? copy_mount_string+0x40/0x40 [ 573.793623] ? rcu_pm_notify+0xc0/0xc0 [ 573.797516] ? copy_mount_options+0x5f/0x380 [ 573.801924] ? rcu_read_lock_sched_held+0x108/0x120 [ 573.806942] ? kmem_cache_alloc_trace+0x616/0x780 [ 573.811796] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 573.817332] ? copy_mount_options+0x285/0x380 [ 573.821833] ksys_mount+0x12d/0x140 [ 573.825465] __x64_sys_mount+0xbe/0x150 [ 573.829441] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 573.834460] do_syscall_64+0x1b1/0x800 [ 573.838348] ? finish_task_switch+0x1ca/0x840 [ 573.842846] ? syscall_return_slowpath+0x5c0/0x5c0 [ 573.847785] ? syscall_return_slowpath+0x30f/0x5c0 [ 573.852723] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 573.858099] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 573.862947] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 573.868131] RIP: 0033:0x455a09 [ 573.871315] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 573.879023] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 573.886292] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 573.893559] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 573.900829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 573.908096] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:39 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:39 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1400, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:39 executing program 2: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x610100, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000100)={0x0, 'veth0_to_team\x00', 0x1}, 0x18) r1 = socket(0xa, 0x2, 0x0) ioctl(r1, 0x8116, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockname(r1, &(0x7f0000000180)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000200)=0x80) r2 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGBITKEY(r2, 0x80404521, &(0x7f0000000040)=""/69) fgetxattr(r1, &(0x7f0000000140)=@random={'btrfs.', '/dev/hwrng\x00'}, &(0x7f0000000280)=""/232, 0xe8) 2033/05/18 03:33:39 executing program 5 (fault-call:3 fault-nth:18): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:39 executing program 6: r0 = socket(0xf, 0x5, 0xfffffffffffffffd) sendmsg$nl_generic(r0, &(0x7f0000000900)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000008c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="280000002c0017020000000000000000000000000c00000008000000", @ANYRES32=0x0, @ANYBLOB="85c53211ff22958fb6", @ANYRES32], 0x28}, 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0xa, 0x4) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f00000000c0), 0x4) setsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000080)=0x22, 0x4) 2033/05/18 03:33:39 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:39 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}) r1 = syz_open_pts(r0, 0x0) syz_open_pts(r0, 0x0) close(r1) 2033/05/18 03:33:39 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:39 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 574.294925] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 574.310275] FAT-fs (loop5): bogus number of reserved sectors [ 574.316214] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:39 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:39 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000a00", 0x29}], 0x1) [ 574.349456] FAULT_INJECTION: forcing a failure. [ 574.349456] name failslab, interval 1, probability 0, space 0, times 0 [ 574.360899] CPU: 0 PID: 1645 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 574.368085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 574.377436] Call Trace: [ 574.380037] dump_stack+0x1b9/0x294 [ 574.383674] ? dump_stack_print_info.cold.2+0x52/0x52 [ 574.388868] ? __save_stack_trace+0x7e/0xd0 [ 574.393201] should_fail.cold.4+0xa/0x1a 2033/05/18 03:33:40 executing program 6: pipe(&(0x7f0000000100)={0xffffffffffffffff}) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x2, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x4, 0x0) tee(r0, r1, 0x7, 0x0) [ 574.397279] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 574.402393] ? save_stack+0x43/0xd0 [ 574.406021] ? kasan_kmalloc+0xc4/0xe0 [ 574.409909] ? kmem_cache_alloc_trace+0x152/0x780 [ 574.414751] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 574.419943] ? __list_lru_init+0x456/0x790 [ 574.424178] ? sget_userns+0x73a/0xf00 [ 574.428066] ? graph_lock+0x170/0x170 [ 574.431866] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 574.436623] ? do_mount+0x564/0x3070 [ 574.440336] ? ksys_mount+0x12d/0x140 [ 574.444134] ? __x64_sys_mount+0xbe/0x150 [ 574.448284] ? do_syscall_64+0x1b1/0x800 [ 574.452349] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 574.457728] ? find_held_lock+0x36/0x1c0 [ 574.461797] ? __lock_is_held+0xb5/0x140 [ 574.465873] ? check_same_owner+0x320/0x320 [ 574.470201] ? rcu_note_context_switch+0x710/0x710 [ 574.475134] __should_failslab+0x124/0x180 [ 574.479374] should_failslab+0x9/0x14 [ 574.483179] kmem_cache_alloc_trace+0x2cb/0x780 [ 574.487853] ? __kmalloc_node+0x33/0x70 [ 574.491829] ? __kmalloc_node+0x33/0x70 [ 574.495804] ? rcu_read_lock_sched_held+0x108/0x120 [ 574.500828] __memcg_init_list_lru_node+0x17d/0x2c0 [ 574.505847] ? kvfree_rcu+0x20/0x20 [ 574.509477] ? __kmalloc_node+0x47/0x70 [ 574.513455] __list_lru_init+0x456/0x790 [ 574.517518] ? list_lru_destroy+0x4c0/0x4c0 [ 574.521840] ? mark_held_locks+0xc9/0x160 [ 574.525995] ? __raw_spin_lock_init+0x1c/0x100 [ 574.530583] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 574.535598] ? __lockdep_init_map+0x105/0x590 [ 574.540093] ? lockdep_init_map+0x9/0x10 [ 574.544157] sget_userns+0x73a/0xf00 [ 574.547871] ? get_anon_bdev+0x2f0/0x2f0 [ 574.551938] ? destroy_unused_super.part.11+0x110/0x110 [ 574.557300] ? __alloc_pages_nodemask+0xacf/0xd70 [ 574.562145] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 574.567165] ? kasan_check_read+0x11/0x20 [ 574.571317] ? cap_capable+0x1f9/0x260 [ 574.575212] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 574.580747] ? security_capable+0x99/0xc0 [ 574.585007] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 574.590543] ? ns_capable_common+0x13f/0x170 [ 574.594957] ? get_anon_bdev+0x2f0/0x2f0 [ 574.599021] sget+0x10b/0x150 [ 574.602132] ? fuse_get_root_inode+0x190/0x190 [ 574.606721] mount_nodev+0x33/0x110 [ 574.610349] fuse_mount+0x2c/0x40 [ 574.613803] mount_fs+0xae/0x328 [ 574.617176] vfs_kern_mount.part.34+0xd4/0x4d0 [ 574.621763] ? may_umount+0xb0/0xb0 [ 574.625391] ? _raw_read_unlock+0x22/0x30 [ 574.629538] ? __get_fs_type+0x97/0xc0 [ 574.633446] do_mount+0x564/0x3070 [ 574.636989] ? do_raw_spin_unlock+0x9e/0x2e0 [ 574.641415] ? copy_mount_string+0x40/0x40 [ 574.645648] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 574.650686] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 574.655446] ? retint_kernel+0x10/0x10 [ 574.659344] ? copy_mount_options+0x1f0/0x380 [ 574.663839] ? copy_mount_options+0x1fa/0x380 [ 574.668335] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 574.673870] ? copy_mount_options+0x285/0x380 [ 574.678370] ksys_mount+0x12d/0x140 [ 574.681999] __x64_sys_mount+0xbe/0x150 [ 574.685972] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 574.691003] do_syscall_64+0x1b1/0x800 [ 574.694893] ? finish_task_switch+0x1ca/0x840 [ 574.699390] ? syscall_return_slowpath+0x5c0/0x5c0 [ 574.704323] ? syscall_return_slowpath+0x30f/0x5c0 [ 574.709259] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 574.714625] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 574.719474] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 574.724660] RIP: 0033:0x455a09 [ 574.727849] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 574.735559] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 574.742825] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 2033/05/18 03:33:40 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x0, 0x1, &(0x7f0000001fe8)=ANY=[@ANYBLOB="e92be282346d61ac97"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) r1 = accept(0xffffffffffffff9c, &(0x7f0000000000)=@rc, &(0x7f0000000080)=0x80) getsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f0000000180)={@remote, @broadcast, 0x0}, &(0x7f00000001c0)=0xc) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000200)={@mcast2={0xff, 0x2, [], 0x1}, 0x41, r2}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x5, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x25}, [@ldst={0x7, 0x0, 0x3, 0x0, 0x0, 0x0, 0xa000000}], {0x95}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0x437, &(0x7f000000cf3d)=""/195}, 0x48) 2033/05/18 03:33:40 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 574.750090] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 574.757358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 574.764624] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:40 executing program 5 (fault-call:3 fault-nth:19): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:40 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c63e042c8523ceff7ff66fc0cf801404dec5079f08fa41df931c8012fb552e88dbc0498dd1d1c30e248c1b80d5e6fa3001df95") r1 = creat(&(0x7f0000001380)='./file0\x00', 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000600)=@assoc_value, &(0x7f00000000c0)=0x8) ioctl$fiemap(r1, 0x40086602, &(0x7f00000000c0)=ANY=[]) write$cgroup_type(r1, &(0x7f0000000180)='threaded\x00', 0x0) setsockopt$sock_int(r1, 0x1, 0x3f, &(0x7f0000000100)=0xfffffffffffffc18, 0x4) truncate(&(0x7f0000000340)='./file0\x00', 0x0) write$cgroup_pid(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='g'], 0x1) truncate(&(0x7f00000004c0)='./file0\x00', 0x81020e) open(&(0x7f0000000140)='./file0\x00', 0x800, 0x168) [ 575.109407] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 575.275671] FAT-fs (loop5): bogus number of reserved sectors [ 575.281591] FAT-fs (loop5): Can't find a valid FAT filesystem [ 575.301270] FAULT_INJECTION: forcing a failure. [ 575.301270] name failslab, interval 1, probability 0, space 0, times 0 [ 575.312739] CPU: 0 PID: 1678 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 575.319920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 575.329263] Call Trace: [ 575.331857] dump_stack+0x1b9/0x294 [ 575.335486] ? dump_stack_print_info.cold.2+0x52/0x52 [ 575.340686] ? __save_stack_trace+0x7e/0xd0 [ 575.345010] should_fail.cold.4+0xa/0x1a [ 575.349073] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 575.354280] ? save_stack+0x43/0xd0 [ 575.357909] ? kasan_kmalloc+0xc4/0xe0 [ 575.361795] ? kmem_cache_alloc_trace+0x152/0x780 [ 575.366640] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 575.371824] ? __list_lru_init+0x456/0x790 [ 575.376057] ? sget_userns+0x73a/0xf00 [ 575.379942] ? graph_lock+0x170/0x170 [ 575.383742] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 575.388501] ? do_mount+0x564/0x3070 [ 575.392216] ? ksys_mount+0x12d/0x140 [ 575.396013] ? __x64_sys_mount+0xbe/0x150 [ 575.400164] ? do_syscall_64+0x1b1/0x800 [ 575.404221] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 575.409587] ? find_held_lock+0x36/0x1c0 [ 575.413657] ? __lock_is_held+0xb5/0x140 [ 575.417728] ? check_same_owner+0x320/0x320 [ 575.422068] ? rcu_note_context_switch+0x710/0x710 [ 575.427003] __should_failslab+0x124/0x180 [ 575.431239] should_failslab+0x9/0x14 [ 575.435039] kmem_cache_alloc_trace+0x2cb/0x780 [ 575.439706] ? __kmalloc_node+0x33/0x70 [ 575.443680] ? __kmalloc_node+0x33/0x70 [ 575.447657] ? rcu_read_lock_sched_held+0x108/0x120 [ 575.452680] __memcg_init_list_lru_node+0x17d/0x2c0 [ 575.457697] ? kvfree_rcu+0x20/0x20 [ 575.461323] ? __kmalloc_node+0x47/0x70 [ 575.465302] __list_lru_init+0x456/0x790 [ 575.469367] ? list_lru_destroy+0x4c0/0x4c0 [ 575.473687] ? mark_held_locks+0xc9/0x160 [ 575.477838] ? __raw_spin_lock_init+0x1c/0x100 [ 575.482424] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 575.487437] ? __lockdep_init_map+0x105/0x590 [ 575.491931] ? lockdep_init_map+0x9/0x10 [ 575.495993] sget_userns+0x73a/0xf00 [ 575.499704] ? get_anon_bdev+0x2f0/0x2f0 [ 575.503772] ? destroy_unused_super.part.11+0x110/0x110 [ 575.509133] ? __alloc_pages_nodemask+0xacf/0xd70 [ 575.513980] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 575.518997] ? kasan_check_read+0x11/0x20 [ 575.523145] ? cap_capable+0x1f9/0x260 [ 575.527040] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 575.532574] ? security_capable+0x99/0xc0 [ 575.536724] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 575.542260] ? ns_capable_common+0x13f/0x170 [ 575.546666] ? get_anon_bdev+0x2f0/0x2f0 [ 575.550724] sget+0x10b/0x150 [ 575.553830] ? fuse_get_root_inode+0x190/0x190 [ 575.558411] mount_nodev+0x33/0x110 [ 575.562040] fuse_mount+0x2c/0x40 [ 575.565496] mount_fs+0xae/0x328 [ 575.568870] vfs_kern_mount.part.34+0xd4/0x4d0 [ 575.573455] ? may_umount+0xb0/0xb0 [ 575.577087] ? _raw_read_unlock+0x22/0x30 [ 575.581229] ? __get_fs_type+0x97/0xc0 [ 575.585120] do_mount+0x564/0x3070 [ 575.588663] ? do_raw_spin_unlock+0x9e/0x2e0 [ 575.593077] ? copy_mount_string+0x40/0x40 [ 575.597308] ? rcu_pm_notify+0xc0/0xc0 [ 575.601201] ? copy_mount_options+0x5f/0x380 [ 575.605610] ? rcu_read_lock_sched_held+0x108/0x120 [ 575.610628] ? kmem_cache_alloc_trace+0x616/0x780 [ 575.615475] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 575.621018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 575.626553] ? copy_mount_options+0x285/0x380 [ 575.631055] ksys_mount+0x12d/0x140 [ 575.634691] __x64_sys_mount+0xbe/0x150 [ 575.638666] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 575.643683] do_syscall_64+0x1b1/0x800 [ 575.647569] ? finish_task_switch+0x1ca/0x840 [ 575.652068] ? syscall_return_slowpath+0x5c0/0x5c0 [ 575.656999] ? syscall_return_slowpath+0x30f/0x5c0 [ 575.661929] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 575.667294] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 575.672141] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 575.677324] RIP: 0033:0x455a09 [ 575.680506] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 575.688214] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 575.695479] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 575.702744] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 575.710007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 575.717272] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:41 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:41 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:41 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/null\x00', 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000400)={{{@in6, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@mcast2}}, &(0x7f0000000500)=0xe8) setsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f0000000540)={@empty, @loopback=0x7f000001, r2}, 0xc) r3 = syz_open_dev$sndpcmc(&(0x7f0000000180)='/dev/snd/pcmC#D#c\x00', 0x1f, 0x800) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000001c0)={0x0, 0x86, "c77f1bad8b2ffe7985fcdb48e170af2814d1f986a7286fd85dd65fc172601a6d643fad92823dbcd05b015b9ce05141eb61baf6937f541e763dba7b32860f6fb6e6ffc14473911c5182e6c67b7aeb1c95b7aaabebd9f0ae69f084dc423c3d8a9581b8093c603dd523503bf59b29f4b776c68840d52c8fe5e610ef85ed27325ed7eac99d8ab549"}, &(0x7f0000000280)=0x8e) getsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f00000002c0)={r4, 0x0, 0x10001, 0x5}, &(0x7f0000000300)=0x10) unshare(0x2000400) bind$alg(r3, &(0x7f0000000580)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x368) r5 = accept4(r0, 0x0, &(0x7f0000000040), 0x0) getsockopt$packet_buf(r5, 0x107, 0x2, &(0x7f0000000080)=""/209, &(0x7f0000000000)=0xffffffcc) 2033/05/18 03:33:41 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea11000000250003ae", 0x29}], 0x1) 2033/05/18 03:33:41 executing program 6: r0 = socket(0xa, 0x1, 0x0) syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x3ff, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$hfsplus(&(0x7f0000000200)='hfsplus\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f0000000480)={[{@nodecompose='nodecompose', 0x2c}]}) 2033/05/18 03:33:41 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:41 executing program 5 (fault-call:3 fault-nth:20): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:41 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x15) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="390000001300090468fe0700000000000000ff3f03000000450001070000001419001a000400020007000a000200000800005d14a4e91ee438", 0x39}], 0x1) [ 576.006440] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 576.043717] hfsplus: unable to find HFS+ superblock [ 576.050338] FAT-fs (loop5): bogus number of reserved sectors 2033/05/18 03:33:41 executing program 2: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x531000, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000040)={0x100000001}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080), 0x64, 0x0, &(0x7f00000000c0)="6b0b90b0c6308804f8bac83b73d663a3783f5cdd39db7838ef5327a93777baea3df860cb14a236aa9022fea45d6eb9c6f45a9e301e6c206f43b6097bb0b0ab7420a9ceaaf1862831b0bbc576c5739ce5154fcc7dfadb2b731ffc1ec83af46486862e8470"}) getsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000180)=0x40, &(0x7f00000001c0)=0x4) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={0x0}, &(0x7f0000000240)=0xc) sched_setscheduler(r1, 0x0, &(0x7f0000000280)=0x80) writev(r0, &(0x7f0000001440)=[{&(0x7f00000002c0)="a628c44b964e5e750942a1b461ba4ff672647baeae0408195875ec2f0469f70aed56a37f7a768c955843a4b2f3fbd9ed4c5269dd3d145fd34f51c813d7f34bf190c0a6787d33eb7564803e14360a3dbe969990af548c3174b3c687e6f17dfc8212e824c0d113ed577bad7a136d42966d6cd2fb1dcf462b71b2c8471e6f400e7b86898e424f921fe23472a04b4fd74ccb67bf992380e2af63532d2b3d55362d4433f8a98ff8e67bde35401e633d41646265572cac9a37283ebb54e2e1a550bf452bd7fcfe", 0xc4}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f00000013c0)="e63ccbc7cad29f4d7e3bbdf6d8b2885288f50e7a811fa8b9895228aa2eaf2adf41ca71205fee61d74b318929caccf0e1", 0x30}, {&(0x7f0000001400)="99a2a89c5ca3baf3df710800bb72cb171ffac02f", 0x14}], 0x4) setsockopt$inet_dccp_int(r0, 0x21, 0x4, &(0x7f0000001480)=0xd77, 0x4) ioctl$BLKSECDISCARD(r0, 0x127d, &(0x7f00000014c0)=0xc00) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000001500)=0x0) ptrace$getregs(0xe, r2, 0x83ae, &(0x7f0000001540)=""/151) r3 = mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000005, 0x12010, r0, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000001680)={0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000018c0)={0xe4, 0x0, &(0x7f0000001740)=[@transaction_sg={0x40486311, {{0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x40, &(0x7f0000001600), &(0x7f0000001640)=[0x18, 0x30, 0x38, 0x0, 0x28, 0x30, 0x38, 0x78]}, 0x8}}, @increfs={0x40046304, 0x2}, @increfs_done={0x40106308, r3, 0x4}, @decrefs={0x40046307, 0x1}, @register_looper={0x630b}, @clear_death={0x400c630f, 0x3}, @acquire_done={0x40106309, r4, 0x1}, @transaction_sg={0x40486311, {{0x1, 0x0, 0x1, 0x0, 0x10, 0x0, 0x0, 0x0, 0x18, &(0x7f00000016c0), &(0x7f0000001700)=[0x38, 0x20, 0x18]}, 0x8}}], 0x77, 0x0, &(0x7f0000001840)="807e977ff1ae5eb6d830bd2614c28631c2b53b341a3514843c4496ceaf9a2e1700a7a2a605503b04d569c3a6ee1ca4823cb1cd83fc146e91a345a6270ddcd5455b543752d2c8d4e3b4f0d179626ce4acb505e390a2bf13a12d99c47b85e7c24841f15d76af843979213821d2592403cc970be55a980531"}) r5 = socket$inet6_icmp(0xa, 0x2, 0x3a) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000001900)={0x303, 0x33}, 0x4) getcwd(&(0x7f0000001940)=""/34, 0x22) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000001980)={0x0, @in6={{0xa, 0x4e22, 0x5, @remote={0xfe, 0x80, [], 0xbb}, 0x9}}, [0x3f, 0x9, 0x4, 0x7, 0x4, 0x3942, 0x696, 0x8, 0x0, 0x9, 0x100000001, 0x1, 0x74ae6d91, 0x101, 0xffffffffffffff7f]}, &(0x7f0000001a80)=0x100) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000001ac0)={r6, 0x3feee804, 0x40}, 0x8) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000001b00)={r6, 0xb9}, &(0x7f0000001b40)=0x8) getpeername$unix(r5, &(0x7f0000001b80)=@abs, &(0x7f0000001c00)=0x6e) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000001c40)={r7, 0x100000000, 0x3f, 0x1, 0x4, 0x5}, 0x14) getpgid(r2) getdents64(r0, &(0x7f0000001c80)=""/135, 0x87) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000001d40)={r7, 0x52, "a527bced6b70082acf273073810fc8d2cc541635fe6716d0571dc2ece9c45c1becaee93ca9196ef643ed3152cfce8c35474c6c87558276b7ef8909d8339a81f8a2184cb011c4c50ce70d236ec34a211da00c"}, &(0x7f0000001dc0)=0x5a) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000001e00)={@empty, 0x651a, 0x2, 0xff, 0x2, 0x800, 0x200, 0x401}, 0x20) r8 = syz_open_dev$audion(&(0x7f0000001e40)='/dev/audio#\x00', 0x5fa5, 0x4000) ioctl$TIOCSWINSZ(r8, 0x5414, &(0x7f0000001e80)={0xac, 0xe3, 0x5, 0x1000}) openat$cgroup_subtree(r0, &(0x7f0000001ec0)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(r5, 0x891c, &(0x7f0000001f00)={'ip_vti0\x00', {0x2, 0x4e21, @multicast1=0xe0000001}}) 2033/05/18 03:33:41 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:41 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = inotify_init() mkdir(&(0x7f0000042ff6)='./control\x00', 0x0) r3 = inotify_add_watch(r2, &(0x7f000003a000)='./control\x00', 0x20) inotify_rm_watch(r2, r3) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1) r4 = memfd_create(&(0x7f0000000080)='mime_type)\x00', 0x3) ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f0000000100)='veth0_to_team\x00') sendto$inet6(r1, &(0x7f0000000100), 0x0, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r4, 0x84, 0x4, &(0x7f0000000180)=0x42ede20d, 0x4) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r4, 0x84, 0x70, &(0x7f0000000240)={0x0, @in={{0x2, 0x4e21, @multicast1=0xe0000001}}, [0x0, 0x4, 0x1, 0x254, 0x9, 0x6, 0x3]}, &(0x7f00000001c0)=0x100) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000340)={0x0, @in={{0x2, 0x0, @dev={0xac, 0x14, 0x14}}}}, &(0x7f0000000400)=0x98) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000a40)='/dev/hwrng\x00', 0x0, 0x0) connect(0xffffffffffffffff, &(0x7f0000000b40)=@in={0x2}, 0xffffffffffffff33) syz_genetlink_get_family_id$ipvs(&(0x7f0000000480)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000440)={0x10}, 0x7, &(0x7f0000000500)={&(0x7f0000000600)={0x88, 0x0, 0x0, 0x0, 0x0, {0x6}, [@IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller1\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bond_slave_0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local={0xfe, 0x80, [], 0xaa}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8001}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x46}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}]}]}, 0x88}, 0x1}, 0x0) r5 = accept4(r0, 0x0, &(0x7f0000000ac0)=0xfffffc19, 0x0) dup2(r0, r1) fchdir(r5) dup3(r0, r5, 0x80000) 2033/05/18 03:33:41 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500ea11", 0x29}], 0x1) 2033/05/18 03:33:41 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000900", 0x29}], 0x1) [ 576.056213] FAT-fs (loop5): Can't find a valid FAT filesystem [ 576.117385] FAULT_INJECTION: forcing a failure. [ 576.117385] name failslab, interval 1, probability 0, space 0, times 0 [ 576.128712] CPU: 0 PID: 1699 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 576.135893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 576.145238] Call Trace: [ 576.147829] dump_stack+0x1b9/0x294 [ 576.151458] ? dump_stack_print_info.cold.2+0x52/0x52 [ 576.156650] ? __save_stack_trace+0x7e/0xd0 [ 576.160980] should_fail.cold.4+0xa/0x1a [ 576.165044] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 576.170151] ? save_stack+0x43/0xd0 [ 576.173782] ? kasan_kmalloc+0xc4/0xe0 [ 576.177678] ? kmem_cache_alloc_trace+0x152/0x780 [ 576.182525] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 576.187720] ? __list_lru_init+0x456/0x790 [ 576.191954] ? sget_userns+0x73a/0xf00 [ 576.195848] ? graph_lock+0x170/0x170 [ 576.199651] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 576.204407] ? do_mount+0x564/0x3070 [ 576.208117] ? ksys_mount+0x12d/0x140 [ 576.211914] ? __x64_sys_mount+0xbe/0x150 [ 576.216059] ? do_syscall_64+0x1b1/0x800 [ 576.220120] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 576.225489] ? find_held_lock+0x36/0x1c0 [ 576.229562] ? __lock_is_held+0xb5/0x140 [ 576.233622] ? spi_print_msg+0x64e/0x73e [ 576.237696] ? check_same_owner+0x320/0x320 [ 576.242024] ? rcu_note_context_switch+0x710/0x710 [ 576.246962] __should_failslab+0x124/0x180 [ 576.251202] should_failslab+0x9/0x14 [ 576.255007] kmem_cache_alloc_trace+0x2cb/0x780 [ 576.259675] ? __kmalloc_node+0x33/0x70 [ 576.263651] ? __kmalloc_node+0x33/0x70 [ 576.267624] ? rcu_read_lock_sched_held+0x108/0x120 [ 576.272644] __memcg_init_list_lru_node+0x17d/0x2c0 [ 576.277661] ? kvfree_rcu+0x20/0x20 [ 576.281289] ? __kmalloc_node+0x47/0x70 [ 576.285267] __list_lru_init+0x456/0x790 [ 576.289334] ? list_lru_destroy+0x4c0/0x4c0 [ 576.293658] ? mark_held_locks+0xc9/0x160 [ 576.297810] ? __raw_spin_lock_init+0x1c/0x100 [ 576.302397] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 576.307416] ? __lockdep_init_map+0x105/0x590 [ 576.311915] ? lockdep_init_map+0x9/0x10 [ 576.315978] sget_userns+0x73a/0xf00 [ 576.319688] ? get_anon_bdev+0x2f0/0x2f0 [ 576.323757] ? destroy_unused_super.part.11+0x110/0x110 [ 576.329119] ? __alloc_pages_nodemask+0xacf/0xd70 [ 576.333967] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 576.338986] ? kasan_check_read+0x11/0x20 [ 576.343136] ? cap_capable+0x1f9/0x260 [ 576.347035] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.352573] ? security_capable+0x99/0xc0 [ 576.356727] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.362264] ? ns_capable_common+0x13f/0x170 [ 576.366676] ? get_anon_bdev+0x2f0/0x2f0 [ 576.370785] sget+0x10b/0x150 [ 576.373935] ? fuse_get_root_inode+0x190/0x190 [ 576.378518] mount_nodev+0x33/0x110 [ 576.382159] fuse_mount+0x2c/0x40 [ 576.385627] mount_fs+0xae/0x328 [ 576.388997] vfs_kern_mount.part.34+0xd4/0x4d0 [ 576.393593] ? may_umount+0xb0/0xb0 [ 576.397222] ? _raw_read_unlock+0x22/0x30 [ 576.401365] ? __get_fs_type+0x97/0xc0 [ 576.405256] do_mount+0x564/0x3070 [ 576.408802] ? copy_mount_string+0x40/0x40 [ 576.413043] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 576.417801] ? retint_kernel+0x10/0x10 [ 576.421695] ? copy_mount_options+0x213/0x380 [ 576.426191] ? write_comp_data+0x70/0x70 [ 576.430253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.435786] ? copy_mount_options+0x285/0x380 [ 576.440285] ksys_mount+0x12d/0x140 [ 576.443916] __x64_sys_mount+0xbe/0x150 [ 576.447890] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 576.452906] do_syscall_64+0x1b1/0x800 [ 576.456794] ? finish_task_switch+0x1ca/0x840 [ 576.461290] ? syscall_return_slowpath+0x5c0/0x5c0 [ 576.466223] ? syscall_return_slowpath+0x30f/0x5c0 [ 576.471158] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 576.476527] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 576.481381] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 576.486570] RIP: 0033:0x455a09 [ 576.489756] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 576.497470] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 576.504737] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 576.512000] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 2033/05/18 03:33:42 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 576.519266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 576.526536] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:42 executing program 5 (fault-call:3 fault-nth:21): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:42 executing program 3: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x40, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffff9c, 0x84, 0xe, &(0x7f0000000040)={0x0, 0x0, 0x14eaf480, 0x1, 0x7, 0x8ba6, 0x8, 0x0, {0x0, @in6={{0xa, 0x4e23, 0x7, @local={0xfe, 0x80, [], 0xaa}, 0x7c}}, 0x6, 0x3e01, 0x4, 0x8, 0x100}}, &(0x7f0000000100)=0xb0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000140)={r1, 0x8000}, &(0x7f0000000180)=0x8) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback={0x0, 0x1}, @in=@multicast2=0xe0000002, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0x0, 0x2b}, 0x0, @in6=@dev={0xfe, 0x80}}}, 0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000400)={{{@in6=@ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14}}, @in=@multicast1=0xe0000001, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0x0, 0x2b}, 0x0, @in6=@ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}}, 0xe8) [ 576.861200] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 576.881067] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 576.944655] FAT-fs (loop5): bogus number of reserved sectors [ 576.950777] FAT-fs (loop5): Can't find a valid FAT filesystem [ 576.981747] FAULT_INJECTION: forcing a failure. [ 576.981747] name failslab, interval 1, probability 0, space 0, times 0 [ 576.993123] CPU: 0 PID: 1722 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 577.000309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 577.009657] Call Trace: [ 577.012249] dump_stack+0x1b9/0x294 [ 577.015881] ? dump_stack_print_info.cold.2+0x52/0x52 [ 577.021074] ? __save_stack_trace+0x7e/0xd0 [ 577.025404] should_fail.cold.4+0xa/0x1a [ 577.029475] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 577.034601] ? save_stack+0x43/0xd0 [ 577.038241] ? kasan_kmalloc+0xc4/0xe0 [ 577.042133] ? kmem_cache_alloc_trace+0x152/0x780 [ 577.046986] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 577.052188] ? __list_lru_init+0x456/0x790 [ 577.056425] ? sget_userns+0x73a/0xf00 [ 577.060319] ? graph_lock+0x170/0x170 [ 577.064118] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 577.068873] ? do_mount+0x564/0x3070 [ 577.072588] ? ksys_mount+0x12d/0x140 [ 577.076392] ? __x64_sys_mount+0xbe/0x150 [ 577.080542] ? do_syscall_64+0x1b1/0x800 [ 577.084602] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 577.089969] ? find_held_lock+0x36/0x1c0 [ 577.094034] ? __lock_is_held+0xb5/0x140 [ 577.098119] ? check_same_owner+0x320/0x320 [ 577.102457] ? rcu_note_context_switch+0x710/0x710 [ 577.107410] __should_failslab+0x124/0x180 [ 577.111659] should_failslab+0x9/0x14 [ 577.115468] kmem_cache_alloc_trace+0x2cb/0x780 [ 577.120141] ? __kmalloc_node+0x33/0x70 [ 577.124119] ? __kmalloc_node+0x33/0x70 [ 577.128095] ? rcu_read_lock_sched_held+0x108/0x120 [ 577.133115] __memcg_init_list_lru_node+0x17d/0x2c0 [ 577.138134] ? kvfree_rcu+0x20/0x20 [ 577.141773] ? __kmalloc_node+0x47/0x70 [ 577.145761] __list_lru_init+0x456/0x790 [ 577.149842] ? list_lru_destroy+0x4c0/0x4c0 [ 577.154170] ? mark_held_locks+0xc9/0x160 [ 577.158326] ? __raw_spin_lock_init+0x1c/0x100 [ 577.162937] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 577.167953] ? __lockdep_init_map+0x105/0x590 [ 577.172440] ? lockdep_init_map+0x9/0x10 [ 577.176496] sget_userns+0x73a/0xf00 [ 577.180200] ? get_anon_bdev+0x2f0/0x2f0 [ 577.184251] ? destroy_unused_super.part.11+0x110/0x110 [ 577.189603] ? __alloc_pages_nodemask+0xacf/0xd70 [ 577.194434] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 577.199440] ? kasan_check_read+0x11/0x20 [ 577.203575] ? cap_capable+0x1f9/0x260 [ 577.207463] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 577.212993] ? security_capable+0x99/0xc0 [ 577.217135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 577.222660] ? ns_capable_common+0x13f/0x170 [ 577.227053] ? get_anon_bdev+0x2f0/0x2f0 [ 577.231096] sget+0x10b/0x150 [ 577.234189] ? fuse_get_root_inode+0x190/0x190 [ 577.238754] mount_nodev+0x33/0x110 [ 577.242368] fuse_mount+0x2c/0x40 [ 577.245808] mount_fs+0xae/0x328 [ 577.249163] vfs_kern_mount.part.34+0xd4/0x4d0 [ 577.253730] ? may_umount+0xb0/0xb0 [ 577.257343] ? _raw_read_unlock+0x22/0x30 [ 577.261478] ? __get_fs_type+0x97/0xc0 [ 577.265353] do_mount+0x564/0x3070 [ 577.268885] ? copy_mount_string+0x40/0x40 [ 577.273108] ? rcu_pm_notify+0xc0/0xc0 [ 577.276988] ? copy_mount_options+0x5f/0x380 [ 577.281396] ? rcu_read_lock_sched_held+0x108/0x120 [ 577.286405] ? kmem_cache_alloc_trace+0x616/0x780 [ 577.291235] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 577.296759] ? _copy_from_user+0xdf/0x150 [ 577.300894] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 577.306414] ? copy_mount_options+0x285/0x380 [ 577.310895] ksys_mount+0x12d/0x140 [ 577.314508] __x64_sys_mount+0xbe/0x150 [ 577.318474] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 577.323566] do_syscall_64+0x1b1/0x800 [ 577.327439] ? finish_task_switch+0x1ca/0x840 [ 577.331923] ? syscall_return_slowpath+0x5c0/0x5c0 [ 577.336836] ? syscall_return_slowpath+0x30f/0x5c0 [ 577.341753] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 577.347103] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 577.351944] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 577.357121] RIP: 0033:0x455a09 [ 577.360296] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 577.367991] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 577.375257] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 577.382513] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 577.389769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 2033/05/18 03:33:43 executing program 2: r0 = epoll_create1(0x7fffd) fcntl$getflags(r0, 0x401) 2033/05/18 03:33:43 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:43 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:43 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500ffff", 0x29}], 0x1) 2033/05/18 03:33:43 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:43 executing program 3: mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000000000)=0xfffffffffffffff9, 0x93a, 0x0) mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) 2033/05/18 03:33:43 executing program 5 (fault-call:3 fault-nth:22): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:43 executing program 6: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10) sendto$inet(r0, &(0x7f0000000280), 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10) setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000040)=0x3, 0x4) setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000000), 0x4) socket$inet(0x2, 0x0, 0x200) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x28e00, 0x0) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000100)) [ 577.397027] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:43 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x454ecb98cab12084, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f00000019c0)={0x2, 0x0, 0x0, 0x101}) ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000001a00)={0x4, r1, 0x1, 0x6}) ioctl$sock_bt(r0, 0x8907, &(0x7f0000001940)="9ab794ee7495597458de16e1012842d65e9953f0f0229f970bba70702fa1367f0664f15a5a28424d909f83673e25ccf5053bd3615ffdaad9c470e94fdfe59bad44691135bce3f8a7f8df936f3b85d17378978cce9646bee84117541ceb0d5dc4a4c4e4150abb") ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f0000000100)={r2, 0x2}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x80000000000000, 0x0) ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000040)={0x0, 0x3}) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000180)=0x0) process_vm_readv(r4, &(0x7f0000000640)=[{&(0x7f0000000200)=""/29, 0x1d}, {&(0x7f0000000240)=""/231, 0xe7}, {&(0x7f0000000340)=""/94, 0x5e}, {&(0x7f0000000480)=""/129, 0x81}, {&(0x7f00000003c0)=""/59, 0x3b}, {&(0x7f0000000540)=""/216, 0xd8}], 0x6, &(0x7f00000018c0)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/11, 0xb}, {&(0x7f00000016c0)=""/170, 0xaa}, {&(0x7f0000001780)=""/86, 0x56}, {&(0x7f0000001800)=""/191, 0xbf}], 0x5, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f00005befdc)) r5 = syz_open_pts(r3, 0x22001) ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f0000000140)) setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000000080)=0xffff, 0x4) write(r5, &(0x7f0000000440)="e5c7f3ab811543004b4653ea6272de2467f508910bf1340573854d4499064c671be8c8c3b3ece5d56773b95d29e4847eba6ec9f629d76f1b7998a12c0234af0a", 0x40) 2033/05/18 03:33:43 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x7000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:43 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500f0ff", 0x29}], 0x1) 2033/05/18 03:33:43 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x2040, 0x0) getsockopt$ipx_IPX_TYPE(r1, 0x100, 0x1, &(0x7f0000000080), &(0x7f0000000240)=0x4) sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000002000010200010000000000000220000000000000000000000a00000008000b0000000000140011006966623000000000000000000000000008000100e000000108000d0000000000addf2fc00031f18dde58e6146ac8b2ea159a5cc8828db1bae706704e9f76d764e9d28e44ff2bc55eb8479482e632f7331f8b093761196b3543611e127415cf95106604b5dde5c98e119d1c6691d5528526d6efd3f3fe5fb9b7c191edb6f2600bdcb40a61cb636cbd6a032c6d25269199e8fc0d545b08c6c2734e"], 0x4c}, 0x1}, 0x0) 2033/05/18 03:33:43 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 577.675263] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:43 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 577.783825] FAT-fs (loop5): bogus number of reserved sectors [ 577.789856] FAT-fs (loop5): Can't find a valid FAT filesystem [ 577.815256] FAULT_INJECTION: forcing a failure. [ 577.815256] name failslab, interval 1, probability 0, space 0, times 0 [ 577.826625] CPU: 0 PID: 1747 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 2033/05/18 03:33:43 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x640000, 0x0) ioctl$RNDADDTOENTCNT(r1, 0x40045201, &(0x7f0000000140)=0x3) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000003c0)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000000c0)={[{}, {0x0, 0x0, 0x0, 0x0, 0x80000}]}) socket$rds(0x15, 0x5, 0x0) [ 577.833811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 577.843158] Call Trace: [ 577.845750] dump_stack+0x1b9/0x294 [ 577.849385] ? dump_stack_print_info.cold.2+0x52/0x52 [ 577.854590] ? __save_stack_trace+0x7e/0xd0 [ 577.858924] should_fail.cold.4+0xa/0x1a [ 577.862989] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 577.868098] ? save_stack+0x43/0xd0 [ 577.871780] ? kasan_kmalloc+0xc4/0xe0 [ 577.875721] ? kmem_cache_alloc_trace+0x152/0x780 [ 577.880565] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 577.885751] ? __list_lru_init+0x456/0x790 [ 577.889988] ? sget_userns+0x73a/0xf00 [ 577.893874] ? graph_lock+0x170/0x170 [ 577.897675] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 577.902438] ? do_mount+0x564/0x3070 [ 577.906151] ? ksys_mount+0x12d/0x140 [ 577.909949] ? __x64_sys_mount+0xbe/0x150 [ 577.914096] ? do_syscall_64+0x1b1/0x800 [ 577.918156] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 577.923539] ? find_held_lock+0x36/0x1c0 [ 577.927621] ? __lock_is_held+0xb5/0x140 [ 577.931697] ? check_same_owner+0x320/0x320 [ 577.936020] ? rcu_note_context_switch+0x710/0x710 [ 577.940958] __should_failslab+0x124/0x180 [ 577.945195] should_failslab+0x9/0x14 [ 577.948999] kmem_cache_alloc_trace+0x2cb/0x780 [ 577.953667] ? __kmalloc_node+0x33/0x70 [ 577.957638] ? __kmalloc_node+0x33/0x70 [ 577.961614] ? rcu_read_lock_sched_held+0x108/0x120 [ 577.966637] __memcg_init_list_lru_node+0x17d/0x2c0 [ 577.971704] ? kvfree_rcu+0x20/0x20 [ 577.975368] ? __kmalloc_node+0x47/0x70 [ 577.979353] __list_lru_init+0x456/0x790 [ 577.983430] ? list_lru_destroy+0x4c0/0x4c0 [ 577.987754] ? mark_held_locks+0xc9/0x160 [ 577.991909] ? __raw_spin_lock_init+0x1c/0x100 [ 577.996495] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 578.001514] ? __lockdep_init_map+0x105/0x590 [ 578.006009] ? lockdep_init_map+0x9/0x10 [ 578.010077] sget_userns+0x73a/0xf00 [ 578.013788] ? get_anon_bdev+0x2f0/0x2f0 [ 578.017855] ? destroy_unused_super.part.11+0x110/0x110 [ 578.023220] ? __alloc_pages_nodemask+0xacf/0xd70 [ 578.028071] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 578.033090] ? kasan_check_read+0x11/0x20 [ 578.037239] ? cap_capable+0x1f9/0x260 [ 578.041133] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 578.046668] ? security_capable+0x99/0xc0 [ 578.050823] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 578.056363] ? ns_capable_common+0x13f/0x170 [ 578.060773] ? get_anon_bdev+0x2f0/0x2f0 [ 578.064832] sget+0x10b/0x150 [ 578.067944] ? fuse_get_root_inode+0x190/0x190 [ 578.072530] mount_nodev+0x33/0x110 [ 578.076160] fuse_mount+0x2c/0x40 [ 578.079619] mount_fs+0xae/0x328 [ 578.082992] vfs_kern_mount.part.34+0xd4/0x4d0 [ 578.087576] ? may_umount+0xb0/0xb0 [ 578.091556] ? _raw_read_unlock+0x22/0x30 [ 578.095702] ? __get_fs_type+0x97/0xc0 [ 578.099596] do_mount+0x564/0x3070 [ 578.103140] ? copy_mount_string+0x40/0x40 [ 578.107379] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 578.112143] ? retint_kernel+0x10/0x10 [ 578.116038] ? copy_mount_options+0x1a1/0x380 [ 578.120625] ? __sanitizer_cov_trace_pc+0x3b/0x50 [ 578.125475] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 578.131014] ? copy_mount_options+0x285/0x380 [ 578.135514] ksys_mount+0x12d/0x140 [ 578.139146] __x64_sys_mount+0xbe/0x150 [ 578.143120] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 578.148138] do_syscall_64+0x1b1/0x800 [ 578.152024] ? finish_task_switch+0x1ca/0x840 [ 578.156525] ? syscall_return_slowpath+0x5c0/0x5c0 [ 578.161459] ? syscall_return_slowpath+0x30f/0x5c0 [ 578.166393] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 578.171816] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 578.176691] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 578.181879] RIP: 0033:0x455a09 [ 578.185065] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 578.192774] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 578.200042] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 578.207314] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 578.214584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 578.221851] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 578.336486] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:44 executing program 2: r0 = socket(0x10, 0x803, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") pipe2(&(0x7f0000000300)={0xffffffffffffffff}, 0x4000) ioctl$BLKDISCARD(r1, 0x1277, &(0x7f0000000340)=0x100000001) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x20) ioctl$EVIOCGABS20(r2, 0x80184560, &(0x7f00000000c0)=""/18) getpeername$packet(r2, &(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000001780)=0x14) ioctl$TUNSETIFINDEX(r2, 0x400454da, &(0x7f00000017c0)=r3) r4 = socket$inet_sctp(0x2, 0x200005, 0x84) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f00000002c0)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3}) ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f0000000000)) munlockall() accept4$packet(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000200)=0x14, 0x0) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000280)={@remote={0xfe, 0x80, [], 0xbb}, 0x45, r5}) sendmsg$inet_sctp(r4, &(0x7f00000004c0)={&(0x7f0000000080)=@in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10, &(0x7f00000000c0), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1800200000000000840000000500000020000000000010009358d8cd98578794c3482a55b45fec7d4104df3e71a7e2e17286ba0a7e6bba9729e41367a63dbcf1abe56c939658f716d55248a1d1988d044fb7451069b0d0b5771eab"], 0x1d5}, 0x0) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil}) 2033/05/18 03:33:44 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:44 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x400000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:44 executing program 5 (fault-call:3 fault-nth:23): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:44 executing program 3: socketpair$ax25(0x3, 0x3, 0x7, &(0x7f0000000140)={0xffffffffffffffff}) preadv(r0, &(0x7f00000006c0), 0x3, 0x23) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000000)="4626262c8523bf012cf66f") mmap(&(0x7f0000412000/0x3000)=nil, 0x3000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f00000002c0)) mlock2(&(0x7f000092c000/0x14000)=nil, 0x14000, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000300)=ANY=[@ANYRES32=0x0, @ANYBLOB="17000000e2ed9e241f9a07d42c4cde600ba1a34640dae08d9f91b80502e4e7ce0c685948bef28427b0383de133322c3332acb04bb797e617ffe039490c311d5b8d330b7d0af985d3f6f732d0a422b63f5dd21cce3220d7b6c994d74c04a4379f8dda1d31d3aec30842c5b12dd48ab5917dce8e69c4888938a56ad4ebe53fe2"], &(0x7f0000000180)=0x1f) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r2, @in={{0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x6, 0x7fffffff, 0x4, 0xc235}, &(0x7f0000000280)=0x98) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000040)=[@in6={0xa, 0x5, 0x294, @dev={0xfe, 0x80, [], 0x18}, 0xa5}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x20}}, @in={0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}, @in={0x2, 0x4e23, @broadcast=0xffffffff}, @in={0x2, 0x4e21}, @in={0x2, 0x4e23, @rand_addr=0x7}], 0x6c) ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000100)) mlockall(0x4) r3 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x0, 0x0) ioctl$VT_DISALLOCATE(r3, 0x5608) 2033/05/18 03:33:44 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:44 executing program 6: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0xb1, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x11, &(0x7f0000000000)={0x0, 'syz_tun\x00'}, 0x18) r2 = openat$cgroup_type(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.type\x00', 0x2, 0x0) tee(r0, r2, 0x9, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000000c0)={0x8, 0x200, 0x7d, 0x71, 0x0}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, &(0x7f00000001c0)={r4, 0x10000, 0x10, 0x2085, 0x7}, &(0x7f0000000200)=0x18) 2033/05/18 03:33:44 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:44 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x100000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:44 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 578.655944] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:44 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025020000", 0x29}], 0x1) 2033/05/18 03:33:44 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:44 executing program 2: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setreuid(r1, r1) r2 = inotify_init1(0x0) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$getownex(r2, 0x10, &(0x7f0000000300)={0x0, 0x0}) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x78) tkill(r3, 0x12) [ 578.712733] FAT-fs (loop5): bogus number of reserved sectors [ 578.718697] FAT-fs (loop5): Can't find a valid FAT filesystem [ 578.765222] FAULT_INJECTION: forcing a failure. [ 578.765222] name failslab, interval 1, probability 0, space 0, times 0 [ 578.776712] CPU: 0 PID: 1783 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 578.783898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 578.793242] Call Trace: [ 578.795832] dump_stack+0x1b9/0x294 [ 578.799463] ? dump_stack_print_info.cold.2+0x52/0x52 [ 578.804656] ? __save_stack_trace+0x7e/0xd0 [ 578.808980] should_fail.cold.4+0xa/0x1a [ 578.813040] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 578.818143] ? save_stack+0x43/0xd0 [ 578.821772] ? kasan_kmalloc+0xc4/0xe0 [ 578.825661] ? kmem_cache_alloc_trace+0x152/0x780 [ 578.830503] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 578.835688] ? __list_lru_init+0x456/0x790 [ 578.839920] ? sget_userns+0x73a/0xf00 [ 578.843806] ? graph_lock+0x170/0x170 [ 578.847602] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 578.852358] ? do_mount+0x564/0x3070 [ 578.856071] ? ksys_mount+0x12d/0x140 [ 578.859866] ? __x64_sys_mount+0xbe/0x150 [ 578.864015] ? do_syscall_64+0x1b1/0x800 [ 578.868075] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 578.873441] ? find_held_lock+0x36/0x1c0 [ 578.877508] ? __lock_is_held+0xb5/0x140 [ 578.881583] ? check_same_owner+0x320/0x320 [ 578.885909] ? rcu_note_context_switch+0x710/0x710 [ 578.891418] __should_failslab+0x124/0x180 [ 578.895657] should_failslab+0x9/0x14 [ 578.899629] kmem_cache_alloc_trace+0x2cb/0x780 [ 578.904294] ? __kmalloc_node+0x33/0x70 [ 578.908265] ? __kmalloc_node+0x33/0x70 [ 578.912240] ? rcu_read_lock_sched_held+0x108/0x120 [ 578.917258] __memcg_init_list_lru_node+0x17d/0x2c0 [ 578.922276] ? kvfree_rcu+0x20/0x20 [ 578.925901] ? __kmalloc_node+0x47/0x70 [ 578.929877] __list_lru_init+0x456/0x790 [ 578.933940] ? list_lru_destroy+0x4c0/0x4c0 [ 578.938263] ? mark_held_locks+0xc9/0x160 [ 578.942412] ? __raw_spin_lock_init+0x1c/0x100 [ 578.946996] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 578.952012] ? __lockdep_init_map+0x105/0x590 [ 578.956507] ? lockdep_init_map+0x9/0x10 [ 578.960571] sget_userns+0x73a/0xf00 [ 578.964281] ? get_anon_bdev+0x2f0/0x2f0 [ 578.968353] ? destroy_unused_super.part.11+0x110/0x110 [ 578.973715] ? __alloc_pages_nodemask+0xacf/0xd70 [ 578.978560] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 578.983581] ? kasan_check_read+0x11/0x20 [ 578.987730] ? cap_capable+0x1f9/0x260 [ 578.991623] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 578.997160] ? security_capable+0x99/0xc0 [ 579.001311] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 579.006850] ? ns_capable_common+0x13f/0x170 [ 579.011260] ? get_anon_bdev+0x2f0/0x2f0 [ 579.015317] sget+0x10b/0x150 [ 579.018431] ? fuse_get_root_inode+0x190/0x190 [ 579.023009] mount_nodev+0x33/0x110 [ 579.026638] fuse_mount+0x2c/0x40 [ 579.030088] mount_fs+0xae/0x328 [ 579.033460] vfs_kern_mount.part.34+0xd4/0x4d0 [ 579.038041] ? may_umount+0xb0/0xb0 [ 579.041668] ? _raw_read_unlock+0x22/0x30 [ 579.045809] ? __get_fs_type+0x97/0xc0 [ 579.049702] do_mount+0x564/0x3070 [ 579.053246] ? copy_mount_string+0x40/0x40 [ 579.057489] ? rcu_pm_notify+0xc0/0xc0 [ 579.061385] ? copy_mount_options+0x5f/0x380 [ 579.065804] ? rcu_read_lock_sched_held+0x108/0x120 [ 579.070817] ? kmem_cache_alloc_trace+0x616/0x780 [ 579.075664] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 579.081202] ? _copy_from_user+0xdf/0x150 [ 579.085356] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 579.090888] ? copy_mount_options+0x285/0x380 [ 579.095387] ksys_mount+0x12d/0x140 [ 579.099017] __x64_sys_mount+0xbe/0x150 [ 579.102989] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 579.108004] do_syscall_64+0x1b1/0x800 [ 579.111888] ? finish_task_switch+0x1ca/0x840 [ 579.116384] ? syscall_return_slowpath+0x5c0/0x5c0 [ 579.121317] ? syscall_return_slowpath+0x30f/0x5c0 [ 579.126252] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 579.131618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 579.136464] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 579.141646] RIP: 0033:0x455a09 [ 579.144831] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 579.152539] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 579.159803] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 2033/05/18 03:33:44 executing program 3: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x2, 0x100) accept$packet(0xffffffffffffff9c, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f00000013c0)=0x14) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000001400)={@empty, 0x70, r1}) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") clock_getres(0xffffffffc0000003, &(0x7f0000000080)) [ 579.167067] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 579.174336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 579.181601] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:44 executing program 5 (fault-call:3 fault-nth:24): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:44 executing program 6: mlockall(0x2) r0 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0) inotify_add_watch(r0, &(0x7f0000000140)='./file0\x00', 0x10) fallocate(r0, 0x1, 0x0, 0x4d) fallocate(r0, 0x1, 0x0, 0x7) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x1, 0x51, r0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e20, @multicast1=0xe0000001}, @in6={0xa, 0x4e22, 0x5, @loopback={0x0, 0x1}, 0x8}, @in6={0xa, 0x4e22, 0x2, @mcast2={0xff, 0x2, [], 0x1}, 0x80000000}, @in={0x2, 0x4e20, @broadcast=0xffffffff}, @in6={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, [], 0x1a}, 0x6}, @in6={0xa, 0x4e23, 0x8000, @mcast1={0xff, 0x1, [], 0x1}, 0x7ff}, @in6={0xa, 0x4e21, 0x9, @mcast1={0xff, 0x1, [], 0x1}, 0x7}, @in6={0xa, 0x4e20, 0x5, @remote={0xfe, 0x80, [], 0xbb}, 0x401}, @in={0x2, 0x4e22, @rand_addr=0x3}, @in6={0xa, 0x4e21, 0x10001, @mcast2={0xff, 0x2, [], 0x1}, 0x3}], 0xf4) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000100)=0x1) ioctl$LOOP_SET_FD(r0, 0x4c00, r0) 2033/05/18 03:33:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:45 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x4000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 579.401119] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 579.516274] FAT-fs (loop5): bogus number of reserved sectors [ 579.522212] FAT-fs (loop5): Can't find a valid FAT filesystem [ 579.546077] FAULT_INJECTION: forcing a failure. [ 579.546077] name failslab, interval 1, probability 0, space 0, times 0 [ 579.557610] CPU: 0 PID: 1820 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 579.564826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 579.574178] Call Trace: [ 579.576775] dump_stack+0x1b9/0x294 [ 579.580421] ? dump_stack_print_info.cold.2+0x52/0x52 [ 579.585623] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 579.590827] should_fail.cold.4+0xa/0x1a [ 579.594891] ? is_bpf_text_address+0xd7/0x170 [ 579.599397] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 579.604542] ? unwind_get_return_address+0x61/0xa0 [ 579.609476] ? __save_stack_trace+0x7e/0xd0 [ 579.613798] ? graph_lock+0x170/0x170 [ 579.617605] ? find_held_lock+0x36/0x1c0 [ 579.621670] ? __lock_is_held+0xb5/0x140 [ 579.625746] ? check_same_owner+0x320/0x320 [ 579.630074] ? rcu_note_context_switch+0x710/0x710 [ 579.635013] __should_failslab+0x124/0x180 [ 579.639257] should_failslab+0x9/0x14 [ 579.643070] kmem_cache_alloc_trace+0x2cb/0x780 [ 579.647742] ? __kmalloc_node+0x33/0x70 [ 579.651724] ? __kmalloc_node+0x33/0x70 [ 579.655702] ? rcu_read_lock_sched_held+0x108/0x120 [ 579.660727] __memcg_init_list_lru_node+0x17d/0x2c0 [ 579.665746] ? kvfree_rcu+0x20/0x20 [ 579.669378] ? __kmalloc_node+0x47/0x70 [ 579.673360] __list_lru_init+0x456/0x790 [ 579.677437] ? list_lru_destroy+0x4c0/0x4c0 [ 579.681764] ? mark_held_locks+0xc9/0x160 [ 579.686079] ? __raw_spin_lock_init+0x1c/0x100 [ 579.690665] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 579.695689] ? lockdep_init_map+0x9/0x10 [ 579.699759] sget_userns+0x767/0xf00 [ 579.703470] ? get_anon_bdev+0x2f0/0x2f0 [ 579.707540] ? destroy_unused_super.part.11+0x110/0x110 [ 579.712905] ? __alloc_pages_nodemask+0xacf/0xd70 [ 579.717755] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 579.722787] ? kasan_check_read+0x11/0x20 [ 579.726940] ? cap_capable+0x1f9/0x260 [ 