[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   16.098392] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   20.189264] random: sshd: uninitialized urandom read (32 bytes read)
[   20.555175] random: sshd: uninitialized urandom read (32 bytes read)
[   21.417449] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts.
[   26.845648] random: sshd: uninitialized urandom read (32 bytes read)
2018/07/09 18:16:43 fuzzer started
[   28.357715] random: cc1: uninitialized urandom read (8 bytes read)
2018/07/09 18:16:46 dialing manager at 10.128.0.26:44551
2018/07/09 18:16:49 syscalls: 1785
2018/07/09 18:16:49 code coverage: enabled
2018/07/09 18:16:49 comparison tracing: enabled
2018/07/09 18:16:49 setuid sandbox: enabled
2018/07/09 18:16:49 namespace sandbox: enabled
2018/07/09 18:16:49 fault injection: enabled
2018/07/09 18:16:49 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2018/07/09 18:16:49 net packed injection: enabled
[   34.071964] random: crng init done
18:17:52 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x1, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0x0, &(0x7f0000000040)=""/58, &(0x7f00000000c0)=0x3a)
pipe2(&(0x7f00008df000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r1, 0x407, 0x0)
write(r2, &(0x7f00004abf1b)="ae", 0x1)
r3 = msgget$private(0x0, 0x439)
getresuid(&(0x7f0000000100), &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000200))
getgroups(0x4, &(0x7f0000000380)=[0xee00, 0xee00, <r5=>0xffffffffffffffff, 0xffffffffffffffff])
stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0))
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000580)=<r6=>0x0)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000600))
msgctl$IPC_SET(r3, 0x1, &(0x7f0000000640)={{0x0, r4, r5, 0x0, 0x0, 0x0, 0x7f}, 0xffffffffffffff0a, 0x8, 0x8000, 0x0, 0x8, 0x0, r6})

18:17:52 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$vsock_dgram(0x28, 0x2, 0x0)
getpeername(r0, &(0x7f0000000300)=@ipx, &(0x7f00000001c0)=0x80)

18:17:52 executing program 7:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000240), 0x8)
dup2(r0, r1)

18:17:52 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000000200)=ANY=[@ANYBLOB="0002000033"])

18:17:52 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000040)=0x4006, 0x4)
sendto$inet6(r1, &(0x7f00000001c0)="0501000005006e0000000000ffa2ada33f93820fd903378c39160aaacb57a80000061a80e19e33e3c2e7725f4a58611537a0be625ef7402810fadc5712f29508c008e265756fe5eb8f590e78ecfffc27d9e9aba5568a12840f2a38d18de194fbc420ec249784d63babc905000000000000000000000000000000", 0x7a, 0x0, &(0x7f00000000c0)={0xa, 0x100200000800, 0x2, @local={0xfe, 0x80, [], 0xaa}}, 0x1c)

18:17:52 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)={0x9, 0x1, 0x3, 0x400000bff}, 0x2c)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r0, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)

18:17:52 executing program 6:
sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, 0x0, 0x0, 0x0, 0x0, {0x3}, [@FOU_ATTR_PORT={0x8, 0x1}, @FOU_ATTR_PORT={0x8, 0x1}, @FOU_ATTR_PORT={0x8, 0x1}, @FOU_ATTR_PORT={0x8, 0x1}, @FOU_ATTR_PORT={0x8, 0x1}, @FOU_ATTR_PORT={0x8, 0x1}]}, 0x44}, 0x1}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00003cefe4)={&(0x7f0000000300)={0x10, 0x34000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)=ANY=[@ANYBLOB="ceff00002e00fd060000000000001d00030000000c0000026200000000000000"], 0x1}, 0x1}, 0x0)

18:17:52 executing program 1:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0)
r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f00000001c0)=""/38, 0xfe1f)

[   96.181557] IPVS: ftp: loaded support on port[0] = 21
[   96.194295] IPVS: ftp: loaded support on port[0] = 21
[   96.202991] IPVS: ftp: loaded support on port[0] = 21
[   96.240271] IPVS: ftp: loaded support on port[0] = 21
[   96.242225] IPVS: ftp: loaded support on port[0] = 21
[   96.250356] IPVS: ftp: loaded support on port[0] = 21
[   96.283644] IPVS: ftp: loaded support on port[0] = 21
[   96.290898] IPVS: ftp: loaded support on port[0] = 21
[   97.887086] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.893493] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.904876] device bridge_slave_0 entered promiscuous mode
[   97.913200] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.919597] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.927030] device bridge_slave_0 entered promiscuous mode
[   97.945734] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.952151] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.962682] device bridge_slave_0 entered promiscuous mode
[   97.970986] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.977656] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.986354] device bridge_slave_0 entered promiscuous mode
[   98.003764] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.010168] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.027146] device bridge_slave_0 entered promiscuous mode
[   98.040325] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.046798] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.057909] device bridge_slave_1 entered promiscuous mode
[   98.065328] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.071761] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.078914] device bridge_slave_0 entered promiscuous mode
[   98.086303] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.092692] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.100137] device bridge_slave_1 entered promiscuous mode
[   98.108377] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.114752] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.128792] device bridge_slave_1 entered promiscuous mode
[   98.138977] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.145367] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.152759] device bridge_slave_0 entered promiscuous mode
[   98.161085] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.167500] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.174925] device bridge_slave_1 entered promiscuous mode
[   98.182519] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.188907] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.196452] device bridge_slave_1 entered promiscuous mode
[   98.210359] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.219068] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.227420] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.234653] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.241137] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.258086] device bridge_slave_1 entered promiscuous mode
[   98.278577] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.285728] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.292135] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.309309] device bridge_slave_1 entered promiscuous mode
[   98.323921] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.332496] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.338938] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.348009] device bridge_slave_0 entered promiscuous mode
[   98.356692] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.366007] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.373841] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.381465] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.390503] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.407914] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.436743] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.484968] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.492961] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.499400] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.517954] device bridge_slave_1 entered promiscuous mode
[   98.530625] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.591081] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[   98.647048] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.700424] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.709662] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[   98.743066] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.755860] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.765201] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.782943] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.803548] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.846216] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   98.856008] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.864647] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.880960] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.894420] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready
[   98.905304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   98.933830] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.943962] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   98.987330] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   99.047935] bond0: Enslaving bond_slave_0 as an active interface with an up link
[   99.172798] bond0: Enslaving bond_slave_1 as an active interface with an up link
[   99.279874] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.297994] team0: Port device team_slave_0 added
[   99.313195] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.331362] team0: Port device team_slave_0 added
[   99.372870] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.394626] team0: Port device team_slave_0 added
[   99.409484] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   99.421715] team0: Port device team_slave_1 added
[   99.428656] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.435923] team0: Port device team_slave_0 added
[   99.442828] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   99.459579] team0: Port device team_slave_1 added
[   99.467539] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.478929] team0: Port device team_slave_0 added
[   99.491421] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   99.508388] team0: Port device team_slave_1 added
[   99.521537] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.534383] team0: Port device team_slave_0 added
[   99.559512] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   99.573747] team0: Port device team_slave_1 added
[   99.587395] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   99.594392] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   99.607638] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   99.619146] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   99.626459] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   99.647234] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   99.660006] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   99.667180] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   99.674942] team0: Port device team_slave_1 added
[   99.683140] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[   99.695056] team0: Port device team_slave_1 added
[   99.702123] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   99.709079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   99.722537] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   99.738872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   99.747114] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   99.756080] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.763333] team0: Port device team_slave_0 added
[   99.769773] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   99.783307] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   99.792636] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[   99.802957] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   99.810098] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   99.818415] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   99.836734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   99.847060] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   99.858574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   99.867125] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   99.874680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   99.882492] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   99.891360] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   99.898486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   99.906213] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   99.915580] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[   99.922818] team0: Port device team_slave_0 added
[   99.930048] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[   99.937472] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   99.951749] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   99.973250] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[   99.980361] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   99.988747] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   99.996750] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  100.004577] team0: Port device team_slave_1 added
[  100.011888] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  100.019515] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.027896] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  100.036937] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  100.049800] team0: Port device team_slave_1 added
[  100.064249] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.073386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  100.088311] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  100.102378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.113382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.121572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  100.129353] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  100.136731] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.144494] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.153935] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.163185] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready
[  100.171587] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.181049] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.189562] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.197335] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.205908] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.212985] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.241534] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.266830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  100.280821] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  100.288390] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.296394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.304052] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.311906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.319782] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.327500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.335398] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.343147] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.350757] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.358475] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.370880] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.379971] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  100.394425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.407040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.417507] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.424602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.432665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.442221] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.449584] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.457713] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.471299] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  100.505244] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  100.536272] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.546078] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.554730] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.595773] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  100.604804] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.619556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.719547] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.726723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.737983] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.746722] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  100.753870] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.762633] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  101.460009] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.466454] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.473210] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.479907] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.496897] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  101.512335] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.518743] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.525346] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.531710] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.552428] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  101.561141] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.567521] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.574155] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.580624] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.589532] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  101.597691] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.604072] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.610758] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.617133] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.624854] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  101.634206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  101.641686] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  101.649631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  101.657000] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  101.668197] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.674669] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.681296] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.687672] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.695172] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  101.712712] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.719150] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.725802] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.732158] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.739917] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  102.011703] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.018118] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.024746] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.031174] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.045493] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  102.054361] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.060757] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.067406] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.073780] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.081469] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  102.687416] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  102.699310] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  102.722413] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  102.730334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  105.361855] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.467679] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.550685] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.575823] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.604578] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.765745] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.785879] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  105.865642] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  105.889050] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.927153] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  105.968502] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  105.977551] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  106.086302] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.139538] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  106.163944] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.170219] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.178452] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.230681] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.236958] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.247498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.265654] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  106.295334] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.304136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.315421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.397639] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.404161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.415691] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.452422] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.458654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.471211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.490723] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  106.523936] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.534083] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.546447] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.574425] 8021q: adding VLAN 0 to HW filter on device team0
[  106.677986] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.686467] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.695319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  106.715413] 8021q: adding VLAN 0 to HW filter on device team0
[  106.729151] 8021q: adding VLAN 0 to HW filter on device team0
[  106.869134] 8021q: adding VLAN 0 to HW filter on device team0
[  106.890585] 8021q: adding VLAN 0 to HW filter on device team0
[  106.912601] 8021q: adding VLAN 0 to HW filter on device team0
[  106.953894] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  106.960103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  106.969665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  107.017603] 8021q: adding VLAN 0 to HW filter on device team0
[  107.328411] 8021q: adding VLAN 0 to HW filter on device team0
18:18:05 executing program 4:
getpid()
pipe2(&(0x7f0000989000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x10000)
bind$vsock_dgram(r1, &(0x7f00000000c0)={0x28, 0x0, 0x0, @hyper}, 0x10)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
pipe2(&(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x4000)
write$sndseq(r4, &(0x7f0000011fd2), 0xffffffee)
read(r3, &(0x7f0000000180)=""/126, 0x2000036b)
ioctl$FIONREAD(r4, 0x541b, &(0x7f0000604ffc))
dup2(r0, r2)

18:18:05 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000044ff8)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x4924924924922c9, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000200)=@file={0x0, './file0\x00'}, 0x6e)
connect$unix(r1, &(0x7f0000681000)=@abs, 0x8)

18:18:05 executing program 7:
unshare(0x20600)
syz_emit_ethernet(0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="76001400000000000e000000000000000000000001fe90000000000000003cf1cf65f10e3c7d07000000000000bb000000000000000000000000000000", @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], &(0x7f0000001340))

18:18:05 executing program 7:
r0 = inotify_init1(0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$getownex(r1, 0x10, &(0x7f000045fff8)={0x0, <r2=>0x0})
ptrace$setopts(0x4206, r2, 0x0, 0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, <r3=>0x0})
ptrace(0x4207, r3)
ptrace$setregset(0x4203, r3, 0xffffffffff600004, &(0x7f0000000100)={&(0x7f0000000140)})
ptrace(0x4208, r2)

18:18:05 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = userfaultfd(0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000440)}}, 0x20)
write$binfmt_elf32(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="7f"], 0x1)
dup2(r0, r2)
pipe(&(0x7f0000000280))
socket(0x0, 0x0, 0x0)

18:18:05 executing program 7:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000080)="025cc83d6d345f8f762070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_opts(r1, 0x29, 0x48, &(0x7f0000325f23)=""/221, &(0x7f0000000000)=0xffcd)

18:18:05 executing program 5:
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "f9f744", 0x14, 0x0, 0x0, @loopback={0x0, 0x1}, @remote={0xfe, 0x80, [], 0xbb}, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, &(0x7f0000001340))

18:18:05 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:05 executing program 6:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000002c0)="025cc83d6d345f8f762070")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r0, 0x891b, &(0x7f0000000200)={'teql0\x00', {0x2, 0x4e20}})
getsockopt$XDP_STATISTICS(r4, 0x11b, 0x7, &(0x7f0000000080), &(0x7f0000000140)=0x18)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000000c0)="c4824da82b66ba2100b801000000efb9270900000f323640a7650f30c4e2899c8e02000000f02046452ef3440f6fb800f0ff7fc42101dbc40f2047"}], 0x0, 0x0, &(0x7f0000000080), 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000001e00fb034d564b0000000001"])
ioctl$KVM_GET_DEBUGREGS(r3, 0x5000aea5, &(0x7f0000000180))

[  109.254675] serio: Serial port pts0
18:18:05 executing program 5:
r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x9, 0x8000)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000040)={@rand_addr=0x100000001, @dev={0xac, 0x14, 0x14, 0xf}, 0x1, 0x3, [@multicast1=0xe0000001, @rand_addr=0x401, @local={0xac, 0x14, 0x14, 0xaa}]}, 0x1c)
ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000080)={0x56, 0x5, 0x1, {0x1, 0x6}, {0x45, 0x7fffffff}, @period={0x59, 0x55, 0x5, 0x7, 0x20, {0x3, 0x7, 0x8, 0x7}, 0x6, [0x7, 0x5, 0x8, 0x4, 0x0, 0x6]}})
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000180)={{0x7fff, 0x100000001}, 0x0, 0x6, 0x1, {0x5, 0x800}, 0x10000, 0x2295})
write(r1, &(0x7f0000000140)='-5', 0xa0e)

18:18:05 executing program 2:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x3, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000040)={0x7, 0x70, 0x4, 0x9, 0x0, 0xfffffffffffffffb, 0x0, 0x401, 0x48201, 0x1, 0x9, 0x8, 0x0, 0x1ad, 0x6, 0x4, 0x5, 0x0, 0x401, 0x5, 0xffff, 0xf52, 0x8000, 0x1, 0x1c, 0x55a, 0x2, 0x4, 0xf1d, 0x6257, 0x2, 0x4, 0xb428, 0x0, 0xdc9f, 0x800, 0x5, 0x3f, 0x0, 0x3ff, 0x0, @perf_bp={&(0x7f0000000000), 0x8}, 0x0, 0x2, 0x8001, 0x7, 0x9, 0x3f, 0x401})

18:18:05 executing program 7:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0xf, 0x4, 0x1, 0xffffffff80000000, 0x20}, 0x2c)
ioctl$int_out(r0, 0x5462, &(0x7f0000000000))
ioctl$int_out(r0, 0x5462, &(0x7f0000000040))

18:18:05 executing program 6:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f0000000040)=0x4000040, 0x4)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x9}, 0x1c)
sendmsg(r1, &(0x7f000001b000)={0x0, 0xfffffff5, &(0x7f0000019fa0), 0x1f2, &(0x7f000001ef08)}, 0x0)
socketpair(0x14, 0x5, 0x7ff, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, &(0x7f0000000100)={0x100000001, 0x9, 0x4, 0x3}, 0x10)
recvmsg(r1, &(0x7f0000000340)={&(0x7f0000000080)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000000000), 0x0, &(0x7f00000002c0)=""/89, 0x59}, 0x40002042)

18:18:06 executing program 2:
r0 = socket(0x15, 0x80005, 0x0)
bind(r0, &(0x7f00000000c0)=@un=@abs, 0x80)
write(r0, &(0x7f0000000000)="5a8002341f33134947c85168b92fe583c5bd1029a4f8ce4650476d6577a07b4da398d3be72ee6e8599afe681adc630e4e2f1373fd9b0a89da2ab7d6df75fbcec0782669a8c8ef732e0db7a8521bb77a3086fed9d367031943b95e7fb3401b797900c6510e5", 0x14c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000080)={0xbc}, 0x4)
socket$can_bcm(0x1d, 0x2, 0x2)

18:18:06 executing program 6:
syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', &(0x7f0000000140)='./file0\x00', 0x4, 0x0, &(0x7f0000000200), 0x1000010, &(0x7f0000000240)={[{@norock='norock', 0x2c}]})
syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x100000001, 0x20480)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x0, 0x0)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @my=0x0}, 0x10)

18:18:06 executing program 7:
r0 = socket(0xa, 0x2000000000002, 0x0)
getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000140), &(0x7f0000000180)=0x8)
socket(0x5, 0x3, 0x2)

[  109.492511] ISOFS: Unable to identify CD-ROM format.
[  109.537616] ISOFS: Unable to identify CD-ROM format.
18:18:06 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = dup(r0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f00000001c0))
r2 = syz_init_net_socket$bt_sco(0x1f, 0x3, 0x3)
shutdown(r2, 0x0)
recvmmsg(r2, &(0x7f00000068c0)=[{{&(0x7f00000055c0)=@ax25, 0x80, &(0x7f0000005880), 0x0, &(0x7f00000058c0)=""/4096, 0x1000}}], 0x43, 0x0, &(0x7f0000006b00)={0x77359400})
ioctl$sock_SIOCADDDLCI(r2, 0x8980, &(0x7f0000000040)={'ip6gre0\x00\x00\x00$\x00', 0x6})

18:18:06 executing program 5:
r0 = socket$inet_sctp(0x2, 0x800000000001, 0x84)
connect$inet(r0, &(0x7f0000f6fff0)={0x2, 0x4e23, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
sendto$inet(r0, &(0x7f00000000c0)="cf", 0x1, 0x0, &(0x7f0000a04000)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x4)
recvmmsg(r1, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f00000007c0)=""/160, 0xffffffffffffffd9}}], 0x1, 0x0, &(0x7f0000000080))
writev(r1, &(0x7f000051c000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560284470080ffe00600000000000000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x48}], 0x1)

18:18:06 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
clone(0xbd319029ddd0a11b, &(0x7f00000006c0), &(0x7f0000000200), &(0x7f0000000040), &(0x7f0000000080))
r1 = memfd_create(&(0x7f0000000000)='\x00', 0x2)
getsockopt$inet_dccp_buf(r1, 0x21, 0xd, &(0x7f0000000080)=""/156, &(0x7f0000000140)=0x9c)

18:18:06 executing program 7:
syz_open_dev$loop(&(0x7f000091dff5)='/dev/loop#\x00', 0x0, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000009fe8)={0xaa})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f000000d000)={{&(0x7f0000909000/0x4000)=nil, 0x4000}, 0x1})
clone(0x0, &(0x7f0000000240), &(0x7f0000001ffc), &(0x7f00000001c0), &(0x7f0000000040))
madvise(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x10200000008)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x1, 0x0)
ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f0000000040))

[  109.820071] QAT: Invalid ioctl
[  109.820353] IPVS: ftp: loaded support on port[0] = 21
[  109.879659] IPVS: ftp: loaded support on port[0] = 21
[  110.042857] serio: Serial port pts1
18:18:06 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x800, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000140)={0x80, 0x2, 0x4, 0x10000, 0x2, 0xfffffffffffffff9})
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000200))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00009b9000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000080)="baf80c66b88bceea8c66efbafc0cec0f011e0030660f73f6b8f32e0fc10126660f38157b5c64f0839f63ed240fc7af1e10650f011ec4000f205bbaf80c66b8cc8a5a8466efbafc0cb81c3cef", 0x4c}], 0x1, 0x0, &(0x7f0000000140), 0x0)

18:18:06 executing program 6:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
unshare(0x40000600)
ioctl$sock_ifreq(r0, 0x8983, &(0x7f0000000200)={"060000006170b002002000", @ifru_data=&(0x7f0000000240)="b4e84eea10659f86e0a689ac18d920424b8321033bd22c9a3b35310f74180925"})

18:18:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000009000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f00000014c0)="0f300fc72c0f01cbbaf80c66b8d80ccf8466efbafc0c66ed360f213f0f01cf66b8010000000f01d90f01c9ea9436430066b9ec02000066b80400000066ba000000000f30", 0x44}], 0x1, 0x3, &(0x7f0000000040)=[@cr4={0x1}], 0x1)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000000040))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x490000, 0x0)
syz_mount_image$vfat(&(0x7f0000000100)='vfat\x00', &(0x7f0000000140)='./file0\x00', 0x9, 0x5, &(0x7f0000001380)=[{&(0x7f0000000180)="e4659e2a191add14e69d83bf4608ab841358751a652cc0a7db472db49f4e7a8bf74e514c10bb2b8da48ee448220bfd0e71a2d0a0fcedaa8249b5a7189f2c676690d6793c18530f084432517d8e38959d6fdb5b2f97e908c4b941858d0f4af6694af0", 0x62, 0x37c}, {&(0x7f00000002c0)="a6c7d3712f801bec99dc67216cd05275a5cc67bb47ac8417340a8859fb36c87d07065733bb5fdba74aae84e8ba272487c956d1a106d0df8b74f30766609099ae53478120766ea034cca060b886746e3198a921d86e3b11eae0b5bc0374826a35f059c4b43c28f5bea7133309d922164e4b5226987fdee73f0529bf3b45967c24c77d45ac0a990a8bbbc82e98eecfc57a01b19adeaa05fe69dd5c95bda4b2f372a33e9486e56422a2bdfd09517b7cbe7ada939debdb1e63cc", 0xb8, 0xfffffffffffffffc}, {&(0x7f0000000380)="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", 0x1000, 0x7}, {&(0x7f0000000200)="b344db55a2c6c77cbc7194b51f1278a6d72ce6e7", 0x14, 0x31}, {&(0x7f0000000240)="6e330cb67c049be3e0e95bb70d832f31ee932e574fbff6222c670e5b62d47f9cc27bbfdae2de", 0x26}], 0x100000, &(0x7f0000001400)={[{@utf8='utf8=1', 0x2c}, {@shortname_win95='shortname=win95', 0x2c}, {@nonumtail='nnonumtail=1', 0x2c}, {@utf8='utf8=1', 0x2c}, {@utf8='utf8=1', 0x2c}, {@shortname_lower='shortname=lower', 0x2c}, {@fat=@tz_utc='tz=UTC', 0x2c}, {@uni_xlate='uni_xlate=1', 0x2c}, {@uni_xlate='uni_xlate=1', 0x2c}]})
pipe(&(0x7f0000001480))

18:18:06 executing program 7:
r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x80011, r0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x800, 0x0)
connect$llc(r1, &(0x7f00000000c0)={0x1a, 0x30b, 0x1b18, 0x0, 0x0, 0x3f, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x10)
futex(&(0x7f0000001ac0), 0x3, 0x0, &(0x7f0000000080), &(0x7f0000001c40), 0x0)

18:18:06 executing program 4:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cuse\x00', 0x82, 0x0)
io_setup(0x9, &(0x7f0000000240)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0}])
io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000)="10000000f0ffffffff00000000855da0", 0x10}])

18:18:06 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0xc)
writev(r0, &(0x7f0000fb5ff0)=[{&(0x7f0000fb4000)="1f00000002031900000007000000068100023b0509000100010100ff3ffe58", 0x1f}], 0x1)
r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xfffffffffffffffc, 0x80200)
ioctl$LOOP_GET_STATUS64(r1, 0x4c05, &(0x7f0000000040))
r2 = socket$netlink(0x10, 0x3, 0xc)
writev(r2, &(0x7f0000fb5ff0)=[{&(0x7f0000fb6000)="1f00000002031900000007000000e3800802bb0509000100010100493ffe58", 0x1f}], 0x1)
close(r0)

18:18:06 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

[  110.132976] IPVS: ftp: loaded support on port[0] = 21
[  110.180136] serio: Serial port pts0
18:18:06 executing program 1:
r0 = openat$full(0xffffffffffffff9c, &(0x7f00000018c0)='/dev/full\x00', 0x280, 0x0)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000001900)={0x401}, 0x4)
r1 = memfd_create(&(0x7f0000000100)="2d42d54e49c56aba707070f00884a26d003a2900bb8dacac76617d6b6e6823cb290fc8c03a9c631064eea98b4363ad899c6bdec5e936dd55a93dcd4a78aa8f7eb93061a9b2044b98933f8851f7d61da1ce8b19eaefe3abb6a52434d6fe370fe7d924ce20ab4eaec9bdd36740e127730e90f2cd72b828", 0x0)
write(r1, &(0x7f0000000080)="a85883156f794c05e0b02a03983b5addde9e46e1145c5c3fcb185a36d20d52d097399fd15648c664", 0x28)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000001380)=<r2=>0x0)
lstat(&(0x7f00000013c0)='./file0\x00', &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001480)={0x0, 0x0, <r4=>0x0}, &(0x7f00000014c0)=0xc)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001500)={<r5=>0x0}, &(0x7f0000001540)=0xc)
r6 = getuid()
getresgid(&(0x7f0000001580), &(0x7f00000015c0)=<r7=>0x0, &(0x7f0000001600))
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000001640)=<r8=>0x0)
open(&(0x7f0000001880)='./file0\x00', 0x20000, 0x40)
stat(&(0x7f0000001680)='./file1\x00', &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getgroups(0x8, &(0x7f0000001740)=[0xee01, 0xee01, 0xee01, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, <r10=>0xee00, 0xee01])
sendmmsg$unix(r1, &(0x7f0000001840)=[{&(0x7f0000000180)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000200)="df062f60397ec3c7406ae7834b5388ef27e922e15bbf2b0fdcbb9d219ff5cd69e1b53ec5ea01c6fede6200658232fcf6dd04096aa404e74cd633d0a4cec3cc248fff574ad1ee9fcfc36beecf0bd2ad25068a6c70beba3886de673336eda0015eaf2079f1004298dc7a6eac4ea3daf04797c34593280f9e3108c3d4db29c3e21aa9503540ae904a62e3dbdce4eb6b2c6b35b47f4237fc4968c784b06b59ab46fc142463b3c1227e532978159ee5b17b7498c8ff31fd2a0fd764b65a001887980707541efd62f2fd3c3c8d6b", 0xcb}, {&(0x7f0000000300)="b280f27b0382e762f633645adcb2bb868e16a46bc9d0c2fcc6cd89330510620c77ce43900ce7db95977454a7bf753a362dbb48b58de3cd6b4e9dd74dbbfd3d76283a", 0x42}, {&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000000000)="c1db9b585f6f4bac04d3bd5b8159a032236e16b80d8a92be50d0cd16a55f1107af7d931bf97ba8d25f7b9d70da", 0x2d}], 0x4, &(0x7f0000001780)=[@rights={0x28, 0x1, 0x1, [r1, r1, r1, r1, r1]}, @cred={0x20, 0x1, 0x2, r2, r3, r4}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @rights={0x20, 0x1, 0x1, [r1, r1, r1]}, @cred={0x20, 0x1, 0x2, r8, r9, r10}], 0xa8, 0x40}], 0x1, 0x14)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r1, &(0x7f0000317000), 0xff8)
umount2(&(0x7f0000000040)='./file0\x00', 0x0)

[  110.200952] QAT: Invalid ioctl
18:18:06 executing program 7:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000100000002, &(0x7f0000000180)=0x40000000000074, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10)
r1 = dup(r0)
ioctl$PPPIOCGMRU(r1, 0x80047453, &(0x7f0000000000))
fcntl$setstatus(r0, 0x4, 0x42000)
sendto$inet(r0, &(0x7f0000a88f88), 0x2f38, 0x20008001, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10)

18:18:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000100))
r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x7fff, 0x40)
ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000040)=0xbf9)

18:18:06 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc1205531, &(0x7f00000000c0)={0x0, 0xfffffffffffffffc})
r1 = fanotify_init(0x58, 0x109800)
syncfs(r1)
r2 = dup(r1)
ioctl$EVIOCGSW(r2, 0x8040451b, &(0x7f0000000400)=""/243)
openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x84200, 0x0)

[  110.236872] QAT: Invalid ioctl
[  110.251753] IPVS: ftp: loaded support on port[0] = 21
[  110.263437] QAT: Invalid ioctl
[  110.291808] QAT: Invalid ioctl
18:18:06 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = gettid()
rt_sigprocmask(0x0, &(0x7f0000024000)={0xfffffffffffffffe}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000000)={0x29}, &(0x7f0000000040), &(0x7f00000000c0)={0x77359400}, 0x8)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x14, 0x4, @tid=r1}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f0000040fe0)={{}, {0x0, 0x9}}, &(0x7f0000000080))
r2 = socket(0x9, 0x6, 0x80000001)
setsockopt$bt_l2cap_L2CAP_CONNINFO(r2, 0x6, 0x2, &(0x7f0000000180)={0xfffffffffffffffd, 0x80000001, 0x6427, 0xffff}, 0x6)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb0}, 0x8, 0x0)
read(r3, &(0x7f0000000100)=""/128, 0x80)

[  110.313633] QAT: Invalid ioctl
[  110.333703] QAT: Invalid ioctl
[  110.350251] QAT: Invalid ioctl
18:18:06 executing program 4:
r0 = eventfd(0x80000001)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0)
r2 = timerfd_create(0x0, 0x0)
readv(r2, &(0x7f0000000180)=[{&(0x7f0000000280)=""/230, 0xe6}], 0x1)
write$eventfd(r0, &(0x7f00000000c0)=0xffffffffffffff90, 0x8)
write$eventfd(r0, &(0x7f0000000240), 0x8)
r3 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x80000001, 0x420000)
ioctl$TUNDETACHFILTER(r3, 0x401054d6, 0x0)
symlink(&(0x7f0000000100)='\x00', &(0x7f0000000140)='./file0\x00')
read$eventfd(r0, &(0x7f0000000000), 0x8)

[  110.365132] QAT: Invalid ioctl
[  110.381563] QAT: Invalid ioctl
[  110.397318] QAT: Invalid ioctl
[  110.409273] QAT: Invalid ioctl
[  110.429730] QAT: Invalid ioctl
[  110.442255] QAT: Invalid ioctl
[  110.451494] QAT: Invalid ioctl
[  110.454997] QAT: Invalid ioctl
[  110.458743] QAT: Invalid ioctl
[  110.471138] QAT: Invalid ioctl
[  110.485251] QAT: Invalid ioctl
[  110.496206] QAT: Invalid ioctl
[  110.499726] QAT: Invalid ioctl
[  110.505109] QAT: Invalid ioctl
[  110.510386] QAT: Invalid ioctl
[  110.513836] QAT: Invalid ioctl
[  110.519510] QAT: Invalid ioctl
[  110.522958] QAT: Invalid ioctl
[  110.526720] QAT: Invalid ioctl
[  110.536173] QAT: Invalid ioctl
[  110.550330] QAT: Invalid ioctl
[  110.553741] QAT: Invalid ioctl
[  110.557925] QAT: Invalid ioctl
18:18:07 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:07 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = dup2(r0, r0)
getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0x6d, &(0x7f0000000000), &(0x7f0000000080)=0x4)

18:18:07 executing program 6:
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070")
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ip6tnl0\x00', <r2=>0x0})
r3 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x80000000, 0x4001)
ioctl$KVM_GET_REGS(r3, 0x8090ae81, &(0x7f0000000140))
sendmsg$nl_route(r1, &(0x7f000001bfc8)={&(0x7f0000016000)={0x10}, 0xc, &(0x7f000000b000)={&(0x7f0000000a00)=@setlink={0x3c, 0x13, 0x409, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_GROUP={0x8, 0x1b}, @IFLA_XDP={0x14, 0x2b, [@nested={0x10, 0x3, [@typed={0xc, 0x0, @fd}]}]}]}, 0x3c}, 0x1}, 0x0)

18:18:07 executing program 7:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x0, 0x0)
read(r0, &(0x7f0000000400)=""/151, 0xffdf)
setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000200)={{0xc, @multicast1=0xe0000001, 0x4e24, 0x3, 'sh\x00', 0x1, 0x2254, 0x6f}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x4e20, 0x10003, 0x8000, 0xa2a, 0x8000000}}, 0x44)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))

18:18:07 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4106(gcm(aes)))\x00'}, 0x58)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="78733976000898fcffff6054be13cfe62785ce10", 0x14)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup2(r1, r0)
write$cgroup_subtree(r2, &(0x7f0000000380)={[{0x0, 'rdma', 0x20}, {0x0, 'cpu', 0x20}, {0x0, 'io', 0x20}, {0x0, 'io', 0x20}, {0x0, 'cpu', 0x20}]}, 0x18)
recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000180)=@pptp={0x0, 0x0, {0x0, @loopback}}, 0x80, &(0x7f0000000200), 0x0, &(0x7f0000000240)=""/223, 0xdf}}, {{&(0x7f00000010c0)=@nfc, 0x80, &(0x7f0000001240)=[{&(0x7f0000001180)=""/161, 0xa1}], 0x1}}], 0x2, 0x0, &(0x7f0000001400)={0x0, 0x1c9c380})

18:18:07 executing program 2:
r0 = socket(0x11, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'bridge0\x00', <r1=>0x0})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$packet(0x11, 0x800000000002, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f000095bffc)={0x0, 0x0, 0xfffffffffffffffc}, 0x4)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10)
setsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000000)={@remote={0xac, 0x14, 0x14, 0xbb}, @broadcast=0xffffffff, r1}, 0xc)
sendto$inet(r2, &(0x7f0000762fff), 0xfdc7, 0x0, &(0x7f000057bff0)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)

18:18:07 executing program 7:
r0 = epoll_create1(0x0)
r1 = timerfd_create(0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080))
timerfd_settime(r1, 0x0, &(0x7f0000000040)={{}, {0x0, 0x989680}}, &(0x7f0000037000))
epoll_wait(r0, &(0x7f00000000c0)=[{}], 0x1, 0xffffffff80000001)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000440)={0x7})

[  110.856097] netlink: 'syz-executor6': attribute type 3 has an invalid length.
[  110.865156] A link change request failed with some changes committed already. Interface ip6tnl0 may have been left with an inconsistent configuration, please check.
18:18:07 executing program 6:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4106(gcm(aes)))\x00'}, 0x58)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="78733976000898fcffff6054be13cfe62785ce10", 0x14)
r1 = accept$alg(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000180)=@pptp={0x0, 0x0, {0x0, @loopback}}, 0x80, &(0x7f0000000200), 0x0, &(0x7f0000000240)=""/223, 0xdf}}, {{&(0x7f00000010c0)=@nfc, 0x80, &(0x7f0000001240)}}], 0x2, 0x0, &(0x7f0000001400)={0x0, 0x1c9c380})

18:18:07 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  110.899195] netlink: 'syz-executor6': attribute type 3 has an invalid length.
[  110.913530] A link change request failed with some changes committed already. Interface ip6tnl0 may have been left with an inconsistent configuration, please check.
[  110.923146] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
18:18:07 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x20000000)
ioperm(0x0, 0x2, 0x0)
clone(0x0, &(0x7f0000000380), &(0x7f0000000080), &(0x7f0000c35ffc), &(0x7f0000b3bfff))
wait4(0x0, 0x0, 0x0, &(0x7f0000781f70))
clone(0x0, &(0x7f00000003c0), &(0x7f0000000500), &(0x7f0000000300), &(0x7f0000000340))

18:18:07 executing program 3:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:07 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:07 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:07 executing program 6:
r0 = socket$packet(0x11, 0x840002, 0x300)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc))
ioctl$TCSETS(r1, 0x5402, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3})
r2 = syz_open_pts(r1, 0x0)
ioctl$TIOCGLCKTRMIOS(r2, 0x5412, &(0x7f0000000000)={0x3})
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ppp\x00', 0x40000, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280)='/dev/net/tun\x00', 0x4000, 0x0)
pread64(r4, &(0x7f00000002c0)=""/171, 0xab, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r3, 0x0, 0x480, &(0x7f00000006c0), &(0x7f0000000700)=0x40)
getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000200)={'TPROXY\x00'}, &(0x7f0000000240)=0x1e)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0x100, 0xff1f)
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x2000, 0x0)
clock_gettime(0x0, &(0x7f0000000380)={<r6=>0x0, <r7=>0x0})
write$sndseq(r3, &(0x7f0000000540)=[{0x44, 0x3ff, 0x4, 0x3, @time={r6, r7+10000000}, {0x20, 0x7}, {0x10000, 0x40}, @ext={0xc3, &(0x7f00000003c0)="5afac21ac5d4e88a892e4b0c9f65ebc85e5c2d51a12166869c1b72c8f03e6ec49c9084bf92bb1e2d3bb6971bc274cadb5cffabba16266518f7f19a75ce10ea45b1c3c72336c59ac68a4d6892a759152adc9de9850660b11e9bd6892d9102095d2141cf426e3921512f497bd3298fd401f929abaaa3b394245417d17ca5d23d94e960c20fd542d90e97135b02b40750dd9f67ebe97bbe35d02bfd88172435edef449f671e7eb8733f04b0b04d9cbc9ad8461ba19369dc8094e84edd458845933388e7ba"}}, {0x73, 0x3ff, 0x0, 0x3f, @tick=0x54ac, {0x9, 0x1ff}, {0x2, 0x40}, @raw32={[0x846b, 0x2, 0x8]}}, {0x4, 0xfd8, 0x1ff, 0xffffffffffffff94, @time, {}, {0x6}, @queue={0xee, {0x1, 0xffff}}}, {0x1, 0x8, 0x7fff, 0xfffffffffffff403, @tick=0x4, {0xc0, 0x6}, {0x10000000000000, 0xffffffffffffffff}, @connect={{0x2, 0x6}, {0x6, 0x4}}}, {0x6, 0x2, 0x10000, 0x0, @time, {0x7fffffff, 0x9}, {0xff8, 0x3}, @result={0x200, 0xfff}}, {0x100, 0x1, 0x0, 0x2, @time={0x0, 0x989680}, {0x5, 0x5}, {0x30000000000000, 0x6}, @quote={{0x7, 0x8}, 0x80, &(0x7f0000000500)={0x2, 0x80000000, 0xffffffff, 0x401, @tick=0x80000001, {0xff, 0x2000000020}, {0x80, 0x4}, @quote={{0x3, 0x5}, 0x77c, &(0x7f00000004c0)={0x4, 0x9, 0x9, 0x7fffffff, @tick=0xde, {0x5667, 0xae6}, {0x1ff, 0x10001}, @raw8={"f5192ab009f124d8209b9d8b"}}}}}}, {0x1, 0x5, 0x400, 0x0, @tick=0x3, {0x3, 0x600000000000000}, {0xffffffffffff8000, 0x5}, @addr={0x4, 0x3f}}], 0x150)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000140)={{0x0, @broadcast=0xffffffff, 0x4e24, 0x4, 'none\x00', 0x12, 0x1, 0x2}, {@loopback=0x7f000001, 0x4e22, 0x10001, 0x36, 0x2}}, 0x44)
sendto$inet6(r0, &(0x7f00000000c0)="0404000000c000ddb8460900fff55b4202938207d9fb3780398d5375000000007929301ee616d5c01843e06590080053c0e385472da7222a2bb42f2dbd94c3b500352c0f118d0000f55d8a7924b829fccb60c62600001b0800000000000000000000aeb4", 0x64, 0x0, &(0x7f0000000000)={0xa, 0x200800800, 0x20000000005, @loopback={0x0, 0x1}}, 0x1c)

18:18:08 executing program 1:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00003dd000)='/dev/ppp\x00', 0x0, 0x0)
bind$bt_rfcomm(r0, &(0x7f0000000300)={0x1f, {0x41, 0x800, 0xc35, 0x7fff, 0x42, 0x2}, 0x2}, 0xa)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@dev, @in6=@ipv4={[], [], @loopback}}}, {{@in=@loopback}, 0x0, @in6}}, &(0x7f0000000100)=0xe8)
ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000000)=""/246)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ppp\x00', 0x200, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000380)={0xa, 0x0, 0x0, @empty, 0x6}, 0xfe21)
ioctl$EVIOCGPROP(r1, 0x4004743d, &(0x7f000082ef0a)=""/246)
ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x3)
r2 = dup2(r1, r0)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000340)={0xfffffffffffffffe}, 0x1)
preadv(r1, &(0x7f00000004c0), 0x1c0, 0x0)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000140))

18:18:08 executing program 6:
r0 = gettid()
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000044000)=<r1=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000011000)={{}, {0x0, 0x9}}, &(0x7f0000046000))
timer_delete(0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dsp\x00', 0x830000, 0x0)
timer_settime(r1, 0x0, &(0x7f0000000280)={{0x77359400}, {0x77359400}}, &(0x7f00000002c0))
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000200)={0x6, &(0x7f0000000140)=[{0x1, 0x6f, 0x7, 0x8}, {0x2c320949, 0x6, 0xffff, 0x5}, {0x20, 0x1110, 0x1, 0x9c7d}, {0x9f8, 0x9, 0x5, 0x101}, {0x6, 0x9, 0x7ff, 0x1}, {0x10001, 0xfa0, 0x9c, 0x3}]})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000240)=0xc)
clock_gettime(0x0, &(0x7f0000000080)={<r3=>0x0, <r4=>0x0})
rt_sigtimedwait(&(0x7f0000000040)={0x2}, 0x0, &(0x7f00000000c0)={r3, r4+10000000}, 0x8)

18:18:08 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:08 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x8001, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080)={<r1=>0xffffffff}, 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f0000000100)={0x5, 0x10, 0xfa00, {&(0x7f0000000200), r1}}, 0x18)
unshare(0x2000000)