579.730836] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 579.736371] ? security_capable+0x99/0xc0 [ 579.740524] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 579.746061] ? ns_capable_common+0x13f/0x170 [ 579.750473] ? get_anon_bdev+0x2f0/0x2f0 [ 579.754534] sget+0x10b/0x150 [ 579.757644] ? fuse_get_root_inode+0x190/0x190 [ 579.762229] mount_nodev+0x33/0x110 [ 579.765861] fuse_mount+0x2c/0x40 [ 579.769330] mount_fs+0xae/0x328 [ 579.772706] vfs_kern_mount.part.34+0xd4/0x4d0 [ 579.777294] ? may_umount+0xb0/0xb0 [ 579.780923] ? _raw_read_unlock+0x22/0x30 [ 579.785067] ? __get_fs_type+0x97/0xc0 [ 579.788958] do_mount+0x564/0x3070 [ 579.792506] ? copy_mount_string+0x40/0x40 [ 579.796744] ? rcu_pm_notify+0xc0/0xc0 [ 579.800639] ? copy_mount_options+0x5f/0x380 [ 579.805063] ? rcu_read_lock_sched_held+0x108/0x120 [ 579.810080] ? kmem_cache_alloc_trace+0x616/0x780 [ 579.814933] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 579.820470] ? copy_mount_options+0x285/0x380 [ 579.824969] ksys_mount+0x12d/0x140 [ 579.828602] __x64_sys_mount+0xbe/0x150 [ 579.832576] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 579.837710] do_syscall_64+0x1b1/0x800 [ 579.841600] ? finish_task_switch+0x1ca/0x840 [ 579.846099] ? syscall_return_slowpath+0x5c0/0x5c0 [ 579.851036] ? syscall_return_slowpath+0x30f/0x5c0 [ 579.855970] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 579.861342] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 579.866192] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 579.871378] RIP: 0033:0x455a09 [ 579.874586] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 579.882297] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 579.889563] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 579.896827] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 579.904092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 579.911362] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:45 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:45 executing program 3: r0 = socket(0x10, 0x2, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0xa64fba5c48254b78, 0x0) ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000080)) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/udp6\x00') sendfile(r0, r2, &(0x7f0000000000), 0x80000002) 2033/05/18 03:33:45 executing program 2: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xffffffffffffffdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:45 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x7, 0x800, 0x8) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f00000003c0)={@empty, 0x0}, &(0x7f0000000400)=0x14) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000440)={@remote={0xfe, 0x80, [], 0xbb}, r2}, 0x14) sendmsg$nl_generic(r0, &(0x7f0000000000)={&(0x7f0000a4c000)={0x10, 0xf0}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x25, 0x3, 0x0, 0x0, {0x405801}}, 0x14}, 0x1}, 0x0) 2033/05/18 03:33:45 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:45 executing program 5 (fault-call:3 fault-nth:25): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:45 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025009eff", 0x29}], 0x1) 2033/05/18 03:33:45 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000280)='/dev/snd/controlC#\x00', 0x400009, 0x201ffd) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc008551b, &(0x7f00000000c0)={{0x9, 0x0, 0x0, 0x0, "d24867de5bdd032be86e073db2eccb959e8fee0ea444fbb03a176fb6e53b456df5b13162a55cbdd8dd95b480"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "506d4b95d0d6c48bf01a1a8402a61439529e3b64e553152146896ba6d0c596e413e633507a3ec693358f4371628a44a2cc2c91257fcdc9ebd59d9ef08653a01d", &(0x7f0000000080)='/dev/snd/controlC#\x00', 0x13}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x40) r2 = gettid() sched_setattr(r2, &(0x7f0000000200)={0x30, 0x7, 0x1, 0x8e9, 0x4, 0x8, 0x7, 0x7}, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f00000002c0)) unlinkat(r1, &(0x7f0000000040)='./file0\x00', 0x200) 2033/05/18 03:33:45 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$void(r0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}, 0x4}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x49, &(0x7f0000000000), 0x4) 2033/05/18 03:33:45 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:45 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 580.148537] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:45 executing program 6: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000280)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0)) getpgrp(0x0) r0 = socket$kcm(0x29, 0x5, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000500)) r1 = userfaultfd(0x0) fcntl$getownex(r1, 0x10, &(0x7f0000000340)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000380)) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000003c0)) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000400), &(0x7f0000000440)=0xc) fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000480)) gettid() openat$vcs(0xffffffffffffff9c, &(0x7f0000000580)='/dev/vcs\x00', 0x4000, 0x0) syz_open_dev$amidi(&(0x7f00000005c0)='/dev/amidi#\x00', 0x8000, 0x2180) syz_open_dev$audion(&(0x7f0000000600)='/dev/audio#\x00', 0x3, 0x20a000) openat$urandom(0xffffffffffffff9c, &(0x7f0000000640)='/dev/urandom\x00', 0x2d0180, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000680)='/dev/zero\x00', 0x40000, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/snapshot\x00', 0x40000, 0x0) syz_open_dev$vcsn(&(0x7f0000000740)='/dev/vcs#\x00', 0x73e, 0x24003) syz_open_dev$usbmon(&(0x7f0000000780)='/dev/usbmon#\x00', 0xffffffff, 0x2000) fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffff9c) syz_open_dev$sndmidi(&(0x7f0000000840)='/dev/snd/midiC#D#\x00', 0x3ff, 0x101000) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000940)=0x0) r5 = getpgid(r4) sched_setaffinity(r5, 0x8, &(0x7f00009ad000)=0x1) r6 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x408000, 0x0) ioctl$EVIOCGLED(r6, 0x80404519, &(0x7f0000000180)=""/235) pipe2(&(0x7f0000f61000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x3) r9 = userfaultfd(0x0) ioctl$UFFDIO_API(r9, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r8, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c) read(r7, &(0x7f0000000000)=""/126, 0x7e) ioctl$FIONREAD(r8, 0x541b, &(0x7f0000604ffc)) dup2(r7, r9) write$sndseq(r7, &(0x7f0000000080)=[{0x400, 0x9, 0x8001, 0x2, @tick=0x4, {0x3441e90e, 0x3}, {0x7, 0x2}, @time=@time}, {0x5344, 0x4, 0x0, 0x6, @tick=0xb3c, {0x400, 0x8}, {0x80000001, 0x7fff}, @raw32={[0x9, 0xcbf, 0x4]}}], 0x60) openat$cgroup_procs(r7, &(0x7f0000000100)='cgroup.threads\x00', 0x2, 0x0) 2033/05/18 03:33:45 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x1400000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500f0ff", 0x29}], 0x1) [ 580.280153] FAT-fs (loop5): bogus number of reserved sectors [ 580.286085] FAT-fs (loop5): Can't find a valid FAT filesystem [ 580.314009] FAULT_INJECTION: forcing a failure. [ 580.314009] name failslab, interval 1, probability 0, space 0, times 0 [ 580.325710] CPU: 0 PID: 1849 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 580.332905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 580.342257] Call Trace: [ 580.344849] dump_stack+0x1b9/0x294 [ 580.348477] ? dump_stack_print_info.cold.2+0x52/0x52 [ 580.353671] ? kernel_text_address+0x79/0xf0 [ 580.358076] ? __unwind_start+0x166/0x330 [ 580.362237] should_fail.cold.4+0xa/0x1a [ 580.366300] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 580.371459] ? graph_lock+0x170/0x170 [ 580.375311] ? save_stack+0x43/0xd0 [ 580.378940] ? kasan_kmalloc+0xc4/0xe0 [ 580.382823] ? __kmalloc+0x14e/0x760 [ 580.386536] ? __list_lru_init+0xdd/0x790 [ 580.390686] ? find_held_lock+0x36/0x1c0 [ 580.394752] ? __lock_is_held+0xb5/0x140 [ 580.398827] ? check_same_owner+0x320/0x320 [ 580.403151] ? rcu_note_context_switch+0x710/0x710 [ 580.408081] __should_failslab+0x124/0x180 [ 580.412321] should_failslab+0x9/0x14 [ 580.416122] kmem_cache_alloc_node_trace+0x26f/0x770 [ 580.421229] ? mark_held_locks+0xc9/0x160 [ 580.425380] ? __raw_spin_lock_init+0x1c/0x100 [ 580.429966] __kmalloc_node+0x33/0x70 [ 580.433772] kvmalloc_node+0x6b/0x100 [ 580.437573] __list_lru_init+0x559/0x790 [ 580.441635] ? list_lru_destroy+0x4c0/0x4c0 [ 580.445957] ? mark_held_locks+0xc9/0x160 [ 580.450106] ? __raw_spin_lock_init+0x1c/0x100 [ 580.454687] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 580.459708] ? lockdep_init_map+0x9/0x10 [ 580.463770] sget_userns+0x767/0xf00 [ 580.467480] ? get_anon_bdev+0x2f0/0x2f0 [ 580.471615] ? destroy_unused_super.part.11+0x110/0x110 [ 580.477026] ? __alloc_pages_nodemask+0xacf/0xd70 [ 580.481872] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 580.486892] ? kasan_check_read+0x11/0x20 [ 580.491042] ? cap_capable+0x1f9/0x260 [ 580.494935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 580.500472] ? security_capable+0x99/0xc0 [ 580.504622] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 580.510157] ? ns_capable_common+0x13f/0x170 [ 580.514569] ? get_anon_bdev+0x2f0/0x2f0 [ 580.518628] sget+0x10b/0x150 [ 580.521737] ? fuse_get_root_inode+0x190/0x190 [ 580.526323] mount_nodev+0x33/0x110 [ 580.529951] fuse_mount+0x2c/0x40 [ 580.533403] mount_fs+0xae/0x328 [ 580.536801] vfs_kern_mount.part.34+0xd4/0x4d0 [ 580.541385] ? may_umount+0xb0/0xb0 [ 580.545015] ? _raw_read_unlock+0x22/0x30 [ 580.549160] ? __get_fs_type+0x97/0xc0 [ 580.553066] do_mount+0x564/0x3070 [ 580.556611] ? copy_mount_string+0x40/0x40 [ 580.560846] ? rcu_pm_notify+0xc0/0xc0 [ 580.564739] ? copy_mount_options+0x5f/0x380 [ 580.569148] ? rcu_read_lock_sched_held+0x108/0x120 [ 580.574164] ? kmem_cache_alloc_trace+0x616/0x780 [ 580.579016] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 580.584550] ? copy_mount_options+0x285/0x380 [ 580.589046] ksys_mount+0x12d/0x140 [ 580.592678] __x64_sys_mount+0xbe/0x150 [ 580.596650] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 580.601669] do_syscall_64+0x1b1/0x800 [ 580.605561] ? finish_task_switch+0x1ca/0x840 [ 580.610059] ? syscall_return_slowpath+0x5c0/0x5c0 [ 580.614996] ? syscall_return_slowpath+0x30f/0x5c0 [ 580.619930] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 580.625300] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 580.630145] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 580.635331] RIP: 0033:0x455a09 [ 580.638513] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 580.646224] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 580.653487] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 580.660751] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 580.668014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 580.675281] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 580.778661] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:46 executing program 5 (fault-call:3 fault-nth:26): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:46 executing program 3: r0 = epoll_create1(0x0) r1 = socket(0x10, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1a000, r1, &(0x7f0000e47000)) epoll_wait(r0, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x1) 2033/05/18 03:33:46 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:46 executing program 2: r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x6, 0x400) bind$rds(r0, &(0x7f00000000c0)={0x2, 0x4e22, @multicast2=0xe0000002}, 0x10) r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x8, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x2) ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, &(0x7f00000001c0)="0df8765629ac7570498ddd6a653908412b0f8941e8aa8477dc9f437c1b64e29326385a28e328cfa8110aaed42cbaee1701045b265d3a33bef22859aa8519a2ad8f8696f67c09b0c8895d92d5305e67af895a30ede22a0bb22f363242e7b75af4987e84d96b482d366a5f5b5a1a3c7835b0b7bd80e2bf63836a701ff010659740f5ea81bf3a9a1ca944c89d92ac821a7ae0c6ededc7e5035a9bbed51832c07d8028e93a9a17") r2 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00') ioctl$TIOCMGET(r2, 0x5415, &(0x7f0000000280)) accept4$nfc_llcp(r2, &(0x7f0000000100), &(0x7f00000002c0)=0x60, 0x80800) write(r2, &(0x7f0000000000), 0x0) 2033/05/18 03:33:46 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:46 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:46 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x80ffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:46 executing program 6: r0 = socket(0x2, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000), &(0x7f0000000040)=0x4) r1 = timerfd_create(0x0, 0x0) fcntl$notify(r1, 0x402, 0x8) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='nv\x00', 0x3) timerfd_settime(r1, 0x3, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x5}}, &(0x7f0000005fe0)) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cpuset.memory_pressure\x00', 0x0, 0x0) ioctl$EVIOCGSW(r2, 0x8040451b, &(0x7f0000000480)=""/244) timerfd_settime(r1, 0x0, &(0x7f0000000140)={{}, {0x77359400}}, &(0x7f0000000180)) ioctl$DRM_IOCTL_GET_STATS(r0, 0x80f86406, &(0x7f0000000080)=""/128) timerfd_create(0x7, 0x800) ioctl$DRM_IOCTL_FREE_BUFS(r2, 0x4010641a, &(0x7f0000000280)={0x3, &(0x7f0000000200)=[0x0, 0x55, 0x4]}) [ 581.034258] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:46 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:46 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000081", 0x29}], 0x1) 2033/05/18 03:33:46 executing program 2: 2033/05/18 03:33:46 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 581.083968] FAT-fs (loop5): bogus number of reserved sectors [ 581.090045] FAT-fs (loop5): Can't find a valid FAT filesystem [ 581.130490] FAULT_INJECTION: forcing a failure. [ 581.130490] name failslab, interval 1, probability 0, space 0, times 0 [ 581.141806] CPU: 0 PID: 1883 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 581.148989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 581.158337] Call Trace: [ 581.160932] dump_stack+0x1b9/0x294 [ 581.164569] ? dump_stack_print_info.cold.2+0x52/0x52 [ 581.169762] ? mutex_trylock+0x2a0/0x2a0 [ 581.173833] should_fail.cold.4+0xa/0x1a [ 581.177897] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 581.183005] ? print_usage_bug+0xc0/0xc0 [ 581.187068] ? graph_lock+0x170/0x170 [ 581.190871] ? lock_downgrade+0x8e0/0x8e0 [ 581.195020] ? find_held_lock+0x36/0x1c0 [ 581.199087] ? __lock_is_held+0xb5/0x140 [ 581.203162] ? check_same_owner+0x320/0x320 [ 581.207488] ? __might_sleep+0x95/0x190 [ 581.211468] ? rcu_note_context_switch+0x710/0x710 [ 581.216400] __should_failslab+0x124/0x180 [ 581.220640] should_failslab+0x9/0x14 [ 581.224440] __kmalloc+0x2c8/0x760 [ 581.227981] ? __kmalloc_node+0x47/0x70 [ 581.231954] ? __list_lru_init+0xdd/0x790 [ 581.236104] __list_lru_init+0xdd/0x790 [ 581.240082] ? list_lru_destroy+0x4c0/0x4c0 [ 581.244405] ? mark_held_locks+0xc9/0x160 [ 581.248555] ? __raw_spin_lock_init+0x1c/0x100 [ 581.253136] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 581.258166] ? lockdep_init_map+0x9/0x10 [ 581.262232] sget_userns+0x767/0xf00 [ 581.265941] ? get_anon_bdev+0x2f0/0x2f0 [ 581.270009] ? destroy_unused_super.part.11+0x110/0x110 [ 581.275375] ? __alloc_pages_nodemask+0xacf/0xd70 [ 581.280228] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 581.285247] ? kasan_check_read+0x11/0x20 [ 581.289400] ? cap_capable+0x1f9/0x260 [ 581.293294] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 581.298829] ? security_capable+0x99/0xc0 [ 581.302980] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 581.308518] ? ns_capable_common+0x13f/0x170 [ 581.312928] ? get_anon_bdev+0x2f0/0x2f0 [ 581.316991] sget+0x10b/0x150 [ 581.320100] ? fuse_get_root_inode+0x190/0x190 [ 581.324680] mount_nodev+0x33/0x110 [ 581.328309] fuse_mount+0x2c/0x40 [ 581.331766] mount_fs+0xae/0x328 [ 581.335137] vfs_kern_mount.part.34+0xd4/0x4d0 [ 581.339721] ? may_umount+0xb0/0xb0 [ 581.343352] ? _raw_read_unlock+0x22/0x30 [ 581.347498] ? __get_fs_type+0x97/0xc0 [ 581.351390] do_mount+0x564/0x3070 [ 581.354932] ? do_raw_spin_unlock+0x9e/0x2e0 [ 581.359344] ? copy_mount_string+0x40/0x40 [ 581.363577] ? rcu_pm_notify+0xc0/0xc0 [ 581.367474] ? copy_mount_options+0x5f/0x380 [ 581.371880] ? rcu_read_lock_sched_held+0x108/0x120 [ 581.376900] ? kmem_cache_alloc_trace+0x616/0x780 [ 581.381749] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 581.387293] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 581.392832] ? copy_mount_options+0x285/0x380 [ 581.397330] ksys_mount+0x12d/0x140 [ 581.400957] __x64_sys_mount+0xbe/0x150 [ 581.404930] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 581.409948] do_syscall_64+0x1b1/0x800 [ 581.413835] ? finish_task_switch+0x1ca/0x840 [ 581.418332] ? syscall_return_slowpath+0x5c0/0x5c0 [ 581.423263] ? syscall_return_slowpath+0x30f/0x5c0 [ 581.428198] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 581.433564] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 581.438410] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 581.443594] RIP: 0033:0x455a09 [ 581.446781] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 581.454489] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 581.461753] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 581.469019] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 2033/05/18 03:33:47 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:47 executing program 6: 2033/05/18 03:33:47 executing program 5 (fault-call:3 fault-nth:27): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 581.476286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 581.483549] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:47 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xb000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:47 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500ffff", 0x29}], 0x1) 2033/05/18 03:33:47 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 581.757689] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:47 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:47 executing program 6: 2033/05/18 03:33:47 executing program 2: [ 581.845281] FAT-fs (loop5): bogus number of reserved sectors [ 581.851250] FAT-fs (loop5): Can't find a valid FAT filesystem [ 581.866881] FAULT_INJECTION: forcing a failure. [ 581.866881] name failslab, interval 1, probability 0, space 0, times 0 [ 581.878202] CPU: 0 PID: 1910 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 581.885387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 581.894731] Call Trace: [ 581.897321] dump_stack+0x1b9/0x294 [ 581.900957] ? dump_stack_print_info.cold.2+0x52/0x52 [ 581.906150] ? kernel_text_address+0x79/0xf0 [ 581.910558] ? __unwind_start+0x166/0x330 [ 581.914712] should_fail.cold.4+0xa/0x1a [ 581.918778] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 581.923887] ? graph_lock+0x170/0x170 [ 581.927690] ? save_stack+0x43/0xd0 [ 581.931317] ? kasan_kmalloc+0xc4/0xe0 [ 581.935205] ? __kmalloc+0x14e/0x760 [ 581.938918] ? __list_lru_init+0xdd/0x790 [ 581.943067] ? find_held_lock+0x36/0x1c0 [ 581.947136] ? __lock_is_held+0xb5/0x140 [ 581.951213] ? check_same_owner+0x320/0x320 [ 581.955543] ? rcu_note_context_switch+0x710/0x710 [ 581.960519] __should_failslab+0x124/0x180 [ 581.964761] should_failslab+0x9/0x14 [ 581.968567] kmem_cache_alloc_node_trace+0x26f/0x770 [ 581.973670] ? mark_held_locks+0xc9/0x160 [ 581.977828] ? __raw_spin_lock_init+0x1c/0x100 [ 581.982414] __kmalloc_node+0x33/0x70 [ 581.986219] kvmalloc_node+0x6b/0x100 [ 581.990021] __list_lru_init+0x559/0x790 [ 581.994091] ? list_lru_destroy+0x4c0/0x4c0 [ 581.998418] ? mark_held_locks+0xc9/0x160 [ 582.002571] ? __raw_spin_lock_init+0x1c/0x100 [ 582.007155] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 582.012181] ? lockdep_init_map+0x9/0x10 [ 582.016247] sget_userns+0x767/0xf00 [ 582.019960] ? get_anon_bdev+0x2f0/0x2f0 [ 582.024029] ? destroy_unused_super.part.11+0x110/0x110 [ 582.029398] ? __alloc_pages_nodemask+0xacf/0xd70 [ 582.034251] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 582.039270] ? kasan_check_read+0x11/0x20 [ 582.043420] ? cap_capable+0x1f9/0x260 [ 582.047314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 582.052849] ? security_capable+0x99/0xc0 [ 582.056999] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 582.062538] ? ns_capable_common+0x13f/0x170 [ 582.066947] ? get_anon_bdev+0x2f0/0x2f0 [ 582.071005] sget+0x10b/0x150 [ 582.074125] ? fuse_get_root_inode+0x190/0x190 [ 582.078707] mount_nodev+0x33/0x110 [ 582.082336] fuse_mount+0x2c/0x40 [ 582.085789] mount_fs+0xae/0x328 [ 582.089162] vfs_kern_mount.part.34+0xd4/0x4d0 [ 582.093744] ? may_umount+0xb0/0xb0 [ 582.097374] ? _raw_read_unlock+0x22/0x30 [ 582.101519] ? __get_fs_type+0x97/0xc0 [ 582.105412] do_mount+0x564/0x3070 [ 582.108953] ? do_raw_spin_unlock+0x9e/0x2e0 [ 582.113365] ? copy_mount_string+0x40/0x40 [ 582.117601] ? rcu_pm_notify+0xc0/0xc0 [ 582.121494] ? copy_mount_options+0x5f/0x380 [ 582.125902] ? rcu_read_lock_sched_held+0x108/0x120 [ 582.130921] ? kmem_cache_alloc_trace+0x616/0x780 [ 582.135768] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 582.141309] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 582.146847] ? copy_mount_options+0x285/0x380 [ 582.151347] ksys_mount+0x12d/0x140 [ 582.154977] __x64_sys_mount+0xbe/0x150 [ 582.158949] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 582.163966] do_syscall_64+0x1b1/0x800 [ 582.167852] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 582.172698] ? syscall_return_slowpath+0x5c0/0x5c0 [ 582.177629] ? syscall_return_slowpath+0x30f/0x5c0 [ 582.182567] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 582.187933] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 582.192780] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 582.197969] RIP: 0033:0x455a09 [ 582.201156] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 582.208868] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 582.216132] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 582.223399] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 582.230665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 582.237931] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 582.310669] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:47 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:47 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x700}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:47 executing program 5 (fault-call:3 fault-nth:28): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:47 executing program 2: 2033/05/18 03:33:47 executing program 6: 2033/05/18 03:33:47 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:47 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025090000", 0x29}], 0x1) 2033/05/18 03:33:47 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 582.431359] FAT-fs (loop5): bogus number of reserved sectors [ 582.437315] FAT-fs (loop5): Can't find a valid FAT filesystem [ 582.461422] FAULT_INJECTION: forcing a failure. [ 582.461422] name failslab, interval 1, probability 0, space 0, times 0 [ 582.472751] CPU: 0 PID: 1926 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 2033/05/18 03:33:48 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x14}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:48 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) [ 582.479938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 582.489284] Call Trace: [ 582.491874] dump_stack+0x1b9/0x294 [ 582.495506] ? dump_stack_print_info.cold.2+0x52/0x52 [ 582.500709] ? __save_stack_trace+0x7e/0xd0 [ 582.505043] should_fail.cold.4+0xa/0x1a [ 582.509123] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 582.514232] ? save_stack+0x43/0xd0 [ 582.517857] ? kasan_kmalloc+0xc4/0xe0 [ 582.521746] ? kmem_cache_alloc_trace+0x152/0x780 [ 582.526586] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 582.531772] ? __list_lru_init+0x456/0x790 [ 582.536009] ? sget_userns+0x767/0xf00 [ 582.539903] ? graph_lock+0x170/0x170 [ 582.543700] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 582.548450] ? do_mount+0x564/0x3070 [ 582.552168] ? ksys_mount+0x12d/0x140 [ 582.555965] ? __x64_sys_mount+0xbe/0x150 [ 582.560113] ? do_syscall_64+0x1b1/0x800 [ 582.564172] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 582.569536] ? find_held_lock+0x36/0x1c0 [ 582.573691] ? __lock_is_held+0xb5/0x140 [ 582.577767] ? check_same_owner+0x320/0x320 [ 582.582095] ? rcu_note_context_switch+0x710/0x710 [ 582.587030] __should_failslab+0x124/0x180 [ 582.591277] should_failslab+0x9/0x14 [ 582.595079] kmem_cache_alloc_trace+0x2cb/0x780 [ 582.599754] ? __kmalloc_node+0x33/0x70 [ 582.603732] ? __kmalloc_node+0x33/0x70 [ 582.607709] ? rcu_read_lock_sched_held+0x108/0x120 [ 582.612731] __memcg_init_list_lru_node+0x17d/0x2c0 [ 582.617746] ? kvfree_rcu+0x20/0x20 [ 582.621374] ? __kmalloc_node+0x47/0x70 [ 582.625358] __list_lru_init+0x456/0x790 [ 582.629426] ? list_lru_destroy+0x4c0/0x4c0 [ 582.633747] ? mark_held_locks+0xc9/0x160 [ 582.637899] ? __raw_spin_lock_init+0x1c/0x100 [ 582.642483] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 582.647505] ? lockdep_init_map+0x9/0x10 [ 582.651571] sget_userns+0x767/0xf00 [ 582.655283] ? get_anon_bdev+0x2f0/0x2f0 [ 582.659356] ? destroy_unused_super.part.11+0x110/0x110 [ 582.664721] ? __alloc_pages_nodemask+0xacf/0xd70 [ 582.669571] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 582.674591] ? kasan_check_read+0x11/0x20 [ 582.678740] ? cap_capable+0x1f9/0x260 [ 582.682638] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 582.688174] ? security_capable+0x99/0xc0 [ 582.692328] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 582.697863] ? ns_capable_common+0x13f/0x170 [ 582.702277] ? get_anon_bdev+0x2f0/0x2f0 [ 582.706338] sget+0x10b/0x150 [ 582.709446] ? fuse_get_root_inode+0x190/0x190 [ 582.714030] mount_nodev+0x33/0x110 [ 582.717662] fuse_mount+0x2c/0x40 [ 582.721116] mount_fs+0xae/0x328 [ 582.724487] vfs_kern_mount.part.34+0xd4/0x4d0 [ 582.729077] ? may_umount+0xb0/0xb0 [ 582.732705] ? _raw_read_unlock+0x22/0x30 [ 582.736853] ? __get_fs_type+0x97/0xc0 [ 582.740745] do_mount+0x564/0x3070 [ 582.744455] ? copy_mount_string+0x40/0x40 [ 582.748693] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 582.753719] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 582.758482] ? retint_kernel+0x10/0x10 [ 582.762380] ? copy_mount_options+0x1f0/0x380 [ 582.766876] ? copy_mount_options+0x202/0x380 [ 582.771416] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 582.776990] ? copy_mount_options+0x285/0x380 [ 582.781488] ksys_mount+0x12d/0x140 [ 582.785117] __x64_sys_mount+0xbe/0x150 [ 582.789091] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 582.794113] do_syscall_64+0x1b1/0x800 [ 582.797997] ? finish_task_switch+0x1ca/0x840 [ 582.802494] ? syscall_return_slowpath+0x5c0/0x5c0 [ 582.807426] ? syscall_return_slowpath+0x30f/0x5c0 [ 582.812357] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 582.817724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 582.822575] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 582.827763] RIP: 0033:0x455a09 [ 582.830947] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 582.838657] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 582.845922] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 582.853197] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 582.860465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 582.867731] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 583.008781] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:48 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:48 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:48 executing program 5 (fault-call:3 fault-nth:29): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:48 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025050000", 0x29}], 0x1) 2033/05/18 03:33:48 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:48 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:48 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) signalfd4(r0, &(0x7f0000000000)={0x8}, 0x8, 0x80000) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:48 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:48 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 583.219475] FAT-fs (loop5): bogus number of reserved sectors [ 583.225609] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:48 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250f0000", 0x29}], 0x1) [ 583.261634] FAULT_INJECTION: forcing a failure. [ 583.261634] name failslab, interval 1, probability 0, space 0, times 0 [ 583.272939] CPU: 0 PID: 1951 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 583.280128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 583.289473] Call Trace: [ 583.292067] dump_stack+0x1b9/0x294 [ 583.292986] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 583.295713] ? dump_stack_print_info.cold.2+0x52/0x52 2033/05/18 03:33:48 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500069d", 0x29}], 0x1) [ 583.308283] ? __save_stack_trace+0x7e/0xd0 [ 583.312620] should_fail.cold.4+0xa/0x1a [ 583.316706] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 583.321821] ? save_stack+0x43/0xd0 [ 583.325450] ? kasan_kmalloc+0xc4/0xe0 [ 583.329339] ? kmem_cache_alloc_trace+0x152/0x780 [ 583.334187] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 583.339382] ? __list_lru_init+0x456/0x790 [ 583.343619] ? sget_userns+0x767/0xf00 [ 583.347508] ? graph_lock+0x170/0x170 [ 583.351310] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 583.356065] ? do_mount+0x564/0x3070 [ 583.359779] ? ksys_mount+0x12d/0x140 [ 583.363580] ? __x64_sys_mount+0xbe/0x150 [ 583.367730] ? do_syscall_64+0x1b1/0x800 [ 583.371793] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 583.377161] ? find_held_lock+0x36/0x1c0 [ 583.381227] ? __lock_is_held+0xb5/0x140 [ 583.385302] ? check_same_owner+0x320/0x320 [ 583.389626] ? rcu_note_context_switch+0x710/0x710 [ 583.394557] __should_failslab+0x124/0x180 [ 583.398795] should_failslab+0x9/0x14 [ 583.402596] kmem_cache_alloc_trace+0x2cb/0x780 [ 583.407265] ? __kmalloc_node+0x33/0x70 [ 583.411240] ? __kmalloc_node+0x33/0x70 [ 583.415230] ? rcu_read_lock_sched_held+0x108/0x120 [ 583.420265] __memcg_init_list_lru_node+0x17d/0x2c0 [ 583.425281] ? kvfree_rcu+0x20/0x20 [ 583.428910] ? __kmalloc_node+0x47/0x70 [ 583.432888] __list_lru_init+0x456/0x790 [ 583.436950] ? list_lru_destroy+0x4c0/0x4c0 [ 583.441273] ? mark_held_locks+0xc9/0x160 [ 583.445424] ? __raw_spin_lock_init+0x1c/0x100 [ 583.450011] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 583.455032] ? lockdep_init_map+0x9/0x10 [ 583.459095] sget_userns+0x767/0xf00 [ 583.462805] ? get_anon_bdev+0x2f0/0x2f0 [ 583.466872] ? destroy_unused_super.part.11+0x110/0x110 [ 583.472238] ? __alloc_pages_nodemask+0xacf/0xd70 [ 583.477085] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 583.482108] ? kasan_check_read+0x11/0x20 [ 583.486258] ? cap_capable+0x1f9/0x260 [ 583.490156] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 583.495694] ? security_capable+0x99/0xc0 [ 583.499845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 583.505386] ? ns_capable_common+0x13f/0x170 [ 583.509795] ? get_anon_bdev+0x2f0/0x2f0 [ 583.513855] sget+0x10b/0x150 [ 583.516963] ? fuse_get_root_inode+0x190/0x190 [ 583.521549] mount_nodev+0x33/0x110 [ 583.525176] fuse_mount+0x2c/0x40 [ 583.528630] mount_fs+0xae/0x328 [ 583.532007] vfs_kern_mount.part.34+0xd4/0x4d0 [ 583.536590] ? may_umount+0xb0/0xb0 [ 583.540220] ? _raw_read_unlock+0x22/0x30 [ 583.544365] ? __get_fs_type+0x97/0xc0 [ 583.548259] do_mount+0x564/0x3070 [ 583.551800] ? interrupt_entry+0xb1/0xf0 [ 583.555865] ? copy_mount_string+0x40/0x40 [ 583.560099] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 583.564860] ? retint_kernel+0x10/0x10 [ 583.568753] ? copy_mount_options+0x1e3/0x380 [ 583.573254] ? write_comp_data+0x6d/0x70 [ 583.577322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 583.582861] ? copy_mount_options+0x285/0x380 [ 583.587359] ksys_mount+0x12d/0x140 [ 583.590996] __x64_sys_mount+0xbe/0x150 [ 583.594972] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 583.600008] do_syscall_64+0x1b1/0x800 [ 583.603899] ? finish_task_switch+0x1ca/0x840 [ 583.608401] ? syscall_return_slowpath+0x5c0/0x5c0 [ 583.613335] ? syscall_return_slowpath+0x30f/0x5c0 [ 583.618268] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 583.623636] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 583.628487] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 583.633670] RIP: 0033:0x455a09 [ 583.636856] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 583.644565] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 583.651831] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 583.659098] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 583.666361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 583.673627] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:49 executing program 5 (fault-call:3 fault-nth:30): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:49 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) setsockopt$IP_VS_SO_SET_EDIT(r1, 0x0, 0x483, &(0x7f0000000000)={0x2b, @multicast2=0xe0000002, 0x4e21, 0x4, 'nq\x00', 0x8, 0x2, 0x5c}, 0x2c) 2033/05/18 03:33:49 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x700000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:49 executing program 3: socket$inet6(0xa, 0x3, 0x3a) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:49 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 583.959842] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 584.017181] IPVS: set_ctl: invalid protocol: 43 224.0.0.2:20001 nq [ 584.048763] FAT-fs (loop5): bogus number of reserved sectors [ 584.054662] FAT-fs (loop5): Can't find a valid FAT filesystem [ 584.061421] IPVS: set_ctl: invalid protocol: 43 224.0.0.2:20001 nq [ 584.117233] FAULT_INJECTION: forcing a failure. [ 584.117233] name failslab, interval 1, probability 0, space 0, times 0 [ 584.128656] CPU: 0 PID: 1982 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 584.135838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 584.145186] Call Trace: [ 584.147780] dump_stack+0x1b9/0x294 [ 584.151410] ? dump_stack_print_info.cold.2+0x52/0x52 [ 584.156602] ? __save_stack_trace+0x7e/0xd0 [ 584.160929] should_fail.cold.4+0xa/0x1a [ 584.164994] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 584.170100] ? save_stack+0x43/0xd0 [ 584.173728] ? kasan_kmalloc+0xc4/0xe0 [ 584.177626] ? kmem_cache_alloc_trace+0x152/0x780 [ 584.182477] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 584.187671] ? __list_lru_init+0x456/0x790 [ 584.191906] ? sget_userns+0x767/0xf00 [ 584.195795] ? graph_lock+0x170/0x170 [ 584.199608] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 584.204365] ? do_mount+0x564/0x3070 [ 584.208076] ? ksys_mount+0x12d/0x140 [ 584.211875] ? __x64_sys_mount+0xbe/0x150 [ 584.216023] ? do_syscall_64+0x1b1/0x800 [ 584.220084] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 584.225452] ? find_held_lock+0x36/0x1c0 [ 584.229518] ? __lock_is_held+0xb5/0x140 [ 584.233590] ? check_same_owner+0x320/0x320 [ 584.237919] ? rcu_note_context_switch+0x710/0x710 [ 584.242861] __should_failslab+0x124/0x180 [ 584.247108] should_failslab+0x9/0x14 [ 584.250919] kmem_cache_alloc_trace+0x2cb/0x780 [ 584.255592] ? __kmalloc_node+0x33/0x70 [ 584.259564] ? __kmalloc_node+0x33/0x70 [ 584.263542] ? rcu_read_lock_sched_held+0x108/0x120 [ 584.268561] __memcg_init_list_lru_node+0x17d/0x2c0 [ 584.273667] ? kvfree_rcu+0x20/0x20 [ 584.277300] ? __kmalloc_node+0x47/0x70 [ 584.281280] __list_lru_init+0x456/0x790 [ 584.285346] ? list_lru_destroy+0x4c0/0x4c0 [ 584.289670] ? mark_held_locks+0xc9/0x160 [ 584.293823] ? __raw_spin_lock_init+0x1c/0x100 [ 584.298409] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 584.303432] ? lockdep_init_map+0x9/0x10 [ 584.307499] sget_userns+0x767/0xf00 [ 584.311214] ? get_anon_bdev+0x2f0/0x2f0 [ 584.315285] ? destroy_unused_super.part.11+0x110/0x110 [ 584.320652] ? __alloc_pages_nodemask+0xacf/0xd70 [ 584.325500] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 584.330521] ? kasan_check_read+0x11/0x20 [ 584.334672] ? cap_capable+0x1f9/0x260 [ 584.338572] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 584.344113] ? security_capable+0x99/0xc0 [ 584.348265] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 584.353805] ? ns_capable_common+0x13f/0x170 [ 584.358216] ? get_anon_bdev+0x2f0/0x2f0 [ 584.362273] sget+0x10b/0x150 [ 584.365383] ? fuse_get_root_inode+0x190/0x190 [ 584.369974] mount_nodev+0x33/0x110 [ 584.373603] fuse_mount+0x2c/0x40 [ 584.377062] mount_fs+0xae/0x328 [ 584.380432] vfs_kern_mount.part.34+0xd4/0x4d0 [ 584.385016] ? may_umount+0xb0/0xb0 [ 584.388644] ? _raw_read_unlock+0x22/0x30 [ 584.392793] ? __get_fs_type+0x97/0xc0 [ 584.396796] do_mount+0x564/0x3070 [ 584.400344] ? copy_mount_string+0x40/0x40 [ 584.404582] ? rcu_pm_notify+0xc0/0xc0 [ 584.408481] ? copy_mount_options+0x5f/0x380 [ 584.412890] ? rcu_read_lock_sched_held+0x108/0x120 [ 584.417912] ? kmem_cache_alloc_trace+0x616/0x780 [ 584.422774] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 584.428310] ? _copy_from_user+0xdf/0x150 [ 584.432464] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 584.438000] ? copy_mount_options+0x285/0x380 [ 584.442497] ksys_mount+0x12d/0x140 [ 584.446125] __x64_sys_mount+0xbe/0x150 [ 584.450098] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 584.455119] do_syscall_64+0x1b1/0x800 [ 584.459009] ? finish_task_switch+0x1ca/0x840 [ 584.463507] ? syscall_return_slowpath+0x5c0/0x5c0 [ 584.468438] ? syscall_return_slowpath+0x30f/0x5c0 [ 584.473374] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 584.478743] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 584.483589] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 584.488773] RIP: 0033:0x455a09 [ 584.491960] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 584.499667] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 584.506934] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 584.514202] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 584.521471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 584.528735] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:50 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000025", 0x29}], 0x1) 2033/05/18 03:33:50 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500069c", 0x29}], 0x1) 2033/05/18 03:33:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:50 executing program 3: socket$inet6(0xa, 0x3, 0x3a) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:50 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x400000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:50 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8914, &(0x7f0000000000)="c6269988ccf2a1ed064a2644dd07c279e34268633ca5732e9f11b10b7fda94e7a88985ddff07025b0508") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:50 executing program 5 (fault-call:3 fault-nth:31): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:50 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:50 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 584.717747] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:50 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000255", 0x29}], 0x1) 2033/05/18 03:33:50 executing program 3: socket$inet6(0xa, 0x3, 0x3a) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:50 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x80ffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:50 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:50 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x2000, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x66, &(0x7f0000000180)=0x8001, 0x4) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x40100, 0x0) ioctl$DRM_IOCTL_AGP_RELEASE(r2, 0x6431) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f00000000c0), &(0x7f0000000100)=0x4) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 584.875075] FAT-fs (loop5): bogus number of reserved sectors [ 584.881011] FAT-fs (loop5): Can't find a valid FAT filesystem [ 584.912576] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 584.930746] FAULT_INJECTION: forcing a failure. [ 584.930746] name failslab, interval 1, probability 0, space 0, times 0 [ 584.942129] CPU: 0 PID: 2021 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 584.949316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 584.958663] Call Trace: [ 584.961263] dump_stack+0x1b9/0x294 [ 584.964897] ? dump_stack_print_info.cold.2+0x52/0x52 [ 584.970098] ? __save_stack_trace+0x7e/0xd0 [ 584.974439] should_fail.cold.4+0xa/0x1a [ 584.978516] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 584.983626] ? save_stack+0x43/0xd0 [ 584.987258] ? kasan_kmalloc+0xc4/0xe0 [ 584.991156] ? kmem_cache_alloc_trace+0x152/0x780 [ 584.996005] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 585.001199] ? __list_lru_init+0x456/0x790 [ 585.005445] ? sget_userns+0x767/0xf00 [ 585.009334] ? graph_lock+0x170/0x170 [ 585.013138] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 585.017902] ? do_mount+0x564/0x3070 [ 585.021617] ? ksys_mount+0x12d/0x140 [ 585.025414] ? __x64_sys_mount+0xbe/0x150 [ 585.029562] ? do_syscall_64+0x1b1/0x800 [ 585.033626] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 585.038997] ? find_held_lock+0x36/0x1c0 [ 585.043067] ? __lock_is_held+0xb5/0x140 [ 585.047143] ? check_same_owner+0x320/0x320 [ 585.051470] ? rcu_note_context_switch+0x710/0x710 [ 585.056401] __should_failslab+0x124/0x180 [ 585.060639] should_failslab+0x9/0x14 [ 585.064441] kmem_cache_alloc_trace+0x2cb/0x780 [ 585.069113] ? __kmalloc_node+0x33/0x70 [ 585.073095] ? __kmalloc_node+0x33/0x70 [ 585.077088] ? rcu_read_lock_sched_held+0x108/0x120 [ 585.082127] __memcg_init_list_lru_node+0x17d/0x2c0 [ 585.087153] ? kvfree_rcu+0x20/0x20 [ 585.090784] ? __kmalloc_node+0x47/0x70 [ 585.094765] __list_lru_init+0x456/0x790 [ 585.098830] ? list_lru_destroy+0x4c0/0x4c0 [ 585.103169] ? mark_held_locks+0xc9/0x160 [ 585.107327] ? __raw_spin_lock_init+0x1c/0x100 [ 585.111916] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 585.116943] ? lockdep_init_map+0x9/0x10 [ 585.121016] sget_userns+0x767/0xf00 [ 585.124733] ? get_anon_bdev+0x2f0/0x2f0 [ 585.128980] ? destroy_unused_super.part.11+0x110/0x110 [ 585.134351] ? __alloc_pages_nodemask+0xacf/0xd70 [ 585.139203] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 585.144227] ? kasan_check_read+0x11/0x20 [ 585.148377] ? cap_capable+0x1f9/0x260 [ 585.152274] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 585.157813] ? security_capable+0x99/0xc0 [ 585.161971] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 585.167511] ? ns_capable_common+0x13f/0x170 [ 585.171928] ? get_anon_bdev+0x2f0/0x2f0 [ 585.176091] sget+0x10b/0x150 [ 585.179204] ? fuse_get_root_inode+0x190/0x190 [ 585.183788] mount_nodev+0x33/0x110 [ 585.187419] fuse_mount+0x2c/0x40 [ 585.190896] mount_fs+0xae/0x328 [ 585.194273] vfs_kern_mount.part.34+0xd4/0x4d0 [ 585.198866] ? may_umount+0xb0/0xb0 [ 585.202498] ? _raw_read_unlock+0x22/0x30 [ 585.206645] ? __get_fs_type+0x97/0xc0 [ 585.210542] do_mount+0x564/0x3070 [ 585.214092] ? copy_mount_string+0x40/0x40 [ 585.218334] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 585.223096] ? retint_kernel+0x10/0x10 [ 585.226993] ? copy_mount_options+0x1a1/0x380 [ 585.231496] ? __sanitizer_cov_trace_pc+0x3b/0x50 [ 585.236343] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 585.241885] ? copy_mount_options+0x285/0x380 [ 585.246389] ksys_mount+0x12d/0x140 [ 585.250020] __x64_sys_mount+0xbe/0x150 [ 585.253995] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 585.259015] do_syscall_64+0x1b1/0x800 [ 585.262907] ? finish_task_switch+0x1ca/0x840 [ 585.267412] ? syscall_return_slowpath+0x5c0/0x5c0 [ 585.272350] ? syscall_return_slowpath+0x30f/0x5c0 [ 585.277290] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 585.282660] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 585.287508] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 585.292694] RIP: 0033:0x455a09 [ 585.295880] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 585.303591] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 585.310866] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 585.318134] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 585.325412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 585.332679] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:51 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:51 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:51 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xb00}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:51 executing program 3: setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:51 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:51 executing program 5 (fault-call:3 fault-nth:32): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:51 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'veth1_to_bridge\x00', 0x10}) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:51 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xfffffff5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:51 executing program 3: setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:51 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002508b000", 0x29}], 0x1) [ 585.812556] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 585.837871] FAT-fs (loop5): bogus number of reserved sectors [ 585.843809] FAT-fs (loop5): Can't find a valid FAT filesystem [ 585.883736] FAULT_INJECTION: forcing a failure. [ 585.883736] name failslab, interval 1, probability 0, space 0, times 0 [ 585.895081] CPU: 0 PID: 2050 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 585.902264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 585.911610] Call Trace: [ 585.914209] dump_stack+0x1b9/0x294 [ 585.917848] ? dump_stack_print_info.cold.2+0x52/0x52 [ 585.923043] ? __save_stack_trace+0x7e/0xd0 [ 585.927374] should_fail.cold.4+0xa/0x1a [ 585.931448] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 585.936555] ? save_stack+0x43/0xd0 [ 585.940174] ? kasan_kmalloc+0xc4/0xe0 [ 585.944047] ? kmem_cache_alloc_trace+0x152/0x780 [ 585.948876] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 585.954047] ? __list_lru_init+0x456/0x790 [ 585.958268] ? sget_userns+0x767/0xf00 [ 585.962140] ? graph_lock+0x170/0x170 [ 585.965923] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 585.970662] ? do_mount+0x564/0x3070 [ 585.974359] ? ksys_mount+0x12d/0x140 [ 585.978162] ? __x64_sys_mount+0xbe/0x150 [ 585.982299] ? do_syscall_64+0x1b1/0x800 [ 585.986347] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 585.991696] ? find_held_lock+0x36/0x1c0 [ 585.995758] ? __lock_is_held+0xb5/0x140 [ 585.999817] ? check_same_owner+0x320/0x320 [ 586.004128] ? rcu_note_context_switch+0x710/0x710 [ 586.009046] __should_failslab+0x124/0x180 [ 586.013269] should_failslab+0x9/0x14 [ 586.017057] kmem_cache_alloc_trace+0x2cb/0x780 [ 586.021708] ? __kmalloc_node+0x33/0x70 [ 586.025667] ? __kmalloc_node+0x33/0x70 [ 586.029630] __memcg_init_list_lru_node+0x17d/0x2c0 [ 586.034633] ? kvfree_rcu+0x20/0x20 [ 586.038247] ? __kmalloc_node+0x47/0x70 [ 586.042208] __list_lru_init+0x456/0x790 [ 586.046257] ? list_lru_destroy+0x4c0/0x4c0 [ 586.050567] ? mark_held_locks+0xc9/0x160 [ 586.054705] ? __raw_spin_lock_init+0x1c/0x100 [ 586.059272] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 586.064275] ? lockdep_init_map+0x9/0x10 [ 586.068322] sget_userns+0x767/0xf00 [ 586.072027] ? get_anon_bdev+0x2f0/0x2f0 [ 586.076079] ? destroy_unused_super.part.11+0x110/0x110 [ 586.081426] ? __alloc_pages_nodemask+0xacf/0xd70 [ 586.086257] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 586.091263] ? kasan_check_read+0x11/0x20 [ 586.095401] ? cap_capable+0x1f9/0x260 [ 586.099278] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.104807] ? security_capable+0x99/0xc0 [ 586.108942] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.114464] ? ns_capable_common+0x13f/0x170 [ 586.118859] ? get_anon_bdev+0x2f0/0x2f0 [ 586.122904] sget+0x10b/0x150 [ 586.125996] ? fuse_get_root_inode+0x190/0x190 [ 586.130567] mount_nodev+0x33/0x110 [ 586.134180] fuse_mount+0x2c/0x40 [ 586.137617] mount_fs+0xae/0x328 [ 586.140971] vfs_kern_mount.part.34+0xd4/0x4d0 [ 586.145537] ? may_umount+0xb0/0xb0 [ 586.149151] ? _raw_read_unlock+0x22/0x30 [ 586.153283] ? __get_fs_type+0x97/0xc0 [ 586.157157] do_mount+0x564/0x3070 [ 586.160682] ? interrupt_entry+0xb1/0xf0 [ 586.164731] ? copy_mount_string+0x40/0x40 [ 586.168951] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 586.173693] ? retint_kernel+0x10/0x10 [ 586.177566] ? copy_mount_options+0x213/0x380 [ 586.182047] ? write_comp_data+0x11/0x70 [ 586.186095] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.191616] ? copy_mount_options+0x285/0x380 [ 586.196098] ksys_mount+0x12d/0x140 [ 586.199710] __x64_sys_mount+0xbe/0x150 [ 586.203668] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 586.208669] do_syscall_64+0x1b1/0x800 [ 586.212542] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 586.217371] ? syscall_return_slowpath+0x5c0/0x5c0 [ 586.222287] ? syscall_return_slowpath+0x30f/0x5c0 [ 586.227204] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 586.232566] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 586.237396] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 586.242568] RIP: 0033:0x455a09 [ 586.245744] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 586.253440] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 586.260693] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 586.267948] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 586.275202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 2033/05/18 03:33:51 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:51 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 586.282456] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:51 executing program 5 (fault-call:3 fault-nth:33): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:51 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:52 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000007", 0x29}], 0x1) 2033/05/18 03:33:52 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 586.501536] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:52 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:52 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025f00000", 0x29}], 0x1) [ 586.629688] FAT-fs (loop5): bogus number of reserved sectors [ 586.635644] FAT-fs (loop5): Can't find a valid FAT filesystem [ 586.654325] FAULT_INJECTION: forcing a failure. [ 586.654325] name failslab, interval 1, probability 0, space 0, times 0 [ 586.665664] CPU: 0 PID: 2074 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 586.672851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 586.682199] Call Trace: [ 586.684796] dump_stack+0x1b9/0x294 [ 586.688427] ? dump_stack_print_info.cold.2+0x52/0x52 [ 586.693619] ? __save_stack_trace+0x7e/0xd0 [ 586.697952] should_fail.cold.4+0xa/0x1a [ 586.702017] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 586.707126] ? save_stack+0x43/0xd0 [ 586.710755] ? kasan_kmalloc+0xc4/0xe0 [ 586.714643] ? kmem_cache_alloc_trace+0x152/0x780 [ 586.719487] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 586.724689] ? __list_lru_init+0x456/0x790 [ 586.728931] ? sget_userns+0x767/0xf00 [ 586.732820] ? graph_lock+0x170/0x170 [ 586.736619] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 586.741373] ? do_mount+0x564/0x3070 [ 586.745087] ? ksys_mount+0x12d/0x140 [ 586.748890] ? __x64_sys_mount+0xbe/0x150 [ 586.753038] ? do_syscall_64+0x1b1/0x800 [ 586.757100] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 586.762468] ? find_held_lock+0x36/0x1c0 [ 586.766533] ? __lock_is_held+0xb5/0x140 [ 586.770607] ? check_same_owner+0x320/0x320 [ 586.774937] ? rcu_note_context_switch+0x710/0x710 [ 586.779871] __should_failslab+0x124/0x180 [ 586.784108] should_failslab+0x9/0x14 [ 586.787909] kmem_cache_alloc_trace+0x2cb/0x780 [ 586.792577] ? __kmalloc_node+0x33/0x70 [ 586.796553] ? __kmalloc_node+0x33/0x70 [ 586.800529] ? rcu_read_lock_sched_held+0x108/0x120 [ 586.805551] __memcg_init_list_lru_node+0x17d/0x2c0 [ 586.810569] ? kvfree_rcu+0x20/0x20 [ 586.814199] ? __kmalloc_node+0x47/0x70 [ 586.818181] __list_lru_init+0x456/0x790 [ 586.822245] ? list_lru_destroy+0x4c0/0x4c0 [ 586.826744] ? mark_held_locks+0xc9/0x160 [ 586.830901] ? __raw_spin_lock_init+0x1c/0x100 [ 586.835486] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 586.840509] ? lockdep_init_map+0x9/0x10 [ 586.844576] sget_userns+0x767/0xf00 [ 586.848290] ? get_anon_bdev+0x2f0/0x2f0 [ 586.852360] ? destroy_unused_super.part.11+0x110/0x110 [ 586.857729] ? __alloc_pages_nodemask+0xacf/0xd70 [ 586.862578] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 586.867601] ? kasan_check_read+0x11/0x20 [ 586.871757] ? cap_capable+0x1f9/0x260 [ 586.875653] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.881188] ? security_capable+0x99/0xc0 [ 586.885344] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.891376] ? ns_capable_common+0x13f/0x170 [ 586.897091] ? get_anon_bdev+0x2f0/0x2f0 [ 586.901151] sget+0x10b/0x150 [ 586.904265] ? fuse_get_root_inode+0x190/0x190 [ 586.908849] mount_nodev+0x33/0x110 [ 586.912481] fuse_mount+0x2c/0x40 [ 586.915935] mount_fs+0xae/0x328 [ 586.919308] vfs_kern_mount.part.34+0xd4/0x4d0 [ 586.923891] ? may_umount+0xb0/0xb0 [ 586.927524] ? _raw_read_unlock+0x22/0x30 [ 586.931672] ? __get_fs_type+0x97/0xc0 [ 586.935568] do_mount+0x564/0x3070 [ 586.939115] ? copy_mount_string+0x40/0x40 [ 586.943356] ? rcu_pm_notify+0xc0/0xc0 [ 586.947251] ? copy_mount_options+0x5f/0x380 [ 586.951660] ? rcu_read_lock_sched_held+0x108/0x120 [ 586.956678] ? kmem_cache_alloc_trace+0x616/0x780 [ 586.961525] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 586.967066] ? _copy_from_user+0xdf/0x150 [ 586.971221] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.976760] ? copy_mount_options+0x285/0x380 [ 586.981260] ksys_mount+0x12d/0x140 [ 586.984893] __x64_sys_mount+0xbe/0x150 [ 586.988872] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 586.993893] do_syscall_64+0x1b1/0x800 [ 586.997782] ? finish_task_switch+0x1ca/0x840 [ 587.002278] ? syscall_return_slowpath+0x5c0/0x5c0 [ 587.007208] ? syscall_return_slowpath+0x30f/0x5c0 [ 587.012142] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 587.017514] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 587.022363] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 587.027553] RIP: 0033:0x455a09 [ 587.030741] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 587.038451] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 587.045723] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 587.052991] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 587.060258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 587.067527] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 587.261081] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:52 executing program 3: setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:33:52 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0xa) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x103500, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e20, @rand_addr=0x8}}, [0x9, 0x3a60, 0x2, 0x3, 0xfff, 0x4, 0x84e, 0x460, 0x30, 0xcf3, 0x4, 0xf6, 0x0, 0xfffffffffffffffd, 0x9]}, &(0x7f0000000280)=0x100) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000002c0)={0x1ff, 0x200, 0xcfc, 0x3, r2}, &(0x7f0000000300)=0x10) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000000)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f00000000c0)=0x1) 2033/05/18 03:33:52 executing program 5 (fault-call:3 fault-nth:34): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:52 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:52 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025006000", 0x29}], 0x1) 2033/05/18 03:33:52 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x1000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:52 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000500", 0x29}], 0x1) 2033/05/18 03:33:53 executing program 3: r0 = socket$inet6(0xa, 0x0, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:53 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x8) getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000280)={0x0, 0x6, 0x0, 0x9, 0x0, 0x0, 0xffffffff7fffffff, 0x7fffffff, {0x0, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1, 0xffffffffffffff80, 0x1, 0x5, 0x2}}, &(0x7f0000000000)=0xb0) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000340)={r2, 0xa2, 0x3b, "5b66e132869f04cb9f749cfed89846815fb68c9f303a6e02bd28d1dadbb283e9acc1523aaa11bdb8ae53a91a4045b353a9acd60be7e6e3d95287b1"}, 0x43) syz_emit_ethernet(0x4e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaad77a06db89fd86dd60542927001800230000f2ff000000000000000000000000fe8000000000000000000000000000bb0000907800000000fe8000000000000000000000000000009e3ce5eb9b2b0a1dfc3833b0160bcb5bb393b335b9e805b148354afd3362fa10889414303614fef5cce5a18d65c708fab58d25ee38f253fc1cf0ad746d7f95022f3cc31ed2f1f0904e9cfea43cf2bb946154cd5334d75cfb5bfac1362b85"], 0x0) getsockopt$inet_tcp_buf(r1, 0x6, 0x1f, &(0x7f0000000440)=""/171, &(0x7f0000000500)=0xab) r3 = syz_open_dev$sndpcmp(&(0x7f00000003c0)='/dev/snd/pcmC#D#p\x00', 0x100000000, 0x400) ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000400)=r3) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000200)) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x210480, 0x0) ioctl$sock_inet_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000100)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) getpeername$packet(r3, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000640)=0x14) bind$packet(r4, &(0x7f0000000680)={0x11, 0xff, r5, 0x1, 0x100, 0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x1a}}, 0x14) 2033/05/18 03:33:53 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:33:53 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 587.509518] FAT-fs (loop5): bogus number of reserved sectors [ 587.510750] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 587.515529] FAT-fs (loop5): Can't find a valid FAT filesystem [ 587.551469] FAULT_INJECTION: forcing a failure. [ 587.551469] name failslab, interval 1, probability 0, space 0, times 0 [ 587.562921] CPU: 0 PID: 2097 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 587.570108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 587.579457] Call Trace: [ 587.582055] dump_stack+0x1b9/0x294 [ 587.585694] ? dump_stack_print_info.cold.2+0x52/0x52 [ 587.590886] ? __save_stack_trace+0x7e/0xd0 [ 587.595316] should_fail.cold.4+0xa/0x1a [ 587.599602] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 587.604789] ? save_stack+0x43/0xd0 [ 587.608418] ? kasan_kmalloc+0xc4/0xe0 [ 587.612304] ? kmem_cache_alloc_trace+0x152/0x780 [ 587.617145] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 587.622331] ? __list_lru_init+0x456/0x790 [ 587.626562] ? sget_userns+0x767/0xf00 [ 587.630447] ? graph_lock+0x170/0x170 [ 587.634247] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 587.639000] ? do_mount+0x564/0x3070 [ 587.642709] ? ksys_mount+0x12d/0x140 [ 587.646509] ? __x64_sys_mount+0xbe/0x150 [ 587.650665] ? do_syscall_64+0x1b1/0x800 [ 587.654728] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 587.660099] ? find_held_lock+0x36/0x1c0 [ 587.664167] ? __lock_is_held+0xb5/0x140 [ 587.668232] ? log_ar_at_event+0x6e0/0x920 [ 587.672485] ? check_same_owner+0x320/0x320 [ 587.676813] ? rcu_note_context_switch+0x710/0x710 [ 587.681747] __should_failslab+0x124/0x180 [ 587.685988] should_failslab+0x9/0x14 [ 587.689791] kmem_cache_alloc_trace+0x2cb/0x780 [ 587.694461] ? __kmalloc_node+0x33/0x70 [ 587.698435] ? __kmalloc_node+0x33/0x70 [ 587.702413] ? rcu_read_lock_sched_held+0x108/0x120 [ 587.707436] __memcg_init_list_lru_node+0x17d/0x2c0 [ 587.712456] ? kvfree_rcu+0x20/0x20 [ 587.716084] ? __kmalloc_node+0x47/0x70 [ 587.720069] __list_lru_init+0x456/0x790 [ 587.724136] ? list_lru_destroy+0x4c0/0x4c0 [ 587.728458] ? mark_held_locks+0xc9/0x160 [ 587.732612] ? __raw_spin_lock_init+0x1c/0x100 [ 587.737194] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 587.742214] ? lockdep_init_map+0x9/0x10 [ 587.746279] sget_userns+0x767/0xf00 [ 587.749994] ? get_anon_bdev+0x2f0/0x2f0 [ 587.754060] ? destroy_unused_super.part.11+0x110/0x110 [ 587.759424] ? __alloc_pages_nodemask+0xacf/0xd70 [ 587.764275] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 587.769296] ? kasan_check_read+0x11/0x20 [ 587.773444] ? cap_capable+0x1f9/0x260 [ 587.777348] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 587.782887] ? security_capable+0x99/0xc0 [ 587.787039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 587.792579] ? ns_capable_common+0x13f/0x170 [ 587.796992] ? get_anon_bdev+0x2f0/0x2f0 [ 587.801053] sget+0x10b/0x150 [ 587.804163] ? fuse_get_root_inode+0x190/0x190 [ 587.808745] mount_nodev+0x33/0x110 [ 587.812374] fuse_mount+0x2c/0x40 [ 587.815828] mount_fs+0xae/0x328 [ 587.819198] vfs_kern_mount.part.34+0xd4/0x4d0 [ 587.823782] ? may_umount+0xb0/0xb0 [ 587.827409] ? _raw_read_unlock+0x22/0x30 [ 587.831555] ? __get_fs_type+0x97/0xc0 [ 587.835445] do_mount+0x564/0x3070 [ 587.838988] ? copy_mount_string+0x40/0x40 [ 587.843355] ? rcu_pm_notify+0xc0/0xc0 [ 587.847252] ? copy_mount_options+0x5f/0x380 [ 587.851667] ? rcu_read_lock_sched_held+0x108/0x120 [ 587.856684] ? kmem_cache_alloc_trace+0x616/0x780 [ 587.861540] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 587.867075] ? copy_mount_options+0x285/0x380 [ 587.871574] ksys_mount+0x12d/0x140 [ 587.875203] __x64_sys_mount+0xbe/0x150 [ 587.879186] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 587.884205] do_syscall_64+0x1b1/0x800 [ 587.888093] ? finish_task_switch+0x1ca/0x840 [ 587.892591] ? syscall_return_slowpath+0x5c0/0x5c0 [ 587.897520] ? syscall_return_slowpath+0x30f/0x5c0 [ 587.902451] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 587.907819] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 587.912670] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 587.917855] RIP: 0033:0x455a09 [ 587.921043] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 587.928750] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 587.936019] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 587.943286] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 587.950550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 587.957815] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:53 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:53 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:53 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:53 executing program 5 (fault-call:3 fault-nth:35): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:53 executing program 3: r0 = socket$inet6(0xa, 0x0, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:53 executing program 6: socket(0xa, 0x200000000001, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:53 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) ioctl$sock_bt_cmtp_CMTPCONNDEL(r1, 0x400443c9, &(0x7f0000000000)={{0x800, 0x3, 0x4, 0x35, 0x1000, 0x6}, 0x101}) 2033/05/18 03:33:53 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 2033/05/18 03:33:54 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025ffffff", 0x29}], 0x1) [ 588.429214] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 588.437564] FAT-fs (loop5): bogus number of reserved sectors [ 588.443474] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:54 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xf5ffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 588.472825] FAULT_INJECTION: forcing a failure. [ 588.472825] name failslab, interval 1, probability 0, space 0, times 0 [ 588.484326] CPU: 0 PID: 2127 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 588.491518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 588.500866] Call Trace: [ 588.503460] dump_stack+0x1b9/0x294 [ 588.507094] ? dump_stack_print_info.cold.2+0x52/0x52 [ 588.512284] ? __save_stack_trace+0x7e/0xd0 [ 588.516616] should_fail.cold.4+0xa/0x1a 2033/05/18 03:33:54 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 588.520680] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 588.525784] ? save_stack+0x43/0xd0 [ 588.529411] ? kasan_kmalloc+0xc4/0xe0 [ 588.533298] ? kmem_cache_alloc_trace+0x152/0x780 [ 588.538142] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 588.543328] ? __list_lru_init+0x456/0x790 [ 588.547570] ? sget_userns+0x767/0xf00 [ 588.551477] ? graph_lock+0x170/0x170 [ 588.555279] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 588.560032] ? do_mount+0x564/0x3070 [ 588.563745] ? ksys_mount+0x12d/0x140 [ 588.567546] ? __x64_sys_mount+0xbe/0x150 [ 588.571695] ? do_syscall_64+0x1b1/0x800 [ 588.575755] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 588.581125] ? find_held_lock+0x36/0x1c0 [ 588.585189] ? __lock_is_held+0xb5/0x140 [ 588.589264] ? check_same_owner+0x320/0x320 [ 588.593598] ? rcu_note_context_switch+0x710/0x710 [ 588.598534] __should_failslab+0x124/0x180 [ 588.602779] should_failslab+0x9/0x14 [ 588.606594] kmem_cache_alloc_trace+0x2cb/0x780 [ 588.611270] ? __kmalloc_node+0x33/0x70 [ 588.615244] ? __kmalloc_node+0x33/0x70 [ 588.619229] __memcg_init_list_lru_node+0x17d/0x2c0 [ 588.624246] ? kvfree_rcu+0x20/0x20 [ 588.627872] ? __kmalloc_node+0x47/0x70 [ 588.631851] __list_lru_init+0x456/0x790 [ 588.635913] ? list_lru_destroy+0x4c0/0x4c0 [ 588.640259] ? mark_held_locks+0xc9/0x160 [ 588.644411] ? __raw_spin_lock_init+0x1c/0x100 [ 588.648999] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 588.654019] ? lockdep_init_map+0x9/0x10 [ 588.658085] sget_userns+0x767/0xf00 [ 588.661799] ? get_anon_bdev+0x2f0/0x2f0 [ 588.665874] ? destroy_unused_super.part.11+0x110/0x110 [ 588.671239] ? __alloc_pages_nodemask+0xacf/0xd70 [ 588.676091] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 588.681116] ? kasan_check_read+0x11/0x20 [ 588.685268] ? cap_capable+0x1f9/0x260 [ 588.689163] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 588.694700] ? security_capable+0x99/0xc0 [ 588.698852] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 588.704388] ? ns_capable_common+0x13f/0x170 [ 588.708797] ? get_anon_bdev+0x2f0/0x2f0 [ 588.712859] sget+0x10b/0x150 [ 588.715968] ? fuse_get_root_inode+0x190/0x190 [ 588.720550] mount_nodev+0x33/0x110 [ 588.724180] fuse_mount+0x2c/0x40 [ 588.727638] mount_fs+0xae/0x328 [ 588.731009] vfs_kern_mount.part.34+0xd4/0x4d0 [ 588.735595] ? may_umount+0xb0/0xb0 [ 588.739223] ? _raw_read_unlock+0x22/0x30 [ 588.743368] ? __get_fs_type+0x97/0xc0 [ 588.747263] do_mount+0x564/0x3070 [ 588.750812] ? copy_mount_string+0x40/0x40 [ 588.755048] ? rcu_pm_notify+0xc0/0xc0 [ 588.758944] ? copy_mount_options+0x5f/0x380 [ 588.763362] ? rcu_read_lock_sched_held+0x108/0x120 [ 588.768382] ? kmem_cache_alloc_trace+0x616/0x780 [ 588.773241] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 588.778780] ? copy_mount_options+0x285/0x380 [ 588.783280] ksys_mount+0x12d/0x140 [ 588.786915] __x64_sys_mount+0xbe/0x150 [ 588.790891] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 588.795998] do_syscall_64+0x1b1/0x800 [ 588.799887] ? finish_task_switch+0x1ca/0x840 [ 588.804384] ? syscall_return_slowpath+0x5c0/0x5c0 [ 588.809315] ? syscall_return_slowpath+0x30f/0x5c0 [ 588.814248] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 588.819616] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 588.824464] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 588.829651] RIP: 0033:0x455a09 [ 588.832836] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 588.840547] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 588.847816] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 588.855081] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 588.862351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 588.869780] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:54 executing program 5 (fault-call:3 fault-nth:36): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:54 executing program 3: r0 = socket$inet6(0xa, 0x0, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:54 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 2033/05/18 03:33:54 executing program 6: socket(0xa, 0x200000000001, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:54 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x0, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000200)=""/35, &(0x7f0000000280)=0x23) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000180)={{0xa, 0x4e23, 0x3, @mcast1={0xff, 0x1, [], 0x1}, 0xabd1}, {0xa, 0x4e21, 0x7, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0x3d}, 0x9, [0x7fff, 0x7, 0x700000000000000, 0x5, 0x6, 0xffff, 0x4]}, 0x5c) r2 = socket(0xa, 0x1, 0xfffffffffffffffd) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f00000000c0)=""/126, &(0x7f0000000000)=0x7e) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 589.234816] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 589.321872] FAT-fs (loop5): bogus number of reserved sectors [ 589.327918] FAT-fs (loop5): Can't find a valid FAT filesystem [ 589.343200] FAULT_INJECTION: forcing a failure. [ 589.343200] name failslab, interval 1, probability 0, space 0, times 0 [ 589.355137] CPU: 0 PID: 2154 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 589.362331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 589.371681] Call Trace: [ 589.374273] dump_stack+0x1b9/0x294 [ 589.377912] ? dump_stack_print_info.cold.2+0x52/0x52 [ 589.383118] should_fail.cold.4+0xa/0x1a [ 589.387182] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 589.392287] ? kasan_slab_free+0xe/0x10 [ 589.396282] ? kfree+0xd9/0x260 [ 589.399565] ? match_number.isra.0+0x192/0x260 [ 589.404147] ? match_int+0x23/0x30 [ 589.407692] ? fuse_fill_super+0x812/0x1e20 [ 589.412012] ? mount_nodev+0x6b/0x110 [ 589.415809] ? fuse_mount+0x2c/0x40 [ 589.419435] ? graph_lock+0x170/0x170 [ 589.423237] ? __x64_sys_mount+0xbe/0x150 [ 589.427388] ? do_syscall_64+0x1b1/0x800 [ 589.431448] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 589.436812] ? do_raw_spin_unlock+0x9e/0x2e0 [ 589.441224] ? find_held_lock+0x36/0x1c0 [ 589.445287] ? __lock_is_held+0xb5/0x140 [ 589.449346] ? ttm_bo_handle_move_mem+0x1df0/0x2190 [ 589.454373] ? check_same_owner+0x320/0x320 [ 589.458696] ? mark_held_locks+0xc9/0x160 [ 589.462844] ? quarantine_put+0xeb/0x190 [ 589.466952] ? rcu_note_context_switch+0x710/0x710 [ 589.471886] ? kfree+0x111/0x260 [ 589.475262] __should_failslab+0x124/0x180 [ 589.479535] should_failslab+0x9/0x14 [ 589.483336] __kmalloc+0x2c8/0x760 [ 589.486882] ? match_strdup+0x5e/0xa0 [ 589.490690] match_strdup+0x5e/0xa0 [ 589.494320] fuse_match_uint+0x1a/0x60 [ 589.498208] fuse_fill_super+0x6e3/0x1e20 [ 589.502387] ? fuse_get_root_inode+0x190/0x190 [ 589.506979] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 589.512005] ? kasan_check_read+0x11/0x20 [ 589.516154] ? cap_capable+0x1f9/0x260 [ 589.520056] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 589.525596] ? security_capable+0x99/0xc0 [ 589.529753] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 589.535290] ? ns_capable_common+0x13f/0x170 [ 589.539701] ? get_anon_bdev+0x2f0/0x2f0 [ 589.543762] ? sget+0x113/0x150 [ 589.547046] ? fuse_get_root_inode+0x190/0x190 [ 589.551630] mount_nodev+0x6b/0x110 [ 589.555260] fuse_mount+0x2c/0x40 [ 589.558718] mount_fs+0xae/0x328 [ 589.562091] vfs_kern_mount.part.34+0xd4/0x4d0 [ 589.566674] ? may_umount+0xb0/0xb0 [ 589.570301] ? _raw_read_unlock+0x22/0x30 [ 589.574449] ? __get_fs_type+0x97/0xc0 [ 589.578340] do_mount+0x564/0x3070 [ 589.581887] ? copy_mount_string+0x40/0x40 [ 589.586123] ? rcu_pm_notify+0xc0/0xc0 [ 589.590017] ? copy_mount_options+0x5f/0x380 [ 589.594425] ? rcu_read_lock_sched_held+0x108/0x120 [ 589.599448] ? kmem_cache_alloc_trace+0x616/0x780 [ 589.604298] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 589.609843] ? _copy_from_user+0xdf/0x150 [ 589.613995] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 589.619538] ? copy_mount_options+0x285/0x380 [ 589.624038] ksys_mount+0x12d/0x140 [ 589.627669] __x64_sys_mount+0xbe/0x150 [ 589.631643] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 589.636664] do_syscall_64+0x1b1/0x800 [ 589.640554] ? finish_task_switch+0x1ca/0x840 [ 589.645054] ? syscall_return_slowpath+0x5c0/0x5c0 [ 589.649984] ? syscall_return_slowpath+0x30f/0x5c0 [ 589.654921] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 589.660292] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 589.665141] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 589.670326] RIP: 0033:0x455a09 [ 589.673515] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 589.681270] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 589.688539] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 589.695819] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 589.703088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 589.710352] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:55 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x1400}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:55 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:55 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:55 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 2033/05/18 03:33:55 executing program 5 (fault-call:3 fault-nth:37): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:55 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x0) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:55 executing program 4: syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") socketpair$ipx(0x4, 0x2, 0x0, &(0x7f0000000000)) 2033/05/18 03:33:55 executing program 6: socket(0xa, 0x200000000001, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:55 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xffff8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:55 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 2033/05/18 03:33:55 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 590.117459] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:55 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000048", 0x29}], 0x1) 2033/05/18 03:33:55 executing program 6: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:55 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x0) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) [ 590.182554] FAT-fs (loop5): bogus number of reserved sectors [ 590.188498] FAT-fs (loop5): Can't find a valid FAT filesystem [ 590.211700] FAULT_INJECTION: forcing a failure. [ 590.211700] name failslab, interval 1, probability 0, space 0, times 0 [ 590.223232] CPU: 0 PID: 2180 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 590.230421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 590.239768] Call Trace: [ 590.242360] dump_stack+0x1b9/0x294 [ 590.245991] ? dump_stack_print_info.cold.2+0x52/0x52 [ 590.251185] ? debug_check_no_locks_freed+0x310/0x310 [ 590.256384] should_fail.cold.4+0xa/0x1a [ 590.260450] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 590.265558] ? graph_lock+0x170/0x170 [ 590.269362] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 590.274929] ? graph_lock+0x170/0x170 [ 590.278733] ? graph_lock+0x170/0x170 [ 590.282564] ? ida_get_new_above+0x490/0xa10 [ 590.286978] ? save_stack+0x43/0xd0 [ 590.290606] ? find_held_lock+0x36/0x1c0 [ 590.294669] ? __lock_is_held+0xb5/0x140 [ 590.298741] ? check_same_owner+0x320/0x320 [ 590.303067] ? rcu_note_context_switch+0x710/0x710 [ 590.307999] __should_failslab+0x124/0x180 [ 590.312241] should_failslab+0x9/0x14 [ 590.316043] __kmalloc+0x2c8/0x760 [ 590.319585] ? up_read+0x110/0x110 [ 590.323123] ? down_read+0x1b0/0x1b0 [ 590.326843] ? match_number.isra.0+0xb6/0x260 [ 590.331347] match_number.isra.0+0xb6/0x260 [ 590.335672] ? match_strdup+0xa0/0xa0 [ 590.339477] ? match_wildcard+0x3c0/0x3c0 [ 590.343894] match_int+0x23/0x30 [ 590.347261] fuse_fill_super+0x812/0x1e20 [ 590.351414] ? fuse_get_root_inode+0x190/0x190 [ 590.355997] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 590.361016] ? kasan_check_read+0x11/0x20 [ 590.365169] ? cap_capable+0x1f9/0x260 [ 590.369063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 590.374647] ? security_capable+0x99/0xc0 [ 590.378838] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 590.384377] ? ns_capable_common+0x13f/0x170 [ 590.388790] ? get_anon_bdev+0x2f0/0x2f0 [ 590.392852] ? sget+0x113/0x150 [ 590.396134] ? fuse_get_root_inode+0x190/0x190 [ 590.400717] mount_nodev+0x6b/0x110 [ 590.404349] fuse_mount+0x2c/0x40 [ 590.407802] mount_fs+0xae/0x328 [ 590.411173] vfs_kern_mount.part.34+0xd4/0x4d0 [ 590.415767] ? may_umount+0xb0/0xb0 [ 590.419397] ? _raw_read_unlock+0x22/0x30 [ 590.423546] ? __get_fs_type+0x97/0xc0 [ 590.427438] do_mount+0x564/0x3070 [ 590.430987] ? copy_mount_string+0x40/0x40 [ 590.435220] ? rcu_pm_notify+0xc0/0xc0 [ 590.439117] ? copy_mount_options+0x5f/0x380 [ 590.443524] ? rcu_read_lock_sched_held+0x108/0x120 [ 590.448544] ? kmem_cache_alloc_trace+0x616/0x780 [ 590.453398] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 590.458931] ? copy_mount_options+0x285/0x380 [ 590.463432] ksys_mount+0x12d/0x140 [ 590.467063] __x64_sys_mount+0xbe/0x150 [ 590.471039] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 590.476059] do_syscall_64+0x1b1/0x800 [ 590.479947] ? finish_task_switch+0x1ca/0x840 [ 590.484446] ? syscall_return_slowpath+0x5c0/0x5c0 [ 590.489376] ? syscall_return_slowpath+0x30f/0x5c0 [ 590.494309] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 590.499680] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 590.504531] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 590.509716] RIP: 0033:0x455a09 [ 590.512904] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 590.520611] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 590.527876] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 590.535140] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 590.542407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 590.549678] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:56 executing program 5 (fault-call:3 fault-nth:38): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:56 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x1, &(0x7f0000000000)="c679e4112ab1262c8523bf012cf66f000000000000000000") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 590.875937] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 591.010415] FAT-fs (loop5): bogus number of reserved sectors [ 591.016306] FAT-fs (loop5): Can't find a valid FAT filesystem [ 591.059250] FAULT_INJECTION: forcing a failure. [ 591.059250] name failslab, interval 1, probability 0, space 0, times 0 [ 591.070579] CPU: 0 PID: 2212 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 591.077759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.087107] Call Trace: [ 591.089703] dump_stack+0x1b9/0x294 [ 591.093336] ? dump_stack_print_info.cold.2+0x52/0x52 [ 591.098527] ? lock_downgrade+0x8e0/0x8e0 [ 591.102676] ? graph_lock+0x170/0x170 [ 591.106486] should_fail.cold.4+0xa/0x1a [ 591.110547] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 591.115649] ? print_usage_bug+0xc0/0xc0 [ 591.119714] ? print_usage_bug+0xc0/0xc0 [ 591.123774] ? graph_lock+0x170/0x170 [ 591.127580] ? find_held_lock+0x36/0x1c0 [ 591.131644] ? __lock_is_held+0xb5/0x140 [ 591.135724] ? check_same_owner+0x320/0x320 [ 591.140047] ? lockdep_init_map+0x9/0x10 [ 591.144111] ? rcu_note_context_switch+0x710/0x710 [ 591.149042] ? kasan_check_write+0x14/0x20 [ 591.153279] ? __init_rwsem+0x1c4/0x290 [ 591.157254] __should_failslab+0x124/0x180 [ 591.161498] should_failslab+0x9/0x14 [ 591.165299] __kmalloc+0x2c8/0x760 [ 591.168843] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 591.173862] ? prealloc_shrinker+0xcf/0x130 [ 591.178192] prealloc_shrinker+0xcf/0x130 [ 591.182346] sget_userns+0x9b2/0xf00 [ 591.186060] ? get_anon_bdev+0x2f0/0x2f0 [ 591.190129] ? destroy_unused_super.part.11+0x110/0x110 [ 591.195496] ? __alloc_pages_nodemask+0xacf/0xd70 [ 591.200349] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 591.205375] ? kasan_check_read+0x11/0x20 [ 591.209536] ? cap_capable+0x1f9/0x260 [ 591.213449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 591.218991] ? security_capable+0x99/0xc0 [ 591.223151] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 591.228693] ? ns_capable_common+0x13f/0x170 [ 591.233117] ? get_anon_bdev+0x2f0/0x2f0 [ 591.237181] sget+0x10b/0x150 [ 591.240297] ? fuse_get_root_inode+0x190/0x190 [ 591.244886] mount_nodev+0x33/0x110 [ 591.248516] fuse_mount+0x2c/0x40 [ 591.251971] mount_fs+0xae/0x328 [ 591.255345] vfs_kern_mount.part.34+0xd4/0x4d0 [ 591.259931] ? may_umount+0xb0/0xb0 [ 591.263562] ? _raw_read_unlock+0x22/0x30 [ 591.267712] ? __get_fs_type+0x97/0xc0 [ 591.271605] do_mount+0x564/0x3070 [ 591.275150] ? copy_mount_string+0x40/0x40 [ 591.279392] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 591.284156] ? retint_kernel+0x10/0x10 [ 591.288053] ? copy_mount_options+0x1a1/0x380 [ 591.292555] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 591.297409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 591.302945] ? copy_mount_options+0x285/0x380 [ 591.307445] ksys_mount+0x12d/0x140 [ 591.311076] __x64_sys_mount+0xbe/0x150 [ 591.315053] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 591.320071] do_syscall_64+0x1b1/0x800 [ 591.323957] ? finish_task_switch+0x1ca/0x840 [ 591.328456] ? syscall_return_slowpath+0x5c0/0x5c0 [ 591.333390] ? syscall_return_slowpath+0x30f/0x5c0 [ 591.338322] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 591.343688] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 591.348534] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 591.353719] RIP: 0033:0x455a09 2033/05/18 03:33:57 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 2033/05/18 03:33:57 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xffffffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:57 executing program 6: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:57 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) getsockopt$IP_VS_SO_GET_INFO(r1, 0x0, 0x481, &(0x7f00000000c0), &(0x7f0000000100)=0xc) dup(r1) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000140)={0x0}) ioctl$DRM_IOCTL_RM_CTX(r3, 0xc0086421, &(0x7f0000000180)={r4, 0x1}) 2033/05/18 03:33:57 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000040", 0x29}], 0x1) 2033/05/18 03:33:57 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025ffffff", 0x29}], 0x1) 2033/05/18 03:33:57 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x0) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:57 executing program 5 (fault-call:3 fault-nth:39): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 591.356903] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 591.364613] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 591.371880] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 591.379146] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 591.386411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 591.393677] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:57 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500003f", 0x29}], 0x1) [ 591.485723] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:57 executing program 6: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r0, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:57 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:57 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x40000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:57 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 2033/05/18 03:33:57 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:57 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) getsockname$netlink(r1, &(0x7f0000000000), &(0x7f00000000c0)=0xc) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000100)={0xfff, 0x0, 0x6, 0x7a7634f2, 0x7, 0x8, 0x3}, 0xc) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 591.647864] FAT-fs (loop5): bogus number of reserved sectors [ 591.653881] FAT-fs (loop5): Can't find a valid FAT filesystem [ 591.684570] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 591.707441] FAULT_INJECTION: forcing a failure. [ 591.707441] name failslab, interval 1, probability 0, space 0, times 0 [ 591.718794] CPU: 0 PID: 2236 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 591.725983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.735333] Call Trace: [ 591.737932] dump_stack+0x1b9/0x294 [ 591.741565] ? dump_stack_print_info.cold.2+0x52/0x52 [ 591.746758] ? is_bpf_text_address+0xd7/0x170 [ 591.751261] should_fail.cold.4+0xa/0x1a [ 591.755330] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 591.760446] ? graph_lock+0x170/0x170 [ 591.764268] ? save_stack+0xa9/0xd0 [ 591.767913] ? find_held_lock+0x36/0x1c0 [ 591.771979] ? __lock_is_held+0xb5/0x140 [ 591.776042] ? __irqentry_text_end+0x14c798/0x1f98a8 [ 591.781161] ? check_same_owner+0x320/0x320 [ 591.785479] ? trace_hardirqs_off+0xd/0x10 [ 591.789715] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 591.794822] ? rcu_note_context_switch+0x710/0x710 [ 591.799752] ? debug_check_no_obj_freed+0x2ff/0x584 [ 591.804776] __should_failslab+0x124/0x180 [ 591.809012] should_failslab+0x9/0x14 [ 591.812812] __kmalloc+0x2c8/0x760 [ 591.816361] ? match_strdup+0x5e/0xa0 [ 591.820165] match_strdup+0x5e/0xa0 [ 591.823793] fuse_match_uint+0x1a/0x60 [ 591.827680] fuse_fill_super+0x455/0x1e20 [ 591.831838] ? fuse_get_root_inode+0x190/0x190 [ 591.836429] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 591.841457] ? kasan_check_read+0x11/0x20 [ 591.845611] ? cap_capable+0x1f9/0x260 [ 591.849514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 591.855050] ? security_capable+0x99/0xc0 [ 591.859202] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 591.864743] ? ns_capable_common+0x13f/0x170 [ 591.869154] ? get_anon_bdev+0x2f0/0x2f0 [ 591.873218] ? sget+0x113/0x150 [ 591.876506] ? fuse_get_root_inode+0x190/0x190 [ 591.881178] mount_nodev+0x6b/0x110 [ 591.884810] fuse_mount+0x2c/0x40 [ 591.888267] mount_fs+0xae/0x328 [ 591.891639] vfs_kern_mount.part.34+0xd4/0x4d0 [ 591.896224] ? may_umount+0xb0/0xb0 [ 591.899852] ? _raw_read_unlock+0x22/0x30 [ 591.904000] ? __get_fs_type+0x97/0xc0 [ 591.907889] do_mount+0x564/0x3070 [ 591.911435] ? copy_mount_string+0x40/0x40 [ 591.915676] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 591.920697] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 591.925559] ? retint_kernel+0x10/0x10 [ 591.929453] ? copy_mount_options+0x1f0/0x380 [ 591.933950] ? copy_mount_options+0x1f6/0x380 [ 591.938447] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 591.943982] ? copy_mount_options+0x285/0x380 [ 591.948481] ksys_mount+0x12d/0x140 [ 591.952110] __x64_sys_mount+0xbe/0x150 [ 591.956520] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 591.961538] do_syscall_64+0x1b1/0x800 [ 591.965427] ? finish_task_switch+0x1ca/0x840 [ 591.969923] ? syscall_return_slowpath+0x5c0/0x5c0 [ 591.974854] ? syscall_return_slowpath+0x30f/0x5c0 [ 591.979786] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 591.985153] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 591.990001] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 591.995189] RIP: 0033:0x455a09 [ 591.998377] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:33:57 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025006800", 0x29}], 0x1) [ 592.006090] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 592.013359] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 592.020625] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 592.027892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.035159] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:57 executing program 6: r0 = socket(0x0, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:57 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:57 executing program 5 (fault-call:3 fault-nth:40): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:57 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:57 executing program 4: syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r0 = socket(0xa, 0x1, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x18d6d754}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={r2, 0x3}, 0x8) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000240)=@broute={'broute\x00', 0x20, 0x1, 0x168, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000c0], 0x0, &(0x7f0000000040), &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]}, 0x21f) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") 2033/05/18 03:33:57 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000340", 0x29}], 0x1) 2033/05/18 03:33:57 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 592.339598] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:33:58 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025060000", 0x29}], 0x1) 2033/05/18 03:33:58 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xb00000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:58 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 592.489365] FAT-fs (loop5): bogus number of reserved sectors [ 592.495324] FAT-fs (loop5): Can't find a valid FAT filesystem [ 592.528565] FAULT_INJECTION: forcing a failure. [ 592.528565] name failslab, interval 1, probability 0, space 0, times 0 2033/05/18 03:33:58 executing program 6: r0 = socket(0x0, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 592.540009] CPU: 0 PID: 2263 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 592.547193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 592.556541] Call Trace: [ 592.559130] dump_stack+0x1b9/0x294 [ 592.562768] ? dump_stack_print_info.cold.2+0x52/0x52 [ 592.567963] ? rcu_is_watching+0x85/0x140 [ 592.572122] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 592.577329] should_fail.cold.4+0xa/0x1a [ 592.581397] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 592.586503] ? kernel_text_address+0x79/0xf0 [ 592.590911] ? __unwind_start+0x166/0x330 [ 592.595060] ? __kernel_text_address+0xd/0x40 [ 592.599564] ? graph_lock+0x170/0x170 [ 592.603369] ? __save_stack_trace+0x7e/0xd0 [ 592.607695] ? find_held_lock+0x36/0x1c0 [ 592.611759] ? __lock_is_held+0xb5/0x140 [ 592.615834] ? check_same_owner+0x320/0x320 [ 592.620159] ? rcu_note_context_switch+0x710/0x710 [ 592.625096] __should_failslab+0x124/0x180 [ 592.629339] should_failslab+0x9/0x14 [ 592.633144] __kmalloc+0x2c8/0x760 [ 592.636694] ? match_number.isra.0+0xb6/0x260 [ 592.641194] match_number.isra.0+0xb6/0x260 [ 592.645522] ? match_strdup+0xa0/0xa0 [ 592.649327] ? match_wildcard+0x3c0/0x3c0 [ 592.653476] ? trace_hardirqs_on+0xd/0x10 [ 592.657629] match_octal+0x26/0x30 [ 592.661173] fuse_fill_super+0x615/0x1e20 [ 592.665355] ? fuse_get_root_inode+0x190/0x190 [ 592.669942] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 592.674963] ? kasan_check_read+0x11/0x20 [ 592.679112] ? cap_capable+0x1f9/0x260 [ 592.683007] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 592.688544] ? security_capable+0x99/0xc0 [ 592.692697] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 592.698236] ? ns_capable_common+0x13f/0x170 [ 592.702655] ? get_anon_bdev+0x2f0/0x2f0 [ 592.706718] ? sget+0x113/0x150 [ 592.710002] ? fuse_get_root_inode+0x190/0x190 [ 592.714583] mount_nodev+0x6b/0x110 [ 592.718212] fuse_mount+0x2c/0x40 [ 592.721666] mount_fs+0xae/0x328 [ 592.725036] vfs_kern_mount.part.34+0xd4/0x4d0 [ 592.729623] ? may_umount+0xb0/0xb0 [ 592.733253] ? _raw_read_unlock+0x22/0x30 [ 592.737409] ? __get_fs_type+0x97/0xc0 [ 592.741305] do_mount+0x564/0x3070 [ 592.744851] ? copy_mount_string+0x40/0x40 [ 592.749087] ? rcu_pm_notify+0xc0/0xc0 [ 592.752982] ? copy_mount_options+0x5f/0x380 [ 592.757391] ? rcu_read_lock_sched_held+0x108/0x120 [ 592.762411] ? kmem_cache_alloc_trace+0x616/0x780 [ 592.767864] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 592.773407] ? _copy_from_user+0xdf/0x150 [ 592.777560] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 592.783095] ? copy_mount_options+0x285/0x380 [ 592.787609] ksys_mount+0x12d/0x140 [ 592.791252] __x64_sys_mount+0xbe/0x150 [ 592.795233] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 592.800258] do_syscall_64+0x1b1/0x800 [ 592.804152] ? finish_task_switch+0x1ca/0x840 [ 592.808648] ? syscall_return_slowpath+0x5c0/0x5c0 [ 592.813589] ? syscall_return_slowpath+0x30f/0x5c0 [ 592.818522] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 592.823891] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 592.828740] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 592.833928] RIP: 0033:0x455a09 [ 592.837117] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 592.844825] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 592.852092] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 592.859362] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 592.866628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 592.873894] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:58 executing program 5 (fault-call:3 fault-nth:41): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:58 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 592.924242] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 592.961165] kernel msg: ebtables bug: please report to author: Wrong len argument 2033/05/18 03:33:58 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80, 0x0) write$vnet(r0, &(0x7f0000000280)={0x1, {&(0x7f00000000c0)=""/96, 0x60, &(0x7f0000000140)=""/213, 0x3, 0x1}}, 0x68) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 592.972711] kernel msg: ebtables bug: please report to author: Wrong len argument 2033/05/18 03:33:58 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 593.147346] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 593.186017] FAT-fs (loop5): bogus number of reserved sectors [ 593.191944] FAT-fs (loop5): Can't find a valid FAT filesystem [ 593.214567] FAULT_INJECTION: forcing a failure. [ 593.214567] name failslab, interval 1, probability 0, space 0, times 0 [ 593.225938] CPU: 0 PID: 2292 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 593.233125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.242471] Call Trace: [ 593.245062] dump_stack+0x1b9/0x294 [ 593.248692] ? dump_stack_print_info.cold.2+0x52/0x52 [ 593.253881] ? is_bpf_text_address+0xd7/0x170 [ 593.258380] ? kernel_text_address+0x79/0xf0 [ 593.263137] ? __unwind_start+0x166/0x330 [ 593.267286] should_fail.cold.4+0xa/0x1a [ 593.271349] ? __save_stack_trace+0x7e/0xd0 [ 593.275675] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 593.280781] ? graph_lock+0x170/0x170 [ 593.284581] ? save_stack+0x43/0xd0 [ 593.288210] ? __kasan_slab_free+0x11a/0x170 [ 593.292635] ? kasan_slab_free+0xe/0x10 [ 593.296612] ? find_held_lock+0x36/0x1c0 [ 593.300676] ? __lock_is_held+0xb5/0x140 [ 593.304746] ? check_same_owner+0x320/0x320 [ 593.309070] ? rcu_note_context_switch+0x710/0x710 [ 593.314002] __should_failslab+0x124/0x180 [ 593.318243] should_failslab+0x9/0x14 [ 593.322041] __kmalloc+0x2c8/0x760 [ 593.325578] ? kfree+0x111/0x260 [ 593.328947] ? match_number.isra.0+0x192/0x260 [ 593.333531] ? match_number.isra.0+0xb6/0x260 [ 593.338030] match_number.isra.0+0xb6/0x260 [ 593.342358] ? match_strdup+0xa0/0xa0 [ 593.346158] ? match_wildcard+0x3c0/0x3c0 [ 593.350304] ? trace_hardirqs_on+0xd/0x10 [ 593.354474] match_int+0x23/0x30 [ 593.357843] fuse_fill_super+0x362/0x1e20 [ 593.361996] ? fuse_get_root_inode+0x190/0x190 [ 593.367099] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 593.372121] ? kasan_check_read+0x11/0x20 [ 593.376296] ? cap_capable+0x1f9/0x260 [ 593.380189] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 593.385729] ? security_capable+0x99/0xc0 [ 593.389880] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 593.395415] ? ns_capable_common+0x13f/0x170 [ 593.399829] ? get_anon_bdev+0x2f0/0x2f0 [ 593.403886] ? sget+0x113/0x150 [ 593.407165] ? fuse_get_root_inode+0x190/0x190 [ 593.411745] mount_nodev+0x6b/0x110 [ 593.415373] fuse_mount+0x2c/0x40 [ 593.418827] mount_fs+0xae/0x328 [ 593.422205] vfs_kern_mount.part.34+0xd4/0x4d0 [ 593.426791] ? may_umount+0xb0/0xb0 [ 593.430419] ? _raw_read_unlock+0x22/0x30 [ 593.434561] ? __get_fs_type+0x97/0xc0 [ 593.438452] do_mount+0x564/0x3070 [ 593.441989] ? interrupt_entry+0xb1/0xf0 [ 593.446050] ? copy_mount_string+0x40/0x40 [ 593.450287] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 593.455046] ? retint_kernel+0x10/0x10 [ 593.458939] ? copy_mount_options+0x213/0x380 [ 593.463436] ? write_comp_data+0x11/0x70 [ 593.467498] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 593.473034] ? copy_mount_options+0x285/0x380 [ 593.477532] ksys_mount+0x12d/0x140 [ 593.481163] __x64_sys_mount+0xbe/0x150 [ 593.485134] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 593.490151] do_syscall_64+0x1b1/0x800 [ 593.494037] ? finish_task_switch+0x1ca/0x840 [ 593.498536] ? syscall_return_slowpath+0x5c0/0x5c0 [ 593.503469] ? syscall_return_slowpath+0x30f/0x5c0 [ 593.508400] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 593.513766] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 593.518612] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 593.523797] RIP: 0033:0x455a09 [ 593.526982] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 593.534691] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 593.541957] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 593.549226] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 593.556490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 593.563764] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:59 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x14000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:59 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500007a", 0x29}], 0x1) 2033/05/18 03:33:59 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:59 executing program 6: r0 = socket(0x0, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:33:59 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x2040000a, 0x2) ioctl(r1, 0x9, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:33:59 executing program 5 (fault-call:3 fault-nth:42): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:33:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:33:59 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:33:59 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x1000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:33:59 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:33:59 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0x1b, 0x803, 0x7) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004031}) [ 593.883886] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 593.909269] FAT-fs (loop5): bogus number of reserved sectors [ 593.915333] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:33:59 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025006c00", 0x29}], 0x1) 2033/05/18 03:33:59 executing program 6: r0 = socket(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 593.980703] FAULT_INJECTION: forcing a failure. [ 593.980703] name failslab, interval 1, probability 0, space 0, times 0 [ 593.992170] CPU: 0 PID: 2315 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 593.999358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.008708] Call Trace: [ 594.011307] dump_stack+0x1b9/0x294 [ 594.014938] ? dump_stack_print_info.cold.2+0x52/0x52 [ 594.020138] should_fail.cold.4+0xa/0x1a [ 594.024211] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 594.029323] ? graph_lock+0x170/0x170 [ 594.033125] ? lock_downgrade+0x8e0/0x8e0 [ 594.037276] ? kasan_check_write+0x14/0x20 [ 594.041513] ? find_held_lock+0x36/0x1c0 [ 594.045577] ? __lock_is_held+0xb5/0x140 [ 594.049639] ? bond_change_active_slave+0x1f70/0x23a0 [ 594.054843] ? check_same_owner+0x320/0x320 [ 594.059171] ? rcu_note_context_switch+0x710/0x710 [ 594.064103] __should_failslab+0x124/0x180 [ 594.068345] should_failslab+0x9/0x14 [ 594.072153] kmem_cache_alloc_trace+0x2cb/0x780 [ 594.076834] ? match_wildcard+0x3c0/0x3c0 [ 594.080983] ? trace_hardirqs_on+0xd/0x10 [ 594.085136] fuse_fill_super+0xc92/0x1e20 [ 594.089299] ? fuse_get_root_inode+0x190/0x190 [ 594.093888] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 594.098909] ? kasan_check_read+0x11/0x20 [ 594.103058] ? cap_capable+0x1f9/0x260 [ 594.106955] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 594.112491] ? security_capable+0x99/0xc0 [ 594.116641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 594.122180] ? ns_capable_common+0x13f/0x170 [ 594.126589] ? get_anon_bdev+0x2f0/0x2f0 [ 594.130647] ? sget+0x113/0x150 [ 594.133929] ? fuse_get_root_inode+0x190/0x190 [ 594.138509] mount_nodev+0x6b/0x110 [ 594.142141] fuse_mount+0x2c/0x40 [ 594.145600] mount_fs+0xae/0x328 [ 594.148973] vfs_kern_mount.part.34+0xd4/0x4d0 [ 594.153554] ? may_umount+0xb0/0xb0 [ 594.157187] ? _raw_read_unlock+0x22/0x30 [ 594.161335] ? __get_fs_type+0x97/0xc0 [ 594.165226] do_mount+0x564/0x3070 [ 594.168769] ? copy_mount_string+0x40/0x40 [ 594.173004] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 594.178023] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 594.182782] ? retint_kernel+0x10/0x10 [ 594.186675] ? copy_mount_options+0x1f0/0x380 [ 594.191172] ? copy_mount_options+0x1f6/0x380 [ 594.195668] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 594.201207] ? copy_mount_options+0x285/0x380 [ 594.205704] ksys_mount+0x12d/0x140 [ 594.209334] __x64_sys_mount+0xbe/0x150 [ 594.213308] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 594.218327] do_syscall_64+0x1b1/0x800 [ 594.222214] ? finish_task_switch+0x1ca/0x840 [ 594.226716] ? syscall_return_slowpath+0x5c0/0x5c0 [ 594.231646] ? syscall_return_slowpath+0x30f/0x5c0 [ 594.236580] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 594.241946] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 594.246791] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 594.251982] RIP: 0033:0x455a09 [ 594.255170] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 594.262877] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 594.270152] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 594.277417] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 594.284680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 594.291945] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 594.545149] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:00 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:34:00 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:00 executing program 5 (fault-call:3 fault-nth:43): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:00 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = syz_open_dev$dspn(&(0x7f00000002c0)='/dev/dsp#\x00', 0x100, 0x80001) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000300)={0x9, {{0xa, 0x4e20, 0x4, @ipv4={[], [0xff, 0xff]}, 0x3}}}, 0x88) socketpair(0x9, 0x2, 0x20, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x18) syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x2, 0x402000) linkat(r2, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000140)='./file0\x00', 0x1000) r4 = socket(0xa, 0x1, 0x0) getsockname$unix(r2, &(0x7f00000001c0), &(0x7f0000000280)=0x6e) ioctl(r4, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:00 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025ffffff", 0x29}], 0x1) 2033/05/18 03:34:00 executing program 6: r0 = socket(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:00 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 594.660256] FAT-fs (loop5): bogus number of reserved sectors [ 594.666331] FAT-fs (loop5): Can't find a valid FAT filesystem [ 594.699233] FAULT_INJECTION: forcing a failure. [ 594.699233] name failslab, interval 1, probability 0, space 0, times 0 2033/05/18 03:34:00 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) [ 594.710596] CPU: 0 PID: 2340 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 594.717784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.727142] Call Trace: [ 594.729728] dump_stack+0x1b9/0x294 [ 594.733346] ? dump_stack_print_info.cold.2+0x52/0x52 [ 594.738529] should_fail.cold.4+0xa/0x1a [ 594.742578] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 594.747672] ? trace_hardirqs_on+0xd/0x10 [ 594.751807] ? graph_lock+0x170/0x170 [ 594.755592] ? graph_lock+0x170/0x170 [ 594.759379] ? find_held_lock+0x36/0x1c0 [ 594.763428] ? __lock_is_held+0xb5/0x140 [ 594.767484] ? check_same_owner+0x320/0x320 [ 594.771794] ? rcu_note_context_switch+0x710/0x710 [ 594.776711] __should_failslab+0x124/0x180 [ 594.780932] should_failslab+0x9/0x14 [ 594.784719] kmem_cache_alloc_trace+0x2cb/0x780 [ 594.789374] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 594.794462] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 594.799466] wb_congested_get_create+0x1ca/0x450 [ 594.804211] ? wb_wakeup_delayed+0xf0/0xf0 [ 594.808433] ? __lockdep_init_map+0x105/0x590 [ 594.812914] wb_init+0x62e/0x9e0 [ 594.816270] ? bdi_put+0x180/0x180 [ 594.819797] ? mark_held_locks+0xc9/0x160 [ 594.823939] ? do_mount+0x564/0x3070 [ 594.827640] ? __raw_spin_lock_init+0x1c/0x100 [ 594.832213] ? mark_held_locks+0xc9/0x160 [ 594.836362] ? __raw_spin_lock_init+0x1c/0x100 [ 594.840934] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 594.845937] ? lockdep_init_map+0x9/0x10 [ 594.849984] bdi_init+0x353/0x510 [ 594.853425] ? wb_init+0x9e0/0x9e0 [ 594.856953] ? bdi_alloc_node+0x67/0xe0 [ 594.860913] ? bdi_alloc_node+0x67/0xe0 [ 594.864884] ? rcu_read_lock_sched_held+0x108/0x120 [ 594.869885] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 594.875154] ? _raw_spin_unlock+0x22/0x30 [ 594.879289] bdi_alloc_node+0x81/0xe0 [ 594.883076] super_setup_bdi_name+0x8b/0x220 [ 594.887975] ? kill_block_super+0x100/0x100 [ 594.892285] ? rcu_read_lock_sched_held+0x108/0x120 [ 594.897290] ? kmem_cache_alloc_trace+0x616/0x780 [ 594.902124] ? match_wildcard+0x3c0/0x3c0 [ 594.906259] ? trace_hardirqs_on+0xd/0x10 [ 594.910394] fuse_fill_super+0xe6e/0x1e20 [ 594.914530] ? fuse_get_root_inode+0x190/0x190 [ 594.919102] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 594.924110] ? kasan_check_read+0x11/0x20 [ 594.928247] ? cap_capable+0x1f9/0x260 [ 594.932126] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 594.937645] ? security_capable+0x99/0xc0 [ 594.941778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 594.947299] ? ns_capable_common+0x13f/0x170 [ 594.951691] ? get_anon_bdev+0x2f0/0x2f0 [ 594.955734] ? sget+0x113/0x150 [ 594.958998] ? fuse_get_root_inode+0x190/0x190 [ 594.963569] mount_nodev+0x6b/0x110 [ 594.967181] fuse_mount+0x2c/0x40 [ 594.970619] mount_fs+0xae/0x328 [ 594.973971] vfs_kern_mount.part.34+0xd4/0x4d0 [ 594.978549] ? may_umount+0xb0/0xb0 [ 594.982249] ? _raw_read_unlock+0x22/0x30 [ 594.986381] ? __get_fs_type+0x97/0xc0 [ 594.990255] do_mount+0x564/0x3070 [ 594.993781] ? copy_mount_string+0x40/0x40 [ 594.998003] ? rcu_pm_notify+0xc0/0xc0 [ 595.001887] ? copy_mount_options+0x5f/0x380 [ 595.006281] ? rcu_read_lock_sched_held+0x108/0x120 [ 595.011281] ? kmem_cache_alloc_trace+0x616/0x780 [ 595.016116] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 595.021638] ? _copy_from_user+0xdf/0x150 [ 595.025772] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 595.031295] ? copy_mount_options+0x285/0x380 [ 595.035776] ksys_mount+0x12d/0x140 [ 595.039389] __x64_sys_mount+0xbe/0x150 [ 595.043346] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 595.048348] do_syscall_64+0x1b1/0x800 [ 595.052217] ? finish_task_switch+0x1ca/0x840 [ 595.056697] ? syscall_return_slowpath+0x5c0/0x5c0 [ 595.061611] ? syscall_return_slowpath+0x30f/0x5c0 [ 595.066538] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 595.071888] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 595.076717] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 595.081889] RIP: 0033:0x455a09 [ 595.085063] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 595.092761] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 595.100018] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 2033/05/18 03:34:00 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x200000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:00 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500f000", 0x29}], 0x1) [ 595.107272] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 595.114527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 595.121778] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:00 executing program 5 (fault-call:3 fault-nth:44): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:00 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea11000000250000ff", 0x29}], 0x1) [ 595.226652] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:00 executing program 6: r0 = socket(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:01 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) [ 595.445632] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 595.467774] FAT-fs (loop5): bogus number of reserved sectors [ 595.473710] FAT-fs (loop5): Can't find a valid FAT filesystem [ 595.508820] FAULT_INJECTION: forcing a failure. [ 595.508820] name failslab, interval 1, probability 0, space 0, times 0 [ 595.520162] CPU: 0 PID: 2371 