18:18:08 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:08 executing program 3:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:08 executing program 4:
r0 = accept$nfc_llcp(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000240)=0x60)
fgetxattr(r0, &(0x7f0000000280)=@random={'system.', '@vmnet0+]$\x00'}, &(0x7f00000002c0)=""/160, 0xa0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={&(0x7f0000018ff4)={0x10}, 0xc, &(0x7f0000013ff1)={&(0x7f0000000180)={0x1c, 0x28, 0x1, 0x0, 0x0, {0x1}, [@generic="7b6c6e6605"]}, 0x1c}, 0x1}, 0x0)
r2 = getpid()
wait4(r2, &(0x7f0000000080), 0x8, &(0x7f00000000c0))
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000040)=<r3=>0x0)
r4 = dup2(r0, r1)
lstat(&(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
lstat(&(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = accept$inet(0xffffffffffffff9c, &(0x7f0000000a40)={0x0, 0x0, @loopback}, &(0x7f0000000a80)=0x10)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000ac0)={{{@in=@local, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f0000000bc0)=0xe8)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r4, 0x10e, 0x5, &(0x7f0000000f40)=0x5, 0x4)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000c00)={0x0, 0x0, <r9=>0x0}, &(0x7f0000000c40)=0xc)
stat(&(0x7f0000000c80)='./file0\x00', &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
fstat(r1, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
stat(&(0x7f0000002800)='./file0\x00', &(0x7f0000002840)={0x0, 0x0, 0x0, 0x0, <r12=>0x0})
r13 = getegid()
getresuid(&(0x7f00000028c0), &(0x7f0000002900)=<r14=>0x0, &(0x7f0000002940))
lstat(&(0x7f0000002980)='./file0\x00', &(0x7f00000029c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0})
sendmmsg$unix(r4, &(0x7f0000002b40)=[{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000840)=[{&(0x7f0000000400)="fa53e1092702bfc4b08a1d13567a6bf228cc88ea6d72d5919278fabb1e09b09813204ce82f51fde90aa209cb", 0x2c}, {&(0x7f0000000440)="eae3d7ca73da0e074c0ed42e734f9472baa55d632d1aaa91e0f9bd92d33e09d2df2ddc1413873007a9b3e9cb969f39bbba1ce9dc8f1a56eff3371535afcac562b2075f807934d8f16b155b7dd05b0db82a5936c597bc2df194068f83f6483035d9e64ce10cb220d5273d5ebcc09063e4d74bb72c618baa27e4c4323422a48252652cff90ce4527b7c42625420ea70018194a0953fbb9822c998deff2c832fcbe55ad46ccb6351a278f473f77b03a2e23968986f3185a328882a995daca0c87a01cd110274c06696379fe530fd20bbb73f3ba5a550eb6d82f", 0xd8}, {&(0x7f0000000540)="aa5f8732c97231ad1627ba1e270b14ca8a078b90db6d9b957f72dbc5c1c96ac998381b02fdf3dca98c9353ac58078c886e3f5e19c72c425d36f7852c9d726f4f3c09b0c7330190e786747c82837550bee749f9675ace6a83b8b5304904df2bf11f6338cfa5921ba32a2828c0537e2a4a4c96593f138bdb363870e04a378308da907775d112c8278e8647fde295cc2a6fab58a59ead28ca1cbfa941deef0ad77c7d4e3cd5c3836946249ac5d2ff979f17618c46322fa91d3e11ff3a9bb22b35403f0d21d9732e2e129c95210eed", 0xcd}, {&(0x7f0000000640)="a7744bc4bf204b6eed2663c7483a87cfb68f0f18587b4cf8513e8a0d84f63a9bff9fd5911babbf32f28255d3584c6a0af1ba598bc818b12b4d285bd3a42008435ef96cb5be0d12f06b3e65cb1f660f19420b41e92d59f7843635da12dd4747e5ad913dc8ba78acd62cab0f19b9bae38cd2b78999e6e162af717ade5fdd9154d10a98f29529b3652d8b3b677da385433a0048045c50e2c5c1935041a09dbcd970bd6a1a1e56d8562b2fc376115811506834ec5562e417fe6fb201ab4aef518491dd0803c70a44cd6e85f1b462a87475", 0xcf}, {&(0x7f0000000740)="027e96ae718c56a730d23071e699bec14813ed75917d9f5222b3b51cc2f3cfb54d11560c94e2b07cbf8b33138c1d4091bd10682e929d8765d833524eff81445e2a6a93f5f4fa31bacf3316e81d61c42d73509f7b3c5297b07d9f15b8acdaffce33c279146e11ec3283519afb1011913034c9018be131fb35a0231456d1ba963350c29fb17d63bf3638f59be547f55658babc7b1851ef800b2a4d354566caf07a875b494f5a957ee653f715821c33e1dfe28a94545ad51c0ac68894380c5e227b6a1f255f9be41344b3f586a5ae990dc408d49538bd7d5b40052b06616626a308f6861c1b4ab400", 0xe7}], 0x5, &(0x7f0000000dc0)=[@rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r3, r5, r6}, @rights={0x28, 0x1, 0x1, [r0, r1, r1, r1, r1, r0]}, @rights={0x28, 0x1, 0x1, [r0, r0, r1, r1, r7, r1]}, @cred={0x20, 0x1, 0x2, r3, r8, r9}, @rights={0x18, 0x1, 0x1, [r0, r0]}, @cred={0x20, 0x1, 0x2, r2, r10, r11}], 0xe0}, {&(0x7f0000000ec0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000f40), 0x0, &(0x7f0000000f80)=[@rights={0x20, 0x1, 0x1, [r0, r1, r0]}], 0x20, 0x80}, {&(0x7f0000000fc0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002740)=[{&(0x7f0000001040)="b4901b17094ea94bd43445be4095c821e1abc7dbd0dd4deb71915f0d32518bc1cbd68409646a3d32cb6cc07ce27e603960ef5c7711bc2958c57bb18d4bc8b73f6e60", 0x42}, {&(0x7f00000010c0)="fed80fc1cef5f843d8bce933dbe4408da3855903202a71ae8b676806231b94388e26f0287200d3d03d2549653f1ec3107e8a5ce111f36d4e7e7ace736747c39482f79fb1b627556924b7e09ef8bb6e005f34081f023f72b186898c6e080f8965d1786a66d70fe1a683341242751ccb1d103183d8ff8c75120a77ba2fa52019b1e85a3731441e36074f5049fbfabe5eaaef7e067fd0fd53c92ee505fcbf0a51d62361747d5759653af835de02bbc2687bf1fe6fd6830ddf87d15b9631c3894744645ce10b2196d5820953ddb04ededd515d701999c65b8f8e0e9b2b470835a3dd5dec112fcb531bf4618c26a8cb925f184170c85fad358be6dc7e63737d", 0xfd}, {&(0x7f00000011c0)="e21dc055371dcd5047c50946127f738c575f64feb2c9c57b155f2271e9eb9dfb63f7032333d99475e0d79cc1c4accca26d20efe7c4f65ab99eca48fafd5a398cfaf69d4f908e42ef543ffc55df82c4a8dfc9d2082a90dba938fc2c6401687307e209fa21453a4ee6c31c1dfaa557f5ae5ed1670e6237e042c3227bee3e5023f2e2042c5a74c8b65c7e532736d12009312ab7da501672c0ce5d6a4ef6e2b64502d0bf3fcaf9e12b774873eb7055faf1c83e2349a7c64e95ae08aeb345229a86849a7d869ed1e101226147cf46e7175e898419d1738df1896ae9796e9e1e6fe315af7ddd72e2", 0xe5}, {&(0x7f00000012c0)="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", 0x1000}, {&(0x7f00000022c0)="02c1059a3f833bfb921084c409f8482247de4a2e4372faef07177ff839beb69b3dfd62a115a1a70e217c3c6355425367c0124203be4347a74a24a9f76b2f3645295f53cdeefec10f942e7a2be7994cf90a35cde2b0d6af8c962626b20c8d8a85df58330b97726d6ae2730cb4cd2c88dc055dce34616c325609801bdd0643b8daa2b8f0e518a87df6b5b46e62265466213bd8793c8156a7f54f798129644eb04e569d6c39231481b54e1014f23b488c38e906947eda11cad923405174718c83ff9514b8f58e68ecc71e125519d54782dc25ead93740909887027dc3c1bfbafe6cb18c0ec64e9573d62c9b", 0xea}, {&(0x7f00000023c0)="9a96b997a6b334f35a46cee9a1cb12dc2a32321c21d328d86918a706a9f5ce0b6cc6aa3100e7ef39e12d4f97365ff6c024ba79854ba9f373320c8a9cb335956ac99688aba5091671ab3a2aa7360deb291320f62528593d40a7f1d2b1b41ca0046b9064e5fdbf9c21394b9e095be3fb79ca2f25e00a8f91c0e7520252dcc4ec0c91c71815d06cdaca15ac9bb15460a128f035bded13c0", 0x96}, {&(0x7f0000002480)="01b01b50b43ba04ef22e7b479443314db5615dea99a5b7106616098eca8034c940e78a1848b4b451353e60a750e48d550640576e08b33db5bd417c55963a416fadcfe20abf25e81f50d2208d2b45f82c0c2cfeb4b71b82d29c08d8ec918babe85ad06854a6d3ce5f9701ef92318eaba0e2e71f711c99a87c7596f0dcd975418083cba64576b6e46db97b17df2d1fc8f73cc00f8e67a5065c510d7c80163102984a8ee49a225c678e9ba14e01ddc2047b3d083611e2c17db1dd24063b1c0f", 0xbe}, {&(0x7f0000002540)="82ad24668a46f4449fd05642b72ae29b99b2023409d07e221eb87b66a6025adba574473119e0a8047212516cbf54bdd432e242096a5cbd25ca48625513330eef6bbcbabd2e91c4f66b439d7e0055c46502495866755d330c7e2973a5a7e811204b7670f11814d19ea9b30f14c49862e4a0f074213e6e67c1debfc43fff83f025c774ab3ae115680ae1451d82b2646fa3dcdf26ec8bda03ef6308acc2461c2b11d58a22b369257da927032913c40bc72d3f01c6b8ce28fc33ad475046309dc8ceb4639c6d82318be4c402cedae26df41c914ea4ca86c82b56fa3c7badf4e614575f29882da0bc", 0xe6}, {&(0x7f0000002640)="a3d3e9a16aef684229e216e618e51e2649990e008eec885211b1de63acab57184897bcadef5103032d5096c6329d231e76d2ec7715e0024bb440b8ab29d7dbebe9c8e97b4d963b3b09f40c7e900fa0ccbfeb989c16b3c8f0e1bc7ef63effc787bc53f3085e2aa4b9299664f0ca19bad7176168c5d73e966b56d5fa0c8216629e9ce20e706443094a6cea80ccd4138d9bcecf931aa355594937a24251e62a7bf888f6d595acd94e05d16225ff9b823d58409f33304359237154f830da272c29f61ddf504006786ae1723274bb592035e4bf3192f494f8d50814ca1a0f", 0xdc}], 0x9, &(0x7f0000002a40)=[@cred={0x20, 0x1, 0x2, r2, r12, r13}, @rights={0x20, 0x1, 0x1, [r0, r1, r1]}, @rights={0x18, 0x1, 0x1, [r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r1, r0, 0xffffffffffffffff, r0, r1, r0, r1]}, @rights={0x20, 0x1, 0x1, [r0, r1, r0]}, @cred={0x20, 0x1, 0x2, r3, r14, r15}], 0xc8, 0x24008004}], 0x3, 0x8080)

18:18:08 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$nfc_llcp_NFC_LLCP_RW(0xffffffffffffffff, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:08 executing program 7:
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r0 = syz_fuse_mount(&(0x7f0000000080)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0)
syz_fuse_mount(&(0x7f0000000240)="2e2f66696c65302fe5696c653000", 0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuse_mount(&(0x7f0000000000)='./file0//ile0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
read(r0, &(0x7f0000003380)=""/4096, 0xf)
syz_mount_image$nfs(&(0x7f0000000040)='nfs\x00', &(0x7f00000000c0)='./file1\x00', 0x5, 0x7, &(0x7f0000000640)=[{&(0x7f0000000100)}, {&(0x7f0000000140)="13b9adb3b064db2629317cbcfca04dc7597f2ca9c70f71edd0c28051cc9953", 0x1f, 0x7f}, {&(0x7f0000000280)="15aba76760edf2060403d1110cb0046d112d19bbb8893fe3c9735d0e31a6409fbacf1529e352c9eee557b4bb95e2bb74fa07016f6948df25c672b1a4cafa27a215b1ce4c7f261d910e39102db5b27620f981d601b3c9af016c884eb76a715030a6690f7c338d936211867fe75de3c6c34d0f72d7449ca520778f65377243332d9cb49cb03036445e71fdc660e24fa53decf9a8399746bb9c10ad4b38c13c107ed11e", 0xa2}, {&(0x7f0000000340)="3101a15117d41c245471d223ba919cc558067c32da1f918d925d86293c169e1b42ed1d90bf655509f8f9065111af591b8d3a2aff5ffe47a93cd4360a97e3065bda1733cbdd89e8eacbff3028d4f12df9100c3409dfe1180c6a1fbdfd9a1352b302519d27610f3c263652c441154cf00d4b59e25f1b9ee84722a0f473e3c63ef6ff59b18d6192610c4998c7b99f915d2ea567e3842042723c4be27dd18b8b6a28e4b1f359eabfa5403c7762e66f06e91a73255373d7481ecc875d69f71c1c2c1831ccb50195ed909c85a5", 0xca, 0x9}, {&(0x7f0000000440)="4deda2ae02a2016271156a4e88f3f5d697c5aa86c40af67a1a9bc56c210c1f653fdadd87602a4d2ac89579f732c8f81bec38039f900dbac885f1dc47b5634c9d149bdc6ab03b2b9a43702c133a810f7fd63b692a46bb3dcc635098f1a7dc37e0caf31cc918c7744fb6f99604d2ca39dc85cbfb9212dc0b90989dd23834ec018dafafcdc86ec979fdce9f7b1dc5de87e905f9268a4205c5c456ebf56140ffe5b16dba1858132f3080aa0a83ab7c20eae5153f124ee8ce06e4b41e0798a322d25e09b907653dc56d88357a1584b640de248724938d4c30b45f0d0d63cf9e24df5fe13efb", 0xe3, 0x2bfe}, {&(0x7f0000000540)="620ced1d45365f24dcb52ff9a01822815bfff68b8fdbe6a7d58d4b6c9bce6359ca89c43b01a83790be16fb697384d4966819bc4849697581ecac0b2ce9e844933f9e2e9f5008923ad64a46ab9e962dc0e1ca65a43af06e10e13d6032946d0fd448c65e2393833a4d76ff78a9b64870afdfa2870e3c72db6d7ae9d981ff01c827eb3aa9dd9154ff18bd0560485f322e4b8e664989d104bccf235bddae60250da2ccb6338e5101e59c8aedcd6fa1c235ae61a4e0ef812b00aad3925821dd153178de1a289f8b4ad8be69382979b05b945bd63b78", 0xd3, 0x1}, {&(0x7f00000001c0)="7743b9eb289e7ba97dac753c84e4ef26b0398766a3ea76e339ef31bc2e726e643c1f7fca0bfde2f0d8e2b07e665dd6d7", 0x30, 0x8}], 0x20, &(0x7f0000000200)='\x00')

18:18:08 executing program 3:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:08 executing program 4:
pipe2$9p(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000b40)={0x13, 0x65, 0xffff, 0x0, 0x2d4, '9P2000'}, 0x13)
r2 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
listen(r2, 0x2f32)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080)='9p\x00', 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c})

18:18:08 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:08 executing program 5:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:08 executing program 1:
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000180)={{{@in6=@mcast1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in6=@remote}, 0x0, @in6=@mcast1}}, &(0x7f0000000040)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffff9c, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>r0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x12, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19}], {0x95}}, &(0x7f0000f6bffb)='GPl\x00', 0x0, 0xfb, &(0x7f00001a7f05)=""/251, 0x0, 0x1, [], r1}, 0xfffffffffffffdcd)
r3 = fcntl$dupfd(r2, 0x0, r2)
accept$inet(r3, 0x0, &(0x7f0000000280))
syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x200, 0x20000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
connect(r4, &(0x7f0000000100)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x80)
setsockopt$netlink_NETLINK_PKTINFO(r4, 0x10e, 0x3, &(0x7f0000000080)=0x3f, 0xfffffffffffffe14)

18:18:08 executing program 5:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:08 executing program 4:
r0 = syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x8, &(0x7f0000000200)=[@flat={0x73622a85}], &(0x7f0000000240)=[0x0]}}], 0x0, 0x0, &(0x7f00000003c0)})
dup2(r1, r0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x4c, 0x0, &(0x7f0000000600)=[@transaction_sg={0x40486311, {{0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), &(0x7f00000001c0)}}}], 0x0, 0x0, &(0x7f0000000480)})
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r3 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000880)="24000000210007031dfffd946fa2830020200a0009000300001d85680c1ba3a20400ff7e280000001100ffffba16a0aa1c0009b3ebea8653b1cc7e63975c0ac47b6268e3966cf055d90f15a3", 0x4c}], 0x1}, 0x0)

18:18:08 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x20000000003)
ioctl(r0, 0x4000008912, &(0x7f0000000000)="291f16f400000000000000")
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000a23000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r0, 0x0)
mprotect(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0xb)

18:18:08 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  111.896484] binder: release 6840:6841 transaction 2 out, still active
[  111.903190] binder: unexpected work type, 4, not freed
[  111.908593] binder: undelivered TRANSACTION_COMPLETE
[  111.916442] binder: 6840:6841 transaction failed 29189/-22, size 0-0 line 2852
[  111.935752] netlink: 8 bytes leftover after parsing attributes in process `syz-executor4'.
[  111.955520] binder_alloc: binder_alloc_mmap_handler: 6840 20001000-20004000 already mapped failed -16
[  111.978009] binder: BINDER_SET_CONTEXT_MGR already set
[  111.983719] binder: 6840:6841 ioctl 40046207 0 returned -16
[  111.985103] binder_alloc: 6840: binder_alloc_buf, no vma
[  111.995315] binder: 6840:6849 transaction failed 29189/-3, size 24-8 line 2967
[  112.004289] binder: 6840:6849 got transaction to invalid handle
[  112.008121] binder: undelivered TRANSACTION_ERROR: 29189
[  112.010511] binder: 6840:6849 transaction failed 29201/-22, size 0-0 line 2852
[  112.025984] netlink: 8 bytes leftover after parsing attributes in process `syz-executor4'.
[  112.036212] binder: undelivered TRANSACTION_ERROR: 29201
[  112.042286] binder: undelivered TRANSACTION_ERROR: 29189
[  112.047999] binder: send failed reply for transaction 2, target dead
18:18:11 executing program 6:
r0 = socket(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:11 executing program 5:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:11 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(cryptd(ecb-camellia-asm))\x00'}, 0x58)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000001c0)={@empty, 0xb9, 0x2, 0x3, 0xd, 0x100000001, 0xffffffff, 0x1ff}, 0x20)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="0a0775b005e381e5b3b60ced5c54db01dae3adff664449998b87d2bf191235b729", 0x21)
r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x8000, 0x8000)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000040)={<r2=>0x0, 0x10001}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={r2, 0x67d8}, 0x8)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x2c40, 0x0)

18:18:11 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x1000000000005, 0xfffffffffffffffb)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
userfaultfd(0x800)
r2 = dup(r0)
getrusage(0x1, &(0x7f0000000100))
rt_sigprocmask(0x1, &(0x7f0000000000)={0x20}, &(0x7f0000000040), 0x8)
write(r2, &(0x7f00000000c0)="1b0000004a001f0fff07f4f9002304000a04f51108000100020100", 0x1b)
recvmmsg(r2, &(0x7f0000004c40)=[{{&(0x7f0000004500)=@rc, 0x80, &(0x7f0000004640), 0x0, &(0x7f0000004680)=""/160, 0x52}}, {{&(0x7f0000004740)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000004ac0), 0x147, &(0x7f0000004b40)=""/206, 0xce}}], 0x2, 0x0, &(0x7f0000004dc0)={0x77359400})

18:18:11 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000028c0)="b7f2288a", 0x4)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES16, @ANYRES16=r0], 0x8)
recvmsg(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000140)=""/81, 0x51}, {&(0x7f00000005c0)=""/175, 0x7}], 0x29, &(0x7f0000002900)=""/4096, 0x1000}, 0x0)

18:18:11 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:11 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070")
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f000003a000)='./control\x00', 0x81000100)
r2 = memfd_create(&(0x7f0000000080)='em0:\x00', 0x1)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000140)={<r3=>0x0, @in={{0x2, 0x4e20, @broadcast=0xffffffff}}, 0xc64, 0x0, 0x8, 0x100, 0x401}, &(0x7f0000000200)=0x98)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000240)={r3, 0x79b2, 0x8, [0x100000000, 0x1, 0x6, 0x1, 0x5, 0xff, 0x7fff, 0x100000001]}, &(0x7f0000000280)=0x18)
readv(r1, &(0x7f0000000440)=[{&(0x7f00000000c0)=""/39, 0x27}], 0x1)
dup3(r0, r1, 0x0)
creat(&(0x7f0000000040)='./control/file0\x00', 0x0)

18:18:11 executing program 7:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="850000000000000025000000000000009500000000000000d0ed14fce8c052ff4f3d1d3c7808e1d6e334546ef4b7f82e2b1e86c97a03fa62dee644105f0191fd6d3ba35435262ce8828ecf584a7d591153f2c4"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0xf}, 0x48)

18:18:11 executing program 7:
syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x0, 0x0)
syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

18:18:11 executing program 5:
perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:11 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x20000077}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:11 executing program 1:
syz_emit_ethernet(0x66, &(0x7f0000000000)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "02290f", 0x30, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0xffffff80, 0x0, 0x0, 0x0, {0x0, 0x6, "9433df", 0x0, 0x0, 0x0, @loopback={0x0, 0x1}, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}}}}}}}}, 0x0)

18:18:11 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:11 executing program 6:
r0 = socket(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:11 executing program 1:
r0 = socket(0xa, 0x802, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000300)={0x1, 'bridge_slave_0\x00', 0xfffffffffffffffd}, 0x18)
r1 = shmget$private(0x0, 0x1000, 0x1042, &(0x7f0000ffe000/0x1000)=nil)
semctl$GETVAL(r1, 0x4, 0xc, &(0x7f0000000380)=""/118)
perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
keyctl$get_persistent(0x16, 0x0, 0x0)
connect$l2tp(0xffffffffffffffff, &(0x7f0000003000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}}}, 0x2e)
getsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f00000002c0)=0x9, &(0x7f0000000340)=0x1)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000000240), 0x4)
r2 = add_key(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000200)="3ca36cd6bb9c06196c744c8bc31ede7251b33a977d9e7fc9c536b9609d1969ccb36aa3931ccdc3d5442f13f2", 0x2c, 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, r2)
getsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000400), &(0x7f0000000440)=0x4)

18:18:11 executing program 5:
perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:11 executing program 3:
request_key(&(0x7f00000002c0)='asymmetric\x00', &(0x7f0000000080)={0x69, 0x64, 0x3a, 0x2, 0x2}, &(0x7f0000000040)='IPVS\x00', 0x0)

18:18:11 executing program 7:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setattr(0x0, &(0x7f0000000140)={0x0, 0x2, 0x0, 0x0, 0x4}, 0x0)
setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x1}, 0xc)
setsockopt$inet6_int(r0, 0x29, 0xcb, &(0x7f0000000080), 0x4)

18:18:11 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  114.797738] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = -3, id = 0
18:18:11 executing program 1:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x800452d2, &(0x7f0000002000)={"170000000000000100", {0x0, 0x0, @rand_addr}})
mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)

18:18:11 executing program 5:
perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:11 executing program 6:
r0 = socket(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:12 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getrusage(0x0, &(0x7f0000000380))
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={<r0=>0xffffffffffffff9c})
r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
ftruncate(r1, 0x1000)
ioctl$TIOCLINUX4(r1, 0x541c, &(0x7f00000001c0)=0x4)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000740)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{}, 0x0, @in=@rand_addr}}, &(0x7f0000000080)=0xe8)
getgroups(0x5, &(0x7f00000000c0)=[0xee01, 0xffffffffffffffff, 0xee01, <r3=>0xffffffffffffffff, 0xffffffffffffffff])
fchown(r0, r2, r3)
lseek(r1, 0x0, 0x2)
ioctl(0xffffffffffffffff, 0x2, &(0x7f0000000180))
fcntl$getown(r0, 0x9)
ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000200))
r4 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000600), &(0x7f0000000640)=0x14)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000280)={{{@in=@broadcast, @in6=@mcast2}}, {{@in6}, 0x0, @in=@multicast2}}, &(0x7f0000000140)=0xe8)
r5 = open(&(0x7f0000000240)='./bus\x00', 0x105000, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f00000005c0)="61eda8652073ca4b2479644a00670e9b935eb1eef14c9a71c4010316db31", 0x1e, 0x0)
sendfile(r1, r5, &(0x7f0000d83ff8), 0x8000fffffffe)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r5, &(0x7f0000000500)={0x16, 0x98, 0xfa00, {&(0x7f0000000440), 0x0, 0xffffffff, 0x10, 0x0, @in={0x2, 0x0, @broadcast=0xffffffff}}}, 0xa0)
ftruncate(r4, 0x0)

18:18:12 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000180)={{{@in, @in=@multicast1=0xe0000001, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x2b}, 0x0, @in=@multicast2=0xe0000002}}, 0xe8)

18:18:12 executing program 6:
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x9}, 0x1c)
write$binfmt_aout(r0, &(0x7f0000000080)={{0x2c}}, 0x20)

18:18:12 executing program 1:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndseq(&(0x7f0000ff0ff3)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000080)={0x10, 0x0, 'client1\x00', 0x0, "4339805ab5a226cc", "1858358dd582e9444882e62616a8df4402e3fb86410cae51bc9ae3ff8d58bb33"})

18:18:12 executing program 4:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$bt_rfcomm(0x1f, 0x1, 0x3)
bind$bt_rfcomm(r0, &(0x7f0000003ff7)={0x1f}, 0x9)
listen(r0, 0x0)

18:18:12 executing program 7:
r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fstatfs(r0, &(0x7f0000000200)=""/236)

18:18:12 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:12 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:12 executing program 3:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = syz_open_dev$mice(&(0x7f00000001c0)='/dev/input/mice\x00', 0x0, 0x11)
writev(r1, &(0x7f0000002fc0)=[{&(0x7f0000001fc0)="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", 0x5ae}], 0x1)

18:18:12 executing program 6:
syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
quotactl(0x0, &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f00000001c0))

18:18:12 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070")
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000a80)=@allocspi={0x104, 0x16, 0x1, 0x0, 0x0, {{{@in=@multicast1=0xe0000001, @in6=@ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, {@in=@multicast2=0xe0000002, 0x0, 0x33}, @in6=@local={0xfe, 0x80, [], 0xaa}}}, [@mark={0xc, 0x15}]}, 0x104}, 0x1}, 0x0)

18:18:12 executing program 1:

18:18:12 executing program 7:

18:18:12 executing program 6:

18:18:12 executing program 3:

18:18:12 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:12 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:12 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:12 executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000001500)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000014c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="04010000100001000000000000000000e0000001000000000000000000000000ac1414aa00000000000000000000000000000000000000000000000000000000", @ANYRES32=0x0, @ANYBLOB="e0020002000000000000000000000000000000002b000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000200000000000000000000f1ee426a2a25785f000000000000000000000000000000000700000000000000000000000000000000000000000000000000000000000a000300000080000000000014000e00001300000000000000000000000000000f701dda7916ff5ddcbf41e43af896e9987a58e9a77fb0202b91ed7a47dccda9247a610996e8841cec2f387d910cbacb25cdf5ab8b9ae573a019ad245e1b738c4bb2bdaf6b08fa0df1ea2a82d39e58776336ad3266a5e34e4fb78756d18abfd4392637af7d969179447a5fe3e05c95a1db197b05169f5f05754603000000df3efd43d5c1901e30ca0df41ccdbab479e6605b0c02af80e38ca257fe4f1da5b296f84159c95212c9ac77206fc0889841dddc55bfe264da841edc76aa36203493c5635e0814010f6faaf8b48ebe376b7c21ed55c9437ea8765568cf2e5320f9b2ae704d87d43f6c7c4ba58e1e38fe07b75cef3b6c58e2ce75234418ab98e9eb367499e9810bab5aa678cb2ee4a0a6d364d7b4b7a411d3ff8b754993d69fd96aea2bcf5b86c370027354592bc119e60ca6a13769554c842c707a158c193a4539375cf112e4bb66d1073777392196a02350dbbbfefdd868e9ec91d1b16c5667047c8324ee18e53347f200caa31e0f3dd52e5e771bbf61ab7cdff229201857ddb5d6d574d7c35bfbc7cc26daac08f25bf46b860c6531ddb9bc82c0df09ab0db4a44a1dd29cca94fa6b9b98e3429610a1c7b181693bff35142da6a43f91a47c21160e823a31ed273a3b08b8850dd22b463a78d62682dce220887c5774ec74d3e129e7190da31fcfc38e2898cfe603d1e01f87c7"], 0x3}, 0x1}, 0x0)

18:18:12 executing program 7:
r0 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}, {0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, 0x5c)

18:18:12 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x20, r1, 0x101, 0x0, 0x0, {0xc}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x6, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5}]}]}, 0x20}, 0x1}, 0x0)

18:18:12 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:12 executing program 0:

18:18:12 executing program 6:

[  116.413895] syz-executor0 (6962) used greatest stack depth: 17336 bytes left
18:18:13 executing program 6:

18:18:13 executing program 4:

18:18:13 executing program 7:

18:18:13 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  116.455575] netlink: 'syz-executor3': attribute type 6 has an invalid length.
18:18:13 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
creat(&(0x7f0000001380)='./file0\x00', 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 0:

18:18:13 executing program 4:

18:18:13 executing program 6:

[  116.516777] netlink: 'syz-executor3': attribute type 6 has an invalid length.
18:18:13 executing program 7:

18:18:13 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:13 executing program 3:

18:18:13 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 0:

18:18:13 executing program 6:

18:18:13 executing program 4:

18:18:13 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
creat(&(0x7f0000001380)='./file0\x00', 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 3:

18:18:13 executing program 7:

18:18:13 executing program 6:

18:18:13 executing program 4:

18:18:13 executing program 0:

18:18:13 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:13 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
creat(&(0x7f0000001380)='./file0\x00', 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 3:

18:18:13 executing program 7:

18:18:13 executing program 4:

18:18:13 executing program 6:

18:18:13 executing program 0:

18:18:13 executing program 5:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(0xffffffffffffffff, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:13 executing program 3:

18:18:13 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0)=ANY=[])
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 4:

18:18:13 executing program 7:

18:18:13 executing program 0:

18:18:13 executing program 3:

18:18:13 executing program 6:

18:18:13 executing program 5:

18:18:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 7:

18:18:13 executing program 4:

18:18:13 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0)=ANY=[])
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 0:

18:18:13 executing program 3:

18:18:13 executing program 5:

18:18:13 executing program 6:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(twofish)\x00'}, 0x58)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
sendmmsg(r2, &(0x7f00000031c0)=[{{&(0x7f0000000140)=@can={0x1d}, 0x80, &(0x7f0000000780)=[{&(0x7f00000006c0)="1436430d48d97d3a32f6d8a3b38a641d2645315dde43a6bd599b18781b751695b1a8e759c119cf225c14fa707eba93bedb51b627eabdca612b078440427bed079dcfcc5fb24e11f19e50a4f3e3e2db8a3e9a1cebc4811c20f1e9425968cfa6a30aa224e202ee3bbea69d6a2611bad64f", 0x70}], 0x1, &(0x7f0000003640)=ANY=[]}}], 0x1, 0x48015)
sendmsg$alg(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000000)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmsg(r2, &(0x7f0000003580)={&(0x7f00000003c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000003440)=""/112, 0x200034b0}], 0x1, &(0x7f0000003500)=""/106, 0x6a}, 0x0)

18:18:13 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:13 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x8000, &(0x7f00000001c0)={[{@fat=@dos1xfloppy='dos1xfloppy', 0x2c}, {@fat=@umask={'umask', 0x3d, [0x33]}, 0x2c}]})

18:18:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0)=ANY=[])
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 3:
r0 = socket$inet6(0x10, 0x3, 0x0)
write$P9_RCLUNK(r0, &(0x7f0000000100)={0x7, 0x79}, 0x7)

18:18:13 executing program 0:
r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$get_persistent(0x16, 0x0, r0)

18:18:13 executing program 5:

18:18:13 executing program 1:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 4:

18:18:13 executing program 5:

18:18:13 executing program 3:

18:18:13 executing program 6:

18:18:13 executing program 2:
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:13 executing program 0:

18:18:13 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:13 executing program 3:

18:18:14 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:14 executing program 4:

18:18:14 executing program 5:

18:18:14 executing program 6:

18:18:14 executing program 0:

18:18:14 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:14 executing program 2:
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:14 executing program 3:

18:18:14 executing program 3:

18:18:14 executing program 5:

18:18:14 executing program 0:

18:18:14 executing program 6:

18:18:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000008f00)={"626f6e643000000000f98b00"})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000140)="65d9f3ba2000b0e1eed9ff66b8c4b800000f23c00f21f86635000005000f23f80f01d1baf80c66b8a322e48266efbafc0cb09dee6726670f32670fb2aec1cb0000ff22c02200", 0x46}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

18:18:14 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:14 executing program 2:
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:14 executing program 0:

[  118.417944] kvm: pic: single mode not supported
[  118.417953] kvm: pic: level sensitive irq not supported
[  118.437491] kvm: pic: single mode not supported
[  118.443157] kvm: pic: level sensitive irq not supported
[  118.453826] kvm: pic: single mode not supported
[  118.459282] kvm: pic: level sensitive irq not supported
[  118.468740] kvm: pic: single mode not supported
[  118.474209] kvm: pic: level sensitive irq not supported
18:18:15 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:15 executing program 5:

18:18:15 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:15 executing program 3:

18:18:15 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:15 executing program 0:

18:18:15 executing program 4:

18:18:15 executing program 6:

18:18:15 executing program 6:

18:18:15 executing program 3:

18:18:15 executing program 0:

18:18:15 executing program 5:

18:18:15 executing program 4:

18:18:15 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:15 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:15 executing program 3:

18:18:15 executing program 0:

18:18:16 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:16 executing program 6:

18:18:16 executing program 5:

18:18:16 executing program 4:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000600), 0x0, &(0x7f00000001c0))

18:18:16 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:16 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000480)=""/158)

18:18:16 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:16 executing program 3:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000600), 0x0, &(0x7f00000001c0))

18:18:16 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23}, 0x1c)
listen(r1, 0xffffffffffffff7f)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c)
r3 = accept4(r1, &(0x7f00000004c0)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000240)=0x80, 0x0)
ppoll(&(0x7f0000000000)=[{r3}], 0x1, &(0x7f0000000040)={0x0, 0x1c9c380}, &(0x7f0000000080), 0x8)

18:18:16 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:16 executing program 6:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x5}, 0xab)

18:18:16 executing program 5:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast1=0xe0000001}, 0x10)

[  118.479439] kvm: pic: single mode not supported
[  120.207598] FAT-fs (loop3): bogus number of reserved sectors
[  120.212586] FAT-fs (loop4): bogus number of reserved sectors
[  120.218158] FAT-fs (loop3): Can't find a valid FAT filesystem
[  120.230029] FAT-fs (loop4): Can't find a valid FAT filesystem
18:18:16 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:16 executing program 3:

18:18:16 executing program 5:

18:18:16 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x0, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:17 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
socket$inet6(0xa, 0x1000000000002, 0x0)
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:17 executing program 6:
r0 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0xd1, &(0x7f00000023c0), 0x4)

18:18:17 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x1, 0x3, 0x0)
getsockopt$sock_int(r0, 0x1, 0xc, &(0x7f0000000000), &(0x7f0000000040)=0x4)

18:18:17 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000004000)='net/netlink\x00')
syz_mount_image$gfs2(&(0x7f0000000100)='gfs2\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000002500), 0x0, &(0x7f00000025c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c})

18:18:17 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:17 executing program 5:
r0 = socket$inet6(0xa, 0x801, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c)
sendto$inet6(r1, &(0x7f0000e77fff), 0xfffffffffffffe64, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c)

18:18:17 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f00008df000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
write(r1, &(0x7f00004abf1b)="ae", 0x1)
vmsplice(r1, &(0x7f00000005c0)=[{&(0x7f0000000540)="17", 0x1}], 0x1, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000580))
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000600))
readv(r0, &(0x7f0000c9e000)=[{&(0x7f0000c25f19)=""/231, 0xe7}], 0x1)

18:18:17 executing program 4:
setrlimit(0x7, &(0x7f0000becff0))
timerfd_create(0x0, 0x0)

18:18:17 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:17 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:17 executing program 6:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x0, &(0x7f0000000380), &(0x7f0000000080), &(0x7f0000c35ffc), &(0x7f0000b3bfff))
wait4(0x0, 0x0, 0x40000000, &(0x7f0000781f70))

[  121.125113] gfs2: not a GFS2 filesystem
[  121.143000] gfs2: not a GFS2 filesystem
[  121.143427] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
18:18:17 executing program 3:
open(&(0x7f0000000040)='./file0\x00', 0x42, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
write$P9_RRENAME(r0, &(0x7f0000000800)={0x7, 0x15}, 0x7)

18:18:17 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_opts(r1, 0x29, 0x46, &(0x7f0000325f23)=""/221, &(0x7f0000000000)=0xd80be6ea)

18:18:17 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0x0, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:17 executing program 5:
r0 = socket(0x10, 0x80002, 0x0)
recvmmsg(r0, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f00000025c0), 0x0, &(0x7f0000000080)=""/155, 0x9b}}], 0x1, 0x0, 0x0)
nanosleep(&(0x7f0000000040)={0x0, 0x1c9c380}, &(0x7f0000000140))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
io_setup(0x10ef, &(0x7f0000000000))
io_getevents(0x0, 0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200)={0x0, 0x989680})

18:18:18 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
socket$inet6(0xa, 0x1000000000002, 0x0)
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:18 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup3(r2, r1, 0x80000)
dup3(r1, r0, 0x0)

18:18:18 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@setneightbl={0x14, 0x43, 0x9}, 0x14}, 0x1}, 0x0)

18:18:18 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0x0, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:18 executing program 6:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000280)=""/98, 0x62}, {&(0x7f0000000040)=""/42, 0x2a}, {&(0x7f0000000300)=""/175, 0xaf}], 0x3)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vcs\x00', 0x2, 0x0)
write$P9_RMKNOD(r0, &(0x7f0000000440)={0x14, 0x13, 0x0, {0x0, 0x0, 0x4}}, 0x14)

18:18:18 executing program 0:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000009c0)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)
r1 = dup2(r0, r0)
fgetxattr(r1, &(0x7f0000000080)=@known='security.capability\x00', &(0x7f00000000c0)=""/102, 0x66)

18:18:18 executing program 4:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vcs\x00', 0x2, 0x0)
write$P9_RMKNOD(r0, &(0x7f0000000440)={0x14, 0x13, 0x0, {0x0, 0x0, 0x4}}, 0x14)

18:18:18 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000009d00)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000009cc0)={&(0x7f0000000780)=ANY=[@ANYBLOB="280000001200010d000000000000000000000000", @ANYBLOB="000000f7ffffffff07002e0000000000"], 0x2}, 0x1}, 0x0)

18:18:18 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0x0, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:18 executing program 6:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))

18:18:18 executing program 3:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vcs\x00', 0x2, 0x0)
write$P9_RMKNOD(r0, &(0x7f0000000440)={0x14, 0x13}, 0xffffff04)
read(r0, &(0x7f0000000080)=""/17, 0x11)

18:18:18 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:18 executing program 6:
perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@remote={0xfe, 0x80, [], 0xbb}, @in6=@loopback={0x0, 0x1}}}, {{@in=@multicast1=0xe0000001}, 0x0, @in6=@loopback={0x0, 0x1}}}, 0xe8)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='nv\x00', 0x3)
connect$inet6(r0, &(0x7f00000000c0)={0xa}, 0x18)

18:18:18 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$vsock_dgram(0x28, 0x2, 0x0)
sendmmsg(r0, &(0x7f00000067c0)=[{{&(0x7f0000000f40)=@in={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x80, &(0x7f00000020c0)=[{&(0x7f0000000fc0)}], 0x1, &(0x7f0000002100)=[{0x18, 0x0, 0x3, '7'}], 0x18}}, {{&(0x7f0000006200)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000006640)=[{&(0x7f0000006280)}, {&(0x7f0000006380)}, {&(0x7f0000006540)}], 0x3, &(0x7f00000066c0)}, 0xffffffffffffffd2}], 0x2, 0x4c000)

18:18:19 executing program 5:
r0 = socket(0x10, 0x80002, 0x0)
recvmmsg(r0, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f00000025c0), 0x0, &(0x7f0000000080)=""/155, 0x9b}}], 0x1, 0x0, 0x0)
nanosleep(&(0x7f0000000040)={0x0, 0x1c9c380}, &(0x7f0000000140))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
io_setup(0x10ef, &(0x7f0000000000))
io_getevents(0x0, 0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200)={0x0, 0x989680})

18:18:19 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
socket$inet6(0xa, 0x1000000000002, 0x0)
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:19 executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)={0x9, 0x1, 0x3, 0x400000bff}, 0x2c)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r0, &(0x7f00000003c0)="93a517a5829adf7411dff9f1647228fea3fd645bc1a9446a551e1a240a6d3c489bc6e0d0c14cc33bb99a75e09eee0ca13113a55ebfed6273bb0fc1e44eb902fb66e85da4e996799ef20be365a26e911ae57688176a4961eca771a2655df5a60945f672de1abc5c50dc849cb1d9a3284b27043d757a387fb1d1769d035d288acef6706bb43c281296c90723309798cf6596b07540acf7e509bf5e8993794f180560f123ee36d3cc743c913eb965525aee4d759e9d90986fb14f7c74fb0aff11110b0b5d02ce0b49c876fee24fcbcf921e42d2d6f34027", &(0x7f00000013c0)="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"}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r0, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)

18:18:19 executing program 3:
socket$inet6(0xa, 0x1000000000002, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000040)=0x4006, 0x4)
sendto$inet6(r0, &(0x7f00000001c0)="0501000005006e0000000000ffa2ada33f93820fd903378c39160aaacb57a80000061a80e19e33e3c2e7725f4a58611537a0be625ef7402810fadc5712f29508c008e265756fe5eb8f590e78ecfffc27d9e9aba5568a12840f2a38d18de194fbc420ec249784d63babc905000000000000000000000000000000", 0x7a, 0x0, &(0x7f00000000c0)={0xa, 0x100200000800, 0x2, @local={0xfe, 0x80, [], 0xaa}}, 0x1c)

18:18:19 executing program 0:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vcs\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000480)=""/4096, 0x1000, 0x0)

18:18:19 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:19 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vcs\x00', 0x2, 0x0)
modify_ldt$write(0x1, &(0x7f00000000c0)={0x0, 0x0, 0x400, 0x0, 0x0, 0x7}, 0x10)
pread64(r0, &(0x7f0000000480)=""/4096, 0x1000, 0x0)

18:18:19 executing program 6:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f00000000c0)='cpuset.cpus\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140)=ANY=[@ANYBLOB='1'], 0x1)

18:18:19 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40086607, 0x400023)

18:18:19 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

18:18:19 executing program 3:
syz_emit_ethernet(0x6e, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x38, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x29, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}, [], "a82f7ae1cd16d2e2"}}}}}}}, &(0x7f00000016c0))

18:18:19 executing program 6:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0xf503}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x14, 0x27, 0x1, 0x0, 0x0, {0x5}}, 0x14}, 0x1}, 0x0)

18:18:19 executing program 4:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0)
mkdir(&(0x7f000082f000)='./control\x00', 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000000d000/0xc000)=nil, 0xc000}, 0x1})
r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0)
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30)
chmod(&(0x7f0000000140)='./control/file0\x00', 0x0)
unlink(&(0x7f00000000c0)='./control/file0\x00')
close(r1)

18:18:19 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:19 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vcs\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000480)=""/4096, 0x1000, 0x0)

18:18:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000004000)='net/netlink\x00')
dup3(r0, r1, 0x80000)

18:18:20 executing program 6:

18:18:20 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:20 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4106(gcm(aes)))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="78733976000898fcffff6054be13cfe62785ce10", 0x14)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup2(r1, r0)
write$cgroup_subtree(r2, &(0x7f0000000380)={[{0x0, 'rdma', 0x20}, {0x0, 'cpu', 0x20}, {0x0, 'io', 0x20}, {0x0, 'io', 0x20}, {0x0, 'cpu', 0x20}]}, 0x18)
recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000180)=@pptp={0x0, 0x0, {0x0, @loopback}}, 0x80, &(0x7f0000000200), 0x0, &(0x7f0000000240)=""/223, 0xdf}}, {{&(0x7f00000010c0)=@nfc, 0x80, &(0x7f0000001240)=[{&(0x7f0000001180)=""/161, 0xa1}], 0x1}}], 0x2, 0x0, &(0x7f0000001400)={0x0, 0x1c9c380})

18:18:20 executing program 1:

18:18:20 executing program 0:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40086607, 0x400023)

18:18:20 executing program 3:

18:18:20 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:20 executing program 6:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r0=>0xffffffff}}}, 0x20)
add_key(&(0x7f0000000040)='id_legacy\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, &(0x7f00000003c0)="8677926c9d364f0f90e52686f36b52efdafcdad696493226b4ab1015ee2cbfb8fb", 0x21, 0xfffffffffffffffd)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, &(0x7f0000000300)={0x5, 0x0, 0x7})
keyctl$negate(0xd, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000280)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000140), r0, 0x0, 0x0, 0x1}}, 0x20)

18:18:20 executing program 3:
r0 = getpid()
sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x0)
nanosleep(&(0x7f0000000040)={0x0, 0x1c9c380}, &(0x7f0000000140))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
prctl$intptr(0x29, 0x0)

18:18:20 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sync()

18:18:20 executing program 6:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000140)="025cc83d6d345f8f762070")
r1 = inotify_init()
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ftruncate(r2, 0x2)
inotify_add_watch(r1, &(0x7f0000000240)='.\x00', 0x80000002)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

18:18:20 executing program 4:

18:18:20 executing program 5:

18:18:20 executing program 0:

18:18:20 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:20 executing program 0:

18:18:20 executing program 5:

18:18:21 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:21 executing program 1:

18:18:21 executing program 4:

18:18:21 executing program 6:

18:18:21 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:21 executing program 5:

18:18:21 executing program 0:

18:18:21 executing program 3:

18:18:21 executing program 6:

18:18:21 executing program 5:

18:18:21 executing program 1:

18:18:21 executing program 4:

18:18:21 executing program 0:

18:18:21 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:21 executing program 5:

18:18:21 executing program 6:

18:18:22 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:22 executing program 4:

18:18:22 executing program 1:

18:18:22 executing program 0:

18:18:22 executing program 3:

18:18:22 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:22 executing program 5:

18:18:22 executing program 6:

18:18:22 executing program 6:

18:18:22 executing program 4:

18:18:22 executing program 5:

18:18:22 executing program 1:

18:18:22 executing program 3:

18:18:22 executing program 0:

18:18:22 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:22 executing program 4:

18:18:23 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:23 executing program 1:

18:18:23 executing program 6:

18:18:23 executing program 3:

18:18:23 executing program 0:

18:18:23 executing program 5:

18:18:23 executing program 4:

18:18:23 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:23 executing program 0:

18:18:23 executing program 3:

18:18:23 executing program 4:

18:18:23 executing program 6:

18:18:23 executing program 1:

18:18:23 executing program 5:

18:18:23 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:23 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:23 executing program 1:

18:18:23 executing program 4:

18:18:23 executing program 0:

18:18:23 executing program 6:

18:18:23 executing program 5:

18:18:23 executing program 3:

18:18:23 executing program 0:

18:18:23 executing program 6:

18:18:23 executing program 1:

18:18:23 executing program 4:

18:18:23 executing program 2:

18:18:23 executing program 5:

18:18:23 executing program 3:

18:18:23 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x6, 0x400000)
pread64(r0, &(0x7f0000003c00)=""/4096, 0x200000, 0x0)

18:18:23 executing program 0:
mlockall(0x1)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munlockall()

18:18:24 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:24 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x34000, 0xe4ffffff00000000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000002100ff03000000000000000006000000"], 0x1}, 0x1}, 0x0)

18:18:24 executing program 5:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x119)
ftruncate(r0, 0x1000)
lseek(r0, 0x0, 0x2)
ioctl(0xffffffffffffffff, 0x2, &(0x7f0000000180)='h\t')
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000000240)='./bus\x00', 0x105000, 0x0)
getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000200), &(0x7f0000000080)=0x6)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000740)=ANY=[@ANYBLOB="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"])
sendfile(r0, r2, &(0x7f0000d83ff8), 0x8000fffffffe)
ftruncate(r1, 0x0)

18:18:24 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
semget$private(0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f00000000c0)={0x6, 0x118, 0xfa00, {{0xfffffffffffffff9, 0x0, "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", 0x4f, 0x0, 0x2, 0x4, 0x7, 0x8}}}, 0x120)

18:18:24 executing program 4:
r0 = epoll_create1(0x0)
r1 = timerfd_create(0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000c1d000)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000180))

18:18:24 executing program 3:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getrusage(0x0, &(0x7f0000000380))
getgroups(0x3, &(0x7f00000000c0)=[0xee01, 0xee01, 0xffffffffffffffff])

18:18:24 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000004c0)={<r1=>0xffffffff}}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000540)={0x10, 0x30, 0xfa00, {&(0x7f0000000080), 0x1, {0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}}, r1}}, 0x38)
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x200000, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x0, 0x0)