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 595.527354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.536701] Call Trace: [ 595.539296] dump_stack+0x1b9/0x294 [ 595.542931] ? dump_stack_print_info.cold.2+0x52/0x52 [ 595.548129] should_fail.cold.4+0xa/0x1a [ 595.552192] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 595.557295] ? fuse_mount+0x2c/0x40 [ 595.560920] ? mount_fs+0xae/0x328 [ 595.564459] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 595.569216] ? do_mount+0x564/0x3070 [ 595.572926] ? ksys_mount+0x12d/0x140 [ 595.576828] ? __x64_sys_mount+0xbe/0x150 [ 595.580975] ? do_syscall_64+0x1b1/0x800 [ 595.585062] ? graph_lock+0x170/0x170 [ 595.588870] ? find_held_lock+0x36/0x1c0 [ 595.592932] ? find_held_lock+0x36/0x1c0 [ 595.596999] ? __lock_is_held+0xb5/0x140 [ 595.601075] ? check_same_owner+0x320/0x320 [ 595.605406] ? rcu_note_context_switch+0x710/0x710 [ 595.610339] ? kasan_check_read+0x11/0x20 [ 595.614489] __should_failslab+0x124/0x180 [ 595.618832] should_failslab+0x9/0x14 [ 595.622636] kmem_cache_alloc_node_trace+0x26f/0x770 [ 595.627748] ? _raw_spin_unlock+0x22/0x30 [ 595.631900] bdi_alloc_node+0x67/0xe0 [ 595.635703] super_setup_bdi_name+0x8b/0x220 [ 595.640113] ? kill_block_super+0x100/0x100 [ 595.644439] ? rcu_read_lock_sched_held+0x108/0x120 [ 595.649454] ? kmem_cache_alloc_trace+0x616/0x780 [ 595.654296] ? match_wildcard+0x3c0/0x3c0 [ 595.658445] ? trace_hardirqs_on+0xd/0x10 [ 595.662611] fuse_fill_super+0xe6e/0x1e20 [ 595.666778] ? fuse_get_root_inode+0x190/0x190 [ 595.671366] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 595.676386] ? kasan_check_read+0x11/0x20 [ 595.680535] ? cap_capable+0x1f9/0x260 [ 595.684429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 595.689973] ? security_capable+0x99/0xc0 [ 595.694127] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 595.699662] ? ns_capable_common+0x13f/0x170 [ 595.704071] ? get_anon_bdev+0x2f0/0x2f0 [ 595.708129] ? sget+0x113/0x150 [ 595.711414] ? fuse_get_root_inode+0x190/0x190 [ 595.715996] mount_nodev+0x6b/0x110 [ 595.719635] fuse_mount+0x2c/0x40 [ 595.723096] mount_fs+0xae/0x328 [ 595.726469] vfs_kern_mount.part.34+0xd4/0x4d0 [ 595.731057] ? may_umount+0xb0/0xb0 [ 595.734684] ? _raw_read_unlock+0x22/0x30 [ 595.738829] ? __get_fs_type+0x97/0xc0 [ 595.742723] do_mount+0x564/0x3070 [ 595.746269] ? copy_mount_string+0x40/0x40 [ 595.750503] ? rcu_pm_notify+0xc0/0xc0 [ 595.754395] ? copy_mount_options+0x5f/0x380 [ 595.758802] ? rcu_read_lock_sched_held+0x108/0x120 [ 595.763819] ? kmem_cache_alloc_trace+0x616/0x780 [ 595.768671] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 595.774208] ? _copy_from_user+0xdf/0x150 [ 595.778365] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 595.783902] ? copy_mount_options+0x285/0x380 [ 595.788400] ksys_mount+0x12d/0x140 [ 595.792034] __x64_sys_mount+0xbe/0x150 [ 595.796011] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 595.801035] do_syscall_64+0x1b1/0x800 [ 595.804924] ? finish_task_switch+0x1ca/0x840 [ 595.809419] ? syscall_return_slowpath+0x5c0/0x5c0 [ 595.814352] ? syscall_return_slowpath+0x30f/0x5c0 [ 595.819286] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 595.824653] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 595.829501] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 595.834685] RIP: 0033:0x455a09 [ 595.837871] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 595.845578] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 595.852846] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 595.860114] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 595.867379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 595.874647] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:01 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0xf5ffffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:01 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={"c495040000054fb4e36a0a6b39c758f0", 0x800000000004032}) 2033/05/18 03:34:01 executing program 5 (fault-call:3 fault-nth:45): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:01 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:01 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f00000007c0), 0x4) syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f00000016c0)) 2033/05/18 03:34:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:01 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:01 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x400000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 596.159833] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 596.198718] FAT-fs (loop5): bogus number of reserved sectors 2033/05/18 03:34:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250000f0", 0x29}], 0x1) 2033/05/18 03:34:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:01 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 596.204646] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:34:01 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 596.258372] FAULT_INJECTION: forcing a failure. [ 596.258372] name failslab, interval 1, probability 0, space 0, times 0 [ 596.269884] CPU: 0 PID: 2394 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 596.277074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.286423] Call Trace: [ 596.289021] dump_stack+0x1b9/0x294 [ 596.292658] ? dump_stack_print_info.cold.2+0x52/0x52 [ 596.297856] should_fail.cold.4+0xa/0x1a [ 596.301918] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 596.307024] ? trace_hardirqs_on+0xd/0x10 [ 596.311204] ? graph_lock+0x170/0x170 [ 596.315010] ? graph_lock+0x170/0x170 [ 596.318816] ? find_held_lock+0x36/0x1c0 [ 596.322880] ? __lock_is_held+0xb5/0x140 [ 596.326954] ? check_same_owner+0x320/0x320 [ 596.331283] ? rcu_note_context_switch+0x710/0x710 [ 596.336230] __should_failslab+0x124/0x180 [ 596.340469] should_failslab+0x9/0x14 [ 596.344270] kmem_cache_alloc_trace+0x2cb/0x780 [ 596.348943] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 596.354053] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 596.359075] wb_congested_get_create+0x1ca/0x450 [ 596.363835] ? wb_wakeup_delayed+0xf0/0xf0 [ 596.368076] ? __lockdep_init_map+0x105/0x590 [ 596.372572] wb_init+0x62e/0x9e0 [ 596.375941] ? bdi_put+0x180/0x180 [ 596.379482] ? mark_held_locks+0xc9/0x160 [ 596.383631] ? do_mount+0x564/0x3070 [ 596.387345] ? __raw_spin_lock_init+0x1c/0x100 [ 596.391935] ? mark_held_locks+0xc9/0x160 [ 596.396086] ? __raw_spin_lock_init+0x1c/0x100 [ 596.400677] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 596.405700] ? lockdep_init_map+0x9/0x10 [ 596.409764] bdi_init+0x353/0x510 [ 596.413218] ? wb_init+0x9e0/0x9e0 [ 596.416762] ? bdi_alloc_node+0x67/0xe0 [ 596.420733] ? bdi_alloc_node+0x67/0xe0 [ 596.424709] ? rcu_read_lock_sched_held+0x108/0x120 [ 596.429727] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 596.435013] ? _raw_spin_unlock+0x22/0x30 [ 596.439165] bdi_alloc_node+0x81/0xe0 [ 596.442979] super_setup_bdi_name+0x8b/0x220 [ 596.447389] ? kill_block_super+0x100/0x100 [ 596.451710] ? rcu_read_lock_sched_held+0x108/0x120 [ 596.456726] ? kmem_cache_alloc_trace+0x616/0x780 [ 596.461571] ? match_wildcard+0x3c0/0x3c0 [ 596.465725] ? trace_hardirqs_on+0xd/0x10 [ 596.469880] fuse_fill_super+0xe6e/0x1e20 [ 596.474042] ? fuse_get_root_inode+0x190/0x190 [ 596.478627] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 596.483649] ? kasan_check_read+0x11/0x20 [ 596.487799] ? cap_capable+0x1f9/0x260 [ 596.491692] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 596.497229] ? security_capable+0x99/0xc0 [ 596.501384] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 596.506924] ? ns_capable_common+0x13f/0x170 [ 596.511336] ? get_anon_bdev+0x2f0/0x2f0 [ 596.515398] ? sget+0x113/0x150 [ 596.518682] ? fuse_get_root_inode+0x190/0x190 [ 596.523267] mount_nodev+0x6b/0x110 [ 596.526898] fuse_mount+0x2c/0x40 [ 596.530356] mount_fs+0xae/0x328 [ 596.533731] vfs_kern_mount.part.34+0xd4/0x4d0 [ 596.538314] ? may_umount+0xb0/0xb0 [ 596.541943] ? _raw_read_unlock+0x22/0x30 [ 596.546092] ? __get_fs_type+0x97/0xc0 [ 596.549989] do_mount+0x564/0x3070 [ 596.553548] ? interrupt_entry+0xb1/0xf0 [ 596.557611] ? copy_mount_string+0x40/0x40 [ 596.561847] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 596.566610] ? retint_kernel+0x10/0x10 [ 596.570503] ? copy_mount_options+0x213/0x380 [ 596.575004] ? write_comp_data+0x11/0x70 [ 596.579071] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 596.584609] ? copy_mount_options+0x285/0x380 [ 596.589110] ksys_mount+0x12d/0x140 [ 596.592739] __x64_sys_mount+0xbe/0x150 [ 596.596715] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 596.601734] do_syscall_64+0x1b1/0x800 [ 596.605624] ? finish_task_switch+0x1ca/0x840 [ 596.610129] ? syscall_return_slowpath+0x5c0/0x5c0 [ 596.615098] ? syscall_return_slowpath+0x30f/0x5c0 [ 596.620069] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 596.625443] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 596.630640] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 596.635826] RIP: 0033:0x455a09 [ 596.639016] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 596.646728] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 2033/05/18 03:34:02 executing program 4: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:02 executing program 3: [ 596.653996] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 596.661267] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 596.668535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 596.675806] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:02 executing program 5 (fault-call:3 fault-nth:46): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:02 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:02 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xb00}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:02 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) sendto(r1, &(0x7f0000000000)="a60b515c038410430df69b82c7e4cdc10043c57546e65c37aa1d679e7873abf897fe364a9c3ed45c3b67fcb1933a4b", 0x2f, 0x4000, &(0x7f00000000c0)=@in={0x2, 0x4e22, @loopback=0x7f000001}, 0x80) 2033/05/18 03:34:02 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 596.971117] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 597.063107] FAT-fs (loop5): bogus number of reserved sectors [ 597.069057] FAT-fs (loop5): Can't find a valid FAT filesystem [ 597.099658] FAULT_INJECTION: forcing a failure. [ 597.099658] name failslab, interval 1, probability 0, space 0, times 0 [ 597.111133] CPU: 0 PID: 2418 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 597.118319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.127663] Call Trace: [ 597.130253] dump_stack+0x1b9/0x294 [ 597.133884] ? dump_stack_print_info.cold.2+0x52/0x52 [ 597.139086] should_fail.cold.4+0xa/0x1a [ 597.143149] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 597.148259] ? graph_lock+0x170/0x170 [ 597.152068] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 597.157174] ? find_held_lock+0x36/0x1c0 [ 597.161239] ? __lock_is_held+0xb5/0x140 [ 597.165327] ? check_same_owner+0x320/0x320 [ 597.169657] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 597.175199] ? rcu_note_context_switch+0x710/0x710 [ 597.180132] __should_failslab+0x124/0x180 [ 597.184370] should_failslab+0x9/0x14 [ 597.188173] kmem_cache_alloc_trace+0x2cb/0x780 [ 597.192844] ? __raw_spin_lock_init+0x1c/0x100 [ 597.197434] device_create_groups_vargs+0xa7/0x270 [ 597.202372] device_create_vargs+0x46/0x60 [ 597.206611] bdi_register_va.part.10+0xbb/0x9b0 [ 597.211283] ? cgwb_kill+0x630/0x630 [ 597.215005] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 597.220545] ? bdi_init+0x416/0x510 [ 597.224175] ? wb_init+0x9e0/0x9e0 [ 597.227728] ? bdi_alloc_node+0x67/0xe0 [ 597.231704] ? bdi_alloc_node+0x67/0xe0 [ 597.235685] ? rcu_read_lock_sched_held+0x108/0x120 [ 597.240704] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 597.245990] ? _raw_spin_unlock+0x22/0x30 [ 597.250147] bdi_register_va+0x68/0x80 [ 597.254042] super_setup_bdi_name+0x123/0x220 [ 597.258542] ? kill_block_super+0x100/0x100 [ 597.262870] ? kmem_cache_alloc_trace+0x616/0x780 [ 597.267715] ? match_wildcard+0x3c0/0x3c0 [ 597.271864] ? trace_hardirqs_on+0xd/0x10 [ 597.276018] fuse_fill_super+0xe6e/0x1e20 [ 597.280182] ? fuse_get_root_inode+0x190/0x190 [ 597.284773] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 597.289797] ? kasan_check_read+0x11/0x20 [ 597.293952] ? cap_capable+0x1f9/0x260 [ 597.297850] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 597.303414] ? security_capable+0x99/0xc0 [ 597.307580] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 597.313118] ? ns_capable_common+0x13f/0x170 [ 597.317531] ? get_anon_bdev+0x2f0/0x2f0 [ 597.321591] ? sget+0x113/0x150 [ 597.324874] ? fuse_get_root_inode+0x190/0x190 [ 597.329458] mount_nodev+0x6b/0x110 [ 597.333089] fuse_mount+0x2c/0x40 [ 597.336555] mount_fs+0xae/0x328 [ 597.339930] vfs_kern_mount.part.34+0xd4/0x4d0 [ 597.344515] ? may_umount+0xb0/0xb0 [ 597.348147] ? _raw_read_unlock+0x22/0x30 [ 597.352297] ? __get_fs_type+0x97/0xc0 [ 597.356193] do_mount+0x564/0x3070 [ 597.359741] ? copy_mount_string+0x40/0x40 [ 597.363974] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 597.368997] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 597.373757] ? retint_kernel+0x10/0x10 [ 597.377651] ? copy_mount_options+0x1f0/0x380 [ 597.382147] ? copy_mount_options+0x1fa/0x380 [ 597.386647] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 597.392184] ? copy_mount_options+0x285/0x380 [ 597.396683] ksys_mount+0x12d/0x140 [ 597.400314] __x64_sys_mount+0xbe/0x150 [ 597.404288] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 597.409309] do_syscall_64+0x1b1/0x800 [ 597.413196] ? finish_task_switch+0x1ca/0x840 [ 597.417693] ? syscall_return_slowpath+0x5c0/0x5c0 [ 597.422622] ? syscall_return_slowpath+0x30f/0x5c0 [ 597.427557] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 597.432930] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 597.437780] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 597.442968] RIP: 0033:0x455a09 [ 597.446157] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 597.453865] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 597.461135] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 597.468400] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 597.475664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 597.482932] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:03 executing program 3: 2033/05/18 03:34:03 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000004", 0x29}], 0x1) 2033/05/18 03:34:03 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250000f0", 0x29}], 0x1) 2033/05/18 03:34:03 executing program 5 (fault-call:3 fault-nth:47): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:03 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:03 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0xffffffffffffffff) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:03 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x0, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 597.747337] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:03 executing program 3: 2033/05/18 03:34:03 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:03 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:03 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:03 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x0, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 597.863054] FAT-fs (loop5): bogus number of reserved sectors [ 597.868978] FAT-fs (loop5): Can't find a valid FAT filesystem [ 597.887522] FAULT_INJECTION: forcing a failure. [ 597.887522] name failslab, interval 1, probability 0, space 0, times 0 [ 597.898843] CPU: 0 PID: 2442 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 597.906028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.915372] Call Trace: [ 597.917962] dump_stack+0x1b9/0x294 [ 597.921594] ? dump_stack_print_info.cold.2+0x52/0x52 [ 597.926794] should_fail.cold.4+0xa/0x1a [ 597.930864] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 597.935972] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 597.940988] ? __lockdep_init_map+0x105/0x590 [ 597.945486] ? graph_lock+0x170/0x170 [ 597.949291] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 597.954833] ? put_dec_trunc8+0x273/0x300 [ 597.958985] ? find_held_lock+0x36/0x1c0 [ 597.963051] ? __lock_is_held+0xb5/0x140 [ 597.967108] ? ebt_stp_mt_check+0x290/0x370 [ 597.971440] ? check_same_owner+0x320/0x320 [ 597.975760] ? device_pm_sleep_init+0xe8/0x200 [ 597.980346] ? rcu_note_context_switch+0x710/0x710 [ 597.985283] __should_failslab+0x124/0x180 [ 597.989524] should_failslab+0x9/0x14 [ 597.993329] __kmalloc_track_caller+0x2c4/0x760 [ 597.998007] ? pointer+0xa10/0xa10 [ 598.001560] ? kvasprintf_const+0x67/0x190 [ 598.005801] kvasprintf+0xa9/0x130 [ 598.009345] ? bust_spinlocks+0xe0/0xe0 [ 598.013325] ? rcu_read_lock_sched_held+0x108/0x120 [ 598.018347] kvasprintf_const+0x67/0x190 [ 598.022410] kobject_set_name_vargs+0x5b/0x150 [ 598.027105] device_create_groups_vargs+0x1ce/0x270 [ 598.032123] device_create_vargs+0x46/0x60 [ 598.036365] bdi_register_va.part.10+0xbb/0x9b0 [ 598.041036] ? cgwb_kill+0x630/0x630 [ 598.044912] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 598.050451] ? bdi_init+0x416/0x510 [ 598.054080] ? wb_init+0x9e0/0x9e0 [ 598.057621] ? bdi_alloc_node+0x67/0xe0 [ 598.061593] ? bdi_alloc_node+0x67/0xe0 [ 598.065569] ? rcu_read_lock_sched_held+0x108/0x120 [ 598.070588] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 598.075872] ? _raw_spin_unlock+0x22/0x30 [ 598.080023] bdi_register_va+0x68/0x80 [ 598.083927] super_setup_bdi_name+0x123/0x220 [ 598.088424] ? kill_block_super+0x100/0x100 [ 598.092747] ? kmem_cache_alloc_trace+0x616/0x780 [ 598.097588] ? match_wildcard+0x3c0/0x3c0 [ 598.101825] ? trace_hardirqs_on+0xd/0x10 [ 598.105981] fuse_fill_super+0xe6e/0x1e20 [ 598.110137] ? fuse_get_root_inode+0x190/0x190 [ 598.114724] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 598.119741] ? kasan_check_read+0x11/0x20 [ 598.123890] ? cap_capable+0x1f9/0x260 [ 598.127782] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 598.133322] ? security_capable+0x99/0xc0 [ 598.137472] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 598.143008] ? ns_capable_common+0x13f/0x170 [ 598.147418] ? get_anon_bdev+0x2f0/0x2f0 [ 598.151477] ? sget+0x113/0x150 [ 598.154759] ? fuse_get_root_inode+0x190/0x190 [ 598.159341] mount_nodev+0x6b/0x110 [ 598.162970] fuse_mount+0x2c/0x40 [ 598.166423] mount_fs+0xae/0x328 [ 598.169796] vfs_kern_mount.part.34+0xd4/0x4d0 [ 598.174380] ? may_umount+0xb0/0xb0 [ 598.178013] ? _raw_read_unlock+0x22/0x30 [ 598.182157] ? __get_fs_type+0x97/0xc0 [ 598.186046] do_mount+0x564/0x3070 [ 598.189588] ? copy_mount_string+0x40/0x40 [ 598.193824] ? rcu_pm_notify+0xc0/0xc0 [ 598.197720] ? copy_mount_options+0x5f/0x380 [ 598.202227] ? rcu_read_lock_sched_held+0x108/0x120 [ 598.207246] ? kmem_cache_alloc_trace+0x616/0x780 [ 598.212096] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 598.217634] ? _copy_from_user+0xdf/0x150 [ 598.221787] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 598.227322] ? copy_mount_options+0x285/0x380 [ 598.231822] ksys_mount+0x12d/0x140 [ 598.235456] __x64_sys_mount+0xbe/0x150 [ 598.239431] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 598.244449] do_syscall_64+0x1b1/0x800 [ 598.248339] ? finish_task_switch+0x1ca/0x840 [ 598.252840] ? syscall_return_slowpath+0x5c0/0x5c0 [ 598.257772] ? syscall_return_slowpath+0x30f/0x5c0 [ 598.262707] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 598.268076] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 598.272922] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 598.278109] RIP: 0033:0x455a09 [ 598.281298] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 598.289006] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 598.296273] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 598.303540] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 598.310805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 598.318074] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 598.523283] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:04 executing program 4: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2, 0x0) ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000180)=0x5, 0x4) timerfd_gettime(r0, &(0x7f0000000100)) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket(0x8, 0x2, 0x3) getsockopt$packet_int(r0, 0x107, 0x9, &(0x7f00000001c0), &(0x7f0000000200)=0x4) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000140)={'vcan0\x00', {0x2, 0x4e24, @multicast2=0xe0000002}}) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0"}) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x0, 0x0) 2033/05/18 03:34:04 executing program 5 (fault-call:3 fault-nth:48): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:04 executing program 3: 2033/05/18 03:34:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500f000", 0x29}], 0x1) 2033/05/18 03:34:04 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x80ffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:04 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x0, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:04 executing program 3: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000006000), 0x8, 0x0) readv(r0, &(0x7f0000000080)=[{&(0x7f000004f000)=""/128, 0x80}], 0x1) timer_create(0x2, &(0x7f0000000180)={0x0, 0x19, 0x0, @thr={&(0x7f00000001c0), &(0x7f00000000c0)}}, &(0x7f0000000000)) timer_settime(0x0, 0x1, &(0x7f00000003c0)={{0x0, 0x989680}, {0x0, 0x7}}, &(0x7f00000001c0)) [ 598.721624] FAT-fs (loop5): bogus number of reserved sectors [ 598.727589] FAT-fs (loop5): Can't find a valid FAT filesystem [ 598.758860] FAULT_INJECTION: forcing a failure. [ 598.758860] name failslab, interval 1, probability 0, space 0, times 0 [ 598.770402] CPU: 0 PID: 2463 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 598.777592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.786941] Call Trace: [ 598.789533] dump_stack+0x1b9/0x294 [ 598.793163] ? dump_stack_print_info.cold.2+0x52/0x52 [ 598.798360] should_fail.cold.4+0xa/0x1a [ 598.802423] ? __kmalloc_track_caller+0x14a/0x760 [ 598.807270] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 598.812384] ? device_add+0x3a5/0x16d0 [ 598.816271] ? device_create_groups_vargs+0x1ff/0x270 [ 598.821461] ? device_create_vargs+0x46/0x60 [ 598.825870] ? bdi_register_va.part.10+0xbb/0x9b0 [ 598.830712] ? bdi_register_va+0x68/0x80 [ 598.834781] ? super_setup_bdi_name+0x123/0x220 [ 598.839456] ? fuse_fill_super+0xe6e/0x1e20 [ 598.843779] ? graph_lock+0x170/0x170 [ 598.847582] ? do_mount+0x564/0x3070 [ 598.851294] ? ksys_mount+0x12d/0x140 [ 598.855103] ? __x64_sys_mount+0xbe/0x150 [ 598.859250] ? do_syscall_64+0x1b1/0x800 [ 598.863312] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 2033/05/18 03:34:04 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x80) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getresuid(&(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x204000, 0x0) ioctl$ASHMEM_GET_NAME(r2, 0x81007702, &(0x7f0000000140)=""/15) [ 598.868678] ? find_held_lock+0x36/0x1c0 [ 598.872742] ? __lock_is_held+0xb5/0x140 [ 598.876905] ? check_same_owner+0x320/0x320 [ 598.881233] ? rcu_note_context_switch+0x710/0x710 [ 598.886581] ? rcu_read_lock_sched_held+0x108/0x120 [ 598.891612] __should_failslab+0x124/0x180 [ 598.895857] should_failslab+0x9/0x14 [ 598.899661] kmem_cache_alloc+0x2af/0x760 [ 598.903812] ? memcpy+0x45/0x50 [ 598.907094] ? kstrdup+0x59/0x70 [ 598.910470] __kernfs_new_node+0xe7/0x580 [ 598.914711] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 598.919478] ? lock_downgrade+0x8e0/0x8e0 [ 598.923632] kernfs_new_node+0x80/0xf0 [ 598.927523] kernfs_create_dir_ns+0x3d/0x140 [ 598.931936] sysfs_create_dir_ns+0xbe/0x1d0 [ 598.936259] kobject_add_internal+0x354/0xac0 [ 598.940760] ? kobj_ns_type_registered+0x60/0x60 [ 598.945520] ? lock_downgrade+0x8e0/0x8e0 [ 598.949672] ? refcount_add_not_zero+0x320/0x320 [ 598.954433] ? kasan_check_read+0x11/0x20 [ 598.958583] kobject_add+0x13a/0x190 [ 598.962303] ? kset_create_and_add+0x190/0x190 [ 598.966898] ? mutex_unlock+0xd/0x10 [ 598.970618] device_add+0x3a5/0x16d0 [ 598.974341] ? device_private_init+0x230/0x230 [ 598.978922] ? kfree+0x1e9/0x260 [ 598.983160] ? kfree_const+0x5e/0x70 [ 598.986877] device_create_groups_vargs+0x1ff/0x270 [ 598.991900] device_create_vargs+0x46/0x60 [ 598.996142] bdi_register_va.part.10+0xbb/0x9b0 [ 599.000815] ? cgwb_kill+0x630/0x630 [ 599.004535] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.010072] ? bdi_init+0x416/0x510 [ 599.013698] ? wb_init+0x9e0/0x9e0 [ 599.017240] ? bdi_alloc_node+0x67/0xe0 [ 599.021211] ? bdi_alloc_node+0x67/0xe0 [ 599.025187] ? rcu_read_lock_sched_held+0x108/0x120 [ 599.030206] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 599.035488] ? _raw_spin_unlock+0x22/0x30 [ 599.039643] bdi_register_va+0x68/0x80 [ 599.043537] super_setup_bdi_name+0x123/0x220 [ 599.048032] ? kill_block_super+0x100/0x100 [ 599.052358] ? kmem_cache_alloc_trace+0x616/0x780 [ 599.057201] ? match_wildcard+0x3c0/0x3c0 [ 599.061354] ? trace_hardirqs_on+0xd/0x10 [ 599.065510] fuse_fill_super+0xe6e/0x1e20 [ 599.069665] ? fuse_get_root_inode+0x190/0x190 [ 599.074250] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 599.079271] ? kasan_check_read+0x11/0x20 [ 599.083426] ? cap_capable+0x1f9/0x260 [ 599.087323] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.092863] ? security_capable+0x99/0xc0 [ 599.097018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.102561] ? ns_capable_common+0x13f/0x170 [ 599.106973] ? get_anon_bdev+0x2f0/0x2f0 [ 599.111036] ? sget+0x113/0x150 [ 599.114321] ? fuse_get_root_inode+0x190/0x190 [ 599.118907] mount_nodev+0x6b/0x110 [ 599.122537] fuse_mount+0x2c/0x40 [ 599.125996] mount_fs+0xae/0x328 [ 599.129368] vfs_kern_mount.part.34+0xd4/0x4d0 [ 599.133952] ? may_umount+0xb0/0xb0 [ 599.137582] ? _raw_read_unlock+0x22/0x30 [ 599.141732] ? __get_fs_type+0x97/0xc0 [ 599.145630] do_mount+0x564/0x3070 [ 599.149178] ? copy_mount_string+0x40/0x40 [ 599.153416] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 599.158436] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 599.163197] ? retint_kernel+0x10/0x10 [ 599.167104] ? copy_mount_options+0x1f0/0x380 [ 599.171599] ? copy_mount_options+0x1fa/0x380 [ 599.176183] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.181723] ? copy_mount_options+0x285/0x380 [ 599.186275] ksys_mount+0x12d/0x140 [ 599.189909] __x64_sys_mount+0xbe/0x150 [ 599.193886] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 599.199047] do_syscall_64+0x1b1/0x800 [ 599.202935] ? finish_task_switch+0x1ca/0x840 [ 599.207438] ? syscall_return_slowpath+0x5c0/0x5c0 [ 599.212371] ? syscall_return_slowpath+0x30f/0x5c0 [ 599.217306] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 599.222675] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 599.227532] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 599.232717] RIP: 0033:0x455a09 [ 599.235902] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 599.243613] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 599.250879] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 599.258144] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 599.265409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 599.272676] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 599.280531] kobject_add_internal failed for 0:44 (error: -12 parent: bdi) 2033/05/18 03:34:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500b008", 0x29}], 0x1) 2033/05/18 03:34:04 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:04 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x1400}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:04 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 599.319093] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:04 executing program 5 (fault-call:3 fault-nth:49): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:05 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) setsockopt$inet_sctp6_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000000)=0x2, 0x4) 2033/05/18 03:34:05 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:05 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:05 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x700000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:05 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000002", 0x29}], 0x1) [ 599.611369] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 599.645799] FAT-fs (loop5): bogus number of reserved sectors [ 599.651772] FAT-fs (loop5): Can't find a valid FAT filesystem [ 599.678123] FAULT_INJECTION: forcing a failure. [ 599.678123] name failslab, interval 1, probability 0, space 0, times 0 [ 599.689529] CPU: 0 PID: 2491 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 599.696718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 599.706066] Call Trace: [ 599.708661] dump_stack+0x1b9/0x294 [ 599.712292] ? dump_stack_print_info.cold.2+0x52/0x52 [ 599.717493] ? kasan_check_write+0x14/0x20 [ 599.721740] ? finish_task_switch+0x28b/0x840 [ 599.726245] should_fail.cold.4+0xa/0x1a [ 599.730311] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 599.735421] ? __schedule+0x809/0x1e30 [ 599.739316] ? __sched_text_start+0x8/0x8 [ 599.743464] ? find_held_lock+0x36/0x1c0 [ 599.747534] ? __lock_is_held+0xb5/0x140 [ 599.751608] ? check_same_owner+0x320/0x320 [ 599.755931] ? device_pm_sleep_init+0xe8/0x200 [ 599.760515] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 599.765710] __should_failslab+0x124/0x180 [ 599.769953] should_failslab+0x9/0x14 [ 599.773755] __kmalloc_track_caller+0x2c4/0x760 [ 599.778426] ? pointer+0xa10/0xa10 [ 599.781975] ? kvasprintf_const+0x67/0x190 [ 599.786216] kvasprintf+0xa9/0x130 [ 599.789763] ? bust_spinlocks+0xe0/0xe0 [ 599.793743] ? rcu_read_lock_sched_held+0x108/0x120 [ 599.798777] kvasprintf_const+0x67/0x190 [ 599.802845] kobject_set_name_vargs+0x5b/0x150 [ 599.807430] device_create_groups_vargs+0x1ce/0x270 [ 599.812452] device_create_vargs+0x46/0x60 [ 599.816690] bdi_register_va.part.10+0xbb/0x9b0 [ 599.821364] ? cgwb_kill+0x630/0x630 [ 599.825081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.830622] ? bdi_init+0x416/0x510 [ 599.834249] ? wb_init+0x9e0/0x9e0 [ 599.837794] ? bdi_alloc_node+0x67/0xe0 [ 599.841771] ? bdi_alloc_node+0x67/0xe0 [ 599.845751] ? rcu_read_lock_sched_held+0x108/0x120 [ 599.850773] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 599.856056] ? _raw_spin_unlock+0x22/0x30 [ 599.860207] bdi_register_va+0x68/0x80 [ 599.864101] super_setup_bdi_name+0x123/0x220 [ 599.868596] ? kill_block_super+0x100/0x100 [ 599.872924] ? kmem_cache_alloc_trace+0x616/0x780 [ 599.877769] ? match_wildcard+0x3c0/0x3c0 [ 599.881916] ? trace_hardirqs_on+0xd/0x10 [ 599.886071] fuse_fill_super+0xe6e/0x1e20 [ 599.890227] ? fuse_get_root_inode+0x190/0x190 [ 599.894816] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 599.899838] ? kasan_check_read+0x11/0x20 [ 599.903991] ? cap_capable+0x1f9/0x260 [ 599.907886] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.913426] ? security_capable+0x99/0xc0 [ 599.917578] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 599.923115] ? ns_capable_common+0x13f/0x170 [ 599.927530] ? get_anon_bdev+0x2f0/0x2f0 [ 599.931593] ? sget+0x113/0x150 [ 599.934874] ? fuse_get_root_inode+0x190/0x190 [ 599.939458] mount_nodev+0x6b/0x110 [ 599.943087] fuse_mount+0x2c/0x40 [ 599.946555] mount_fs+0xae/0x328 [ 599.949933] vfs_kern_mount.part.34+0xd4/0x4d0 [ 599.954518] ? may_umount+0xb0/0xb0 [ 599.958152] ? _raw_read_unlock+0x22/0x30 [ 599.962299] ? __get_fs_type+0x97/0xc0 [ 599.966189] do_mount+0x564/0x3070 [ 599.969737] ? do_raw_spin_unlock+0x9e/0x2e0 [ 599.974144] ? interrupt_entry+0xb1/0xf0 [ 599.978209] ? copy_mount_string+0x40/0x40 [ 599.982444] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 599.987202] ? retint_kernel+0x10/0x10 [ 599.991096] ? copy_mount_options+0x213/0x380 [ 599.995597] ? write_comp_data+0x11/0x70 [ 599.999662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 600.005202] ? copy_mount_options+0x285/0x380 [ 600.009708] ksys_mount+0x12d/0x140 [ 600.013341] __x64_sys_mount+0xbe/0x150 [ 600.017313] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 600.022334] do_syscall_64+0x1b1/0x800 [ 600.026224] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 600.031067] ? syscall_return_slowpath+0x5c0/0x5c0 [ 600.035998] ? syscall_return_slowpath+0x30f/0x5c0 [ 600.040933] ? retint_user+0x18/0x18 [ 600.044651] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 600.049498] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 600.054682] RIP: 0033:0x455a09 [ 600.057875] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 600.065584] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 600.072850] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 600.080117] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 600.087523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 600.094792] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:05 executing program 5 (fault-call:3 fault-nth:50): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:05 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) splice(r1, &(0x7f0000000140), r0, &(0x7f0000000100), 0x3, 0x1) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x90001, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r2, &(0x7f0000000180)={0x10000010}) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x400000, 0x0) ioctl(r3, 0x890b, &(0x7f00000003c0)="c626662c8523bf012cf66fb71a0e92c96397561322895c01144651caad8dac615821820be27df1e20283368bf1cfbf36ba759f895c734e11446cc550bcf0c94f5c5da4bea7847292174133e27fbf36d5863e7c87793f1571cc38be19b6bfa9d743591b8d3fc20ccead335d5c8211d5a0762160a6b1941d063990bf3fb80144a17fe3aacdbe1b44f8e026731763f8ab0de7c3d357d0c845ea0676ef9d54576281b7e6394fc3c59226f9251ec6c0bed2992d986b3145f4ec837bd0bf300b0f7b15d03db1b89f4a5ba82dc78df9e1aa6076ae710439a5526089d38bacfb49701424d4912cbc87100c9f73663698909827f434d0533f86319afb3d8790743543945bfdb56c") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 600.370578] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 600.434324] FAT-fs (loop5): bogus number of reserved sectors [ 600.440348] FAT-fs (loop5): Can't find a valid FAT filesystem [ 600.465719] FAULT_INJECTION: forcing a failure. [ 600.465719] name failslab, interval 1, probability 0, space 0, times 0 [ 600.477673] CPU: 0 PID: 2511 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 600.484869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.494215] Call Trace: [ 600.496808] dump_stack+0x1b9/0x294 [ 600.500442] ? dump_stack_print_info.cold.2+0x52/0x52 [ 600.505637] ? __save_stack_trace+0x7e/0xd0 [ 600.509970] should_fail.cold.4+0xa/0x1a [ 600.514034] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 600.519142] ? kasan_kmalloc+0xc4/0xe0 [ 600.523031] ? kasan_slab_alloc+0x12/0x20 [ 600.527176] ? kmem_cache_alloc+0x12e/0x760 [ 600.531500] ? radix_tree_node_alloc.constprop.19+0x1e6/0x310 [ 600.537382] ? idr_get_free+0x891/0x10a0 [ 600.541442] ? idr_alloc_u32+0x1f9/0x3d0 [ 600.545503] ? idr_alloc_cyclic+0x167/0x340 [ 600.549827] ? kernfs_new_node+0x80/0xf0 [ 600.553886] ? kernfs_create_dir_ns+0x3d/0x140 [ 600.558470] ? sysfs_create_dir_ns+0xbe/0x1d0 [ 600.562964] ? kobject_add_internal+0x354/0xac0 [ 600.567634] ? kobject_add+0x13a/0x190 [ 600.571525] ? device_add+0x3a5/0x16d0 [ 600.575411] ? device_create_groups_vargs+0x1ff/0x270 [ 600.580596] ? device_create_vargs+0x46/0x60 [ 600.585002] ? bdi_register_va.part.10+0xbb/0x9b0 [ 600.589845] ? bdi_register_va+0x68/0x80 [ 600.593908] ? super_setup_bdi_name+0x123/0x220 [ 600.598578] ? fuse_fill_super+0xe6e/0x1e20 [ 600.602899] ? mount_nodev+0x6b/0x110 [ 600.606709] ? fuse_mount+0x2c/0x40 [ 600.610337] ? mount_fs+0xae/0x328 [ 600.613874] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 600.618742] ? do_mount+0x564/0x3070 [ 600.622457] ? ksys_mount+0x12d/0x140 [ 600.626257] ? __x64_sys_mount+0xbe/0x150 [ 600.630405] ? do_syscall_64+0x1b1/0x800 [ 600.634465] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 600.639831] ? graph_lock+0x170/0x170 [ 600.643630] ? graph_lock+0x170/0x170 [ 600.647438] ? graph_lock+0x170/0x170 [ 600.651236] ? print_usage_bug+0xc0/0xc0 [ 600.655300] ? __lock_is_held+0xb5/0x140 [ 600.659363] ? ecache_work+0x208/0x230 [ 600.663254] __should_failslab+0x124/0x180 [ 600.667493] should_failslab+0x9/0x14 [ 600.671296] kmem_cache_alloc+0x47/0x760 [ 600.675365] ? radix_tree_node_alloc.constprop.19+0x1e6/0x310 [ 600.681252] radix_tree_node_alloc.constprop.19+0x1e6/0x310 [ 600.686965] idr_get_free+0x891/0x10a0 [ 600.690864] ? radix_tree_clear_tags+0xc0/0xc0 [ 600.695451] ? unwind_get_return_address+0x61/0xa0 [ 600.700382] ? __save_stack_trace+0x7e/0xd0 [ 600.704715] ? save_stack+0xa9/0xd0 [ 600.708344] ? save_stack+0x43/0xd0 [ 600.711973] ? kasan_kmalloc+0xc4/0xe0 [ 600.715860] ? kasan_slab_alloc+0x12/0x20 [ 600.720011] ? kmem_cache_alloc+0x12e/0x760 [ 600.724333] ? __kernfs_new_node+0xe7/0x580 [ 600.728660] ? kernfs_new_node+0x80/0xf0 [ 600.732722] ? kernfs_create_dir_ns+0x3d/0x140 [ 600.737303] ? sysfs_create_dir_ns+0xbe/0x1d0 [ 600.741799] ? kobject_add_internal+0x354/0xac0 [ 600.746464] ? kobject_add+0x13a/0x190 [ 600.750353] ? device_create_groups_vargs+0x1ff/0x270 [ 600.755540] ? device_create_vargs+0x46/0x60 [ 600.759947] ? bdi_register_va.part.10+0xbb/0x9b0 [ 600.764785] ? bdi_register_va+0x68/0x80 [ 600.768845] ? super_setup_bdi_name+0x123/0x220 [ 600.773511] ? fuse_fill_super+0xe6e/0x1e20 [ 600.777835] ? mount_nodev+0x6b/0x110 [ 600.781634] ? mount_fs+0xae/0x328 [ 600.785174] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 600.789925] ? do_mount+0x564/0x3070 [ 600.793643] ? ksys_mount+0x12d/0x140 [ 600.797440] ? __x64_sys_mount+0xbe/0x150 [ 600.801590] ? do_syscall_64+0x1b1/0x800 [ 600.805655] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 600.811020] ? print_usage_bug+0xc0/0xc0 [ 600.815091] idr_alloc_u32+0x1f9/0x3d0 [ 600.818983] ? __fprop_inc_percpu_max+0x2c0/0x2c0 [ 600.823827] ? lock_acquire+0x1dc/0x520 [ 600.827804] ? __kernfs_new_node+0x10e/0x580 [ 600.832214] ? __lock_is_held+0xb5/0x140 [ 600.836274] ? nf_ct_deliver_cached_events+0xb8/0x7b0 [ 600.841469] idr_alloc_cyclic+0x167/0x340 [ 600.845625] ? idr_alloc+0x1a0/0x1a0 [ 600.849347] ? kasan_check_write+0x14/0x20 [ 600.853584] ? do_raw_spin_lock+0xc1/0x200 [ 600.857823] __kernfs_new_node+0x1a3/0x580 [ 600.862064] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 600.866834] ? lock_downgrade+0x8e0/0x8e0 [ 600.870989] kernfs_new_node+0x80/0xf0 [ 600.874880] kernfs_create_dir_ns+0x3d/0x140 [ 600.879296] sysfs_create_dir_ns+0xbe/0x1d0 [ 600.883624] kobject_add_internal+0x354/0xac0 [ 600.888770] ? kobj_ns_type_registered+0x60/0x60 [ 600.893530] ? lock_downgrade+0x8e0/0x8e0 [ 600.897693] ? refcount_add_not_zero+0x320/0x320 [ 600.902455] ? kasan_check_read+0x11/0x20 [ 600.906604] kobject_add+0x13a/0x190 [ 600.910319] ? kset_create_and_add+0x190/0x190 [ 600.914907] ? mutex_unlock+0xd/0x10 [ 600.918635] device_add+0x3a5/0x16d0 [ 600.922352] ? device_private_init+0x230/0x230 [ 600.926933] ? kfree+0x1e9/0x260 [ 600.930300] ? kfree_const+0x5e/0x70 [ 600.934017] device_create_groups_vargs+0x1ff/0x270 [ 600.939036] device_create_vargs+0x46/0x60 [ 600.943274] bdi_register_va.part.10+0xbb/0x9b0 [ 600.947941] ? cgwb_kill+0x630/0x630 [ 600.951662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 600.957196] ? bdi_init+0x416/0x510 [ 600.960823] ? wb_init+0x9e0/0x9e0 [ 600.964362] ? bdi_alloc_node+0x67/0xe0 [ 600.968336] ? bdi_alloc_node+0x67/0xe0 [ 600.972323] ? rcu_read_lock_sched_held+0x108/0x120 [ 600.977343] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 600.982627] ? _raw_spin_unlock+0x22/0x30 [ 600.986779] bdi_register_va+0x68/0x80 [ 600.990674] super_setup_bdi_name+0x123/0x220 [ 600.995169] ? kill_block_super+0x100/0x100 [ 600.999495] ? kmem_cache_alloc_trace+0x616/0x780 [ 601.004343] ? match_wildcard+0x3c0/0x3c0 [ 601.008493] ? trace_hardirqs_on+0xd/0x10 [ 601.012654] fuse_fill_super+0xe6e/0x1e20 [ 601.016810] ? fuse_get_root_inode+0x190/0x190 [ 601.021395] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 601.026414] ? kasan_check_read+0x11/0x20 [ 601.030568] ? cap_capable+0x1f9/0x260 [ 601.034466] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 601.040004] ? security_capable+0x99/0xc0 [ 601.044160] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 601.049699] ? ns_capable_common+0x13f/0x170 [ 601.054108] ? get_anon_bdev+0x2f0/0x2f0 [ 601.058168] ? sget+0x113/0x150 [ 601.061461] ? fuse_get_root_inode+0x190/0x190 [ 601.066046] mount_nodev+0x6b/0x110 [ 601.069674] fuse_mount+0x2c/0x40 [ 601.073128] mount_fs+0xae/0x328 [ 601.076501] vfs_kern_mount.part.34+0xd4/0x4d0 [ 601.081084] ? may_umount+0xb0/0xb0 [ 601.084712] ? _raw_read_unlock+0x22/0x30 [ 601.088858] ? __get_fs_type+0x97/0xc0 [ 601.092750] do_mount+0x564/0x3070 [ 601.096293] ? copy_mount_string+0x40/0x40 [ 601.100527] ? rcu_pm_notify+0xc0/0xc0 [ 601.104578] ? copy_mount_options+0x5f/0x380 [ 601.108994] ? rcu_read_lock_sched_held+0x108/0x120 [ 601.114009] ? kmem_cache_alloc_trace+0x616/0x780 [ 601.118858] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 601.124397] ? _copy_from_user+0xdf/0x150 [ 601.128548] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 601.134086] ? copy_mount_options+0x285/0x380 [ 601.138590] ksys_mount+0x12d/0x140 [ 601.142236] __x64_sys_mount+0xbe/0x150 [ 601.146211] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 601.151231] do_syscall_64+0x1b1/0x800 [ 601.155120] ? finish_task_switch+0x1ca/0x840 [ 601.159625] ? syscall_return_slowpath+0x5c0/0x5c0 [ 601.164556] ? syscall_return_slowpath+0x30f/0x5c0 [ 601.169489] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 601.174861] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 601.179710] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 601.184899] RIP: 0033:0x455a09 [ 601.188085] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 601.195795] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 601.203061] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 601.210327] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 601.217596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 601.224883] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:06 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x1000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:06 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:06 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:06 executing program 5 (fault-call:3 fault-nth:51): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:06 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500009d", 0x29}], 0x1) 2033/05/18 03:34:06 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0xc000) 2033/05/18 03:34:06 executing program 3: perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4c, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = socket(0x10, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1a000, r1, &(0x7f0000e47000)={0x10000000}) 2033/05/18 03:34:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x3fffffffff, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:34:07 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:07 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:07 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 601.511588] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 601.625011] FAT-fs (loop5): bogus number of reserved sectors [ 601.631055] FAT-fs (loop5): Can't find a valid FAT filesystem [ 601.656618] FAULT_INJECTION: forcing a failure. [ 601.656618] name failslab, interval 1, probability 0, space 0, times 0 [ 601.667970] CPU: 0 PID: 2533 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 601.675147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.684482] Call Trace: [ 601.687057] dump_stack+0x1b9/0x294 [ 601.690676] ? dump_stack_print_info.cold.2+0x52/0x52 [ 601.695852] ? __lock_acquire+0x7f5/0x5140 [ 601.700080] should_fail.cold.4+0xa/0x1a [ 601.704130] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 601.709225] ? graph_lock+0x170/0x170 [ 601.713021] ? kasan_check_write+0x14/0x20 [ 601.717275] ? find_held_lock+0x36/0x1c0 [ 601.721342] ? __lock_is_held+0xb5/0x140 [ 601.725391] ? efivar_entry_size+0x40/0x150 [ 601.729716] ? check_same_owner+0x320/0x320 [ 601.734033] ? rcu_note_context_switch+0x710/0x710 [ 601.738961] __should_failslab+0x124/0x180 [ 601.743182] should_failslab+0x9/0x14 [ 601.746967] kmem_cache_alloc+0x2af/0x760 [ 601.751102] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 601.756626] ? graph_lock+0x170/0x170 [ 601.760413] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 601.765420] __kernfs_new_node+0xe7/0x580 [ 601.769563] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 601.774305] ? find_held_lock+0x36/0x1c0 [ 601.778355] ? lock_downgrade+0x8e0/0x8e0 [ 601.782489] kernfs_new_node+0x80/0xf0 [ 601.786378] __kernfs_create_file+0x4d/0x330 [ 601.790775] sysfs_add_file_mode_ns+0x21a/0x560 [ 601.795432] sysfs_create_file_ns+0x8b/0xb0 [ 601.799739] device_create_file+0xf4/0x1e0 [ 601.803960] ? acpi_bind_one+0x8f0/0x8f0 [ 601.808006] device_add+0x3ec/0x16d0 [ 601.811713] ? device_private_init+0x230/0x230 [ 601.816281] ? kfree+0x1e9/0x260 [ 601.819636] ? kfree_const+0x5e/0x70 [ 601.823335] device_create_groups_vargs+0x1ff/0x270 [ 601.828338] device_create_vargs+0x46/0x60 [ 601.832564] bdi_register_va.part.10+0xbb/0x9b0 [ 601.837217] ? cgwb_kill+0x630/0x630 [ 601.840920] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 601.846440] ? bdi_init+0x416/0x510 [ 601.850052] ? wb_init+0x9e0/0x9e0 [ 601.853580] ? bdi_alloc_node+0x67/0xe0 [ 601.857537] ? bdi_alloc_node+0x67/0xe0 [ 601.861510] ? rcu_read_lock_sched_held+0x108/0x120 [ 601.866522] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 601.871785] ? _raw_spin_unlock+0x22/0x30 [ 601.875931] bdi_register_va+0x68/0x80 [ 601.879809] super_setup_bdi_name+0x123/0x220 [ 601.884288] ? kill_block_super+0x100/0x100 [ 601.888597] ? kmem_cache_alloc_trace+0x616/0x780 [ 601.893424] ? match_wildcard+0x3c0/0x3c0 [ 601.897567] fuse_fill_super+0xe6e/0x1e20 [ 601.901713] ? fuse_get_root_inode+0x190/0x190 [ 601.906280] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 601.911282] ? kasan_check_read+0x11/0x20 [ 601.915418] ? cap_capable+0x1f9/0x260 [ 601.919295] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 601.924817] ? security_capable+0x99/0xc0 [ 601.928963] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 601.934485] ? ns_capable_common+0x13f/0x170 [ 601.938885] ? get_anon_bdev+0x2f0/0x2f0 [ 601.942939] ? sget+0x113/0x150 [ 601.946205] ? fuse_get_root_inode+0x190/0x190 [ 601.950771] mount_nodev+0x6b/0x110 [ 601.954382] fuse_mount+0x2c/0x40 [ 601.957821] mount_fs+0xae/0x328 [ 601.961176] vfs_kern_mount.part.34+0xd4/0x4d0 [ 601.965745] ? may_umount+0xb0/0xb0 [ 601.969359] ? _raw_read_unlock+0x22/0x30 [ 601.973489] ? __get_fs_type+0x97/0xc0 [ 601.977362] do_mount+0x564/0x3070 [ 601.980890] ? copy_mount_string+0x40/0x40 [ 601.985123] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 601.989867] ? retint_kernel+0x10/0x10 [ 601.993747] ? __sanitizer_cov_trace_const_cmp2+0x20/0x20 [ 601.999271] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 602.004804] ? copy_mount_options+0x285/0x380 [ 602.009285] ksys_mount+0x12d/0x140 [ 602.012901] __x64_sys_mount+0xbe/0x150 [ 602.016862] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 602.021865] do_syscall_64+0x1b1/0x800 [ 602.025737] ? finish_task_switch+0x1ca/0x840 [ 602.030218] ? syscall_return_slowpath+0x5c0/0x5c0 [ 602.035132] ? syscall_return_slowpath+0x30f/0x5c0 [ 602.040050] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 602.045399] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 602.050230] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 602.055413] RIP: 0033:0x455a09 [ 602.058585] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 602.066279] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 602.073543] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 602.080796] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 602.088046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 602.095298] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:07 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xffff8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:07 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea11000000250000ea", 0x29}], 0x1) 2033/05/18 03:34:07 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800001000004032}) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/stat\x00') ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000280)={"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"}) 2033/05/18 03:34:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000100)=ANY=[@ANYBLOB="01000000000000000100008000000000000000000000a037702fa439"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:07 executing program 5 (fault-call:3 fault-nth:52): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:07 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:07 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:07 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500000b", 0x29}], 0x1) [ 602.379535] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:08 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:08 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x40000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 602.451412] FAT-fs (loop5): bogus number of reserved sectors [ 602.457472] FAT-fs (loop5): Can't find a valid FAT filesystem [ 602.504780] FAULT_INJECTION: forcing a failure. [ 602.504780] name failslab, interval 1, probability 0, space 0, times 0 [ 602.516438] CPU: 0 PID: 2557 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 602.523635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.532984] Call Trace: [ 602.535580] dump_stack+0x1b9/0x294 [ 602.539213] ? dump_stack_print_info.cold.2+0x52/0x52 [ 602.544410] should_fail.cold.4+0xa/0x1a [ 602.548474] ? __kmalloc_track_caller+0x14a/0x760 [ 602.553359] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 602.558466] ? device_add+0x3a5/0x16d0 [ 602.562354] ? device_create_groups_vargs+0x1ff/0x270 [ 602.567551] ? device_create_vargs+0x46/0x60 [ 602.571959] ? bdi_register_va.part.10+0xbb/0x9b0 [ 602.576807] ? bdi_register_va+0x68/0x80 [ 602.580866] ? super_setup_bdi_name+0x123/0x220 [ 602.585537] ? fuse_fill_super+0xe6e/0x1e20 [ 602.589858] ? graph_lock+0x170/0x170 [ 602.593655] ? do_mount+0x564/0x3070 [ 602.597364] ? ksys_mount+0x12d/0x140 [ 602.601165] ? __x64_sys_mount+0xbe/0x150 [ 602.605316] ? do_syscall_64+0x1b1/0x800 [ 602.609377] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 602.614749] ? find_held_lock+0x36/0x1c0 [ 602.618841] ? __lock_is_held+0xb5/0x140 [ 602.622914] ? check_same_owner+0x320/0x320 [ 602.627240] ? rcu_note_context_switch+0x710/0x710 [ 602.632182] ? rcu_read_lock_sched_held+0x108/0x120 [ 602.637199] __should_failslab+0x124/0x180 [ 602.641448] should_failslab+0x9/0x14 [ 602.645254] kmem_cache_alloc+0x2af/0x760 [ 602.649401] ? memcpy+0x45/0x50 [ 602.652682] ? kstrdup+0x59/0x70 [ 602.656056] __kernfs_new_node+0xe7/0x580 [ 602.660206] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 602.664970] ? lock_downgrade+0x8e0/0x8e0 [ 602.669124] kernfs_new_node+0x80/0xf0 [ 602.673014] kernfs_create_dir_ns+0x3d/0x140 [ 602.677430] sysfs_create_dir_ns+0xbe/0x1d0 [ 602.681755] kobject_add_internal+0x354/0xac0 [ 602.686253] ? kobj_ns_type_registered+0x60/0x60 [ 602.691008] ? lock_downgrade+0x8e0/0x8e0 [ 602.695160] ? refcount_add_not_zero+0x320/0x320 [ 602.699922] ? kasan_check_read+0x11/0x20 [ 602.704072] kobject_add+0x13a/0x190 [ 602.707790] ? kset_create_and_add+0x190/0x190 [ 602.712382] ? mutex_unlock+0xd/0x10 [ 602.716101] device_add+0x3a5/0x16d0 [ 602.719819] ? device_private_init+0x230/0x230 [ 602.724409] ? kfree+0x1e9/0x260 [ 602.727779] ? kfree_const+0x5e/0x70 [ 602.731499] device_create_groups_vargs+0x1ff/0x270 [ 602.736525] device_create_vargs+0x46/0x60 [ 602.740765] bdi_register_va.part.10+0xbb/0x9b0 [ 602.745434] ? cgwb_kill+0x630/0x630 [ 602.749152] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 602.754689] ? bdi_init+0x416/0x510 [ 602.758316] ? wb_init+0x9e0/0x9e0 [ 602.761860] ? bdi_alloc_node+0x67/0xe0 [ 602.765831] ? bdi_alloc_node+0x67/0xe0 [ 602.769809] ? rcu_read_lock_sched_held+0x108/0x120 [ 602.774830] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 602.780109] ? _raw_spin_unlock+0x22/0x30 [ 602.784261] bdi_register_va+0x68/0x80 [ 602.788150] super_setup_bdi_name+0x123/0x220 [ 602.792649] ? kill_block_super+0x100/0x100 [ 602.796971] ? kmem_cache_alloc_trace+0x616/0x780 [ 602.801814] ? match_wildcard+0x3c0/0x3c0 [ 602.805963] ? trace_hardirqs_on+0xd/0x10 [ 602.810116] fuse_fill_super+0xe6e/0x1e20 [ 602.814269] ? fuse_get_root_inode+0x190/0x190 [ 602.818857] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 602.823879] ? kasan_check_read+0x11/0x20 [ 602.828028] ? cap_capable+0x1f9/0x260 [ 602.831924] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 602.837468] ? security_capable+0x99/0xc0 [ 602.841623] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 602.847163] ? ns_capable_common+0x13f/0x170 [ 602.851575] ? get_anon_bdev+0x2f0/0x2f0 [ 602.855635] ? sget+0x113/0x150 [ 602.858917] ? fuse_get_root_inode+0x190/0x190 [ 602.863500] mount_nodev+0x6b/0x110 [ 602.867131] fuse_mount+0x2c/0x40 [ 602.870589] mount_fs+0xae/0x328 [ 602.873959] vfs_kern_mount.part.34+0xd4/0x4d0 [ 602.878544] ? may_umount+0xb0/0xb0 [ 602.882173] ? _raw_read_unlock+0x22/0x30 [ 602.886760] ? __get_fs_type+0x97/0xc0 [ 602.890653] do_mount+0x564/0x3070 [ 602.894192] ? do_raw_spin_unlock+0x9e/0x2e0 [ 602.898604] ? copy_mount_string+0x40/0x40 [ 602.902841] ? rcu_pm_notify+0xc0/0xc0 [ 602.906735] ? copy_mount_options+0x5f/0x380 [ 602.911140] ? rcu_read_lock_sched_held+0x108/0x120 [ 602.916158] ? kmem_cache_alloc_trace+0x616/0x780 [ 602.921004] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 602.926550] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 602.932088] ? copy_mount_options+0x285/0x380 [ 602.936588] ksys_mount+0x12d/0x140 [ 602.940218] __x64_sys_mount+0xbe/0x150 [ 602.944190] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 602.949210] do_syscall_64+0x1b1/0x800 [ 602.953100] ? finish_task_switch+0x1ca/0x840 [ 602.957599] ? syscall_return_slowpath+0x5c0/0x5c0 [ 602.962529] ? syscall_return_slowpath+0x30f/0x5c0 [ 602.967473] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 