18:18:24 executing program 0:
mlockall(0x1)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munlockall()

18:18:24 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:24 executing program 3:
perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000040)='cgroup.subtree_control\x00', 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{&(0x7f0000001700)=@generic, 0x80, &(0x7f0000001980)=[{&(0x7f0000000180)=""/58, 0x3a}], 0x1, &(0x7f00000019c0)=""/61, 0x3d}}], 0x1, 0x0, &(0x7f0000001ac0))
pwritev(r1, &(0x7f0000000200), 0x10000000000003b0, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x0, 0x0)
ioctl$LOOP_CLR_FD(r2, 0x4c01)
r3 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_int(r3, 0x29, 0x0, &(0x7f0000000140), 0xffffff20)
tee(r3, r0, 0x6bea9470, 0x0)

18:18:24 executing program 4:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r1=>0xffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000280)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000140), 0xffffffff, 0x0, 0x0, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {&(0x7f0000000040), r1, r0}}, 0x18)

18:18:24 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd52, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3e5a}}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r1=>0xffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r1, 0x3da}}, 0x10)

18:18:24 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:24 executing program 1:
r0 = shmat(0x0, &(0x7f0000fec000/0x1000)=nil, 0x7000)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000feb000/0x2000)=nil)
shmdt(r0)

[  128.056838] serio: Serial port pts0
18:18:24 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000240), 0x8)
signalfd4(r0, &(0x7f0000000040), 0x8, 0x0)

18:18:24 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:24 executing program 3:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getrusage(0x0, &(0x7f0000000380))
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(r0, 0x1000)
lseek(r0, 0x0, 0x2)
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000180)='h\t')
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000000240)='./bus\x00', 0x105000, 0x0)
getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000200), &(0x7f0000000080)=0x6)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000740)=ANY=[@ANYBLOB="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"])
sendfile(r0, r2, &(0x7f0000d83ff8), 0x8000fffffffe)
ftruncate(r1, 0x0)

18:18:24 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x2000400)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000240), 0x8)
signalfd4(r0, &(0x7f0000000040), 0x8, 0x0)

18:18:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:25 executing program 4:
perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000004000)='net/netlink\x00')
syz_mount_image$gfs2(&(0x7f0000000100)='gfs2\x00', &(0x7f0000000140)='./file0\x00', 0x5, 0x1, &(0x7f0000002500)=[{&(0x7f0000000280), 0x0, 0xffff}], 0x0, &(0x7f00000025c0)={[{@nodiscard='nodiscard', 0x2c}]})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2)

18:18:25 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setpriority(0x1, 0x0, 0x0)

18:18:25 executing program 7:
bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$alg(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r0, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r0, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:25 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r1=>0xffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000280)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000140), r1, 0x0, 0x0, 0x1}}, 0x20)

18:18:25 executing program 0:
mlockall(0x1)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munlockall()

[  128.804495] gfs2: not a GFS2 filesystem
[  128.823977] serio: Serial port pts2
18:18:25 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:25 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
msgrcv(0x0, &(0x7f0000000100)={0x0, ""/219}, 0xe3, 0x0, 0x0)

18:18:25 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:25 executing program 1:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r1=>0xffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000280)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000140)=0x7fffffff, r1, 0x0, 0x0, 0x1}}, 0x20)

18:18:25 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

[  128.847153] gfs2: not a GFS2 filesystem
18:18:25 executing program 4:
mkdir(&(0x7f000082f000)='./control\x00', 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000480)={0xaa})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = creat(&(0x7f0000000080)='./control/file0\x00', 0x0)
write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30)
rename(&(0x7f00000000c0)='./control/file0\x00', &(0x7f0000000140)='./file0\x00')
lseek(r1, 0x0, 0x0)
umount2(&(0x7f0000000000)='./file1\x00', 0x0)
close(r0)

18:18:25 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000100)={0x13, 0xffffffde, 0xfa00, {&(0x7f00000007c0)}}, 0x18)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000380), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000400)={0x5, 0x10, 0xfa00, {&(0x7f00000005c0)}}, 0x18)
setpriority(0x0, 0x0, 0x0)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000004c0))

18:18:25 executing program 1:
r0 = socket(0xa, 0x802, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000000)={0x0, 'veth0_to_bond\x00'}, 0x18)
syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x0, 0x0)

[  128.914269] serio: Serial port pts0
18:18:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x34000, 0xe4ffffff00000000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)={0x14, 0x21, 0x6ff, 0x0, 0x0, {0x6}}, 0x14}, 0x1}, 0x0)

18:18:25 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080), 0x0)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:26 executing program 5:
perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000040)='cgroup.subtree_control\x00', 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{&(0x7f0000001700)=@generic, 0x80, &(0x7f0000001980), 0x0, &(0x7f00000019c0)=""/61, 0x3d}}], 0x1, 0x0, &(0x7f0000001ac0))
pwritev(r1, &(0x7f0000000200), 0x10000000000003b0, 0x0)

18:18:26 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000380), 0x2}}, 0x20)

18:18:26 executing program 1:
clock_nanosleep(0x2, 0x0, &(0x7f0000000140)={0x0, 0x1c9c380}, &(0x7f0000000180))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x8031, 0xffffffffffffffff, 0x0)
mlock2(&(0x7f00001f2000/0x3000)=nil, 0x3000, 0x0)

18:18:26 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32", 0x8)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:26 executing program 3:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @link_local={0x1, 0x80, 0xc2}}, 0x10)
listen(r0, 0xffffffffffff7fff)

18:18:26 executing program 0:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mlockall(0x0)

18:18:26 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:26 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
semget$private(0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000380)={<r1=>0xffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f0000000400)={0x5, 0x10, 0xfa00, {&(0x7f00000005c0), r1}}, 0x18)

18:18:26 executing program 0:

18:18:26 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d0400", 0xc)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:26 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r0, 0x9471ffb441f7f2a0, 0x0, 0x40)

[  129.733421] serio: Serial port pts0
18:18:26 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x403, &(0x7f0000000500)}}, 0xfffffecf)

18:18:26 executing program 5:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000100)={0x13, 0xffffffde, 0xfa00, {&(0x7f00000007c0)}}, 0x18)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f0000000400)={0x5, 0x10, 0xfa00, {&(0x7f00000005c0)}}, 0x18)
setpriority(0x0, 0x0, 0x0)

18:18:26 executing program 0:
mkdir(&(0x7f0000554ff8)='./file0\x00', 0x0)
mount$9p_rdma(&(0x7f0000000080)='127.0.0.1\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=rdma,port=0x000090000000'])

18:18:26 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000", 0xe)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:26 executing program 3:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
msgsnd(0x0, &(0x7f00000003c0)={0x0, "f9c4d5b1f9bb2b7826b6ef26c33fda1bb35908525c4ba9d9205df05abaa31141264736665ac91c2785f9bbda0a8ddf4d64634d4f31ff3457935fad8108e4918f6b3f62efcda34a4a5e7f46aad02026ab3dcb83e60879e0d9f9a3ffecaf9ff62e5792ad00c1b57acddbf816c364431d249dd17599424d6866721942bf960418b8727a9b696bca7c6930c9121af34d2e1fff6aa97699bdb609fa81"}, 0xa2, 0x0)

18:18:26 executing program 2:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(0xffffffffffffffff, &(0x7f0000000400)={0x5, 0x10, 0xfa00, {&(0x7f00000005c0)}}, 0x18)
mq_timedsend(0xffffffffffffffff, &(0x7f00000000c0)="fdd0276834a2d9bce5f9756bc5d0fa717140c7d2fe7263cc4034d68ebf4024c03b2615674d2f2cb04dbb91eb4a094e24641627bf77f4332293fdfdef50a49903b09b84491622ec2751210961236fde7b8f80aac9ff5ab57319", 0x59, 0x1, &(0x7f0000000180))
setpriority(0x0, 0x0, 0x0)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000004c0))

18:18:26 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d0400000028", 0xf)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:27 executing program 1:
r0 = eventfd2(0x0, 0x80801)
r1 = syz_open_procfs(0x0, &(0x7f0000000340)="6e65742f6970365f666c6f776c6162656c006ec03114893458edc1c9d8dc4b0d8dae982640d0e6bb51d7ff596e1c92de0eaa319198e91f0a4d43697c2bcd77f017365af160acf33bd66432ebe50c0e8bdaf7fc39feff34ef27a1397193227f4733c145e66536c6c275112520e72b3097843b5cdac480c3b1384ebf592505f88589fcd2d7")
sendfile(r0, r1, &(0x7f00000000c0), 0x81)

18:18:27 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r1 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f00000000c0)=ANY=[])
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180), 0x0, 0x8}}, 0x20)
ftruncate(r2, 0x4)
getgroups(0x1, &(0x7f0000000200)=[0xee01])
getresgid(&(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380))
getgroups(0x5, &(0x7f00000003c0)=[0xee00, 0xee01, 0xffffffffffffffff, 0x0, 0x0])
getgid()
fstat(0xffffffffffffffff, &(0x7f0000000400))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000480), &(0x7f00000004c0)=0xc)
fstat(0xffffffffffffffff, &(0x7f0000000500))
ioctl$SCSI_IOCTL_STOP_UNIT(0xffffffffffffffff, 0x6)
ioctl$fiemap(r2, 0x40086602, &(0x7f0000000140)=ANY=[])
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000140), 0x4)

18:18:27 executing program 0:
memfd_create(&(0x7f00008effff)='\t', 0x0)

18:18:27 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00009f3fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes)\x00'}, 0x58)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
sendmmsg(r2, &(0x7f00000031c0)=[{{&(0x7f0000000140)=@can={0x1d}, 0x80, &(0x7f0000000780)=[{&(0x7f00000006c0)="1436430d48d97d3a32f6d8a3b38a641d2645315dde43a6bd599b18781b751695b1a8e759c119cf225c14fa707eba93bedb51b627eabdca612b078440427bed079dcfcc5fb24e11f19e50a4f3e3e2db8a3e9a1cebc4811c20f1e9425968cfa6a30aa224e202ee3bbea69d6a2611bad64f", 0x70}], 0x1, &(0x7f0000003640)=ANY=[]}}], 0x1, 0x48015)
sendmsg$alg(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000000)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmsg(r2, &(0x7f0000003580)={&(0x7f00000003c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000003440)=""/112, 0x200034b0}], 0x1, &(0x7f0000003500)=""/106, 0x6a}, 0x0)

18:18:27 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(r1)
sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYBLOB="00000000000000000000110000009800030014000600fe8000000000000000000000000000aa0800060000000000"], 0x2}, 0x1}, 0x0)
recvmsg$kcm(r2, &(0x7f0000006340)={&(0x7f0000004f80)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000006240)=[{&(0x7f0000005000)=""/41, 0x29}, {&(0x7f00000061c0)=""/113, 0x7}], 0x2, &(0x7f00000062c0)=""/76, 0x4c}, 0x0)

18:18:27 executing program 2:
r0 = socket$kcm(0xa, 0x2, 0x88)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r0, &(0x7f0000000580)={&(0x7f0000000080)=@in6={0xa, 0x4e24, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000100)=ANY=[]}, 0xe803)
sendmsg$kcm(r0, &(0x7f0000000500)={&(0x7f0000000240)=@in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x80, &(0x7f00000003c0), 0x0, &(0x7f0000000480)}, 0x0)

18:18:27 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:27 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:27 executing program 2:
r0 = socket$kcm(0xa, 0x2, 0x88)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r0, &(0x7f0000000580)={&(0x7f0000000080)=@in6={0xa, 0x4e24, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000100)=ANY=[]}, 0xe803)
sendmsg$kcm(r0, &(0x7f0000000500)={&(0x7f0000000240)=@in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x80, &(0x7f00000003c0), 0x0, &(0x7f0000000480)}, 0x0)

18:18:27 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:27 executing program 0:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000001c0)="025cc83d6d345f8f762070")
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x1, 0x0)
write$sndseq(r1, &(0x7f0000000200)=[{0x81, 0x1000000000008, 0x0, 0x0, @tick=0xe3, {}, {}, @raw8={"959546592b83c98a10d789af"}}], 0xffffff87)

18:18:27 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

[  130.629166] serio: Serial port pts0
18:18:27 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(r1)
sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYBLOB="00000000000000000000110000009800030014000600fe8000000000000000000000000000aa0800060000000000"], 0x2}, 0x1}, 0x0)
recvmsg$kcm(r2, &(0x7f0000006340)={&(0x7f0000004f80)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000006240)=[{&(0x7f0000005000)=""/41, 0x29}, {&(0x7f00000061c0)=""/113, 0x7}], 0x2, &(0x7f00000062c0)=""/76, 0x4c}, 0x0)

18:18:27 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  130.722179] EXT4-fs (loop1): error: journal path ./file0 is not a block device
18:18:27 executing program 3:
r0 = socket$inet6(0xa, 0x1000000000003, 0x100000003)
ioctl(r0, 0x8912, &(0x7f0000000200)="025dc83d6d345f8f762070")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
readv(r1, &(0x7f0000000500)=[{&(0x7f00000004c0)=""/54, 0x36}], 0x1)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040))
r2 = syz_open_pts(r1, 0x2)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000340))
r3 = dup3(r2, r1, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
write(r1, &(0x7f0000000100)='*', 0x1)
ioctl$TCXONC(r2, 0x540a, 0x1)

18:18:27 executing program 0:
request_key(&(0x7f0000000000)='pkcs7_test\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a}, &(0x7f0000000100)='/dev/uinput\x00', 0x0)

18:18:27 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000040)="025cc83d6d345f8f762070")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x4030ae7b, &(0x7f0000000280))

18:18:27 executing program 5:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x1, 0x0)
ppoll(&(0x7f0000000040)=[{r0}], 0x1, &(0x7f0000000080), &(0x7f00000000c0), 0x8)
write$binfmt_script(r0, &(0x7f0000000100)=ANY=[@ANYBLOB='#'], 0x1)

18:18:27 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  130.821194] EXT4-fs (loop1): error: journal path ./file0 is not a block device
18:18:27 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:27 executing program 0:
open(&(0x7f0000000040)='./file0\x00', 0x42, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
write$P9_RATTACH(r0, &(0x7f0000000000)={0x14, 0x69}, 0x14)

18:18:27 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:27 executing program 5:
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c)
listen(r0, 0xffffffffffffff7f)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000400)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}}}, &(0x7f00000004c0)=0x98)

[  130.939438] EXT4-fs (loop1): error: journal path ./file0 is not a block device
18:18:27 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:27 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:28 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@assoc={0x18, 0x117, 0x4, 0x2f5}], 0x18}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:28 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000000)='2', 0x1}], 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)="636c6561725f72656673007edb")
writev(r0, &(0x7f00000000c0), 0x20000000000003fa)

18:18:28 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:28 executing program 5:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000002c0)="025cc83d6d345f8f762070")
r1 = socket(0x1, 0x2, 0x0)
shutdown(r1, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f000000eff4))
epoll_wait(r2, &(0x7f0000000080)=[{}], 0x1, 0xfffffffffffffef7)
close(r2)
shutdown(r1, 0x1)

18:18:28 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  131.656559] EXT4-fs (loop1): error: journal path ./file0 is not a block device
18:18:28 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x10000000, &(0x7f0000000080), &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0))

18:18:28 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:28 executing program 2:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4001, 0x0, @local={0xac, 0x14, 0x14, 0xaa}, @dev={0xac, 0x14, 0x14}, {[@timestamp={0x8, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2=0xe0000002]}, {[@multicast1=0xe0000001]}, {}, {[@loopback=0x7f000001]}, {[@broadcast=0xffffffff]}, {[@multicast1=0xe0000001]}, {[@dev={0xac, 0x14, 0x14}]}]}]}}}}}}}, &(0x7f0000000000))

18:18:28 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:28 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:28 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x34000, 0xe4ffffff00000000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)={0x14, 0x24, 0x6ff, 0x0, 0x0, {0x4}}, 0x14}, 0x1}, 0x0)

18:18:28 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:28 executing program 3:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getrusage(0x0, &(0x7f0000000380))
ftruncate(0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000180))
r0 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000600), &(0x7f0000000640)=0x14)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000480)={0x0, 0x0, 0xfff})

18:18:28 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:28 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:28 executing program 3:
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000000200)=ANY=[@ANYBLOB="0002"])

[  131.847098] EXT4-fs (loop1): error: journal path ./file0 is not a block device
[  131.932762] serio: Serial port pts0
18:18:29 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:29 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000080), &(0x7f0000000100)=0x68)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000300)={@local={0xfe, 0x80, [], 0xaa}, 0x71})

18:18:29 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
sendmmsg(r2, &(0x7f00000031c0)=[{{&(0x7f0000000140)=@can={0x1d}, 0x80, &(0x7f0000000780)=[{&(0x7f00000006c0)="1436430d48d97d3a32f6d8a3b38a641d2645315dde43a6bd599b18781b751695b1a8e759c119cf225c14fa707eba93bedb51b627eabdca612b078440427bed079dcfcc5fb24e11f19e50a4f3e3e2db8a3e9a1cebc4811c20f1e9425968cfa6a30aa224e202ee3bbea69d6a2611bad64f", 0x70}], 0x1, &(0x7f0000003640)=ANY=[]}}], 0x1, 0x48015)
sendmsg$alg(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000000)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmsg(r2, &(0x7f0000003580)={&(0x7f00000003c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000003440)=""/112, 0x200034b0}], 0x1, &(0x7f0000003500)=""/106, 0x6a}, 0x0)

18:18:29 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:29 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:29 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:29 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:29 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:29 executing program 0:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:29 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  132.631268] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:29 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:29 executing program 2:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:29 executing program 5 (fault-call:5 fault-nth:0):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:29 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:29 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:29 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  132.756450] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  132.808942] FAULT_INJECTION: forcing a failure.
[  132.808942] name failslab, interval 1, probability 0, space 0, times 1
[  132.820344] CPU: 0 PID: 8147 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  132.828764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  132.838131] Call Trace:
[  132.840725]  dump_stack+0x1c9/0x2b4
[  132.844360]  ? dump_stack_print_info.cold.2+0x52/0x52
[  132.849568]  should_fail.cold.4+0xa/0x11
[  132.853630]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  132.858753]  ? tracing_generic_entry_update+0x18e/0x200
[  132.864349]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  132.869908]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  132.875481]  ? perf_tp_event+0x91b/0xc40
[  132.879552]  ? perf_swevent_event+0x2e0/0x2e0
[  132.884046]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  132.889594]  ? trace_hardirqs_on+0x10/0x10
[  132.893832]  ? trace_hardirqs_on+0x10/0x10
[  132.898061]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  132.903163]  ? check_same_owner+0x340/0x340
[  132.907481]  ? rcu_note_context_switch+0x730/0x730
[  132.912423]  __should_failslab+0x124/0x180
[  132.916654]  should_failslab+0x9/0x14
[  132.920455]  kmem_cache_alloc+0x2af/0x760
[  132.924695]  jbd2__journal_start+0x1e7/0xa80
[  132.929105]  ? jbd2_write_access_granted.part.9+0x430/0x430
[  132.934821]  ? rcu_note_context_switch+0x730/0x730
[  132.939773]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  132.945322]  __ext4_journal_start_sb+0x182/0x600
[  132.950084]  ? ext4_ioctl_setflags+0x278/0x7d0
[  132.954684]  ? ext4_journal_abort_handle.isra.5+0x260/0x260
[  132.960395]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  132.965927]  ? security_capable+0x99/0xc0
[  132.970070]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  132.975602]  ? ns_capable_common+0x13f/0x170
[  132.980012]  ext4_ioctl_setflags+0x278/0x7d0
[  132.984423]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  132.988836]  ? down_read+0x1d0/0x1d0
[  132.992541]  ? mnt_clone_write+0xed/0x130
[  132.996684]  ? __mnt_want_write_file+0xa2/0xc0
[  133.001282]  ext4_ioctl+0xe41/0x4210
[  133.004990]  ? zap_class+0x740/0x740
[  133.008717]  ? memset+0x31/0x40
[  133.012095]  ? ext4_ioctl_group_add+0x560/0x560
[  133.016754]  ? perf_trace_lock+0x49d/0x920
[  133.020989]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  133.026100]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  133.031201]  ? zap_class+0x740/0x740
[  133.034915]  ? __check_object_size+0x9d/0x5f2
[  133.039426]  ? lock_acquire+0x1e4/0x540
[  133.043392]  ? __fget+0x4ac/0x740
[  133.046850]  ? lock_downgrade+0x8f0/0x8f0
[  133.051023]  ? lock_release+0xa30/0xa30
[  133.054990]  ? zap_class+0x740/0x740
[  133.058828]  ? __f_unlock_pos+0x19/0x20
[  133.062800]  ? __fget+0x4d5/0x740
[  133.066345]  ? ksys_dup3+0x690/0x690
[  133.070061]  ? kasan_check_write+0x14/0x20
[  133.074294]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  133.079223]  ? fsnotify+0xbac/0x14e0
[  133.082928]  ? vfs_write+0x2f3/0x560
[  133.086722]  ? ext4_ioctl_group_add+0x560/0x560
[  133.091479]  do_vfs_ioctl+0x1de/0x1720
[  133.095620]  ? fsnotify_first_mark+0x350/0x350
[  133.100206]  ? ioctl_preallocate+0x300/0x300
[  133.104606]  ? __fget_light+0x2f7/0x440
[  133.108573]  ? fget_raw+0x20/0x20
[  133.112114]  ? __sb_end_write+0xac/0xe0
[  133.116087]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  133.121633]  ? fput+0x130/0x1a0
[  133.124906]  ? ksys_write+0x1ae/0x260
[  133.128704]  ? security_file_ioctl+0x94/0xc0
[  133.133127]  ksys_ioctl+0xa9/0xd0
[  133.136592]  __x64_sys_ioctl+0x73/0xb0
[  133.140487]  do_syscall_64+0x1b9/0x820
[  133.144367]  ? finish_task_switch+0x1d3/0x870
[  133.148875]  ? syscall_return_slowpath+0x5e0/0x5e0
[  133.153811]  ? syscall_return_slowpath+0x31d/0x5e0
[  133.158748]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  133.163757]  ? prepare_exit_to_usermode+0x291/0x3b0
[  133.168770]  ? perf_trace_sys_enter+0xb10/0xb10
[  133.173443]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  133.178471]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  133.183656] RIP: 0033:0x455e29
[  133.186850] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
18:18:29 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:29 executing program 0:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  133.206506] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  133.214388] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  133.221655] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  133.228916] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  133.236177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  133.243716] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000000
18:18:29 executing program 4:
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  133.304949] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:30 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:30 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
dup3(r1, r0, 0x0)

18:18:30 executing program 2 (fault-call:2 fault-nth:0):
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:30 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440), 0x0, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:30 executing program 4:
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:30 executing program 5 (fault-call:5 fault-nth:1):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:30 executing program 0 (fault-call:2 fault-nth:0):
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:30 executing program 4:
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  133.567121] FAULT_INJECTION: forcing a failure.
[  133.567121] name failslab, interval 1, probability 0, space 0, times 0
[  133.578515] CPU: 1 PID: 8189 Comm: syz-executor2 Not tainted 4.18.0-rc3-next-20180709+ #2
[  133.586845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  133.596202] Call Trace:
[  133.598891]  dump_stack+0x1c9/0x2b4
[  133.602544]  ? dump_stack_print_info.cold.2+0x52/0x52
[  133.607753]  ? perf_trace_lock+0xde/0x920
[  133.611922]  should_fail.cold.4+0xa/0x11
18:18:30 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
dup3(r1, r0, 0x0)

18:18:30 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  133.615998]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  133.621129]  ? zap_class+0x740/0x740
[  133.624860]  ? zap_class+0x740/0x740
[  133.628602]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  133.634377]  ? lock_acquire+0x1e4/0x540
[  133.638057] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  133.638465]  ? fs_reclaim_acquire+0x20/0x20
[  133.648583]  ? lock_downgrade+0x8f0/0x8f0
[  133.652743]  ? release_sock+0x1ec/0x2c0
[  133.656732]  ? check_same_owner+0x340/0x340
[  133.661071]  ? lock_downgrade+0x8f0/0x8f0
[  133.665234]  ? rcu_note_context_switch+0x730/0x730
[  133.670179]  __should_failslab+0x124/0x180
[  133.674432]  should_failslab+0x9/0x14
[  133.678243]  kmem_cache_alloc_node+0x272/0x780
[  133.682836]  ? __local_bh_enable_ip+0x161/0x230
[  133.687515]  ? _raw_spin_unlock_bh+0x30/0x40
[  133.691953]  __alloc_skb+0x119/0x790
[  133.695682]  ? skb_scrub_packet+0x490/0x490
[  133.700021]  ? netlink_insert+0x15d/0x3f0
[  133.704281]  ? __netlink_insert+0x13d0/0x13d0
[  133.708971]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  133.714524]  ? netlink_autobind.isra.34+0x23b/0x320
[  133.719559]  netlink_sendmsg+0xb29/0xfc0
[  133.723635]  ? netlink_unicast+0x760/0x760
[  133.727912]  ? move_addr_to_kernel.part.20+0x100/0x100
[  133.733205]  ? security_socket_sendmsg+0x94/0xc0
[  133.737990]  ? netlink_unicast+0x760/0x760
[  133.742364]  sock_sendmsg+0xd5/0x120
[  133.746091]  ___sys_sendmsg+0x7fd/0x930
[  133.750089]  ? copy_msghdr_from_user+0x580/0x580
[  133.754858]  ? __f_unlock_pos+0x19/0x20
[  133.758855]  ? lock_downgrade+0x8f0/0x8f0
[  133.762995]  ? proc_fail_nth_write+0x9e/0x210
[  133.767493]  ? __fget_light+0x2f7/0x440
[  133.771463]  ? lock_acquire+0x1e4/0x540
[  133.775450]  ? fget_raw+0x20/0x20
[  133.778894]  ? kasan_check_write+0x14/0x20
[  133.783125]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  133.788052]  ? fsnotify+0xbac/0x14e0
[  133.791754]  ? vfs_write+0x2f3/0x560
[  133.795465]  ? wait_for_completion+0x8d0/0x8d0
[  133.800051]  ? lock_release+0xa30/0xa30
[  133.804038]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  133.809572]  ? sockfd_lookup_light+0xc5/0x160
[  133.814064]  __sys_sendmsg+0x11d/0x290
[  133.817943]  ? __ia32_sys_shutdown+0x80/0x80
[  133.822340]  ? __sb_end_write+0xac/0xe0
[  133.826406]  ? fput+0x130/0x1a0
[  133.829681]  ? ksys_write+0x1ae/0x260
[  133.833482]  ? syscall_slow_exit_work+0x500/0x500
[  133.838326]  __x64_sys_sendmsg+0x78/0xb0
[  133.842385]  do_syscall_64+0x1b9/0x820
[  133.846263]  ? finish_task_switch+0x1d3/0x870
[  133.850761]  ? syscall_return_slowpath+0x5e0/0x5e0
[  133.856756]  ? syscall_return_slowpath+0x31d/0x5e0
[  133.861695]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  133.866703]  ? prepare_exit_to_usermode+0x291/0x3b0
[  133.871705]  ? perf_trace_sys_enter+0xb10/0xb10
[  133.876365]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  133.881230]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  133.886413] RIP: 0033:0x455e29
[  133.889612] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  133.909065] RSP: 002b:00007f2947d34c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
18:18:30 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:30 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
dup3(r1, r0, 0x0)

18:18:30 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  133.916873] RAX: ffffffffffffffda RBX: 00007f2947d356d4 RCX: 0000000000455e29
[  133.924138] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000014
[  133.931482] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  133.938750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[  133.946013] R13: 00000000004c1482 R14: 00000000004d1948 R15: 0000000000000000
[  133.987970] FAULT_INJECTION: forcing a failure.
[  133.987970] name failslab, interval 1, probability 0, space 0, times 0
[  133.999318] CPU: 0 PID: 8185 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  134.007750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  134.017374] Call Trace:
[  134.020053]  dump_stack+0x1c9/0x2b4
[  134.024775]  ? dump_stack_print_info.cold.2+0x52/0x52
[  134.029981]  ? perf_swevent_event+0x2e0/0x2e0
[  134.034487]  should_fail.cold.4+0xa/0x11
[  134.038550]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  134.043658]  ? perf_swevent_event+0x2e0/0x2e0
[  134.048154]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  134.053252]  ? trace_hardirqs_on+0x10/0x10
[  134.057573]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  134.062688]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  134.067814]  ? perf_tp_event+0xc40/0xc40
[  134.071877]  ? perf_tp_event+0xc40/0xc40
[  134.075943]  ? memset+0x31/0x40
[  134.079222]  ? perf_trace_lock+0x49d/0x920
[  134.083452]  ? perf_trace_lock_acquire+0xeb/0x9a0
[  134.088343]  __should_failslab+0x124/0x180
[  134.092582]  should_failslab+0x9/0x14
[  134.096385]  kmem_cache_alloc+0x47/0x760
[  134.100549]  ? rcu_note_context_switch+0x730/0x730
[  134.105482]  ? mempool_free+0x370/0x370
[  134.109462]  mempool_alloc_slab+0x44/0x60
[  134.113623]  mempool_alloc+0x193/0x4b0
[  134.117642]  ? mempool_destroy+0x30/0x30
[  134.121708]  ? lock_acquire+0x1e4/0x540
[  134.125865]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  134.130964]  ? lock_downgrade+0x8f0/0x8f0
[  134.135128]  bio_alloc_bioset+0x39c/0x6f0
[  134.139274]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  134.143941]  ? bvec_alloc+0x2d0/0x2d0
[  134.147737]  ? kasan_check_write+0x14/0x20
[  134.152055]  ? kasan_check_write+0x14/0x20
[  134.156293]  ? do_raw_read_unlock+0x3f/0x60
[  134.160624]  blkdev_issue_flush+0xd1/0x300
[  134.164859]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  134.169794]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  134.175508]  ? kasan_check_read+0x11/0x20
[  134.179649]  ? do_raw_spin_unlock+0xa7/0x2f0
[  134.184138]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  134.188728]  jbd2_log_do_checkpoint+0xd5/0x1370
[  134.193483]  ? remove_wait_queue+0x360/0x360
[  134.197978]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  134.203718]  ? lock_acquire+0x1e4/0x540
[  134.207861]  ? jbd2_journal_flush+0x144/0x540
[  134.212351]  ? lock_downgrade+0x8f0/0x8f0
[  134.216499]  ? kasan_check_read+0x11/0x20
[  134.220637]  ? do_raw_spin_unlock+0xa7/0x2f0
[  134.225037]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  134.229618]  ? kasan_check_write+0x14/0x20
[  134.233892]  ? do_raw_spin_lock+0xc1/0x200
[  134.238128]  jbd2_journal_flush+0x156/0x540
[  134.242537]  ext4_change_inode_journal_flag+0x230/0x3e0
[  134.247901]  ext4_ioctl_setflags+0x5fd/0x7d0
[  134.252310]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  134.256721]  ? down_read+0x1d0/0x1d0
[  134.260531]  ? __mnt_want_write_file+0xa2/0xc0
[  134.265126]  ext4_ioctl+0xe41/0x4210
[  134.268832]  ? zap_class+0x740/0x740
[  134.272910]  ? ext4_ioctl_group_add+0x560/0x560
[  134.277572]  ? perf_trace_lock+0x49d/0x920
[  134.281811]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  134.286909]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  134.292193]  ? zap_class+0x740/0x740
[  134.295921]  ? lock_acquire+0x1e4/0x540
[  134.299984]  ? __fget+0x4ac/0x740
[  134.303449]  ? lock_downgrade+0x8f0/0x8f0
[  134.307593]  ? lock_release+0xa30/0xa30
[  134.311566]  ? zap_class+0x740/0x740
[  134.315442]  ? __f_unlock_pos+0x19/0x20
[  134.319413]  ? __fget+0x4d5/0x740
[  134.322866]  ? ksys_dup3+0x690/0x690
[  134.326582]  ? kasan_check_write+0x14/0x20
[  134.330825]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  134.335759]  ? fsnotify+0xbac/0x14e0
[  134.339502]  ? vfs_write+0x2f3/0x560
[  134.343224]  ? ext4_ioctl_group_add+0x560/0x560
[  134.347893]  do_vfs_ioctl+0x1de/0x1720
[  134.351813]  ? fsnotify_first_mark+0x350/0x350
[  134.356401]  ? ioctl_preallocate+0x300/0x300
[  134.360803]  ? __fget_light+0x2f7/0x440
[  134.364774]  ? fget_raw+0x20/0x20
[  134.368238]  ? __sb_end_write+0xac/0xe0
[  134.372223]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  134.377757]  ? fput+0x130/0x1a0
[  134.381054]  ? ksys_write+0x1ae/0x260
[  134.384851]  ? security_file_ioctl+0x94/0xc0
[  134.389255]  ksys_ioctl+0xa9/0xd0
[  134.392707]  __x64_sys_ioctl+0x73/0xb0
[  134.396587]  do_syscall_64+0x1b9/0x820
[  134.400476]  ? finish_task_switch+0x1d3/0x870
[  134.404967]  ? syscall_return_slowpath+0x5e0/0x5e0
[  134.409997]  ? syscall_return_slowpath+0x31d/0x5e0
[  134.414943]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  134.419961]  ? prepare_exit_to_usermode+0x291/0x3b0
[  134.424973]  ? perf_trace_sys_enter+0xb10/0xb10
[  134.429647]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  134.434500]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  134.439694] RIP: 0033:0x455e29
[  134.442870] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  134.462288] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.470018] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  134.477292] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
18:18:31 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:31 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:31 executing program 2 (fault-call:2 fault-nth:1):
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  134.484636] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  134.491909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  134.499167] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000001
[  134.591549] FAULT_INJECTION: forcing a failure.
[  134.591549] name failslab, interval 1, probability 0, space 0, times 0
[  134.602870] CPU: 1 PID: 8223 Comm: syz-executor2 Not tainted 4.18.0-rc3-next-20180709+ #2
[  134.611277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  134.620722] Call Trace:
[  134.623326]  dump_stack+0x1c9/0x2b4
[  134.627061]  ? dump_stack_print_info.cold.2+0x52/0x52
[  134.632268]  should_fail.cold.4+0xa/0x11
[  134.636344]  ? fault_create_debugfs_attr+0x1f0/0x1f0
18:18:31 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:31 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440), 0x0, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:31 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:31 executing program 5 (fault-call:5 fault-nth:2):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:31 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0xf00, &(0x7f0000000200), 0x1c8)

[  134.641454]  ? __save_stack_trace+0x8d/0xf0
[  134.645795]  ? save_stack+0xa9/0xd0
[  134.649430]  ? save_stack+0x43/0xd0
[  134.653062]  ? kasan_slab_alloc+0x12/0x20
[  134.657231]  ? kmem_cache_alloc_node+0x144/0x780
[  134.661998]  ? __alloc_skb+0x119/0x790
[  134.665897]  ? netlink_sendmsg+0xb29/0xfc0
[  134.670141]  ? sock_sendmsg+0xd5/0x120
[  134.674063]  ? ___sys_sendmsg+0x7fd/0x930
[  134.678287]  ? __sys_sendmsg+0x11d/0x290
[  134.682361]  ? do_syscall_64+0x1b9/0x820
[  134.686436]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  134.691815]  ? lock_acquire+0x1e4/0x540
[  134.695809]  ? fs_reclaim_acquire+0x20/0x20
[  134.700140]  ? lock_downgrade+0x8f0/0x8f0
[  134.704295]  ? check_same_owner+0x340/0x340
[  134.708632]  ? lock_downgrade+0x8f0/0x8f0
[  134.712956]  ? rcu_note_context_switch+0x730/0x730
[  134.717884]  __should_failslab+0x124/0x180
[  134.722115]  should_failslab+0x9/0x14
[  134.726089]  kmem_cache_alloc_node_trace+0x26f/0x770
[  134.731183]  ? kasan_kmalloc+0xc4/0xe0
[  134.735074]  __kmalloc_node_track_caller+0x33/0x70
[  134.739998]  __kmalloc_reserve.isra.41+0x3a/0xe0
[  134.744761]  __alloc_skb+0x155/0x790
[  134.748482]  ? skb_scrub_packet+0x490/0x490
[  134.752819]  ? netlink_insert+0x15d/0x3f0
[  134.756959]  ? __netlink_insert+0x13d0/0x13d0
[  134.761463]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  134.767002]  ? netlink_autobind.isra.34+0x23b/0x320
[  134.772122]  netlink_sendmsg+0xb29/0xfc0
[  134.776196]  ? netlink_unicast+0x760/0x760
[  134.780424]  ? move_addr_to_kernel.part.20+0x100/0x100
[  134.785696]  ? security_socket_sendmsg+0x94/0xc0
[  134.790439]  ? netlink_unicast+0x760/0x760
[  134.794664]  sock_sendmsg+0xd5/0x120
[  134.798380]  ___sys_sendmsg+0x7fd/0x930
[  134.802363]  ? find_vpid+0xf0/0xf0
[  134.805901]  ? copy_msghdr_from_user+0x580/0x580
[  134.810647]  ? __f_unlock_pos+0x19/0x20
[  134.814613]  ? lock_downgrade+0x8f0/0x8f0
[  134.818851]  ? proc_fail_nth_write+0x9e/0x210
[  134.823337]  ? __fget_light+0x2f7/0x440
[  134.827300]  ? lock_acquire+0x1e4/0x540
[  134.831265]  ? fget_raw+0x20/0x20
[  134.835011]  ? kasan_check_write+0x14/0x20
[  134.839241]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  134.844169]  ? fsnotify+0xbac/0x14e0
[  134.847884]  ? vfs_write+0x2f3/0x560
[  134.851590]  ? wait_for_completion+0x8d0/0x8d0
[  134.856163]  ? lock_release+0xa30/0xa30
[  134.860134]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  134.865670]  ? sockfd_lookup_light+0xc5/0x160
[  134.870172]  __sys_sendmsg+0x11d/0x290
[  134.874062]  ? __ia32_sys_shutdown+0x80/0x80
[  134.878460]  ? __sb_end_write+0xac/0xe0
[  134.882435]  ? fput+0x130/0x1a0
[  134.885705]  ? ksys_write+0x1ae/0x260
[  134.889510]  __x64_sys_sendmsg+0x78/0xb0
[  134.893564]  do_syscall_64+0x1b9/0x820
[  134.897438]  ? finish_task_switch+0x1d3/0x870
[  134.901933]  ? syscall_return_slowpath+0x5e0/0x5e0
[  134.906862]  ? syscall_return_slowpath+0x31d/0x5e0
[  134.911787]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  134.916888]  ? prepare_exit_to_usermode+0x291/0x3b0
[  134.921896]  ? perf_trace_sys_enter+0xb10/0xb10
[  134.926642]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  134.931568]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  134.936847] RIP: 0033:0x455e29
[  134.940035] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  134.959348] RSP: 002b:00007f2947d34c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.967146] RAX: ffffffffffffffda RBX: 00007f2947d356d4 RCX: 0000000000455e29
[  134.974411] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000014
[  134.981667] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
18:18:31 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  134.989185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[  134.996459] R13: 00000000004c1482 R14: 00000000004d1948 R15: 0000000000000001
[  135.014286] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  135.032989] FAULT_INJECTION: forcing a failure.
[  135.032989] name failslab, interval 1, probability 0, space 0, times 0
[  135.044423] CPU: 0 PID: 8229 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  135.052851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  135.062379] Call Trace:
[  135.064988]  dump_stack+0x1c9/0x2b4
[  135.068632]  ? dump_stack_print_info.cold.2+0x52/0x52
[  135.074168]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  135.079722]  ? tracing_generic_entry_update+0x18e/0x200
[  135.085092]  should_fail.cold.4+0xa/0x11
[  135.089160]  ? perf_tp_event+0x91b/0xc40
[  135.093224]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  135.098421]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.103532]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  135.108748]  ? perf_tp_event+0xc40/0xc40
[  135.112815]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.117926]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.123186]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  135.128290]  ? memset+0x31/0x40
[  135.131577]  ? perf_trace_lock+0x49d/0x920
[  135.135843]  ? perf_trace_lock_acquire+0xeb/0x9a0
[  135.140716]  ? zap_class+0x740/0x740
[  135.144427]  ? perf_trace_lock+0x920/0x920
[  135.148660]  ? perf_trace_lock_acquire+0xeb/0x9a0
[  135.153506]  __should_failslab+0x124/0x180
[  135.157751]  should_failslab+0x9/0x14
[  135.161568]  kmem_cache_alloc_node+0x56/0x780
[  135.166059]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  135.171608]  create_task_io_context+0xbd/0x580
[  135.176190]  ? ioc_clear_queue+0x610/0x610
[  135.180436]  ? lock_acquire+0x1e4/0x540
[  135.184410]  ? generic_make_request_checks+0x1091/0x2410
[  135.189865]  ? lock_downgrade+0x8f0/0x8f0
[  135.194030]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  135.199650]  ? __disk_get_part+0x1ec/0x320
[  135.203881]  ? part_in_flight_rw+0x2f0/0x2f0
[  135.208388]  ? lock_acquire+0x1e4/0x540
[  135.212369]  ? rcu_note_context_switch+0x730/0x730
[  135.217320]  generic_make_request_checks+0x164f/0x2410
[  135.222698]  ? blk_init_queue+0x30/0x30
[  135.226948]  ? blk_queue_enter+0xb47/0xed0
[  135.231196]  ? blk_exit_rl+0x80/0x80
[  135.235011]  ? save_stack+0xa9/0xd0
[  135.238649]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.243837]  ? write_dirty_buffer+0xba/0x150
[  135.248243]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  135.253186]  ? jbd2_journal_flush+0x156/0x540
[  135.257674]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  135.263214]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.268311]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  135.273416]  ? perf_tp_event+0xc40/0xc40
[  135.277555]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.282652]  ? perf_trace_lock+0x49d/0x920
[  135.286896]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.291997]  ? memset+0x31/0x40
[  135.295284]  ? perf_trace_lock+0x49d/0x920
[  135.299525]  generic_make_request+0x2aa/0x1800
[  135.304120]  ? zap_class+0x740/0x740
[  135.307841]  ? perf_trace_lock+0x920/0x920
[  135.312082]  ? blk_get_request+0x7e0/0x7e0
[  135.316401]  ? kasan_slab_alloc+0x12/0x20
[  135.320549]  ? kmem_cache_alloc+0x2fc/0x760
[  135.324873]  ? mempool_alloc_slab+0x44/0x60
[  135.329203]  ? mempool_free+0x370/0x370
[  135.333462]  ? lock_acquire+0x1e4/0x540
[  135.337432]  ? guard_bio_eod+0x1ed/0x600
[  135.341575]  ? lock_downgrade+0x8f0/0x8f0
[  135.345740]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  135.351280]  submit_bio+0xba/0x460
[  135.354822]  ? submit_bio+0xba/0x460
[  135.358622]  ? generic_make_request+0x1800/0x1800
[  135.363459]  ? __bio_add_page+0x122/0x280
[  135.367713]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  135.372725]  ? guard_bio_eod+0x2b4/0x600
[  135.376790]  ? bio_add_page+0xed/0x120
[  135.380699]  submit_bh_wbc+0x5de/0x790
[  135.384602]  write_dirty_buffer+0xba/0x150
[  135.388836]  jbd2_log_do_checkpoint+0xc08/0x1370
[  135.393615]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  135.399327]  ? lock_acquire+0x1e4/0x540
[  135.403296]  ? jbd2_journal_flush+0x144/0x540
[  135.407812]  ? kasan_check_read+0x11/0x20
[  135.411959]  ? do_raw_spin_unlock+0xa7/0x2f0
[  135.416370]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  135.421053]  ? kasan_check_write+0x14/0x20
[  135.425281]  ? do_raw_spin_lock+0xc1/0x200
[  135.429519]  jbd2_journal_flush+0x156/0x540
[  135.433844]  ext4_change_inode_journal_flag+0x230/0x3e0
[  135.439207]  ext4_ioctl_setflags+0x5fd/0x7d0
[  135.443616]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  135.448023]  ? down_read+0x1d0/0x1d0
[  135.451756]  ? __mnt_want_write_file+0xa2/0xc0
[  135.456338]  ext4_ioctl+0xe41/0x4210
[  135.460050]  ? zap_class+0x740/0x740
[  135.463778]  ? ext4_ioctl_group_add+0x560/0x560
[  135.468438]  ? perf_trace_lock+0x49d/0x920
[  135.472674]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  135.477774]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  135.482878]  ? zap_class+0x740/0x740
[  135.486611]  ? lock_acquire+0x1e4/0x540
[  135.490581]  ? __fget+0x4ac/0x740
[  135.494034]  ? lock_downgrade+0x8f0/0x8f0
[  135.498184]  ? lock_release+0xa30/0xa30
[  135.502167]  ? zap_class+0x740/0x740
[  135.505890]  ? __f_unlock_pos+0x19/0x20
[  135.509882]  ? __fget+0x4d5/0x740
[  135.513349]  ? ksys_dup3+0x690/0x690
[  135.517093]  ? kasan_check_write+0x14/0x20
[  135.521328]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  135.526249]  ? fsnotify+0xbac/0x14e0
[  135.529958]  ? vfs_write+0x2f3/0x560
[  135.533681]  ? ext4_ioctl_group_add+0x560/0x560
[  135.538346]  do_vfs_ioctl+0x1de/0x1720
[  135.542227]  ? fsnotify_first_mark+0x350/0x350
[  135.546807]  ? ioctl_preallocate+0x300/0x300
[  135.551221]  ? __fget_light+0x2f7/0x440
[  135.555211]  ? fget_raw+0x20/0x20
[  135.558772]  ? __sb_end_write+0xac/0xe0
[  135.562924]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  135.568468]  ? fput+0x130/0x1a0
[  135.571747]  ? ksys_write+0x1ae/0x260
[  135.575546]  ? security_file_ioctl+0x94/0xc0
[  135.579958]  ksys_ioctl+0xa9/0xd0
[  135.583413]  __x64_sys_ioctl+0x73/0xb0
[  135.587297]  do_syscall_64+0x1b9/0x820
[  135.591193]  ? finish_task_switch+0x1d3/0x870
[  135.595688]  ? syscall_return_slowpath+0x5e0/0x5e0
[  135.600668]  ? syscall_return_slowpath+0x31d/0x5e0
[  135.605596]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  135.610621]  ? prepare_exit_to_usermode+0x291/0x3b0
[  135.615634]  ? perf_trace_sys_enter+0xb10/0xb10
[  135.620304]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  135.625160]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  135.630344] RIP: 0033:0x455e29
[  135.633621] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  135.653144] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  135.660852] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  135.668116] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  135.675379] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  135.682667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
18:18:32 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  135.689929] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000002
18:18:32 executing program 2 (fault-call:2 fault-nth:2):
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:32 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:32 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0xf, &(0x7f0000000200), 0x1c8)

18:18:32 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440), 0x0, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:32 executing program 5 (fault-call:5 fault-nth:3):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  135.808413] FAULT_INJECTION: forcing a failure.
[  135.808413] name failslab, interval 1, probability 0, space 0, times 0
[  135.819711] CPU: 1 PID: 8255 Comm: syz-executor2 Not tainted 4.18.0-rc3-next-20180709+ #2
[  135.828224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  135.837691] Call Trace:
[  135.840303]  dump_stack+0x1c9/0x2b4
[  135.843948]  ? dump_stack_print_info.cold.2+0x52/0x52
[  135.849410]  should_fail.cold.4+0xa/0x11
[  135.853479]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  135.859448]  ? lock_release+0xa30/0xa30
[  135.863424]  ? rcu_note_context_switch+0x730/0x730
[  135.868352]  ? kasan_check_write+0x14/0x20
[  135.872592]  ? __mutex_lock+0x6c4/0x1680
[  135.876651]  ? bpf_prog_kallsyms_find+0xde/0x4c0
[  135.881407]  ? netlink_dump+0x9f/0xd50
[  135.885283]  ? rcu_note_context_switch+0x730/0x730
[  135.890218]  ? lock_acquire+0x1e4/0x540
[  135.894192]  ? fs_reclaim_acquire+0x20/0x20
[  135.898506]  ? lock_downgrade+0x8f0/0x8f0
[  135.902648]  ? check_same_owner+0x340/0x340
[  135.906968]  ? rcu_note_context_switch+0x730/0x730
[  135.911888]  ? mutex_trylock+0x2b0/0x2b0
[  135.915940]  __should_failslab+0x124/0x180
[  135.920170]  should_failslab+0x9/0x14
[  135.923961]  kmem_cache_alloc_node+0x272/0x780
[  135.928535]  ? __netlink_dump_start+0x512/0x780
[  135.933205]  ? lock_downgrade+0x8f0/0x8f0
[  135.937431]  __alloc_skb+0x119/0x790
[  135.941144]  ? skb_scrub_packet+0x490/0x490
[  135.945480]  ? netlink_recvmsg+0x1490/0x1490
[  135.949908]  ? kasan_check_write+0x14/0x20
[  135.954153]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  135.959077]  ? wait_for_completion+0x8d0/0x8d0
[  135.963660]  ? lock_downgrade+0x8f0/0x8f0
[  135.967815]  netlink_dump+0x6e3/0xd50
[  135.971610]  ? netlink_broadcast+0x50/0x50
[  135.975853]  __netlink_dump_start+0x51a/0x780
[  135.980356]  ? rtnl_calcit.isra.29+0x560/0x560
[  135.984936]  rtnetlink_rcv_msg+0x811/0xc30
[  135.989170]  ? rtnetlink_put_metrics+0x690/0x690
[  135.993923]  ? rtnl_calcit.isra.29+0x560/0x560
[  135.998504]  netlink_rcv_skb+0x172/0x440
[  136.002556]  ? rtnetlink_put_metrics+0x690/0x690
[  136.007303]  ? netlink_ack+0xbe0/0xbe0
[  136.011198]  rtnetlink_rcv+0x1c/0x20
[  136.014911]  netlink_unicast+0x5a0/0x760
[  136.019053]  ? netlink_attachskb+0x9a0/0x9a0
[  136.023463]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  136.028989]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  136.034003]  netlink_sendmsg+0xa18/0xfc0
[  136.038064]  ? netlink_unicast+0x760/0x760
[  136.042296]  ? move_addr_to_kernel.part.20+0x100/0x100
[  136.047574]  ? security_socket_sendmsg+0x94/0xc0
[  136.052325]  ? netlink_unicast+0x760/0x760
[  136.056560]  sock_sendmsg+0xd5/0x120
[  136.060265]  ___sys_sendmsg+0x7fd/0x930
[  136.064236]  ? find_vpid+0xf0/0xf0
[  136.067866]  ? copy_msghdr_from_user+0x580/0x580
[  136.072624]  ? __f_unlock_pos+0x19/0x20
[  136.076601]  ? lock_downgrade+0x8f0/0x8f0
[  136.081185]  ? proc_fail_nth_write+0x9e/0x210
[  136.085670]  ? __fget_light+0x2f7/0x440
[  136.089635]  ? lock_acquire+0x1e4/0x540
[  136.093686]  ? fget_raw+0x20/0x20
[  136.097141]  ? kasan_check_write+0x14/0x20
[  136.101367]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  136.106381]  ? fsnotify+0xbac/0x14e0
[  136.110085]  ? vfs_write+0x2f3/0x560
[  136.113789]  ? wait_for_completion+0x8d0/0x8d0
[  136.118368]  ? lock_release+0xa30/0xa30
[  136.122346]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  136.127958]  ? sockfd_lookup_light+0xc5/0x160
[  136.132444]  __sys_sendmsg+0x11d/0x290
[  136.136323]  ? __ia32_sys_shutdown+0x80/0x80
[  136.140722]  ? __sb_end_write+0xac/0xe0
[  136.144703]  ? fput+0x130/0x1a0
[  136.147996]  ? ksys_write+0x1ae/0x260
[  136.151800]  __x64_sys_sendmsg+0x78/0xb0
[  136.155853]  do_syscall_64+0x1b9/0x820
[  136.159738]  ? finish_task_switch+0x1d3/0x870
[  136.164234]  ? syscall_return_slowpath+0x5e0/0x5e0
[  136.169153]  ? syscall_return_slowpath+0x31d/0x5e0
[  136.174076]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  136.179082]  ? prepare_exit_to_usermode+0x291/0x3b0
[  136.184103]  ? perf_trace_sys_enter+0xb10/0xb10
[  136.188766]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  136.193615]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  136.198791] RIP: 0033:0x455e29
[  136.202052] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  136.221373] RSP: 002b:00007f2947d34c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.229073] RAX: ffffffffffffffda RBX: 00007f2947d356d4 RCX: 0000000000455e29
[  136.236331] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000014
[  136.243593] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  136.250852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
18:18:32 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:32 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  136.258123] R13: 00000000004c1482 R14: 00000000004d1948 R15: 0000000000000002
[  136.290608] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  136.311778] FAULT_INJECTION: forcing a failure.
[  136.311778] name failslab, interval 1, probability 0, space 0, times 0
[  136.323292] CPU: 0 PID: 8264 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  136.331715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
18:18:32 executing program 2 (fault-call:2 fault-nth:3):
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  136.341108] Call Trace:
[  136.343725]  dump_stack+0x1c9/0x2b4
[  136.347389]  ? dump_stack_print_info.cold.2+0x52/0x52
[  136.352675]  should_fail.cold.4+0xa/0x11
[  136.356762]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  136.361869]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  136.366916]  ? bpf_prog_kallsyms_find+0xde/0x4c0
[  136.371702]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  136.376812]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  136.381924]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  136.387060]  ? perf_tp_event+0xc40/0xc40
[  136.391137]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  136.395835]  ? memset+0x31/0x40
[  136.399140]  ? perf_trace_lock+0x49d/0x920
[  136.403400]  ? perf_trace_lock_acquire+0xeb/0x9a0
[  136.408248]  __should_failslab+0x124/0x180
[  136.412601]  should_failslab+0x9/0x14
[  136.416417]  kmem_cache_alloc+0x47/0x760
[  136.420490]  ? rcu_note_context_switch+0x730/0x730
[  136.425533]  ? memset+0x31/0x40
[  136.428817]  ? mempool_free+0x370/0x370
[  136.432799]  mempool_alloc_slab+0x44/0x60
[  136.436963]  mempool_alloc+0x193/0x4b0
[  136.440863]  ? mempool_destroy+0x30/0x30
[  136.444926]  ? lock_acquire+0x1e4/0x540
[  136.448925]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  136.454046]  ? lock_downgrade+0x8f0/0x8f0
[  136.458217]  bio_alloc_bioset+0x39c/0x6f0
[  136.462370]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  136.466949]  ? bvec_alloc+0x2d0/0x2d0
[  136.470742]  ? kasan_check_write+0x14/0x20
[  136.474992]  ? kasan_check_write+0x14/0x20
[  136.479322]  ? do_raw_read_unlock+0x3f/0x60
[  136.484392]  blkdev_issue_flush+0xd1/0x300
[  136.488635]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  136.493573]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  136.499293]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  136.503888]  ? kasan_check_write+0x14/0x20
[  136.508124]  ? do_raw_spin_lock+0xc1/0x200
[  136.512364]  jbd2_log_do_checkpoint+0xa19/0x1370
[  136.517128]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  136.522854]  ? lock_acquire+0x1e4/0x540
[  136.526848]  ? jbd2_journal_flush+0x144/0x540
[  136.531570]  ? kasan_check_read+0x11/0x20
[  136.535721]  ? do_raw_spin_unlock+0xa7/0x2f0
[  136.540211]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  136.544789]  ? kasan_check_write+0x14/0x20
[  136.549026]  ? do_raw_spin_lock+0xc1/0x200
[  136.553280]  jbd2_journal_flush+0x156/0x540
[  136.557620]  ext4_change_inode_journal_flag+0x230/0x3e0
[  136.563000]  ext4_ioctl_setflags+0x5fd/0x7d0
[  136.567435]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  136.571845]  ? down_read+0x1d0/0x1d0
[  136.575554]  ? __mnt_want_write_file+0xa2/0xc0
[  136.580283]  ext4_ioctl+0xe41/0x4210
[  136.584022]  ? zap_class+0x740/0x740
[  136.587764]  ? ext4_ioctl_group_add+0x560/0x560
[  136.592443]  ? perf_trace_lock+0x49d/0x920
[  136.596674]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  136.601773]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  136.606884]  ? zap_class+0x740/0x740
[  136.610615]  ? lock_acquire+0x1e4/0x540
[  136.614584]  ? __fget+0x4ac/0x740
[  136.618044]  ? lock_downgrade+0x8f0/0x8f0
[  136.622202]  ? lock_release+0xa30/0xa30
[  136.626169]  ? zap_class+0x740/0x740
[  136.629885]  ? __f_unlock_pos+0x19/0x20
[  136.633866]  ? __fget+0x4d5/0x740
[  136.637345]  ? ksys_dup3+0x690/0x690
[  136.641100]  ? kasan_check_write+0x14/0x20
[  136.645357]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  136.650285]  ? fsnotify+0xbac/0x14e0
[  136.654000]  ? vfs_write+0x2f3/0x560
[  136.657716]  ? ext4_ioctl_group_add+0x560/0x560
[  136.662393]  do_vfs_ioctl+0x1de/0x1720
[  136.666359]  ? fsnotify_first_mark+0x350/0x350
[  136.670946]  ? ioctl_preallocate+0x300/0x300
[  136.675359]  ? __fget_light+0x2f7/0x440
[  136.679335]  ? fget_raw+0x20/0x20
[  136.682793]  ? __sb_end_write+0xac/0xe0
[  136.686786]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  136.692319]  ? fput+0x130/0x1a0
[  136.695598]  ? ksys_write+0x1ae/0x260
[  136.699396]  ? security_file_ioctl+0x94/0xc0
[  136.703810]  ksys_ioctl+0xa9/0xd0
[  136.707263]  __x64_sys_ioctl+0x73/0xb0
[  136.711145]  do_syscall_64+0x1b9/0x820
[  136.715071]  ? finish_task_switch+0x1d3/0x870
[  136.719580]  ? syscall_return_slowpath+0x5e0/0x5e0
[  136.724516]  ? syscall_return_slowpath+0x31d/0x5e0
[  136.729454]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  136.734468]  ? prepare_exit_to_usermode+0x291/0x3b0
[  136.739494]  ? perf_trace_sys_enter+0xb10/0xb10
[  136.744176]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  136.749043]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  136.754412] RIP: 0033:0x455e29
[  136.757596] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  136.777049] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  136.784760] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
18:18:33 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a", 0x1d, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

[  136.792053] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  136.799339] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  136.806786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  136.814051] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000003
[  136.892529] FAULT_INJECTION: forcing a failure.
[  136.892529] name failslab, interval 1, probability 0, space 0, times 0
[  136.903923] CPU: 0 PID: 8278 Comm: syz-executor2 Not tainted 4.18.0-rc3-next-20180709+ #2
[  136.912258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  136.921629] Call Trace:
[  136.924269]  dump_stack+0x1c9/0x2b4
[  136.927931]  ? dump_stack_print_info.cold.2+0x52/0x52
[  136.933184]  should_fail.cold.4+0xa/0x11
[  136.937287]  ? fault_create_debugfs_attr+0x1f0/0x1f0
18:18:33 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:33 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(0xffffffffffffffff, r0, 0x0)

18:18:33 executing program 5 (fault-call:5 fault-nth:4):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:33 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(0xffffffffffffffff, r0, 0x0)

18:18:33 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x100000000000000, &(0x7f0000000200), 0x1c8)

18:18:33 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  136.942497]  ? __save_stack_trace+0x8d/0xf0
[  136.946863]  ? save_stack+0xa9/0xd0
[  136.950511]  ? save_stack+0x43/0xd0
[  136.954247]  ? kasan_slab_alloc+0x12/0x20
[  136.958414]  ? kmem_cache_alloc_node+0x144/0x780
[  136.963197]  ? __alloc_skb+0x119/0x790
[  136.967121]  ? netlink_dump+0x6e3/0xd50
[  136.971113]  ? __netlink_dump_start+0x51a/0x780
[  136.975804]  ? rtnetlink_rcv_msg+0x811/0xc30
[  136.980240]  ? netlink_rcv_skb+0x172/0x440
[  136.984591]  ? netlink_unicast+0x5a0/0x760
[  136.988867]  ? netlink_sendmsg+0xa18/0xfc0
[  136.993121]  ? sock_sendmsg+0xd5/0x120
[  136.997030]  ? __sys_sendmsg+0x11d/0x290
[  137.001132]  ? lock_acquire+0x1e4/0x540
[  137.005155]  ? fs_reclaim_acquire+0x20/0x20
[  137.009520]  ? lock_downgrade+0x8f0/0x8f0
[  137.013718]  ? check_same_owner+0x340/0x340
[  137.018087]  ? lock_downgrade+0x8f0/0x8f0
[  137.022259]  ? rcu_note_context_switch+0x730/0x730
[  137.027327]  __should_failslab+0x124/0x180
[  137.031587]  should_failslab+0x9/0x14
[  137.035408]  kmem_cache_alloc_node_trace+0x26f/0x770
18:18:33 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:33 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:33 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  137.040544]  ? kasan_kmalloc+0xc4/0xe0
[  137.044465]  __kmalloc_node_track_caller+0x33/0x70
[  137.049417]  __kmalloc_reserve.isra.41+0x3a/0xe0
[  137.054202]  __alloc_skb+0x155/0x790
[  137.058068]  ? skb_scrub_packet+0x490/0x490
[  137.062413]  ? netlink_recvmsg+0x1490/0x1490
[  137.066849]  ? kasan_check_write+0x14/0x20
[  137.071104]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  137.076054]  ? wait_for_completion+0x8d0/0x8d0
[  137.080660]  ? lock_downgrade+0x8f0/0x8f0
[  137.084933]  netlink_dump+0x6e3/0xd50
[  137.088937]  ? netlink_broadcast+0x50/0x50
[  137.093207]  __netlink_dump_start+0x51a/0x780
[  137.097737]  ? rtnl_calcit.isra.29+0x560/0x560
[  137.102342]  rtnetlink_rcv_msg+0x811/0xc30
[  137.106608]  ? rtnetlink_put_metrics+0x690/0x690
[  137.111385]  ? rtnl_calcit.isra.29+0x560/0x560
[  137.116002]  netlink_rcv_skb+0x172/0x440
[  137.120089]  ? rtnetlink_put_metrics+0x690/0x690
[  137.124878]  ? netlink_ack+0xbe0/0xbe0
[  137.128803]  rtnetlink_rcv+0x1c/0x20
[  137.132547]  netlink_unicast+0x5a0/0x760
[  137.136633]  ? netlink_attachskb+0x9a0/0x9a0
[  137.141058]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  137.146601]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  137.151634]  netlink_sendmsg+0xa18/0xfc0
[  137.155710]  ? netlink_unicast+0x760/0x760
[  137.159944]  ? move_addr_to_kernel.part.20+0x100/0x100
[  137.165220]  ? security_socket_sendmsg+0x94/0xc0
[  137.169971]  ? netlink_unicast+0x760/0x760
[  137.174205]  sock_sendmsg+0xd5/0x120
[  137.177918]  ___sys_sendmsg+0x7fd/0x930
[  137.181889]  ? find_vpid+0xf0/0xf0
[  137.185437]  ? copy_msghdr_from_user+0x580/0x580
[  137.190190]  ? __f_unlock_pos+0x19/0x20
[  137.194160]  ? lock_downgrade+0x8f0/0x8f0
[  137.198320]  ? proc_fail_nth_write+0x9e/0x210
[  137.202901]  ? __fget_light+0x2f7/0x440
[  137.206879]  ? lock_acquire+0x1e4/0x540
[  137.210863]  ? fget_raw+0x20/0x20
[  137.214335]  ? kasan_check_write+0x14/0x20
[  137.218568]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  137.223491]  ? fsnotify+0xbac/0x14e0
[  137.227202]  ? vfs_write+0x2f3/0x560
[  137.230911]  ? wait_for_completion+0x8d0/0x8d0
[  137.235491]  ? lock_release+0xa30/0xa30
[  137.239478]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  137.245014]  ? sockfd_lookup_light+0xc5/0x160
[  137.249533]  __sys_sendmsg+0x11d/0x290
[  137.253430]  ? __ia32_sys_shutdown+0x80/0x80
[  137.257835]  ? __sb_end_write+0xac/0xe0
[  137.261811]  ? fput+0x130/0x1a0
[  137.265107]  ? ksys_write+0x1ae/0x260
[  137.268937]  __x64_sys_sendmsg+0x78/0xb0
[  137.272998]  do_syscall_64+0x1b9/0x820
[  137.276885]  ? finish_task_switch+0x1d3/0x870
[  137.281377]  ? syscall_return_slowpath+0x5e0/0x5e0
[  137.286304]  ? syscall_return_slowpath+0x31d/0x5e0
[  137.291230]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  137.296243]  ? prepare_exit_to_usermode+0x291/0x3b0
[  137.301259]  ? perf_trace_sys_enter+0xb10/0xb10
[  137.305926]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  137.310786]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  137.315978] RIP: 0033:0x455e29
[  137.319159] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  137.338850] RSP: 002b:00007f2947d34c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.346568] RAX: ffffffffffffffda RBX: 00007f2947d356d4 RCX: 0000000000455e29
[  137.353919] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000014
[  137.361189] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  137.368461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[  137.375725] R13: 00000000004c1482 R14: 00000000004d1948 R15: 0000000000000003
18:18:34 executing program 2 (fault-call:2 fault-nth:4):
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:34 executing program 6:
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc))
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r0, 0xffffffffffffffff, 0x0)

[  137.403236] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  137.417327] FAULT_INJECTION: forcing a failure.
[  137.417327] name failslab, interval 1, probability 0, space 0, times 0
[  137.428837] CPU: 0 PID: 8306 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  137.437178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  137.446553] Call Trace:
[  137.449168]  dump_stack+0x1c9/0x2b4
18:18:34 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0xf00000000000000, &(0x7f0000000200), 0x1c8)

18:18:34 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  137.452823]  ? dump_stack_print_info.cold.2+0x52/0x52
[  137.458058]  should_fail.cold.4+0xa/0x11
[  137.462147]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  137.467284]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  137.472420]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  137.477553]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  137.482697]  ? perf_tp_event+0xc40/0xc40
[  137.486776]  ? zap_class+0x740/0x740
[  137.490491]  ? perf_trace_lock+0x920/0x920
[  137.494739]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  137.499843]  ? perf_trace_lock+0x49d/0x920
[  137.504092]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  137.509303]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  137.514425]  ? perf_tp_event+0xc40/0xc40
[  137.518519]  ? perf_trace_lock+0x920/0x920
[  137.522767]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  137.527888]  ? memset+0x31/0x40
[  137.531184]  __should_failslab+0x124/0x180
[  137.535430]  should_failslab+0x9/0x14
[  137.539259]  kmem_cache_alloc+0x47/0x760
[  137.543331]  ? rcu_note_context_switch+0x730/0x730
[  137.548278]  ? mempool_free+0x370/0x370
[  137.552257]  mempool_alloc_slab+0x44/0x60
[  137.556401]  mempool_alloc+0x193/0x4b0
[  137.560301]  ? mempool_destroy+0x30/0x30
[  137.564369]  ? kasan_check_read+0x11/0x20
[  137.568535]  ? kasan_check_write+0x14/0x20
[  137.572768]  bio_alloc_bioset+0x39c/0x6f0
[  137.576932]  ? blk_start_plug+0xcc/0x370
[  137.581009]  ? bvec_alloc+0x2d0/0x2d0
[  137.584817]  ? check_same_owner+0x340/0x340
[  137.589161]  submit_bh_wbc+0x14b/0x790
[  137.593069]  write_dirty_buffer+0xba/0x150
[  137.597329]  jbd2_log_do_checkpoint+0xc08/0x1370
[  137.602109]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  137.607831]  ? lock_acquire+0x1e4/0x540
[  137.611808]  ? jbd2_journal_flush+0x144/0x540
[  137.616331]  ? kasan_check_read+0x11/0x20
[  137.620499]  ? do_raw_spin_unlock+0xa7/0x2f0
[  137.624932]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  137.629525]  ? kasan_check_write+0x14/0x20
[  137.633761]  ? do_raw_spin_lock+0xc1/0x200
[  137.638040]  jbd2_journal_flush+0x156/0x540
[  137.642380]  ext4_change_inode_journal_flag+0x230/0x3e0
[  137.647751]  ext4_ioctl_setflags+0x5fd/0x7d0
[  137.652417]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  137.656903]  ? down_read+0x1d0/0x1d0
[  137.660624]  ? __mnt_want_write_file+0xa2/0xc0
[  137.665208]  ext4_ioctl+0xe41/0x4210
[  137.668922]  ? zap_class+0x740/0x740
[  137.672640]  ? memset+0x31/0x40
[  137.675925]  ? ext4_ioctl_group_add+0x560/0x560
[  137.680590]  ? perf_trace_lock+0x49d/0x920
[  137.684836]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  137.689939]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  137.695057]  ? zap_class+0x740/0x740
[  137.698783]  ? __check_object_size+0x9d/0x5f2
[  137.703282]  ? lock_acquire+0x1e4/0x540
[  137.707248]  ? __fget+0x4ac/0x740
[  137.710713]  ? lock_downgrade+0x8f0/0x8f0
[  137.714953]  ? lock_release+0xa30/0xa30
[  137.718926]  ? zap_class+0x740/0x740
[  137.722646]  ? __f_unlock_pos+0x19/0x20
[  137.726785]  ? __fget+0x4d5/0x740
[  137.730242]  ? ksys_dup3+0x690/0x690
[  137.733962]  ? kasan_check_write+0x14/0x20
[  137.738202]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  137.743133]  ? fsnotify+0xbac/0x14e0
[  137.746845]  ? vfs_write+0x2f3/0x560
[  137.750551]  ? ext4_ioctl_group_add+0x560/0x560
[  137.755222]  do_vfs_ioctl+0x1de/0x1720
[  137.759134]  ? fsnotify_first_mark+0x350/0x350
[  137.763737]  ? ioctl_preallocate+0x300/0x300
[  137.768139]  ? __fget_light+0x2f7/0x440
[  137.772109]  ? fget_raw+0x20/0x20
[  137.775573]  ? __sb_end_write+0xac/0xe0
[  137.779546]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  137.785085]  ? fput+0x130/0x1a0
[  137.788361]  ? ksys_write+0x1ae/0x260
[  137.792167]  ? security_file_ioctl+0x94/0xc0
[  137.796571]  ksys_ioctl+0xa9/0xd0
[  137.800032]  __x64_sys_ioctl+0x73/0xb0
[  137.803929]  do_syscall_64+0x1b9/0x820
[  137.807807]  ? finish_task_switch+0x1d3/0x870
[  137.812303]  ? syscall_return_slowpath+0x5e0/0x5e0
[  137.817243]  ? syscall_return_slowpath+0x31d/0x5e0
[  137.822268]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  137.827286]  ? prepare_exit_to_usermode+0x291/0x3b0
[  137.832302]  ? perf_trace_sys_enter+0xb10/0xb10
[  137.836963]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  137.841904]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  137.847083] RIP: 0033:0x455e29
[  137.850255] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  137.869604] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  137.877320] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  137.884602] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  137.891893] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
18:18:34 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a", 0x1d, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

[  137.899155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  137.906420] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000004
18:18:34 executing program 3:
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc))
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)

18:18:34 executing program 5 (fault-call:5 fault-nth:5):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  137.994855] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:34 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:34 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:34 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0xf000000, &(0x7f0000000200), 0x1c8)

18:18:34 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:34 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a", 0x1d, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:34 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:34 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:34 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x1000000, &(0x7f0000000200), 0x1c8)

[  138.119576] FAULT_INJECTION: forcing a failure.
[  138.119576] name failslab, interval 1, probability 0, space 0, times 0
[  138.130916] CPU: 0 PID: 8343 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  138.139243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  138.148615] Call Trace:
[  138.151233]  dump_stack+0x1c9/0x2b4
[  138.154891]  ? dump_stack_print_info.cold.2+0x52/0x52
[  138.160108]  should_fail.cold.4+0xa/0x11
[  138.164203]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  138.169332]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  138.174364]  ? bpf_prog_kallsyms_find+0xde/0x4c0
[  138.179158]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  138.184286]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  138.189388]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  138.194620]  ? perf_tp_event+0xc40/0xc40
[  138.198697]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  138.203391]  ? memset+0x31/0x40
[  138.206675]  ? perf_trace_lock+0x49d/0x920
[  138.211090]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  138.216196]  __should_failslab+0x124/0x180
[  138.220456]  should_failslab+0x9/0x14
[  138.224295]  kmem_cache_alloc+0x47/0x760
[  138.228447]  ? rcu_note_context_switch+0x730/0x730
[  138.233390]  ? memset+0x31/0x40
[  138.236684]  ? mempool_free+0x370/0x370
[  138.240659]  mempool_alloc_slab+0x44/0x60
[  138.244813]  mempool_alloc+0x193/0x4b0
[  138.248702]  ? mempool_destroy+0x30/0x30
[  138.252784]  ? lock_acquire+0x1e4/0x540
[  138.256770]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  138.261958]  ? lock_downgrade+0x8f0/0x8f0
[  138.266104]  ? debug_check_no_obj_freed+0x30b/0x595
[  138.271142]  bio_alloc_bioset+0x39c/0x6f0
[  138.275288]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  138.279881]  ? bvec_alloc+0x2d0/0x2d0
[  138.283689]  ? kasan_check_write+0x14/0x20
[  138.287929]  ? kasan_check_write+0x14/0x20
[  138.292173]  ? do_raw_read_unlock+0x3f/0x60
[  138.296504]  blkdev_issue_flush+0xd1/0x300
[  138.300781]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  138.305724]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  138.311475]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  138.316079]  ? kasan_check_write+0x14/0x20
[  138.320324]  ? do_raw_spin_lock+0xc1/0x200
[  138.324580]  jbd2_log_do_checkpoint+0xa19/0x1370
[  138.329358]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  138.335096]  ? lock_acquire+0x1e4/0x540
[  138.339080]  ? jbd2_journal_flush+0x144/0x540
[  138.343574]  ? kasan_check_read+0x11/0x20
[  138.347725]  ? do_raw_spin_unlock+0xa7/0x2f0
[  138.352140]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  138.356736]  ? kasan_check_write+0x14/0x20
[  138.360972]  ? do_raw_spin_lock+0xc1/0x200
[  138.365227]  jbd2_journal_flush+0x156/0x540
[  138.369554]  ext4_change_inode_journal_flag+0x230/0x3e0
[  138.374931]  ext4_ioctl_setflags+0x5fd/0x7d0
[  138.379366]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  138.383793]  ? down_read+0x1d0/0x1d0
[  138.387516]  ? __mnt_want_write_file+0xa2/0xc0
[  138.392105]  ext4_ioctl+0xe41/0x4210
[  138.395898]  ? zap_class+0x740/0x740
[  138.399610]  ? memset+0x31/0x40
[  138.402896]  ? ext4_ioctl_group_add+0x560/0x560
[  138.407646]  ? perf_trace_lock+0x49d/0x920
[  138.411887]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  138.416985]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  138.422090]  ? zap_class+0x740/0x740
[  138.425804]  ? __check_object_size+0x9d/0x5f2
[  138.430319]  ? lock_acquire+0x1e4/0x540
[  138.434288]  ? __fget+0x4ac/0x740
[  138.437732]  ? lock_downgrade+0x8f0/0x8f0
[  138.441883]  ? lock_release+0xa30/0xa30
[  138.445846]  ? zap_class+0x740/0x740
[  138.449559]  ? __f_unlock_pos+0x19/0x20
[  138.453527]  ? __fget+0x4d5/0x740
[  138.456977]  ? ksys_dup3+0x690/0x690
[  138.460712]  ? kasan_check_write+0x14/0x20
[  138.464965]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  138.469894]  ? fsnotify+0xbac/0x14e0
[  138.473610]  ? vfs_write+0x2f3/0x560
[  138.477331]  ? ext4_ioctl_group_add+0x560/0x560
[  138.482004]  do_vfs_ioctl+0x1de/0x1720
[  138.485892]  ? fsnotify_first_mark+0x350/0x350
[  138.490469]  ? ioctl_preallocate+0x300/0x300
[  138.494868]  ? __fget_light+0x2f7/0x440
[  138.498836]  ? fget_raw+0x20/0x20
[  138.502284]  ? __sb_end_write+0xac/0xe0
[  138.506254]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  138.511870]  ? fput+0x130/0x1a0
[  138.515151]  ? ksys_write+0x1ae/0x260
[  138.518956]  ? security_file_ioctl+0x94/0xc0
[  138.523532]  ksys_ioctl+0xa9/0xd0
[  138.526986]  __x64_sys_ioctl+0x73/0xb0
[  138.530891]  do_syscall_64+0x1b9/0x820
[  138.534784]  ? finish_task_switch+0x1d3/0x870
[  138.539273]  ? syscall_return_slowpath+0x5e0/0x5e0
[  138.544210]  ? syscall_return_slowpath+0x31d/0x5e0
[  138.549145]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  138.554159]  ? prepare_exit_to_usermode+0x291/0x3b0
[  138.559168]  ? perf_trace_sys_enter+0xb10/0xb10
[  138.563830]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  138.568682]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  138.573972] RIP: 0033:0x455e29
[  138.577158] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  138.596622] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.604335] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  138.611617] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  138.618976] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  138.626240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  138.633504] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000005
18:18:35 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

[  138.667427] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:35 executing program 5 (fault-call:5 fault-nth:6):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:35 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0xf}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:35 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200)=0xf000000, 0x1c8)

18:18:35 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000", 0x2c, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:35 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x20000350}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:35 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200)=0xf00, 0x1c8)

[  138.825158] FAULT_INJECTION: forcing a failure.
[  138.825158] name failslab, interval 1, probability 0, space 0, times 0
[  138.836470] CPU: 1 PID: 8375 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  138.844790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  138.854150] Call Trace:
[  138.856744]  dump_stack+0x1c9/0x2b4
[  138.860379]  ? dump_stack_print_info.cold.2+0x52/0x52
[  138.865571]  ? finish_task_switch+0x1d3/0x870
[  138.870077]  should_fail.cold.4+0xa/0x11
[  138.874157]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  138.879353]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  138.884361]  ? bpf_prog_kallsyms_find+0xde/0x4c0
[  138.889121]  ? lock_acquire+0x1e4/0x540
[  138.894140]  ? is_bpf_text_address+0xae/0x170
[  138.898638]  ? lock_downgrade+0x8f0/0x8f0
[  138.902778]  ? lock_release+0xa30/0xa30
[  138.906745]  ? trace_hardirqs_on+0x10/0x10
[  138.910979]  ? rcu_is_watching+0x8c/0x150
[  138.915124]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  138.919790]  ? zap_class+0x740/0x740
[  138.923513]  ? is_bpf_text_address+0xd7/0x170
[  138.928013]  ? kernel_text_address+0x79/0xf0
[  138.932430]  ? __kernel_text_address+0xd/0x40
[  138.936921]  ? perf_trace_lock+0xde/0x920
[  138.941070]  ? __save_stack_trace+0x8d/0xf0
[  138.945489]  __should_failslab+0x124/0x180
[  138.949727]  should_failslab+0x9/0x14
[  138.953533]  kmem_cache_alloc+0x47/0x760
[  138.957601]  ? rcu_note_context_switch+0x730/0x730
[  138.962523]  ? save_stack+0x43/0xd0
[  138.966152]  ? __kasan_slab_free+0x11a/0x170
[  138.970567]  ? mempool_free+0x370/0x370
18:18:35 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  138.974551]  mempool_alloc_slab+0x44/0x60
[  138.978689]  mempool_alloc+0x193/0x4b0
[  138.982576]  ? kasan_check_read+0x11/0x20
[  138.986726]  ? mempool_destroy+0x30/0x30
[  138.991044]  ? lock_acquire+0x1e4/0x540
[  138.995142]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  139.000246]  ? lock_downgrade+0x8f0/0x8f0
[  139.004388]  ? debug_check_no_obj_freed+0x30b/0x595
[  139.009418]  bio_alloc_bioset+0x39c/0x6f0
[  139.013576]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  139.018192]  ? bvec_alloc+0x2d0/0x2d0
[  139.021994]  ? kasan_check_write+0x14/0x20
[  139.026234]  ? kasan_check_write+0x14/0x20
[  139.030520]  ? do_raw_read_unlock+0x3f/0x60
[  139.034840]  blkdev_issue_flush+0xd1/0x300
[  139.039086]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  139.044031]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  139.049736]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  139.054305]  ? kasan_check_write+0x14/0x20
[  139.058542]  ? do_raw_spin_lock+0xc1/0x200
[  139.062776]  jbd2_log_do_checkpoint+0xa19/0x1370
[  139.067538]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  139.073413]  ? lock_acquire+0x1e4/0x540
[  139.077372]  ? jbd2_journal_flush+0x144/0x540
[  139.081854]  ? kasan_check_read+0x11/0x20
[  139.085993]  ? do_raw_spin_unlock+0xa7/0x2f0
[  139.090390]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  139.094960]  ? kasan_check_write+0x14/0x20
[  139.099196]  ? do_raw_spin_lock+0xc1/0x200
[  139.103431]  jbd2_journal_flush+0x156/0x540
[  139.107743]  ext4_change_inode_journal_flag+0x230/0x3e0
[  139.113103]  ext4_ioctl_setflags+0x5fd/0x7d0
[  139.117530]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  139.121946]  ? down_read+0x1d0/0x1d0
[  139.125656]  ? __mnt_want_write_file+0xa2/0xc0
[  139.130240]  ext4_ioctl+0xe41/0x4210
[  139.133941]  ? zap_class+0x740/0x740
[  139.137642]  ? check_same_owner+0x340/0x340
[  139.141956]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  139.147489]  ? ext4_ioctl_group_add+0x560/0x560
[  139.152149]  ? perf_trace_lock+0xde/0x920
[  139.156368]  ? _kstrtoull+0x188/0x250
[  139.160165]  ? _parse_integer+0x190/0x190
[  139.164918]  ? zap_class+0x740/0x740
[  139.168634]  ? __check_object_size+0x9d/0x5f2
[  139.173131]  ? lock_acquire+0x1e4/0x540
[  139.177089]  ? __fget+0x4ac/0x740
[  139.180524]  ? lock_downgrade+0x8f0/0x8f0
[  139.184667]  ? lock_release+0xa30/0xa30
[  139.188643]  ? zap_class+0x740/0x740
[  139.192362]  ? __f_unlock_pos+0x19/0x20
[  139.196343]  ? __fget+0x4d5/0x740
[  139.199781]  ? ksys_dup3+0x690/0x690
[  139.203485]  ? kasan_check_write+0x14/0x20
[  139.207713]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  139.212635]  ? fsnotify+0xbac/0x14e0
[  139.216344]  ? vfs_write+0x2f3/0x560
[  139.220051]  ? ext4_ioctl_group_add+0x560/0x560
[  139.224705]  do_vfs_ioctl+0x1de/0x1720
[  139.228616]  ? fsnotify_first_mark+0x350/0x350
[  139.233213]  ? ioctl_preallocate+0x300/0x300
[  139.237618]  ? __fget_light+0x2f7/0x440
[  139.241593]  ? fget_raw+0x20/0x20
[  139.245053]  ? __sb_end_write+0xac/0xe0
[  139.249022]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  139.254560]  ? fput+0x130/0x1a0
[  139.257825]  ? ksys_write+0x1ae/0x260
[  139.261632]  ? security_file_ioctl+0x94/0xc0
[  139.266043]  ksys_ioctl+0xa9/0xd0
[  139.269499]  __x64_sys_ioctl+0x73/0xb0
[  139.273375]  do_syscall_64+0x1b9/0x820
[  139.277248]  ? finish_task_switch+0x1d3/0x870
[  139.281728]  ? syscall_return_slowpath+0x5e0/0x5e0
[  139.286655]  ? syscall_return_slowpath+0x31d/0x5e0
[  139.291832]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  139.296851]  ? prepare_exit_to_usermode+0x291/0x3b0
[  139.301870]  ? perf_trace_sys_enter+0xb10/0xb10
[  139.306531]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  139.311463]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  139.316636] RIP: 0033:0x455e29
[  139.319804] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  139.338963] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  139.346755] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  139.354984] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  139.362250] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  139.370462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
18:18:35 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

[  139.377717] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000006
18:18:36 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200)=0xf, 0x1c8)

[  139.444186] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:36 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:36 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x100000000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:36 executing program 5 (fault-call:5 fault-nth:7):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:36 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000", 0x2c, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:36 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200)=0x100000000000000, 0x1c8)

18:18:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:36 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200)=0xf00000000000000, 0x1c8)

18:18:36 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x40030000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  139.615492] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  139.638890] FAULT_INJECTION: forcing a failure.
[  139.638890] name failslab, interval 1, probability 0, space 0, times 0
[  139.650220] CPU: 0 PID: 8426 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  139.658538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  139.667886] Call Trace:
[  139.670474]  dump_stack+0x1c9/0x2b4
[  139.674101]  ? dump_stack_print_info.cold.2+0x52/0x52
[  139.679289]  ? zap_class+0x740/0x740
[  139.683022]  should_fail.cold.4+0xa/0x11
[  139.687178]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  139.692310]  ? blk_exit_rl+0x80/0x80
[  139.696036]  ? save_stack+0xa9/0xd0
[  139.699672]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  139.704796]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  139.709732]  ? jbd2_journal_flush+0x156/0x540
[  139.714231]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  139.719767]  ? lock_acquire+0x1e4/0x540
[  139.723750]  ? generic_make_request+0x527/0x1800
[  139.728525]  ? lock_downgrade+0x8f0/0x8f0
[  139.732686]  ? lock_release+0xa30/0xa30
[  139.736664]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  139.741769]  ? perf_trace_lock+0x49d/0x920
[  139.746027]  ? generic_make_request+0x550/0x1800
[  139.750798]  __should_failslab+0x124/0x180
[  139.755043]  should_failslab+0x9/0x14
[  139.758856]  kmem_cache_alloc+0x47/0x760
[  139.762912]  ? rcu_note_context_switch+0x730/0x730
[  139.767856]  ? mempool_free+0x370/0x370
[  139.771824]  mempool_alloc_slab+0x44/0x60
[  139.775969]  mempool_alloc+0x193/0x4b0
[  139.780299]  ? mempool_destroy+0x30/0x30
[  139.784360]  ? lock_downgrade+0x8f0/0x8f0
[  139.788512]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  139.794145]  bio_alloc_bioset+0x39c/0x6f0
[  139.798306]  ? generic_make_request+0x1800/0x1800
[  139.803155]  ? bvec_alloc+0x2d0/0x2d0
[  139.806958]  ? check_same_owner+0x340/0x340
[  139.811270]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  139.816286]  ? guard_bio_eod+0x2b4/0x600
[  139.820351]  submit_bh_wbc+0x14b/0x790
[  139.824255]  write_dirty_buffer+0xba/0x150
[  139.828499]  jbd2_log_do_checkpoint+0xc08/0x1370
[  139.833267]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  139.838988]  ? lock_acquire+0x1e4/0x540
[  139.842957]  ? jbd2_journal_flush+0x144/0x540
[  139.847450]  ? kasan_check_read+0x11/0x20
[  139.851597]  ? do_raw_spin_unlock+0xa7/0x2f0
[  139.856000]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  139.860586]  ? kasan_check_write+0x14/0x20
[  139.864825]  ? do_raw_spin_lock+0xc1/0x200
[  139.869074]  jbd2_journal_flush+0x156/0x540
[  139.873404]  ext4_change_inode_journal_flag+0x230/0x3e0
[  139.878782]  ext4_ioctl_setflags+0x5fd/0x7d0
[  139.883189]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  139.887587]  ? down_read+0x1d0/0x1d0
[  139.891298]  ? __mnt_want_write_file+0xa2/0xc0
[  139.895960]  ext4_ioctl+0xe41/0x4210
[  139.899665]  ? zap_class+0x740/0x740
[  139.903379]  ? check_same_owner+0x340/0x340
[  139.907720]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  139.913357]  ? ext4_ioctl_group_add+0x560/0x560
[  139.918023]  ? perf_trace_lock+0xde/0x920
[  139.922168]  ? _kstrtoull+0x188/0x250
[  139.925959]  ? _parse_integer+0x190/0x190
[  139.930117]  ? zap_class+0x740/0x740
[  139.933828]  ? __check_object_size+0x9d/0x5f2
[  139.938336]  ? lock_acquire+0x1e4/0x540
[  139.942301]  ? __fget+0x4ac/0x740
[  139.945748]  ? lock_downgrade+0x8f0/0x8f0
[  139.949901]  ? lock_release+0xa30/0xa30
[  139.953895]  ? zap_class+0x740/0x740
[  139.957646]  ? __f_unlock_pos+0x19/0x20
[  139.961635]  ? __fget+0x4d5/0x740
[  139.965540]  ? ksys_dup3+0x690/0x690
[  139.969363]  ? kasan_check_write+0x14/0x20
[  139.973690]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  139.978627]  ? fsnotify+0xbac/0x14e0
[  139.982332]  ? vfs_write+0x2f3/0x560
[  139.986048]  ? ext4_ioctl_group_add+0x560/0x560
[  139.990721]  do_vfs_ioctl+0x1de/0x1720
[  139.994614]  ? fsnotify_first_mark+0x350/0x350
[  139.999390]  ? ioctl_preallocate+0x300/0x300
[  140.004351]  ? __fget_light+0x2f7/0x440
[  140.008333]  ? fget_raw+0x20/0x20
[  140.011801]  ? __sb_end_write+0xac/0xe0
[  140.015897]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  140.021993]  ? fput+0x130/0x1a0
[  140.025282]  ? ksys_write+0x1ae/0x260
[  140.029093]  ? security_file_ioctl+0x94/0xc0
[  140.033511]  ksys_ioctl+0xa9/0xd0
[  140.036963]  __x64_sys_ioctl+0x73/0xb0
[  140.040848]  do_syscall_64+0x1b9/0x820
[  140.044725]  ? finish_task_switch+0x1d3/0x870
[  140.049215]  ? syscall_return_slowpath+0x5e0/0x5e0
[  140.054152]  ? syscall_return_slowpath+0x31d/0x5e0
[  140.059098]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  140.064117]  ? prepare_exit_to_usermode+0x291/0x3b0
[  140.069148]  ? perf_trace_sys_enter+0xb10/0xb10
[  140.073831]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  140.078677]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  140.083869] RIP: 0033:0x455e29
[  140.087051] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  140.106421] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
18:18:36 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000", 0x2c, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