602.972841] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 602.977689] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 602.982876] RIP: 0033:0x455a09 [ 602.986073] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 602.993785] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 603.001057] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 603.008327] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 603.015599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 603.022871] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 603.030553] kobject_add_internal failed for 0:44 (error: -12 parent: bdi) [ 603.176665] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:08 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:08 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000f00", 0x29}], 0x1) 2033/05/18 03:34:08 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f00004aaffc)=0x2, 0xa2) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000000), &(0x7f0000d1b252)=0xfffffffffffffd8e) 2033/05/18 03:34:08 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000000)=0x8, 0x4) 2033/05/18 03:34:08 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:08 executing program 5 (fault-call:3 fault-nth:53): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:08 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xf5ffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:08 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:08 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:08 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012c") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:09 executing program 2: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000a, 0x31, 0xffffffffffffffff, 0x0) r0 = getpgrp(0x0) r1 = gettid() rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xfffffffffffffffe}, 0x0, 0x8) rt_tgsigqueueinfo(r0, r1, 0xb, &(0x7f0000000080)) rt_sigtimedwait(&(0x7f0000a72000)={0x563}, &(0x7f0000a77ff0), &(0x7f000044a000)={0x0, 0x989680}, 0x8) 2033/05/18 03:34:09 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:09 executing program 4: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x800, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000040)={{}, 0x2}, 0x10) r1 = syz_open_dev$tun(&(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x404e80) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000001c0)={0x0, 0x5}, &(0x7f0000000100)=0xfffffffffffffe8f) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000140)=r2, 0x4) socket(0xa, 0x1, 0x0) ioctl(r1, 0x8916, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 603.399161] FAT-fs (loop5): bogus number of reserved sectors [ 603.405096] FAT-fs (loop5): Can't find a valid FAT filesystem [ 603.417878] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 603.456381] FAULT_INJECTION: forcing a failure. [ 603.456381] name failslab, interval 1, probability 0, space 0, times 0 [ 603.467866] CPU: 0 PID: 2583 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 603.475052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 603.484404] Call Trace: [ 603.487010] dump_stack+0x1b9/0x294 [ 603.490656] ? dump_stack_print_info.cold.2+0x52/0x52 [ 603.495850] ? __lock_acquire+0x7f5/0x5140 [ 603.500095] should_fail.cold.4+0xa/0x1a 2033/05/18 03:34:09 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:09 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 603.504163] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 603.509271] ? graph_lock+0x170/0x170 [ 603.513075] ? kasan_check_write+0x14/0x20 [ 603.517314] ? find_held_lock+0x36/0x1c0 [ 603.521381] ? __lock_is_held+0xb5/0x140 [ 603.525458] ? check_same_owner+0x320/0x320 [ 603.529784] ? rcu_note_context_switch+0x710/0x710 [ 603.534717] __should_failslab+0x124/0x180 [ 603.538960] should_failslab+0x9/0x14 [ 603.542759] kmem_cache_alloc+0x2af/0x760 [ 603.546911] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 603.552456] ? graph_lock+0x170/0x170 [ 603.556262] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 603.561281] __kernfs_new_node+0xe7/0x580 [ 603.565439] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 603.570195] ? find_held_lock+0x36/0x1c0 [ 603.574263] ? lock_downgrade+0x8e0/0x8e0 [ 603.578421] kernfs_new_node+0x80/0xf0 [ 603.582315] __kernfs_create_file+0x4d/0x330 [ 603.586726] sysfs_add_file_mode_ns+0x21a/0x560 [ 603.591403] sysfs_create_file_ns+0x8b/0xb0 [ 603.595733] device_create_file+0xf4/0x1e0 [ 603.599966] ? acpi_bind_one+0x8f0/0x8f0 [ 603.604029] device_add+0x3ec/0x16d0 [ 603.607749] ? device_private_init+0x230/0x230 [ 603.612329] ? kfree+0x1e9/0x260 [ 603.616116] ? kfree_const+0x5e/0x70 [ 603.619840] device_create_groups_vargs+0x1ff/0x270 [ 603.624861] device_create_vargs+0x46/0x60 [ 603.629100] bdi_register_va.part.10+0xbb/0x9b0 [ 603.633768] ? cgwb_kill+0x630/0x630 [ 603.637485] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 603.643018] ? bdi_init+0x416/0x510 [ 603.646644] ? wb_init+0x9e0/0x9e0 [ 603.650184] ? bdi_alloc_node+0x67/0xe0 [ 603.654157] ? bdi_alloc_node+0x67/0xe0 [ 603.658133] ? rcu_read_lock_sched_held+0x108/0x120 [ 603.663149] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 603.668437] ? _raw_spin_unlock+0x22/0x30 [ 603.672589] bdi_register_va+0x68/0x80 [ 603.676478] super_setup_bdi_name+0x123/0x220 [ 603.680975] ? kill_block_super+0x100/0x100 [ 603.685297] ? kmem_cache_alloc_trace+0x616/0x780 [ 603.690140] ? match_wildcard+0x3c0/0x3c0 [ 603.694289] ? trace_hardirqs_on+0xd/0x10 [ 603.698446] fuse_fill_super+0xe6e/0x1e20 [ 603.702600] ? fuse_get_root_inode+0x190/0x190 [ 603.707186] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 603.712207] ? kasan_check_read+0x11/0x20 [ 603.716381] ? cap_capable+0x1f9/0x260 [ 603.720290] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 603.725830] ? security_capable+0x99/0xc0 [ 603.729982] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 603.735519] ? ns_capable_common+0x13f/0x170 [ 603.739929] ? get_anon_bdev+0x2f0/0x2f0 [ 603.743992] ? sget+0x113/0x150 [ 603.747279] ? fuse_get_root_inode+0x190/0x190 [ 603.751865] mount_nodev+0x6b/0x110 [ 603.755494] fuse_mount+0x2c/0x40 [ 603.758951] mount_fs+0xae/0x328 [ 603.762325] vfs_kern_mount.part.34+0xd4/0x4d0 [ 603.766906] ? may_umount+0xb0/0xb0 [ 603.770547] ? _raw_read_unlock+0x22/0x30 [ 603.774696] ? __get_fs_type+0x97/0xc0 [ 603.778586] do_mount+0x564/0x3070 [ 603.782312] ? copy_mount_string+0x40/0x40 [ 603.786548] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 603.791567] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 603.796330] ? retint_kernel+0x10/0x10 [ 603.800228] ? copy_mount_options+0x1f0/0x380 [ 603.804728] ? copy_mount_options+0x202/0x380 [ 603.809226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 603.814762] ? copy_mount_options+0x285/0x380 [ 603.819262] ksys_mount+0x12d/0x140 [ 603.822895] __x64_sys_mount+0xbe/0x150 [ 603.826867] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 603.831887] do_syscall_64+0x1b1/0x800 [ 603.835778] ? finish_task_switch+0x1ca/0x840 [ 603.840273] ? syscall_return_slowpath+0x5c0/0x5c0 [ 603.845207] ? syscall_return_slowpath+0x30f/0x5c0 [ 603.850140] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 603.855508] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 603.860359] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 603.865545] RIP: 0033:0x455a09 [ 603.868730] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 603.876444] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 603.883708] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 603.890974] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 603.898239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 603.905519] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:09 executing program 5 (fault-call:3 fault-nth:54): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:09 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:09 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012c") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:09 executing program 2: r0 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00001bf000/0x1000)=nil, 0x1000, 0x0, 0x4011, r0, 0x0) fsetxattr(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="45b752e89f8277db2f09d89200000000c287ad11676049149d4a26593fbaa5ef1816c27fe879cfe5d7457a2f4a968e750e22e26b5b54c7fe7118a5e7a0752441076100c106001b9e8cb231194e7019a4b6877281c1a07db39525347f54a362161e8a612fc3511cd1433ebffd87a0490b3c3f704a66104bdaf1491eae27ea687668b2937a6500bb09c593387db32b4b3a311c4080d7a9b3c7a37d1d50"], &(0x7f00000001c0)="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", 0xfc, 0x0) [ 604.177539] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 604.274583] FAT-fs (loop5): bogus number of reserved sectors [ 604.280513] FAT-fs (loop5): Can't find a valid FAT filesystem [ 604.325271] FAULT_INJECTION: forcing a failure. [ 604.325271] name failslab, interval 1, probability 0, space 0, times 0 [ 604.336784] CPU: 0 PID: 2610 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 604.343967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 604.353315] Call Trace: [ 604.355908] dump_stack+0x1b9/0x294 [ 604.359540] ? dump_stack_print_info.cold.2+0x52/0x52 [ 604.364731] ? mutex_trylock+0x2a0/0x2a0 [ 604.368799] should_fail.cold.4+0xa/0x1a [ 604.372861] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 604.377968] ? graph_lock+0x170/0x170 [ 604.381765] ? find_held_lock+0x36/0x1c0 [ 604.385828] ? find_held_lock+0x36/0x1c0 [ 604.389895] ? __lock_is_held+0xb5/0x140 [ 604.393984] ? check_same_owner+0x320/0x320 [ 604.398305] ? graph_lock+0x170/0x170 [ 604.402108] ? rcu_note_context_switch+0x710/0x710 [ 604.407037] ? kasan_check_write+0x14/0x20 [ 604.411272] __should_failslab+0x124/0x180 [ 604.415514] should_failslab+0x9/0x14 [ 604.419313] kmem_cache_alloc+0x2af/0x760 [ 604.423472] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 604.428494] __kernfs_new_node+0xe7/0x580 [ 604.432647] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 604.437409] ? lock_downgrade+0x8e0/0x8e0 [ 604.441566] ? kasan_check_read+0x11/0x20 [ 604.445713] ? do_raw_spin_unlock+0x9e/0x2e0 [ 604.450136] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 604.454726] kernfs_new_node+0x80/0xf0 [ 604.458638] kernfs_create_link+0x33/0x180 [ 604.462877] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 604.468159] sysfs_create_link+0x65/0xc0 [ 604.472225] device_add+0x481/0x16d0 [ 604.475945] ? device_private_init+0x230/0x230 [ 604.480528] ? kfree+0x1e9/0x260 [ 604.483896] ? kfree_const+0x5e/0x70 [ 604.487615] device_create_groups_vargs+0x1ff/0x270 [ 604.492635] device_create_vargs+0x46/0x60 [ 604.496874] bdi_register_va.part.10+0xbb/0x9b0 [ 604.501547] ? cgwb_kill+0x630/0x630 [ 604.505266] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 604.510798] ? bdi_init+0x416/0x510 [ 604.514425] ? wb_init+0x9e0/0x9e0 [ 604.517964] ? bdi_alloc_node+0x67/0xe0 [ 604.521937] ? bdi_alloc_node+0x67/0xe0 [ 604.525908] ? rcu_read_lock_sched_held+0x108/0x120 [ 604.530928] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 604.536211] ? _raw_spin_unlock+0x22/0x30 [ 604.540366] bdi_register_va+0x68/0x80 [ 604.544259] super_setup_bdi_name+0x123/0x220 [ 604.548754] ? kill_block_super+0x100/0x100 [ 604.553073] ? kmem_cache_alloc_trace+0x616/0x780 [ 604.557913] ? match_wildcard+0x3c0/0x3c0 [ 604.562065] ? trace_hardirqs_on+0xd/0x10 [ 604.566217] fuse_fill_super+0xe6e/0x1e20 [ 604.570372] ? fuse_get_root_inode+0x190/0x190 [ 604.574957] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 604.579975] ? kasan_check_read+0x11/0x20 [ 604.584125] ? cap_capable+0x1f9/0x260 [ 604.588019] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 604.593557] ? security_capable+0x99/0xc0 [ 604.597708] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 604.603245] ? ns_capable_common+0x13f/0x170 [ 604.607653] ? get_anon_bdev+0x2f0/0x2f0 [ 604.611710] ? sget+0x113/0x150 [ 604.614990] ? fuse_get_root_inode+0x190/0x190 [ 604.619570] mount_nodev+0x6b/0x110 [ 604.623196] fuse_mount+0x2c/0x40 [ 604.626649] mount_fs+0xae/0x328 [ 604.630020] vfs_kern_mount.part.34+0xd4/0x4d0 [ 604.634603] ? may_umount+0xb0/0xb0 [ 604.638231] ? _raw_read_unlock+0x22/0x30 [ 604.642376] ? __get_fs_type+0x97/0xc0 [ 604.646265] do_mount+0x564/0x3070 [ 604.649808] ? copy_mount_string+0x40/0x40 [ 604.654041] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 604.659057] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 604.663815] ? retint_kernel+0x10/0x10 [ 604.667709] ? copy_mount_options+0x1d9/0x380 [ 604.672204] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 604.677738] ? copy_mount_options+0x285/0x380 [ 604.682235] ksys_mount+0x12d/0x140 [ 604.685862] __x64_sys_mount+0xbe/0x150 [ 604.689832] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 604.694847] do_syscall_64+0x1b1/0x800 [ 604.698733] ? finish_task_switch+0x1ca/0x840 [ 604.703228] ? syscall_return_slowpath+0x5c0/0x5c0 [ 604.708160] ? syscall_return_slowpath+0x30f/0x5c0 [ 604.713092] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 604.718458] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 604.723303] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 604.728491] RIP: 0033:0x455a09 [ 604.731674] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 604.739382] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 604.746648] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 604.753912] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 604.761175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 604.768444] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:10 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:10 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:10 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:10 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012c") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:10 executing program 5 (fault-call:3 fault-nth:55): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:10 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:10 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xfffffff5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:10 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 604.930962] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:10 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:10 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:10 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x4) r1 = syz_open_dev$sndpcmc(&(0x7f0000000180)='/dev/snd/pcmC#D#c\x00', 0x5, 0x4000) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f00000001c0)={0x5, 0xa6f}) syz_open_dev$vcsn(&(0x7f0000000200)='/dev/vcs#\x00', 0xeffa, 0x7ff) fgetxattr(r1, &(0x7f00000000c0)=@random={'system.', '-\x00'}, &(0x7f00000002c0)=""/171, 0xab) setsockopt$inet6_group_source_req(r1, 0x29, 0x2b, &(0x7f0000000380)={0x0, {{0xa, 0x4e23, 0x7, @remote={0xfe, 0x80, [], 0xbb}, 0x401}}, {{0xa, 0x4e24, 0x20, @mcast2={0xff, 0x2, [], 0x1}, 0x101}}}, 0x108) r2 = syz_open_dev$amidi(&(0x7f0000000280)='/dev/amidi#\x00', 0x200, 0x8000) ioctl$IOC_PR_CLEAR(r2, 0x401070cd, &(0x7f0000000240)={0x9fe9}) r3 = socket(0xa, 0x1, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004034}) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000100), &(0x7f0000000140)=0x4) openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x101000, 0x0) syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x200000) 2033/05/18 03:34:10 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:10 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf6") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 605.087706] FAT-fs (loop5): bogus number of reserved sectors [ 605.093797] FAT-fs (loop5): Can't find a valid FAT filesystem [ 605.131378] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 605.132172] FAULT_INJECTION: forcing a failure. [ 605.132172] name failslab, interval 1, probability 0, space 0, times 0 [ 605.150135] CPU: 0 PID: 2633 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 605.157329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 605.166685] Call Trace: [ 605.169279] dump_stack+0x1b9/0x294 [ 605.172901] ? dump_stack_print_info.cold.2+0x52/0x52 [ 605.178082] ? __might_sleep+0x95/0x190 [ 605.182168] should_fail.cold.4+0xa/0x1a [ 605.186216] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 605.191311] ? mutex_trylock+0x2a0/0x2a0 [ 605.195359] ? graph_lock+0x170/0x170 [ 605.199144] ? __mutex_lock+0x7d9/0x17f0 [ 605.203195] ? find_held_lock+0x36/0x1c0 [ 605.207243] ? __lock_is_held+0xb5/0x140 [ 605.211301] ? check_same_owner+0x320/0x320 [ 605.215614] ? rcu_note_context_switch+0x710/0x710 [ 605.220535] __should_failslab+0x124/0x180 [ 605.224755] should_failslab+0x9/0x14 [ 605.228542] __kmalloc_track_caller+0x2c4/0x760 [ 605.233195] ? graph_lock+0x170/0x170 [ 605.236980] ? graph_lock+0x170/0x170 [ 605.240769] ? kstrdup_const+0x66/0x80 [ 605.244645] kstrdup+0x39/0x70 [ 605.247822] kstrdup_const+0x66/0x80 [ 605.251524] __kernfs_new_node+0xa8/0x580 [ 605.255659] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 605.260399] ? lock_downgrade+0x8e0/0x8e0 [ 605.264535] ? kasan_check_read+0x11/0x20 [ 605.268665] ? do_raw_spin_unlock+0x9e/0x2e0 [ 605.273058] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 605.277626] kernfs_new_node+0x80/0xf0 [ 605.281511] kernfs_create_link+0x33/0x180 [ 605.285745] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 605.291026] sysfs_create_link+0x65/0xc0 [ 605.295075] device_add+0x7a0/0x16d0 [ 605.298776] ? device_private_init+0x230/0x230 [ 605.303341] ? kfree+0x1e9/0x260 [ 605.306692] ? kfree_const+0x5e/0x70 [ 605.310394] device_create_groups_vargs+0x1ff/0x270 [ 605.315406] device_create_vargs+0x46/0x60 [ 605.319637] bdi_register_va.part.10+0xbb/0x9b0 [ 605.324293] ? cgwb_kill+0x630/0x630 [ 605.327994] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 605.333518] ? bdi_init+0x416/0x510 [ 605.337128] ? wb_init+0x9e0/0x9e0 [ 605.340654] ? bdi_alloc_node+0x67/0xe0 [ 605.344610] ? bdi_alloc_node+0x67/0xe0 [ 605.348830] ? rcu_read_lock_sched_held+0x108/0x120 [ 605.354284] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 605.359553] ? _raw_spin_unlock+0x22/0x30 [ 605.363690] bdi_register_va+0x68/0x80 [ 605.367564] super_setup_bdi_name+0x123/0x220 [ 605.372047] ? kill_block_super+0x100/0x100 [ 605.376354] ? kmem_cache_alloc_trace+0x616/0x780 [ 605.381182] ? match_wildcard+0x3c0/0x3c0 [ 605.385314] ? trace_hardirqs_on+0xd/0x10 [ 605.389449] fuse_fill_super+0xe6e/0x1e20 [ 605.393585] ? fuse_get_root_inode+0x190/0x190 [ 605.398155] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 605.403159] ? kasan_check_read+0x11/0x20 [ 605.407298] ? cap_capable+0x1f9/0x260 [ 605.411175] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 605.416695] ? security_capable+0x99/0xc0 [ 605.420830] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 605.426353] ? ns_capable_common+0x13f/0x170 [ 605.430747] ? get_anon_bdev+0x2f0/0x2f0 [ 605.434792] ? sget+0x113/0x150 [ 605.438058] ? fuse_get_root_inode+0x190/0x190 [ 605.442624] mount_nodev+0x6b/0x110 [ 605.446236] fuse_mount+0x2c/0x40 [ 605.449676] mount_fs+0xae/0x328 [ 605.453032] vfs_kern_mount.part.34+0xd4/0x4d0 [ 605.457600] ? may_umount+0xb0/0xb0 [ 605.461213] ? _raw_read_unlock+0x22/0x30 [ 605.465353] ? __get_fs_type+0x97/0xc0 [ 605.469228] do_mount+0x564/0x3070 [ 605.472755] ? copy_mount_string+0x40/0x40 [ 605.476974] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 605.481979] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 605.486723] ? retint_kernel+0x10/0x10 [ 605.490598] ? copy_mount_options+0x1f0/0x380 [ 605.495080] ? copy_mount_options+0x202/0x380 [ 605.499563] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 605.505087] ? copy_mount_options+0x285/0x380 [ 605.509579] ksys_mount+0x12d/0x140 [ 605.513192] __x64_sys_mount+0xbe/0x150 [ 605.517161] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 605.522163] do_syscall_64+0x1b1/0x800 [ 605.526037] ? finish_task_switch+0x1ca/0x840 [ 605.530519] ? syscall_return_slowpath+0x5c0/0x5c0 [ 605.535436] ? syscall_return_slowpath+0x30f/0x5c0 [ 605.540355] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 605.545706] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 605.550538] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 605.555711] RIP: 0033:0x455a09 [ 605.558895] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 605.566592] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 605.573845] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 605.581109] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 605.588364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 605.595629] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:11 executing program 5 (fault-call:3 fault-nth:56): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:11 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000900", 0x29}], 0x1) 2033/05/18 03:34:11 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x1000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:11 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:11 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf6") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:11 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xb, 0xfffffffffffffffd, 0x7fff) getsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f0000000000), &(0x7f00000000c0)=0x4) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500006c", 0x29}], 0x1) [ 605.878244] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:11 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500ea11", 0x29}], 0x1) 2033/05/18 03:34:11 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x400000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:11 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) sendmmsg(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f000025d000), 0x3fc) [ 605.956366] FAT-fs (loop5): bogus number of reserved sectors [ 605.962313] FAT-fs (loop5): Can't find a valid FAT filesystem [ 606.007343] FAULT_INJECTION: forcing a failure. [ 606.007343] name failslab, interval 1, probability 0, space 0, times 0 [ 606.018654] CPU: 0 PID: 2660 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 606.025856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.035204] Call Trace: [ 606.037801] dump_stack+0x1b9/0x294 [ 606.041432] ? dump_stack_print_info.cold.2+0x52/0x52 [ 606.046621] ? __mutex_lock+0x7d9/0x17f0 [ 606.051733] should_fail.cold.4+0xa/0x1a [ 606.055799] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 606.060903] ? kasan_kmalloc+0xc4/0xe0 [ 606.064794] ? graph_lock+0x170/0x170 [ 606.068599] ? find_held_lock+0x36/0x1c0 [ 606.072663] ? __lock_is_held+0xb5/0x140 [ 606.076739] ? check_same_owner+0x320/0x320 [ 606.081063] ? kasan_check_write+0x14/0x20 [ 606.085304] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 606.090238] ? rcu_note_context_switch+0x710/0x710 [ 606.095170] __should_failslab+0x124/0x180 [ 606.099412] should_failslab+0x9/0x14 [ 606.103215] kmem_cache_alloc+0x2af/0x760 [ 606.107372] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 606.112309] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 606.117334] __kernfs_new_node+0xe7/0x580 [ 606.121487] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 606.126250] ? mutex_unlock+0xd/0x10 [ 606.129962] ? kernfs_activate+0x20e/0x2a0 [ 606.134198] ? kernfs_walk_and_get_ns+0x320/0x320 [ 606.139048] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 606.144586] ? kernfs_link_sibling+0x1d2/0x3b0 [ 606.149178] kernfs_new_node+0x80/0xf0 [ 606.153071] __kernfs_create_file+0x4d/0x330 [ 606.157495] sysfs_add_file_mode_ns+0x21a/0x560 [ 606.162174] internal_create_group+0x282/0x970 [ 606.166764] sysfs_create_groups+0x9b/0x150 [ 606.171092] device_add+0x84d/0x16d0 [ 606.174813] ? device_private_init+0x230/0x230 [ 606.179393] ? kfree+0x1e9/0x260 [ 606.182763] ? kfree_const+0x5e/0x70 [ 606.186484] device_create_groups_vargs+0x1ff/0x270 [ 606.191503] device_create_vargs+0x46/0x60 [ 606.195741] bdi_register_va.part.10+0xbb/0x9b0 [ 606.200461] ? cgwb_kill+0x630/0x630 [ 606.204357] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 606.209893] ? bdi_init+0x416/0x510 [ 606.213520] ? wb_init+0x9e0/0x9e0 [ 606.217059] ? bdi_alloc_node+0x67/0xe0 [ 606.221031] ? bdi_alloc_node+0x67/0xe0 [ 606.225004] ? rcu_read_lock_sched_held+0x108/0x120 [ 606.230019] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 606.235302] ? _raw_spin_unlock+0x22/0x30 [ 606.239453] bdi_register_va+0x68/0x80 [ 606.243345] super_setup_bdi_name+0x123/0x220 [ 606.247840] ? kill_block_super+0x100/0x100 [ 606.252164] ? kmem_cache_alloc_trace+0x616/0x780 [ 606.257006] ? match_wildcard+0x3c0/0x3c0 [ 606.261156] ? trace_hardirqs_on+0xd/0x10 [ 606.265314] fuse_fill_super+0xe6e/0x1e20 [ 606.269471] ? fuse_get_root_inode+0x190/0x190 [ 606.274058] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 606.279078] ? kasan_check_read+0x11/0x20 [ 606.283231] ? cap_capable+0x1f9/0x260 [ 606.287125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 606.292662] ? security_capable+0x99/0xc0 [ 606.296813] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 606.302353] ? ns_capable_common+0x13f/0x170 [ 606.306762] ? get_anon_bdev+0x2f0/0x2f0 [ 606.310820] ? sget+0x113/0x150 [ 606.314100] ? fuse_get_root_inode+0x190/0x190 [ 606.318680] mount_nodev+0x6b/0x110 [ 606.322310] fuse_mount+0x2c/0x40 [ 606.325767] mount_fs+0xae/0x328 [ 606.329141] vfs_kern_mount.part.34+0xd4/0x4d0 [ 606.333726] ? may_umount+0xb0/0xb0 [ 606.337353] ? _raw_read_unlock+0x22/0x30 [ 606.341517] ? __get_fs_type+0x97/0xc0 [ 606.345410] do_mount+0x564/0x3070 [ 606.348961] ? copy_mount_string+0x40/0x40 [ 606.353196] ? rcu_pm_notify+0xc0/0xc0 [ 606.357093] ? copy_mount_options+0x5f/0x380 [ 606.361500] ? rcu_read_lock_sched_held+0x108/0x120 [ 606.366537] ? kmem_cache_alloc_trace+0x616/0x780 [ 606.371385] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 606.376922] ? _copy_from_user+0xdf/0x150 [ 606.381074] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 606.386608] ? copy_mount_options+0x285/0x380 [ 606.391108] ksys_mount+0x12d/0x140 [ 606.394742] __x64_sys_mount+0xbe/0x150 [ 606.398715] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 606.403736] do_syscall_64+0x1b1/0x800 [ 606.407623] ? finish_task_switch+0x1ca/0x840 [ 606.412121] ? syscall_return_slowpath+0x5c0/0x5c0 [ 606.417052] ? syscall_return_slowpath+0x30f/0x5c0 [ 606.421985] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 606.427355] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 606.432206] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 606.437403] RIP: 0033:0x455a09 [ 606.440587] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 606.448295] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 2033/05/18 03:34:12 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x800000000004032}) clock_gettime(0x0, &(0x7f0000008c40)={0x0, 0x0}) recvmmsg(r1, &(0x7f00000089c0)=[{{&(0x7f0000000280)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000300)=""/248, 0xf8}, {&(0x7f0000000400)=""/58, 0x3a}, {&(0x7f0000000440)=""/228, 0xe4}, {&(0x7f0000000540)=""/139, 0x8b}], 0x4, &(0x7f0000000640)=""/139, 0x8b, 0x100000001}, 0x8}, {{&(0x7f0000000700)=@ipx, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000780)=""/73, 0x49}, {&(0x7f0000000800)=""/34, 0x22}, {&(0x7f0000000840)=""/182, 0xb6}, {&(0x7f0000000900)=""/156, 0x9c}, {&(0x7f00000009c0)=""/158, 0x9e}, {&(0x7f0000000a80)=""/9, 0x9}, {&(0x7f0000000ac0)=""/155, 0x9b}, {&(0x7f0000000b80)=""/166, 0xa6}, {&(0x7f0000000c40)}], 0x9, &(0x7f0000000d40)=""/108, 0x6c, 0x5}, 0x4}, {{&(0x7f0000000dc0)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000001080)=[{&(0x7f0000000e40)=""/127, 0x7f}, {&(0x7f0000000ec0)=""/135, 0x87}, {&(0x7f0000000f80)=""/225, 0xe1}], 0x3, &(0x7f00000010c0)=""/67, 0x43}}, {{0x0, 0x0, &(0x7f00000033c0)=[{&(0x7f0000001140)=""/55, 0x37}, {&(0x7f0000001180)=""/79, 0x4f}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f0000002200)=""/82, 0x52}, {&(0x7f0000002280)=""/51, 0x33}, {&(0x7f00000022c0)=""/167, 0xa7}, {&(0x7f0000002380)=""/4096, 0x1000}, {&(0x7f0000003380)=""/14, 0xe}], 0x8, &(0x7f0000003440), 0x0, 0x1}, 0x1}, {{&(0x7f0000003480)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000003600)=[{&(0x7f0000003500)=""/133, 0x85}, {&(0x7f00000035c0)=""/50, 0x32}], 0x2, &(0x7f0000003640)=""/138, 0x8a, 0x6}, 0x1}, {{&(0x7f0000003700)=@generic, 0x80, &(0x7f0000003880)=[{&(0x7f0000003780)=""/248, 0xf8}], 0x1, &(0x7f00000038c0)=""/172, 0xac, 0x5}, 0x3ff}, {{&(0x7f0000003980)=@hci={0x0, 0x0}, 0x80, &(0x7f0000004c40)=[{&(0x7f0000003a00)=""/255, 0xff}, {&(0x7f0000003b00)=""/22, 0x16}, {&(0x7f0000003b40)=""/4096, 0x1000}, {&(0x7f0000004b40)=""/203, 0xcb}], 0x4, &(0x7f0000004c80)=""/80, 0x50, 0x8}, 0x3f}, {{&(0x7f0000004d00)=@generic, 0x80, &(0x7f0000005040)=[{&(0x7f0000004d80)=""/219, 0xdb}, {&(0x7f0000004e80)=""/145, 0x91}, {&(0x7f0000004f40)=""/240, 0xf0}], 0x3, &(0x7f0000005080)=""/4096, 0x1000, 0xffffffff}, 0xac}, {{&(0x7f0000006080)=@nfc_llcp, 0x80, &(0x7f00000075c0)=[{&(0x7f0000006100)=""/192, 0xc0}, {&(0x7f00000061c0)=""/145, 0x91}, {&(0x7f0000006280)=""/126, 0x7e}, {&(0x7f0000006300)=""/240, 0xf0}, {&(0x7f0000006400)=""/48, 0x30}, {&(0x7f0000006440)=""/115, 0x73}, {&(0x7f00000064c0)=""/222, 0xde}, {&(0x7f00000065c0)=""/4096, 0x1000}], 0x8, &(0x7f0000007640)=""/26, 0x1a, 0x78}, 0x101}, {{0x0, 0x0, &(0x7f0000008940)=[{&(0x7f0000007680)=""/39, 0x27}, {&(0x7f00000076c0)=""/17, 0x11}, {&(0x7f0000007700)=""/4096, 0x1000}, {&(0x7f0000008700)=""/79, 0x4f}, {&(0x7f0000008780)=""/33, 0x21}, {&(0x7f00000087c0)=""/226, 0xe2}, {&(0x7f00000088c0)=""/56, 0x38}, {&(0x7f0000008900)=""/15, 0xf}], 0x8, 0x0, 0x0, 0x2}, 0xffffffffffff9f77}], 0xa, 0x2040, &(0x7f0000008c80)={r2, r3+10000000}) connect$can_bcm(r0, &(0x7f0000008cc0)={0x1d, r4}, 0x10) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x40000, 0x0) mq_getsetattr(r5, &(0x7f0000000100)={0x3, 0x0, 0xfff, 0x10001, 0xfffffffffffffffb, 0x264, 0x7, 0x482bd286}, &(0x7f0000000140)) connect$can_bcm(r1, &(0x7f0000000000)={0x1d}, 0x10) [ 606.455564] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 606.462831] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 606.470098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 606.477363] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:12 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf6") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:12 executing program 5 (fault-call:3 fault-nth:57): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:12 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500004c", 0x29}], 0x1) [ 606.664831] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:12 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500ffff", 0x29}], 0x1) 2033/05/18 03:34:12 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) sendmmsg(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f000025d000), 0x3fc) [ 606.856840] FAT-fs (loop5): bogus number of reserved sectors [ 606.862763] FAT-fs (loop5): Can't find a valid FAT filesystem [ 606.882582] FAULT_INJECTION: forcing a failure. [ 606.882582] name failslab, interval 1, probability 0, space 0, times 0 [ 606.894583] CPU: 0 PID: 2684 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 606.901772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.911118] Call Trace: [ 606.913708] dump_stack+0x1b9/0x294 [ 606.917341] ? dump_stack_print_info.cold.2+0x52/0x52 [ 606.922532] ? __mutex_lock+0x7d9/0x17f0 [ 606.926601] should_fail.cold.4+0xa/0x1a [ 606.930663] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 606.935767] ? kasan_kmalloc+0xc4/0xe0 [ 606.939658] ? graph_lock+0x170/0x170 [ 606.943463] ? find_held_lock+0x36/0x1c0 [ 606.947528] ? __lock_is_held+0xb5/0x140 [ 606.951602] ? check_same_owner+0x320/0x320 [ 606.955922] ? kasan_check_write+0x14/0x20 [ 606.960165] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 606.965096] ? rcu_note_context_switch+0x710/0x710 [ 606.970028] __should_failslab+0x124/0x180 [ 606.974266] should_failslab+0x9/0x14 [ 606.978066] kmem_cache_alloc+0x2af/0x760 [ 606.982218] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 606.987172] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 606.992196] __kernfs_new_node+0xe7/0x580 [ 606.996347] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 607.001107] ? mutex_unlock+0xd/0x10 [ 607.004824] ? kernfs_activate+0x20e/0x2a0 [ 607.009064] ? kernfs_walk_and_get_ns+0x320/0x320 [ 607.013932] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 607.019468] ? kernfs_link_sibling+0x1d2/0x3b0 [ 607.024057] kernfs_new_node+0x80/0xf0 [ 607.027950] __kernfs_create_file+0x4d/0x330 [ 607.032364] sysfs_add_file_mode_ns+0x21a/0x560 [ 607.037047] internal_create_group+0x282/0x970 [ 607.041642] sysfs_create_groups+0x9b/0x150 [ 607.045965] device_add+0x84d/0x16d0 [ 607.049686] ? device_private_init+0x230/0x230 [ 607.054270] ? kfree+0x1e9/0x260 [ 607.057645] ? kfree_const+0x5e/0x70 [ 607.061364] device_create_groups_vargs+0x1ff/0x270 [ 607.066385] device_create_vargs+0x46/0x60 [ 607.070623] bdi_register_va.part.10+0xbb/0x9b0 [ 607.075294] ? cgwb_kill+0x630/0x630 [ 607.079011] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.084547] ? bdi_init+0x416/0x510 [ 607.088175] ? wb_init+0x9e0/0x9e0 [ 607.091716] ? bdi_alloc_node+0x67/0xe0 [ 607.095689] ? bdi_alloc_node+0x67/0xe0 [ 607.099661] ? rcu_read_lock_sched_held+0x108/0x120 [ 607.104691] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 607.109974] ? _raw_spin_unlock+0x22/0x30 [ 607.114130] bdi_register_va+0x68/0x80 [ 607.118029] super_setup_bdi_name+0x123/0x220 [ 607.122522] ? kill_block_super+0x100/0x100 [ 607.126937] ? kmem_cache_alloc_trace+0x616/0x780 [ 607.131779] ? match_wildcard+0x3c0/0x3c0 [ 607.135926] ? trace_hardirqs_on+0xd/0x10 [ 607.140078] fuse_fill_super+0xe6e/0x1e20 [ 607.144235] ? fuse_get_root_inode+0x190/0x190 [ 607.148822] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 607.153841] ? kasan_check_read+0x11/0x20 [ 607.157990] ? cap_capable+0x1f9/0x260 [ 607.161883] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.167423] ? security_capable+0x99/0xc0 [ 607.171576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.177113] ? ns_capable_common+0x13f/0x170 [ 607.181527] ? get_anon_bdev+0x2f0/0x2f0 [ 607.185590] ? sget+0x113/0x150 [ 607.188885] ? fuse_get_root_inode+0x190/0x190 [ 607.193471] mount_nodev+0x6b/0x110 [ 607.197109] fuse_mount+0x2c/0x40 [ 607.200613] mount_fs+0xae/0x328 [ 607.203984] vfs_kern_mount.part.34+0xd4/0x4d0 [ 607.208569] ? may_umount+0xb0/0xb0 [ 607.212199] ? _raw_read_unlock+0x22/0x30 [ 607.216343] ? __get_fs_type+0x97/0xc0 [ 607.220235] do_mount+0x564/0x3070 [ 607.223927] ? copy_mount_string+0x40/0x40 [ 607.228168] ? rcu_pm_notify+0xc0/0xc0 [ 607.232062] ? copy_mount_options+0x5f/0x380 [ 607.236473] ? rcu_read_lock_sched_held+0x108/0x120 [ 607.241493] ? kmem_cache_alloc_trace+0x616/0x780 [ 607.246340] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 607.251878] ? _copy_from_user+0xdf/0x150 [ 607.256032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.261570] ? copy_mount_options+0x285/0x380 [ 607.266071] ksys_mount+0x12d/0x140 [ 607.269702] __x64_sys_mount+0xbe/0x150 [ 607.273673] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 607.278690] do_syscall_64+0x1b1/0x800 [ 607.282580] ? finish_task_switch+0x1ca/0x840 [ 607.287077] ? syscall_return_slowpath+0x5c0/0x5c0 [ 607.292006] ? syscall_return_slowpath+0x30f/0x5c0 [ 607.296938] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 607.302308] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 607.307171] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 607.312357] RIP: 0033:0x455a09 [ 607.315545] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 607.323258] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 607.330533] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 607.337800] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 607.345073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 607.352340] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 607.373247] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:13 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:13 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x200000) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) r2 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, r2) 2033/05/18 03:34:13 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:13 executing program 5 (fault-call:3 fault-nth:58): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000074", 0x29}], 0x1) 2033/05/18 03:34:13 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500ffff", 0x29}], 0x1) 2033/05/18 03:34:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:13 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) sendmmsg(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:13 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xf5ffffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:13 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 607.563470] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:13 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:13 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025009eff", 0x29}], 0x1) [ 607.622474] FAT-fs (loop5): bogus number of reserved sectors [ 607.628590] FAT-fs (loop5): Can't find a valid FAT filesystem [ 607.674510] FAULT_INJECTION: forcing a failure. [ 607.674510] name failslab, interval 1, probability 0, space 0, times 0 [ 607.685805] CPU: 0 PID: 2703 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 607.692984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 607.702334] Call Trace: [ 607.704929] dump_stack+0x1b9/0x294 [ 607.708560] ? dump_stack_print_info.cold.2+0x52/0x52 [ 607.713755] ? lock_release+0xa10/0xa10 [ 607.717744] ? check_same_owner+0x320/0x320 [ 607.722078] should_fail.cold.4+0xa/0x1a [ 607.726148] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 607.731255] ? kasan_check_write+0x14/0x20 [ 607.735490] ? __mutex_lock+0x7d9/0x17f0 [ 607.739553] ? graph_lock+0x170/0x170 [ 607.743358] ? find_held_lock+0x36/0x1c0 [ 607.747423] ? __lock_is_held+0xb5/0x140 [ 607.751482] ? bw_calcs+0x1080/0x7650 [ 607.755292] ? check_same_owner+0x320/0x320 [ 607.759612] ? find_held_lock+0x36/0x1c0 [ 607.763677] ? rcu_note_context_switch+0x710/0x710 [ 607.768610] __should_failslab+0x124/0x180 [ 607.772848] should_failslab+0x9/0x14 [ 607.776649] kmem_cache_alloc+0x2af/0x760 [ 607.780808] ? kasan_check_write+0x14/0x20 [ 607.785048] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 607.789980] ? lock_downgrade+0x8e0/0x8e0 [ 607.794133] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 607.799153] __kernfs_new_node+0xe7/0x580 [ 607.803306] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 607.808063] ? kasan_check_write+0x14/0x20 [ 607.812304] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 607.817234] ? __lock_is_held+0xb5/0x140 [ 607.821297] ? wait_for_completion+0x870/0x870 [ 607.825889] kernfs_new_node+0x80/0xf0 [ 607.829798] __kernfs_create_file+0x4d/0x330 [ 607.834214] sysfs_add_file_mode_ns+0x21a/0x560 [ 607.838893] internal_create_group+0x282/0x970 [ 607.843487] sysfs_create_groups+0x9b/0x150 [ 607.847812] device_add+0x84d/0x16d0 [ 607.851535] ? device_private_init+0x230/0x230 [ 607.856116] ? kfree+0x1e9/0x260 [ 607.859484] ? kfree_const+0x5e/0x70 [ 607.863206] device_create_groups_vargs+0x1ff/0x270 [ 607.868228] device_create_vargs+0x46/0x60 [ 607.872472] bdi_register_va.part.10+0xbb/0x9b0 [ 607.877141] ? cgwb_kill+0x630/0x630 [ 607.880861] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.886395] ? bdi_init+0x416/0x510 [ 607.890017] ? wb_init+0x9e0/0x9e0 [ 607.893560] ? bdi_alloc_node+0x67/0xe0 [ 607.897531] ? bdi_alloc_node+0x67/0xe0 [ 607.901506] ? rcu_read_lock_sched_held+0x108/0x120 [ 607.906528] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 607.911810] ? _raw_spin_unlock+0x22/0x30 [ 607.915961] bdi_register_va+0x68/0x80 [ 607.919851] super_setup_bdi_name+0x123/0x220 [ 607.924345] ? kill_block_super+0x100/0x100 [ 607.928668] ? kmem_cache_alloc_trace+0x616/0x780 [ 607.933515] ? match_wildcard+0x3c0/0x3c0 [ 607.937662] ? trace_hardirqs_on+0xd/0x10 [ 607.941817] fuse_fill_super+0xe6e/0x1e20 [ 607.945977] ? fuse_get_root_inode+0x190/0x190 [ 607.950562] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 607.955583] ? kasan_check_read+0x11/0x20 [ 607.959733] ? cap_capable+0x1f9/0x260 [ 607.963629] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.969171] ? security_capable+0x99/0xc0 [ 607.973338] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 607.978877] ? ns_capable_common+0x13f/0x170 [ 607.983299] ? get_anon_bdev+0x2f0/0x2f0 [ 607.987360] ? sget+0x113/0x150 [ 607.990651] ? fuse_get_root_inode+0x190/0x190 [ 607.995233] mount_nodev+0x6b/0x110 [ 607.998861] fuse_mount+0x2c/0x40 [ 608.002328] mount_fs+0xae/0x328 [ 608.005701] vfs_kern_mount.part.34+0xd4/0x4d0 [ 608.010286] ? may_umount+0xb0/0xb0 [ 608.013917] ? _raw_read_unlock+0x22/0x30 [ 608.018077] ? __get_fs_type+0x97/0xc0 [ 608.021972] do_mount+0x564/0x3070 [ 608.025511] ? interrupt_entry+0xb1/0xf0 [ 608.029573] ? copy_mount_string+0x40/0x40 [ 608.033808] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 608.038569] ? retint_kernel+0x10/0x10 [ 608.042461] ? copy_mount_options+0x1e3/0x380 [ 608.046962] ? write_comp_data+0x11/0x70 [ 608.051026] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 608.056563] ? copy_mount_options+0x285/0x380 [ 608.061065] ksys_mount+0x12d/0x140 [ 608.064701] __x64_sys_mount+0xbe/0x150 [ 608.068675] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 608.073694] do_syscall_64+0x1b1/0x800 [ 608.077579] ? finish_task_switch+0x1ca/0x840 [ 608.082080] ? syscall_return_slowpath+0x5c0/0x5c0 [ 608.087012] ? syscall_return_slowpath+0x30f/0x5c0 [ 608.091946] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 608.097312] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 608.102162] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 608.107350] RIP: 0033:0x455a09 [ 608.110536] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 608.118249] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 608.125517] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 608.132781] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 608.140047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 608.147317] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 608.330786] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:14 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:14 executing program 4: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000340)) setrlimit(0x40000000000008, &(0x7f00000a3ff0)={0x23, 0x100000000020}) r0 = socket(0x40000000015, 0x5, 0x0) mlock2(&(0x7f0000912000/0x3000)=nil, 0x3000, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setreuid(0x0, r1) mlock(&(0x7f0000911000/0x2000)=nil, 0x2000) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000240)={0x0, 0x0, 0x0, 'queue1\x00'}) r2 = syz_open_dev$tun(&(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x28, &(0x7f0000000000)) ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'gretap0\x00', @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:34:14 executing program 5 (fault-call:3 fault-nth:59): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:14 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500009e", 0x29}], 0x1) 2033/05/18 03:34:14 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xffffffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:14 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000200", 0x29}], 0x1) 2033/05/18 03:34:14 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:14 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) [ 608.524998] FAT-fs (loop5): bogus number of reserved sectors [ 608.531175] FAT-fs (loop5): Can't find a valid FAT filesystem [ 608.585568] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 608.610872] FAULT_INJECTION: forcing a failure. [ 608.610872] name failslab, interval 1, probability 0, space 0, times 0 [ 608.622975] CPU: 0 PID: 2728 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 608.630169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 608.639526] Call Trace: [ 608.642133] dump_stack+0x1b9/0x294 [ 608.645780] ? dump_stack_print_info.cold.2+0x52/0x52 [ 608.650983] ? __mutex_lock+0x7d9/0x17f0 [ 608.655057] should_fail.cold.4+0xa/0x1a [ 608.659111] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 608.664203] ? kasan_kmalloc+0xc4/0xe0 [ 608.668081] ? graph_lock+0x170/0x170 [ 608.671871] ? find_held_lock+0x36/0x1c0 [ 608.675921] ? __lock_is_held+0xb5/0x140 [ 608.679991] ? check_same_owner+0x320/0x320 [ 608.684309] ? kasan_check_write+0x14/0x20 [ 608.688538] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 608.693462] ? rcu_note_context_switch+0x710/0x710 [ 608.698386] __should_failslab+0x124/0x180 [ 608.702617] should_failslab+0x9/0x14 [ 608.706410] kmem_cache_alloc+0x2af/0x760 [ 608.710547] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 608.715469] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 608.720478] __kernfs_new_node+0xe7/0x580 [ 608.724618] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 608.729366] ? mutex_unlock+0xd/0x10 [ 608.733069] ? kernfs_activate+0x20e/0x2a0 [ 608.737295] ? kernfs_walk_and_get_ns+0x320/0x320 [ 608.742132] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 608.747675] ? kernfs_link_sibling+0x1d2/0x3b0 [ 608.752249] kernfs_new_node+0x80/0xf0 [ 608.756130] __kernfs_create_file+0x4d/0x330 [ 608.760535] sysfs_add_file_mode_ns+0x21a/0x560 [ 608.765200] internal_create_group+0x282/0x970 [ 608.769791] sysfs_create_groups+0x9b/0x150 [ 608.774108] device_add+0x84d/0x16d0 [ 608.777816] ? device_private_init+0x230/0x230 [ 608.782385] ? kfree+0x1e9/0x260 [ 608.785756] ? kfree_const+0x5e/0x70 [ 608.789465] device_create_groups_vargs+0x1ff/0x270 [ 608.794489] device_create_vargs+0x46/0x60 [ 608.798732] bdi_register_va.part.10+0xbb/0x9b0 [ 608.803408] ? cgwb_kill+0x630/0x630 [ 608.807119] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 608.812649] ? bdi_init+0x416/0x510 [ 608.816266] ? wb_init+0x9e0/0x9e0 [ 608.819799] ? bdi_alloc_node+0x67/0xe0 [ 608.823775] ? bdi_alloc_node+0x67/0xe0 [ 608.827742] ? rcu_read_lock_sched_held+0x108/0x120 [ 608.832753] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 608.838034] ? _raw_spin_unlock+0x22/0x30 [ 608.842200] bdi_register_va+0x68/0x80 [ 608.846096] super_setup_bdi_name+0x123/0x220 [ 608.850585] ? kill_block_super+0x100/0x100 [ 608.854900] ? kmem_cache_alloc_trace+0x616/0x780 [ 608.859744] ? match_wildcard+0x3c0/0x3c0 [ 608.863882] ? trace_hardirqs_on+0xd/0x10 [ 608.868034] fuse_fill_super+0xe6e/0x1e20 [ 608.872189] ? fuse_get_root_inode+0x190/0x190 [ 608.876761] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 608.881780] ? kasan_check_read+0x11/0x20 [ 608.886285] ? cap_capable+0x1f9/0x260 [ 608.890168] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 608.895691] ? security_capable+0x99/0xc0 [ 608.899828] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 608.905353] ? ns_capable_common+0x13f/0x170 [ 608.909762] ? get_anon_bdev+0x2f0/0x2f0 [ 608.913808] ? sget+0x113/0x150 [ 608.917080] ? fuse_get_root_inode+0x190/0x190 [ 608.921661] mount_nodev+0x6b/0x110 [ 608.925276] fuse_mount+0x2c/0x40 [ 608.928728] mount_fs+0xae/0x328 [ 608.932086] vfs_kern_mount.part.34+0xd4/0x4d0 [ 608.936656] ? may_umount+0xb0/0xb0 [ 608.940273] ? _raw_read_unlock+0x22/0x30 [ 608.944411] ? __get_fs_type+0x97/0xc0 [ 608.948291] do_mount+0x564/0x3070 [ 608.951823] ? copy_mount_string+0x40/0x40 [ 608.956050] ? rcu_pm_notify+0xc0/0xc0 [ 608.959931] ? copy_mount_options+0x5f/0x380 [ 608.964326] ? rcu_read_lock_sched_held+0x108/0x120 [ 608.969331] ? kmem_cache_alloc_trace+0x616/0x780 [ 608.974165] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 608.979693] ? _copy_from_user+0xdf/0x150 [ 608.983835] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 608.989373] ? copy_mount_options+0x285/0x380 [ 608.993859] ksys_mount+0x12d/0x140 [ 608.997478] __x64_sys_mount+0xbe/0x150 [ 609.001442] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 609.006453] do_syscall_64+0x1b1/0x800 [ 609.010344] ? finish_task_switch+0x1ca/0x840 [ 609.014829] ? syscall_return_slowpath+0x5c0/0x5c0 [ 609.019747] ? syscall_return_slowpath+0x30f/0x5c0 [ 609.024680] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 609.030049] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:34:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:34:14 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x200000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:14 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x0, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 609.034884] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 609.040064] RIP: 0033:0x455a09 [ 609.043237] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 609.050934] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 609.058203] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 609.065475] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 609.072733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 609.080008] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:14 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea11000000250000ae", 0x29}], 0x1) 2033/05/18 03:34:14 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:14 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={"655f657461872659b02a1c6b3dc778f0", 0x20}) 2033/05/18 03:34:14 executing program 5 (fault-call:3 fault-nth:60): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:14 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) [ 609.475132] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 609.562349] FAT-fs (loop5): bogus number of reserved sectors [ 609.568383] FAT-fs (loop5): Can't find a valid FAT filesystem [ 609.592735] FAULT_INJECTION: forcing a failure. [ 609.592735] name failslab, interval 1, probability 0, space 0, times 0 [ 609.604111] CPU: 0 PID: 2758 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 609.611294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.620788] Call Trace: [ 609.623388] dump_stack+0x1b9/0x294 [ 609.627122] ? dump_stack_print_info.cold.2+0x52/0x52 [ 609.632465] ? __mutex_lock+0x7d9/0x17f0 [ 609.636534] should_fail.cold.4+0xa/0x1a [ 609.640602] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 609.645709] ? kasan_kmalloc+0xc4/0xe0 [ 609.649604] ? graph_lock+0x170/0x170 [ 609.653412] ? find_held_lock+0x36/0x1c0 [ 609.657480] ? __lock_is_held+0xb5/0x140 [ 609.661562] ? check_same_owner+0x320/0x320 [ 609.665886] ? kasan_check_write+0x14/0x20 [ 609.670123] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 609.675059] ? rcu_note_context_switch+0x710/0x710 [ 609.679991] __should_failslab+0x124/0x180 [ 609.684229] should_failslab+0x9/0x14 [ 609.688033] kmem_cache_alloc+0x2af/0x760 [ 609.692181] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 609.697118] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 609.702139] __kernfs_new_node+0xe7/0x580 [ 609.706294] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 609.711051] ? mutex_unlock+0xd/0x10 [ 609.714765] ? kernfs_activate+0x20e/0x2a0 [ 609.719013] ? kernfs_walk_and_get_ns+0x320/0x320 [ 609.723872] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 609.729417] ? kernfs_link_sibling+0x1d2/0x3b0 [ 609.734005] kernfs_new_node+0x80/0xf0 [ 609.737897] __kernfs_create_file+0x4d/0x330 [ 609.742311] sysfs_add_file_mode_ns+0x21a/0x560 [ 609.747165] internal_create_group+0x282/0x970 [ 609.751760] sysfs_create_groups+0x9b/0x150 [ 609.756089] device_add+0x84d/0x16d0 [ 609.759811] ? device_private_init+0x230/0x230 [ 609.764396] ? kfree+0x1e9/0x260 [ 609.767766] ? kfree_const+0x5e/0x70 [ 609.771489] device_create_groups_vargs+0x1ff/0x270 [ 609.776508] device_create_vargs+0x46/0x60 [ 609.780752] bdi_register_va.part.10+0xbb/0x9b0 [ 609.785424] ? cgwb_kill+0x630/0x630 [ 609.789142] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 609.794675] ? bdi_init+0x416/0x510 [ 609.798299] ? wb_init+0x9e0/0x9e0 [ 609.801840] ? bdi_alloc_node+0x67/0xe0 [ 609.805815] ? bdi_alloc_node+0x67/0xe0 [ 609.809789] ? rcu_read_lock_sched_held+0x108/0x120 [ 609.814807] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 609.820089] ? _raw_spin_unlock+0x22/0x30 [ 609.824242] bdi_register_va+0x68/0x80 [ 609.828134] super_setup_bdi_name+0x123/0x220 [ 609.832633] ? kill_block_super+0x100/0x100 [ 609.836963] ? kmem_cache_alloc_trace+0x616/0x780 [ 609.841805] ? match_wildcard+0x3c0/0x3c0 [ 609.845957] ? trace_hardirqs_on+0xd/0x10 [ 609.850111] fuse_fill_super+0xe6e/0x1e20 [ 609.854266] ? fuse_get_root_inode+0x190/0x190 [ 609.858852] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 609.863875] ? kasan_check_read+0x11/0x20 [ 609.868030] ? cap_capable+0x1f9/0x260 [ 609.871933] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 609.877468] ? security_capable+0x99/0xc0 [ 609.881618] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 609.887156] ? ns_capable_common+0x13f/0x170 [ 609.891568] ? get_anon_bdev+0x2f0/0x2f0 [ 609.895626] ? sget+0x113/0x150 [ 609.898909] ? fuse_get_root_inode+0x190/0x190 [ 609.903498] mount_nodev+0x6b/0x110 [ 609.907126] fuse_mount+0x2c/0x40 [ 609.910587] mount_fs+0xae/0x328 [ 609.913962] vfs_kern_mount.part.34+0xd4/0x4d0 [ 609.918545] ? may_umount+0xb0/0xb0 [ 609.922174] ? _raw_read_unlock+0x22/0x30 [ 609.926319] ? __get_fs_type+0x97/0xc0 [ 609.930208] do_mount+0x564/0x3070 [ 609.933753] ? copy_mount_string+0x40/0x40 [ 609.937990] ? rcu_pm_notify+0xc0/0xc0 [ 609.941887] ? copy_mount_options+0x5f/0x380 [ 609.946297] ? rcu_read_lock_sched_held+0x108/0x120 [ 609.951316] ? kmem_cache_alloc_trace+0x616/0x780 [ 609.956168] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 609.961704] ? copy_mount_options+0x285/0x380 [ 609.966206] ksys_mount+0x12d/0x140 [ 609.969833] __x64_sys_mount+0xbe/0x150 [ 609.973805] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 609.978824] do_syscall_64+0x1b1/0x800 [ 609.982722] ? finish_task_switch+0x1ca/0x840 [ 609.987219] ? syscall_return_slowpath+0x5c0/0x5c0 [ 609.992156] ? syscall_return_slowpath+0x30f/0x5c0 [ 609.997089] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 610.002459] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 610.007311] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 610.012499] RIP: 0033:0x455a09 [ 610.015683] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 610.023392] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 610.030656] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 610.037932] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 610.045203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 610.052471] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:15 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x0, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:15 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x1400000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:15 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000003", 0x29}], 0x1) 2033/05/18 03:34:15 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000006", 0x29}], 0x1) 2033/05/18 03:34:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:34:15 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0x7f, &(0x7f0000000140)="8000262c8523bf012cf667") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:15 executing program 5 (fault-call:3 fault-nth:61): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:15 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:15 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x0, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:15 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:15 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x7000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:15 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 610.217884] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:15 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:15 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 2033/05/18 03:34:15 executing program 4: r0 = socket(0xa, 0x1, 0x0) getsockname$netrom(r0, &(0x7f0000000000), &(0x7f00000000c0)=0x10) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) socket$inet_smc(0x2b, 0x1, 0x0) [ 610.353008] FAT-fs (loop5): bogus number of reserved sectors [ 610.359157] FAT-fs (loop5): Can't find a valid FAT filesystem [ 610.380727] FAULT_INJECTION: forcing a failure. [ 610.380727] name failslab, interval 1, probability 0, space 0, times 0 [ 610.392267] CPU: 0 PID: 2779 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 610.399450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.408798] Call Trace: [ 610.411395] dump_stack+0x1b9/0x294 [ 610.415029] ? dump_stack_print_info.cold.2+0x52/0x52 [ 610.420220] ? __mutex_lock+0x7d9/0x17f0 [ 610.424291] should_fail.cold.4+0xa/0x1a [ 610.428352] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 610.433457] ? kasan_kmalloc+0xc4/0xe0 [ 610.437433] ? graph_lock+0x170/0x170 [ 610.441238] ? find_held_lock+0x36/0x1c0 [ 610.445302] ? __lock_is_held+0xb5/0x140 [ 610.449379] ? check_same_owner+0x320/0x320 [ 610.453697] ? kasan_check_write+0x14/0x20 [ 610.457931] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 610.462866] ? rcu_note_context_switch+0x710/0x710 [ 610.467892] __should_failslab+0x124/0x180 [ 610.472131] should_failslab+0x9/0x14 [ 610.475935] kmem_cache_alloc+0x2af/0x760 [ 610.480084] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 610.485020] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 610.490039] __kernfs_new_node+0xe7/0x580 [ 610.494192] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 610.498948] ? mutex_unlock+0xd/0x10 [ 610.502665] ? kernfs_activate+0x20e/0x2a0 [ 610.506906] ? kernfs_walk_and_get_ns+0x320/0x320 [ 610.511752] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 610.517286] ? kernfs_link_sibling+0x1d2/0x3b0 [ 610.521872] kernfs_new_node+0x80/0xf0 [ 610.525766] __kernfs_create_file+0x4d/0x330 [ 610.530177] sysfs_add_file_mode_ns+0x21a/0x560 [ 610.534853] sysfs_add_file+0x4e/0x60 [ 610.538660] sysfs_merge_group+0xfa/0x230 [ 610.542818] dpm_sysfs_add+0x161/0x210 [ 610.546708] device_add+0xa11/0x16d0 [ 610.550425] ? device_private_init+0x230/0x230 [ 610.555008] ? kfree+0x1e9/0x260 [ 610.558380] ? kfree_const+0x5e/0x70 [ 610.562098] device_create_groups_vargs+0x1ff/0x270 [ 610.567117] device_create_vargs+0x46/0x60 [ 610.571355] bdi_register_va.part.10+0xbb/0x9b0 [ 610.576022] ? cgwb_kill+0x630/0x630 [ 610.579740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 610.585273] ? bdi_init+0x416/0x510 [ 610.588899] ? wb_init+0x9e0/0x9e0 [ 610.592441] ? bdi_alloc_node+0x67/0xe0 [ 610.596415] ? bdi_alloc_node+0x67/0xe0 [ 610.600392] ? rcu_read_lock_sched_held+0x108/0x120 [ 610.605411] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 610.610692] ? _raw_spin_unlock+0x22/0x30 [ 610.614842] bdi_register_va+0x68/0x80 [ 610.618739] super_setup_bdi_name+0x123/0x220 [ 610.623234] ? kill_block_super+0x100/0x100 [ 610.627559] ? kmem_cache_alloc_trace+0x616/0x780 [ 610.632404] ? match_wildcard+0x3c0/0x3c0 [ 610.636553] ? trace_hardirqs_on+0xd/0x10 [ 610.640704] fuse_fill_super+0xe6e/0x1e20 [ 610.644862] ? fuse_get_root_inode+0x190/0x190 [ 610.649452] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 610.654472] ? kasan_check_read+0x11/0x20 [ 610.658622] ? cap_capable+0x1f9/0x260 [ 610.662518] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 610.668054] ? security_capable+0x99/0xc0 [ 610.672203] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 610.677737] ? ns_capable_common+0x13f/0x170 [ 610.682145] ? get_anon_bdev+0x2f0/0x2f0 [ 610.686204] ? sget+0x113/0x150 [ 610.689483] ? fuse_get_root_inode+0x190/0x190 [ 610.694066] mount_nodev+0x6b/0x110 [ 610.697692] fuse_mount+0x2c/0x40 [ 610.701145] mount_fs+0xae/0x328 [ 610.704516] vfs_kern_mount.part.34+0xd4/0x4d0 [ 610.709101] ? may_umount+0xb0/0xb0 [ 610.712730] ? _raw_read_unlock+0x22/0x30 [ 610.716879] ? __get_fs_type+0x97/0xc0 [ 610.720771] do_mount+0x564/0x3070 [ 610.724314] ? copy_mount_string+0x40/0x40 [ 610.728550] ? rcu_pm_notify+0xc0/0xc0 [ 610.732443] ? copy_mount_options+0x5f/0x380 [ 610.736848] ? rcu_read_lock_sched_held+0x108/0x120 [ 610.741875] ? kmem_cache_alloc_trace+0x616/0x780 [ 610.746724] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 610.752259] ? _copy_from_user+0xdf/0x150 [ 610.756412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 610.761947] ? copy_mount_options+0x285/0x380 [ 610.766708] ksys_mount+0x12d/0x140 [ 610.770336] __x64_sys_mount+0xbe/0x150 [ 610.774310] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 610.779331] do_syscall_64+0x1b1/0x800 [ 610.783221] ? finish_task_switch+0x1ca/0x840 [ 610.787719] ? syscall_return_slowpath+0x5c0/0x5c0 [ 610.792652] ? syscall_return_slowpath+0x30f/0x5c0 [ 610.797582] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 610.802950] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 610.807795] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 610.812982] RIP: 0033:0x455a09 [ 610.816170] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 610.823880] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 610.831146] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 610.838410] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 610.845676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 610.852941] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:16 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x0, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:16 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:16 executing program 5 (fault-call:3 fault-nth:62): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 610.988593] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 611.259077] FAT-fs (loop5): bogus number of reserved sectors [ 611.265111] FAT-fs (loop5): Can't find a valid FAT filesystem [ 611.280792] FAULT_INJECTION: forcing a failure. [ 611.280792] name failslab, interval 1, probability 0, space 0, times 0 [ 611.292169] CPU: 0 PID: 2802 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 611.299357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 611.308810] Call Trace: [ 611.311405] dump_stack+0x1b9/0x294 [ 611.315036] ? dump_stack_print_info.cold.2+0x52/0x52 [ 611.320229] ? __mutex_lock+0x7d9/0x17f0 [ 611.324300] should_fail.cold.4+0xa/0x1a [ 611.328360] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 611.333465] ? kasan_kmalloc+0xc4/0xe0 [ 611.337354] ? graph_lock+0x170/0x170 [ 611.341158] ? find_held_lock+0x36/0x1c0 [ 611.345221] ? __lock_is_held+0xb5/0x140 [ 611.349292] ? check_same_owner+0x320/0x320 [ 611.353700] ? kasan_check_write+0x14/0x20 [ 611.357939] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 611.362871] ? rcu_note_context_switch+0x710/0x710 [ 611.367804] __should_failslab+0x124/0x180 [ 611.372045] should_failslab+0x9/0x14 [ 611.375848] kmem_cache_alloc+0x2af/0x760 [ 611.379996] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 611.384930] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 611.389950] __kernfs_new_node+0xe7/0x580 [ 611.394098] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 611.398852] ? mutex_unlock+0xd/0x10 [ 611.402563] ? kernfs_activate+0x20e/0x2a0 [ 611.406797] ? kernfs_walk_and_get_ns+0x320/0x320 [ 611.411644] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 611.417178] ? kernfs_link_sibling+0x1d2/0x3b0 [ 611.421765] kernfs_new_node+0x80/0xf0 [ 611.425654] __kernfs_create_file+0x4d/0x330 [ 611.430066] sysfs_add_file_mode_ns+0x21a/0x560 [ 611.434738] internal_create_group+0x282/0x970 [ 611.439332] sysfs_create_groups+0x9b/0x150 [ 611.443653] device_add+0x84d/0x16d0 [ 611.447369] ? device_private_init+0x230/0x230 [ 611.451947] ? kfree+0x1e9/0x260 [ 611.455314] ? kfree_const+0x5e/0x70 [ 611.459030] device_create_groups_vargs+0x1ff/0x270 [ 611.464048] device_create_vargs+0x46/0x60 [ 611.468288] bdi_register_va.part.10+0xbb/0x9b0 [ 611.472956] ? cgwb_kill+0x630/0x630 [ 611.476670] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 611.482202] ? bdi_init+0x416/0x510 [ 611.485827] ? wb_init+0x9e0/0x9e0 [ 611.489370] ? bdi_alloc_node+0x67/0xe0 [ 611.493338] ? bdi_alloc_node+0x67/0xe0 [ 611.497310] ? rcu_read_lock_sched_held+0x108/0x120 [ 611.502326] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 611.507604] ? _raw_spin_unlock+0x22/0x30 [ 611.511755] bdi_register_va+0x68/0x80 [ 611.515644] super_setup_bdi_name+0x123/0x220 [ 611.520137] ? kill_block_super+0x100/0x100 [ 611.524457] ? kmem_cache_alloc_trace+0x616/0x780 [ 611.529297] ? match_wildcard+0x3c0/0x3c0 [ 611.533445] ? trace_hardirqs_on+0xd/0x10 [ 611.537599] fuse_fill_super+0xe6e/0x1e20 [ 611.541751] ? fuse_get_root_inode+0x190/0x190 [ 611.546334] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 611.551375] ? kasan_check_read+0x11/0x20 [ 611.555523] ? cap_capable+0x1f9/0x260 [ 611.559417] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 611.564954] ? security_capable+0x99/0xc0 [ 611.569104] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 611.574639] ? ns_capable_common+0x13f/0x170 [ 611.579045] ? get_anon_bdev+0x2f0/0x2f0 [ 611.583101] ? sget+0x113/0x150 [ 611.586381] ? fuse_get_root_inode+0x190/0x190 [ 611.590964] mount_nodev+0x6b/0x110 [ 611.594589] fuse_mount+0x2c/0x40 [ 611.598044] mount_fs+0xae/0x328 [ 611.601413] vfs_kern_mount.part.34+0xd4/0x4d0 [ 611.605995] ? may_umount+0xb0/0xb0 [ 611.609629] ? _raw_read_unlock+0x22/0x30 [ 611.613775] ? __get_fs_type+0x97/0xc0 [ 611.617668] do_mount+0x564/0x3070 [ 611.621211] ? do_raw_spin_unlock+0x9e/0x2e0 [ 611.625618] ? interrupt_entry+0xb1/0xf0 [ 611.629677] ? copy_mount_string+0x40/0x40 [ 611.633913] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 611.638673] ? retint_kernel+0x10/0x10 [ 611.642562] ? copy_mount_options+0x213/0x380 [ 611.647058] ? write_comp_data+0x11/0x70 [ 611.651125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 611.656658] ? copy_mount_options+0x285/0x380 [ 611.661155] ksys_mount+0x12d/0x140 [ 611.664783] __x64_sys_mount+0xbe/0x150 [ 611.668757] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 611.673798] do_syscall_64+0x1b1/0x800 [ 611.677683] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 611.682526] ? syscall_return_slowpath+0x5c0/0x5c0 [ 611.687454] ? syscall_return_slowpath+0x30f/0x5c0 [ 611.692383] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 611.697748] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 611.702593] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 611.707782] RIP: 0033:0x455a09 [ 611.710969] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 611.718681] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 611.725947] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 611.733214] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 611.740476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 611.747740] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:17 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x4000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:17 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:17 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:17 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 2033/05/18 03:34:17 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0x8, 0x1, 0x9) ioctl(r0, 0x2, &(0x7f00000001c0)="c626262c85012cf66f00009a4fa4098e7bd3b0b497c11621eeba7b67e13e46f5b6416511253e8d18e3d4774413a4c42659f797edae800734eb1091138c1dea") r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x200400, 0x0) ioctl$IOC_PR_RESERVE(r2, 0x401070c9, &(0x7f00000000c0)={0x3, 0xfffffffffffffffa}) bind$bt_rfcomm(r1, &(0x7f0000000140)={0x1f, {0x100000001, 0x8001, 0x100, 0x0, 0x8}, 0x3ff}, 0xa) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) r3 = syz_open_dev$sndpcmc(&(0x7f0000000280)='/dev/snd/pcmC#D#c\x00', 0x10001, 0x100) r4 = syz_genetlink_get_family_id$team(&(0x7f00000003c0)='team\x00') recvmmsg(r1, &(0x7f0000004300)=[{{&(0x7f00000004c0)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000540)=""/128, 0x80}, {&(0x7f00000005c0)=""/105, 0x69}, {&(0x7f0000000640)=""/11, 0xb}, {&(0x7f0000000680)=""/31, 0x1f}, {&(0x7f00000006c0)=""/251, 0xfb}, {&(0x7f00000007c0)=""/203, 0xcb}], 0x6, &(0x7f0000000940)=""/43, 0x2b, 0x2}, 0x1}, {{&(0x7f0000000980)=@in={0x0, 0x0, @remote}, 0x80, &(0x7f0000000d80)=[{&(0x7f0000000a00)=""/53, 0x35}, {&(0x7f0000000a40)=""/192, 0xc0}, {&(0x7f0000000b00)=""/111, 0x6f}, {&(0x7f0000000b80)=""/212, 0xd4}, {&(0x7f0000000c80)=""/189, 0xbd}, {&(0x7f0000000d40)=""/23, 0x17}], 0x6, &(0x7f0000000e00)=""/88, 0x58, 0x4}, 0x6}, {{&(0x7f0000000e80)=@alg, 0x80, &(0x7f0000001000)=[{&(0x7f0000000f00)=""/28, 0x1c}, {&(0x7f0000000f40)=""/170, 0xaa}], 0x2, 0x0, 0x0, 0x1000}, 0x100000000}, {{&(0x7f0000001040)=@ax25, 0x80, &(0x7f0000001440)=[{&(0x7f00000010c0)=""/26, 0x1a}, {&(0x7f0000001100)=""/252, 0xfc}, {&(0x7f0000001200)=""/126, 0x7e}, {&(0x7f0000001280)=""/214, 0xd6}, {&(0x7f0000001380)=""/131, 0x83}], 0x5, &(0x7f00000014c0)=""/146, 0x92, 0x3}, 0x9}, {{&(0x7f0000001580)=@l2, 0x80, &(0x7f00000016c0)=[{&(0x7f0000001600)=""/58, 0x3a}, {&(0x7f0000001640)=""/122, 0x7a}], 0x2, &(0x7f0000001700)=""/114, 0x72, 0x7}, 0x2e}, {{&(0x7f0000001780)=@l2, 0x80, &(0x7f0000002940)=[{&(0x7f0000001800)=""/31, 0x1f}, {&(0x7f0000001840)=""/2, 0x2}, {&(0x7f0000001880)=""/128, 0x80}, {&(0x7f0000001900)=""/24, 0x18}, {&(0x7f0000001940)=""/4096, 0x1000}], 0x5, &(0x7f00000029c0)=""/200, 0xc8, 0x7}, 0x7}, {{&(0x7f0000002ac0)=@sco, 0x80, &(0x7f0000003c00)=[{&(0x7f0000002b40)=""/120, 0x78}, {&(0x7f0000002bc0)=""/23, 0x17}, {&(0x7f0000002c00)=""/4096, 0x1000}], 0x3, &(0x7f0000003c40)=""/129, 0x81, 0x3}, 0xffffffffffffff61}, {{&(0x7f0000003d00)=@ethernet={0x0, @local}, 0x80, &(0x7f0000003e40)=[{&(0x7f0000003d80)=""/179, 0xb3}], 0x1, &(0x7f0000003e80)=""/129, 0x81, 0x3}, 0x9d9}, {{&(0x7f0000003f40)=@pppoe={0x0, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000004200)=[{&(0x7f0000003fc0)=""/166, 0xa6}, {&(0x7f0000004080)=""/187, 0xbb}, {&(0x7f0000004140)=""/104, 0x68}, {&(0x7f00000041c0)=""/5, 0x5}], 0x4, &(0x7f0000004240)=""/167, 0xa7, 0x5}, 0x10000}], 0x9, 0x40000002, &(0x7f0000004540)={0x0, 0x1c9c380}) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000004580)={{{@in=@remote, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000004680)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000046c0)={{{@in=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@local}}, &(0x7f00000047c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000004800)={'veth1_to_bond\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000048c0)={'ip_vti0\x00', 0x0}) getsockname$packet(r3, &(0x7f0000004900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000004940)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000004980)={{{@in6=@mcast1, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast1}}, &(0x7f0000004a80)=0xe8) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000004d80)={'team0\x00', 0x0}) accept(r3, &(0x7f0000004e80)=@hci={0x0, 0x0}, &(0x7f0000004f00)=0x80) getsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000004f40)={@broadcast, @local, 0x0}, &(0x7f0000004f80)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000005080)={{{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@local}}, &(0x7f0000005180)=0xe8) accept$packet(r3, &(0x7f0000005980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f00000059c0)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000005a00)={{{@in6=@mcast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@local}}, &(0x7f0000005b00)=0xe8) sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000005f40)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x81800400}, 0xc, &(0x7f0000005f00)={&(0x7f0000005b40)={0x3a8, r4, 0x4, 0x70bd2c, 0x25dfdbfb, {0x2}, [{{0x8, 0x1, r5}, {0x17c, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r7}}, {0x8, 0x7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r9}}, {0x8, 0x7}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r11}}, {0x8, 0x7}}}]}}, {{0x8, 0x1, r12}, {0xf4, 0x2, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r13}}}, {0x74, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x44, 0x4, [{0x6, 0x4, 0x3f, 0x800}, {0x2, 0x80, 0x7f, 0x2}, {0x3, 0x4, 0x6, 0x5}, {0x8000, 0x5, 0x1ff, 0x4a0319e9}, {0xffffffff, 0x800, 0x2, 0xfffffffffffffff8}, {0xff2, 0x6, 0x5, 0x4}, {0x0, 0x5, 0xfffffffffffffffb, 0x7}, {0x3f, 0xb4, 0x100000000000000, 0x2}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x7}}, {0x8, 0x7}}}]}}, {{0x8, 0x1, r14}, {0x78, 0x2, [{0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8, 0x1, r16}, {0x8c, 0x2, [{0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r17}}}]}}]}, 0x3a8}, 0x1, 0x0, 0x0, 0x800}, 0x4000) getsockname(r3, &(0x7f00000002c0)=@sco, &(0x7f0000000340)=0x80) syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x5000000000000, 0x0) getsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000000180)={@loopback, 0x0}, &(0x7f0000000200)=0x14) setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000240)={r18, 0x1, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) 2033/05/18 03:34:17 executing program 5 (fault-call:3 fault-nth:63): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:17 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000040", 0x29}], 0x1) 2033/05/18 03:34:17 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x0, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:17 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 2033/05/18 03:34:17 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r1, r0, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:17 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x700}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:17 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") sendmsg$netrom(r1, &(0x7f0000000000)={&(0x7f00000000c0)=@full={{0x3, {"b4914655465419"}, 0x10001}, [{"3b6fdf3dcd3433"}, {"002b20a6c53aa1"}, {"6a9d492322b01a"}, {"9764b65dcca462"}, {"7237e8aef27187"}, {"ebdf7ef330964e"}, {"2275f53fa27271"}, {"92150cf2ba6e2c"}]}, 0x48, &(0x7f0000003580)=[{&(0x7f0000000280)="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", 0x1000}, {&(0x7f0000000140)="4abe5fdcfff575c8409095789910859c39e43f9892c92b81679a00b344494a5e039e1d97e4ccaba74ea74865daf6b7934ce9b00dd30660b2ee993b4cd7f1f2ef9b4b826e1b9ed198a4f64dac0739a57e6f3a81c7ee4442a33ef4071286364d66f36fd3dac4164aa08c50c87f64c1feda1c2c51aba733a73dd7cddfd2ebdba50d9119f15c1259752cb21e91764d8d0847e42278dc0e192a001a43150cfcb0d6cda4e59c7b1b13d1f7d035f0c7ce768c4f7c511873882111320ff9ea0eef77abb6411077f435c7626bd52b98693ae2ef1669984e3e958e4102e4dd7c58bc1c3343c698c9baac4217cbaec2", 0xea}, {&(0x7f0000001280)="1915bea439c5532e52cbeba934c1affe86f6846a7e8269e29c34d943344d2afc574b014fd837d2b8c2f98bb0891828ce6d6a74696fe4185b18b3fd28e10176a7c659fd586a24149b966846f415b721dcee1d28df4f08bd9b94fa767b07cb4fe218d1e555331d0143992bb1667ab112b09a9a42606fd3cd302d2fca78d0e1156d4504ee3c9c1c3aca15549b21d39f1adda44dd7397eb9fd87d7e14bcf1ef208e7a74a4bc58940f105d0e83c44bebe617d4887c8ba1ba96f97b63acb1f0704eb1234cf763067c0268bfd7e77c86bbbebb9c58988f297fa83872b4b1f5cab9f1425", 0xe0}, {&(0x7f0000001380)="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", 0xfc}, {&(0x7f0000001480)="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", 0x1000}, {&(0x7f0000002480)="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", 0xfe}, {&(0x7f0000002580)="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", 0x1000}], 0x7, &(0x7f0000003600)=[{0xc8, 0x117, 0x1000, "53e779d5a1a315bac7c40a14c8af37120c1a391b0bffb8b437bf43b443e42be1b78d1177342ca4b010cbb1484f78c879d8cab49d7c2538f14c3ff18629a10c183bbd42881e2a672bba905f5567e380d913306005b6304f4db6d7a8c192cb93cdad585dd088c4a3251b34387293a9fef8f76cacfce9ee5e9efb3e0c9ede8631f5e7cda885efa9a1c5f44c2513484759e370c4e105cc44c4c60c5ae4a2bb2cf5193f2e9f964b2680b9965be30013dcbf99315a1fa5"}, {0x30, 0x19b, 0x7f, "4c144c2cbd4da1635cf250b22937d26f70c9217bacdbdc20eab8"}, {0x108, 0x3754e82be30a3a9, 0x3, "2359e3a867219cddbf42785e64f787506d9beca42fcf04388b1c08397e54efab1726a82ba0bde63718212cdcb87a712af895e12a2f5e1e9989c926523a39766c7a0bc9fbcc5c90997d284c3ca1ad00303fc6b038e46d1e6b252ec9f79ffb551277c6e6613f758f5bc970e8454b2d9d83ed029e52ddcc417882ac6c48e1de7824b94790547501fe54f531d65da6eb65e8abee39dc20cfbb1f934ba9aaafecae84a77d841023d39b25394d1b97864f6d8da4d6d0290a40b31927598fa3933aa4104d67f34457dd672a0435089eff92abe6fdab3479195b40fbe4dcfaaf3cd1f8c9c72dabd2df2455dac1f426eca7c809b40aa2e1879402aefc"}, {0x50, 0x0, 0x7fff, "7c7598ed72443adefbc7f1393e73236e47733988e6ed4b9865766f67635990f403ebfff0357098beb107b778ab18bb1a32c82f2fdd5f138961e53db34f27"}, {0x58, 0xff, 0x5, "79dc25bf271a1e68d2f0b8fb046492398b53de4bf3f045f2ec178bd6b09c3572d7008f29ae1eb07ce108779e03910f1d57611aecd1b23db4c7a967a57b798a8fc7a5"}, {0xf8, 0x0, 0xfff, "2a36adbee8d4db170998bbb9eb25704884996c155d472b11e676f4bc76964c74a83d750b5e1fa57ad4b95e66307f712334f33b8af0a84a6bf45e033f9c06e9a9faf8b18e666f87564e0c18df6decad053ef3db49a6ac25c05667c36cb870bdab86cfa9c1ce719772ab79ffee069adc4a08df8ff8d0c1f188fe33ad32221f31c5e28c83687d911217b9f70a7e5248871547801fa5b80bbcfabd4f5bfcd8a4d184b6ad8ae4d2fd3474c64d7b170c827a5967afce84538260e98e2c48a77df0f31c9b2f6f49dafe2ab84a7401103a1154d9c4a60a98ef4b669b608c31961be7900e3cb93dab5555"}], 0x3a0}, 0x20040000) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 611.910361] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:17 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:17 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x0, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:17 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500ffff", 0x29}], 0x1) [ 612.206466] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 612.213242] FAT-fs (loop5): bogus number of reserved sectors [ 612.219791] FAT-fs (loop5): Can't find a valid FAT filesystem [ 612.293700] FAULT_INJECTION: forcing a failure. [ 612.293700] name failslab, interval 1, probability 0, space 0, times 0 [ 612.305070] CPU: 0 PID: 2827 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 612.312253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.321604] Call Trace: [ 612.324212] dump_stack+0x1b9/0x294 [ 612.327845] ? dump_stack_print_info.cold.2+0x52/0x52 [ 612.333040] ? __mutex_lock+0x7d9/0x17f0 [ 612.337109] should_fail.cold.4+0xa/0x1a [ 612.341175] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 612.346278] ? kasan_kmalloc+0xc4/0xe0 [ 612.350172] ? graph_lock+0x170/0x170 [ 612.353981] ? find_held_lock+0x36/0x1c0 [ 612.358046] ? __lock_is_held+0xb5/0x140 [ 612.362120] ? check_same_owner+0x320/0x320 [ 612.366447] ? kasan_check_write+0x14/0x20 [ 612.370684] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 612.375614] ? rcu_note_context_switch+0x710/0x710 [ 612.380550] __should_failslab+0x124/0x180 [ 612.384792] should_failslab+0x9/0x14 [ 612.388596] kmem_cache_alloc+0x2af/0x760 [ 612.392749] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 612.397688] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 612.402714] __kernfs_new_node+0xe7/0x580 [ 612.406880] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 612.411637] ? mutex_unlock+0xd/0x10 [ 612.415352] ? kernfs_activate+0x20e/0x2a0 [ 612.419588] ? kernfs_walk_and_get_ns+0x320/0x320 [ 612.424436] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 612.429974] ? kernfs_link_sibling+0x1d2/0x3b0 [ 612.434563] kernfs_new_node+0x80/0xf0 [ 612.438456] __kernfs_create_file+0x4d/0x330 [ 612.442870] sysfs_add_file_mode_ns+0x21a/0x560 [ 612.447545] sysfs_add_file+0x4e/0x60 [ 612.451348] sysfs_merge_group+0xfa/0x230 [ 612.455501] dpm_sysfs_add+0x161/0x210 [ 612.459391] device_add+0xa11/0x16d0 [ 612.463109] ? device_private_init+0x230/0x230 [ 612.467688] ? kfree+0x1e9/0x260 [ 612.471057] ? kfree_const+0x5e/0x70 [ 612.474774] device_create_groups_vargs+0x1ff/0x270 [ 612.479795] device_create_vargs+0x46/0x60 [ 612.484035] bdi_register_va.part.10+0xbb/0x9b0 [ 612.488711] ? cgwb_kill+0x630/0x630 [ 612.492430] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 612.497968] ? bdi_init+0x416/0x510 [ 612.501597] ? wb_init+0x9e0/0x9e0 [ 612.505139] ? bdi_alloc_node+0x67/0xe0 [ 612.509112] ? bdi_alloc_node+0x67/0xe0 [ 612.513087] ? rcu_read_lock_sched_held+0x108/0x120 [ 612.518103] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 612.523386] ? _raw_spin_unlock+0x22/0x30 [ 612.527538] bdi_register_va+0x68/0x80 [ 612.531430] super_setup_bdi_name+0x123/0x220 [ 612.535925] ? kill_block_super+0x100/0x100 [ 612.540247] ? kmem_cache_alloc_trace+0x616/0x780 [ 612.545092] ? match_wildcard+0x3c0/0x3c0 [ 612.549244] ? trace_hardirqs_on+0xd/0x10 [ 612.553397] fuse_fill_super+0xe6e/0x1e20 [ 612.557550] ? fuse_get_root_inode+0x190/0x190 [ 612.562135] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 612.567155] ? kasan_check_read+0x11/0x20 [ 612.571304] ? cap_capable+0x1f9/0x260 [ 612.575198] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 612.580739] ? security_capable+0x99/0xc0 [ 612.584895] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 612.590431] ? ns_capable_common+0x13f/0x170 [ 612.594844] ? get_anon_bdev+0x2f0/0x2f0 [ 612.598907] ? sget+0x113/0x150 [ 612.602190] ? fuse_get_root_inode+0x190/0x190 [ 612.606779] mount_nodev+0x6b/0x110 [ 612.610410] fuse_mount+0x2c/0x40 [ 612.613867] mount_fs+0xae/0x328 [ 612.617243] vfs_kern_mount.part.34+0xd4/0x4d0 [ 612.621831] ? may_umount+0xb0/0xb0 [ 612.625461] ? _raw_read_unlock+0x22/0x30 [ 612.629605] ? __get_fs_type+0x97/0xc0 [ 612.633496] do_mount+0x564/0x3070 [ 612.637042] ? copy_mount_string+0x40/0x40 [ 612.641282] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 612.646043] ? retint_kernel+0x10/0x10 [ 612.649941] ? copy_mount_options+0x1f0/0x380 [ 612.654438] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 612.659285] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 612.664821] ? copy_mount_options+0x285/0x380 [ 612.669324] ksys_mount+0x12d/0x140 [ 612.672952] __x64_sys_mount+0xbe/0x150 [ 612.676926] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 612.681944] do_syscall_64+0x1b1/0x800 [ 612.685830] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 612.690679] ? syscall_return_slowpath+0x5c0/0x5c0 [ 612.695617] ? syscall_return_slowpath+0x30f/0x5c0 [ 612.700553] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 612.705925] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 612.710776] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 612.715964] RIP: 0033:0x455a09 [ 612.719153] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 612.726862] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 612.734129] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 612.741393] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 612.748662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 612.755928] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:18 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 2033/05/18 03:34:18 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:18 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r1, r0, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:18 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:18 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:18 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:18 executing program 5 (fault-call:3 fault-nth:64): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:18 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) setsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000000)={0x101, 0xffffffff, 0x9, 0x3}, 0x6) ioctl(r0, 0x7, &(0x7f0000000280)="c526262c85d757b144fcc1eaa6e02370023d45f5ff3da7cd988a9c86f8925aaa67d4ecd38f8b0ce2e5d4ea41481ddf2416814929f9474ef672616f328c0b6602d56626f18900865bc9189422680f3df915652c8398ad8982f9247acee2890386c2eafb2ddbfdf9ab46abd4768b9a07e87e682e02ac60d60d6a11cb38682b6ee2498473990f3177789b9e8aaa96bbcd8a676ac5") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657421872659b02a1c6b3dc778f0", 0x800000000204032}) 2033/05/18 03:34:18 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 2033/05/18 03:34:18 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r1 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r1, r0, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:18 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000005", 0x29}], 0x1) 2033/05/18 03:34:18 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x14}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:18 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 613.041055] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:18 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xc, 0x1, 0xffffffff7fffffff) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:18 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 2033/05/18 03:34:18 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea11000000250000f0", 0x29}], 0x1) [ 613.124309] FAT-fs (loop5): bogus number of reserved sectors [ 613.130370] FAT-fs (loop5): Can't find a valid FAT filesystem [ 613.157432] FAULT_INJECTION: forcing a failure. [ 613.157432] name failslab, interval 1, probability 0, space 0, times 0 [ 613.168828] CPU: 0 PID: 2857 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 613.176017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.185368] Call Trace: [ 613.187962] dump_stack+0x1b9/0x294 [ 613.191593] ? dump_stack_print_info.cold.2+0x52/0x52 [ 613.196784] ? __mutex_lock+0x7d9/0x17f0 [ 613.200854] should_fail.cold.4+0xa/0x1a [ 613.204924] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 613.210031] ? kasan_kmalloc+0xc4/0xe0 [ 613.213926] ? graph_lock+0x170/0x170 [ 613.217733] ? find_held_lock+0x36/0x1c0 [ 613.221802] ? __lock_is_held+0xb5/0x140 [ 613.225863] ? tipc_group_update_rcv_win+0xda0/0x1530 [ 613.231067] ? check_same_owner+0x320/0x320 [ 613.235388] ? kasan_check_write+0x14/0x20 [ 613.239627] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 613.244563] ? rcu_note_context_switch+0x710/0x710 [ 613.249494] __should_failslab+0x124/0x180 [ 613.253735] should_failslab+0x9/0x14 [ 613.257534] kmem_cache_alloc+0x2af/0x760 [ 613.261690] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 613.266625] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 613.271645] __kernfs_new_node+0xe7/0x580 [ 613.275801] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 613.280560] ? mutex_unlock+0xd/0x10 [ 613.284272] ? kernfs_activate+0x20e/0x2a0 [ 613.288508] ? kernfs_walk_and_get_ns+0x320/0x320 [ 613.293354] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 613.298892] ? kernfs_link_sibling+0x1d2/0x3b0 [ 613.303482] kernfs_new_node+0x80/0xf0 [ 613.307374] __kernfs_create_file+0x4d/0x330 [ 613.311792] sysfs_add_file_mode_ns+0x21a/0x560 [ 613.316471] sysfs_add_file+0x4e/0x60 [ 613.320274] sysfs_merge_group+0xfa/0x230 [ 613.324426] dpm_sysfs_add+0x161/0x210 [ 613.328316] device_add+0xa11/0x16d0 [ 613.332036] ? device_private_init+0x230/0x230 [ 613.336618] ? kfree+0x1e9/0x260 [ 613.339987] ? kfree_const+0x5e/0x70 [ 613.343816] device_create_groups_vargs+0x1ff/0x270 [ 613.348838] device_create_vargs+0x46/0x60 [ 613.353080] bdi_register_va.part.10+0xbb/0x9b0 [ 613.357751] ? cgwb_kill+0x630/0x630 [ 613.361472] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 613.367007] ? bdi_init+0x416/0x510 [ 613.370635] ? wb_init+0x9e0/0x9e0 [ 613.374180] ? bdi_alloc_node+0x67/0xe0 [ 613.378153] ? bdi_alloc_node+0x67/0xe0 [ 613.382128] ? rcu_read_lock_sched_held+0x108/0x120 [ 613.387148] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 613.392429] ? _raw_spin_unlock+0x22/0x30 [ 613.396583] bdi_register_va+0x68/0x80 [ 613.400503] super_setup_bdi_name+0x123/0x220 [ 613.405000] ? kill_block_super+0x100/0x100 [ 613.409324] ? kmem_cache_alloc_trace+0x616/0x780 [ 613.414167] ? match_wildcard+0x3c0/0x3c0 [ 613.418319] ? trace_hardirqs_on+0xd/0x10 [ 613.422473] fuse_fill_super+0xe6e/0x1e20 [ 613.426630] ? fuse_get_root_inode+0x190/0x190 [ 613.431218] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 613.436241] ? kasan_check_read+0x11/0x20 [ 613.440392] ? cap_capable+0x1f9/0x260 [ 613.444291] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 613.449828] ? security_capable+0x99/0xc0 [ 613.453983] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 613.459519] ? ns_capable_common+0x13f/0x170 [ 613.463927] ? get_anon_bdev+0x2f0/0x2f0 [ 613.467989] ? sget+0x113/0x150 [ 613.471275] ? fuse_get_root_inode+0x190/0x190 [ 613.475857] mount_nodev+0x6b/0x110 [ 613.479487] fuse_mount+0x2c/0x40 [ 613.482943] mount_fs+0xae/0x328 [ 613.486316] vfs_kern_mount.part.34+0xd4/0x4d0 [ 613.490899] ? may_umount+0xb0/0xb0 [ 613.494531] ? _raw_read_unlock+0x22/0x30 [ 613.498678] ? __get_fs_type+0x97/0xc0 [ 613.502571] do_mount+0x564/0x3070 [ 613.506113] ? interrupt_entry+0xb1/0xf0 [ 613.510175] ? copy_mount_string+0x40/0x40 [ 613.514411] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 613.519173] ? retint_kernel+0x10/0x10 [ 613.523066] ? copy_mount_options+0x213/0x380 [ 613.527566] ? write_comp_data+0x11/0x70 [ 613.531635] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 613.537174] ? copy_mount_options+0x285/0x380 [ 613.541679] ksys_mount+0x12d/0x140 [ 613.545312] __x64_sys_mount+0xbe/0x150 [ 613.549287] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 613.554309] do_syscall_64+0x1b1/0x800 [ 613.558196] ? finish_task_switch+0x1ca/0x840 [ 613.562695] ? syscall_return_slowpath+0x5c0/0x5c0 [ 613.567631] ? syscall_return_slowpath+0x30f/0x5c0 [ 613.572567] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 613.578022] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 613.582876] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 613.588062] RIP: 0033:0x455a09 [ 613.591248] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 613.598973] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 613.606239] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 613.613505] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 613.621532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 613.628813] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:19 executing program 5 (fault-call:3 fault-nth:65): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 613.893722] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 613.998119] FAT-fs (loop5): bogus number of reserved sectors [ 614.004067] FAT-fs (loop5): Can't find a valid FAT filesystem [ 614.062013] FAULT_INJECTION: forcing a failure. [ 614.062013] name failslab, interval 1, probability 0, space 0, times 0 [ 614.073383] CPU: 0 PID: 2879 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 614.080567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.089919] Call Trace: [ 614.092514] dump_stack+0x1b9/0x294 [ 614.096146] ? dump_stack_print_info.cold.2+0x52/0x52 [ 614.101337] ? __mutex_lock+0x7d9/0x17f0 [ 614.105406] should_fail.cold.4+0xa/0x1a [ 614.109473] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 614.114578] ? kasan_kmalloc+0xc4/0xe0 [ 614.118472] ? graph_lock+0x170/0x170 [ 614.122277] ? find_held_lock+0x36/0x1c0 [ 614.126345] ? __lock_is_held+0xb5/0x140 [ 614.130417] ? check_same_owner+0x320/0x320 [ 614.134739] ? kasan_check_write+0x14/0x20 [ 614.138976] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 614.143906] ? rcu_note_context_switch+0x710/0x710 [ 614.148838] __should_failslab+0x124/0x180 [ 614.153086] should_failslab+0x9/0x14 [ 614.156885] kmem_cache_alloc+0x2af/0x760 [ 614.161035] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 614.165974] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 614.170993] __kernfs_new_node+0xe7/0x580 [ 614.175142] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 614.179901] ? mutex_unlock+0xd/0x10 [ 614.183629] ? kernfs_activate+0x20e/0x2a0 [ 614.187880] ? kernfs_walk_and_get_ns+0x320/0x320 [ 614.192729] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 614.198268] ? kernfs_link_sibling+0x1d2/0x3b0 [ 614.202863] kernfs_new_node+0x80/0xf0 [ 614.206754] __kernfs_create_file+0x4d/0x330 [ 614.211168] sysfs_add_file_mode_ns+0x21a/0x560 [ 614.215844] sysfs_add_file+0x4e/0x60 [ 614.219649] sysfs_merge_group+0xfa/0x230 [ 614.223806] dpm_sysfs_add+0x161/0x210 [ 614.227693] device_add+0xa11/0x16d0 [ 614.231413] ? device_private_init+0x230/0x230 [ 614.235995] ? kfree+0x1e9/0x260 [ 614.239363] ? kfree_const+0x5e/0x70 [ 614.243084] device_create_groups_vargs+0x1ff/0x270 [ 614.248103] device_create_vargs+0x46/0x60 [ 614.252341] bdi_register_va.part.10+0xbb/0x9b0 [ 614.257012] ? cgwb_kill+0x630/0x630 [ 614.260731] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 614.266268] ? bdi_init+0x416/0x510 [ 614.269895] ? wb_init+0x9e0/0x9e0 [ 614.273437] ? bdi_alloc_node+0x67/0xe0 [ 614.277410] ? bdi_alloc_node+0x67/0xe0 [ 614.281384] ? rcu_read_lock_sched_held+0x108/0x120 [ 614.286401] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 614.291681] ? _raw_spin_unlock+0x22/0x30 [ 614.295835] bdi_register_va+0x68/0x80 [ 614.299758] super_setup_bdi_name+0x123/0x220 [ 614.304293] ? kill_block_super+0x100/0x100 [ 614.308619] ? kmem_cache_alloc_trace+0x616/0x780 [ 614.313465] ? match_wildcard+0x3c0/0x3c0 [ 614.317616] ? trace_hardirqs_on+0xd/0x10 [ 614.321775] fuse_fill_super+0xe6e/0x1e20 [ 614.325932] ? fuse_get_root_inode+0x190/0x190 [ 614.330517] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 614.335538] ? kasan_check_read+0x11/0x20 [ 614.339691] ? cap_capable+0x1f9/0x260 [ 614.343589] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 614.349123] ? security_capable+0x99/0xc0 [ 614.353272] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 614.358812] ? ns_capable_common+0x13f/0x170 [ 614.363373] ? get_anon_bdev+0x2f0/0x2f0 [ 614.367436] ? sget+0x113/0x150 [ 614.370716] ? fuse_get_root_inode+0x190/0x190 [ 614.375296] mount_nodev+0x6b/0x110 [ 614.378923] fuse_mount+0x2c/0x40 [ 614.382376] mount_fs+0xae/0x328 [ 614.385751] vfs_kern_mount.part.34+0xd4/0x4d0 [ 614.390338] ? may_umount+0xb0/0xb0 [ 614.393965] ? _raw_read_unlock+0x22/0x30 [ 614.398113] ? __get_fs_type+0x97/0xc0 [ 614.402007] do_mount+0x564/0x3070 [ 614.405552] ? copy_mount_string+0x40/0x40 [ 614.409790] ? rcu_pm_notify+0xc0/0xc0 [ 614.413683] ? copy_mount_options+0x5f/0x380 [ 614.418092] ? rcu_read_lock_sched_held+0x108/0x120 [ 614.423106] ? kmem_cache_alloc_trace+0x616/0x780 [ 614.427952] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 614.433489] ? _copy_from_user+0xdf/0x150 [ 614.437641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 614.443176] ? copy_mount_options+0x285/0x380 [ 614.447673] ksys_mount+0x12d/0x140 [ 614.451307] __x64_sys_mount+0xbe/0x150 [ 614.455283] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 614.460302] do_syscall_64+0x1b1/0x800 [ 614.464188] ? finish_task_switch+0x1ca/0x840 [ 614.468695] ? syscall_return_slowpath+0x5c0/0x5c0 [ 614.473624] ? syscall_return_slowpath+0x30f/0x5c0 [ 614.478556] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 614.483927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 614.488774] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 614.493971] RIP: 0033:0x455a09 [ 614.497153] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 614.504862] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 2033/05/18 03:34:20 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:20 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250008b0", 0x29}], 0x1) 2033/05/18 03:34:20 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:20 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x14000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:20 executing program 5 (fault-call:3 fault-nth:66): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:20 executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x800, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket(0xa, 0x1, 0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0x28, 0x1, @thr={&(0x7f00000000c0)="8e65cd9aefb7", &(0x7f0000000100)="7088d4435c6f661c9f0118ea773a7435a705e859ac51481443c2616d842e754ceab7e41068de08bdf7311b6f852c66059ffacd24a441205c91636adcffb5205adf4861ed98b3de75e879a86b6a82e9adeb60dad6765a61d8a6c3"}}, &(0x7f00000001c0)=0x0) timer_delete(r3) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000200)=0x0) lstat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0)={r4, r5, r6}, 0xc) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000000400)={0x0, 0xa8a9, 0x20, 0x1, 0xfffffffffffffeff}, &(0x7f0000000440)=0x18) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000480)={r7, 0x5, 0x10}, 0xc) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") fremovexattr(r0, &(0x7f00000004c0)=@random={'user.', '/dev/ppp\x00'}) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 614.512127] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 614.519396] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 614.526663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 614.533932] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:20 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:20 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) [ 614.673409] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:20 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:20 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:20 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xb000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:20 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) socket(0xa, 0x1, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) pwrite64(r0, &(0x7f0000000100)="0f2c2c710b6af3548165615a27b785fb96099e297d7d2517a9e4c4b2048eeb0017f3fbc0e881f8364a4cb91cbfaf52b1968a5e4bf4dfc96854536b622dee7db38d4e91843dce471435d41e16ff8b36262c76695511634932572efb459a964f315b61fcb249ac228bdb4c666068c94b2343d717124b52135b66b3d5b2b12fdb59e63faa7c8d546531b5c0c7472333aca7507ceb7fcb9ac6391f7bb19ff4202729238d6ba8a4d88606a79a391df857", 0xae, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 614.875698] FAT-fs (loop5): bogus number of reserved sectors [ 614.881821] FAT-fs (loop5): Can't find a valid FAT filesystem [ 614.902614] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 614.905119] FAULT_INJECTION: forcing a failure. [ 614.905119] name failslab, interval 1, probability 0, space 0, times 0 [ 614.921366] CPU: 0 PID: 2902 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 614.928554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.937902] Call Trace: [ 614.940494] dump_stack+0x1b9/0x294 [ 614.944130] ? dump_stack_print_info.cold.2+0x52/0x52 [ 614.949320] ? kernel_text_address+0x79/0xf0 [ 614.953742] ? __unwind_start+0x166/0x330 [ 614.957896] ? __kernel_text_address+0xd/0x40 [ 614.962401] should_fail.cold.4+0xa/0x1a [ 614.966470] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 614.971582] ? save_stack+0xa9/0xd0 [ 614.975220] ? graph_lock+0x170/0x170 [ 614.979027] ? kasan_kmalloc+0xc4/0xe0 [ 614.982922] ? kmem_cache_alloc_trace+0x152/0x780 [ 614.987769] ? kobject_uevent_env+0x20f/0xea0 [ 614.992266] ? kobject_uevent+0x1f/0x30 [ 614.996241] ? device_add+0xb01/0x16d0 [ 615.000135] ? device_create_groups_vargs+0x1ff/0x270 [ 615.005334] ? find_held_lock+0x36/0x1c0 [ 615.009404] ? __lock_is_held+0xb5/0x140 [ 615.013482] ? check_same_owner+0x320/0x320 [ 615.017816] ? rcu_note_context_switch+0x710/0x710 [ 615.022755] __should_failslab+0x124/0x180 [ 615.027002] should_failslab+0x9/0x14 [ 615.030803] __kmalloc+0x2c8/0x760 [ 615.034348] ? kobject_uevent_env+0x20f/0xea0 [ 615.038849] ? rcu_read_lock_sched_held+0x108/0x120 [ 615.043870] ? kobject_get_path+0xc2/0x1a0 [ 615.048111] kobject_get_path+0xc2/0x1a0 [ 615.052181] kobject_uevent_env+0x234/0xea0 [ 615.056511] ? device_pm_add+0x221/0x340 [ 615.060596] kobject_uevent+0x1f/0x30 [ 615.064399] device_add+0xb01/0x16d0 [ 615.068120] ? device_private_init+0x230/0x230 [ 615.072703] ? kfree+0x1e9/0x260 [ 615.076075] ? kfree_const+0x5e/0x70 [ 615.079797] device_create_groups_vargs+0x1ff/0x270 [ 615.084908] device_create_vargs+0x46/0x60 [ 615.089151] bdi_register_va.part.10+0xbb/0x9b0 [ 615.093824] ? cgwb_kill+0x630/0x630 [ 615.097548] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.103088] ? bdi_init+0x416/0x510 [ 615.106718] ? wb_init+0x9e0/0x9e0 [ 615.110266] ? bdi_alloc_node+0x67/0xe0 [ 615.114238] ? bdi_alloc_node+0x67/0xe0 [ 615.118214] ? rcu_read_lock_sched_held+0x108/0x120 [ 615.123233] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 615.128523] ? _raw_spin_unlock+0x22/0x30 [ 615.132678] bdi_register_va+0x68/0x80 [ 615.136571] super_setup_bdi_name+0x123/0x220 [ 615.141072] ? kill_block_super+0x100/0x100 [ 615.145395] ? kmem_cache_alloc_trace+0x616/0x780 [ 615.150239] ? match_wildcard+0x3c0/0x3c0 [ 615.154387] ? trace_hardirqs_on+0xd/0x10 [ 615.158551] fuse_fill_super+0xe6e/0x1e20 [ 615.162705] ? fuse_get_root_inode+0x190/0x190 [ 615.167292] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 615.172312] ? kasan_check_read+0x11/0x20 [ 615.176463] ? cap_capable+0x1f9/0x260 [ 615.180358] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.185895] ? security_capable+0x99/0xc0 [ 615.190048] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.195589] ? ns_capable_common+0x13f/0x170 [ 615.200002] ? get_anon_bdev+0x2f0/0x2f0 [ 615.204062] ? sget+0x113/0x150 [ 615.207344] ? fuse_get_root_inode+0x190/0x190 [ 615.211927] mount_nodev+0x6b/0x110 [ 615.215556] fuse_mount+0x2c/0x40 [ 615.219012] mount_fs+0xae/0x328 [ 615.222393] vfs_kern_mount.part.34+0xd4/0x4d0 [ 615.226980] ? may_umount+0xb0/0xb0 [ 615.230611] ? _raw_read_unlock+0x22/0x30 [ 615.234758] ? __get_fs_type+0x97/0xc0 [ 615.238649] do_mount+0x564/0x3070 [ 615.242198] ? copy_mount_string+0x40/0x40 [ 615.246441] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 615.251200] ? retint_kernel+0x10/0x10 [ 615.255099] ? __sanitizer_cov_trace_const_cmp8+0x1/0x20 [ 615.260552] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.266087] ? copy_mount_options+0x285/0x380 [ 615.270594] ksys_mount+0x12d/0x140 [ 615.274225] __x64_sys_mount+0xbe/0x150 [ 615.278199] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 615.283219] do_syscall_64+0x1b1/0x800 [ 615.287108] ? finish_task_switch+0x1ca/0x840 [ 615.291609] ? syscall_return_slowpath+0x5c0/0x5c0 [ 615.296542] ? syscall_return_slowpath+0x30f/0x5c0 [ 615.301479] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 615.306851] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 615.311700] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 615.316885] RIP: 0033:0x455a09 [ 615.320071] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 615.327780] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 615.335046] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 615.342316] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 615.349586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 615.356856] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:21 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea11000000250000f0", 0x29}], 0x1) 2033/05/18 03:34:21 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000011", 0x29}], 0x1) 2033/05/18 03:34:21 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x80ffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:21 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000000)={0x2000000003ff, 0x1, 0x1, 0x7, 0x7}, 0xc) sendmsg(r1, &(0x7f00000016c0)={&(0x7f00000001c0)=@nfc_llcp={0x27, 0x0, 0x2, 0x2, 0x7, 0xffffffffffffffe1, "92a3587b25981c264fbbe76e6879862614f6f10c00cdc7ea219737ebfb207f81979701c522269b2628cb95e204577456319fcada41a2b2c91c63ff547ad6a7", 0x19}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000280)="d678ba898cf9dafc44960cf81fff30987b8a23b7d2684ac646b5fadaac8153614520f156c0dbdc118845138bc92c93b693af490bd25a28246d1b1209e9cde00acb8052acf036b07105134420dc4e6ba260e70e8158d03d4fe33b23a397e6239f8e249d95bd2ef22e3cbfd2f1e843fc408edad7a95f49e5cce62a2797e28c10ac9a49b330ecbf344ad358450118c140dd406b20ef5db433df63e0db79b0f1068e89cead20cce126290875f4bbd857069dff512342b9456194ed850551c14d8d54477d2ee4fc6983b0b958075bbf489c", 0xcf}], 0x1, &(0x7f00000003c0)=[{0x38, 0x113, 0x9, "4c1d4981981eab5acefef7698e6d4adffd3fdee13418b3da0a06527c091dfc9909c6"}, {0xc0, 0x6, 0x6, "15d9dd25a456f54ea21280c3ac758c9c39b63322438d9b401f62a9bd7a0383e33f0c879231636eefc727270c585d5c64a5a02808938366b579e9918c173f1cf36d18b7752f4a1f6d4d78dc3b4f5c8c7dc799b66d27ee35d5337aebcffb3300e988fa7065eda262d4fe2f81f5035cc728779aa5aa4a371c168ff4e7e69d366d67867a8869014d3214418459c11f8e29866c070981eead6a1cdd325aa17b1f1d998da678f855d730882e550df0ccd6"}, {0x70, 0x0, 0x100000001, "258c6e1478bdbb3db981344175cb9d83166cb3e5e2b43e36753193fe5e8a5cda3edc00c68e315dca3b7d6291eb324970172ef71b47844460904fea89935a8257322526dd65621d258ac95bc05c48267c75db8f9a0004acd4aef503"}, {0xb0, 0x18f, 0x1, "067e1d43dac5873c40e12b551104490665a7adbafcf950f41f9b7e3df82736a64853f124f682ba3050907cf57e31c225eb6c927ffe209727d705d6154ca12289c0b9b69dbf69bff8eb4d541ac279b6e462a7f1b94fe883c555f05dd115e40d3b0263d13d00cacc5f9bc7420fc1a38879906456490c19b266ee74907191943dcb8de358ed900d522a5f8a2bdecb0359bd303e5e1cf5665426c3133ce2"}, {0x88, 0x10d, 0x3, "b20584d654e05ee8e3d59c0e44ee0f1550b3032ce82fb50d84388df2d3dc9ff67dc99c9133a6f1123843eb6f69207501f690e40f1d4450f9381c68a7f12692aba599eb6b877252e722764b16e915a4c654607145124bba5db3306d3e9f2d70353469c776fde7dff33ced04a069612346205aeb3cf9"}, {0x1010, 0x10f, 0x2, "dada840cd37588444aa43fc344ecfaebd610631157ed28272d479c021010e8744dc2aaa89ab14ba2e8dad9bce2fc4339008922a2a9c7579da6b8c26bf5d855273fafabec6148ba2d7a89ad630bf755a4b644b5f128de812bb510a1300694a16979662b4329c4ecfd0e5bd782fa0b46236541cd162e865edfb48b542d962c017fc96583a8b91698aa238a562013b1da8860806a9aeb210cc147e5626b3f9e5b77025199aa7422bb12b622148db97ba03ef87c28d86b18b1513f7fb8b13c414699a9a4570480b0e619eec777998b71098c02eed13208ffe3452d8fa1a4ab8d8cb5b227dcc1145727c78af0d2e5c36b9d2a8a4a7411698e052e45a92eb950968c9caa935d4e5207837e9869fe275e391a057c320caa33b1dbea62702e081f0448431252853fa1f2ee2cd301f69206856f26d704de43507254b13b85e057da25d608c13dc904cdfed95ce7ac1e6a18b0d54e7834cf466b9f40e26320d1015530eed85fe794466e1e5cb3eddafc0dc38593c100a13e31193e118d1f971c903898cbb0e25e2c1a6a4848d79598eefb1f4f7be9038fba73058b2b7db75e8cbaf251b2a554bf1b31dcfae3b04ac075c7c289aa7429693f0e3ae6b44f5082aff8e6a70cae9022dcb20349e3b4abfcaff60f5936adedcf686a4063aaf9d56a2fde3cf6bbf902b5f355095ddf412d10653db2f07c9cca03dbdfeefd87ddd40e2860d897473c20081410a39d34f7407ded1a28b9b7019da124415e6f4cd377d18666cf4f60adb122ccf815bb232dd184e77a1f0919ec0966b3f684b33da889873263d0a6b3df5c0c6da5ba4d5a33a47772e5f74486f94ee198b541c752e2cabf21cef2c4aab028fd40a3bcf3e48b87a3e416ed501bc4e8c3f9ec33964589fa89dd0c1dacfae084aa49d9e264e0f968f954fe8c7bd2cb390500d5e2c1e6ee905804e3d47477ba99ae7c1cbcc0b8a60665c297b147f568e90ab144105e2598c1ebf17c5b63f223db55ac68d327e4c2ab2704aa032dca72f05d390a3861299840ff2a462210d8001271772180d80ecd832c8b428f177f1b7a6c4fdf77151f2626907ca4db0e687fed64ae5002a9103dffe99be2dc79d540b948e07f2954ef7476f92f295c6f5260a5f4a5a5f145893a9aef6a11d8d8dc639b8255d4f7f80051bd73299308acbecc14e628c84dab7bc7985c6cf5cf6dd03d2ad11ed734bf7ca0ddd331c27b83e0318dac30eabcc545ea4cc8e67f080cc927e235a7745497dd46fbb6ac031a36932d176d029ade22c3188bf11be4918dd2d1e562ee994c37161b7e48502f2462849308030aced4bb1ecd9baec31d93aac3f0ef68f4e7bcfda21cc6d86617c79f1f55507e501f626d111373bdf9b402ee24f3c51a86c5a7e4b5045ac7b83c42ceddadd11c78a3538139bf312ffb4a959ef9db90cde57cacac55c62c10e67d9341bcd4db959e2cda5bc669e79c573e2d868292e82d72e937b6f961c0afe18289e927656395fae3c90c089a7126f03e82931c402f0d5ee5089c3e5fa4cacda60893d2de188ed85e32d73a2e6222b0db83844889d0f0c616c6d4894fd5c1bd448c17aaf1463fe2c17468b6bd1ecaee5a7b33847ed2b1ed8f590998bdbbd22fb5cf69ba7b4aae2dbd2f78c4afcbe330cb0d34229d94ca63874e1cca4da0bd54ec8a446d2fde5208a8e7a66bbb93f02d4773ab5cd375a1b94b96269ee88cbc7db5e13e5aebed2f0cb0dba08829bfabef5468e3640818496a84b5a7f70c9c50c91660fccfa99d0ef3692a88dd1dfdafc644b8159a17b2d2f25a653a70c9183512cfbe0d5993890deaa23d65525c2ceea798c589aaa6de8cdaaf8a00f38755d918b2a220a95ee7959545101b79a589c459e5af535c17c39ca03345f3a5499a9b6c134f5b942fb2a72edfbe166ac28b2f0d5dbe87af4c4b686e507451fe60bedfc68ce9ec0335ed7e40c9bfd612883971a39abd6257643926be0b1564dc2db64df44bc9ce932a727756dfd4e34433ac25e4078eabcc55fe9f8325b62fc98122f4763877cb013784bc93b133c9e463a90cb3245a5b829700fc293c676346488fc4b3a9cb54dce97fa58b7610dc11ebb1733c86c2ab653d2195a46047b9e684e06baf0a8afb117b751be349a678c083fdb8345ba333ceb40b8ca83fa141a45c654ddeeba73ca8a31bbda0c71683080b78db52a67a81fd48fb7ef4a69fe081193593066f38e5dffb242fac3c1d9c1367444e8d1ba1c7136f786e5b3d2ac520d46d41019cb38d002d343b3ff4b47eb2d67895e602b1493624fd9723db8c14dd96d272ada19e7b5c8be2ea9548ab3abbe5fc151ef4126c7eec625f677780b938d3371bf32d83e5c7bbf9340a88171eff4d53a68b77dee60ec337d15d5f7b1342e8fd7accec9b608ae4e4d6feb5fcf05e2ca3d3d0fabdbf54d1274ad25986bc19b9256751403b044dc9d7e2bd9ea51e2064127e1e2edc4fd2af9b6d35e57fa999cdbde0290bef7c26afec4e52d3d90b68b1671037bc3ead99a546d9a2326571c5604052a4bfa01163ac0714348fe60cfd374d9395529604101e44d40837eeb46c95c8f69133e5d46deb78082ed047270a41c424e76e539cedf7448eb462e414a8b0b70e65ee177170b17d6bd785c508e31d833386b9b14ea5b3ff2796a52e2448ca0c8b65a4100bdcc031e7396140de7109857a0b732a49213a18bc9a1f489fc111be15c8c014bccb6581f8a57793fa5ec1979100a380dffd8b579a67507bbd6799e9c0badad27216c06a66b01b76e6d5ce180bd78b744aacd54d52267207fa501c0b6a60bae6c0f5414f671492309944522bc8010fa2936886f095edd302824bd6b207c9e8fd707a4526f24c09c8c3dc46f3a1e8b8b7bbd1244f6f730903a38d8ba6dd49af873fe41e62d98bd5fb49d46f6df476fe1b23a963a930519cf32d558cfb003d60a773ee8fc3cf4b1913ff9f1d08047c54de4a128e801c6976892dabeaad732e716a6418621328d85adba497a568eb690922e5267c3d26ab78c76964496b621e2ef65af1c070a0eeac283630c1a65e32e0260d53d83f268dd941c1f8a79c8ce943580a44466ac4f8b7bb5b06065f4c306a87272b43d3dc35cf3db4cecb03982eb430810d32c6978e1cce2d93e02fcfc26b24099713588e413d30537da841c6ac7506d0d58fc0e29ad2adc2e04d32295f722764ac58a1b7df944c686c7c6d1ff684f56a4f62bbfa1e05f102d09f7d3d7ea8cf0b33b1168451c81d0bacdac0c08e8318419fb6fb4d256ff961cf315f76d8066fdc110b69353311911403f9d6be34b20268ec804667cef7ba1392670a1a2f19b0792289fdf8b4cac2accd5dfe32106bd005fafeddd3ef4282f1df13fae52f6d1e040a5e3cb55a3dcba004d8f80cab091a85922d9171b69285c4a1b2dc00b4b5320678359579d7dc6095cbf8b7389217b494f9cce06df6d4004b03bccb83fb3de0460289d51e26dccb630bbd14c53b48dcf8d8a9afab62fbd720d151fe8952df02d5350c5a5c3dbc4117f89f6c9574d27700cac8fa92ef811ba15c03224c39d7bf280bed4b5a01e3726fd49e62fbea742ef2ca2e50472e738eaa29040e6ec27764f3f5a6fc224a99c2599bb95f3718501ae6cc9d17c7a0c7aef2d9c5e5974b02cdc517ed0822c02c6a4a7ddb9cbf30bec7641e60737dc863abd6672ec2d8ced6466beedc16343bd17906ea446ed4032c892abf497b49027d8e9ff3c0ffe6eac726a229496e50dcf2e50f7d85f14494b7ad03226c38c78b5687a01071cc6e0ac62cc3e83c5ee20ea9bfda509cb319615b2820963c05e092eadc00b2d4fd338c7161c72379e949e47f02ac35b030faf566a1f8a915b2ad790181630974a97ece5d2d027416cf5a242a653c693db31db7483af395a5ad490966f371d89ffe9e759be0cbd809ef886b30421348f88f0b9092e1036e75b14411bd3e787633eb9366719c5a359d0b86166c275c752c9c3c22f2f87125bc3e8a3f19c7563acb8922a33c59b1f9242c5904d01a2b9b1a8c920d52d2a354d7cfa3f46eef4a97b004fb31572374bcc017531214cb1752d44eb85dc34195cda9d634392cd349a66882ec7cd238bcdcd6cdcd121f883a7ab4818d690308c658259694c0d654b441dcfcc94a0394be0e8ba16bd91c6a8a99e73001210d2e18442fa42cd9c8bc52425bb7e33311d54baa9335baab5597a95db0070d9e5c765bc6004dd88b6671e1c030955f68146bac57e5cb0cea44a2853b01805587e9e2c030058886eca9ee06ee463e68d2ea4fb2292b1f852569fbbf6a8fd791b52a2fd997b976e55d6b7c46d0147c8b4971d9e38d4394d821dd214a368af927db42697503e4496d82ee8cf9ae74b6ee1c24c82e7e80187b478031c0f6a661fef41b3d237af4b61bda2071762ebd67c569cd7bdd90a032d08666ddc3e9faabee6f604aeda20d0746c6a0bef41c6042102fc1b7363ccacc21cefc866f0306a09a3d97b8045af49e6d94c0126200604ccd8f37c920b3614757c02a20d18fdd9b2d881268b21f820969ce84f3d1b95cbfffd868781cf55a63dffe53cfa796b130ba10bc3b959426dd383739f58b6a5c97f1d5c4ffa0a534502acb7176ef67b1742a1715178d188fad566271e5b3f708708b1bb4accbfd8ee8962fac833fa3a2609fc4fb0be5ef2e0bb2700269ad9467c3630217f2535380035b655f18b1f6000f72f1ea6a82f93ff10ddaa2402bbee009c7840945de8bd33f6d97e72bf63662916e3756185ed42cc921e13bf2095ff444d699d5e6162c697c214c1d34ba6fbec9f8584ad1e95342e4438ec5df54f7d48e12600bbb7f8bae941eb2edfd3321b99d65032833dcf27b540b3b9553c03a8d2843d79749b228864da33daeecad7d8cf2591f62da1df882043cc5b074b88294d8cd85ab86257337d51b7d999c45a607151cc219fd46c6cc8f9d0bd29c750f189eac8c4879176b62f3ef57c074703fecea01f5dd8a57c53cc811002026b7cb637bbf2eabd42619bafa8673cdfc7f9a2809929849cdf1faa1bbc15eecfec69b5a8593b09a46b57924e8b60807acc75e9b7561c07973b853a0598ec1d741d8e18c5f77865c96c168c44cdb527c287b2c3f3590b066ca76e3135a2c1686ee1a3c75ca645886094289f3b1ee8bddfa5c993686fa01c9ae7dcfa34fda8dc86304cfec491269322e5e2de71b0621af0f16dff0fb6954ca80bf64d41b160d3fe7aca8d7a8b98acb56b15c0bf69c8c6c5649669b8b1d5e15bac3a6dfa227c3af251b6be5525c279a406abe2a538ba3a3745eb22e83482dcf9829327a7d9bbc3c8eb8a6e91844de794f3a1093ed5d999241a07cafb3db44454cd40b09cf87b06a2374d08bb97938befe3eb90d93893b20f2b694679104d2965ef3a82224c90a669fb6db5a27e1fa1166c24b5d80b9142e939477cb149550ec2fdbdb575c20f0fd931724f68d4a26bf1a18eca4ca250038c6a98a56b7778d9deaaf50151aae4d373020839dca50455d32c704cba989d99ac591bc9c148f60636cf97095a521f1f58b8fc45c9a8912f31c01fed2feb53aa6795a04de5e3bfcd3b4279d1ef5f5a861dacef6e8b880739aa80c92a441b3fe38351e0e3a45df10a3292bde252dd8d77e76b53eab7225f2452be72d2300ee44f86a95d934ddaba7f88494ada26ee15082f76b334040e354e84e23d7c7993089ba6fb071434e1c6d115642b5659f29f3ec527c2da4f38b728df8755b58ac0d369d18a100c3e5d9dc12dcf6c0bd49593ab0d8744a6d3416af58bbd12a7d3ea263a6ab45bef077eafaf7582c8eda"}, {0x18, 