[  140.114142] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  140.121420] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  140.129206] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  140.136469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  140.143755] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000007
18:18:36 executing program 5 (fault-call:5 fault-nth:8):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:36 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:36 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xfffff000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  140.242679] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  140.326793] FAULT_INJECTION: forcing a failure.
[  140.326793] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  140.338658] CPU: 0 PID: 8458 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  140.346995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  140.356352] Call Trace:
[  140.358940]  dump_stack+0x1c9/0x2b4
[  140.362588]  ? dump_stack_print_info.cold.2+0x52/0x52
[  140.367785]  ? blk_mq_make_request+0x443/0x23f0
[  140.372460]  ? lock_acquire+0x1e4/0x540
[  140.376438]  should_fail.cold.4+0xa/0x11
[  140.380495]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  140.385589]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  140.390709]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  140.395823]  ? perf_tp_event+0xc40/0xc40
[  140.399880]  ? radix_tree_lookup+0x21/0x30
[  140.404112]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  140.409643]  ? blkg_lookup_slowpath+0xd4/0x280
[  140.414236]  ? memset+0x31/0x40
[  140.417529]  ? perf_trace_lock+0x49d/0x920
[  140.421768]  ? generic_make_request_checks+0x57a/0x2410
[  140.427132]  ? blk_init_queue+0x30/0x30
[  140.431098]  ? blk_queue_enter+0xb47/0xed0
[  140.435337]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  140.440878]  ? should_fail+0x246/0xd86
[  140.444773]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  140.449867]  ? blk_exit_rl+0x80/0x80
[  140.453581]  __alloc_pages_nodemask+0x36e/0xdb0
[  140.458255]  ? __alloc_pages_slowpath+0x2d00/0x2d00
[  140.463275]  ? lock_acquire+0x1e4/0x540
[  140.467256]  ? generic_make_request+0x527/0x1800
[  140.472021]  ? lock_downgrade+0x8f0/0x8f0
[  140.476284]  ? lock_release+0xa30/0xa30
[  140.480254]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  140.485351]  ? memset+0x31/0x40
[  140.488629]  ? perf_trace_lock+0x49d/0x920
[  140.492868]  cache_grow_begin+0x91/0x710
[  140.496928]  kmem_cache_alloc+0x689/0x760
[  140.501088]  ? mempool_free+0x370/0x370
[  140.505072]  mempool_alloc_slab+0x44/0x60
[  140.509215]  mempool_alloc+0x193/0x4b0
[  140.513126]  ? mempool_destroy+0x30/0x30
[  140.517185]  ? lock_downgrade+0x8f0/0x8f0
[  140.521327]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  140.526868]  bio_alloc_bioset+0x39c/0x6f0
[  140.531024]  ? generic_make_request+0x1800/0x1800
[  140.535861]  ? bvec_alloc+0x2d0/0x2d0
[  140.539653]  ? check_same_owner+0x340/0x340
[  140.543965]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  140.548973]  ? guard_bio_eod+0x2b4/0x600
[  140.553118]  submit_bh_wbc+0x14b/0x790
[  140.557187]  write_dirty_buffer+0xba/0x150
[  140.561416]  jbd2_log_do_checkpoint+0xc08/0x1370
[  140.566179]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  140.571882]  ? lock_acquire+0x1e4/0x540
[  140.575849]  ? jbd2_journal_flush+0x144/0x540
[  140.580343]  ? kasan_check_read+0x11/0x20
[  140.584480]  ? do_raw_spin_unlock+0xa7/0x2f0
[  140.588886]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  140.593480]  ? kasan_check_write+0x14/0x20
[  140.597732]  ? do_raw_spin_lock+0xc1/0x200
[  140.601965]  jbd2_journal_flush+0x156/0x540
[  140.606287]  ext4_change_inode_journal_flag+0x230/0x3e0
[  140.611647]  ext4_ioctl_setflags+0x5fd/0x7d0
[  140.616062]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  140.620461]  ? down_read+0x1d0/0x1d0
[  140.624168]  ? __mnt_want_write_file+0xa2/0xc0
[  140.628746]  ext4_ioctl+0xe41/0x4210
[  140.632449]  ? zap_class+0x740/0x740
[  140.636161]  ? ext4_ioctl_group_add+0x560/0x560
[  140.640821]  ? perf_trace_lock+0x49d/0x920
[  140.645050]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  140.650146]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  140.655272]  ? zap_class+0x740/0x740
[  140.658998]  ? lock_acquire+0x1e4/0x540
[  140.662965]  ? __fget+0x4ac/0x740
[  140.666417]  ? lock_downgrade+0x8f0/0x8f0
[  140.670561]  ? lock_release+0xa30/0xa30
[  140.674540]  ? zap_class+0x740/0x740
[  140.678278]  ? __f_unlock_pos+0x19/0x20
[  140.682253]  ? __fget+0x4d5/0x740
[  140.685701]  ? ksys_dup3+0x690/0x690
[  140.689424]  ? kasan_check_write+0x14/0x20
[  140.693661]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  140.698679]  ? fsnotify+0xbac/0x14e0
[  140.702383]  ? vfs_write+0x2f3/0x560
[  140.706090]  ? ext4_ioctl_group_add+0x560/0x560
[  140.710754]  do_vfs_ioctl+0x1de/0x1720
[  140.714636]  ? fsnotify_first_mark+0x350/0x350
[  140.719213]  ? ioctl_preallocate+0x300/0x300
[  140.723633]  ? __fget_light+0x2f7/0x440
[  140.727599]  ? fget_raw+0x20/0x20
[  140.731058]  ? __sb_end_write+0xac/0xe0
[  140.735040]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  140.740742]  ? fput+0x130/0x1a0
[  140.744031]  ? ksys_write+0x1ae/0x260
[  140.747828]  ? security_file_ioctl+0x94/0xc0
[  140.752239]  ksys_ioctl+0xa9/0xd0
[  140.755700]  __x64_sys_ioctl+0x73/0xb0
[  140.759595]  do_syscall_64+0x1b9/0x820
[  140.763473]  ? finish_task_switch+0x1d3/0x870
[  140.767962]  ? syscall_return_slowpath+0x5e0/0x5e0
[  140.772884]  ? syscall_return_slowpath+0x31d/0x5e0
[  140.777807]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  140.782827]  ? prepare_exit_to_usermode+0x291/0x3b0
[  140.787837]  ? perf_trace_sys_enter+0xb10/0xb10
[  140.792509]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  140.797360]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  140.802551] RIP: 0033:0x455e29
[  140.805726] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
18:18:37 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:37 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200)=0x1000000, 0x1c8)

18:18:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  140.825106] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  140.832813] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  140.840075] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  140.847346] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  140.854620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  140.861879] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000008
18:18:37 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:37 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe", 0x33, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:37 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc))
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:37 executing program 5 (fault-call:5 fault-nth:9):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:37 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x200, 0x0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000040)={0x2, 0x80})
bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106(gcm_base(ctr(aes-aesni),ghash-generic))\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
r3 = geteuid()
r4 = getgid()
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000240)={{{@in6=@dev, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast2}}, &(0x7f0000000080)=0xe8)
getgroups(0x1, &(0x7f00000000c0)=[<r6=>0xee00])
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={<r7=>0x0}, &(0x7f0000000340)=0xc)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000380)=<r8=>0x0)
shmctl$IPC_SET(r2, 0x1, &(0x7f00000003c0)={{0x7, r3, r4, r5, r6, 0x24, 0x9}, 0x0, 0xde4a, 0x9, 0x4, r7, r8, 0x81})
r9 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r9, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc))
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:37 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xc00e}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  141.041855] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  141.075944] FAULT_INJECTION: forcing a failure.
[  141.075944] name failslab, interval 1, probability 0, space 0, times 0
[  141.087459] CPU: 0 PID: 8478 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  141.095803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  141.105174] Call Trace:
[  141.107793]  dump_stack+0x1c9/0x2b4
[  141.111456]  ? dump_stack_print_info.cold.2+0x52/0x52
[  141.116667]  ? zap_class+0x740/0x740
[  141.120401]  should_fail.cold.4+0xa/0x11
[  141.124499]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  141.129612]  ? blk_exit_rl+0x80/0x80
[  141.133333]  ? save_stack+0xa9/0xd0
[  141.136970]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  141.142158]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  141.147098]  ? jbd2_journal_flush+0x156/0x540
[  141.151594]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  141.157134]  ? lock_acquire+0x1e4/0x540
[  141.161105]  ? generic_make_request+0x527/0x1800
[  141.165943]  ? lock_downgrade+0x8f0/0x8f0
[  141.170093]  ? lock_release+0xa30/0xa30
[  141.174064]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  141.179169]  ? perf_trace_lock+0x49d/0x920
[  141.183413]  ? generic_make_request+0x550/0x1800
[  141.188168]  __should_failslab+0x124/0x180
[  141.192406]  should_failslab+0x9/0x14
[  141.196210]  kmem_cache_alloc+0x47/0x760
[  141.200318]  ? rcu_note_context_switch+0x730/0x730
[  141.205247]  ? mempool_free+0x370/0x370
[  141.209244]  mempool_alloc_slab+0x44/0x60
[  141.213408]  mempool_alloc+0x193/0x4b0
[  141.217294]  ? mempool_destroy+0x30/0x30
[  141.221366]  ? lock_downgrade+0x8f0/0x8f0
[  141.225508]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  141.231060]  bio_alloc_bioset+0x39c/0x6f0
[  141.235219]  ? generic_make_request+0x1800/0x1800
[  141.240064]  ? bvec_alloc+0x2d0/0x2d0
[  141.243858]  ? check_same_owner+0x340/0x340
[  141.248186]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  141.253213]  ? guard_bio_eod+0x2b4/0x600
[  141.257288]  submit_bh_wbc+0x14b/0x790
[  141.261184]  write_dirty_buffer+0xba/0x150
[  141.265517]  jbd2_log_do_checkpoint+0xc08/0x1370
[  141.270282]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  141.275987]  ? lock_acquire+0x1e4/0x540
[  141.279967]  ? jbd2_journal_flush+0x144/0x540
[  141.284491]  ? kasan_check_read+0x11/0x20
[  141.288693]  ? do_raw_spin_unlock+0xa7/0x2f0
[  141.293121]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  141.297734]  ? kasan_check_write+0x14/0x20
[  141.301988]  ? do_raw_spin_lock+0xc1/0x200
[  141.306246]  jbd2_journal_flush+0x156/0x540
[  141.310593]  ext4_change_inode_journal_flag+0x230/0x3e0
[  141.315967]  ext4_ioctl_setflags+0x5fd/0x7d0
[  141.320384]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  141.324782]  ? down_read+0x1d0/0x1d0
[  141.328505]  ? __mnt_want_write_file+0xa2/0xc0
[  141.333102]  ext4_ioctl+0xe41/0x4210
[  141.336809]  ? zap_class+0x740/0x740
[  141.340532]  ? memset+0x31/0x40
[  141.343835]  ? ext4_ioctl_group_add+0x560/0x560
[  141.348507]  ? perf_trace_lock+0x49d/0x920
[  141.352750]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  141.357865]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  141.362974]  ? zap_class+0x740/0x740
[  141.366696]  ? __check_object_size+0x9d/0x5f2
[  141.371251]  ? lock_acquire+0x1e4/0x540
[  141.375220]  ? __fget+0x4ac/0x740
[  141.378671]  ? lock_downgrade+0x8f0/0x8f0
[  141.382811]  ? lock_release+0xa30/0xa30
[  141.386787]  ? zap_class+0x740/0x740
[  141.390521]  ? __f_unlock_pos+0x19/0x20
[  141.394507]  ? __fget+0x4d5/0x740
[  141.397978]  ? ksys_dup3+0x690/0x690
[  141.401691]  ? kasan_check_write+0x14/0x20
[  141.405936]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  141.410885]  ? fsnotify+0xbac/0x14e0
[  141.414599]  ? vfs_write+0x2f3/0x560
[  141.418331]  ? ext4_ioctl_group_add+0x560/0x560
[  141.423004]  do_vfs_ioctl+0x1de/0x1720
[  141.426896]  ? fsnotify_first_mark+0x350/0x350
[  141.431570]  ? ioctl_preallocate+0x300/0x300
[  141.435981]  ? __fget_light+0x2f7/0x440
[  141.439960]  ? fget_raw+0x20/0x20
[  141.443418]  ? __sb_end_write+0xac/0xe0
[  141.447399]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  141.452939]  ? fput+0x130/0x1a0
[  141.456209]  ? ksys_write+0x1ae/0x260
[  141.460038]  ? security_file_ioctl+0x94/0xc0
[  141.464464]  ksys_ioctl+0xa9/0xd0
[  141.467928]  __x64_sys_ioctl+0x73/0xb0
[  141.471811]  do_syscall_64+0x1b9/0x820
[  141.475701]  ? finish_task_switch+0x1d3/0x870
[  141.480199]  ? syscall_return_slowpath+0x5e0/0x5e0
[  141.485133]  ? syscall_return_slowpath+0x31d/0x5e0
[  141.490071]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  141.495093]  ? prepare_exit_to_usermode+0x291/0x3b0
[  141.500115]  ? perf_trace_sys_enter+0xb10/0xb10
[  141.504780]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  141.509906]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  141.515096] RIP: 0033:0x455e29
[  141.518275] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  141.537685] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.545416] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  141.554197] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  141.561464] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  141.568726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  141.576003] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000009
18:18:38 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe", 0x33, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:38 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc))
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:38 executing program 5 (fault-call:5 fault-nth:10):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:38 executing program 0:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, <r0=>0x0})
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  141.671035] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  141.741017] FAULT_INJECTION: forcing a failure.
[  141.741017] name failslab, interval 1, probability 0, space 0, times 0
[  141.752465] CPU: 0 PID: 8523 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  141.760951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  141.770324] Call Trace:
[  141.772915]  dump_stack+0x1c9/0x2b4
[  141.776547]  ? dump_stack_print_info.cold.2+0x52/0x52
[  141.781761]  ? zap_class+0x740/0x740
[  141.785490]  should_fail.cold.4+0xa/0x11
[  141.789569]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  141.794678]  ? blk_exit_rl+0x80/0x80
[  141.798416]  ? save_stack+0xa9/0xd0
[  141.802081]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  141.807374]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  141.812307]  ? jbd2_journal_flush+0x156/0x540
[  141.816797]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  141.822336]  ? lock_acquire+0x1e4/0x540
[  141.826325]  ? generic_make_request+0x527/0x1800
[  141.831185]  ? lock_downgrade+0x8f0/0x8f0
[  141.835342]  ? lock_release+0xa30/0xa30
18:18:38 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:38 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xffffff7f}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  141.839314]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  141.844437]  ? perf_trace_lock+0x49d/0x920
[  141.848678]  ? generic_make_request+0x550/0x1800
[  141.853439]  __should_failslab+0x124/0x180
[  141.857686]  should_failslab+0x9/0x14
[  141.861492]  kmem_cache_alloc+0x47/0x760
[  141.865665]  ? rcu_note_context_switch+0x730/0x730
[  141.871876]  ? mempool_free+0x370/0x370
[  141.875879]  mempool_alloc_slab+0x44/0x60
[  141.880061]  mempool_alloc+0x193/0x4b0
[  141.883978]  ? mempool_destroy+0x30/0x30
[  141.888057]  ? lock_downgrade+0x8f0/0x8f0
[  141.892215]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  141.897779]  bio_alloc_bioset+0x39c/0x6f0
[  141.901925]  ? generic_make_request+0x1800/0x1800
[  141.906762]  ? bvec_alloc+0x2d0/0x2d0
[  141.911688]  ? check_same_owner+0x340/0x340
[  141.916018]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  141.921047]  ? guard_bio_eod+0x2b4/0x600
[  141.925127]  submit_bh_wbc+0x14b/0x790
[  141.929038]  write_dirty_buffer+0xba/0x150
[  141.933283]  jbd2_log_do_checkpoint+0xc08/0x1370
[  141.938072]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  141.943886]  ? lock_acquire+0x1e4/0x540
[  141.947892]  ? jbd2_journal_flush+0x144/0x540
[  141.952408]  ? kasan_check_read+0x11/0x20
[  141.956553]  ? do_raw_spin_unlock+0xa7/0x2f0
[  141.960960]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  141.965553]  ? kasan_check_write+0x14/0x20
[  141.969795]  ? do_raw_spin_lock+0xc1/0x200
[  141.974041]  jbd2_journal_flush+0x156/0x540
[  141.978375]  ext4_change_inode_journal_flag+0x230/0x3e0
[  141.983735]  ext4_ioctl_setflags+0x5fd/0x7d0
[  141.988165]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  141.992585]  ? down_read+0x1d0/0x1d0
[  141.996303]  ? __mnt_want_write_file+0xa2/0xc0
[  142.000899]  ext4_ioctl+0xe41/0x4210
[  142.004629]  ? zap_class+0x740/0x740
[  142.008436]  ? memset+0x31/0x40
[  142.011722]  ? ext4_ioctl_group_add+0x560/0x560
[  142.016406]  ? perf_trace_lock+0x49d/0x920
[  142.020660]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  142.026453]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  142.031556]  ? zap_class+0x740/0x740
[  142.035266]  ? __check_object_size+0x9d/0x5f2
[  142.039776]  ? lock_acquire+0x1e4/0x540
[  142.043750]  ? __fget+0x4ac/0x740
[  142.047205]  ? lock_downgrade+0x8f0/0x8f0
[  142.051353]  ? lock_release+0xa30/0xa30
[  142.055328]  ? zap_class+0x740/0x740
[  142.059056]  ? __f_unlock_pos+0x19/0x20
[  142.063051]  ? __fget+0x4d5/0x740
[  142.066506]  ? ksys_dup3+0x690/0x690
[  142.070241]  ? kasan_check_write+0x14/0x20
[  142.074491]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  142.079414]  ? fsnotify+0xbac/0x14e0
[  142.083124]  ? vfs_write+0x2f3/0x560
[  142.086833]  ? ext4_ioctl_group_add+0x560/0x560
[  142.091491]  do_vfs_ioctl+0x1de/0x1720
[  142.095373]  ? fsnotify_first_mark+0x350/0x350
[  142.099979]  ? ioctl_preallocate+0x300/0x300
[  142.104377]  ? __fget_light+0x2f7/0x440
[  142.108348]  ? fget_raw+0x20/0x20
[  142.111797]  ? __sb_end_write+0xac/0xe0
[  142.115776]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  142.121302]  ? fput+0x130/0x1a0
[  142.124572]  ? ksys_write+0x1ae/0x260
[  142.128371]  ? security_file_ioctl+0x94/0xc0
[  142.132777]  ksys_ioctl+0xa9/0xd0
[  142.136246]  __x64_sys_ioctl+0x73/0xb0
[  142.140150]  do_syscall_64+0x1b9/0x820
[  142.144048]  ? syscall_return_slowpath+0x5e0/0x5e0
[  142.148982]  ? syscall_return_slowpath+0x31d/0x5e0
[  142.153905]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  142.158913]  ? prepare_exit_to_usermode+0x291/0x3b0
[  142.163924]  ? perf_trace_sys_enter+0xb10/0xb10
[  142.168586]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  142.173434]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  142.178631] RIP: 0033:0x455e29
[  142.181805] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  142.201137] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  142.208850] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  142.216299] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  142.223650] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  142.230910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  142.238170] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000000a
18:18:38 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:38 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe", 0x33, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:38 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
accept4$llc(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000080)=0x10, 0x800)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:38 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf0}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:38 executing program 5 (fault-call:5 fault-nth:11):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:38 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  142.410779] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  142.419694] FAULT_INJECTION: forcing a failure.
[  142.419694] name failslab, interval 1, probability 0, space 0, times 0
[  142.431044] CPU: 1 PID: 8550 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  142.439363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  142.448723] Call Trace:
[  142.451324]  dump_stack+0x1c9/0x2b4
[  142.454982]  ? dump_stack_print_info.cold.2+0x52/0x52
[  142.460175]  ? zap_class+0x740/0x740
[  142.463902]  should_fail.cold.4+0xa/0x11
[  142.467954]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  142.473046]  ? blk_exit_rl+0x80/0x80
[  142.476750]  ? save_stack+0xa9/0xd0
[  142.480362]  ? kasan_slab_alloc+0x12/0x20
[  142.484505]  ? kmem_cache_alloc+0x12e/0x760
[  142.488823]  ? mempool_alloc_slab+0x44/0x60
[  142.493132]  ? bio_alloc_bioset+0x39c/0x6f0
[  142.497439]  ? submit_bh_wbc+0x14b/0x790
[  142.501497]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  142.506414]  ? jbd2_journal_flush+0x156/0x540
[  142.510897]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  142.516435]  ? lock_acquire+0x1e4/0x540
[  142.520406]  ? generic_make_request+0x527/0x1800
[  142.525169]  ? lock_downgrade+0x8f0/0x8f0
[  142.529314]  ? lock_release+0xa30/0xa30
[  142.533275]  ? perf_trace_lock+0xde/0x920
[  142.537411]  ? do_raw_spin_unlock+0xa7/0x2f0
[  142.541810]  ? generic_make_request+0x550/0x1800
[  142.546580]  __should_failslab+0x124/0x180
[  142.550804]  should_failslab+0x9/0x14
[  142.554592]  kmem_cache_alloc+0x47/0x760
[  142.558642]  ? rcu_note_context_switch+0x730/0x730
[  142.563566]  ? mempool_free+0x370/0x370
[  142.567532]  mempool_alloc_slab+0x44/0x60
[  142.571670]  mempool_alloc+0x193/0x4b0
[  142.575549]  ? mempool_destroy+0x30/0x30
[  142.579605]  ? lock_downgrade+0x8f0/0x8f0
[  142.583742]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  142.589269]  bio_alloc_bioset+0x39c/0x6f0
[  142.593421]  ? generic_make_request+0x1800/0x1800
[  142.598251]  ? bvec_alloc+0x2d0/0x2d0
[  142.602040]  ? check_same_owner+0x340/0x340
[  142.606347]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  142.611349]  ? guard_bio_eod+0x2b4/0x600
[  142.615396]  submit_bh_wbc+0x14b/0x790
[  142.619276]  write_dirty_buffer+0xba/0x150
[  142.623514]  jbd2_log_do_checkpoint+0xc08/0x1370
[  142.628271]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  142.633972]  ? lock_acquire+0x1e4/0x540
[  142.637945]  ? jbd2_journal_flush+0x144/0x540
[  142.642430]  ? kasan_check_read+0x11/0x20
[  142.646569]  ? do_raw_spin_unlock+0xa7/0x2f0
[  142.650961]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  142.655528]  ? kasan_check_write+0x14/0x20
[  142.659748]  ? do_raw_spin_lock+0xc1/0x200
[  142.663971]  jbd2_journal_flush+0x156/0x540
[  142.668281]  ext4_change_inode_journal_flag+0x230/0x3e0
[  142.673632]  ext4_ioctl_setflags+0x5fd/0x7d0
[  142.678043]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  142.682439]  ? down_read+0x1d0/0x1d0
[  142.686228]  ? __mnt_want_write_file+0xa2/0xc0
[  142.690970]  ext4_ioctl+0xe41/0x4210
[  142.694670]  ? zap_class+0x740/0x740
[  142.698382]  ? ext4_ioctl_group_add+0x560/0x560
[  142.703041]  ? perf_trace_lock+0xde/0x920
[  142.707201]  ? _kstrtoull+0x188/0x250
[  142.710986]  ? _parse_integer+0x190/0x190
[  142.715211]  ? zap_class+0x740/0x740
[  142.718927]  ? lock_acquire+0x1e4/0x540
[  142.722884]  ? __fget+0x4ac/0x740
[  142.726321]  ? lock_downgrade+0x8f0/0x8f0
[  142.730473]  ? lock_release+0xa30/0xa30
[  142.734432]  ? zap_class+0x740/0x740
[  142.738147]  ? __f_unlock_pos+0x19/0x20
[  142.742117]  ? __fget+0x4d5/0x740
[  142.745559]  ? ksys_dup3+0x690/0x690
[  142.749273]  ? kasan_check_write+0x14/0x20
[  142.753494]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  142.758422]  ? fsnotify+0xbac/0x14e0
[  142.762128]  ? vfs_write+0x2f3/0x560
[  142.765826]  ? ext4_ioctl_group_add+0x560/0x560
[  142.770490]  do_vfs_ioctl+0x1de/0x1720
[  142.774367]  ? fsnotify_first_mark+0x350/0x350
[  142.778935]  ? ioctl_preallocate+0x300/0x300
[  142.783329]  ? __fget_light+0x2f7/0x440
[  142.787288]  ? fget_raw+0x20/0x20
[  142.790739]  ? __sb_end_write+0xac/0xe0
[  142.794703]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  142.800225]  ? fput+0x130/0x1a0
[  142.803494]  ? ksys_write+0x1ae/0x260
[  142.807284]  ? security_file_ioctl+0x94/0xc0
[  142.811682]  ksys_ioctl+0xa9/0xd0
[  142.815135]  __x64_sys_ioctl+0x73/0xb0
[  142.819014]  do_syscall_64+0x1b9/0x820
[  142.822898]  ? finish_task_switch+0x1d3/0x870
[  142.827393]  ? syscall_return_slowpath+0x5e0/0x5e0
[  142.832313]  ? syscall_return_slowpath+0x31d/0x5e0
[  142.837232]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  142.842250]  ? prepare_exit_to_usermode+0x291/0x3b0
[  142.847255]  ? perf_trace_sys_enter+0xb10/0xb10
[  142.851912]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  142.856753]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  142.861930] RIP: 0033:0x455e29
[  142.865109] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  142.884316] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  142.892018] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  142.899283] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
18:18:39 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  142.906537] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  142.913793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  142.921055] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000000b
18:18:39 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc))
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:39 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:39 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x103002)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000040)={0xa3e2, 0xfffffffffffffe00})
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:39 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ff", 0x37, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:39 executing program 5 (fault-call:5 fault-nth:12):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:39 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

[  143.057673] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  143.073536] FAULT_INJECTION: forcing a failure.
[  143.073536] name failslab, interval 1, probability 0, space 0, times 0
[  143.084990] CPU: 0 PID: 8577 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  143.093344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  143.102797] Call Trace:
18:18:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:39 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x0, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:39 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:39 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xffffff9e}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  143.105412]  dump_stack+0x1c9/0x2b4
[  143.109070]  ? dump_stack_print_info.cold.2+0x52/0x52
[  143.114304]  ? zap_class+0x740/0x740
[  143.118063]  should_fail.cold.4+0xa/0x11
[  143.122162]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  143.127293]  ? blk_exit_rl+0x80/0x80
[  143.131046]  ? save_stack+0xa9/0xd0
[  143.134734]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  143.139870]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  143.144810]  ? jbd2_journal_flush+0x156/0x540
[  143.149386]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  143.154935]  ? lock_acquire+0x1e4/0x540
[  143.158923]  ? generic_make_request+0x527/0x1800
[  143.163682]  ? lock_downgrade+0x8f0/0x8f0
[  143.167849]  ? lock_release+0xa30/0xa30
[  143.171837]  ? perf_trace_lock+0x49d/0x920
[  143.176073]  ? generic_make_request+0x550/0x1800
[  143.180827]  __should_failslab+0x124/0x180
[  143.185066]  should_failslab+0x9/0x14
[  143.188860]  kmem_cache_alloc+0x47/0x760
[  143.192933]  ? rcu_note_context_switch+0x730/0x730
[  143.197886]  ? mempool_free+0x370/0x370
[  143.201861]  mempool_alloc_slab+0x44/0x60
[  143.206010]  mempool_alloc+0x193/0x4b0
[  143.209901]  ? mempool_destroy+0x30/0x30
[  143.213973]  ? lock_downgrade+0x8f0/0x8f0
[  143.218136]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  143.223698]  bio_alloc_bioset+0x39c/0x6f0
[  143.227863]  ? generic_make_request+0x1800/0x1800
[  143.232803]  ? bvec_alloc+0x2d0/0x2d0
[  143.236603]  ? check_same_owner+0x340/0x340
[  143.240930]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  143.245939]  ? guard_bio_eod+0x2b4/0x600
[  143.249994]  submit_bh_wbc+0x14b/0x790
[  143.253914]  write_dirty_buffer+0xba/0x150
[  143.258164]  jbd2_log_do_checkpoint+0xc08/0x1370
[  143.262919]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  143.268638]  ? lock_acquire+0x1e4/0x540
[  143.272608]  ? jbd2_journal_flush+0x144/0x540
[  143.277101]  ? kasan_check_read+0x11/0x20
[  143.281241]  ? do_raw_spin_unlock+0xa7/0x2f0
[  143.285672]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  143.290267]  ? kasan_check_write+0x14/0x20
[  143.294593]  ? do_raw_spin_lock+0xc1/0x200
[  143.298829]  jbd2_journal_flush+0x156/0x540
[  143.303156]  ext4_change_inode_journal_flag+0x230/0x3e0
[  143.308599]  ext4_ioctl_setflags+0x5fd/0x7d0
[  143.313016]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  143.317434]  ? down_read+0x1d0/0x1d0
[  143.321154]  ? __mnt_want_write_file+0xa2/0xc0
[  143.325740]  ext4_ioctl+0xe41/0x4210
[  143.329444]  ? zap_class+0x740/0x740
[  143.333340]  ? memset+0x31/0x40
[  143.336625]  ? ext4_ioctl_group_add+0x560/0x560
[  143.341290]  ? perf_trace_lock+0x49d/0x920
[  143.345628]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  143.350722]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  143.355921]  ? zap_class+0x740/0x740
[  143.359638]  ? __check_object_size+0x9d/0x5f2
[  143.364137]  ? lock_acquire+0x1e4/0x540
[  143.368217]  ? __fget+0x4ac/0x740
[  143.371665]  ? lock_downgrade+0x8f0/0x8f0
[  143.375811]  ? lock_release+0xa30/0xa30
[  143.379772]  ? zap_class+0x740/0x740
[  143.383494]  ? __f_unlock_pos+0x19/0x20
[  143.387474]  ? __fget+0x4d5/0x740
[  143.390926]  ? ksys_dup3+0x690/0x690
[  143.394638]  ? kasan_check_write+0x14/0x20
[  143.398883]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  143.403812]  ? fsnotify+0xbac/0x14e0
[  143.407528]  ? vfs_write+0x2f3/0x560
[  143.411264]  ? ext4_ioctl_group_add+0x560/0x560
[  143.415948]  do_vfs_ioctl+0x1de/0x1720
[  143.419838]  ? fsnotify_first_mark+0x350/0x350
[  143.424415]  ? ioctl_preallocate+0x300/0x300
[  143.428820]  ? __fget_light+0x2f7/0x440
[  143.432789]  ? fget_raw+0x20/0x20
[  143.436257]  ? __sb_end_write+0xac/0xe0
[  143.440225]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  143.445762]  ? fput+0x130/0x1a0
[  143.449056]  ? ksys_write+0x1ae/0x260
[  143.452849]  ? security_file_ioctl+0x94/0xc0
[  143.457262]  ksys_ioctl+0xa9/0xd0
[  143.460711]  __x64_sys_ioctl+0x73/0xb0
[  143.464594]  do_syscall_64+0x1b9/0x820
[  143.468474]  ? finish_task_switch+0x1d3/0x870
[  143.472968]  ? syscall_return_slowpath+0x5e0/0x5e0
[  143.477896]  ? syscall_return_slowpath+0x31d/0x5e0
[  143.482824]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  143.487847]  ? prepare_exit_to_usermode+0x291/0x3b0
[  143.492887]  ? perf_trace_sys_enter+0xb10/0xb10
[  143.497666]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  143.502531]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  143.507726] RIP: 0033:0x455e29
[  143.510906] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  143.530278] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.538102] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  143.545388] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  143.552646] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
18:18:40 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ff", 0x37, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

[  143.559907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  143.567167] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000000c
18:18:40 executing program 5 (fault-call:5 fault-nth:13):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:40 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:40 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xc00e000000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:40 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

[  143.666999] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:40 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
lseek(r0, 0x0, 0x7)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200002, 0x0)
ioctl$BLKTRACESTOP(r1, 0x1275, 0x0)
fadvise64(r0, 0x0, 0x8, 0x7)

[  143.709629] FAULT_INJECTION: forcing a failure.
[  143.709629] name failslab, interval 1, probability 0, space 0, times 0
[  143.721254] CPU: 0 PID: 8616 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  143.729618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  143.738989] Call Trace:
[  143.741584]  dump_stack+0x1c9/0x2b4
[  143.745215]  ? dump_stack_print_info.cold.2+0x52/0x52
[  143.750412]  ? zap_class+0x740/0x740
[  143.754131]  should_fail.cold.4+0xa/0x11
[  143.758216]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  143.763343]  ? blk_exit_rl+0x80/0x80
[  143.767101]  ? save_stack+0xa9/0xd0
[  143.770731]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  143.775856]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  143.780804]  ? jbd2_journal_flush+0x156/0x540
[  143.785304]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  143.790844]  ? lock_acquire+0x1e4/0x540
[  143.794916]  ? generic_make_request+0x527/0x1800
[  143.799688]  ? lock_downgrade+0x8f0/0x8f0
[  143.803839]  ? lock_release+0xa30/0xa30
[  143.807819]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  143.813032]  ? perf_trace_lock+0x49d/0x920
[  143.817280]  ? generic_make_request+0x550/0x1800
[  143.822071]  __should_failslab+0x124/0x180
[  143.826331]  should_failslab+0x9/0x14
[  143.830139]  kmem_cache_alloc+0x47/0x760
[  143.834204]  ? rcu_note_context_switch+0x730/0x730
[  143.839133]  ? mempool_free+0x370/0x370
[  143.843109]  mempool_alloc_slab+0x44/0x60
[  143.847253]  mempool_alloc+0x193/0x4b0
[  143.851140]  ? mempool_destroy+0x30/0x30
[  143.855205]  ? lock_downgrade+0x8f0/0x8f0
[  143.859349]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  143.864889]  bio_alloc_bioset+0x39c/0x6f0
[  143.869039]  ? generic_make_request+0x1800/0x1800
[  143.873873]  ? bvec_alloc+0x2d0/0x2d0
[  143.877664]  ? check_same_owner+0x340/0x340
[  143.881974]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  143.886981]  ? guard_bio_eod+0x2b4/0x600
[  143.891053]  submit_bh_wbc+0x14b/0x790
[  143.894965]  write_dirty_buffer+0xba/0x150
[  143.899298]  jbd2_log_do_checkpoint+0xc08/0x1370
[  143.904062]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  143.909774]  ? lock_acquire+0x1e4/0x540
[  143.913749]  ? jbd2_journal_flush+0x144/0x540
[  143.918339]  ? kasan_check_read+0x11/0x20
[  143.922563]  ? do_raw_spin_unlock+0xa7/0x2f0
[  143.926967]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  143.931547]  ? kasan_check_write+0x14/0x20
[  143.935784]  ? do_raw_spin_lock+0xc1/0x200
[  143.940040]  jbd2_journal_flush+0x156/0x540
[  143.944371]  ext4_change_inode_journal_flag+0x230/0x3e0
[  143.949731]  ext4_ioctl_setflags+0x5fd/0x7d0
[  143.954138]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  143.958563]  ? down_read+0x1d0/0x1d0
[  143.962285]  ? __mnt_want_write_file+0xa2/0xc0
[  143.966874]  ext4_ioctl+0xe41/0x4210
[  143.970592]  ? zap_class+0x740/0x740
[  143.974322]  ? memset+0x31/0x40
[  143.977604]  ? ext4_ioctl_group_add+0x560/0x560
[  143.982274]  ? perf_trace_lock+0x49d/0x920
[  143.986517]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  143.991624]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  143.996730]  ? zap_class+0x740/0x740
[  144.000455]  ? __check_object_size+0x9d/0x5f2
[  144.004972]  ? lock_acquire+0x1e4/0x540
[  144.008965]  ? __fget+0x4ac/0x740
[  144.012426]  ? lock_downgrade+0x8f0/0x8f0
[  144.016575]  ? lock_release+0xa30/0xa30
[  144.020548]  ? zap_class+0x740/0x740
[  144.025073]  ? __f_unlock_pos+0x19/0x20
[  144.029053]  ? __fget+0x4d5/0x740
[  144.032506]  ? ksys_dup3+0x690/0x690
[  144.036237]  ? kasan_check_write+0x14/0x20
[  144.040490]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  144.045481]  ? fsnotify+0xbac/0x14e0
[  144.049192]  ? vfs_write+0x2f3/0x560
[  144.052916]  ? ext4_ioctl_group_add+0x560/0x560
[  144.057586]  do_vfs_ioctl+0x1de/0x1720
[  144.061469]  ? fsnotify_first_mark+0x350/0x350
[  144.066059]  ? ioctl_preallocate+0x300/0x300
[  144.070557]  ? __fget_light+0x2f7/0x440
[  144.074536]  ? fget_raw+0x20/0x20
[  144.078252]  ? __sb_end_write+0xac/0xe0
[  144.082240]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  144.087801]  ? fput+0x130/0x1a0
[  144.091084]  ? ksys_write+0x1ae/0x260
[  144.094901]  ? security_file_ioctl+0x94/0xc0
[  144.099443]  ksys_ioctl+0xa9/0xd0
[  144.102905]  __x64_sys_ioctl+0x73/0xb0
[  144.106796]  do_syscall_64+0x1b9/0x820
[  144.110686]  ? finish_task_switch+0x1d3/0x870
[  144.115201]  ? syscall_return_slowpath+0x5e0/0x5e0
[  144.120135]  ? syscall_return_slowpath+0x31d/0x5e0
[  144.125059]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  144.130075]  ? prepare_exit_to_usermode+0x291/0x3b0
[  144.135090]  ? perf_trace_sys_enter+0xb10/0xb10
[  144.139867]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  144.144716]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  144.149904] RIP: 0033:0x455e29
[  144.153091] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  144.172434] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.180153] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  144.188031] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  144.195312] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  144.202578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  144.209852] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000000d
18:18:40 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc))
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:40 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ff", 0x37, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:40 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0xffffffffffffffdb, 0xfa00, {0x0, &(0x7f0000000500)}}, 0xfffffecf)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000580)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000240), 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)

18:18:40 executing program 5 (fault-call:5 fault-nth:14):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:40 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf0ffffffffffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:40 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:40 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  144.327370] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  144.405865] FAULT_INJECTION: forcing a failure.
[  144.405865] name failslab, interval 1, probability 0, space 0, times 0
[  144.417207] CPU: 0 PID: 8652 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  144.425535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  144.434922] Call Trace:
[  144.437519]  dump_stack+0x1c9/0x2b4
[  144.441169]  ? dump_stack_print_info.cold.2+0x52/0x52
[  144.446410]  ? zap_class+0x740/0x740
[  144.450163]  should_fail.cold.4+0xa/0x11
[  144.454254]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  144.459352]  ? blk_exit_rl+0x80/0x80
[  144.463070]  ? save_stack+0xa9/0xd0
[  144.466714]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  144.471815]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  144.476746]  ? jbd2_journal_flush+0x156/0x540
[  144.481236]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  144.486774]  ? lock_acquire+0x1e4/0x540
[  144.490744]  ? generic_make_request+0x527/0x1800
[  144.495497]  ? lock_downgrade+0x8f0/0x8f0
[  144.499752]  ? lock_release+0xa30/0xa30
[  144.503738]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  144.508868]  ? perf_trace_lock+0x49d/0x920
[  144.513119]  ? generic_make_request+0x550/0x1800
[  144.517872]  __should_failslab+0x124/0x180
[  144.522127]  should_failslab+0x9/0x14
[  144.525926]  kmem_cache_alloc+0x47/0x760
[  144.530086]  ? rcu_note_context_switch+0x730/0x730
[  144.535040]  ? mempool_free+0x370/0x370
[  144.539026]  mempool_alloc_slab+0x44/0x60
[  144.543199]  mempool_alloc+0x193/0x4b0
[  144.547103]  ? mempool_destroy+0x30/0x30
[  144.551165]  ? lock_downgrade+0x8f0/0x8f0
[  144.555325]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  144.560865]  bio_alloc_bioset+0x39c/0x6f0
[  144.565033]  ? generic_make_request+0x1800/0x1800
[  144.569886]  ? bvec_alloc+0x2d0/0x2d0
[  144.573797]  ? check_same_owner+0x340/0x340
[  144.578111]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  144.583128]  ? guard_bio_eod+0x2b4/0x600
[  144.587288]  submit_bh_wbc+0x14b/0x790
[  144.591188]  write_dirty_buffer+0xba/0x150
[  144.595419]  jbd2_log_do_checkpoint+0xc08/0x1370
[  144.600216]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  144.605937]  ? lock_acquire+0x1e4/0x540
[  144.609956]  ? jbd2_journal_flush+0x144/0x540
[  144.614482]  ? kasan_check_read+0x11/0x20
[  144.618665]  ? do_raw_spin_unlock+0xa7/0x2f0
[  144.623171]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  144.627778]  ? kasan_check_write+0x14/0x20
[  144.632120]  ? do_raw_spin_lock+0xc1/0x200
[  144.636365]  jbd2_journal_flush+0x156/0x540
[  144.640695]  ext4_change_inode_journal_flag+0x230/0x3e0
[  144.646062]  ext4_ioctl_setflags+0x5fd/0x7d0
[  144.650481]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  144.654883]  ? down_read+0x1d0/0x1d0
[  144.658594]  ? __mnt_want_write_file+0xa2/0xc0
[  144.663195]  ext4_ioctl+0xe41/0x4210
[  144.666904]  ? zap_class+0x740/0x740
[  144.670716]  ? memset+0x31/0x40
[  144.673991]  ? ext4_ioctl_group_add+0x560/0x560
[  144.678671]  ? perf_trace_lock+0x49d/0x920
[  144.682906]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  144.688003]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  144.693111]  ? zap_class+0x740/0x740
[  144.696833]  ? __check_object_size+0x9d/0x5f2
[  144.701348]  ? lock_acquire+0x1e4/0x540
[  144.705327]  ? __fget+0x4ac/0x740
[  144.708773]  ? lock_downgrade+0x8f0/0x8f0
[  144.712925]  ? lock_release+0xa30/0xa30
[  144.716905]  ? zap_class+0x740/0x740
[  144.720627]  ? __f_unlock_pos+0x19/0x20
[  144.724595]  ? __fget+0x4d5/0x740
[  144.728143]  ? ksys_dup3+0x690/0x690
[  144.731861]  ? kasan_check_write+0x14/0x20
[  144.736103]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  144.741030]  ? fsnotify+0xbac/0x14e0
[  144.744760]  ? vfs_write+0x2f3/0x560
[  144.748467]  ? ext4_ioctl_group_add+0x560/0x560
[  144.753161]  do_vfs_ioctl+0x1de/0x1720
[  144.757970]  ? fsnotify_first_mark+0x350/0x350
[  144.762550]  ? ioctl_preallocate+0x300/0x300
[  144.766961]  ? __fget_light+0x2f7/0x440
[  144.770945]  ? fget_raw+0x20/0x20
[  144.774488]  ? __sb_end_write+0xac/0xe0
[  144.778472]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  144.784025]  ? fput+0x130/0x1a0
[  144.787323]  ? ksys_write+0x1ae/0x260
[  144.791127]  ? security_file_ioctl+0x94/0xc0
[  144.795528]  ksys_ioctl+0xa9/0xd0
[  144.799007]  __x64_sys_ioctl+0x73/0xb0
[  144.803182]  do_syscall_64+0x1b9/0x820
[  144.807149]  ? finish_task_switch+0x1d3/0x870
[  144.811665]  ? syscall_return_slowpath+0x5e0/0x5e0
[  144.816596]  ? syscall_return_slowpath+0x31d/0x5e0
[  144.821526]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  144.826546]  ? prepare_exit_to_usermode+0x291/0x3b0
[  144.831567]  ? perf_trace_sys_enter+0xb10/0xb10
[  144.836228]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  144.841072]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  144.846254] RIP: 0033:0x455e29
[  144.849427] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  144.868725] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.876431] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  144.883700] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  144.890975] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  144.898237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  144.905507] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000000e
18:18:41 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x0, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:41 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x9c01000000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:41 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:41 executing program 4:
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @dev={0xfe, 0x80}}}}, 0x30)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x13f}}, 0x20)
memfd_create(&(0x7f0000000100)='/dev/infiniband/rdma_cm\x00', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140), 0x106}}, 0x20)

18:18:41 executing program 0:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x42, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x100, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x5, 0x70, 0xd589, 0x8001, 0x7, 0x6, 0x0, 0x20, 0x8, 0x3, 0x1c, 0x80000001, 0x7, 0xffff, 0xffffffff80000000, 0x9, 0x6, 0x8, 0x0, 0x2, 0x9, 0x80, 0x1ff, 0xbc, 0x4, 0xa3, 0x9, 0x6, 0x4, 0x0, 0x7, 0x100, 0x5, 0x5, 0x2, 0x3ff, 0xbbb1, 0x81, 0x0, 0xa04, 0x0, @perf_config_ext={0xc44, 0x5}, 0x2000, 0x7f, 0x7, 0x1, 0x1, 0x8, 0x7}, r0, 0x5, r1, 0x6)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r4 = fcntl$dupfd(r1, 0x0, r2)
ioctl$RTC_UIE_ON(r4, 0x7003)
setsockopt$nfc_llcp_NFC_LLCP_RW(r3, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:41 executing program 5 (fault-call:5 fault-nth:15):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:41 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x9c010000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  145.072368] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  145.103586] FAULT_INJECTION: forcing a failure.
[  145.103586] name failslab, interval 1, probability 0, space 0, times 0
18:18:41 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000000c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[])
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0/fil..\x00', 0x0, 0x0)
mknod(&(0x7f00000002c0)='./file0/fil..\x00', 0x0, 0x0)

[  145.115490] CPU: 0 PID: 8687 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  145.123932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  145.133301] Call Trace:
[  145.136011]  dump_stack+0x1c9/0x2b4
[  145.139664]  ? dump_stack_print_info.cold.2+0x52/0x52
[  145.144921]  ? zap_class+0x740/0x740
[  145.148655]  should_fail.cold.4+0xa/0x11
[  145.152729]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  145.157848]  ? blk_exit_rl+0x80/0x80
[  145.161557]  ? save_stack+0xa9/0xd0
[  145.165184]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  145.170292]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  145.175226]  ? jbd2_journal_flush+0x156/0x540
[  145.179821]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  145.185364]  ? lock_acquire+0x1e4/0x540
[  145.189361]  ? generic_make_request+0x527/0x1800
[  145.194120]  ? lock_downgrade+0x8f0/0x8f0
[  145.198366]  ? lock_release+0xa30/0xa30
[  145.202341]  ? perf_trace_lock+0x49d/0x920
[  145.206589]  ? generic_make_request+0x550/0x1800
[  145.211348]  __should_failslab+0x124/0x180
[  145.215688]  should_failslab+0x9/0x14
[  145.219487]  kmem_cache_alloc+0x47/0x760
[  145.223544]  ? rcu_note_context_switch+0x730/0x730
[  145.228493]  ? mempool_free+0x370/0x370
[  145.232481]  mempool_alloc_slab+0x44/0x60
[  145.236621]  mempool_alloc+0x193/0x4b0
[  145.240514]  ? mempool_destroy+0x30/0x30
[  145.244580]  ? lock_downgrade+0x8f0/0x8f0
[  145.248717]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  145.254259]  bio_alloc_bioset+0x39c/0x6f0
[  145.258410]  ? generic_make_request+0x1800/0x1800
[  145.263246]  ? bvec_alloc+0x2d0/0x2d0
[  145.267045]  ? check_same_owner+0x340/0x340
[  145.271369]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  145.276384]  ? guard_bio_eod+0x2b4/0x600
[  145.280438]  submit_bh_wbc+0x14b/0x790
[  145.284331]  write_dirty_buffer+0xba/0x150
[  145.288567]  jbd2_log_do_checkpoint+0xc08/0x1370
[  145.293343]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  145.299066]  ? lock_acquire+0x1e4/0x540
[  145.303037]  ? jbd2_journal_flush+0x144/0x540
[  145.307526]  ? kasan_check_read+0x11/0x20
[  145.311660]  ? do_raw_spin_unlock+0xa7/0x2f0
[  145.316055]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  145.320637]  ? kasan_check_write+0x14/0x20
[  145.324860]  ? do_raw_spin_lock+0xc1/0x200
[  145.329089]  jbd2_journal_flush+0x156/0x540
[  145.333405]  ext4_change_inode_journal_flag+0x230/0x3e0
[  145.338758]  ext4_ioctl_setflags+0x5fd/0x7d0
[  145.343165]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  145.347563]  ? down_read+0x1d0/0x1d0
[  145.351353]  ? __mnt_want_write_file+0xa2/0xc0
[  145.356042]  ext4_ioctl+0xe41/0x4210
[  145.359753]  ? zap_class+0x740/0x740
[  145.363449]  ? check_same_owner+0x340/0x340
[  145.367760]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  145.373288]  ? ext4_ioctl_group_add+0x560/0x560
[  145.377958]  ? perf_trace_lock+0xde/0x920
[  145.382105]  ? _kstrtoull+0x188/0x250
[  145.385898]  ? _parse_integer+0x190/0x190
[  145.390038]  ? zap_class+0x740/0x740
[  145.393743]  ? __check_object_size+0x9d/0x5f2
[  145.398233]  ? lock_acquire+0x1e4/0x540
[  145.402216]  ? __fget+0x4ac/0x740
[  145.405674]  ? lock_downgrade+0x8f0/0x8f0
[  145.409818]  ? lock_release+0xa30/0xa30
[  145.413776]  ? zap_class+0x740/0x740
[  145.417489]  ? __f_unlock_pos+0x19/0x20
[  145.421470]  ? __fget+0x4d5/0x740
[  145.424926]  ? ksys_dup3+0x690/0x690
[  145.428653]  ? kasan_check_write+0x14/0x20
[  145.432885]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  145.437802]  ? fsnotify+0xbac/0x14e0
[  145.441523]  ? vfs_write+0x2f3/0x560
[  145.445228]  ? ext4_ioctl_group_add+0x560/0x560
[  145.449884]  do_vfs_ioctl+0x1de/0x1720
[  145.453760]  ? fsnotify_first_mark+0x350/0x350
[  145.458346]  ? ioctl_preallocate+0x300/0x300
[  145.462741]  ? __fget_light+0x2f7/0x440
[  145.466718]  ? fget_raw+0x20/0x20
[  145.470169]  ? __sb_end_write+0xac/0xe0
[  145.474142]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  145.479666]  ? fput+0x130/0x1a0
[  145.482942]  ? ksys_write+0x1ae/0x260
[  145.486733]  ? security_file_ioctl+0x94/0xc0
[  145.491137]  ksys_ioctl+0xa9/0xd0
[  145.494588]  __x64_sys_ioctl+0x73/0xb0
[  145.498471]  do_syscall_64+0x1b9/0x820
[  145.502355]  ? finish_task_switch+0x1d3/0x870
[  145.506858]  ? syscall_return_slowpath+0x5e0/0x5e0
[  145.511787]  ? syscall_return_slowpath+0x31d/0x5e0
[  145.516726]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  145.521737]  ? prepare_exit_to_usermode+0x291/0x3b0
[  145.526745]  ? perf_trace_sys_enter+0xb10/0xb10
[  145.531507]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  145.536345]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  145.541519] RIP: 0033:0x455e29
[  145.544776] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  145.564184] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.571890] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  145.579155] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  145.586408] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  145.593760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  145.601031] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000000f
18:18:42 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc))
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:42 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup3(r1, r0, 0x0)

18:18:42 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:42 executing program 5 (fault-call:5 fault-nth:16):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:42 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:42 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpgrp(0xffffffffffffffff)
move_pages(r0, 0x2, &(0x7f0000000000)=[&(0x7f0000ff3000/0xa000)=nil, &(0x7f0000ffc000/0x2000)=nil], &(0x7f0000000040)=[0x3, 0x40], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x2)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  145.699567] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  145.789411] FAULT_INJECTION: forcing a failure.
[  145.789411] name failslab, interval 1, probability 0, space 0, times 0
[  145.800741] CPU: 0 PID: 8725 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  145.809170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  145.815109] can: request_module (can-proto-0) failed.
[  145.818532] Call Trace:
[  145.818562]  dump_stack+0x1c9/0x2b4
[  145.818590]  ? dump_stack_print_info.cold.2+0x52/0x52
[  145.818626]  should_fail.cold.4+0xa/0x11
[  145.818649]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  145.818669]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  145.849356]  ? bpf_prog_kallsyms_find+0xde/0x4c0
[  145.854240]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  145.859355]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  145.864465]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  145.869567]  ? perf_tp_event+0xc40/0xc40
[  145.873648]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  145.878360]  ? memset+0x31/0x40
[  145.881653]  ? perf_trace_lock+0x49d/0x920
[  145.885886]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  145.890989]  __should_failslab+0x124/0x180
[  145.895347]  should_failslab+0x9/0x14
[  145.899142]  kmem_cache_alloc+0x47/0x760
[  145.903197]  ? rcu_note_context_switch+0x730/0x730
[  145.908132]  ? memset+0x31/0x40
[  145.911426]  ? mempool_free+0x370/0x370
[  145.915404]  mempool_alloc_slab+0x44/0x60
[  145.919553]  mempool_alloc+0x193/0x4b0
[  145.923527]  ? mempool_destroy+0x30/0x30
[  145.927672]  ? lock_acquire+0x1e4/0x540
[  145.931647]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  145.936742]  ? lock_downgrade+0x8f0/0x8f0
[  145.940885]  ? debug_check_no_obj_freed+0x30b/0x595
[  145.945901]  bio_alloc_bioset+0x39c/0x6f0
[  145.950053]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  145.954647]  ? bvec_alloc+0x2d0/0x2d0
[  145.958458]  ? kasan_check_write+0x14/0x20
[  145.962696]  ? kasan_check_write+0x14/0x20
[  145.966922]  ? do_raw_read_unlock+0x3f/0x60
[  145.971239]  blkdev_issue_flush+0xd1/0x300
[  145.975486]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  145.980432]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  145.986148]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  145.990748]  ? kasan_check_write+0x14/0x20
[  145.995102]  ? do_raw_spin_lock+0xc1/0x200
[  145.999356]  jbd2_log_do_checkpoint+0xa19/0x1370
[  146.004211]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  146.010022]  ? lock_acquire+0x1e4/0x540
[  146.014090]  ? jbd2_journal_flush+0x144/0x540
[  146.018605]  ? kasan_check_read+0x11/0x20
[  146.023500]  ? do_raw_spin_unlock+0xa7/0x2f0
[  146.027903]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  146.032480]  ? kasan_check_write+0x14/0x20
[  146.036714]  ? do_raw_spin_lock+0xc1/0x200
[  146.041047]  jbd2_journal_flush+0x156/0x540
[  146.045365]  ext4_change_inode_journal_flag+0x230/0x3e0
[  146.050721]  ext4_ioctl_setflags+0x5fd/0x7d0
[  146.055122]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  146.059516]  ? down_read+0x1d0/0x1d0
[  146.063234]  ? __mnt_want_write_file+0xa2/0xc0
[  146.067833]  ext4_ioctl+0xe41/0x4210
[  146.071546]  ? zap_class+0x740/0x740
[  146.075275]  ? memset+0x31/0x40
[  146.078557]  ? ext4_ioctl_group_add+0x560/0x560
[  146.083225]  ? perf_trace_lock+0x49d/0x920
[  146.087464]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  146.092566]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  146.097851]  ? zap_class+0x740/0x740
[  146.101568]  ? __check_object_size+0x9d/0x5f2
[  146.106073]  ? lock_acquire+0x1e4/0x540
[  146.110043]  ? __fget+0x4ac/0x740
[  146.113490]  ? lock_downgrade+0x8f0/0x8f0
[  146.117629]  ? lock_release+0xa30/0xa30
[  146.121588]  ? zap_class+0x740/0x740
[  146.125297]  ? __f_unlock_pos+0x19/0x20
[  146.129361]  ? __fget+0x4d5/0x740
[  146.132806]  ? ksys_dup3+0x690/0x690
[  146.136521]  ? kasan_check_write+0x14/0x20
[  146.140742]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  146.145671]  ? fsnotify+0xbac/0x14e0
[  146.149372]  ? vfs_write+0x2f3/0x560
[  146.153087]  ? ext4_ioctl_group_add+0x560/0x560
[  146.157756]  do_vfs_ioctl+0x1de/0x1720
[  146.161632]  ? fsnotify_first_mark+0x350/0x350
[  146.166214]  ? ioctl_preallocate+0x300/0x300
[  146.170617]  ? __fget_light+0x2f7/0x440
[  146.174590]  ? fget_raw+0x20/0x20
[  146.178044]  ? __sb_end_write+0xac/0xe0
[  146.182024]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  146.187573]  ? fput+0x130/0x1a0
[  146.190856]  ? ksys_write+0x1ae/0x260
[  146.194653]  ? security_file_ioctl+0x94/0xc0
[  146.199076]  ksys_ioctl+0xa9/0xd0
[  146.202626]  __x64_sys_ioctl+0x73/0xb0
[  146.206510]  do_syscall_64+0x1b9/0x820
[  146.210400]  ? finish_task_switch+0x1d3/0x870
[  146.214886]  ? syscall_return_slowpath+0x5e0/0x5e0
[  146.219810]  ? syscall_return_slowpath+0x31d/0x5e0
[  146.224764]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  146.229777]  ? prepare_exit_to_usermode+0x291/0x3b0
[  146.234793]  ? perf_trace_sys_enter+0xb10/0xb10
[  146.239458]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  146.244326]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  146.249507] RIP: 0033:0x455e29
[  146.252679] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  146.272031] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.279761] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  146.287113] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  146.294384] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  146.301640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  146.308898] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000010
18:18:43 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x0, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:43 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xfffffff0}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:43 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup3(0xffffffffffffffff, r0, 0x0)

18:18:43 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53", 0x39, 0x400}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:43 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:43 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000040)={0x4, 0x1, 0x1, 0xc03e, <r2=>0x0}, &(0x7f0000000080)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0)={0x7f, 0x7, 0x8207, 0x4, 0x1a9, 0x7, 0xfffffffffffffe00, 0x0, r2}, 0x20)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:43 executing program 5 (fault-call:5 fault-nth:17):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:43 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:43 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x100000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup3(r1, 0xffffffffffffffff, 0x0)

[  146.483229] FAULT_INJECTION: forcing a failure.
[  146.483229] name failslab, interval 1, probability 0, space 0, times 0
[  146.494525] CPU: 0 PID: 8748 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  146.495421] can: request_module (can-proto-0) failed.
[  146.502911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  146.502919] Call Trace:
[  146.502947]  dump_stack+0x1c9/0x2b4
[  146.502971]  ? dump_stack_print_info.cold.2+0x52/0x52
[  146.502992]  ? zap_class+0x740/0x740
[  146.503020]  should_fail.cold.4+0xa/0x11
[  146.503045]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  146.503058]  ? blk_exit_rl+0x80/0x80
[  146.503080]  ? save_stack+0xa9/0xd0
[  146.549138]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  146.554240]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  146.559161]  ? jbd2_journal_flush+0x156/0x540
[  146.563648]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  146.569185]  ? lock_acquire+0x1e4/0x540
[  146.573163]  ? generic_make_request+0x527/0x1800
[  146.577920]  ? lock_downgrade+0x8f0/0x8f0
[  146.582064]  ? lock_release+0xa30/0xa30
[  146.586054]  ? perf_trace_lock+0x49d/0x920
[  146.590302]  ? generic_make_request+0x550/0x1800
[  146.595072]  __should_failslab+0x124/0x180
[  146.599300]  should_failslab+0x9/0x14
[  146.603100]  kmem_cache_alloc+0x47/0x760
[  146.607162]  ? rcu_note_context_switch+0x730/0x730
[  146.612101]  ? mempool_free+0x370/0x370
[  146.616078]  mempool_alloc_slab+0x44/0x60
[  146.620224]  mempool_alloc+0x193/0x4b0
[  146.624117]  ? mempool_destroy+0x30/0x30
[  146.628171]  ? lock_downgrade+0x8f0/0x8f0
[  146.632308]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  146.637841]  bio_alloc_bioset+0x39c/0x6f0
[  146.641980]  ? generic_make_request+0x1800/0x1800
[  146.646814]  ? bvec_alloc+0x2d0/0x2d0
[  146.650605]  ? check_same_owner+0x340/0x340
[  146.654920]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  146.659929]  ? guard_bio_eod+0x2b4/0x600
[  146.663985]  submit_bh_wbc+0x14b/0x790
[  146.667878]  write_dirty_buffer+0xba/0x150
[  146.672119]  jbd2_log_do_checkpoint+0xc08/0x1370
[  146.676886]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  146.682602]  ? lock_acquire+0x1e4/0x540
[  146.686568]  ? jbd2_journal_flush+0x144/0x540
[  146.691080]  ? kasan_check_read+0x11/0x20
[  146.695227]  ? do_raw_spin_unlock+0xa7/0x2f0
[  146.699622]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  146.704205]  ? kasan_check_write+0x14/0x20
[  146.708440]  ? do_raw_spin_lock+0xc1/0x200
[  146.712678]  jbd2_journal_flush+0x156/0x540
[  146.717011]  ext4_change_inode_journal_flag+0x230/0x3e0
[  146.722388]  ext4_ioctl_setflags+0x5fd/0x7d0
[  146.726794]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  146.731187]  ? down_read+0x1d0/0x1d0
[  146.734898]  ? __mnt_want_write_file+0xa2/0xc0
[  146.739475]  ext4_ioctl+0xe41/0x4210
[  146.743178]  ? zap_class+0x740/0x740
[  146.746916]  ? ext4_ioctl_group_add+0x560/0x560
[  146.751576]  ? perf_trace_lock+0x49d/0x920
[  146.755801]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  146.760905]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  146.766014]  ? zap_class+0x740/0x740
[  146.769742]  ? lock_acquire+0x1e4/0x540
[  146.773706]  ? __fget+0x4ac/0x740
[  146.777158]  ? lock_downgrade+0x8f0/0x8f0
[  146.781307]  ? lock_release+0xa30/0xa30
[  146.785286]  ? zap_class+0x740/0x740
[  146.788995]  ? __f_unlock_pos+0x19/0x20
[  146.792966]  ? __fget+0x4d5/0x740
[  146.796419]  ? ksys_dup3+0x690/0x690
[  146.800136]  ? kasan_check_write+0x14/0x20
[  146.804359]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  146.809275]  ? fsnotify+0xbac/0x14e0
[  146.812981]  ? vfs_write+0x2f3/0x560
[  146.816692]  ? ext4_ioctl_group_add+0x560/0x560
[  146.821372]  do_vfs_ioctl+0x1de/0x1720
[  146.825260]  ? fsnotify_first_mark+0x350/0x350
[  146.829832]  ? ioctl_preallocate+0x300/0x300
[  146.834227]  ? __fget_light+0x2f7/0x440
[  146.838190]  ? fget_raw+0x20/0x20
[  146.841632]  ? __sb_end_write+0xac/0xe0
[  146.845606]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  146.851129]  ? fput+0x130/0x1a0
[  146.854401]  ? ksys_write+0x1ae/0x260
[  146.858193]  ? security_file_ioctl+0x94/0xc0
[  146.862591]  ksys_ioctl+0xa9/0xd0
[  146.866048]  __x64_sys_ioctl+0x73/0xb0
[  146.869928]  do_syscall_64+0x1b9/0x820
[  146.873803]  ? finish_task_switch+0x1d3/0x870
[  146.878291]  ? syscall_return_slowpath+0x5e0/0x5e0
[  146.883219]  ? syscall_return_slowpath+0x31d/0x5e0
[  146.888149]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  146.893156]  ? prepare_exit_to_usermode+0x291/0x3b0
[  146.898181]  ? perf_trace_sys_enter+0xb10/0xb10
[  146.902858]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  146.907712]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  146.912899] RIP: 0033:0x455e29
[  146.916074] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  146.935452] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.943167] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  146.950435] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  146.957704] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  146.964972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  146.972232] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000011
18:18:43 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:43 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x19c}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:43 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

[  146.989131] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:43 executing program 5 (fault-call:5 fault-nth:18):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:43 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:43 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x40, 0x40400)
getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040)=0x4, &(0x7f0000000080)=0x4)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:43 executing program 3:
r0 = syz_open_dev$binder(&(0x7f0000000180)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x44, 0x0, &(0x7f0000000280)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000058, 0x8, &(0x7f0000000040)=[@flat], &(0x7f0000000080)=[0x0]}}], 0x0, 0x0, &(0x7f0000000340)})

[  147.123252] can: request_module (can-proto-0) failed.
[  147.150580] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  147.185802] FAULT_INJECTION: forcing a failure.
[  147.185802] name failslab, interval 1, probability 0, space 0, times 0
[  147.197147] CPU: 1 PID: 8785 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  147.205476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  147.214825] Call Trace:
[  147.217403]  dump_stack+0x1c9/0x2b4
[  147.221028]  ? dump_stack_print_info.cold.2+0x52/0x52
[  147.226212]  ? zap_class+0x740/0x740
[  147.229922]  should_fail.cold.4+0xa/0x11
[  147.233975]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  147.239061]  ? blk_exit_rl+0x80/0x80
[  147.242764]  ? save_stack+0xa9/0xd0
[  147.246474]  ? kasan_slab_alloc+0x12/0x20
[  147.250613]  ? kmem_cache_alloc+0x12e/0x760
[  147.254932]  ? mempool_alloc_slab+0x44/0x60
[  147.259253]  ? bio_alloc_bioset+0x39c/0x6f0
[  147.263557]  ? submit_bh_wbc+0x14b/0x790
[  147.267601]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  147.272533]  ? jbd2_journal_flush+0x156/0x540
[  147.277033]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  147.282569]  ? lock_acquire+0x1e4/0x540
[  147.286532]  ? generic_make_request+0x527/0x1800
[  147.291276]  ? lock_downgrade+0x8f0/0x8f0
[  147.295412]  ? lock_release+0xa30/0xa30
[  147.299374]  ? perf_trace_lock+0xde/0x920
[  147.303506]  ? trace_hardirqs_on+0x10/0x10
[  147.307729]  ? zap_class+0x740/0x740
[  147.311438]  ? lock_downgrade+0x8f0/0x8f0
[  147.315574]  ? generic_make_request+0x550/0x1800
[  147.320312]  __should_failslab+0x124/0x180
[  147.324536]  should_failslab+0x9/0x14
[  147.328322]  kmem_cache_alloc+0x47/0x760
[  147.332469]  ? rcu_note_context_switch+0x730/0x730
[  147.337384]  ? mempool_free+0x370/0x370
[  147.341340]  mempool_alloc_slab+0x44/0x60
[  147.345485]  mempool_alloc+0x193/0x4b0
[  147.349362]  ? mempool_destroy+0x30/0x30
[  147.353416]  ? lock_downgrade+0x8f0/0x8f0
[  147.357558]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  147.363102]  bio_alloc_bioset+0x39c/0x6f0
[  147.367265]  ? generic_make_request+0x1800/0x1800
[  147.372107]  ? bvec_alloc+0x2d0/0x2d0
[  147.375895]  ? check_same_owner+0x340/0x340
[  147.380203]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  147.385207]  ? guard_bio_eod+0x2b4/0x600
[  147.389273]  submit_bh_wbc+0x14b/0x790
[  147.393163]  write_dirty_buffer+0xba/0x150
[  147.397386]  jbd2_log_do_checkpoint+0xc08/0x1370
[  147.402130]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  147.407837]  ? lock_acquire+0x1e4/0x540
[  147.411793]  ? jbd2_journal_flush+0x144/0x540
[  147.416277]  ? kasan_check_read+0x11/0x20
[  147.420425]  ? do_raw_spin_unlock+0xa7/0x2f0
[  147.424817]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  147.429391]  ? kasan_check_write+0x14/0x20
[  147.433605]  ? do_raw_spin_lock+0xc1/0x200
[  147.437844]  jbd2_journal_flush+0x156/0x540
[  147.442161]  ext4_change_inode_journal_flag+0x230/0x3e0
[  147.447514]  ext4_ioctl_setflags+0x5fd/0x7d0
[  147.452025]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  147.456419]  ? down_read+0x1d0/0x1d0
[  147.460116]  ? __mnt_want_write_file+0xa2/0xc0
[  147.464701]  ext4_ioctl+0xe41/0x4210
[  147.468398]  ? zap_class+0x740/0x740
[  147.472108]  ? check_same_owner+0x340/0x340
[  147.476427]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  147.481946]  ? ext4_ioctl_group_add+0x560/0x560
[  147.486609]  ? perf_trace_lock+0xde/0x920
[  147.490754]  ? _kstrtoull+0x188/0x250
[  147.494544]  ? _parse_integer+0x190/0x190
[  147.498685]  ? zap_class+0x740/0x740
[  147.502391]  ? __check_object_size+0x9d/0x5f2
[  147.506875]  ? lock_acquire+0x1e4/0x540
[  147.510836]  ? __fget+0x4ac/0x740
[  147.514273]  ? lock_downgrade+0x8f0/0x8f0
[  147.518403]  ? lock_release+0xa30/0xa30
[  147.522358]  ? zap_class+0x740/0x740
[  147.526066]  ? __f_unlock_pos+0x19/0x20
[  147.530038]  ? __fget+0x4d5/0x740
[  147.533475]  ? ksys_dup3+0x690/0x690
[  147.537178]  ? kasan_check_write+0x14/0x20
[  147.541400]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  147.546315]  ? fsnotify+0xbac/0x14e0
[  147.550281]  ? vfs_write+0x2f3/0x560
[  147.553985]  ? ext4_ioctl_group_add+0x560/0x560
[  147.558636]  do_vfs_ioctl+0x1de/0x1720
[  147.562503]  ? fsnotify_first_mark+0x350/0x350
[  147.567073]  ? ioctl_preallocate+0x300/0x300
[  147.571469]  ? __fget_light+0x2f7/0x440
[  147.575432]  ? fget_raw+0x20/0x20
[  147.578879]  ? __sb_end_write+0xac/0xe0
[  147.582845]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  147.588366]  ? fput+0x130/0x1a0
[  147.591628]  ? ksys_write+0x1ae/0x260
[  147.595422]  ? security_file_ioctl+0x94/0xc0
[  147.599815]  ksys_ioctl+0xa9/0xd0
[  147.603254]  __x64_sys_ioctl+0x73/0xb0
[  147.607127]  do_syscall_64+0x1b9/0x820
[  147.610994]  ? finish_task_switch+0x1d3/0x870
[  147.615483]  ? syscall_return_slowpath+0x5e0/0x5e0
[  147.620394]  ? syscall_return_slowpath+0x31d/0x5e0
[  147.625400]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  147.630398]  ? prepare_exit_to_usermode+0x291/0x3b0
[  147.635401]  ? perf_trace_sys_enter+0xb10/0xb10
[  147.640060]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  147.644895]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  147.650062] RIP: 0033:0x455e29
[  147.653226] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  147.672492] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  147.680186] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  147.687448] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  147.694697] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  147.701948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  147.709204] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000012
[  147.733297] binder_alloc: 8793: binder_alloc_buf size 536871008 failed, no address space
[  147.741864] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 12288 (num: 1 largest: 12288)
[  147.750812] binder: 8793:8800 transaction failed 29201/-28, size 536871000-8 line 2967
[  147.761336] binder_alloc: binder_alloc_mmap_handler: 8793 20001000-20004000 already mapped failed -16
[  147.775627] binder: BINDER_SET_CONTEXT_MGR already set
[  147.781977] binder: 8793:8800 ioctl 40046207 0 returned -16
[  147.788456] binder_alloc: 8793: binder_alloc_buf, no vma
[  147.793981] binder: 8793:8802 transaction failed 29189/-3, size 536871000-8 line 2967
18:18:44 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:44 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf0ffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:44 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:44 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:44 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={<r1=>0x0}, &(0x7f00000000c0)=0xc)
perf_event_open(&(0x7f0000000000)={0x4, 0x70, 0x8000, 0x4, 0x8, 0x81, 0x0, 0x101, 0x10002, 0x6, 0x101, 0x2, 0x95, 0x9, 0xffffffffffffffff, 0x152, 0x9, 0x7, 0x2, 0x6f14, 0xf5, 0xff795bc, 0x8, 0x3f, 0x7, 0x2, 0x10001, 0x7f, 0x9, 0x10000, 0x80000001, 0x5, 0xb3, 0x4, 0x52, 0x0, 0x4, 0x9, 0x0, 0x9, 0x2, @perf_config_ext={0xa3a, 0x1}, 0x100, 0x8001, 0xfffffffffffffffe, 0x4, 0x0, 0x2, 0x8}, r1, 0x3, 0xffffffffffffffff, 0x0)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:44 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:44 executing program 5 (fault-call:5 fault-nth:19):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:44 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote={0xfe, 0x80, [], 0xbb}}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000000c0)={@dev={0xfe, 0x80}}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x4000000001c, &(0x7f00000001c0)={@remote={0xfe, 0x80, [], 0xbb}}, 0x14)

[  147.804926] binder: undelivered TRANSACTION_ERROR: 29201
[  147.810534] binder: undelivered TRANSACTION_ERROR: 29189
18:18:44 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, r0, 0x0)

18:18:44 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x9effffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:44 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(r1, 0x4, 0x42c00)
r2 = inotify_init1(0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x6d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000400)="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", 0x1000, 0x45d9a01f}, {&(0x7f0000001500)="6ecea20a3f1d2efdbc29830c6679c3f776dc068e9d64bf204cf5d3efc0eaf935b32db124582c03ed7316fade038ec912aa2d3ee50e9f304b9870027ae8e9c39e59b22dab08dff83655e31e72518b18fa2418a05cc9c25181808ee7dbb43c8c3678d355e40994b4bc06b5aa5bf1f51c6d7366d66220dcd5ec0ed0fd46ebb3ae38c7bbf91a12d4c1f669f6cc33ac1ff89895f2fdd78ff2", 0x96, 0x3}])
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
bind$alg(r0, &(0x7f0000e15000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1\x00'}, 0x58)
r3 = accept4$alg(r0, 0x0, 0x0, 0x800)
sendto(r3, &(0x7f00005c8f58), 0xfffffffffffffeee, 0x0, &(0x7f0000351ff0)=@ipx={0x4, 0x0, 0x0, "a074edebb7e1"}, 0x10)

[  147.882666] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  147.903451] FAULT_INJECTION: forcing a failure.
[  147.903451] name failslab, interval 1, probability 0, space 0, times 0
[  147.914801] CPU: 0 PID: 8821 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  147.923131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  147.929167] can: request_module (can-proto-0) failed.
[  147.932494] Call Trace:
[  147.932524]  dump_stack+0x1c9/0x2b4
[  147.932550]  ? dump_stack_print_info.cold.2+0x52/0x52
[  147.932586]  should_fail.cold.4+0xa/0x11
[  147.932622]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  147.958397]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  147.963411]  ? bpf_prog_kallsyms_find+0xde/0x4c0
[  147.968174]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  147.973271]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  147.978375]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  147.983477]  ? perf_tp_event+0xc40/0xc40
[  147.987538]  ? rcu_cleanup_dead_rnp+0x200/0x200
[  147.992213]  ? memset+0x31/0x40
[  147.995508]  ? perf_trace_lock+0x49d/0x920
[  147.999741]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  148.004847]  __should_failslab+0x124/0x180
[  148.009089]  should_failslab+0x9/0x14
[  148.012903]  kmem_cache_alloc+0x47/0x760
[  148.017046]  ? rcu_note_context_switch+0x730/0x730
[  148.022863]  ? memset+0x31/0x40
[  148.026155]  ? mempool_free+0x370/0x370
[  148.030123]  mempool_alloc_slab+0x44/0x60
[  148.034265]  mempool_alloc+0x193/0x4b0
[  148.038163]  ? mempool_destroy+0x30/0x30
[  148.042222]  ? lock_acquire+0x1e4/0x540
[  148.046200]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  148.051365]  ? lock_downgrade+0x8f0/0x8f0
[  148.055506]  ? debug_check_no_obj_freed+0x30b/0x595
[  148.060531]  bio_alloc_bioset+0x39c/0x6f0
[  148.064675]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  148.069251]  ? bvec_alloc+0x2d0/0x2d0
[  148.073045]  ? kasan_check_write+0x14/0x20
[  148.077291]  ? kasan_check_write+0x14/0x20
[  148.081526]  ? do_raw_read_unlock+0x3f/0x60
[  148.085846]  blkdev_issue_flush+0xd1/0x300
[  148.090096]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  148.095035]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  148.100742]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  148.105334]  ? kasan_check_write+0x14/0x20
[  148.109573]  ? do_raw_spin_lock+0xc1/0x200
[  148.113823]  jbd2_log_do_checkpoint+0xa19/0x1370
[  148.118602]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  148.124307]  ? lock_acquire+0x1e4/0x540
[  148.128291]  ? jbd2_journal_flush+0x144/0x540
[  148.132787]  ? kasan_check_read+0x11/0x20
[  148.137027]  ? do_raw_spin_unlock+0xa7/0x2f0
[  148.141452]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  148.146032]  ? kasan_check_write+0x14/0x20
[  148.150258]  ? do_raw_spin_lock+0xc1/0x200
[  148.154489]  jbd2_journal_flush+0x156/0x540
[  148.158812]  ext4_change_inode_journal_flag+0x230/0x3e0
[  148.164184]  ext4_ioctl_setflags+0x5fd/0x7d0
[  148.168621]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  148.173025]  ? down_read+0x1d0/0x1d0
[  148.176735]  ? __mnt_want_write_file+0xa2/0xc0
[  148.181324]  ext4_ioctl+0xe41/0x4210
[  148.185031]  ? zap_class+0x740/0x740
[  148.188847]  ? memset+0x31/0x40
[  148.192121]  ? ext4_ioctl_group_add+0x560/0x560
[  148.196785]  ? perf_trace_lock+0x49d/0x920
[  148.201017]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  148.206115]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  148.211215]  ? zap_class+0x740/0x740
[  148.214927]  ? __check_object_size+0x9d/0x5f2
[  148.219440]  ? lock_acquire+0x1e4/0x540
[  148.223405]  ? __fget+0x4ac/0x740
[  148.226849]  ? lock_downgrade+0x8f0/0x8f0
[  148.230995]  ? lock_release+0xa30/0xa30
[  148.234980]  ? zap_class+0x740/0x740
[  148.238733]  ? __f_unlock_pos+0x19/0x20
[  148.242703]  ? __fget+0x4d5/0x740
[  148.246155]  ? ksys_dup3+0x690/0x690
[  148.249868]  ? kasan_check_write+0x14/0x20
[  148.254098]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  148.259022]  ? fsnotify+0xbac/0x14e0
[  148.262814]  ? vfs_write+0x2f3/0x560
[  148.266542]  ? ext4_ioctl_group_add+0x560/0x560
[  148.271210]  do_vfs_ioctl+0x1de/0x1720
[  148.275107]  ? fsnotify_first_mark+0x350/0x350
[  148.279684]  ? ioctl_preallocate+0x300/0x300
[  148.284094]  ? __fget_light+0x2f7/0x440
[  148.288070]  ? fget_raw+0x20/0x20
[  148.291517]  ? __sb_end_write+0xac/0xe0
[  148.295490]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  148.301059]  ? fput+0x130/0x1a0
[  148.304338]  ? ksys_write+0x1ae/0x260
[  148.308137]  ? security_file_ioctl+0x94/0xc0
[  148.312541]  ksys_ioctl+0xa9/0xd0
[  148.315999]  __x64_sys_ioctl+0x73/0xb0
[  148.319890]  do_syscall_64+0x1b9/0x820
[  148.325769]  ? syscall_return_slowpath+0x5e0/0x5e0
[  148.330781]  ? syscall_return_slowpath+0x31d/0x5e0
[  148.335703]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  148.340886]  ? prepare_exit_to_usermode+0x291/0x3b0
[  148.345912]  ? perf_trace_sys_enter+0xb10/0xb10
[  148.350578]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  148.355437]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  148.360619] RIP: 0033:0x455e29
[  148.363795] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
18:18:44 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$getown(r0, 0x9)
sched_getaffinity(r1, 0x8, &(0x7f0000000000))
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r2, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  148.383190] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  148.390894] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  148.398240] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  148.405499] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  148.412756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  148.420021] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000013
18:18:45 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100), 0x0)
dup3(r1, r0, 0x0)

18:18:45 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x300}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:45 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a}], 0x0, &(0x7f0000000140)={[{@noquota='noquota', 0x2c}, {@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:45 executing program 4:
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

[  148.614282] can: request_module (can-proto-0) failed.
[  148.622348] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
18:18:45 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:45 executing program 5 (fault-call:5 fault-nth:20):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:45 executing program 0:
socketpair$inet6_sctp(0xa, 0x0, 0x84, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000040)={'NETMAP\x00'}, &(0x7f00000000c0)=0x1e)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
fdatasync(r1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r2, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:45 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x200000000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:45 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100), 0x0)
dup3(r1, r0, 0x0)

18:18:45 executing program 4:
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:45 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:45 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='cmdline\x00')
read$eventfd(r0, &(0x7f0000000000), 0x8)

18:18:45 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100), 0x0)
dup3(r1, r0, 0x0)

[  148.816923] EXT4-fs (loop1): error: journal path ./file0 is not a block device
[  148.823960] can: request_module (can-proto-0) failed.
[  148.852562] FAULT_INJECTION: forcing a failure.
[  148.852562] name failslab, interval 1, probability 0, space 0, times 0
18:18:45 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xc00e0000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:45 executing program 4:
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:45 executing program 3:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@empty, 0x0, 0x1, 0xff, 0x3, 0x0, 0x0, 0x9}, 0x20)

[  148.863950] CPU: 0 PID: 8892 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  148.872301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  148.881700] Call Trace:
[  148.884313]  dump_stack+0x1c9/0x2b4
[  148.887951]  ? dump_stack_print_info.cold.2+0x52/0x52
[  148.893148]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  148.898253]  should_fail.cold.4+0xa/0x11
[  148.902349]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  148.907454]  ? memset+0x31/0x40
[  148.910817]  ? perf_trace_lock+0x49d/0x920
[  148.915048]  ? do_raw_spin_unlock+0xa7/0x2f0
[  148.919455]  ? zap_class+0x740/0x740
[  148.923194]  ? trace_hardirqs_on+0xd/0x10
[  148.927344]  ? finish_task_switch+0x18a/0x870
[  148.931848]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  148.936963]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  148.942080]  __should_failslab+0x124/0x180
[  148.946310]  should_failslab+0x9/0x14
[  148.950105]  kmem_cache_alloc+0x47/0x760
[  148.954178]  ? rcu_note_context_switch+0x730/0x730
[  148.959121]  ? mempool_free+0x370/0x370
[  148.963103]  mempool_alloc_slab+0x44/0x60
[  148.967251]  mempool_alloc+0x193/0x4b0
[  148.971146]  ? mempool_destroy+0x30/0x30
[  148.975213]  ? is_bpf_text_address+0xd7/0x170
[  148.979722]  ? kernel_text_address+0x79/0xf0
[  148.984473]  ? __kernel_text_address+0xd/0x40
[  148.988974]  ? unwind_get_return_address+0x61/0xa0
[  148.993924]  bio_alloc_bioset+0x39c/0x6f0
[  148.998064]  ? bvec_alloc+0x2d0/0x2d0
[  149.001882]  submit_bh_wbc+0x14b/0x790
[  149.005759]  ? bio_free+0xf2/0x150
[  149.009294]  submit_bh+0x28/0x30
[  149.012664]  jbd2_write_superblock+0x58c/0xbb0
[  149.017244]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  149.021833]  ? jbd2_journal_abort+0x30/0x30
[  149.026161]  ? do_raw_spin_lock+0xc1/0x200
[  149.030404]  ? trace_hardirqs_off+0xd/0x10
[  149.034637]  ? _raw_spin_unlock_irqrestore+0x63/0xc0
[  149.039737]  ? debug_check_no_obj_freed+0x30b/0x595
[  149.044745]  ? trace_hardirqs_on+0xd/0x10
[  149.048922]  jbd2_journal_update_sb_log_tail+0x1ff/0x390
[  149.054369]  ? jbd2_journal_get_log_tail+0x550/0x550
[  149.059464]  ? trace_hardirqs_on+0xd/0x10
[  149.063602]  ? kmem_cache_free+0x22e/0x2d0
[  149.067826]  __jbd2_update_log_tail+0x13f/0x650
[  149.072511]  ? jbd2_journal_update_sb_log_tail+0x390/0x390
[  149.078140]  ? bio_put+0x183/0x1f0
[  149.081702]  ? bio_free+0x150/0x150
[  149.085325]  ? kasan_check_write+0x14/0x20
[  149.089563]  ? do_raw_read_unlock+0x3f/0x60
[  149.093884]  jbd2_cleanup_journal_tail+0x1a0/0x2c0
[  149.098815]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  149.104537]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  149.109127]  ? kasan_check_write+0x14/0x20
[  149.113355]  ? do_raw_spin_lock+0xc1/0x200
[  149.117587]  jbd2_log_do_checkpoint+0xa19/0x1370
[  149.122348]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  149.128055]  ? lock_acquire+0x1e4/0x540
[  149.132044]  ? jbd2_journal_flush+0x144/0x540
[  149.136544]  ? kasan_check_read+0x11/0x20
[  149.140702]  ? do_raw_spin_unlock+0xa7/0x2f0
[  149.145115]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  149.149700]  ? kasan_check_write+0x14/0x20
[  149.153935]  ? do_raw_spin_lock+0xc1/0x200
[  149.158165]  jbd2_journal_flush+0x156/0x540
[  149.162498]  ext4_change_inode_journal_flag+0x230/0x3e0
[  149.167866]  ext4_ioctl_setflags+0x5fd/0x7d0
[  149.172288]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  149.176688]  ? down_read+0x1d0/0x1d0
[  149.180403]  ? __mnt_want_write_file+0xa2/0xc0
[  149.184990]  ext4_ioctl+0xe41/0x4210
[  149.188714]  ? zap_class+0x740/0x740
[  149.192426]  ? memset+0x31/0x40
[  149.195707]  ? ext4_ioctl_group_add+0x560/0x560
[  149.200371]  ? perf_trace_lock+0x49d/0x920
[  149.204618]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  149.209723]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  149.214924]  ? zap_class+0x740/0x740
[  149.218653]  ? __check_object_size+0x9d/0x5f2
[  149.223152]  ? lock_acquire+0x1e4/0x540
[  149.227115]  ? __fget+0x4ac/0x740
[  149.230559]  ? lock_downgrade+0x8f0/0x8f0
[  149.234718]  ? lock_release+0xa30/0xa30
[  149.238692]  ? zap_class+0x740/0x740
[  149.242421]  ? __f_unlock_pos+0x19/0x20
[  149.246402]  ? __fget+0x4d5/0x740
[  149.249877]  ? ksys_dup3+0x690/0x690
[  149.253592]  ? kasan_check_write+0x14/0x20
[  149.257817]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  149.262737]  ? fsnotify+0xbac/0x14e0
[  149.266442]  ? vfs_write+0x2f3/0x560
[  149.270172]  ? ext4_ioctl_group_add+0x560/0x560
[  149.274849]  do_vfs_ioctl+0x1de/0x1720
[  149.278752]  ? fsnotify_first_mark+0x350/0x350
[  149.283347]  ? ioctl_preallocate+0x300/0x300
[  149.287749]  ? __fget_light+0x2f7/0x440
[  149.291735]  ? fget_raw+0x20/0x20
[  149.295203]  ? __sb_end_write+0xac/0xe0
[  149.299183]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  149.304731]  ? fput+0x130/0x1a0
[  149.308112]  ? ksys_write+0x1ae/0x260
[  149.311947]  ? security_file_ioctl+0x94/0xc0
[  149.316361]  ksys_ioctl+0xa9/0xd0
[  149.319835]  __x64_sys_ioctl+0x73/0xb0
[  149.323744]  do_syscall_64+0x1b9/0x820
[  149.327635]  ? finish_task_switch+0x1d3/0x870
[  149.332134]  ? syscall_return_slowpath+0x5e0/0x5e0
[  149.337064]  ? syscall_return_slowpath+0x31d/0x5e0
[  149.342135]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  149.347262]  ? prepare_exit_to_usermode+0x291/0x3b0
[  149.352285]  ? perf_trace_sys_enter+0xb10/0xb10
[  149.357097]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  149.361965]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  149.367163] RIP: 0033:0x455e29
[  149.370352] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  149.389752] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  149.397474] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  149.404732] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  149.411993] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  149.419270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  149.426558] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000014
18:18:46 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:46 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0xffffffffffffff01)

18:18:46 executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x5, 0x3d, 0x1000a9, 0x1, 0x1}, 0x19)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r0, &(0x7f0000000140), &(0x7f0000000240)=""/176}, 0x18)