0x10c, 0xc0, "9b3dcf47"}, {0x28, 0x102, 0x8ad, "df54b5b5ca4526ef920d0615e52261c304694b9b8d7c4a"}], 0x12f0, 0x800}, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001700)='net/ip_tables_targets\x00') ioctl$TCXONC(r2, 0x540a, 0x1) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000000c0)=0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x4e22, @multicast1=0xe0000001}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e20, 0x3, @mcast2={0xff, 0x2, [], 0x1}, 0x2}, @in6={0xa, 0x4e22, 0xfffffffffffffc00, @dev={0xfe, 0x80, [], 0x19}, 0x9}, @in={0x2, 0x4e23, @broadcast=0xffffffff}], 0x68) sched_getattr(r3, &(0x7f0000000100), 0x30, 0x0) 2033/05/18 03:34:21 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:21 executing program 5 (fault-call:3 fault-nth:67): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:21 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 615.526745] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:21 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000003", 0x29}], 0x1) 2033/05/18 03:34:21 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:21 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:21 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x100000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:21 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r1, 0x118, 0x1, &(0x7f0000000000)=0xae, 0x4) [ 615.646917] FAT-fs (loop5): bogus number of reserved sectors [ 615.653152] FAT-fs (loop5): Can't find a valid FAT filesystem [ 615.673825] FAULT_INJECTION: forcing a failure. [ 615.673825] name failslab, interval 1, probability 0, space 0, times 0 [ 615.685099] CPU: 0 PID: 2933 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 615.692278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.701615] Call Trace: [ 615.704195] dump_stack+0x1b9/0x294 [ 615.707815] ? dump_stack_print_info.cold.2+0x52/0x52 [ 615.712993] ? mutex_trylock+0x2a0/0x2a0 [ 615.717057] should_fail.cold.4+0xa/0x1a [ 615.721107] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 615.726203] ? graph_lock+0x170/0x170 [ 615.730011] ? lock_downgrade+0x8e0/0x8e0 [ 615.734150] ? kasan_check_write+0x14/0x20 [ 615.738372] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 615.743289] ? find_held_lock+0x36/0x1c0 [ 615.747337] ? __lock_is_held+0xb5/0x140 [ 615.751403] ? check_same_owner+0x320/0x320 [ 615.755712] ? rcu_note_context_switch+0x710/0x710 [ 615.760626] __should_failslab+0x124/0x180 [ 615.764850] should_failslab+0x9/0x14 [ 615.768636] kmem_cache_alloc_trace+0x2cb/0x780 [ 615.773294] ? device_create_file+0x1e0/0x1e0 [ 615.777775] kobject_uevent_env+0x20f/0xea0 [ 615.782083] ? device_pm_add+0x221/0x340 [ 615.786134] kobject_uevent+0x1f/0x30 [ 615.789919] device_add+0xb01/0x16d0 [ 615.793623] ? device_private_init+0x230/0x230 [ 615.798188] ? kfree+0x1e9/0x260 [ 615.801544] ? kfree_const+0x5e/0x70 [ 615.805245] device_create_groups_vargs+0x1ff/0x270 [ 615.810248] device_create_vargs+0x46/0x60 [ 615.814477] bdi_register_va.part.10+0xbb/0x9b0 [ 615.819129] ? cgwb_kill+0x630/0x630 [ 615.822832] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.828356] ? bdi_init+0x416/0x510 [ 615.831971] ? wb_init+0x9e0/0x9e0 [ 615.835513] ? bdi_alloc_node+0x67/0xe0 [ 615.839474] ? bdi_alloc_node+0x67/0xe0 [ 615.843440] ? rcu_read_lock_sched_held+0x108/0x120 [ 615.848534] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 615.853801] ? _raw_spin_unlock+0x22/0x30 [ 615.857947] bdi_register_va+0x68/0x80 [ 615.861823] super_setup_bdi_name+0x123/0x220 [ 615.866305] ? kill_block_super+0x100/0x100 [ 615.870625] ? kmem_cache_alloc_trace+0x616/0x780 [ 615.875455] ? match_wildcard+0x3c0/0x3c0 [ 615.879591] ? trace_hardirqs_on+0xd/0x10 [ 615.883741] fuse_fill_super+0xe6e/0x1e20 [ 615.887884] ? fuse_get_root_inode+0x190/0x190 [ 615.892460] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 615.897473] ? kasan_check_read+0x11/0x20 [ 615.901609] ? cap_capable+0x1f9/0x260 [ 615.905489] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.911015] ? security_capable+0x99/0xc0 [ 615.915156] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.920678] ? ns_capable_common+0x13f/0x170 [ 615.925079] ? get_anon_bdev+0x2f0/0x2f0 [ 615.929125] ? sget+0x113/0x150 [ 615.932391] ? fuse_get_root_inode+0x190/0x190 [ 615.936958] mount_nodev+0x6b/0x110 [ 615.940572] fuse_mount+0x2c/0x40 [ 615.944017] mount_fs+0xae/0x328 [ 615.947375] vfs_kern_mount.part.34+0xd4/0x4d0 [ 615.951944] ? may_umount+0xb0/0xb0 [ 615.955558] ? _raw_read_unlock+0x22/0x30 [ 615.959693] ? __get_fs_type+0x97/0xc0 [ 615.963571] do_mount+0x564/0x3070 [ 615.967098] ? copy_mount_string+0x40/0x40 [ 615.971319] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 615.976321] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 615.981065] ? retint_kernel+0x10/0x10 [ 615.984942] ? copy_mount_options+0x213/0x380 [ 615.989425] ? copy_mount_options+0x19c/0x380 [ 615.993908] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 615.999433] ? copy_mount_options+0x285/0x380 [ 616.005146] ksys_mount+0x12d/0x140 [ 616.008768] __x64_sys_mount+0xbe/0x150 [ 616.012724] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 616.017728] do_syscall_64+0x1b1/0x800 [ 616.021600] ? finish_task_switch+0x1ca/0x840 [ 616.026079] ? syscall_return_slowpath+0x5c0/0x5c0 [ 616.030992] ? syscall_return_slowpath+0x30f/0x5c0 [ 616.035912] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 616.041263] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:34:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 616.046093] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 616.051265] RIP: 0033:0x455a09 [ 616.054438] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 616.062133] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 616.069386] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 616.076639] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 616.083890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 616.091141] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:21 executing program 5 (fault-call:3 fault-nth:68): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 616.281596] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 616.491362] FAT-fs (loop5): bogus number of reserved sectors [ 616.497369] FAT-fs (loop5): Can't find a valid FAT filesystem [ 616.543583] FAULT_INJECTION: forcing a failure. [ 616.543583] name failslab, interval 1, probability 0, space 0, times 0 [ 616.554941] CPU: 0 PID: 2953 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 616.562125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 616.571474] Call Trace: [ 616.574062] dump_stack+0x1b9/0x294 [ 616.577696] ? dump_stack_print_info.cold.2+0x52/0x52 [ 616.582886] ? kernel_text_address+0x79/0xf0 [ 616.587295] ? __unwind_start+0x166/0x330 [ 616.591450] ? __kernel_text_address+0xd/0x40 [ 616.595952] should_fail.cold.4+0xa/0x1a [ 616.600014] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 616.605124] ? save_stack+0xa9/0xd0 [ 616.608751] ? graph_lock+0x170/0x170 [ 616.612556] ? kasan_kmalloc+0xc4/0xe0 [ 616.616459] ? kmem_cache_alloc_trace+0x152/0x780 [ 616.621301] ? kobject_uevent_env+0x20f/0xea0 [ 616.625793] ? kobject_uevent+0x1f/0x30 [ 616.629768] ? device_add+0xb01/0x16d0 [ 616.633653] ? device_create_groups_vargs+0x1ff/0x270 [ 616.638844] ? find_held_lock+0x36/0x1c0 [ 616.642908] ? __lock_is_held+0xb5/0x140 [ 616.646979] ? check_same_owner+0x320/0x320 [ 616.651304] ? rcu_note_context_switch+0x710/0x710 [ 616.656238] __should_failslab+0x124/0x180 [ 616.660481] should_failslab+0x9/0x14 [ 616.664279] __kmalloc+0x2c8/0x760 [ 616.667818] ? kobject_uevent_env+0x20f/0xea0 [ 616.672311] ? rcu_read_lock_sched_held+0x108/0x120 [ 616.677323] ? kobject_get_path+0xc2/0x1a0 [ 616.681562] kobject_get_path+0xc2/0x1a0 [ 616.685628] kobject_uevent_env+0x234/0xea0 [ 616.689949] ? device_pm_add+0x221/0x340 [ 616.694015] kobject_uevent+0x1f/0x30 [ 616.697829] device_add+0xb01/0x16d0 [ 616.701551] ? device_private_init+0x230/0x230 [ 616.706130] ? kfree+0x1e9/0x260 [ 616.709500] ? kfree_const+0x5e/0x70 [ 616.713218] device_create_groups_vargs+0x1ff/0x270 [ 616.718240] device_create_vargs+0x46/0x60 [ 616.722479] bdi_register_va.part.10+0xbb/0x9b0 [ 616.727149] ? cgwb_kill+0x630/0x630 [ 616.730868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 616.736405] ? bdi_init+0x416/0x510 [ 616.740029] ? wb_init+0x9e0/0x9e0 [ 616.743569] ? bdi_alloc_node+0x67/0xe0 [ 616.747544] ? bdi_alloc_node+0x67/0xe0 [ 616.751521] ? rcu_read_lock_sched_held+0x108/0x120 [ 616.756539] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 616.761821] ? _raw_spin_unlock+0x22/0x30 [ 616.765971] bdi_register_va+0x68/0x80 [ 616.769860] super_setup_bdi_name+0x123/0x220 [ 616.774358] ? kill_block_super+0x100/0x100 [ 616.778683] ? kmem_cache_alloc_trace+0x616/0x780 [ 616.783526] ? match_wildcard+0x3c0/0x3c0 [ 616.787778] ? trace_hardirqs_on+0xd/0x10 [ 616.791943] fuse_fill_super+0xe6e/0x1e20 [ 616.796099] ? fuse_get_root_inode+0x190/0x190 [ 616.800683] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 616.805701] ? kasan_check_read+0x11/0x20 [ 616.809849] ? cap_capable+0x1f9/0x260 [ 616.813740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 616.819275] ? security_capable+0x99/0xc0 [ 616.823430] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 616.828968] ? ns_capable_common+0x13f/0x170 [ 616.833380] ? get_anon_bdev+0x2f0/0x2f0 [ 616.837455] ? sget+0x113/0x150 [ 616.840738] ? fuse_get_root_inode+0x190/0x190 [ 616.845319] mount_nodev+0x6b/0x110 [ 616.848950] fuse_mount+0x2c/0x40 [ 616.852405] mount_fs+0xae/0x328 [ 616.855778] vfs_kern_mount.part.34+0xd4/0x4d0 [ 616.860362] ? may_umount+0xb0/0xb0 [ 616.863991] ? _raw_read_unlock+0x22/0x30 [ 616.868137] ? __get_fs_type+0x97/0xc0 [ 616.872028] do_mount+0x564/0x3070 [ 616.875569] ? copy_mount_string+0x40/0x40 [ 616.879803] ? rcu_pm_notify+0xc0/0xc0 [ 616.884117] ? copy_mount_options+0x5f/0x380 [ 616.888526] ? rcu_read_lock_sched_held+0x108/0x120 [ 616.893543] ? kmem_cache_alloc_trace+0x616/0x780 [ 616.898394] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 616.903929] ? _copy_from_user+0xdf/0x150 [ 616.908084] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 616.913617] ? copy_mount_options+0x285/0x380 [ 616.918114] ksys_mount+0x12d/0x140 [ 616.921748] __x64_sys_mount+0xbe/0x150 [ 616.925722] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 616.930745] do_syscall_64+0x1b1/0x800 [ 616.934631] ? finish_task_switch+0x1ca/0x840 [ 616.939128] ? syscall_return_slowpath+0x5c0/0x5c0 [ 616.944057] ? syscall_return_slowpath+0x30f/0x5c0 [ 616.948990] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 616.954355] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 616.959207] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 616.964397] RIP: 0033:0x455a09 [ 616.967584] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 616.975293] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 616.982558] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 2033/05/18 03:34:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000006", 0x29}], 0x1) 2033/05/18 03:34:22 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000068", 0x29}], 0x1) 2033/05/18 03:34:22 executing program 6 (fault-call:4 fault-nth:0): r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0xb00000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:22 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0x5, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'ip6_vti0\x00', 0x4400}) 2033/05/18 03:34:22 executing program 5 (fault-call:3 fault-nth:69): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 616.989832] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 616.997096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 617.004366] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 617.108794] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 617.131923] FAULT_INJECTION: forcing a failure. [ 617.131923] name failslab, interval 1, probability 0, space 0, times 0 [ 617.143298] CPU: 0 PID: 2969 Comm: syz-executor6 Not tainted 4.17.0-rc5+ #54 [ 617.150491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.159845] Call Trace: [ 617.162443] dump_stack+0x1b9/0x294 [ 617.166084] ? dump_stack_print_info.cold.2+0x52/0x52 [ 617.171286] should_fail.cold.4+0xa/0x1a [ 617.175364] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 617.180485] ? __fget+0x40c/0x650 [ 617.183946] ? find_held_lock+0x36/0x1c0 [ 617.188034] ? check_same_owner+0x320/0x320 [ 617.192371] ? rcu_note_context_switch+0x710/0x710 [ 617.197305] __should_failslab+0x124/0x180 [ 617.201530] should_failslab+0x9/0x14 [ 617.205319] __kmalloc_track_caller+0x2c4/0x760 [ 617.209977] ? map_get_next_key+0x6c5/0xa80 [ 617.214285] memdup_user+0x2c/0xa0 [ 617.217810] map_get_next_key+0x6c5/0xa80 [ 617.221947] ? bpf_prog_detach+0xa60/0xa60 [ 617.226168] ? __might_sleep+0x95/0x190 [ 617.230134] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 617.235661] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 617.240851] __x64_sys_bpf+0x374/0x4c0 [ 617.244727] ? bpf_prog_get+0x20/0x20 [ 617.248514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 617.254046] ? do_syscall_64+0x92/0x800 [ 617.258016] do_syscall_64+0x1b1/0x800 [ 617.261895] ? finish_task_switch+0x1ca/0x840 [ 617.266377] ? syscall_return_slowpath+0x5c0/0x5c0 [ 617.271291] ? syscall_return_slowpath+0x30f/0x5c0 [ 617.276210] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 617.281564] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 617.286393] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 617.291566] RIP: 0033:0x455a09 [ 617.294738] RSP: 002b:00007faa48f0ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 617.302435] RAX: ffffffffffffffda RBX: 00007faa48f0b6d4 RCX: 0000000000455a09 2033/05/18 03:34:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea110000002500000a", 0x29}], 0x1) 2033/05/18 03:34:22 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x40000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:22 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000048", 0x29}], 0x1) 2033/05/18 03:34:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:22 executing program 6 (fault-call:4 fault-nth:1): r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:22 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0x6f7ab2ae01c11982, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 617.309691] RDX: 0000000000000010 RSI: 0000000020000140 RDI: 0000000000000004 [ 617.316945] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 617.324208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 617.331460] R13: 000000000000003e R14: 00000000006f4670 R15: 0000000000000000 [ 617.581164] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 617.584637] FAULT_INJECTION: forcing a failure. [ 617.584637] name failslab, interval 1, probability 0, space 0, times 0 [ 617.599906] CPU: 1 PID: 2987 Comm: syz-executor6 Not tainted 4.17.0-rc5+ #54 [ 617.607096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.616456] Call Trace: [ 617.619055] dump_stack+0x1b9/0x294 [ 617.622711] ? dump_stack_print_info.cold.2+0x52/0x52 [ 617.627926] should_fail.cold.4+0xa/0x1a [ 617.632003] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 617.637119] ? map_get_next_key+0x6c5/0xa80 [ 617.641458] ? graph_lock+0x170/0x170 [ 617.645276] ? __fget+0x40c/0x650 [ 617.648746] ? find_held_lock+0x36/0x1c0 [ 617.652841] ? check_same_owner+0x320/0x320 [ 617.657175] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 617.662207] ? rcu_note_context_switch+0x710/0x710 [ 617.667165] __should_failslab+0x124/0x180 [ 617.671414] should_failslab+0x9/0x14 [ 617.675226] __kmalloc+0x2c8/0x760 2033/05/18 03:34:23 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:23 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x80ffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 617.678780] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 617.684680] ? _copy_from_user+0xdf/0x150 [ 617.688843] ? map_get_next_key+0x2d9/0xa80 [ 617.693176] map_get_next_key+0x2d9/0xa80 [ 617.697337] ? bpf_prog_detach+0xa60/0xa60 [ 617.701585] ? __might_sleep+0x95/0x190 [ 617.705582] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 617.711134] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 617.716935] __x64_sys_bpf+0x374/0x4c0 [ 617.720844] ? bpf_prog_get+0x20/0x20 [ 617.724664] ? do_syscall_64+0x92/0x800 [ 617.728658] do_syscall_64+0x1b1/0x800 [ 617.732554] ? finish_task_switch+0x1ca/0x840 [ 617.737057] ? syscall_return_slowpath+0x5c0/0x5c0 [ 617.741994] ? syscall_return_slowpath+0x30f/0x5c0 [ 617.746925] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 617.752280] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 617.757114] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 617.762290] RIP: 0033:0x455a09 [ 617.765463] RSP: 002b:00007faa48f0ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 617.773159] RAX: ffffffffffffffda RBX: 00007faa48f0b6d4 RCX: 0000000000455a09 [ 617.780413] RDX: 0000000000000010 RSI: 0000000020000140 RDI: 0000000000000004 [ 617.787669] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 617.794922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 617.802177] R13: 000000000000003e R14: 00000000006f4670 R15: 0000000000000001 [ 617.809862] FAT-fs (loop5): bogus number of reserved sectors [ 617.815842] FAT-fs (loop5): Can't find a valid FAT filesystem [ 617.847734] FAULT_INJECTION: forcing a failure. [ 617.847734] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 617.859570] CPU: 0 PID: 2981 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 617.866752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.876097] Call Trace: [ 617.878688] dump_stack+0x1b9/0x294 [ 617.882327] ? dump_stack_print_info.cold.2+0x52/0x52 [ 617.887523] ? kasan_check_write+0x14/0x20 [ 617.891763] should_fail.cold.4+0xa/0x1a [ 617.895827] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 617.900941] ? debug_check_no_locks_freed+0x310/0x310 [ 617.906131] ? find_held_lock+0x36/0x1c0 [ 617.910192] ? rcu_note_context_switch+0x710/0x710 [ 617.915126] ? __might_sleep+0x95/0x190 [ 617.919103] ? kasan_check_write+0x14/0x20 [ 617.923338] ? __mutex_lock+0x7d9/0x17f0 [ 617.927398] ? find_held_lock+0x36/0x1c0 [ 617.931469] ? mutex_trylock+0x2a0/0x2a0 [ 617.935529] ? lock_downgrade+0x8e0/0x8e0 [ 617.939682] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 617.945216] ? should_fail+0x21b/0xbcd [ 617.949109] __alloc_pages_nodemask+0x34e/0xd70 [ 617.953785] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 617.958800] ? lock_downgrade+0x8e0/0x8e0 [ 617.962950] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 617.967880] ? find_held_lock+0x36/0x1c0 [ 617.971946] ? __lock_is_held+0xb5/0x140 [ 617.976021] ? check_same_owner+0x320/0x320 [ 617.980348] cache_grow_begin+0x72/0x6c0 [ 617.984421] kmem_cache_alloc_trace+0x6a5/0x780 [ 617.989097] ? device_create_file+0x1e0/0x1e0 [ 617.993589] kobject_uevent_env+0x20f/0xea0 [ 617.997912] ? device_pm_add+0x221/0x340 [ 618.001984] kobject_uevent+0x1f/0x30 [ 618.005786] device_add+0xb01/0x16d0 [ 618.009509] ? device_private_init+0x230/0x230 [ 618.014089] ? kfree+0x1e9/0x260 [ 618.017461] ? kfree_const+0x5e/0x70 [ 618.021181] device_create_groups_vargs+0x1ff/0x270 [ 618.026206] device_create_vargs+0x46/0x60 [ 618.030447] bdi_register_va.part.10+0xbb/0x9b0 [ 618.035120] ? cgwb_kill+0x630/0x630 [ 618.038839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 618.044373] ? bdi_init+0x416/0x510 [ 618.047999] ? wb_init+0x9e0/0x9e0 [ 618.051539] ? bdi_alloc_node+0x67/0xe0 [ 618.055515] ? bdi_alloc_node+0x67/0xe0 [ 618.059491] ? rcu_read_lock_sched_held+0x108/0x120 [ 618.064510] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 618.069792] ? _raw_spin_unlock+0x22/0x30 [ 618.073947] bdi_register_va+0x68/0x80 [ 618.077840] super_setup_bdi_name+0x123/0x220 [ 618.082346] ? kill_block_super+0x100/0x100 [ 618.086674] ? kmem_cache_alloc_trace+0x616/0x780 [ 618.091525] ? match_wildcard+0x3c0/0x3c0 [ 618.095672] ? trace_hardirqs_on+0xd/0x10 [ 618.099829] fuse_fill_super+0xe6e/0x1e20 [ 618.103984] ? fuse_get_root_inode+0x190/0x190 [ 618.108571] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 618.113594] ? kasan_check_read+0x11/0x20 [ 618.117749] ? cap_capable+0x1f9/0x260 [ 618.121648] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 618.127184] ? security_capable+0x99/0xc0 [ 618.131337] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 618.136876] ? ns_capable_common+0x13f/0x170 [ 618.141296] ? get_anon_bdev+0x2f0/0x2f0 [ 618.145358] ? sget+0x113/0x150 [ 618.148642] ? fuse_get_root_inode+0x190/0x190 [ 618.153222] mount_nodev+0x6b/0x110 [ 618.156854] fuse_mount+0x2c/0x40 [ 618.160314] mount_fs+0xae/0x328 [ 618.163684] vfs_kern_mount.part.34+0xd4/0x4d0 [ 618.168272] ? may_umount+0xb0/0xb0 [ 618.171904] ? _raw_read_unlock+0x22/0x30 [ 618.176048] ? __get_fs_type+0x97/0xc0 [ 618.179938] do_mount+0x564/0x3070 [ 618.183483] ? copy_mount_string+0x40/0x40 [ 618.187716] ? rcu_pm_notify+0xc0/0xc0 [ 618.191614] ? copy_mount_options+0x5f/0x380 [ 618.196021] ? rcu_read_lock_sched_held+0x108/0x120 [ 618.201042] ? kmem_cache_alloc_trace+0x616/0x780 [ 618.205891] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 618.211430] ? _copy_from_user+0xdf/0x150 [ 618.215584] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 618.221118] ? copy_mount_options+0x285/0x380 [ 618.225615] ksys_mount+0x12d/0x140 [ 618.229244] __x64_sys_mount+0xbe/0x150 [ 618.233221] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 618.238241] do_syscall_64+0x1b1/0x800 [ 618.242131] ? finish_task_switch+0x1ca/0x840 [ 618.246628] ? syscall_return_slowpath+0x5c0/0x5c0 [ 618.251561] ? syscall_return_slowpath+0x30f/0x5c0 [ 618.256493] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 618.261862] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 618.266711] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 618.271911] RIP: 0033:0x455a09 [ 618.275096] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 618.282805] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 618.290072] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 618.297339] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 618.304605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 618.311872] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:24 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:24 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea110000002500009c", 0x29}], 0x1) 2033/05/18 03:34:24 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x5, 0x2) ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000440)=""/222) r2 = socket(0xd, 0x1, 0x2) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000000)=0x80) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000280)={0x0, 0x3}, &(0x7f00000002c0)=0x8) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000300)={r3, 0xf7, "1f04d83e5ebd872f4026efd0ece83ff1eb37dc84f99e0ae77b81546b278e14a6f31b0092256f6e2a7400d59a89e879a136086cd82b00d77fb15982f53d7a793cabbcb4e0e0b884e51a1c9e98146c7d62f9532509b29edbe3828243e5330698487fa2f161a5d87dbec619041557c976a9f2ff7e0f0fa769ff01d2125648c4b105ae40629f6c874db8660ba2c1ce8a32383431020118e05e431991fdf4d071bd52f16c2e8fbf14af1d2f56e13a5739a7dcdea58f7551cef90c7c11efa1d97a84daaa0cff74658bdeb497cd157ec255edc56828f292b863fec705f8b12b3d8ef5996ff51a41cce2b10a4a346c5ab5e5d8a3b44ea2d1957ef2"}, &(0x7f0000000400)=0xff) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) socketpair$ipx(0x4, 0x2, 0x0, &(0x7f00000000c0)) 2033/05/18 03:34:24 executing program 6 (fault-call:4 fault-nth:2): r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:24 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:24 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x700}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:24 executing program 5 (fault-call:3 fault-nth:70): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:24 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 618.586926] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:24 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001b80)='H', 0x1}], 0x1}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:24 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:24 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:24 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x1400}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 618.716838] FAT-fs (loop5): bogus number of reserved sectors [ 618.722965] FAT-fs (loop5): Can't find a valid FAT filesystem [ 618.766666] FAULT_INJECTION: forcing a failure. [ 618.766666] name failslab, interval 1, probability 0, space 0, times 0 [ 618.778377] CPU: 0 PID: 3013 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 618.785559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 618.794906] Call Trace: [ 618.797500] dump_stack+0x1b9/0x294 [ 618.801288] ? dump_stack_print_info.cold.2+0x52/0x52 [ 618.806495] ? kernel_text_address+0x79/0xf0 [ 618.810921] ? __unwind_start+0x166/0x330 [ 618.815068] ? __kernel_text_address+0xd/0x40 [ 618.819569] should_fail.cold.4+0xa/0x1a [ 618.823631] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 618.828732] ? __lock_acquire+0x7f5/0x5140 [ 618.832967] ? __lock_acquire+0x7f5/0x5140 [ 618.837211] ? save_stack+0xa9/0xd0 [ 618.840846] ? graph_lock+0x170/0x170 [ 618.844651] ? kasan_kmalloc+0xc4/0xe0 [ 618.848539] ? kasan_slab_alloc+0x12/0x20 [ 618.852696] ? find_held_lock+0x36/0x1c0 [ 618.856764] ? __lock_is_held+0xb5/0x140 [ 618.860837] ? check_same_owner+0x320/0x320 [ 618.865163] ? __lock_acquire+0x7f5/0x5140 [ 618.869400] ? rcu_note_context_switch+0x710/0x710 [ 618.874336] __should_failslab+0x124/0x180 [ 618.878576] should_failslab+0x9/0x14 [ 618.882377] kmem_cache_alloc+0x2af/0x760 [ 618.887000] ? debug_check_no_locks_freed+0x310/0x310 [ 618.892203] __d_alloc+0xc0/0xd30 [ 618.895664] ? __lock_acquire+0x7f5/0x5140 [ 618.899901] ? shrink_dcache_for_umount+0x290/0x290 [ 618.904923] ? print_usage_bug+0xc0/0xc0 [ 618.908993] ? debug_check_no_locks_freed+0x310/0x310 [ 618.914182] ? print_usage_bug+0xc0/0xc0 [ 618.918246] ? __lock_acquire+0x7f5/0x5140 [ 618.922499] d_alloc+0x8e/0x370 [ 618.925780] ? __d_alloc+0xd30/0xd30 [ 618.929503] d_alloc_parallel+0x152/0x1e80 [ 618.933741] ? graph_lock+0x170/0x170 [ 618.937546] ? __lock_acquire+0x7f5/0x5140 [ 618.941780] ? debug_check_no_locks_freed+0x310/0x310 [ 618.946977] ? __d_lookup_rcu+0xa80/0xa80 [ 618.951128] ? print_usage_bug+0xc0/0xc0 [ 618.955188] ? find_held_lock+0x36/0x1c0 [ 618.959262] ? lock_downgrade+0x8e0/0x8e0 [ 618.963410] ? __kernel_text_address+0xd/0x40 [ 618.967909] ? mark_held_locks+0xc9/0x160 [ 618.972064] ? __raw_spin_lock_init+0x1c/0x100 [ 618.976652] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 618.981669] ? __lockdep_init_map+0x105/0x590 [ 618.986166] ? __lockdep_init_map+0x105/0x590 [ 618.990665] ? lockdep_init_map+0x9/0x10 [ 618.994727] ? __init_waitqueue_head+0x96/0x140 [ 618.999447] ? init_wait_entry+0x1b0/0x1b0 [ 619.003728] ? d_alloc_parallel+0x1e80/0x1e80 [ 619.008233] ? lock_release+0xa10/0xa10 [ 619.012218] __lookup_slow+0x1e6/0x540 [ 619.016108] ? vfs_unlink+0x510/0x510 [ 619.019912] ? d_lookup+0x219/0x330 [ 619.023559] lookup_one_len+0x1c7/0x210 [ 619.027537] ? lookup_one_len_unlocked+0xf0/0xf0 [ 619.032294] ? down_write+0x87/0x120 [ 619.036012] ? start_creating+0xb1/0x200 [ 619.040075] ? down_read+0x1b0/0x1b0 [ 619.043790] ? mntput+0x74/0xa0 [ 619.047073] ? simple_pin_fs+0xa4/0x190 [ 619.051049] start_creating+0xc6/0x200 [ 619.054941] __debugfs_create_file+0x63/0x400 [ 619.059446] debugfs_create_file+0x57/0x70 [ 619.063686] bdi_register_va.part.10+0x365/0x9b0 [ 619.068442] ? cgwb_kill+0x630/0x630 [ 619.072164] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 619.077702] ? bdi_init+0x416/0x510 [ 619.081331] ? wb_init+0x9e0/0x9e0 [ 619.084875] ? bdi_alloc_node+0x67/0xe0 [ 619.088852] ? bdi_alloc_node+0x67/0xe0 [ 619.092831] ? rcu_read_lock_sched_held+0x108/0x120 [ 619.097852] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 619.103136] ? _raw_spin_unlock+0x22/0x30 [ 619.107290] bdi_register_va+0x68/0x80 [ 619.111182] super_setup_bdi_name+0x123/0x220 [ 619.115680] ? kill_block_super+0x100/0x100 [ 619.120010] ? kmem_cache_alloc_trace+0x616/0x780 [ 619.124853] ? match_wildcard+0x3c0/0x3c0 [ 619.129002] ? trace_hardirqs_on+0xd/0x10 [ 619.133160] fuse_fill_super+0xe6e/0x1e20 [ 619.137316] ? fuse_get_root_inode+0x190/0x190 [ 619.141912] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 619.146933] ? kasan_check_read+0x11/0x20 [ 619.151083] ? cap_capable+0x1f9/0x260 [ 619.154977] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 619.160515] ? security_capable+0x99/0xc0 [ 619.164670] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 619.170210] ? ns_capable_common+0x13f/0x170 [ 619.174623] ? get_anon_bdev+0x2f0/0x2f0 [ 619.178681] ? sget+0x113/0x150 [ 619.181962] ? fuse_get_root_inode+0x190/0x190 [ 619.186543] mount_nodev+0x6b/0x110 [ 619.190180] fuse_mount+0x2c/0x40 [ 619.193641] mount_fs+0xae/0x328 [ 619.197010] vfs_kern_mount.part.34+0xd4/0x4d0 [ 619.201601] ? may_umount+0xb0/0xb0 [ 619.205232] ? _raw_read_unlock+0x22/0x30 [ 619.209377] ? __get_fs_type+0x97/0xc0 [ 619.213269] do_mount+0x564/0x3070 [ 619.216814] ? copy_mount_string+0x40/0x40 [ 619.221047] ? rcu_pm_notify+0xc0/0xc0 [ 619.224941] ? copy_mount_options+0x5f/0x380 [ 619.229349] ? rcu_read_lock_sched_held+0x108/0x120 [ 619.234367] ? kmem_cache_alloc_trace+0x616/0x780 [ 619.239218] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 619.244756] ? _copy_from_user+0xdf/0x150 [ 619.248909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 619.254444] ? copy_mount_options+0x285/0x380 [ 619.258943] ksys_mount+0x12d/0x140 [ 619.262575] __x64_sys_mount+0xbe/0x150 [ 619.266547] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 619.271565] do_syscall_64+0x1b1/0x800 [ 619.275450] ? finish_task_switch+0x1ca/0x840 [ 619.279946] ? syscall_return_slowpath+0x5c0/0x5c0 [ 619.284878] ? syscall_return_slowpath+0x30f/0x5c0 [ 619.289813] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 619.295185] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 619.300040] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 619.305230] RIP: 0033:0x455a09 [ 619.308415] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:34:24 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x1c000, 0x0) setsockopt$sock_void(r0, 0x1, 0x3f, 0x0, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 619.316124] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 619.323388] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 619.330655] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 619.337921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 619.345190] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 619.554652] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:25 executing program 5 (fault-call:3 fault-nth:71): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:25 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80), 0x0, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:25 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0xa, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:25 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:25 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x14}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000009", 0x29}], 0x1) 2033/05/18 03:34:25 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$nl_generic(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, 0x38, 0x300, 0x70bd2c, 0x25dfdbfe, {0x1b}, [@generic, @generic="5aa1198fb8eed73bad9732fcf34ec937c388e8e53210c783fe454587ad31cf931592366d39eed53b17d114456cd5e4", @nested={0x14, 0x90, [@typed={0x8, 0x83, @fd=r0}, @typed={0x8, 0x3d, @uid=r2}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000000}, 0x200000c0) ioctl(r0, 0x8912, &(0x7f0000000300)="c626262c8523bf01965a40e201272790e12cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 619.777167] FAT-fs (loop5): bogus number of reserved sectors [ 619.783225] FAT-fs (loop5): Can't find a valid FAT filesystem [ 619.796917] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 619.817337] FAULT_INJECTION: forcing a failure. [ 619.817337] name failslab, interval 1, probability 0, space 0, times 0 [ 619.828719] CPU: 0 PID: 3044 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 619.835912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 619.845262] Call Trace: [ 619.847845] dump_stack+0x1b9/0x294 [ 619.851468] ? dump_stack_print_info.cold.2+0x52/0x52 [ 619.856646] ? kernel_text_address+0x79/0xf0 [ 619.861043] ? __unwind_start+0x166/0x330 [ 619.865177] ? __kernel_text_address+0xd/0x40 [ 619.869663] should_fail.cold.4+0xa/0x1a [ 619.873714] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 619.878804] ? save_stack+0xa9/0xd0 [ 619.882415] ? graph_lock+0x170/0x170 [ 619.886202] ? kasan_kmalloc+0xc4/0xe0 [ 619.890076] ? kmem_cache_alloc_trace+0x152/0x780 [ 619.894903] ? kobject_uevent_env+0x20f/0xea0 [ 619.899410] ? kobject_uevent+0x1f/0x30 [ 619.903389] ? device_add+0xb01/0x16d0 [ 619.907268] ? device_create_groups_vargs+0x1ff/0x270 [ 619.912449] ? find_held_lock+0x36/0x1c0 [ 619.916500] ? __lock_is_held+0xb5/0x140 [ 619.920544] ? spi_print_msg+0x64e/0x73e [ 619.924599] ? check_same_owner+0x320/0x320 [ 619.928907] ? do_raw_spin_unlock+0x9e/0x2e0 [ 619.933314] ? rcu_note_context_switch+0x710/0x710 [ 619.938237] __should_failslab+0x124/0x180 [ 619.942459] should_failslab+0x9/0x14 [ 619.946356] __kmalloc+0x2c8/0x760 [ 619.949883] ? kobject_uevent_env+0x20f/0xea0 [ 619.954375] ? rcu_read_lock_sched_held+0x108/0x120 [ 619.959374] ? kobject_get_path+0xc2/0x1a0 [ 619.963606] kobject_get_path+0xc2/0x1a0 [ 619.967659] kobject_uevent_env+0x234/0xea0 [ 619.971971] ? device_pm_add+0x221/0x340 [ 619.976030] kobject_uevent+0x1f/0x30 [ 619.979819] device_add+0xb01/0x16d0 [ 619.983525] ? device_private_init+0x230/0x230 [ 619.988091] ? kfree+0x1e9/0x260 [ 619.991445] ? kfree_const+0x5e/0x70 [ 619.995166] device_create_groups_vargs+0x1ff/0x270 [ 620.000169] device_create_vargs+0x46/0x60 [ 620.004393] bdi_register_va.part.10+0xbb/0x9b0 [ 620.009047] ? cgwb_kill+0x630/0x630 [ 620.012748] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 620.018269] ? bdi_init+0x416/0x510 [ 620.021880] ? wb_init+0x9e0/0x9e0 [ 620.025407] ? bdi_alloc_node+0x67/0xe0 [ 620.029364] ? bdi_alloc_node+0x67/0xe0 [ 620.033323] ? rcu_read_lock_sched_held+0x108/0x120 [ 620.038325] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 620.043588] ? _raw_spin_unlock+0x22/0x30 [ 620.047723] bdi_register_va+0x68/0x80 [ 620.051609] super_setup_bdi_name+0x123/0x220 [ 620.056091] ? kill_block_super+0x100/0x100 [ 620.060398] ? kmem_cache_alloc_trace+0x616/0x780 [ 620.065225] ? match_wildcard+0x3c0/0x3c0 [ 620.069360] ? trace_hardirqs_on+0xd/0x10 [ 620.073495] fuse_fill_super+0xe6e/0x1e20 [ 620.077634] ? fuse_get_root_inode+0x190/0x190 [ 620.082204] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 620.087208] ? kasan_check_read+0x11/0x20 [ 620.091343] ? cap_capable+0x1f9/0x260 [ 620.095220] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 620.100741] ? security_capable+0x99/0xc0 [ 620.104888] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 620.110412] ? ns_capable_common+0x13f/0x170 [ 620.114805] ? get_anon_bdev+0x2f0/0x2f0 [ 620.118849] ? sget+0x113/0x150 [ 620.122116] ? fuse_get_root_inode+0x190/0x190 [ 620.126685] mount_nodev+0x6b/0x110 [ 620.130299] fuse_mount+0x2c/0x40 [ 620.133737] mount_fs+0xae/0x328 [ 620.137094] vfs_kern_mount.part.34+0xd4/0x4d0 [ 620.141663] ? may_umount+0xb0/0xb0 [ 620.145277] ? _raw_read_unlock+0x22/0x30 [ 620.149409] ? __get_fs_type+0x97/0xc0 [ 620.153285] do_mount+0x564/0x3070 [ 620.156812] ? copy_mount_string+0x40/0x40 [ 620.161036] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 620.165781] ? retint_kernel+0x10/0x10 [ 620.169661] ? __sanitizer_cov_trace_const_cmp8+0x1/0x20 [ 620.175102] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 620.180626] ? copy_mount_options+0x285/0x380 [ 620.185114] ksys_mount+0x12d/0x140 [ 620.188730] __x64_sys_mount+0xbe/0x150 [ 620.192690] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 620.197692] do_syscall_64+0x1b1/0x800 [ 620.201564] ? finish_task_switch+0x1ca/0x840 [ 620.206046] ? syscall_return_slowpath+0x5c0/0x5c0 [ 620.210960] ? syscall_return_slowpath+0x30f/0x5c0 [ 620.215876] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 620.221228] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:34:25 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 620.226061] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 620.231237] RIP: 0033:0x455a09 [ 620.234409] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 620.242103] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 620.249362] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 620.256616] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 620.263881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 620.271135] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:25 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:25 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80), 0x0, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:25 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000600", 0x29}], 0x1) [ 620.448569] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:26 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000140)=ANY=[@ANYRES32=r2, @ANYBLOB="7a000300000002000800"], &(0x7f0000000180)=0xe) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") socketpair$ax25(0x3, 0x0, 0xcf, &(0x7f0000000000)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) connect$inet(r1, &(0x7f00000001c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10) 2033/05/18 03:34:26 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0xd, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:26 executing program 5 (fault-call:3 fault-nth:72): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:26 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80), 0x0, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2033/05/18 03:34:26 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x4000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000a00", 0x29}], 0x1) 2033/05/18 03:34:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:26 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) [ 620.611977] FAT-fs (loop5): bogus number of reserved sectors [ 620.618156] FAT-fs (loop5): Can't find a valid FAT filesystem [ 620.647179] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 620.666408] FAULT_INJECTION: forcing a failure. [ 620.666408] name failslab, interval 1, probability 0, space 0, times 0 [ 620.677727] CPU: 0 PID: 3074 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 620.684912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 620.694263] Call Trace: [ 620.696858] dump_stack+0x1b9/0x294 [ 620.700500] ? dump_stack_print_info.cold.2+0x52/0x52 [ 620.705699] ? debug_check_no_locks_freed+0x310/0x310 [ 620.710898] should_fail.cold.4+0xa/0x1a [ 620.714962] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 620.720073] ? graph_lock+0x170/0x170 [ 620.723878] ? print_usage_bug+0xc0/0xc0 [ 620.727942] ? find_held_lock+0x36/0x1c0 [ 620.732012] ? __lock_is_held+0xb5/0x140 [ 620.736092] ? check_same_owner+0x320/0x320 [ 620.740418] ? rcu_note_context_switch+0x710/0x710 [ 620.745357] __should_failslab+0x124/0x180 [ 620.749597] should_failslab+0x9/0x14 [ 620.753398] kmem_cache_alloc+0x2af/0x760 [ 620.757545] ? find_held_lock+0x36/0x1c0 [ 620.761614] __d_alloc+0xc0/0xd30 [ 620.765074] ? shrink_dcache_for_umount+0x290/0x290 [ 620.770187] ? __lock_acquire+0x7f5/0x5140 [ 620.774428] ? rcu_is_watching+0x85/0x140 [ 620.778585] ? debug_check_no_locks_freed+0x310/0x310 [ 620.783777] ? graph_lock+0x170/0x170 [ 620.787840] ? find_held_lock+0x36/0x1c0 [ 620.791910] d_alloc+0x8e/0x370 [ 620.795190] ? print_usage_bug+0xc0/0xc0 [ 620.799307] ? __d_alloc+0xd30/0xd30 [ 620.803084] d_alloc_parallel+0x152/0x1e80 [ 620.807325] ? kobject_uevent+0x1f/0x30 [ 620.811301] ? graph_lock+0x170/0x170 [ 620.815110] ? __lock_acquire+0x7f5/0x5140 [ 620.819356] ? __d_lookup_rcu+0xa80/0xa80 [ 620.823504] ? print_usage_bug+0xc0/0xc0 [ 620.827566] ? find_held_lock+0x36/0x1c0 [ 620.831667] ? lock_downgrade+0x8e0/0x8e0 [ 620.835825] ? mark_held_locks+0xc9/0x160 [ 620.839990] ? __raw_spin_lock_init+0x1c/0x100 [ 620.844578] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 620.849599] ? __lockdep_init_map+0x105/0x590 [ 620.854104] ? __lockdep_init_map+0x105/0x590 [ 620.858602] ? lockdep_init_map+0x9/0x10 [ 620.862667] ? __init_waitqueue_head+0x96/0x140 [ 620.867338] ? init_wait_entry+0x1b0/0x1b0 [ 620.871578] ? d_alloc_parallel+0x1e80/0x1e80 [ 620.876083] ? lock_release+0xa10/0xa10 [ 620.880056] ? graph_lock+0x170/0x170 [ 620.884205] __lookup_slow+0x1e6/0x540 [ 620.888099] ? vfs_unlink+0x510/0x510 [ 620.891905] ? d_lookup+0x219/0x330 [ 620.895549] lookup_one_len+0x1c7/0x210 [ 620.899533] ? lookup_one_len_unlocked+0xf0/0xf0 [ 620.904292] ? down_write+0x87/0x120 [ 620.908007] ? start_creating+0xb1/0x200 [ 620.912077] ? down_read+0x1b0/0x1b0 [ 620.915791] ? mntput+0x74/0xa0 [ 620.919076] ? simple_pin_fs+0xa4/0x190 [ 620.923057] start_creating+0xc6/0x200 [ 620.926952] debugfs_create_dir+0x23/0x3c0 [ 620.931191] bdi_register_va.part.10+0x318/0x9b0 [ 620.935947] ? cgwb_kill+0x630/0x630 [ 620.939666] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 620.945202] ? bdi_init+0x416/0x510 [ 620.948830] ? wb_init+0x9e0/0x9e0 [ 620.952373] ? bdi_alloc_node+0x67/0xe0 [ 620.956345] ? bdi_alloc_node+0x67/0xe0 [ 620.960321] ? rcu_read_lock_sched_held+0x108/0x120 [ 620.965343] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 620.970628] ? _raw_spin_unlock+0x22/0x30 [ 620.974785] bdi_register_va+0x68/0x80 [ 620.978679] super_setup_bdi_name+0x123/0x220 [ 620.983175] ? kill_block_super+0x100/0x100 [ 620.987502] ? kmem_cache_alloc_trace+0x616/0x780 [ 620.992346] ? match_wildcard+0x3c0/0x3c0 [ 620.996496] ? trace_hardirqs_on+0xd/0x10 [ 621.000654] fuse_fill_super+0xe6e/0x1e20 [ 621.004814] ? fuse_get_root_inode+0x190/0x190 [ 621.009402] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 621.014423] ? kasan_check_read+0x11/0x20 [ 621.018577] ? cap_capable+0x1f9/0x260 [ 621.022476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 621.028012] ? security_capable+0x99/0xc0 [ 621.032167] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 621.037703] ? ns_capable_common+0x13f/0x170 [ 621.042114] ? get_anon_bdev+0x2f0/0x2f0 [ 621.046175] ? sget+0x113/0x150 [ 621.049458] ? fuse_get_root_inode+0x190/0x190 [ 621.054043] mount_nodev+0x6b/0x110 [ 621.057676] fuse_mount+0x2c/0x40 [ 621.061136] mount_fs+0xae/0x328 [ 621.064507] vfs_kern_mount.part.34+0xd4/0x4d0 [ 621.069093] ? may_umount+0xb0/0xb0 [ 621.072720] ? _raw_read_unlock+0x22/0x30 [ 621.076864] ? __get_fs_type+0x97/0xc0 [ 621.080756] do_mount+0x564/0x3070 [ 621.084301] ? copy_mount_string+0x40/0x40 [ 621.088534] ? rcu_pm_notify+0xc0/0xc0 [ 621.092431] ? copy_mount_options+0x5f/0x380 [ 621.096839] ? rcu_read_lock_sched_held+0x108/0x120 [ 621.101859] ? kmem_cache_alloc_trace+0x616/0x780 [ 621.106715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 621.112252] ? copy_mount_options+0x285/0x380 [ 621.116755] ksys_mount+0x12d/0x140 [ 621.120385] __x64_sys_mount+0xbe/0x150 [ 621.124362] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 621.129381] do_syscall_64+0x1b1/0x800 [ 621.133268] ? finish_task_switch+0x1ca/0x840 [ 621.137767] ? syscall_return_slowpath+0x5c0/0x5c0 [ 621.142700] ? syscall_return_slowpath+0x30f/0x5c0 [ 621.147636] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 621.153004] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 621.157854] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 621.163041] RIP: 0033:0x455a09 2033/05/18 03:34:26 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0xf, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 621.166236] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 621.173947] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 621.181214] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 621.188479] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 621.195743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 621.203009] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:26 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0xb00000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:26 executing program 2 (fault-call:4 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:26 executing program 5 (fault-call:3 fault-nth:73): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:26 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) r4 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0x40, 0x80200) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r4, 0xc0605345, &(0x7f00000001c0)={0x3, 0x3, {0x0, 0x0, 0x4, 0x1}}) ppoll(&(0x7f0000000000)=[{r0, 0x400}, {r0, 0x400}], 0x2, &(0x7f0000000100)={r2, r3+10000000}, &(0x7f0000000140)={0x7f}, 0x8) r5 = socket$inet6(0xa, 0x2, 0x0) ioctl(r5, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x22000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x80, r6, 0x10, 0x70bd26, 0x25dfdbfd, {0x9}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x32}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x8}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x401}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x100}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x80c0}, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:26 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:27 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x7, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 621.418164] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 621.467585] FAT-fs (loop5): bogus number of reserved sectors [ 621.473530] FAT-fs (loop5): Can't find a valid FAT filesystem [ 621.493940] FAULT_INJECTION: forcing a failure. [ 621.493940] name failslab, interval 1, probability 0, space 0, times 0 [ 621.505236] CPU: 1 PID: 3108 Comm: syz-executor2 Not tainted 4.17.0-rc5+ #54 [ 621.512486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.521846] Call Trace: [ 621.524451] dump_stack+0x1b9/0x294 [ 621.528101] ? dump_stack_print_info.cold.2+0x52/0x52 [ 621.533308] ? debug_check_no_locks_freed+0x310/0x310 [ 621.538513] should_fail.cold.4+0xa/0x1a [ 621.542594] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 621.547714] ? print_usage_bug+0xc0/0xc0 [ 621.551792] ? debug_check_no_locks_freed+0x310/0x310 [ 621.556990] ? print_usage_bug+0xc0/0xc0 [ 621.561069] ? print_usage_bug+0xc0/0xc0 [ 621.565138] ? graph_lock+0x170/0x170 [ 621.568949] ? print_usage_bug+0xc0/0xc0 [ 621.573025] ? __wake_up_common_lock+0x1c2/0x300 [ 621.577795] ? find_held_lock+0x36/0x1c0 [ 621.581869] ? __lock_is_held+0xb5/0x140 [ 621.585954] ? check_same_owner+0x320/0x320 [ 621.590284] ? reacquire_held_locks+0xbc/0x3e0 [ 621.594885] ? alloc_set_pte+0x1013/0x1600 [ 621.599136] ? rcu_note_context_switch+0x710/0x710 [ 621.604086] __should_failslab+0x124/0x180 [ 621.608340] should_failslab+0x9/0x14 [ 621.612151] kmem_cache_alloc+0x2af/0x760 [ 621.616319] mmu_topup_memory_caches+0xf7/0x3a0 [ 621.620992] ? debug_check_no_locks_freed+0x310/0x310 [ 621.626190] kvm_mmu_load+0x21/0x10e0 [ 621.629996] ? kasan_check_write+0x14/0x20 [ 621.634236] vcpu_enter_guest+0x3a83/0x6060 [ 621.638561] ? print_usage_bug+0xc0/0xc0 [ 621.642633] ? kvm_set_msr_common+0x2680/0x2680 [ 621.647301] ? vmx_vcpu_load+0xadd/0xfe0 [ 621.651367] ? __lock_acquire+0x7f5/0x5140 [ 621.655603] ? vmx_vcpu_reset+0x1030/0x1030 [ 621.659924] ? graph_lock+0x170/0x170 [ 621.663726] ? graph_lock+0x170/0x170 [ 621.667536] ? __lock_acquire+0x7f5/0x5140 [ 621.671774] ? debug_check_no_locks_freed+0x310/0x310 [ 621.676968] ? __lock_is_held+0xb5/0x140 [ 621.681031] ? lock_acquire+0x1dc/0x520 [ 621.685004] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 621.690025] ? lock_release+0xa10/0xa10 [ 621.694002] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 621.699282] ? kvm_arch_dev_ioctl+0x5f0/0x5f0 [ 621.703777] ? preempt_notifier_dec+0x20/0x20 [ 621.708282] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 621.713126] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 621.718757] kvm_vcpu_ioctl+0x79d/0x12e0 [ 621.722824] ? kvm_uevent_notify_change.part.29+0x440/0x440 [ 621.728538] ? graph_lock+0x170/0x170 [ 621.732344] ? find_held_lock+0x36/0x1c0 [ 621.737021] ? lock_downgrade+0x8e0/0x8e0 [ 621.741177] ? kasan_check_read+0x11/0x20 [ 621.745327] ? rcu_is_watching+0x85/0x140 [ 621.749478] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 621.754691] ? __fget+0x40c/0x650 [ 621.758150] ? match_held_lock+0x841/0x8b0 [ 621.762386] ? expand_files.part.8+0x9a0/0x9a0 [ 621.766968] ? kasan_check_write+0x14/0x20 [ 621.771204] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 621.776142] ? wait_for_completion+0x870/0x870 [ 621.780731] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 621.785937] ? kvm_uevent_notify_change.part.29+0x440/0x440 [ 621.791650] do_vfs_ioctl+0x1cf/0x16a0 [ 621.795547] ? ioctl_preallocate+0x2e0/0x2e0 [ 621.799961] ? fget_raw+0x20/0x20 [ 621.803417] ? __sb_end_write+0xac/0xe0 [ 621.807399] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 621.812933] ? fput+0x130/0x1a0 [ 621.816214] ? ksys_write+0x1a6/0x250 [ 621.820021] ? security_file_ioctl+0x94/0xc0 [ 621.824434] ksys_ioctl+0xa9/0xd0 [ 621.827893] __x64_sys_ioctl+0x73/0xb0 [ 621.831787] do_syscall_64+0x1b1/0x800 [ 621.835681] ? syscall_return_slowpath+0x5c0/0x5c0 [ 621.840612] ? syscall_return_slowpath+0x30f/0x5c0 [ 621.845547] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 621.850914] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 621.855763] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 621.860948] RIP: 0033:0x455a09 [ 621.864136] RSP: 002b:00007f1d58048c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 621.871845] RAX: ffffffffffffffda RBX: 00007f1d580496d4 RCX: 0000000000455a09 [ 621.879113] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 621.886381] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 621.893647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 621.900918] R13: 000000000000027e R14: 00000000006f7c70 R15: 0000000000000000 [ 621.917841] FAULT_INJECTION: forcing a failure. [ 621.917841] name failslab, interval 1, probability 0, space 0, times 0 [ 621.929105] CPU: 0 PID: 3111 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 621.936290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.945640] Call Trace: [ 621.948250] dump_stack+0x1b9/0x294 [ 621.951875] ? dump_stack_print_info.cold.2+0x52/0x52 [ 621.957078] ? d_add+0x605/0xa10 [ 621.960442] ? lock_downgrade+0x8e0/0x8e0 [ 621.964578] ? __kernel_text_address+0xd/0x40 [ 621.969072] should_fail.cold.4+0xa/0x1a [ 621.973130] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 621.978222] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 621.983223] ? graph_lock+0x170/0x170 [ 621.987012] ? __lockdep_init_map+0x105/0x590 [ 621.991512] ? find_held_lock+0x36/0x1c0 [ 621.995563] ? __lock_is_held+0xb5/0x140 [ 621.999619] ? check_same_owner+0x320/0x320 [ 622.003929] ? rcu_note_context_switch+0x710/0x710 [ 622.008846] __should_failslab+0x124/0x180 [ 622.013069] should_failslab+0x9/0x14 [ 622.016854] kmem_cache_alloc+0x2af/0x760 [ 622.021018] alloc_inode+0xb2/0x190 [ 622.024637] new_inode_pseudo+0x69/0x1a0 [ 622.028684] ? prune_icache_sb+0x1a0/0x1a0 [ 622.032904] ? down_read+0x1b0/0x1b0 [ 622.036602] ? mntput+0x74/0xa0 [ 622.039870] new_inode+0x1c/0x40 [ 622.043222] debugfs_get_inode+0x19/0x120 [ 622.047355] __debugfs_create_file+0xb5/0x400 [ 622.051839] debugfs_create_file+0x57/0x70 [ 622.056065] bdi_register_va.part.10+0x365/0x9b0 [ 622.060805] ? cgwb_kill+0x630/0x630 [ 622.064507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 622.070036] ? bdi_init+0x416/0x510 [ 622.073648] ? wb_init+0x9e0/0x9e0 [ 622.077176] ? bdi_alloc_node+0x67/0xe0 [ 622.081135] ? bdi_alloc_node+0x67/0xe0 [ 622.085098] ? rcu_read_lock_sched_held+0x108/0x120 [ 622.090101] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 622.095377] ? _raw_spin_unlock+0x22/0x30 [ 622.099512] bdi_register_va+0x68/0x80 [ 622.103389] super_setup_bdi_name+0x123/0x220 [ 622.107867] ? kill_block_super+0x100/0x100 [ 622.112193] ? kmem_cache_alloc_trace+0x616/0x780 [ 622.117029] ? match_wildcard+0x3c0/0x3c0 [ 622.121165] ? trace_hardirqs_on+0xd/0x10 [ 622.125303] fuse_fill_super+0xe6e/0x1e20 [ 622.129450] ? fuse_get_root_inode+0x190/0x190 [ 622.134029] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 622.139038] ? kasan_check_read+0x11/0x20 [ 622.143172] ? cap_capable+0x1f9/0x260 [ 622.147050] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 622.152581] ? security_capable+0x99/0xc0 [ 622.156714] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 622.162237] ? ns_capable_common+0x13f/0x170 [ 622.166630] ? get_anon_bdev+0x2f0/0x2f0 [ 622.170683] ? sget+0x113/0x150 [ 622.173960] ? fuse_get_root_inode+0x190/0x190 [ 622.178532] mount_nodev+0x6b/0x110 [ 622.182154] fuse_mount+0x2c/0x40 [ 622.185593] mount_fs+0xae/0x328 [ 622.188958] vfs_kern_mount.part.34+0xd4/0x4d0 [ 622.193530] ? may_umount+0xb0/0xb0 [ 622.197143] ? _raw_read_unlock+0x22/0x30 [ 622.201274] ? __get_fs_type+0x97/0xc0 [ 622.205151] do_mount+0x564/0x3070 [ 622.208677] ? copy_mount_string+0x40/0x40 [ 622.212895] ? rcu_pm_notify+0xc0/0xc0 [ 622.216772] ? copy_mount_options+0x5f/0x380 [ 622.221164] ? rcu_read_lock_sched_held+0x108/0x120 [ 622.226164] ? kmem_cache_alloc_trace+0x616/0x780 [ 622.230997] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 622.236527] ? _copy_from_user+0xdf/0x150 [ 622.240662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 622.246182] ? copy_mount_options+0x285/0x380 [ 622.250664] ksys_mount+0x12d/0x140 [ 622.254277] __x64_sys_mount+0xbe/0x150 [ 622.258234] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 622.263238] do_syscall_64+0x1b1/0x800 [ 622.267110] ? finish_task_switch+0x1ca/0x840 [ 622.271591] ? syscall_return_slowpath+0x5c0/0x5c0 [ 622.276516] ? syscall_return_slowpath+0x30f/0x5c0 [ 622.281433] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 622.286784] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 622.291614] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 622.296785] RIP: 0033:0x455a09 [ 622.299961] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 622.307656] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 622.314907] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 622.322160] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 622.329426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 622.336678] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:28 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0xffffffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:28 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:28 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:28 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(r2, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:28 executing program 2 (fault-call:4 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:28 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0xe, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:28 executing program 5 (fault-call:3 fault-nth:74): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:28 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x1, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 'lo\x00'}}) ioctl(r1, 0x8912, &(0x7f0000000240)="c7f66fc732eaf4ccb96f92ce6f1edb85ffa6135d0c1d24c0436843a86781e22febe7a91187035359320bdb4998f100901f1e075de8a68c5f0b85d4f037d2199a136cbec32692524b2f03c5217d4653ca54d9e3a008182f0bde08d4e1e7d47cdb83723727103be2800ca82f68d0f859ea5a1b2df90bcd060c40988c000000") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x3}) socketpair(0x0, 0x5, 0xffffffff00000001, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fanotify_mark(r2, 0x52, 0x20, r0, &(0x7f0000000180)='./file0\x00') 2033/05/18 03:34:28 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025001000", 0x29}], 0x1) [ 622.538402] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:28 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:28 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:28 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0xf5ffffff00000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:28 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x8, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 622.649834] FAULT_INJECTION: forcing a failure. [ 622.649834] name failslab, interval 1, probability 0, space 0, times 0 [ 622.661216] CPU: 0 PID: 3131 Comm: syz-executor2 Not tainted 4.17.0-rc5+ #54 [ 622.668397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 622.677741] Call Trace: [ 622.680332] dump_stack+0x1b9/0x294 [ 622.683969] ? dump_stack_print_info.cold.2+0x52/0x52 [ 622.689161] ? __save_stack_trace+0x7e/0xd0 [ 622.693491] should_fail.cold.4+0xa/0x1a [ 622.697558] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 622.702667] ? kasan_kmalloc+0xc4/0xe0 [ 622.706561] ? kasan_slab_alloc+0x12/0x20 [ 622.710708] ? kmem_cache_alloc+0x12e/0x760 [ 622.715030] ? mmu_topup_memory_caches+0xf7/0x3a0 [ 622.719872] ? kvm_mmu_load+0x21/0x10e0 [ 622.723846] ? vcpu_enter_guest+0x3a83/0x6060 [ 622.728339] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 622.733358] ? graph_lock+0x170/0x170 [ 622.737158] ? do_syscall_64+0x1b1/0x800 [ 622.741223] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 622.746591] ? find_held_lock+0x36/0x1c0 [ 622.750659] ? __lock_is_held+0xb5/0x140 [ 622.754733] ? check_same_owner+0x320/0x320 [ 622.759059] ? rcu_note_context_switch+0x710/0x710 [ 622.763993] __should_failslab+0x124/0x180 [ 622.768234] should_failslab+0x9/0x14 [ 622.772035] kmem_cache_alloc+0x2af/0x760 [ 622.776180] ? kvm_clock_read+0x25/0x30 [ 622.780161] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 622.785180] ? ktime_get_with_offset+0x326/0x4a0 [ 622.789947] ? mmu_topup_memory_caches+0xf7/0x3a0 [ 622.794791] mmu_topup_memory_caches+0xf7/0x3a0 [ 622.799475] kvm_mmu_load+0x21/0x10e0 [ 622.803288] ? vcpu_enter_guest+0x296a/0x6060 [ 622.807797] vcpu_enter_guest+0x3a83/0x6060 [ 622.812137] ? kvm_set_msr_common+0x2680/0x2680 [ 622.816814] ? vmx_vcpu_load+0xadd/0xfe0 [ 622.820887] ? __lock_acquire+0x7f5/0x5140 [ 622.825213] ? vmx_vcpu_reset+0x1030/0x1030 [ 622.829543] ? graph_lock+0x170/0x170 [ 622.833347] ? graph_lock+0x170/0x170 [ 622.837149] ? __lock_acquire+0x7f5/0x5140 [ 622.841391] ? debug_check_no_locks_freed+0x310/0x310 [ 622.846588] ? __lock_is_held+0xb5/0x140 [ 622.850653] ? lock_acquire+0x1dc/0x520 [ 622.854628] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 622.859652] ? lock_release+0xa10/0xa10 [ 622.863630] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 622.868917] ? kvm_arch_dev_ioctl+0x5f0/0x5f0 [ 622.873411] ? preempt_notifier_dec+0x20/0x20 [ 622.877920] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 622.882763] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 622.888280] kvm_vcpu_ioctl+0x79d/0x12e0 [ 622.892350] ? kvm_uevent_notify_change.part.29+0x440/0x440 [ 622.898064] ? graph_lock+0x170/0x170 [ 622.901872] ? find_held_lock+0x36/0x1c0 [ 622.905947] ? lock_downgrade+0x8e0/0x8e0 [ 622.910101] ? kasan_check_read+0x11/0x20 [ 622.914249] ? rcu_is_watching+0x85/0x140 [ 622.918400] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 622.923601] ? __fget+0x40c/0x650 [ 622.927058] ? match_held_lock+0x841/0x8b0 [ 622.931301] ? expand_files.part.8+0x9a0/0x9a0 [ 622.935888] ? kasan_check_write+0x14/0x20 [ 622.940130] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 622.945063] ? wait_for_completion+0x870/0x870 [ 622.949650] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 622.954845] ? kvm_uevent_notify_change.part.29+0x440/0x440 [ 622.960557] do_vfs_ioctl+0x1cf/0x16a0 [ 622.964453] ? ioctl_preallocate+0x2e0/0x2e0 [ 622.968863] ? fget_raw+0x20/0x20 [ 622.972318] ? __sb_end_write+0xac/0xe0 [ 622.976297] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 622.981833] ? fput+0x130/0x1a0 [ 622.985116] ? ksys_write+0x1a6/0x250 [ 622.988930] ? security_file_ioctl+0x94/0xc0 [ 622.993342] ksys_ioctl+0xa9/0xd0 [ 622.996799] __x64_sys_ioctl+0x73/0xb0 [ 623.000692] do_syscall_64+0x1b1/0x800 [ 623.004582] ? finish_task_switch+0x1ca/0x840 [ 623.009083] ? syscall_return_slowpath+0x5c0/0x5c0 [ 623.014015] ? syscall_return_slowpath+0x30f/0x5c0 [ 623.018953] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 623.024320] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 623.029169] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 623.034355] RIP: 0033:0x455a09 [ 623.037540] RSP: 002b:00007f1d58048c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 2033/05/18 03:34:28 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) fdatasync(r0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") io_setup(0x3, &(0x7f00000000c0)=0x0) r4 = dup3(r1, r0, 0x80000) io_cancel(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x8, r2, &(0x7f0000000100), 0x0, 0x1, 0x0, 0x1, r4}, &(0x7f0000000180)) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) [ 623.045249] RAX: ffffffffffffffda RBX: 00007f1d580496d4 RCX: 0000000000455a09 [ 623.052516] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 623.059782] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 623.067048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 623.074315] R13: 000000000000027e R14: 00000000006f7c70 R15: 0000000000000001 [ 623.087725] FAT-fs (loop5): bogus number of reserved sectors [ 623.093807] FAT-fs (loop5): Can't find a valid FAT filesystem [ 623.111218] FAULT_INJECTION: forcing a failure. [ 623.111218] name failslab, interval 1, probability 0, space 0, times 0 [ 623.122544] CPU: 0 PID: 3137 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 623.129730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 623.139099] Call Trace: [ 623.141676] dump_stack+0x1b9/0x294 [ 623.145293] ? dump_stack_print_info.cold.2+0x52/0x52 [ 623.150470] ? finish_task_switch+0x1ca/0x840 [ 623.154952] ? finish_task_switch+0x182/0x840 [ 623.159437] should_fail.cold.4+0xa/0x1a [ 623.163485] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 623.168579] ? __schedule+0x809/0x1e30 [ 623.172453] ? __lockdep_init_map+0x105/0x590 [ 623.176939] ? __sched_text_start+0x8/0x8 [ 623.181068] ? find_held_lock+0x36/0x1c0 [ 623.185118] ? __lock_is_held+0xb5/0x140 [ 623.189174] ? check_same_owner+0x320/0x320 [ 623.193489] __should_failslab+0x124/0x180 [ 623.197711] should_failslab+0x9/0x14 [ 623.201497] kmem_cache_alloc+0x2af/0x760 [ 623.205636] alloc_inode+0xb2/0x190 [ 623.209250] new_inode_pseudo+0x69/0x1a0 [ 623.213296] ? prune_icache_sb+0x1a0/0x1a0 [ 623.217517] ? down_read+0x1b0/0x1b0 [ 623.221216] ? mntput+0x74/0xa0 [ 623.224485] new_inode+0x1c/0x40 [ 623.227842] debugfs_get_inode+0x19/0x120 [ 623.231980] debugfs_create_dir+0x75/0x3c0 [ 623.236203] bdi_register_va.part.10+0x318/0x9b0 [ 623.240945] ? cgwb_kill+0x630/0x630 [ 623.244665] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 623.250184] ? bdi_init+0x416/0x510 [ 623.253795] ? wb_init+0x9e0/0x9e0 [ 623.257330] ? bdi_alloc_node+0x67/0xe0 [ 623.261289] ? bdi_alloc_node+0x67/0xe0 [ 623.265251] ? rcu_read_lock_sched_held+0x108/0x120 [ 623.270254] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 623.275519] ? _raw_spin_unlock+0x22/0x30 [ 623.279654] bdi_register_va+0x68/0x80 [ 623.283530] super_setup_bdi_name+0x123/0x220 [ 623.288013] ? kill_block_super+0x100/0x100 [ 623.292326] ? kmem_cache_alloc_trace+0x616/0x780 [ 623.297153] ? match_wildcard+0x3c0/0x3c0 [ 623.301287] ? trace_hardirqs_on+0xd/0x10 [ 623.305427] fuse_fill_super+0xe6e/0x1e20 [ 623.309562] ? fuse_get_root_inode+0x190/0x190 [ 623.314132] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 623.319137] ? kasan_check_read+0x11/0x20 [ 623.323282] ? cap_capable+0x1f9/0x260 [ 623.327160] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 623.332682] ? security_capable+0x99/0xc0 [ 623.336816] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 623.342336] ? ns_capable_common+0x13f/0x170 [ 623.346730] ? get_anon_bdev+0x2f0/0x2f0 [ 623.350775] ? sget+0x113/0x150 [ 623.354045] ? fuse_get_root_inode+0x190/0x190 [ 623.358624] mount_nodev+0x6b/0x110 [ 623.362237] fuse_mount+0x2c/0x40 [ 623.365675] mount_fs+0xae/0x328 [ 623.369035] vfs_kern_mount.part.34+0xd4/0x4d0 [ 623.373602] ? may_umount+0xb0/0xb0 [ 623.377216] ? _raw_read_unlock+0x22/0x30 [ 623.381347] ? __get_fs_type+0x97/0xc0 [ 623.385223] do_mount+0x564/0x3070 [ 623.388753] ? copy_mount_string+0x40/0x40 [ 623.392984] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 623.397988] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 623.402735] ? retint_kernel+0x10/0x10 [ 623.406611] ? copy_mount_options+0x1f0/0x380 [ 623.411090] ? copy_mount_options+0x1fa/0x380 [ 623.415571] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 623.421094] ? copy_mount_options+0x285/0x380 [ 623.425575] ksys_mount+0x12d/0x140 [ 623.429187] __x64_sys_mount+0xbe/0x150 [ 623.433146] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 623.438146] do_syscall_64+0x1b1/0x800 [ 623.442024] ? finish_task_switch+0x1ca/0x840 [ 623.446506] ? syscall_return_slowpath+0x5c0/0x5c0 [ 623.451420] ? syscall_return_slowpath+0x30f/0x5c0 [ 623.456335] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 623.461688] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 623.466517] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 623.471690] RIP: 0033:0x455a09 [ 623.474862] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 623.482558] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 623.489811] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 623.497064] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 623.504314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 2033/05/18 03:34:29 executing program 2 (fault-call:4 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:29 executing program 5 (fault-call:3 fault-nth:75): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) [ 623.511567] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 623.728185] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 623.878857] FAT-fs (loop5): bogus number of reserved sectors [ 623.884947] FAT-fs (loop5): Can't find a valid FAT filesystem [ 623.909684] FAULT_INJECTION: forcing a failure. [ 623.909684] name failslab, interval 1, probability 0, space 0, times 0 [ 623.921187] CPU: 0 PID: 3158 Comm: syz-executor2 Not tainted 4.17.0-rc5+ #54 [ 623.928369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 623.937712] Call Trace: [ 623.940303] dump_stack+0x1b9/0x294 [ 623.943936] ? dump_stack_print_info.cold.2+0x52/0x52 [ 623.949127] ? __save_stack_trace+0x7e/0xd0 [ 623.953455] should_fail.cold.4+0xa/0x1a [ 623.957519] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 623.962624] ? kasan_kmalloc+0xc4/0xe0 [ 623.966509] ? kasan_slab_alloc+0x12/0x20 [ 623.970652] ? kmem_cache_alloc+0x12e/0x760 [ 623.974982] ? mmu_topup_memory_caches+0xf7/0x3a0 [ 623.979833] ? kvm_mmu_load+0x21/0x10e0 [ 623.983809] ? vcpu_enter_guest+0x3a83/0x6060 [ 623.988306] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 623.993323] ? graph_lock+0x170/0x170 [ 623.997122] ? do_syscall_64+0x1b1/0x800 [ 624.001181] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 624.006548] ? find_held_lock+0x36/0x1c0 [ 624.010614] ? __lock_is_held+0xb5/0x140 [ 624.014687] ? check_same_owner+0x320/0x320 [ 624.019012] ? rcu_note_context_switch+0x710/0x710 [ 624.023949] __should_failslab+0x124/0x180 [ 624.028186] should_failslab+0x9/0x14 [ 624.031990] kmem_cache_alloc+0x2af/0x760 [ 624.036145] ? mmu_topup_memory_caches+0xf7/0x3a0 [ 624.040991] mmu_topup_memory_caches+0xf7/0x3a0 [ 624.045658] ? debug_check_no_locks_freed+0x310/0x310 [ 624.050858] kvm_mmu_load+0x21/0x10e0 [ 624.054667] ? kasan_check_write+0x14/0x20 [ 624.058910] vcpu_enter_guest+0x3a83/0x6060 [ 624.063239] ? print_usage_bug+0xc0/0xc0 [ 624.067309] ? kvm_set_msr_common+0x2680/0x2680 [ 624.071978] ? vmx_vcpu_load+0xadd/0xfe0 [ 624.076042] ? __lock_acquire+0x7f5/0x5140 [ 624.080279] ? vmx_vcpu_reset+0x1030/0x1030 [ 624.084598] ? graph_lock+0x170/0x170 [ 624.088398] ? graph_lock+0x170/0x170 [ 624.092199] ? __lock_acquire+0x7f5/0x5140 [ 624.096448] ? debug_check_no_locks_freed+0x310/0x310 [ 624.101646] ? __lock_is_held+0xb5/0x140 [ 624.105711] ? lock_acquire+0x1dc/0x520 [ 624.109687] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 624.114832] ? lock_release+0xa10/0xa10 [ 624.118826] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 624.124105] ? kvm_arch_dev_ioctl+0x5f0/0x5f0 [ 624.128600] ? preempt_notifier_dec+0x20/0x20 [ 624.133104] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 624.137952] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 624.142982] kvm_vcpu_ioctl+0x79d/0x12e0 [ 624.147048] ? kvm_uevent_notify_change.part.29+0x440/0x440 [ 624.152760] ? graph_lock+0x170/0x170 [ 624.156566] ? find_held_lock+0x36/0x1c0 [ 624.160637] ? lock_downgrade+0x8e0/0x8e0 [ 624.164793] ? kasan_check_read+0x11/0x20 [ 624.168945] ? rcu_is_watching+0x85/0x140 [ 624.173096] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 624.178296] ? __fget+0x40c/0x650 [ 624.181751] ? match_held_lock+0x841/0x8b0 [ 624.185991] ? expand_files.part.8+0x9a0/0x9a0 [ 624.190574] ? kasan_check_write+0x14/0x20 [ 624.194815] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 624.199748] ? wait_for_completion+0x870/0x870 [ 624.204332] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 624.209524] ? kvm_uevent_notify_change.part.29+0x440/0x440 [ 624.215238] do_vfs_ioctl+0x1cf/0x16a0 [ 624.219132] ? ioctl_preallocate+0x2e0/0x2e0 [ 624.223541] ? fget_raw+0x20/0x20 [ 624.226998] ? __sb_end_write+0xac/0xe0 [ 624.230982] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 624.236516] ? fput+0x130/0x1a0 [ 624.239795] ? ksys_write+0x1a6/0x250 [ 624.243605] ? security_file_ioctl+0x94/0xc0 [ 624.248021] ksys_ioctl+0xa9/0xd0 [ 624.251479] __x64_sys_ioctl+0x73/0xb0 [ 624.255372] do_syscall_64+0x1b1/0x800 [ 624.259266] ? syscall_return_slowpath+0x5c0/0x5c0 [ 624.264202] ? syscall_return_slowpath+0x30f/0x5c0 [ 624.269137] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 624.274509] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 624.279361] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 624.284549] RIP: 0033:0x455a09 [ 624.287734] RSP: 002b:00007f1d58048c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 624.295531] RAX: ffffffffffffffda RBX: 00007f1d580496d4 RCX: 0000000000455a09 [ 624.302807] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 624.310074] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 624.317341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 624.324632] R13: 000000000000027e R14: 00000000006f7c70 R15: 0000000000000002 [ 624.339888] FAULT_INJECTION: forcing a failure. [ 624.339888] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 624.351716] CPU: 0 PID: 3159 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 624.358898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 624.368249] Call Trace: [ 624.370839] dump_stack+0x1b9/0x294 [ 624.374471] ? dump_stack_print_info.cold.2+0x52/0x52 [ 624.379663] ? __lock_acquire+0x7f5/0x5140 [ 624.383903] should_fail.cold.4+0xa/0x1a [ 624.387967] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 624.393085] ? find_held_lock+0x36/0x1c0 [ 624.397147] ? graph_lock+0x170/0x170 [ 624.400951] ? lock_acquire+0x1dc/0x520 [ 624.404928] ? lock_downgrade+0x8e0/0x8e0 [ 624.409078] ? find_held_lock+0x36/0x1c0 [ 624.413153] __alloc_pages_nodemask+0x34e/0xd70 [ 624.417831] ? kasan_check_read+0x11/0x20 [ 624.421986] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 624.427009] ? rcu_read_unlock+0x35/0x70 [ 624.431073] ? __lock_is_held+0xb5/0x140 [ 624.435147] ? check_same_owner+0x320/0x320 [ 624.439471] ? graph_lock+0x170/0x170 [ 624.443274] cache_grow_begin+0x72/0x6c0 [ 624.447343] kmem_cache_alloc+0x689/0x760 [ 624.451496] ? find_held_lock+0x36/0x1c0 [ 624.455563] fuse_alloc_inode+0x96/0x4f0 [ 624.459624] ? fuse_dev_alloc+0x4e0/0x4e0 [ 624.463774] ? lock_downgrade+0x8e0/0x8e0 [ 624.467931] ? kasan_check_read+0x11/0x20 [ 624.472081] ? do_raw_spin_unlock+0x9e/0x2e0 [ 624.476490] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 624.481087] ? kasan_check_write+0x14/0x20 [ 624.485324] ? find_inode.isra.19+0xc3/0x1d0 [ 624.489733] ? fuse_dev_alloc+0x4e0/0x4e0 [ 624.493887] alloc_inode+0x63/0x190 [ 624.497515] iget5_locked+0x20e/0x570 [ 624.501313] ? fuse_inode_eq+0x80/0x80 [ 624.505199] ? fuse_init_file_inode+0x70/0x70 [ 624.509695] ? inode_lru_isolate+0x580/0x580 [ 624.514100] ? cgwb_kill+0x630/0x630 [ 624.517824] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 624.523362] ? print_usage_bug+0xc0/0xc0 [ 624.527424] fuse_iget+0x1cc/0x820 [ 624.530972] ? fuse_change_attributes+0x810/0x810 [ 624.535818] ? _raw_spin_unlock+0x22/0x30 [ 624.539973] fuse_get_root_inode+0x121/0x190 [ 624.544381] ? fuse_iget+0x820/0x820 [ 624.548106] ? _raw_spin_unlock_bh+0x30/0x40 [ 624.552515] ? bdi_set_max_ratio+0x112/0x150 [ 624.556961] fuse_fill_super+0x11e0/0x1e20 [ 624.561369] ? fuse_get_root_inode+0x190/0x190 [ 624.565956] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 624.570977] ? kasan_check_read+0x11/0x20 [ 624.575127] ? cap_capable+0x1f9/0x260 [ 624.579024] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 624.584564] ? security_capable+0x99/0xc0 [ 624.588719] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 624.594254] ? ns_capable_common+0x13f/0x170 [ 624.598665] ? get_anon_bdev+0x2f0/0x2f0 [ 624.602730] ? sget+0x113/0x150 [ 624.606011] ? fuse_get_root_inode+0x190/0x190 [ 624.610596] mount_nodev+0x6b/0x110 [ 624.614223] fuse_mount+0x2c/0x40 [ 624.617681] mount_fs+0xae/0x328 [ 624.621068] vfs_kern_mount.part.34+0xd4/0x4d0 [ 624.625662] ? may_umount+0xb0/0xb0 [ 624.629295] ? _raw_read_unlock+0x22/0x30 [ 624.633440] ? __get_fs_type+0x97/0xc0 [ 624.637334] do_mount+0x564/0x3070 [ 624.640883] ? copy_mount_string+0x40/0x40 [ 624.645116] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 624.650135] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 624.654894] ? retint_kernel+0x10/0x10 [ 624.658794] ? copy_mount_options+0x1f0/0x380 [ 624.663316] ? copy_mount_options+0x1f6/0x380 [ 624.667813] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 624.673351] ? copy_mount_options+0x285/0x380 [ 624.677849] ksys_mount+0x12d/0x140 [ 624.681477] __x64_sys_mount+0xbe/0x150 [ 624.685450] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 624.690471] do_syscall_64+0x1b1/0x800 [ 624.694357] ? finish_task_switch+0x1ca/0x840 [ 624.698855] ? syscall_return_slowpath+0x5c0/0x5c0 [ 624.703788] ? syscall_return_slowpath+0x30f/0x5c0 [ 624.708721] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 624.714091] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 624.718938] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 624.724125] RIP: 0033:0x455a09 [ 624.727313] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 624.735020] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 624.742286] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 624.749552] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 624.756823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 624.764108] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:30 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:30 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:30 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000005", 0x29}], 0x1) 2033/05/18 03:34:30 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x5, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:30 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x7000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:30 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) fcntl$setsig(r1, 0xa, 0x22) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:30 executing program 5 (fault-call:3 fault-nth:76): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:30 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:34:30 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 624.939104] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:30 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(0xffffffffffffffff, r1, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:30 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:30 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0xb00}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:30 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x11, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 625.217861] netlink: 'syz-executor0': attribute type 16 has an invalid length. [ 625.221155] FAT-fs (loop5): bogus number of reserved sectors [ 625.231254] FAT-fs (loop5): Can't find a valid FAT filesystem 2033/05/18 03:34:30 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(r2, 0xffffffffffffffff, &(0x7f000025d000), 0x3fc) [ 625.296441] FAULT_INJECTION: forcing a failure. [ 625.296441] name failslab, interval 1, probability 0, space 0, times 0 [ 625.308069] CPU: 0 PID: 3174 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 625.315260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 625.324611] Call Trace: [ 625.327207] dump_stack+0x1b9/0x294 [ 625.330840] ? dump_stack_print_info.cold.2+0x52/0x52 [ 625.336029] ? __lock_acquire+0x7f5/0x5140 [ 625.340269] ? __lock_acquire+0x7f5/0x5140 [ 625.344507] should_fail.cold.4+0xa/0x1a [ 625.348569] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 625.353674] ? debug_check_no_locks_freed+0x310/0x310 [ 625.358869] ? kasan_check_write+0x14/0x20 [ 625.363105] ? __init_rwsem+0x1c4/0x290 [ 625.367079] ? graph_lock+0x170/0x170 [ 625.370879] ? find_held_lock+0x36/0x1c0 [ 625.374943] ? find_held_lock+0x36/0x1c0 [ 625.379012] ? __lock_is_held+0xb5/0x140 [ 625.383115] ? check_same_owner+0x320/0x320 [ 625.387451] ? graph_lock+0x170/0x170 [ 625.391268] ? rcu_note_context_switch+0x710/0x710 [ 625.396214] __should_failslab+0x124/0x180 [ 625.400458] should_failslab+0x9/0x14 [ 625.404263] kmem_cache_alloc+0x2af/0x760 [ 625.408419] ? find_held_lock+0x36/0x1c0 [ 625.412491] fuse_alloc_inode+0x96/0x4f0 [ 625.416557] ? fuse_dev_alloc+0x4e0/0x4e0 [ 625.420706] ? lock_downgrade+0x8e0/0x8e0 [ 625.424870] ? kasan_check_read+0x11/0x20 [ 625.429028] ? do_raw_spin_unlock+0x9e/0x2e0 [ 625.433452] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 625.438045] ? kasan_check_write+0x14/0x20 [ 625.442291] ? find_inode.isra.19+0xc3/0x1d0 [ 625.446713] ? fuse_dev_alloc+0x4e0/0x4e0 [ 625.450868] alloc_inode+0x63/0x190 [ 625.454503] iget5_locked+0x20e/0x570 [ 625.458307] ? fuse_inode_eq+0x80/0x80 [ 625.462201] ? fuse_init_file_inode+0x70/0x70 [ 625.466702] ? inode_lru_isolate+0x580/0x580 [ 625.471121] ? cgwb_kill+0x630/0x630 [ 625.474844] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 625.480377] ? print_usage_bug+0xc0/0xc0 [ 625.484428] fuse_iget+0x1cc/0x820 [ 625.487959] ? fuse_change_attributes+0x810/0x810 [ 625.492790] ? _raw_spin_unlock+0x22/0x30 [ 625.496938] fuse_get_root_inode+0x121/0x190 [ 625.501332] ? fuse_iget+0x820/0x820 [ 625.505040] ? _raw_spin_unlock_bh+0x30/0x40 [ 625.509435] ? bdi_set_max_ratio+0x112/0x150 [ 625.513829] fuse_fill_super+0x11e0/0x1e20 [ 625.518052] ? fuse_get_root_inode+0x190/0x190 [ 625.522621] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 625.527624] ? kasan_check_read+0x11/0x20 [ 625.531761] ? cap_capable+0x1f9/0x260 [ 625.535639] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 625.541161] ? security_capable+0x99/0xc0 [ 625.545296] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 625.550820] ? ns_capable_common+0x13f/0x170 [ 625.555215] ? get_anon_bdev+0x2f0/0x2f0 [ 625.559260] ? sget+0x113/0x150 [ 625.562526] ? fuse_get_root_inode+0x190/0x190 [ 625.567104] mount_nodev+0x6b/0x110 [ 625.570719] fuse_mount+0x2c/0x40 [ 625.574593] mount_fs+0xae/0x328 [ 625.577962] vfs_kern_mount.part.34+0xd4/0x4d0 [ 625.582645] ? may_umount+0xb0/0xb0 [ 625.586257] ? _raw_read_unlock+0x22/0x30 [ 625.590386] ? __get_fs_type+0x97/0xc0 [ 625.594262] do_mount+0x564/0x3070 [ 625.597788] ? do_raw_spin_unlock+0x9e/0x2e0 [ 625.602180] ? interrupt_entry+0xb1/0xf0 [ 625.606228] ? copy_mount_string+0x40/0x40 [ 625.610447] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 625.615190] ? retint_kernel+0x10/0x10 [ 625.619118] ? copy_mount_options+0x213/0x380 [ 625.623599] ? write_comp_data+0x11/0x70 [ 625.627649] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 625.633168] ? copy_mount_options+0x285/0x380 [ 625.637650] ksys_mount+0x12d/0x140 [ 625.641264] __x64_sys_mount+0xbe/0x150 [ 625.645234] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 625.650238] do_syscall_64+0x1b1/0x800 [ 625.654109] ? finish_task_switch+0x1ca/0x840 [ 625.658592] ? syscall_return_slowpath+0x5c0/0x5c0 [ 625.663507] ? syscall_return_slowpath+0x30f/0x5c0 [ 625.668434] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 625.673789] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 625.678618] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 625.683792] RIP: 0033:0x455a09 [ 625.686963] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:34:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) [ 625.694656] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 625.701910] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 625.709177] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 625.716434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 625.723699] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:31 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:31 executing program 4: r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000001c0)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@loopback={0x0, 0x1}, @in=@remote={0xac, 0x14, 0x14, 0xbb}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001}}]}, 0x80}, 0x1}, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'ip_vti0\x00', 0x10}) getsockopt$EBT_SO_GET_ENTRIES(r1, 0x0, 0x81, &(0x7f0000000140)={'nat\x00', 0x0, 0x3, 0x78, [], 0x2, &(0x7f0000000000)=[{}, {}], &(0x7f00000000c0)=""/120}, &(0x7f00000001c0)=0x78) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) 2033/05/18 03:34:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0x5450, 0x0) 2033/05/18 03:34:31 executing program 5 (fault-call:3 fault-nth:77): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:31 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0xffff8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:31 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0xb, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) 2033/05/18 03:34:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000800", 0x29}], 0x1) 2033/05/18 03:34:31 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(r2, 0xffffffffffffffff, &(0x7f000025d000), 0x3fc) [ 626.158436] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:31 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d001000ea1100000025000000", 0x29}], 0x1) [ 626.218077] FAT-fs (loop5): bogus number of reserved sectors [ 626.224043] FAT-fs (loop5): Can't find a valid FAT filesystem [ 626.252519] FAULT_INJECTION: forcing a failure. [ 626.252519] name failslab, interval 1, probability 0, space 0, times 0 [ 626.263898] CPU: 0 PID: 3205 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 626.271093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 626.280438] Call Trace: [ 626.283021] dump_stack+0x1b9/0x294 [ 626.286661] ? dump_stack_print_info.cold.2+0x52/0x52 [ 626.291838] ? __lock_acquire+0x7f5/0x5140 [ 626.296058] ? __lock_acquire+0x7f5/0x5140 [ 626.300279] should_fail.cold.4+0xa/0x1a [ 626.304329] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 626.309420] ? debug_check_no_locks_freed+0x310/0x310 [ 626.314593] ? kasan_check_write+0x14/0x20 [ 626.318813] ? __init_rwsem+0x1c4/0x290 [ 626.322770] ? graph_lock+0x170/0x170 [ 626.326554] ? find_held_lock+0x36/0x1c0 [ 626.330603] ? find_held_lock+0x36/0x1c0 [ 626.334655] ? __lock_is_held+0xb5/0x140 [ 626.338708] ? check_same_owner+0x320/0x320 [ 626.343019] ? graph_lock+0x170/0x170 [ 626.346806] ? rcu_note_context_switch+0x710/0x710 [ 626.351722] __should_failslab+0x124/0x180 [ 626.355943] should_failslab+0x9/0x14 [ 626.359731] kmem_cache_alloc+0x2af/0x760 [ 626.363863] ? find_held_lock+0x36/0x1c0 [ 626.367913] fuse_alloc_inode+0x96/0x4f0 [ 626.371959] ? fuse_dev_alloc+0x4e0/0x4e0 [ 626.376090] ? lock_downgrade+0x8e0/0x8e0 [ 626.380227] ? kasan_check_read+0x11/0x20 [ 626.384359] ? do_raw_spin_unlock+0x9e/0x2e0 [ 626.388751] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 626.393318] ? kasan_check_write+0x14/0x20 [ 626.397540] ? find_inode.isra.19+0xc3/0x1d0 [ 626.401934] ? fuse_dev_alloc+0x4e0/0x4e0 [ 626.406068] alloc_inode+0x63/0x190 [ 626.409681] iget5_locked+0x20e/0x570 [ 626.413475] ? fuse_inode_eq+0x80/0x80 [ 626.417346] ? fuse_init_file_inode+0x70/0x70 [ 626.421826] ? inode_lru_isolate+0x580/0x580 [ 626.426216] ? cgwb_kill+0x630/0x630 [ 626.429916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 626.435436] ? print_usage_bug+0xc0/0xc0 [ 626.439483] fuse_iget+0x1cc/0x820 [ 626.443018] ? fuse_change_attributes+0x810/0x810 [ 626.447848] ? _raw_spin_unlock+0x22/0x30 [ 626.451985] fuse_get_root_inode+0x121/0x190 [ 626.456379] ? fuse_iget+0x820/0x820 [ 626.460083] ? _raw_spin_unlock_bh+0x30/0x40 [ 626.464478] ? bdi_set_max_ratio+0x112/0x150 [ 626.468874] fuse_fill_super+0x11e0/0x1e20 [ 626.473097] ? fuse_get_root_inode+0x190/0x190 [ 626.477667] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 626.482671] ? kasan_check_read+0x11/0x20 [ 626.486806] ? cap_capable+0x1f9/0x260 [ 626.490683] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 626.496212] ? security_capable+0x99/0xc0 [ 626.500346] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 626.505869] ? ns_capable_common+0x13f/0x170 [ 626.510266] ? get_anon_bdev+0x2f0/0x2f0 [ 626.514311] ? sget+0x113/0x150 [ 626.517576] ? fuse_get_root_inode+0x190/0x190 [ 626.522144] mount_nodev+0x6b/0x110 [ 626.525757] fuse_mount+0x2c/0x40 [ 626.529197] mount_fs+0xae/0x328 [ 626.532552] vfs_kern_mount.part.34+0xd4/0x4d0 [ 626.537122] ? may_umount+0xb0/0xb0 [ 626.540737] ? _raw_read_unlock+0x22/0x30 [ 626.544868] ? __get_fs_type+0x97/0xc0 [ 626.548744] do_mount+0x564/0x3070 [ 626.552272] ? do_raw_spin_unlock+0x9e/0x2e0 [ 626.556674] ? copy_mount_string+0x40/0x40 [ 626.560896] ? rcu_pm_notify+0xc0/0xc0 [ 626.564776] ? copy_mount_options+0x5f/0x380 [ 626.569167] ? rcu_read_lock_sched_held+0x108/0x120 [ 626.574171] ? kmem_cache_alloc_trace+0x616/0x780 [ 626.579005] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 626.584537] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 626.590063] ? copy_mount_options+0x285/0x380 [ 626.594545] ksys_mount+0x12d/0x140 [ 626.598159] __x64_sys_mount+0xbe/0x150 [ 626.602219] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 626.607222] do_syscall_64+0x1b1/0x800 [ 626.611096] ? finish_task_switch+0x1ca/0x840 [ 626.615578] ? syscall_return_slowpath+0x5c0/0x5c0 [ 626.620492] ? syscall_return_slowpath+0x30f/0x5c0 [ 626.625411] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 626.630780] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 626.635611] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 626.640790] RIP: 0033:0x455a09 [ 626.643961] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 626.651655] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 626.658909] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 2033/05/18 03:34:31 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x8000, 0x0) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000140)={0x5, 0x3ff}) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={"6572657461872659b02a1c6b3dc778f0", 0x800000000004032}) getsockopt$bt_rfcomm_RFCOMM_LM(r2, 0x12, 0x3, &(0x7f0000000000), &(0x7f00000000c0)=0x4) 2033/05/18 03:34:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="f00fab13d5210f20e06635000040000f22e066b99f0a00000f32d9ed6565660f3837bc0090c44e3dba210066ed66b9800000c00f326635000100000f300f20d86635080000000f22d8", 0x49}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) [ 626.666163] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 626.673416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 626.680672] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:34:32 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x1000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:32 executing program 5 (fault-call:3 fault-nth:78): r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[]) syz_fuse_mount(&(0x7f0000000040)='./file0\x00', 0x1002, 0x0, 0x0, 0x1, 0x0) 2033/05/18 03:34:32 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d000c00ea1100000025000000", 0x29}], 0x1) 2033/05/18 03:34:32 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/mcfilter\x00') bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg(r2, &(0x7f0000001c80)=[{{&(0x7f0000001900)=@generic={0x0, "099d22261acdafc459f1880968cca5bf1e72b2e09ff32ba511cbadf10bbe233b1b07d2195233938e3c23363c1aa1eca4a0cda8c400705d1debfbc17be30fdd3d2abf8ef2dba41e2875d9f012147301fdfec5a459c00aecf9b71f2963f537014970c5a43350e35234766585a0a28b4f29389a7b47948684ae417df0b38407"}, 0x80, &(0x7f0000001c40)}}], 0x1, 0x0) sendfile(r2, 0xffffffffffffffff, &(0x7f000025d000), 0x3fc) 2033/05/18 03:34:32 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0xc, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 626.988860] netlink: 'syz-executor0': attribute type 16 has an invalid length. 2033/05/18 03:34:32 executing program 1: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:34:32 executing program 6: r0 = socket(0xa, 0x200000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x6, &(0x7f0000000140)={r1, &(0x7f0000000040)}, 0x10) [ 627.075237] FAT-fs (loop5): bogus number of reserved sectors [ 627.081406] FAT-fs (loop5): Can't find a valid FAT filesystem [ 627.112244] FAULT_INJECTION: forcing a failure. [ 627.112244] name failslab, interval 1, probability 0, space 0, times 0 [ 627.123559] CPU: 0 PID: 3232 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 627.130749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 627.140095] Call Trace: [ 627.142691] dump_stack+0x1b9/0x294 [ 627.146323] ? dump_stack_print_info.cold.2+0x52/0x52 [ 627.151516] ? lockdep_init_map+0x9/0x10 [ 627.155589] should_fail.cold.4+0xa/0x1a [ 627.159654] ? do_raw_write_unlock.cold.8+0x3d/0x3d [ 627.164673] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 627.169782] ? graph_lock+0x170/0x170 [ 627.173596] ? find_held_lock+0x36/0x1c0 [ 627.177671] ? find_held_lock+0x36/0x1c0 [ 627.181748] ? __lock_is_held+0xb5/0x140 [ 627.185827] ? check_same_owner+0x320/0x320 [ 627.190154] ? make_kgid+0x23/0x30 [ 627.193705] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 627.199249] ? rcu_note_context_switch+0x710/0x710 [ 627.204189] __should_failslab+0x124/0x180 [ 627.208426] should_failslab+0x9/0x14 [ 627.212215] kmem_cache_alloc+0x2af/0x760 [ 627.216348] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 627.220919] ? kasan_check_write+0x14/0x20 [ 627.225137] ? do_raw_spin_lock+0xc1/0x200 [ 627.229361] __d_alloc+0xc0/0xd30 [ 627.232799] ? fuse_iget+0x1dd/0x820 [ 627.236499] ? shrink_dcache_for_umount+0x290/0x290 [ 627.241505] ? fuse_change_attributes+0x810/0x810 [ 627.246336] ? _raw_spin_unlock+0x22/0x30 [ 627.250473] ? fuse_get_root_inode+0x121/0x190 [ 627.255043] ? fuse_iget+0x820/0x820 [ 627.258748] d_make_root+0x42/0x90 [ 627.262272] fuse_fill_super+0x120e/0x1e20 [ 627.266496] ? fuse_get_root_inode+0x190/0x190 [ 627.271065] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 627.276070] ? kasan_check_read+0x11/0x20 [ 627.280206] ? cap_capable+0x1f9/0x260 [ 627.284084] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 627.289613] ? security_capable+0x99/0xc0 [ 627.293751] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 627.299273] ? ns_capable_common+0x13f/0x170 [ 627.303671] ? get_anon_bdev+0x2f0/0x2f0 [ 627.307717] ? sget+0x113/0x150 [ 627.310981] ? fuse_get_root_inode+0x190/0x190 [ 627.315549] mount_nodev+0x6b/0x110 [ 627.319165] fuse_mount+0x2c/0x40 [ 627.322604] mount_fs+0xae/0x328 [ 627.325957] vfs_kern_mount.part.34+0xd4/0x4d0 [ 627.330536] ? may_umount+0xb0/0xb0 [ 627.334148] ? _raw_read_unlock+0x22/0x30 [ 627.338279] ? __get_fs_type+0x97/0xc0 [ 627.342156] do_mount+0x564/0x3070 [ 627.345693] ? copy_mount_string+0x40/0x40 [ 627.349913] ? rcu_pm_notify+0xc0/0xc0 [ 627.353789] ? copy_mount_options+0x5f/0x380 [ 627.358180] ? rcu_read_lock_sched_held+0x108/0x120 [ 627.363183] ? kmem_cache_alloc_trace+0x616/0x780 [ 627.368018] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 627.373565] ? _copy_from_user+0xdf/0x150 [ 627.377702] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 627.383223] ? copy_mount_options+0x285/0x380 [ 627.387705] ksys_mount+0x12d/0x140 [ 627.391318] __x64_sys_mount+0xbe/0x150 [ 627.395274] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 627.400278] do_syscall_64+0x1b1/0x800 [ 627.404151] ? finish_task_switch+0x1ca/0x840 [ 627.408633] ? syscall_return_slowpath+0x5c0/0x5c0 [ 627.413551] ? syscall_return_slowpath+0x30f/0x5c0 [ 627.418472] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 627.423822] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 627.428654] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 627.433826] RIP: 0033:0x455a09 [ 627.436997] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 627.444712] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 627.451963] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 627.459216] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 627.466482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 627.473736] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 627.508167] ================================================================== [ 627.515574] BUG: KASAN: use-after-free in __lock_acquire+0x3888/0x5140 [ 627.522235] Read of size 8 at addr ffff8801d7915508 by task syz-executor5/3232 [ 627.529583] [ 627.531210] CPU: 0 PID: 3232 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #54 [ 627.538381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 627.547722] Call Trace: [ 627.550309] dump_stack+0x1b9/0x294 [ 627.553948] ? dump_stack_print_info.cold.2+0x52/0x52 [ 627.559132] ? printk+0x9e/0xba [ 627.562408] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 627.567158] ? kasan_check_write+0x14/0x20 [ 627.571389] print_address_description+0x6c/0x20b [ 627.576228] ? __lock_acquire+0x3888/0x5140 [ 627.580547] kasan_report.cold.7+0x242/0x2fe [ 627.584953] __asan_report_load8_noabort+0x14/0x20 [ 627.589875] __lock_acquire+0x3888/0x5140 [ 627.594015] ? lock_downgrade+0x8e0/0x8e0 [ 627.598158] ? kasan_check_read+0x11/0x20 [ 627.602302] ? rcu_is_watching+0x85/0x140 [ 627.606443] ? debug_check_no_locks_freed+0x310/0x310 [ 627.611632] ? is_bpf_text_address+0xd7/0x170 [ 627.616127] ? kernel_text_address+0x79/0xf0 [ 627.620680] ? __unwind_start+0x166/0x330 [ 627.624821] ? __kernel_text_address+0xd/0x40 [ 627.629309] ? unwind_get_return_address+0x61/0xa0 [ 627.634232] ? __save_stack_trace+0x7e/0xd0 [ 627.638554] ? save_stack+0xa9/0xd0 [ 627.642177] ? save_stack+0x43/0xd0 [ 627.645796] ? __kasan_slab_free+0x11a/0x170 [ 627.650198] ? kasan_slab_free+0xe/0x10 [ 627.654164] ? kfree+0xd9/0x260 [ 627.657435] ? unregister_shrinker+0x216/0x3a0 [ 627.662013] ? deactivate_locked_super+0x70/0x100 [ 627.666847] ? mount_nodev+0xfa/0x110 [ 627.670640] ? fuse_mount+0x2c/0x40 [ 627.674261] ? mount_fs+0xae/0x328 [ 627.677793] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 627.682555] ? do_mount+0x564/0x3070 [ 627.686269] ? ksys_mount+0x12d/0x140 [ 627.690066] ? graph_lock+0x170/0x170 [ 627.693862] ? kasan_check_read+0x11/0x20 [ 627.698003] ? do_raw_spin_unlock+0x9e/0x2e0 [ 627.702407] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 627.706982] ? print_usage_bug+0xc0/0xc0 [ 627.711035] ? kasan_check_write+0x14/0x20 [ 627.715266] ? do_raw_spin_lock+0xc1/0x200 [ 627.719498] lock_acquire+0x1dc/0x520 [ 627.723295] ? fuse_kill_sb_anon+0x50/0xb0 [ 627.727527] ? lock_release+0xa10/0xa10 [ 627.731500] ? check_same_owner+0x320/0x320 [ 627.735812] ? quarantine_put+0xeb/0x190 [ 627.739870] ? rcu_note_context_switch+0x710/0x710 [ 627.744795] ? __might_sleep+0x95/0x190 [ 627.748767] down_write+0x87/0x120 [ 627.752300] ? fuse_kill_sb_anon+0x50/0xb0 [ 627.756528] ? down_read+0x1b0/0x1b0 [ 627.760244] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 627.765780] fuse_kill_sb_anon+0x50/0xb0 [ 627.769839] deactivate_locked_super+0x97/0x100 [ 627.774505] ? fuse_get_root_inode+0x190/0x190 [ 627.779087] mount_nodev+0xfa/0x110 [ 627.782709] fuse_mount+0x2c/0x40 [ 627.786159] mount_fs+0xae/0x328 [ 627.789521] vfs_kern_mount.part.34+0xd4/0x4d0 [ 627.794100] ? may_umount+0xb0/0xb0 [ 627.797725] ? _raw_read_unlock+0x22/0x30 [ 627.801864] ? __get_fs_type+0x97/0xc0 [ 627.805748] do_mount+0x564/0x3070 [ 627.809284] ? copy_mount_string+0x40/0x40 [ 627.813512] ? rcu_pm_notify+0xc0/0xc0 [ 627.817397] ? copy_mount_options+0x5f/0x380 [ 627.821800] ? rcu_read_lock_sched_held+0x108/0x120 [ 627.826809] ? kmem_cache_alloc_trace+0x616/0x780 [ 627.831647] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 627.837180] ? _copy_from_user+0xdf/0x150 [ 627.841325] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 627.846856] ? copy_mount_options+0x285/0x380 [ 627.851344] ksys_mount+0x12d/0x140 [ 627.854970] __x64_sys_mount+0xbe/0x150 [ 627.858940] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 627.863951] do_syscall_64+0x1b1/0x800 [ 627.867834] ? finish_task_switch+0x1ca/0x840 [ 627.872326] ? syscall_return_slowpath+0x5c0/0x5c0 [ 627.877249] ? syscall_return_slowpath+0x30f/0x5c0 [ 627.882175] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 627.887543] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 627.892382] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 627.897574] RIP: 0033:0x455a09 [ 627.900756] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 627.908469] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 627.915732] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 627.922996] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 627.930256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 627.937521] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 627.944781] [ 627.946401] Allocated by task 3232: [ 627.950026] save_stack+0x43/0xd0 [ 627.953474] kasan_kmalloc+0xc4/0xe0 [ 627.957181] kmem_cache_alloc_trace+0x152/0x780 [ 627.961847] fuse_fill_super+0xc92/0x1e20 [ 627.965989] mount_nodev+0x6b/0x110 [ 627.969614] fuse_mount+0x2c/0x40 [ 627.973062] mount_fs+0xae/0x328 [ 627.976423] vfs_kern_mount.part.34+0xd4/0x4d0 [ 627.980999] do_mount+0x564/0x3070 [ 627.984536] ksys_mount+0x12d/0x140 [ 627.988160] __x64_sys_mount+0xbe/0x150 [ 627.992131] do_syscall_64+0x1b1/0x800 [ 627.996013] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 628.001189] [ 628.002806] Freed by task 2388: [ 628.006080] save_stack+0x43/0xd0 [ 628.009531] __kasan_slab_free+0x11a/0x170 [ 628.013761] kasan_slab_free+0xe/0x10 [ 628.017552] kfree+0xd9/0x260 [ 628.020653] rcu_process_callbacks+0xa69/0x15f0 [ 628.025315] __do_softirq+0x2e0/0xaf5 [ 628.029102] [ 628.030722] The buggy address belongs to the object at ffff8801d7915240 [ 628.030722] which belongs to the cache kmalloc-1024 of size 1024 [ 628.043548] The buggy address is located 712 bytes inside of [ 628.043548] 1024-byte region [ffff8801d7915240, ffff8801d7915640) [ 628.055497] The buggy address belongs to the page: [ 628.060423] page:ffffea00075e4500 count:1 mapcount:0 mapping:ffff8801d7914040 index:0xffff8801d79144c0 compound_mapcount: 0 [ 628.071686] flags: 0x2fffc0000008100(slab|head) [ 628.076353] raw: 02fffc0000008100 ffff8801d7914040 ffff8801d79144c0 0000000100000003 [ 628.084233] raw: ffffea00072c08a0 ffffea0006e5eca0 ffff8801da800ac0 0000000000000000 [ 628.092101] page dumped because: kasan: bad access detected [ 628.097793] [ 628.099406] Memory state around the buggy address: [ 628.104328] ffff8801d7915400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 628.111678] ffff8801d7915480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 628.119027] >ffff8801d7915500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 628.126372] ^ [ 628.129988] ffff8801d7915580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 628.137360] ffff8801d7915600: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 628.144705] ================================================================== [ 628.152048] Disabling lock debugging due to kernel taint [ 628.157488] Kernel panic - not syncing: panic_on_warn set ... [ 628.157488] [ 628.164872] CPU: 0 PID: 3232 Comm: syz-executor5 Tainted: G B 4.17.0-rc5+ #54 [ 628.173436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 628.182779] Call Trace: [ 628.185365] dump_stack+0x1b9/0x294 [ 628.188987] ? dump_stack_print_info.cold.2+0x52/0x52 [ 628.194171] ? lock_downgrade+0x8e0/0x8e0 [ 628.198315] ? vprintk_default+0x28/0x30 [ 628.202368] ? __lock_acquire+0x37b0/0x5140 [ 628.206681] panic+0x22f/0x4de [ 628.209870] ? add_taint.cold.5+0x16/0x16 [ 628.214012] ? add_taint.cold.5+0x5/0x16 [ 628.218070] ? do_raw_spin_unlock+0x9e/0x2e0 [ 628.222477] ? __lock_acquire+0x3888/0x5140 [ 628.226886] kasan_end_report+0x47/0x4f [ 628.230853] kasan_report.cold.7+0x76/0x2fe [ 628.235188] __asan_report_load8_noabort+0x14/0x20 [ 628.240108] __lock_acquire+0x3888/0x5140 [ 628.244249] ? lock_downgrade+0x8e0/0x8e0 [ 628.248395] ? kasan_check_read+0x11/0x20 [ 628.252539] ? rcu_is_watching+0x85/0x140 [ 628.256682] ? debug_check_no_locks_freed+0x310/0x310 [ 628.261868] ? is_bpf_text_address+0xd7/0x170 [ 628.266356] ? kernel_text_address+0x79/0xf0 [ 628.270759] ? __unwind_start+0x166/0x330 [ 628.274898] ? __kernel_text_address+0xd/0x40 [ 628.279389] ? unwind_get_return_address+0x61/0xa0 [ 628.284314] ? __save_stack_trace+0x7e/0xd0 [ 628.288632] ? save_stack+0xa9/0xd0 [ 628.292254] ? save_stack+0x43/0xd0 [ 628.295875] ? __kasan_slab_free+0x11a/0x170 [ 628.300275] ? kasan_slab_free+0xe/0x10 [ 628.304241] ? kfree+0xd9/0x260 [ 628.307517] ? unregister_shrinker+0x216/0x3a0 [ 628.312092] ? deactivate_locked_super+0x70/0x100 [ 628.316926] ? mount_nodev+0xfa/0x110 [ 628.320723] ? fuse_mount+0x2c/0x40 [ 628.324342] ? mount_fs+0xae/0x328 [ 628.327877] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 628.332623] ? do_mount+0x564/0x3070 [ 628.336330] ? ksys_mount+0x12d/0x140 [ 628.340122] ? graph_lock+0x170/0x170 [ 628.343916] ? kasan_check_read+0x11/0x20 [ 628.348058] ? do_raw_spin_unlock+0x9e/0x2e0 [ 628.352463] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 628.357044] ? print_usage_bug+0xc0/0xc0 [ 628.361103] ? kasan_check_write+0x14/0x20 [ 628.365330] ? do_raw_spin_lock+0xc1/0x200 [ 628.369561] lock_acquire+0x1dc/0x520 [ 628.373356] ? fuse_kill_sb_anon+0x50/0xb0 [ 628.377584] ? lock_release+0xa10/0xa10 [ 628.381553] ? check_same_owner+0x320/0x320 [ 628.385864] ? quarantine_put+0xeb/0x190 [ 628.389918] ? rcu_note_context_switch+0x710/0x710 [ 628.394841] ? __might_sleep+0x95/0x190 [ 628.398813] down_write+0x87/0x120 [ 628.402348] ? fuse_kill_sb_anon+0x50/0xb0 [ 628.406578] ? down_read+0x1b0/0x1b0 [ 628.410287] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 628.415817] fuse_kill_sb_anon+0x50/0xb0 [ 628.419957] deactivate_locked_super+0x97/0x100 [ 628.424620] ? fuse_get_root_inode+0x190/0x190 [ 628.429195] mount_nodev+0xfa/0x110 [ 628.432813] fuse_mount+0x2c/0x40 [ 628.436262] mount_fs+0xae/0x328 [ 628.439626] vfs_kern_mount.part.34+0xd4/0x4d0 [ 628.444203] ? may_umount+0xb0/0xb0 [ 628.447825] ? _raw_read_unlock+0x22/0x30 [ 628.451965] ? __get_fs_type+0x97/0xc0 [ 628.455844] do_mount+0x564/0x3070 [ 628.459379] ? copy_mount_string+0x40/0x40 [ 628.463606] ? rcu_pm_notify+0xc0/0xc0 [ 628.467494] ? copy_mount_options+0x5f/0x380 [ 628.471898] ? rcu_read_lock_sched_held+0x108/0x120 [ 628.476908] ? kmem_cache_alloc_trace+0x616/0x780 [ 628.481751] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 628.487285] ? _copy_from_user+0xdf/0x150 [ 628.491428] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 628.496960] ? copy_mount_options+0x285/0x380 [ 628.501453] ksys_mount+0x12d/0x140 [ 628.505078] __x64_sys_mount+0xbe/0x150 [ 628.509047] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 628.514056] do_syscall_64+0x1b1/0x800 [ 628.517937] ? finish_task_switch+0x1ca/0x840 [ 628.522429] ? syscall_return_slowpath+0x5c0/0x5c0 [ 628.527353] ? syscall_return_slowpath+0x30f/0x5c0 [ 628.532275] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 628.537633] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 628.542472] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 628.547653] RIP: 0033:0x455a09 [ 628.550832] RSP: 002b:00007fac4c50e808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 628.558538] RAX: ffffffffffffffda RBX: 0000000000000015 RCX: 0000000000455a09 [ 628.565800] RDX: 00000000004c1eb6 RSI: 0000000020000040 RDI: 00000000004de0c5 [ 628.573062] RBP: 0000000000000002 R08: 00007fac4c50e820 R09: 0000000000000000 [ 628.580323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 628.587582] R13: 0000000020000040 R14: 0000000000000000 R15: 0000000000000000 [ 628.595305] Dumping ftrace buffer: [ 628.598831] (ftrace buffer empty) [ 628.602517] Kernel Offset: disabled [ 628.606118] Rebooting in 86400 seconds..