18:18:46 executing program 5 (fault-call:5 fault-nth:21):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  149.519194] can: request_module (can-proto-0) failed.
[  149.552308] EXT4-fs (loop1): error: journal path ./file0 is not a block device
[  149.635497] FAULT_INJECTION: forcing a failure.
[  149.635497] name failslab, interval 1, probability 0, space 0, times 0
[  149.646899] CPU: 1 PID: 8936 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  149.655350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  149.665044] Call Trace:
[  149.667630]  dump_stack+0x1c9/0x2b4
[  149.671259]  ? dump_stack_print_info.cold.2+0x52/0x52
[  149.676453]  should_fail.cold.4+0xa/0x11
[  149.680597]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  149.685774]  ? trace_hardirqs_on+0xd/0x10
[  149.689929]  ? _raw_spin_unlock_irq+0x27/0x70
[  149.694434]  ? finish_task_switch+0x1d3/0x870
[  149.698932]  ? preempt_notifier_register+0x200/0x200
[  149.704053]  ? lock_repin_lock+0x430/0x430
[  149.708298]  ? kasan_check_write+0x14/0x20
[  149.712534]  ? __schedule+0x884/0x1ed0
[  149.716415]  ? __sched_text_start+0x8/0x8
[  149.720556]  ? __kernel_text_address+0xd/0x40
[  149.725053]  ? perf_trace_lock+0xde/0x920
[  149.729195]  ? __save_stack_trace+0x8d/0xf0
[  149.733517]  __should_failslab+0x124/0x180
[  149.737742]  should_failslab+0x9/0x14
[  149.741540]  kmem_cache_alloc+0x47/0x760
[  149.745611]  ? save_stack+0x43/0xd0
[  149.749229]  ? __kasan_slab_free+0x11a/0x170
[  149.753644]  ? mempool_free+0x370/0x370
[  149.757617]  mempool_alloc_slab+0x44/0x60
[  149.761853]  mempool_alloc+0x193/0x4b0
[  149.765731]  ? kasan_check_read+0x11/0x20
[  149.769868]  ? mempool_destroy+0x30/0x30
[  149.773945]  ? lock_acquire+0x1e4/0x540
[  149.777945]  ? jbd2_journal_get_log_tail+0x18f/0x550
[  149.783055]  ? lock_downgrade+0x8f0/0x8f0
[  149.787201]  ? debug_check_no_obj_freed+0x30b/0x595
[  149.792225]  bio_alloc_bioset+0x39c/0x6f0
[  149.796396]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  149.800983]  ? bvec_alloc+0x2d0/0x2d0
[  149.804786]  ? kasan_check_write+0x14/0x20
[  149.809015]  ? kasan_check_write+0x14/0x20
[  149.813266]  ? do_raw_read_unlock+0x3f/0x60
[  149.817574]  blkdev_issue_flush+0xd1/0x300
[  149.821803]  jbd2_cleanup_journal_tail+0x230/0x2c0
[  149.826731]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  149.832427]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  149.837003]  ? kasan_check_write+0x14/0x20
[  149.841404]  ? do_raw_spin_lock+0xc1/0x200
[  149.845724]  jbd2_log_do_checkpoint+0xa19/0x1370
[  149.850488]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  149.857005]  ? lock_acquire+0x1e4/0x540
[  149.860990]  ? jbd2_journal_flush+0x144/0x540
[  149.865494]  ? kasan_check_read+0x11/0x20
[  149.869637]  ? do_raw_spin_unlock+0xa7/0x2f0
[  149.874052]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  149.878727]  ? kasan_check_write+0x14/0x20
[  149.882960]  ? do_raw_spin_lock+0xc1/0x200
[  149.887192]  jbd2_journal_flush+0x156/0x540
[  149.891515]  ext4_change_inode_journal_flag+0x230/0x3e0
[  149.896882]  ext4_ioctl_setflags+0x5fd/0x7d0
[  149.901276]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  149.905680]  ? down_read+0x1d0/0x1d0
[  149.909403]  ? __mnt_want_write_file+0xa2/0xc0
[  149.913981]  ext4_ioctl+0xe41/0x4210
[  149.917693]  ? zap_class+0x740/0x740
[  149.921400]  ? check_same_owner+0x340/0x340
[  149.925722]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  149.931243]  ? ext4_ioctl_group_add+0x560/0x560
[  149.935897]  ? perf_trace_lock+0xde/0x920
[  149.940043]  ? _kstrtoull+0x188/0x250
[  149.943879]  ? _parse_integer+0x190/0x190
[  149.948037]  ? zap_class+0x740/0x740
[  149.951746]  ? __check_object_size+0x9d/0x5f2
[  149.956232]  ? lock_acquire+0x1e4/0x540
[  149.960207]  ? __fget+0x4ac/0x740
[  149.963656]  ? lock_downgrade+0x8f0/0x8f0
[  149.967790]  ? lock_release+0xa30/0xa30
[  149.971748]  ? zap_class+0x740/0x740
[  149.975460]  ? __f_unlock_pos+0x19/0x20
[  149.979422]  ? __fget+0x4d5/0x740
[  149.982860]  ? ksys_dup3+0x690/0x690
[  149.986575]  ? kasan_check_write+0x14/0x20
[  149.990809]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  149.995730]  ? fsnotify+0xbac/0x14e0
[  149.999426]  ? vfs_write+0x2f3/0x560
[  150.003125]  ? ext4_ioctl_group_add+0x560/0x560
[  150.007777]  do_vfs_ioctl+0x1de/0x1720
[  150.011649]  ? fsnotify_first_mark+0x350/0x350
[  150.016225]  ? ioctl_preallocate+0x300/0x300
[  150.020625]  ? __fget_light+0x2f7/0x440
[  150.024607]  ? fget_raw+0x20/0x20
[  150.028058]  ? __sb_end_write+0xac/0xe0
[  150.032025]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  150.037552]  ? fput+0x130/0x1a0
[  150.040814]  ? ksys_write+0x1ae/0x260
[  150.044604]  ? security_file_ioctl+0x94/0xc0
[  150.048994]  ksys_ioctl+0xa9/0xd0
[  150.052434]  __x64_sys_ioctl+0x73/0xb0
[  150.056307]  do_syscall_64+0x1b9/0x820
[  150.060176]  ? finish_task_switch+0x1d3/0x870
[  150.064664]  ? syscall_return_slowpath+0x5e0/0x5e0
[  150.069750]  ? syscall_return_slowpath+0x31d/0x5e0
[  150.074942]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  150.079944]  ? prepare_exit_to_usermode+0x291/0x3b0
[  150.084945]  ? perf_trace_sys_enter+0xb10/0xb10
[  150.089703]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  150.094554]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  150.099735] RIP: 0033:0x455e29
[  150.102909] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  150.122292] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  150.129994] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  150.137261] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  150.144513] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  150.151775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  150.159124] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000015
18:18:46 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:46 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(0xffffffffffffffff, r0, 0x0)

18:18:46 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:46 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:46 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x6, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000040)='/dev/full\x00', 0x3)
ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000100))
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0)
io_setup(0x5, &(0x7f0000000080)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000240)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x10001, r0, &(0x7f00000001c0)="e523d04ec25340f2aab5496cc32fae57ef6ff677b29f00b4cfcfb26715a58bed6fe78d8845d3b99b5241b8c7e2e9d74879af1294e573c85870b9dd4a5c9af0e10ad50b77535fe942a8c6b5", 0x4b, 0x0, 0x0, 0x1, r1}])

18:18:46 executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0xa, 0x9, 0x6, 0x81f9}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r0, &(0x7f0000000480), &(0x7f00000008c0)}, 0x20)

18:18:46 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="0001000000ff000000000000c9030000ec00000001000800000011cc0a56d4a9a75900000020000000010000000000006e5fbe5c0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000140)={[{@journal_path={'journal_path', 0x3d, './file0'}, 0x2c}]})

18:18:46 executing program 5 (fault-call:5 fault-nth:22):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  150.308501] serio: Serial port pts0
[  150.318577] EXT4-fs (loop1): error: journal path ./file0 is not a block device
[  150.326670] can: request_module (can-proto-0) failed.
[  150.357315] FAULT_INJECTION: forcing a failure.
[  150.357315] name failslab, interval 1, probability 0, space 0, times 0
[  150.368753] CPU: 0 PID: 8951 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  150.377097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  150.386471] Call Trace:
[  150.389206]  dump_stack+0x1c9/0x2b4
[  150.392860]  ? dump_stack_print_info.cold.2+0x52/0x52
[  150.398090]  ? zap_class+0x740/0x740
[  150.401826]  should_fail.cold.4+0xa/0x11
[  150.405904]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  150.411015]  ? blk_exit_rl+0x80/0x80
[  150.414832]  ? save_stack+0xa9/0xd0
[  150.418482]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  150.423623]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  150.428559]  ? jbd2_journal_flush+0x156/0x540
[  150.433064]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  150.438624]  ? lock_acquire+0x1e4/0x540
[  150.442624]  ? generic_make_request+0x527/0x1800
[  150.447483]  ? lock_downgrade+0x8f0/0x8f0
[  150.451648]  ? lock_release+0xa30/0xa30
[  150.455649]  ? perf_trace_lock+0x49d/0x920
[  150.459902]  ? generic_make_request+0x550/0x1800
[  150.464676]  __should_failslab+0x124/0x180
[  150.468927]  should_failslab+0x9/0x14
[  150.472741]  kmem_cache_alloc+0x47/0x760
[  150.476813]  ? rcu_note_context_switch+0x730/0x730
[  150.481783]  ? mempool_free+0x370/0x370
[  150.485770]  mempool_alloc_slab+0x44/0x60
[  150.489954]  mempool_alloc+0x193/0x4b0
[  150.493860]  ? mempool_destroy+0x30/0x30
[  150.497968]  ? lock_downgrade+0x8f0/0x8f0
[  150.502217]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  150.507778]  bio_alloc_bioset+0x39c/0x6f0
[  150.511938]  ? generic_make_request+0x1800/0x1800
[  150.516790]  ? bvec_alloc+0x2d0/0x2d0
[  150.520602]  ? check_same_owner+0x340/0x340
[  150.524935]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  150.529962]  ? guard_bio_eod+0x2b4/0x600
[  150.534036]  submit_bh_wbc+0x14b/0x790
[  150.537943]  write_dirty_buffer+0xba/0x150
[  150.542190]  jbd2_log_do_checkpoint+0xc08/0x1370
[  150.546985]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  150.552709]  ? lock_acquire+0x1e4/0x540
[  150.556688]  ? jbd2_journal_flush+0x144/0x540
[  150.561205]  ? kasan_check_read+0x11/0x20
[  150.565361]  ? do_raw_spin_unlock+0xa7/0x2f0
[  150.569782]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  150.574402]  ? kasan_check_write+0x14/0x20
[  150.582477]  ? do_raw_spin_lock+0xc1/0x200
[  150.586732]  jbd2_journal_flush+0x156/0x540
[  150.591074]  ext4_change_inode_journal_flag+0x230/0x3e0
[  150.596452]  ext4_ioctl_setflags+0x5fd/0x7d0
[  150.600874]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  150.605290]  ? down_read+0x1d0/0x1d0
[  150.609020]  ? __mnt_want_write_file+0xa2/0xc0
[  150.613713]  ext4_ioctl+0xe41/0x4210
[  150.617437]  ? zap_class+0x740/0x740
[  150.621162]  ? memset+0x31/0x40
[  150.624457]  ? ext4_ioctl_group_add+0x560/0x560
[  150.629135]  ? perf_trace_lock+0x49d/0x920
[  150.633383]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  150.638494]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  150.643611]  ? zap_class+0x740/0x740
[  150.647338]  ? __check_object_size+0x9d/0x5f2
[  150.651885]  ? lock_acquire+0x1e4/0x540
[  150.655863]  ? __fget+0x4ac/0x740
[  150.659324]  ? lock_downgrade+0x8f0/0x8f0
[  150.663490]  ? lock_release+0xa30/0xa30
[  150.667482]  ? zap_class+0x740/0x740
[  150.671213]  ? __f_unlock_pos+0x19/0x20
[  150.675204]  ? __fget+0x4d5/0x740
[  150.678674]  ? ksys_dup3+0x690/0x690
[  150.682406]  ? kasan_check_write+0x14/0x20
[  150.686649]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  150.691668]  ? fsnotify+0xbac/0x14e0
[  150.695396]  ? vfs_write+0x2f3/0x560
[  150.699123]  ? ext4_ioctl_group_add+0x560/0x560
[  150.703798]  do_vfs_ioctl+0x1de/0x1720
[  150.707707]  ? fsnotify_first_mark+0x350/0x350
[  150.712307]  ? ioctl_preallocate+0x300/0x300
[  150.716723]  ? __fget_light+0x2f7/0x440
[  150.720708]  ? fget_raw+0x20/0x20
[  150.724172]  ? __sb_end_write+0xac/0xe0
[  150.728164]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  150.733715]  ? fput+0x130/0x1a0
[  150.737003]  ? ksys_write+0x1ae/0x260
[  150.740829]  ? security_file_ioctl+0x94/0xc0
[  150.745248]  ksys_ioctl+0xa9/0xd0
[  150.748712]  __x64_sys_ioctl+0x73/0xb0
[  150.752613]  do_syscall_64+0x1b9/0x820
18:18:47 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:47 executing program 3:
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
mount(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='rootfs\x00', 0x0, &(0x7f0000000380))

[  150.756506]  ? finish_task_switch+0x1d3/0x870
[  150.761016]  ? syscall_return_slowpath+0x5e0/0x5e0
[  150.765970]  ? syscall_return_slowpath+0x31d/0x5e0
[  150.770909]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  150.775936]  ? prepare_exit_to_usermode+0x291/0x3b0
[  150.780971]  ? perf_trace_sys_enter+0xb10/0xb10
[  150.785658]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  150.790529]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  150.795729] RIP: 0033:0x455e29
18:18:47 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x9effffff00000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:47 executing program 0:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x404002, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x7fffffff}, 0x10)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000000)={<r2=>0x0, 0x99a}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000000080)=r2, 0x4)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r3, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  150.798920] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  150.818498] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  150.826318] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  150.833602] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  150.840875] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  150.848135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  150.855401] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000016
18:18:47 executing program 5 (fault-call:5 fault-nth:23):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  150.929521] can: request_module (can-proto-0) failed.
18:18:47 executing program 3:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000300))
syz_read_part_table(0x0, 0x1, &(0x7f0000001380)=[{&(0x7f0000000380)="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", 0x1c9}])
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000280)={0x17, 0x0, [{0x0, 0x41, &(0x7f0000000100)=""/65}, {0x0, 0x59, &(0x7f0000000080)=""/89}]})
close(r0)

18:18:47 executing program 1:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0)
ioctl$RNDZAPENTCNT(r0, 0x5204, &(0x7f0000000040))

18:18:47 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x300000000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  151.017717] FAULT_INJECTION: forcing a failure.
[  151.017717] name failslab, interval 1, probability 0, space 0, times 0
[  151.029092] CPU: 0 PID: 8987 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  151.037512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  151.046875] Call Trace:
[  151.049487]  dump_stack+0x1c9/0x2b4
[  151.053172]  ? dump_stack_print_info.cold.2+0x52/0x52
[  151.058398]  ? zap_class+0x740/0x740
[  151.062146]  should_fail.cold.4+0xa/0x11
[  151.066344]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  151.071465]  ? blk_exit_rl+0x80/0x80
[  151.075202]  ? save_stack+0xa9/0xd0
[  151.078835]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  151.083948]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  151.088886]  ? jbd2_journal_flush+0x156/0x540
[  151.093472]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  151.099108]  ? lock_acquire+0x1e4/0x540
[  151.103081]  ? generic_make_request+0x527/0x1800
[  151.107843]  ? lock_downgrade+0x8f0/0x8f0
[  151.111990]  ? lock_release+0xa30/0xa30
[  151.115985]  ? perf_trace_lock+0x49d/0x920
[  151.120238]  ? generic_make_request+0x550/0x1800
[  151.125007]  __should_failslab+0x124/0x180
[  151.129353]  should_failslab+0x9/0x14
[  151.133152]  kmem_cache_alloc+0x47/0x760
[  151.137217]  ? rcu_note_context_switch+0x730/0x730
[  151.142155]  ? mempool_free+0x370/0x370
[  151.146133]  mempool_alloc_slab+0x44/0x60
[  151.150287]  mempool_alloc+0x193/0x4b0
[  151.154181]  ? mempool_destroy+0x30/0x30
[  151.158264]  ? lock_downgrade+0x8f0/0x8f0
[  151.162410]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  151.167959]  bio_alloc_bioset+0x39c/0x6f0
[  151.172105]  ? generic_make_request+0x1800/0x1800
[  151.176950]  ? bvec_alloc+0x2d0/0x2d0
[  151.180759]  ? check_same_owner+0x340/0x340
[  151.185076]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  151.190088]  ? guard_bio_eod+0x2b4/0x600
[  151.194150]  submit_bh_wbc+0x14b/0x790
[  151.198052]  write_dirty_buffer+0xba/0x150
[  151.202315]  jbd2_log_do_checkpoint+0xc08/0x1370
[  151.207100]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  151.212820]  ? lock_acquire+0x1e4/0x540
[  151.216807]  ? jbd2_journal_flush+0x144/0x540
[  151.221300]  ? kasan_check_read+0x11/0x20
[  151.225448]  ? do_raw_spin_unlock+0xa7/0x2f0
[  151.229861]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  151.234458]  ? kasan_check_write+0x14/0x20
[  151.238964]  ? do_raw_spin_lock+0xc1/0x200
[  151.243207]  jbd2_journal_flush+0x156/0x540
[  151.247534]  ext4_change_inode_journal_flag+0x230/0x3e0
[  151.252902]  ext4_ioctl_setflags+0x5fd/0x7d0
[  151.257317]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  151.261714]  ? down_read+0x1d0/0x1d0
[  151.265437]  ? __mnt_want_write_file+0xa2/0xc0
[  151.270029]  ext4_ioctl+0xe41/0x4210
[  151.273749]  ? zap_class+0x740/0x740
[  151.277456]  ? ext4_ioctl_group_add+0x560/0x560
[  151.282119]  ? finish_task_switch+0x1d3/0x870
[  151.286614]  ? lock_downgrade+0x8f0/0x8f0
[  151.290774]  ? kasan_check_read+0x11/0x20
[  151.294919]  ? do_raw_spin_unlock+0xa7/0x2f0
[  151.299409]  ? lock_acquire+0x1e4/0x540
[  151.303369]  ? __fget+0x4ac/0x740
[  151.306820]  ? lock_downgrade+0x8f0/0x8f0
[  151.310969]  ? _raw_spin_unlock_irq+0x27/0x70
[  151.315469]  ? lock_release+0xa30/0xa30
[  151.319438]  ? preempt_notifier_register+0x200/0x200
[  151.324537]  ? lock_repin_lock+0x430/0x430
[  151.328773]  ? kasan_check_write+0x14/0x20
[  151.333000]  ? __fget+0x4d5/0x740
[  151.336461]  ? ksys_dup3+0x690/0x690
[  151.340174]  ? __sched_text_start+0x8/0x8
[  151.344332]  ? kasan_check_write+0x14/0x20
[  151.348559]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  151.353572]  ? fsnotify+0xbac/0x14e0
[  151.357286]  ? vfs_write+0x2f3/0x560
[  151.361014]  ? ext4_ioctl_group_add+0x560/0x560
[  151.365697]  do_vfs_ioctl+0x1de/0x1720
[  151.369583]  ? fsnotify_first_mark+0x350/0x350
[  151.374155]  ? ioctl_preallocate+0x300/0x300
[  151.378563]  ? __fget_light+0x2f7/0x440
[  151.382533]  ? fget_raw+0x20/0x20
[  151.385978]  ? schedule+0xfb/0x450
[  151.389518]  ? __schedule+0x1ed0/0x1ed0
[  151.393482]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  151.399012]  ? fput+0x130/0x1a0
[  151.402289]  ? ksys_write+0x1ae/0x260
[  151.406105]  ? security_file_ioctl+0x94/0xc0
[  151.410671]  ksys_ioctl+0xa9/0xd0
[  151.414124]  __x64_sys_ioctl+0x73/0xb0
[  151.418003]  do_syscall_64+0x1b9/0x820
[  151.421894]  ? syscall_slow_exit_work+0x500/0x500
[  151.426728]  ? syscall_return_slowpath+0x5e0/0x5e0
[  151.431667]  ? syscall_return_slowpath+0x31d/0x5e0
[  151.436619]  ? prepare_exit_to_usermode+0x291/0x3b0
[  151.441635]  ? perf_trace_sys_enter+0xb10/0xb10
[  151.446311]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  151.451150]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  151.456328] RIP: 0033:0x455e29
[  151.459502] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  151.478809] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  151.486523] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  151.493785] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  151.501047] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  151.508313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  151.515586] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000017
18:18:48 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:48 executing program 4:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:48 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x66, 0x70a80)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000080)={r1, 0x3, 0x1, 0x200, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000002c0)=ANY=[@ANYRES32=<r2=>0x0, @ANYBLOB="5397db700000040040007f932a7d000300"], &(0x7f0000000100)=0x12)
ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000280)={'vlan0\x00', 0x4})
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000001c0)={0x2, 0xd3, 0x8, 0x5, 0x200, 0x2775, 0x2, 0x2, r2}, &(0x7f0000000240)=0x20)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0xffffffffffffff6d)

18:18:48 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:48 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/180, 0xb4}], 0x1)
dup3(r1, 0xffffffffffffffff, 0x0)

18:18:48 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x400300}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:48 executing program 5 (fault-call:5 fault-nth:24):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:48 executing program 3:
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = dup(r0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x80003)
sendfile(r1, r2, &(0x7f0000d83ff8), 0x8000fffffffe)

18:18:48 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  151.678211] FAT-fs (loop1): bogus number of reserved sectors
[  151.684427] FAT-fs (loop1): Can't find a valid FAT filesystem
[  151.686831] serio: Serial port pts0
[  151.700763] can: request_module (can-proto-0) failed.
[  151.717253] FAULT_INJECTION: forcing a failure.
18:18:48 executing program 3:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x0, 0x0)
getuid()
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f0000000240)={0x6, 0x118, 0xfa00, {{0x0, 0x0, "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", 0x1f, 0x1ff, 0x7a, 0x3ff, 0x5, 0x0, 0x5, 0x1}}}, 0x120)

18:18:48 executing program 0:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000002600)='/dev/vga_arbiter\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000002640)={<r1=>0x0, 0x80000000}, &(0x7f0000002680)=0x8)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000026c0)={r1, 0x6}, &(0x7f0000002700)=0x8)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000000))
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r2, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
socket$inet_tcp(0x2, 0x1, 0x0)
getpid()

18:18:48 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

[  151.717253] name failslab, interval 1, probability 0, space 0, times 0
[  151.728922] CPU: 0 PID: 9032 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  151.737256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  151.746633] Call Trace:
[  151.749250]  dump_stack+0x1c9/0x2b4
[  151.752912]  ? dump_stack_print_info.cold.2+0x52/0x52
[  151.758123]  ? zap_class+0x740/0x740
[  151.761840]  should_fail.cold.4+0xa/0x11
[  151.765913]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  151.771023]  ? blk_exit_rl+0x80/0x80
[  151.774742]  ? save_stack+0xa9/0xd0
[  151.778392]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  151.783515]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  151.788456]  ? jbd2_journal_flush+0x156/0x540
[  151.792962]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  151.798505]  ? lock_acquire+0x1e4/0x540
[  151.802499]  ? generic_make_request+0x527/0x1800
[  151.807278]  ? lock_downgrade+0x8f0/0x8f0
[  151.811688]  ? lock_release+0xa30/0xa30
[  151.815667]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  151.820883]  ? perf_trace_lock+0x49d/0x920
[  151.825163]  ? generic_make_request+0x550/0x1800
[  151.829929]  __should_failslab+0x124/0x180
[  151.834181]  should_failslab+0x9/0x14
[  151.837982]  kmem_cache_alloc+0x47/0x760
[  151.842129]  ? rcu_note_context_switch+0x730/0x730
[  151.847080]  ? mempool_free+0x370/0x370
[  151.851077]  mempool_alloc_slab+0x44/0x60
[  151.855227]  mempool_alloc+0x193/0x4b0
[  151.859120]  ? mempool_destroy+0x30/0x30
[  151.863189]  ? lock_downgrade+0x8f0/0x8f0
[  151.867330]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  151.873328]  bio_alloc_bioset+0x39c/0x6f0
[  151.877487]  ? generic_make_request+0x1800/0x1800
[  151.882323]  ? bvec_alloc+0x2d0/0x2d0
[  151.886121]  ? check_same_owner+0x340/0x340
[  151.890437]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  151.895454]  ? guard_bio_eod+0x2b4/0x600
[  151.899512]  submit_bh_wbc+0x14b/0x790
[  151.903396]  write_dirty_buffer+0xba/0x150
[  151.907642]  jbd2_log_do_checkpoint+0xc08/0x1370
[  151.912417]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  151.918154]  ? lock_acquire+0x1e4/0x540
[  151.922133]  ? jbd2_journal_flush+0x144/0x540
[  151.926644]  ? kasan_check_read+0x11/0x20
[  151.930787]  ? do_raw_spin_unlock+0xa7/0x2f0
[  151.935199]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  151.939786]  ? kasan_check_write+0x14/0x20
[  151.944024]  ? do_raw_spin_lock+0xc1/0x200
[  151.948304]  jbd2_journal_flush+0x156/0x540
[  151.952640]  ext4_change_inode_journal_flag+0x230/0x3e0
[  151.958008]  ext4_ioctl_setflags+0x5fd/0x7d0
[  151.962434]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  151.966836]  ? down_read+0x1d0/0x1d0
[  151.970552]  ? __mnt_want_write_file+0xa2/0xc0
[  151.975140]  ext4_ioctl+0xe41/0x4210
[  151.978859]  ? zap_class+0x740/0x740
[  151.982574]  ? check_same_owner+0x340/0x340
[  151.986977]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  151.992520]  ? ext4_ioctl_group_add+0x560/0x560
[  151.997193]  ? perf_trace_lock+0xde/0x920
[  152.001354]  ? _kstrtoull+0x188/0x250
[  152.005160]  ? _parse_integer+0x190/0x190
[  152.009315]  ? zap_class+0x740/0x740
[  152.013045]  ? __check_object_size+0x9d/0x5f2
[  152.017562]  ? lock_acquire+0x1e4/0x540
[  152.022155]  ? __fget+0x4ac/0x740
[  152.025615]  ? lock_downgrade+0x8f0/0x8f0
[  152.029760]  ? lock_release+0xa30/0xa30
[  152.033733]  ? zap_class+0x740/0x740
[  152.037447]  ? __f_unlock_pos+0x19/0x20
[  152.041420]  ? __fget+0x4d5/0x740
[  152.044869]  ? ksys_dup3+0x690/0x690
[  152.048597]  ? kasan_check_write+0x14/0x20
[  152.052842]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  152.057771]  ? fsnotify+0xbac/0x14e0
[  152.061482]  ? vfs_write+0x2f3/0x560
[  152.065199]  ? ext4_ioctl_group_add+0x560/0x560
[  152.069863]  do_vfs_ioctl+0x1de/0x1720
[  152.073744]  ? fsnotify_first_mark+0x350/0x350
[  152.078330]  ? ioctl_preallocate+0x300/0x300
[  152.082749]  ? __fget_light+0x2f7/0x440
[  152.086723]  ? fget_raw+0x20/0x20
[  152.090195]  ? __sb_end_write+0xac/0xe0
[  152.094175]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  152.099735]  ? fput+0x130/0x1a0
[  152.103014]  ? ksys_write+0x1ae/0x260
[  152.106831]  ? security_file_ioctl+0x94/0xc0
[  152.111267]  ksys_ioctl+0xa9/0xd0
[  152.114734]  __x64_sys_ioctl+0x73/0xb0
[  152.118627]  do_syscall_64+0x1b9/0x820
[  152.122513]  ? finish_task_switch+0x1d3/0x870
[  152.127003]  ? syscall_return_slowpath+0x5e0/0x5e0
[  152.131948]  ? syscall_return_slowpath+0x31d/0x5e0
[  152.136874]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  152.141882]  ? prepare_exit_to_usermode+0x291/0x3b0
[  152.146894]  ? perf_trace_sys_enter+0xb10/0xb10
[  152.151564]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  152.156424]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  152.161616] RIP: 0033:0x455e29
[  152.164789] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  152.184135] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  152.191861] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  152.199127] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  152.206407] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  152.213689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  152.220962] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000018
[  152.240449] autofs4:pid:9030:autofs_fill_super: called with bogus options
[  152.273486] FAT-fs (loop1): bogus number of reserved sectors
[  152.279592] FAT-fs (loop1): Can't find a valid FAT filesystem
18:18:48 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:48 executing program 5 (fault-call:5 fault-nth:25):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETAF(r1, 0x5408, &(0x7f00000000c0)={0x0, 0x0, 0xfffffdfd})

18:18:48 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000040)=0x7, 0xfffffffffffffc3c)

[  152.329154] autofs4:pid:9061:autofs_fill_super: called with bogus options
[  152.352455] can: request_module (can-proto-0) failed.
[  152.431906] FAULT_INJECTION: forcing a failure.
[  152.431906] name failslab, interval 1, probability 0, space 0, times 0
[  152.443285] CPU: 0 PID: 9074 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  152.451947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  152.461301] Call Trace:
[  152.463891]  dump_stack+0x1c9/0x2b4
[  152.467541]  ? dump_stack_print_info.cold.2+0x52/0x52
[  152.472728]  ? zap_class+0x740/0x740
[  152.476458]  should_fail.cold.4+0xa/0x11
[  152.480550]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  152.485649]  ? blk_exit_rl+0x80/0x80
[  152.489633]  ? save_stack+0xa9/0xd0
[  152.493283]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  152.498396]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  152.503334]  ? jbd2_journal_flush+0x156/0x540
[  152.507921]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  152.513459]  ? lock_acquire+0x1e4/0x540
[  152.517426]  ? generic_make_request+0x527/0x1800
[  152.522188]  ? lock_downgrade+0x8f0/0x8f0
[  152.526350]  ? lock_release+0xa30/0xa30
[  152.530328]  ? perf_trace_lock+0x49d/0x920
[  152.534562]  ? generic_make_request+0x550/0x1800
[  152.539318]  __should_failslab+0x124/0x180
[  152.543650]  should_failslab+0x9/0x14
[  152.547454]  kmem_cache_alloc+0x47/0x760
[  152.551515]  ? rcu_note_context_switch+0x730/0x730
[  152.556449]  ? mempool_free+0x370/0x370
[  152.560703]  mempool_alloc_slab+0x44/0x60
[  152.564869]  mempool_alloc+0x193/0x4b0
[  152.568780]  ? mempool_destroy+0x30/0x30
[  152.572862]  ? lock_downgrade+0x8f0/0x8f0
[  152.577038]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  152.582585]  bio_alloc_bioset+0x39c/0x6f0
[  152.586734]  ? generic_make_request+0x1800/0x1800
[  152.591577]  ? bvec_alloc+0x2d0/0x2d0
[  152.595388]  ? check_same_owner+0x340/0x340
[  152.599788]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  152.604815]  ? guard_bio_eod+0x2b4/0x600
[  152.608968]  submit_bh_wbc+0x14b/0x790
[  152.612854]  write_dirty_buffer+0xba/0x150
[  152.617087]  jbd2_log_do_checkpoint+0xc08/0x1370
[  152.621867]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  152.627576]  ? lock_acquire+0x1e4/0x540
[  152.631541]  ? jbd2_journal_flush+0x144/0x540
[  152.636056]  ? kasan_check_read+0x11/0x20
[  152.640227]  ? do_raw_spin_unlock+0xa7/0x2f0
[  152.644630]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  152.649208]  ? kasan_check_write+0x14/0x20
[  152.654656]  ? do_raw_spin_lock+0xc1/0x200
[  152.658890]  jbd2_journal_flush+0x156/0x540
[  152.663226]  ext4_change_inode_journal_flag+0x230/0x3e0
[  152.668584]  ext4_ioctl_setflags+0x5fd/0x7d0
[  152.672985]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  152.677386]  ? down_read+0x1d0/0x1d0
[  152.681094]  ? __mnt_want_write_file+0xa2/0xc0
[  152.685680]  ext4_ioctl+0xe41/0x4210
[  152.689388]  ? zap_class+0x740/0x740
[  152.693088]  ? check_same_owner+0x340/0x340
[  152.697401]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  152.702940]  ? ext4_ioctl_group_add+0x560/0x560
[  152.707620]  ? perf_trace_lock+0xde/0x920
[  152.711773]  ? _kstrtoull+0x188/0x250
[  152.715564]  ? _parse_integer+0x190/0x190
[  152.719703]  ? zap_class+0x740/0x740
[  152.723412]  ? __check_object_size+0x9d/0x5f2
[  152.727916]  ? lock_acquire+0x1e4/0x540
[  152.731882]  ? __fget+0x4ac/0x740
[  152.735332]  ? lock_downgrade+0x8f0/0x8f0
[  152.739478]  ? lock_release+0xa30/0xa30
[  152.743440]  ? zap_class+0x740/0x740
[  152.747149]  ? __f_unlock_pos+0x19/0x20
[  152.751113]  ? __fget+0x4d5/0x740
[  152.754568]  ? ksys_dup3+0x690/0x690
[  152.758276]  ? kasan_check_write+0x14/0x20
[  152.762506]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  152.767430]  ? fsnotify+0xbac/0x14e0
[  152.771134]  ? vfs_write+0x2f3/0x560
[  152.774843]  ? ext4_ioctl_group_add+0x560/0x560
[  152.779508]  do_vfs_ioctl+0x1de/0x1720
[  152.783388]  ? fsnotify_first_mark+0x350/0x350
[  152.787966]  ? ioctl_preallocate+0x300/0x300
[  152.792457]  ? __fget_light+0x2f7/0x440
[  152.796417]  ? fget_raw+0x20/0x20
[  152.799865]  ? __sb_end_write+0xac/0xe0
[  152.803841]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  152.809366]  ? fput+0x130/0x1a0
[  152.812642]  ? ksys_write+0x1ae/0x260
[  152.816442]  ? security_file_ioctl+0x94/0xc0
[  152.820837]  ksys_ioctl+0xa9/0xd0
[  152.824302]  __x64_sys_ioctl+0x73/0xb0
[  152.828198]  do_syscall_64+0x1b9/0x820
[  152.832093]  ? finish_task_switch+0x1d3/0x870
[  152.836577]  ? syscall_return_slowpath+0x5e0/0x5e0
[  152.841498]  ? syscall_return_slowpath+0x31d/0x5e0
[  152.846418]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  152.851421]  ? prepare_exit_to_usermode+0x291/0x3b0
[  152.856435]  ? perf_trace_sys_enter+0xb10/0xb10
[  152.861094]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  152.865933]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  152.871116] RIP: 0033:0x455e29
[  152.874288] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  152.893579] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  152.901385] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  152.908642] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  152.915903] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  152.923176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  152.930432] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000019
18:18:49 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:49 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:49 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:49 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:49 executing program 3:
r0 = socket(0x10, 0x80003, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/packet\x00')
socket(0x11, 0x2, 0x0)
sendfile(r0, r1, &(0x7f0000000000), 0x80000003)

18:18:49 executing program 6:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote={0xfe, 0x80, [], 0xbb}}, 0x14)
r1 = socket(0xa, 0x2, 0x0)
sendto$inet6(r1, &(0x7f0000000280), 0xf401, 0x0, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @loopback={0x0, 0x8}}, 0x1c)

18:18:49 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:49 executing program 5 (fault-call:5 fault-nth:26):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:49 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf00000000000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:49 executing program 0:
r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x2, 0x88100)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000240)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000700000004000000c8040000000000000000000000000000e0030000e0030000e003000004000000", @ANYPTR=&(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], @ANYBLOB="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"], 0x518)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
r2 = msgget(0x2, 0x40)
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f00000000c0)={'teql0\x00', 0x8})
msgctl$IPC_INFO(r2, 0x3, &(0x7f0000000080)=""/33)
readv(r0, &(0x7f0000000100), 0x0)

18:18:49 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
sendto$inet(r0, &(0x7f0000de1fff), 0xfffffffffffffd43, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
recvfrom(r0, &(0x7f0000f9cf9b)=""/101, 0x6478c8501c739c9d, 0x120, 0x0, 0x35)
sendto$inet(r0, &(0x7f0000000040)="97f7d362ca0e73d857acc4c12e9bafec9f0ad832961979b44181eb7719b59fb0f2f24305a3483c49676a009109f1811a5e10968b2b574c6bd5938af9a43f85cdfc6902c766593a323c364abbc6c37d83513b3dc533fbc11b2b0a86f87d19d54aa0e4c845d44a12bf368fc39298c593c92e72cccd812b9ed19a4bb1aedf426ad6", 0x80, 0x0, &(0x7f0000000180)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10)

[  153.101108] FAT-fs (loop1): bogus number of reserved sectors
[  153.107135] FAT-fs (loop1): Can't find a valid FAT filesystem
[  153.133254] FAULT_INJECTION: forcing a failure.
[  153.133254] name failslab, interval 1, probability 0, space 0, times 0
[  153.144592] CPU: 0 PID: 9097 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  153.152920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.162288] Call Trace:
[  153.164883]  dump_stack+0x1c9/0x2b4
[  153.168510]  ? dump_stack_print_info.cold.2+0x52/0x52
[  153.173695]  ? zap_class+0x740/0x740
[  153.177424]  should_fail.cold.4+0xa/0x11
[  153.181484]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  153.186580]  ? blk_exit_rl+0x80/0x80
[  153.190291]  ? save_stack+0xa9/0xd0
[  153.193932]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  153.199035]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  153.203961]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  153.209505]  ? lock_acquire+0x1e4/0x540
[  153.213493]  ? generic_make_request+0x527/0x1800
[  153.218259]  ? lock_downgrade+0x8f0/0x8f0
[  153.222411]  ? lock_release+0xa30/0xa30
[  153.226390]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  153.231498]  ? perf_trace_lock+0x49d/0x920
[  153.235738]  ? generic_make_request+0x550/0x1800
[  153.240497]  __should_failslab+0x124/0x180
[  153.244746]  should_failslab+0x9/0x14
[  153.248544]  kmem_cache_alloc+0x47/0x760
[  153.252863]  ? rcu_note_context_switch+0x730/0x730
[  153.257802]  ? mempool_free+0x370/0x370
[  153.261771]  mempool_alloc_slab+0x44/0x60
[  153.265915]  mempool_alloc+0x193/0x4b0
[  153.269810]  ? mempool_destroy+0x30/0x30
[  153.273873]  ? lock_downgrade+0x8f0/0x8f0
[  153.278023]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  153.283585]  bio_alloc_bioset+0x39c/0x6f0
[  153.287738]  ? generic_make_request+0x1800/0x1800
[  153.292590]  ? bvec_alloc+0x2d0/0x2d0
[  153.296477]  ? check_same_owner+0x340/0x340
[  153.300796]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  153.305805]  ? guard_bio_eod+0x2b4/0x600
[  153.309868]  submit_bh_wbc+0x14b/0x790
[  153.313773]  write_dirty_buffer+0xba/0x150
[  153.318006]  jbd2_log_do_checkpoint+0xc08/0x1370
[  153.322779]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  153.328495]  ? lock_acquire+0x1e4/0x540
[  153.332464]  ? jbd2_journal_flush+0x144/0x540
[  153.337056]  ? kasan_check_read+0x11/0x20
[  153.341201]  ? do_raw_spin_unlock+0xa7/0x2f0
[  153.345610]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  153.350200]  ? kasan_check_write+0x14/0x20
[  153.354426]  ? do_raw_spin_lock+0xc1/0x200
[  153.358662]  jbd2_journal_flush+0x156/0x540
[  153.362986]  ext4_change_inode_journal_flag+0x230/0x3e0
[  153.368350]  ext4_ioctl_setflags+0x5fd/0x7d0
[  153.372765]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  153.377182]  ? down_read+0x1d0/0x1d0
[  153.380892]  ? __mnt_want_write_file+0xa2/0xc0
[  153.385475]  ext4_ioctl+0xe41/0x4210
[  153.389182]  ? zap_class+0x740/0x740
[  153.392897]  ? ext4_ioctl_group_add+0x560/0x560
[  153.397557]  ? perf_trace_lock+0x49d/0x920
[  153.401789]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  153.406887]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  153.412005]  ? zap_class+0x740/0x740
[  153.415742]  ? lock_acquire+0x1e4/0x540
[  153.419709]  ? __fget+0x4ac/0x740
[  153.423159]  ? lock_downgrade+0x8f0/0x8f0
[  153.427309]  ? lock_release+0xa30/0xa30
[  153.431274]  ? zap_class+0x740/0x740
[  153.434991]  ? __f_unlock_pos+0x19/0x20
[  153.438965]  ? __fget+0x4d5/0x740
[  153.442423]  ? ksys_dup3+0x690/0x690
[  153.446141]  ? kasan_check_write+0x14/0x20
[  153.450371]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  153.455294]  ? fsnotify+0xbac/0x14e0
[  153.459087]  ? vfs_write+0x2f3/0x560
[  153.462816]  ? ext4_ioctl_group_add+0x560/0x560
[  153.467477]  do_vfs_ioctl+0x1de/0x1720
[  153.471372]  ? fsnotify_first_mark+0x350/0x350
[  153.475968]  ? ioctl_preallocate+0x300/0x300
[  153.480377]  ? __fget_light+0x2f7/0x440
[  153.484347]  ? fget_raw+0x20/0x20
[  153.487810]  ? __sb_end_write+0xac/0xe0
[  153.491796]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  153.497323]  ? fput+0x130/0x1a0
[  153.500598]  ? ksys_write+0x1ae/0x260
[  153.504405]  ? security_file_ioctl+0x94/0xc0
[  153.508828]  ksys_ioctl+0xa9/0xd0
[  153.512303]  __x64_sys_ioctl+0x73/0xb0
[  153.516187]  do_syscall_64+0x1b9/0x820
[  153.520066]  ? finish_task_switch+0x1d3/0x870
[  153.524564]  ? syscall_return_slowpath+0x5e0/0x5e0
[  153.529487]  ? syscall_return_slowpath+0x31d/0x5e0
[  153.534411]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  153.539424]  ? prepare_exit_to_usermode+0x291/0x3b0
[  153.544434]  ? perf_trace_sys_enter+0xb10/0xb10
[  153.549099]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  153.554042]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  153.559221] RIP: 0033:0x455e29
[  153.562396] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  153.581982] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  153.589690] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
18:18:50 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

[  153.596958] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  153.604219] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  153.611481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  153.618755] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000001a
[  153.626616] can: request_module (can-proto-0) failed.
18:18:50 executing program 6:
r0 = socket$vsock_dgram(0x28, 0x2, 0x0)
read(r0, &(0x7f00000002c0)=""/203, 0xcb)

[  153.661842] autofs4:pid:9096:autofs_fill_super: called with bogus options
[  153.680031] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
18:18:50 executing program 5 (fault-call:5 fault-nth:27):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:50 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x3000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  153.719728] can: request_module (can-proto-0) failed.
18:18:50 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

[  153.818655] FAT-fs (loop1): bogus number of reserved sectors
[  153.824553] FAT-fs (loop1): Can't find a valid FAT filesystem
[  153.847666] FAULT_INJECTION: forcing a failure.
[  153.847666] name failslab, interval 1, probability 0, space 0, times 0
[  153.859188] CPU: 0 PID: 9136 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  153.867522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  153.876967] Call Trace:
[  153.879552]  dump_stack+0x1c9/0x2b4
[  153.883174]  ? dump_stack_print_info.cold.2+0x52/0x52
[  153.888357]  ? zap_class+0x740/0x740
[  153.892094]  should_fail.cold.4+0xa/0x11
[  153.896175]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  153.901281]  ? blk_exit_rl+0x80/0x80
[  153.904997]  ? save_stack+0xa9/0xd0
[  153.908645]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  153.913836]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  153.918759]  ? jbd2_journal_flush+0x156/0x540
[  153.923250]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  153.928794]  ? lock_acquire+0x1e4/0x540
[  153.932765]  ? generic_make_request+0x527/0x1800
[  153.937516]  ? lock_downgrade+0x8f0/0x8f0
[  153.941660]  ? lock_release+0xa30/0xa30
[  153.945623]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  153.950724]  ? perf_trace_lock+0x49d/0x920
[  153.954965]  ? generic_make_request+0x550/0x1800
[  153.959723]  __should_failslab+0x124/0x180
[  153.963956]  should_failslab+0x9/0x14
[  153.967763]  kmem_cache_alloc+0x47/0x760
[  153.971917]  ? rcu_note_context_switch+0x730/0x730
[  153.976852]  ? mempool_free+0x370/0x370
[  153.980938]  mempool_alloc_slab+0x44/0x60
[  153.985081]  mempool_alloc+0x193/0x4b0
[  153.988973]  ? mempool_destroy+0x30/0x30
[  153.993050]  ? lock_downgrade+0x8f0/0x8f0
[  153.997200]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  154.002733]  bio_alloc_bioset+0x39c/0x6f0
[  154.006871]  ? generic_make_request+0x1800/0x1800
[  154.011718]  ? bvec_alloc+0x2d0/0x2d0
[  154.015520]  ? check_same_owner+0x340/0x340
[  154.019846]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  154.025600]  ? guard_bio_eod+0x2b4/0x600
[  154.029668]  submit_bh_wbc+0x14b/0x790
[  154.033570]  write_dirty_buffer+0xba/0x150
[  154.037804]  jbd2_log_do_checkpoint+0xc08/0x1370
[  154.042861]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  154.048661]  ? lock_acquire+0x1e4/0x540
[  154.052640]  ? jbd2_journal_flush+0x144/0x540
[  154.057150]  ? kasan_check_read+0x11/0x20
[  154.061306]  ? do_raw_spin_unlock+0xa7/0x2f0
[  154.065731]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  154.070323]  ? kasan_check_write+0x14/0x20
[  154.074562]  ? do_raw_spin_lock+0xc1/0x200
[  154.078812]  jbd2_journal_flush+0x156/0x540
[  154.083131]  ext4_change_inode_journal_flag+0x230/0x3e0
[  154.088498]  ext4_ioctl_setflags+0x5fd/0x7d0
[  154.092901]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  154.097303]  ? down_read+0x1d0/0x1d0
[  154.101028]  ? __mnt_want_write_file+0xa2/0xc0
[  154.105614]  ext4_ioctl+0xe41/0x4210
[  154.109318]  ? zap_class+0x740/0x740
[  154.113028]  ? check_same_owner+0x340/0x340
[  154.117357]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  154.122889]  ? ext4_ioctl_group_add+0x560/0x560
[  154.127564]  ? perf_trace_lock+0xde/0x920
[  154.131711]  ? _kstrtoull+0x188/0x250
[  154.135507]  ? _parse_integer+0x190/0x190
[  154.139648]  ? zap_class+0x740/0x740
[  154.143369]  ? __check_object_size+0x9d/0x5f2
[  154.147891]  ? lock_acquire+0x1e4/0x540
[  154.151856]  ? __fget+0x4ac/0x740
[  154.155310]  ? lock_downgrade+0x8f0/0x8f0
[  154.159451]  ? lock_release+0xa30/0xa30
[  154.163418]  ? zap_class+0x740/0x740
[  154.167139]  ? __f_unlock_pos+0x19/0x20
[  154.171118]  ? __fget+0x4d5/0x740
[  154.174575]  ? ksys_dup3+0x690/0x690
[  154.178286]  ? kasan_check_write+0x14/0x20
[  154.182523]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  154.187461]  ? fsnotify+0xbac/0x14e0
[  154.191178]  ? vfs_write+0x2f3/0x560
[  154.194891]  ? ext4_ioctl_group_add+0x560/0x560
[  154.199547]  do_vfs_ioctl+0x1de/0x1720
[  154.203430]  ? fsnotify_first_mark+0x350/0x350
[  154.208003]  ? ioctl_preallocate+0x300/0x300
[  154.212409]  ? __fget_light+0x2f7/0x440
[  154.216372]  ? fget_raw+0x20/0x20
[  154.219814]  ? __sb_end_write+0xac/0xe0
[  154.223784]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  154.229323]  ? fput+0x130/0x1a0
[  154.232601]  ? ksys_write+0x1ae/0x260
[  154.236402]  ? security_file_ioctl+0x94/0xc0
[  154.240811]  ksys_ioctl+0xa9/0xd0
[  154.244269]  __x64_sys_ioctl+0x73/0xb0
[  154.248150]  do_syscall_64+0x1b9/0x820
[  154.252035]  ? finish_task_switch+0x1d3/0x870
[  154.256539]  ? syscall_return_slowpath+0x5e0/0x5e0
[  154.261455]  ? syscall_return_slowpath+0x31d/0x5e0
[  154.266384]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  154.271404]  ? prepare_exit_to_usermode+0x291/0x3b0
[  154.276430]  ? perf_trace_sys_enter+0xb10/0xb10
[  154.281096]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  154.285932]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  154.291120] RIP: 0033:0x455e29
[  154.294301] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  154.313667] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  154.321375] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  154.328643] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  154.335922] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  154.343190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  154.350490] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000001b
[  154.378171] autofs4:pid:9138:autofs_fill_super: called with bogus options
18:18:51 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:51 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000040))

18:18:51 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x6840, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000040)=0x7000)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:51 executing program 6:
r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, r0, 0x0)
clone(0x0, &(0x7f0000000080), &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000000c0))

18:18:51 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x3a)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000000)={'TPROXY\x00'}, &(0x7f0000000040)=0x1e)

18:18:51 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xffffff7f00000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:51 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:51 executing program 5 (fault-call:5 fault-nth:28):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:51 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf0ffffff00000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:51 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
getsockopt$XDP_MMAP_OFFSETS(r1, 0x11b, 0x1, &(0x7f0000000000), &(0x7f0000000080)=0x60)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r2, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:51 executing program 3:
r0 = semget$private(0x0, 0x5, 0x0)
semop(r0, &(0x7f0000000080)=[{0x0, 0x7fffffff}], 0x1)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000040))

[  154.513855] can: request_module (can-proto-0) failed.
[  154.527405] FAULT_INJECTION: forcing a failure.
[  154.527405] name failslab, interval 1, probability 0, space 0, times 0
[  154.538801] CPU: 1 PID: 9159 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  154.547129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  154.556481] Call Trace:
[  154.559087]  dump_stack+0x1c9/0x2b4
[  154.562721]  ? dump_stack_print_info.cold.2+0x52/0x52
[  154.567921]  ? zap_class+0x740/0x740
[  154.571667]  should_fail.cold.4+0xa/0x11
[  154.575734]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  154.580840]  ? blk_exit_rl+0x80/0x80
[  154.584548]  ? save_stack+0xa9/0xd0
[  154.588170]  ? kasan_slab_alloc+0x12/0x20
[  154.592315]  ? kmem_cache_alloc+0x12e/0x760
[  154.596620]  ? mempool_alloc_slab+0x44/0x60
[  154.600949]  ? bio_alloc_bioset+0x39c/0x6f0
[  154.605259]  ? submit_bh_wbc+0x14b/0x790
[  154.609321]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  154.614247]  ? jbd2_journal_flush+0x156/0x540
[  154.618736]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  154.624268]  ? lock_acquire+0x1e4/0x540
[  154.628233]  ? generic_make_request+0x527/0x1800
[  154.632975]  ? lock_downgrade+0x8f0/0x8f0
[  154.637108]  ? lock_release+0xa30/0xa30
[  154.641070]  ? perf_trace_lock+0xde/0x920
[  154.645210]  ? trace_hardirqs_on+0x10/0x10
[  154.649432]  ? zap_class+0x740/0x740
[  154.653142]  ? lock_downgrade+0x8f0/0x8f0
[  154.657291]  ? generic_make_request+0x550/0x1800
[  154.662042]  __should_failslab+0x124/0x180
[  154.666371]  should_failslab+0x9/0x14
[  154.670178]  kmem_cache_alloc+0x47/0x760
[  154.674229]  ? rcu_note_context_switch+0x730/0x730
[  154.679153]  ? mempool_free+0x370/0x370
[  154.683109]  mempool_alloc_slab+0x44/0x60
[  154.687241]  mempool_alloc+0x193/0x4b0
[  154.691113]  ? mempool_destroy+0x30/0x30
[  154.695160]  ? lock_downgrade+0x8f0/0x8f0
[  154.699301]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  154.704844]  bio_alloc_bioset+0x39c/0x6f0
[  154.708990]  ? generic_make_request+0x1800/0x1800
[  154.713821]  ? bvec_alloc+0x2d0/0x2d0
[  154.717695]  ? check_same_owner+0x340/0x340
[  154.722016]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  154.727123]  ? guard_bio_eod+0x2b4/0x600
[  154.731180]  submit_bh_wbc+0x14b/0x790
[  154.735065]  write_dirty_buffer+0xba/0x150
[  154.739285]  jbd2_log_do_checkpoint+0xc08/0x1370
[  154.744046]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  154.749750]  ? lock_acquire+0x1e4/0x540
[  154.753711]  ? jbd2_journal_flush+0x144/0x540
[  154.758194]  ? kasan_check_read+0x11/0x20
[  154.762324]  ? do_raw_spin_unlock+0xa7/0x2f0
[  154.766758]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  154.771328]  ? kasan_check_write+0x14/0x20
[  154.775547]  ? do_raw_spin_lock+0xc1/0x200
[  154.779771]  jbd2_journal_flush+0x156/0x540
[  154.784189]  ext4_change_inode_journal_flag+0x230/0x3e0
[  154.789567]  ext4_ioctl_setflags+0x5fd/0x7d0
[  154.793987]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  154.798394]  ? down_read+0x1d0/0x1d0
[  154.802110]  ? __mnt_want_write_file+0xa2/0xc0
[  154.806676]  ext4_ioctl+0xe41/0x4210
[  154.810379]  ? zap_class+0x740/0x740
[  154.814094]  ? check_same_owner+0x340/0x340
[  154.818403]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  154.824029]  ? ext4_ioctl_group_add+0x560/0x560
[  154.828692]  ? perf_trace_lock+0xde/0x920
[  154.832838]  ? _kstrtoull+0x188/0x250
[  154.836631]  ? _parse_integer+0x190/0x190
[  154.840761]  ? zap_class+0x740/0x740
[  154.844472]  ? __check_object_size+0x9d/0x5f2
[  154.848985]  ? lock_acquire+0x1e4/0x540
[  154.852951]  ? __fget+0x4ac/0x740
[  154.856388]  ? lock_downgrade+0x8f0/0x8f0
[  154.860524]  ? lock_release+0xa30/0xa30
[  154.864479]  ? zap_class+0x740/0x740
[  154.868202]  ? __f_unlock_pos+0x19/0x20
[  154.872168]  ? __fget+0x4d5/0x740
[  154.875605]  ? ksys_dup3+0x690/0x690
[  154.879306]  ? kasan_check_write+0x14/0x20
[  154.883527]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  154.888437]  ? fsnotify+0xbac/0x14e0
[  154.892144]  ? vfs_write+0x2f3/0x560
[  154.895849]  ? ext4_ioctl_group_add+0x560/0x560
[  154.900509]  do_vfs_ioctl+0x1de/0x1720
[  154.904383]  ? fsnotify_first_mark+0x350/0x350
[  154.908947]  ? ioctl_preallocate+0x300/0x300
[  154.913424]  ? __fget_light+0x2f7/0x440
[  154.917378]  ? fget_raw+0x20/0x20
[  154.920817]  ? __sb_end_write+0xac/0xe0
[  154.924780]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  154.930329]  ? fput+0x130/0x1a0
[  154.933610]  ? ksys_write+0x1ae/0x260
[  154.937413]  ? security_file_ioctl+0x94/0xc0
[  154.941812]  ksys_ioctl+0xa9/0xd0
[  154.945262]  __x64_sys_ioctl+0x73/0xb0
[  154.949144]  do_syscall_64+0x1b9/0x820
[  154.953041]  ? finish_task_switch+0x1d3/0x870
[  154.957521]  ? syscall_return_slowpath+0x5e0/0x5e0
[  154.962436]  ? syscall_return_slowpath+0x31d/0x5e0
[  154.967349]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  154.972350]  ? prepare_exit_to_usermode+0x291/0x3b0
[  154.977350]  ? perf_trace_sys_enter+0xb10/0xb10
[  154.982116]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  154.986956]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  154.992407] RIP: 0033:0x455e29
[  154.995585] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  155.015115] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.022823] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  155.030080] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  155.037343] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  155.044602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  155.051863] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000001c
18:18:51 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000040))

18:18:51 executing program 5 (fault-call:5 fault-nth:29):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  155.088476] FAT-fs (loop1): bogus number of reserved sectors
[  155.094407] FAT-fs (loop1): Can't find a valid FAT filesystem
18:18:51 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000040)=@get={0x1, &(0x7f0000000000)=""/44, 0x1f})

18:18:51 executing program 6:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
sendfile(r1, r0, &(0x7f00000000c0), 0x1)

[  155.148727] autofs4:pid:9170:autofs_fill_super: called with bogus options
18:18:51 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf00}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  155.210223] FAULT_INJECTION: forcing a failure.
[  155.210223] name failslab, interval 1, probability 0, space 0, times 0
[  155.221676] CPU: 1 PID: 9196 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  155.230009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  155.239357] Call Trace:
[  155.241935]  dump_stack+0x1c9/0x2b4
[  155.245558]  ? dump_stack_print_info.cold.2+0x52/0x52
[  155.250740]  ? zap_class+0x740/0x740
[  155.254452]  should_fail.cold.4+0xa/0x11
[  155.258513]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  155.263614]  ? blk_exit_rl+0x80/0x80
[  155.267314]  ? save_stack+0xa9/0xd0
[  155.270935]  ? kasan_slab_alloc+0x12/0x20
[  155.275077]  ? kmem_cache_alloc+0x12e/0x760
[  155.279393]  ? mempool_alloc_slab+0x44/0x60
[  155.283718]  ? bio_alloc_bioset+0x39c/0x6f0
[  155.288054]  ? submit_bh_wbc+0x14b/0x790
[  155.292224]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  155.297233]  ? jbd2_journal_flush+0x156/0x540
[  155.301835]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  155.308077]  ? lock_acquire+0x1e4/0x540
[  155.312079]  ? generic_make_request+0x527/0x1800
[  155.316836]  ? lock_downgrade+0x8f0/0x8f0
[  155.320981]  ? lock_release+0xa30/0xa30
[  155.324954]  ? finish_task_switch+0x18a/0x870
[  155.329543]  ? generic_make_request+0x550/0x1800
[  155.334394]  __should_failslab+0x124/0x180
[  155.338793]  should_failslab+0x9/0x14
[  155.342581]  kmem_cache_alloc+0x47/0x760
[  155.346626]  ? rcu_note_context_switch+0x730/0x730
[  155.351544]  ? mempool_free+0x370/0x370
[  155.355514]  mempool_alloc_slab+0x44/0x60
[  155.359657]  mempool_alloc+0x193/0x4b0
[  155.363533]  ? mempool_destroy+0x30/0x30
[  155.367593]  ? lock_downgrade+0x8f0/0x8f0
[  155.371838]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  155.377373]  bio_alloc_bioset+0x39c/0x6f0
[  155.381512]  ? generic_make_request+0x1800/0x1800
[  155.386358]  ? bvec_alloc+0x2d0/0x2d0
[  155.390148]  ? check_same_owner+0x340/0x340
[  155.394482]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  155.399490]  ? guard_bio_eod+0x2b4/0x600
[  155.403542]  submit_bh_wbc+0x14b/0x790
[  155.407417]  write_dirty_buffer+0xba/0x150
[  155.411637]  jbd2_log_do_checkpoint+0xc08/0x1370
[  155.416384]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  155.422081]  ? lock_acquire+0x1e4/0x540
[  155.426045]  ? jbd2_journal_flush+0x144/0x540
[  155.430532]  ? kasan_check_read+0x11/0x20
[  155.434667]  ? do_raw_spin_unlock+0xa7/0x2f0
[  155.439075]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  155.443661]  ? kasan_check_write+0x14/0x20
[  155.447887]  ? do_raw_spin_lock+0xc1/0x200
[  155.452118]  jbd2_journal_flush+0x156/0x540
[  155.456426]  ext4_change_inode_journal_flag+0x230/0x3e0
[  155.461777]  ext4_ioctl_setflags+0x5fd/0x7d0
[  155.466172]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  155.470563]  ? down_read+0x1d0/0x1d0
[  155.474291]  ? __mnt_want_write_file+0xa2/0xc0
[  155.478875]  ext4_ioctl+0xe41/0x4210
[  155.482590]  ? zap_class+0x740/0x740
[  155.486299]  ? check_same_owner+0x340/0x340
[  155.490613]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  155.496147]  ? ext4_ioctl_group_add+0x560/0x560
[  155.500819]  ? perf_trace_lock+0xde/0x920
[  155.504955]  ? _kstrtoull+0x188/0x250
[  155.508742]  ? _parse_integer+0x190/0x190
[  155.512871]  ? zap_class+0x740/0x740
[  155.516581]  ? __check_object_size+0x9d/0x5f2
[  155.521064]  ? lock_acquire+0x1e4/0x540
[  155.525035]  ? __fget+0x4ac/0x740
[  155.528479]  ? lock_downgrade+0x8f0/0x8f0
[  155.532619]  ? lock_release+0xa30/0xa30
[  155.536586]  ? zap_class+0x740/0x740
[  155.540297]  ? __f_unlock_pos+0x19/0x20
[  155.544266]  ? __fget+0x4d5/0x740
[  155.547894]  ? ksys_dup3+0x690/0x690
[  155.551605]  ? kasan_check_write+0x14/0x20
[  155.555912]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  155.560825]  ? fsnotify+0xbac/0x14e0
[  155.564524]  ? vfs_write+0x2f3/0x560
[  155.568226]  ? ext4_ioctl_group_add+0x560/0x560
[  155.572889]  do_vfs_ioctl+0x1de/0x1720
[  155.576782]  ? fsnotify_first_mark+0x350/0x350
[  155.581360]  ? ioctl_preallocate+0x300/0x300
[  155.585753]  ? __fget_light+0x2f7/0x440
[  155.589710]  ? fget_raw+0x20/0x20
[  155.593153]  ? __sb_end_write+0xac/0xe0
[  155.597115]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  155.602663]  ? fput+0x130/0x1a0
[  155.605944]  ? ksys_write+0x1ae/0x260
[  155.609739]  ? security_file_ioctl+0x94/0xc0
[  155.614148]  ksys_ioctl+0xa9/0xd0
[  155.617589]  __x64_sys_ioctl+0x73/0xb0
[  155.621462]  do_syscall_64+0x1b9/0x820
[  155.625338]  ? finish_task_switch+0x1d3/0x870
[  155.629841]  ? syscall_return_slowpath+0x5e0/0x5e0
[  155.634759]  ? syscall_return_slowpath+0x31d/0x5e0
[  155.639855]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  155.644854]  ? prepare_exit_to_usermode+0x291/0x3b0
[  155.649857]  ? perf_trace_sys_enter+0xb10/0xb10
[  155.654508]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  155.659346]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  155.664515] RIP: 0033:0x455e29
[  155.667683] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  155.686840] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.694544] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  155.701812] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  155.709080] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  155.716332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  155.723583] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000001d
18:18:52 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280))
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:52 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:52 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000040))

18:18:52 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
ioctl(r0, 0x4000008912, &(0x7f0000000000)="295ee1311f16f477671070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = creat(&(0x7f0000000200)='./bus\x00', 0x0)
r3 = semget(0x3, 0x7, 0x44)
semop(r3, &(0x7f00000001c0)=[{0x3, 0x0, 0x800}, {0x3, 0x3ff}], 0x2)
ftruncate(r2, 0x8203)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r2, 0x40bc5311, &(0x7f00000003c0)={0x3, 0x3, 'client0\x00', 0x6, "667077fd213f0936", "77d52c7e96d082df006de31bda3b499db78422dfe080b2d18b72436ea0688e10", 0x5, 0x100000001})
r4 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r4, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x151)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x10000000}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000080)='tls\x00', 0x152)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)={0x303, 0x33}, 0x28)
sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f000000f840)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f000000f800)={&(0x7f0000000300)=ANY=[@ANYBLOB="c12e5cbd7b4670c9c7c8da67c88e4b7d077b9cb86568a7dfa0ce4636d6604d9f2cde2a5ca92877cd627fecb35ee4b714c13a705f55f7cf2116130d135d35aa214d454c4be351ec8947384e9a0d6c9d313408c8458a7365e14bdad96b7bf97bf482e534113e1d768c3f7d6798bf31e7e7280f5473ceb8433650ea47b13b397b686cb7a84548ca95f7ba"], 0x1}, 0x1}, 0x8000)
ioctl$EVIOCGPHYS(r2, 0x80404507, &(0x7f0000000240)=""/113)
sendto$inet6(r1, &(0x7f00000005c0), 0xfffffdef, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}, 0x1c)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000002c0)={0x0, 0x3, 0x3f, 0x100000000})
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r5, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:52 executing program 5 (fault-call:5 fault-nth:30):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:52 executing program 6:
r0 = syz_open_dev$sndpcmc(&(0x7f0000004fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl(r0, 0x40084149, &(0x7f0000000000)='S')

18:18:52 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x34000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:52 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

[  155.876156] FAT-fs (loop1): bogus number of reserved sectors
[  155.882056] FAT-fs (loop1): Can't find a valid FAT filesystem
[  155.906722] FAULT_INJECTION: forcing a failure.
[  155.906722] name failslab, interval 1, probability 0, space 0, times 0
[  155.918095] CPU: 0 PID: 9227 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  155.926435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  155.935791] Call Trace:
[  155.938385]  dump_stack+0x1c9/0x2b4
[  155.942028]  ? dump_stack_print_info.cold.2+0x52/0x52
[  155.947222]  ? zap_class+0x740/0x740
[  155.950942]  should_fail.cold.4+0xa/0x11
[  155.955093]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  155.961153]  ? blk_exit_rl+0x80/0x80
[  155.964964]  ? save_stack+0xa9/0xd0
[  155.968599]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  155.973708]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  155.978636]  ? jbd2_journal_flush+0x156/0x540
[  155.983125]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  155.988657]  ? lock_acquire+0x1e4/0x540
[  155.992638]  ? generic_make_request+0x527/0x1800
[  155.997400]  ? lock_downgrade+0x8f0/0x8f0
[  156.001547]  ? lock_release+0xa30/0xa30
[  156.005563]  ? perf_trace_lock+0x49d/0x920
[  156.009798]  ? generic_make_request+0x550/0x1800
[  156.014558]  __should_failslab+0x124/0x180
[  156.018813]  should_failslab+0x9/0x14
[  156.023257]  kmem_cache_alloc+0x47/0x760
[  156.027323]  ? rcu_note_context_switch+0x730/0x730
[  156.032266]  ? mempool_free+0x370/0x370
[  156.036233]  mempool_alloc_slab+0x44/0x60
[  156.040377]  mempool_alloc+0x193/0x4b0
[  156.044281]  ? mempool_destroy+0x30/0x30
[  156.048348]  ? lock_downgrade+0x8f0/0x8f0
[  156.052501]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  156.058060]  bio_alloc_bioset+0x39c/0x6f0
[  156.062213]  ? generic_make_request+0x1800/0x1800
[  156.067051]  ? bvec_alloc+0x2d0/0x2d0
[  156.070844]  ? check_same_owner+0x340/0x340
[  156.075164]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  156.080171]  ? guard_bio_eod+0x2b4/0x600
[  156.084239]  submit_bh_wbc+0x14b/0x790
[  156.088129]  write_dirty_buffer+0xba/0x150
[  156.092379]  jbd2_log_do_checkpoint+0xc08/0x1370
[  156.097156]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  156.102863]  ? lock_acquire+0x1e4/0x540
[  156.106842]  ? jbd2_journal_flush+0x144/0x540
[  156.111362]  ? kasan_check_read+0x11/0x20
[  156.115518]  ? do_raw_spin_unlock+0xa7/0x2f0
[  156.119916]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  156.124514]  ? kasan_check_write+0x14/0x20
[  156.128752]  ? do_raw_spin_lock+0xc1/0x200
[  156.132992]  jbd2_journal_flush+0x156/0x540
[  156.137317]  ext4_change_inode_journal_flag+0x230/0x3e0
[  156.142772]  ext4_ioctl_setflags+0x5fd/0x7d0
[  156.147189]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  156.151597]  ? down_read+0x1d0/0x1d0
[  156.155346]  ? __mnt_want_write_file+0xa2/0xc0
[  156.159933]  ext4_ioctl+0xe41/0x4210
[  156.163637]  ? zap_class+0x740/0x740
[  156.167360]  ? memset+0x31/0x40
[  156.170650]  ? ext4_ioctl_group_add+0x560/0x560
[  156.175331]  ? perf_trace_lock+0x49d/0x920
[  156.179569]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  156.184755]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  156.189900]  ? zap_class+0x740/0x740
[  156.193625]  ? __check_object_size+0x9d/0x5f2
[  156.198133]  ? lock_acquire+0x1e4/0x540
[  156.202104]  ? __fget+0x4ac/0x740
[  156.205559]  ? lock_downgrade+0x8f0/0x8f0
[  156.209709]  ? lock_release+0xa30/0xa30
[  156.213678]  ? zap_class+0x740/0x740
[  156.217402]  ? __f_unlock_pos+0x19/0x20
[  156.221376]  ? __fget+0x4d5/0x740
[  156.224840]  ? ksys_dup3+0x690/0x690
[  156.228553]  ? kasan_check_write+0x14/0x20
[  156.232780]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  156.237709]  ? fsnotify+0xbac/0x14e0
[  156.241413]  ? vfs_write+0x2f3/0x560
[  156.245118]  ? ext4_ioctl_group_add+0x560/0x560
[  156.249774]  do_vfs_ioctl+0x1de/0x1720
[  156.253675]  ? fsnotify_first_mark+0x350/0x350
[  156.258254]  ? ioctl_preallocate+0x300/0x300
[  156.262649]  ? __fget_light+0x2f7/0x440
[  156.266625]  ? fget_raw+0x20/0x20
[  156.270076]  ? __sb_end_write+0xac/0xe0
[  156.274132]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  156.279662]  ? fput+0x130/0x1a0
[  156.282950]  ? ksys_write+0x1ae/0x260
[  156.286751]  ? security_file_ioctl+0x94/0xc0
[  156.291149]  ksys_ioctl+0xa9/0xd0
[  156.294603]  __x64_sys_ioctl+0x73/0xb0
[  156.298484]  do_syscall_64+0x1b9/0x820
[  156.302369]  ? finish_task_switch+0x1d3/0x870
[  156.306862]  ? syscall_return_slowpath+0x5e0/0x5e0
[  156.312156]  ? syscall_return_slowpath+0x31d/0x5e0
[  156.317170]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  156.322179]  ? prepare_exit_to_usermode+0x291/0x3b0
[  156.327199]  ? perf_trace_sys_enter+0xb10/0xb10
[  156.331862]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  156.336809]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  156.342005] RIP: 0033:0x455e29
[  156.345193] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  156.364624] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
18:18:52 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:52 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f}, 0xe)
listen(r0, 0x0)

[  156.372343] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  156.379617] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  156.386994] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  156.394273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  156.401553] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000001e
18:18:53 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:53 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000040))

[  156.430826] autofs4:pid:9221:autofs_fill_super: called with bogus options
18:18:53 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:53 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xfffffffffffff000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:53 executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000028c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(anubis)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000005940)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000003940)="48107936edbbc8470fd3bd7d3faf24211f88c05f85353b1bcef5de3280f2687c2620032770501ef8a908213c16f3b17383193cefab9cd87a0e4958fa53ac2576bdf6e4aa2b73a8ae9ddad19092065a07a0df23aa43a96ad5163f8c10c3516fff9e65261d4d15fc36fc66a9b264b3bed5", 0x70}], 0x1, &(0x7f0000000080)}], 0x1, 0x0)
recvmsg(r1, &(0x7f0000001440)={&(0x7f0000000000)=@sco, 0x80, &(0x7f00000013c0)=[{&(0x7f0000005a80)=""/4096, 0x20005e83}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0)

[  156.502321] FAT-fs (loop1): bogus number of reserved sectors
[  156.508247] FAT-fs (loop1): Can't find a valid FAT filesystem
18:18:53 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000000c0)=<r2=>0x0)
perf_event_open(&(0x7f00000002c0)={0x5, 0x70, 0xb, 0x800, 0x9, 0x0, 0x0, 0x8, 0xc4001, 0x9, 0x5, 0x80000000, 0xedad, 0x7f, 0x10001, 0x4, 0x6, 0x3, 0x7c, 0x10000, 0x5, 0x4, 0x5, 0x6, 0x7f, 0x0, 0x96, 0x4, 0x200, 0x5, 0xffffffffffffffe1, 0xffff, 0x400, 0xfffffffffffffffa, 0x1af, 0x8, 0x38, 0x5, 0x0, 0x9, 0x5, @perf_bp, 0x20000, 0x8000000007, 0x6, 0x1, 0x2, 0x7, 0x4}, r2, 0x5, r0, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x20000, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000080)={0x9, 0xffffffffffffcb58})
ioctl$sock_inet_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000100))

[  156.600211] autofs4:pid:9253:autofs_fill_super: called with bogus options
18:18:53 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280))
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:53 executing program 5 (fault-call:5 fault-nth:31):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:53 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0xc812, r0, 0x0)
futex(&(0x7f0000000000), 0x5, 0x0, &(0x7f0000000040), &(0x7f0000000140), 0x0)

18:18:53 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:53 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:53 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:53 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xec0}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:53 executing program 3:
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
lsetxattr(&(0x7f0000000300)='./file0\x00', &(0x7f0000000440)=@known='system.posix_acl_default\x00', &(0x7f00000003c0)="0200000002008cffffff00000200f30000000000", 0x14, 0x0)

18:18:53 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000540)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_MASTER={0x8, 0xa, 0x1}]}, 0x28}, 0x1}, 0x0)

18:18:53 executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000cd0fc8)={0x0, 0x0, &(0x7f0000ca6000)={&(0x7f0000e05000)=ANY=[@ANYBLOB="020d00001800000000000000000000000400040000000000000000000000000000000000000000000000000000000000080012000000030000000000000000000600000000000000000000000000000000000000000000000000000000000000ff02000000000000000000000000007705000500000000000a0000800000000000000000000000000000ffffac140000000000000000000005000600000000000a00000000000000fe8000000000000000000000080000ff000000000000e007"], 0xc0}, 0x1}, 0x0)

18:18:53 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

[  156.833391] FAT-fs (loop1): bogus number of reserved sectors
[  156.839669] FAT-fs (loop1): Can't find a valid FAT filesystem
18:18:53 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0xf0ffffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:53 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  156.876615] FAULT_INJECTION: forcing a failure.
[  156.876615] name failslab, interval 1, probability 0, space 0, times 0
[  156.887984] CPU: 0 PID: 9313 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  156.896361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  156.905710] Call Trace:
[  156.908300]  dump_stack+0x1c9/0x2b4
[  156.911925]  ? dump_stack_print_info.cold.2+0x52/0x52
[  156.917125]  ? zap_class+0x740/0x740
[  156.920845]  should_fail.cold.4+0xa/0x11
[  156.924915]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  156.930027]  ? blk_exit_rl+0x80/0x80
[  156.933747]  ? save_stack+0xa9/0xd0
[  156.937383]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  156.942656]  ? jbd2_log_do_checkpoint+0xc08/0x1370
[  156.947580]  ? jbd2_journal_flush+0x156/0x540
[  156.952078]  ? ext4_change_inode_journal_flag+0x230/0x3e0
[  156.957645]  ? lock_acquire+0x1e4/0x540
[  156.961612]  ? generic_make_request+0x527/0x1800
[  156.966371]  ? lock_downgrade+0x8f0/0x8f0
[  156.970516]  ? lock_release+0xa30/0xa30
[  156.974498]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  156.979599]  ? perf_trace_lock+0x49d/0x920
[  156.983841]  ? generic_make_request+0x550/0x1800
[  156.988596]  __should_failslab+0x124/0x180
[  156.992840]  should_failslab+0x9/0x14
[  156.996643]  kmem_cache_alloc+0x47/0x760
[  157.000705]  ? rcu_note_context_switch+0x730/0x730
[  157.005643]  ? mempool_free+0x370/0x370
[  157.009610]  mempool_alloc_slab+0x44/0x60
[  157.013755]  mempool_alloc+0x193/0x4b0
[  157.017661]  ? mempool_destroy+0x30/0x30
[  157.021717]  ? lock_downgrade+0x8f0/0x8f0
[  157.025872]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  157.031411]  bio_alloc_bioset+0x39c/0x6f0
[  157.035552]  ? generic_make_request+0x1800/0x1800
[  157.040390]  ? bvec_alloc+0x2d0/0x2d0
[  157.044189]  ? check_same_owner+0x340/0x340
[  157.048497]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  157.053612]  ? guard_bio_eod+0x2b4/0x600
[  157.057685]  submit_bh_wbc+0x14b/0x790
[  157.061583]  write_dirty_buffer+0xba/0x150
[  157.065824]  jbd2_log_do_checkpoint+0xc08/0x1370
[  157.070589]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  157.076304]  ? lock_acquire+0x1e4/0x540
[  157.080274]  ? jbd2_journal_flush+0x144/0x540
[  157.084768]  ? kasan_check_read+0x11/0x20
[  157.088921]  ? do_raw_spin_unlock+0xa7/0x2f0
[  157.093321]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  157.097898]  ? kasan_check_write+0x14/0x20
[  157.102125]  ? do_raw_spin_lock+0xc1/0x200
[  157.106375]  jbd2_journal_flush+0x156/0x540
[  157.110705]  ext4_change_inode_journal_flag+0x230/0x3e0
[  157.116070]  ext4_ioctl_setflags+0x5fd/0x7d0
[  157.120474]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  157.124875]  ? down_read+0x1d0/0x1d0
[  157.128673]  ? __mnt_want_write_file+0xa2/0xc0
[  157.133260]  ext4_ioctl+0xe41/0x4210
[  157.137060]  ? zap_class+0x740/0x740
[  157.140783]  ? memset+0x31/0x40
[  157.144070]  ? ext4_ioctl_group_add+0x560/0x560
[  157.148737]  ? perf_trace_lock+0x49d/0x920
[  157.152969]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  157.158071]  ? perf_trace_run_bpf_submit+0x270/0x3b0
[  157.163179]  ? zap_class+0x740/0x740
[  157.166901]  ? __check_object_size+0x9d/0x5f2
[  157.171415]  ? lock_acquire+0x1e4/0x540
[  157.175375]  ? __fget+0x4ac/0x740
[  157.178824]  ? lock_downgrade+0x8f0/0x8f0
[  157.182964]  ? lock_release+0xa30/0xa30
[  157.186927]  ? zap_class+0x740/0x740
[  157.190641]  ? __f_unlock_pos+0x19/0x20
[  157.194608]  ? __fget+0x4d5/0x740
[  157.198071]  ? ksys_dup3+0x690/0x690
[  157.201799]  ? kasan_check_write+0x14/0x20
[  157.206035]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  157.210955]  ? fsnotify+0xbac/0x14e0
[  157.214670]  ? vfs_write+0x2f3/0x560
[  157.218376]  ? ext4_ioctl_group_add+0x560/0x560
[  157.223044]  do_vfs_ioctl+0x1de/0x1720
[  157.226924]  ? fsnotify_first_mark+0x350/0x350
[  157.231515]  ? ioctl_preallocate+0x300/0x300
[  157.235911]  ? __fget_light+0x2f7/0x440
[  157.239890]  ? fget_raw+0x20/0x20
[  157.243339]  ? __sb_end_write+0xac/0xe0
[  157.247322]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  157.252852]  ? fput+0x130/0x1a0
[  157.256131]  ? ksys_write+0x1ae/0x260
[  157.259930]  ? security_file_ioctl+0x94/0xc0
[  157.264340]  ksys_ioctl+0xa9/0xd0
[  157.267794]  __x64_sys_ioctl+0x73/0xb0
[  157.271684]  do_syscall_64+0x1b9/0x820
[  157.275576]  ? finish_task_switch+0x1d3/0x870
[  157.280083]  ? syscall_return_slowpath+0x5e0/0x5e0
[  157.285003]  ? syscall_return_slowpath+0x31d/0x5e0
[  157.289936]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  157.294946]  ? prepare_exit_to_usermode+0x291/0x3b0
[  157.299964]  ? perf_trace_sys_enter+0xb10/0xb10
[  157.304632]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  157.309470]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  157.314648] RIP: 0033:0x455e29
[  157.317833] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  157.337199] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  157.344908] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  157.352179] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  157.359541] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  157.366829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  157.374106] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 000000000000001f
[  157.395851] autofs4:pid:9308:autofs_fill_super: called with bogus options
18:18:54 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:54 executing program 4:
perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)

18:18:54 executing program 5 (fault-call:5 fault-nth:32):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

[  157.580720] FAULT_INJECTION: forcing a failure.
[  157.580720] name failslab, interval 1, probability 0, space 0, times 0
[  157.592019] CPU: 0 PID: 9353 Comm: syz-executor5 Not tainted 4.18.0-rc3-next-20180709+ #2
[  157.600342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  157.609687] Call Trace:
[  157.612272]  dump_stack+0x1c9/0x2b4
[  157.615897]  ? dump_stack_print_info.cold.2+0x52/0x52
[  157.621096]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  157.626211]  should_fail.cold.4+0xa/0x11
[  157.630272]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  157.635568]  ? memset+0x31/0x40
[  157.638847]  ? perf_trace_lock+0x49d/0x920
[  157.643076]  ? do_raw_spin_unlock+0xa7/0x2f0
[  157.647502]  ? zap_class+0x740/0x740
[  157.651228]  ? kasan_check_write+0x14/0x20
[  157.655461]  ? finish_task_switch+0x2ca/0x870
[  157.659980]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  157.665084]  ? perf_trace_run_bpf_submit+0x269/0x3b0
[  157.670191]  __should_failslab+0x124/0x180
[  157.674420]  should_failslab+0x9/0x14
[  157.678217]  kmem_cache_alloc+0x47/0x760
[  157.682272]  ? rcu_note_context_switch+0x730/0x730
[  157.687223]  ? mempool_free+0x370/0x370
[  157.691198]  mempool_alloc_slab+0x44/0x60
[  157.695334]  mempool_alloc+0x193/0x4b0
[  157.699213]  ? mempool_destroy+0x30/0x30
[  157.703273]  ? is_bpf_text_address+0xd7/0x170
[  157.707793]  ? kernel_text_address+0x79/0xf0
[  157.712210]  ? __kernel_text_address+0xd/0x40
[  157.716713]  ? unwind_get_return_address+0x61/0xa0
[  157.721656]  bio_alloc_bioset+0x39c/0x6f0
[  157.725802]  ? bvec_alloc+0x2d0/0x2d0
[  157.729655]  submit_bh_wbc+0x14b/0x790
[  157.733631]  ? bio_free+0xf2/0x150
[  157.737171]  submit_bh+0x28/0x30
[  157.740539]  jbd2_write_superblock+0x58c/0xbb0
[  157.745109]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  157.749682]  ? jbd2_journal_abort+0x30/0x30
[  157.753992]  ? do_raw_spin_lock+0xc1/0x200
[  157.758224]  ? trace_hardirqs_off+0xd/0x10
[  157.762447]  ? _raw_spin_unlock_irqrestore+0x63/0xc0
[  157.767542]  ? debug_check_no_obj_freed+0x30b/0x595
[  157.772547]  ? trace_hardirqs_on+0xd/0x10
[  157.776700]  jbd2_journal_update_sb_log_tail+0x1ff/0x390
[  157.782228]  ? jbd2_journal_get_log_tail+0x550/0x550
[  157.787333]  ? trace_hardirqs_on+0xd/0x10
[  157.791488]  ? kmem_cache_free+0x22e/0x2d0
[  157.795724]  __jbd2_update_log_tail+0x13f/0x650
[  157.800403]  ? jbd2_journal_update_sb_log_tail+0x390/0x390
[  157.806113]  ? bio_put+0x183/0x1f0
[  157.809733]  ? bio_free+0x150/0x150
[  157.813369]  ? kasan_check_write+0x14/0x20
[  157.817611]  ? do_raw_read_unlock+0x3f/0x60
[  157.821944]  jbd2_cleanup_journal_tail+0x1a0/0x2c0
[  157.826870]  ? jbd2_journal_skip_recovery.cold.13+0x4d/0x4d
[  157.832760]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  157.837361]  ? kasan_check_write+0x14/0x20
[  157.841596]  ? do_raw_spin_lock+0xc1/0x200
[  157.845834]  jbd2_log_do_checkpoint+0xa19/0x1370
[  157.850596]  ? __jbd2_journal_remove_checkpoint+0x8c0/0x8c0
[  157.856302]  ? lock_acquire+0x1e4/0x540
[  157.860263]  ? jbd2_journal_flush+0x144/0x540
[  157.864757]  ? kasan_check_read+0x11/0x20
[  157.868892]  ? do_raw_spin_unlock+0xa7/0x2f0
[  157.873285]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  157.877858]  ? kasan_check_write+0x14/0x20
[  157.882107]  ? do_raw_spin_lock+0xc1/0x200
[  157.886339]  jbd2_journal_flush+0x156/0x540
[  157.890675]  ext4_change_inode_journal_flag+0x230/0x3e0
[  157.896133]  ext4_ioctl_setflags+0x5fd/0x7d0
[  157.900533]  ? ext4_ioc_getfsmap+0xed0/0xed0
[  157.904938]  ? down_read+0x1d0/0x1d0
[  157.908648]  ? __mnt_want_write_file+0xa2/0xc0
[  157.913231]  ext4_ioctl+0xe41/0x4210
[  157.916934]  ? zap_class+0x740/0x740
[  157.920644]  ? check_same_owner+0x340/0x340
[  157.924958]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  157.930486]  ? ext4_ioctl_group_add+0x560/0x560
[  157.935151]  ? perf_trace_lock+0xde/0x920
[  157.939299]  ? _kstrtoull+0x188/0x250
[  157.943089]  ? _parse_integer+0x190/0x190
[  157.947250]  ? zap_class+0x740/0x740
[  157.950957]  ? __check_object_size+0x9d/0x5f2
[  157.955465]  ? lock_acquire+0x1e4/0x540
[  157.959438]  ? __fget+0x4ac/0x740
[  157.962889]  ? lock_downgrade+0x8f0/0x8f0
[  157.967037]  ? lock_release+0xa30/0xa30
[  157.970998]  ? zap_class+0x740/0x740
[  157.974718]  ? __f_unlock_pos+0x19/0x20
[  157.978689]  ? __fget+0x4d5/0x740
[  157.982138]  ? ksys_dup3+0x690/0x690
[  157.985861]  ? kasan_check_write+0x14/0x20
[  157.990099]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  157.995036]  ? fsnotify+0xbac/0x14e0
[  157.998741]  ? vfs_write+0x2f3/0x560
[  158.002454]  ? ext4_ioctl_group_add+0x560/0x560
[  158.007122]  do_vfs_ioctl+0x1de/0x1720
[  158.011000]  ? fsnotify_first_mark+0x350/0x350
[  158.015579]  ? ioctl_preallocate+0x300/0x300
[  158.019976]  ? __fget_light+0x2f7/0x440
[  158.023942]  ? fget_raw+0x20/0x20
[  158.028274]  ? __sb_end_write+0xac/0xe0
[  158.032242]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  158.037777]  ? fput+0x130/0x1a0
[  158.041048]  ? ksys_write+0x1ae/0x260
[  158.044843]  ? security_file_ioctl+0x94/0xc0
[  158.049240]  ksys_ioctl+0xa9/0xd0
[  158.052699]  __x64_sys_ioctl+0x73/0xb0
[  158.056767]  do_syscall_64+0x1b9/0x820
[  158.060662]  ? finish_task_switch+0x1d3/0x870
[  158.066030]  ? syscall_return_slowpath+0x5e0/0x5e0
[  158.070978]  ? syscall_return_slowpath+0x31d/0x5e0
[  158.075905]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  158.080926]  ? prepare_exit_to_usermode+0x291/0x3b0
[  158.085930]  ? perf_trace_sys_enter+0xb10/0xb10
[  158.090589]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  158.095435]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  158.100609] RIP: 0033:0x455e29
[  158.103784] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 
[  158.123161] RSP: 002b:00007f8b507bcc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  158.130883] RAX: ffffffffffffffda RBX: 00007f8b507bd6d4 RCX: 0000000000455e29
[  158.138157] RDX: 0000000020000140 RSI: 0000000040086602 RDI: 0000000000000014
[  158.145434] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  158.152695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[  158.159962] R13: 00000000004bfc11 R14: 00000000004cf158 R15: 0000000000000020
18:18:54 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280))
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:54 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:54 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
modify_ldt$read_default(0x2, &(0x7f0000000300)=""/216, 0xd8)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = memfd_create(&(0x7f00000001c0)='nr0\x00', 0x3)
sendmsg$nl_netfilter(r1, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x23000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400000006fafa02337061d80000f0ff04fffff6"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0xc0)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000040)=0x9, 0xfffffffffffffca9)
ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000000)={'nr0\x00', 0x3bd7})
getsockopt$inet_opts(r1, 0x0, 0x9, &(0x7f0000000480)=""/237, &(0x7f0000000100)=0xed)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0)
write$P9_RREMOVE(r3, &(0x7f00000000c0)={0x7, 0x7b, 0x1}, 0x7)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000800)={{{@in=@loopback, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f00000006c0)=0x1)
eventfd(0x6)
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000002c0)={@loopback={0x0, 0x1}, 0x56, r4})

18:18:54 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x9c01}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:54 executing program 3:
pipe(&(0x7f0000000040)={0x0, <r0=>0x0})
fcntl$setpipe(r0, 0x407, 0xdb45aa1)
fcntl$setpipe(r0, 0x407, 0x0)

18:18:54 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:54 executing program 4:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000000)="240345", 0x3}], 0x1, 0x0)
ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000240)=""/246)
ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174)

18:18:54 executing program 5 (fault-call:5 fault-nth:33):
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:54 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:54 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:54 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0xf}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:54 executing program 3:
r0 = socket$inet(0x2, 0x2, 0x2000000088)
setsockopt$inet_udp_int(r0, 0x11, 0xa, &(0x7f0000000000)=0x1, 0x4)
sendto$inet(r0, &(0x7f0000000200), 0x0, 0x0, &(0x7f0000000280)={0x2, 0x8004e20}, 0x10)

18:18:54 executing program 4:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @hyper}, 0x10)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @my}, 0x10)

18:18:54 executing program 0:
getrlimit(0xc, &(0x7f0000000000))
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000040), 0x4)
syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1)

18:18:54 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086602, &(0x7f0000000140)=ANY=[])

18:18:54 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:55 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:55 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x0, [0x18]}, 0x2c)

18:18:55 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x8000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000040))

18:18:55 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d34")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:55 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:55 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0xf0ffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x34000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)={0x14, 0x21, 0x6ff, 0x0, 0x0, {0x4}}, 0x14}, 0x1}, 0x0)

18:18:55 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0xc028660f, &(0x7f0000000140)=ANY=[])

18:18:55 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000003000)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$KDGKBLED(r0, 0x40045109, &(0x7f000084dfff))

18:18:55 executing program 3:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
add_key(&(0x7f0000000080)='ceph\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a}, &(0x7f0000000000), 0x1fe, 0xffffffffffffffff)

[  159.236877] QAT: Invalid ioctl
[  159.240350] FAT-fs (loop1): bogus number of reserved sectors
[  159.246344] FAT-fs (loop1): Can't find a valid FAT filesystem
[  159.262590] QAT: Invalid ioctl
18:18:55 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x40086610, &(0x7f0000000140)=ANY=[])

18:18:55 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:55 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0xfffffff0}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  159.294539] autofs4:pid:9430:autofs_fill_super: called with bogus options
18:18:55 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$assume_authority(0x10, r0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x2900, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f00000001c0)={0x1fe, 0x0, &(0x7f0000ff9000/0x4000)=nil})
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x4)
r2 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x2, 0x16000)
setsockopt$inet6_udp_encap(r2, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x39b)

18:18:55 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
r1 = epoll_create(0x3ff)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080))
close(r0)

18:18:55 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:55 executing program 3:
syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000011c0), 0x0, &(0x7f0000001200)={[{@data_writeback='data=writeback', 0x2c}, {@data_ordered='data=ordered', 0x2c}, {@nodiscard='nodiscard', 0x2c}, {@norgrplvb='norgrplvb', 0x2c}]})

18:18:55 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

[  159.376637] EXT4-fs warning (device sda1): ext4_resize_fs:1916: can't read last block, resize aborted
[  159.432820] Unknown ioctl 1074835010
[  159.447860] Unknown ioctl 1074835010
18:18:56 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x9effffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  159.484635] FAT-fs (loop1): bogus number of reserved sectors
[  159.490544] FAT-fs (loop1): Can't find a valid FAT filesystem
[  159.500695] gfs2: not a GFS2 filesystem
[  159.513064] gfs2: not a GFS2 filesystem
[  159.570747] autofs4:pid:9471:autofs_fill_super: called with bogus options
18:18:56 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readahead(r0, 0xfffffffffffffff8, 0x5)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r2 = dup2(r0, r1)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000040)={<r3=>0x0, 0x7fff, 0x10}, &(0x7f0000000080)=0xc)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={<r4=>0x0, 0x8001, 0x1}, &(0x7f0000000100)=0xc)
getsockopt$inet_sctp_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000240)={r3, 0x101, 0x9, 0x81, 0x101, 0x3, 0x1000000000, 0xe6, {r4, @in={{0x2, 0x4e21}}, 0xffffffff, 0x0, 0x7fff, 0x8, 0xfff}}, &(0x7f00000001c0)=0xb0)
ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)
socketpair(0x9, 0x0, 0x6, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$VHOST_SET_OWNER(r5, 0xaf01, 0x0)

18:18:56 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d34")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:56 executing program 4:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000280)=""/228, &(0x7f0000000080)=0xe4)

18:18:56 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00003cefe4)={&(0x7f0000000300)={0x10, 0x34000}, 0xc, &(0x7f0000007ff0)={&(0x7f0000000180)={0x14, 0x25, 0x6fd, 0x0, 0x0, {0x2003}}, 0x14}, 0x1}, 0x0)

18:18:56 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0xc0185879, &(0x7f0000000140)=ANY=[])

18:18:56 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x0, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:56 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x3000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:56 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:56 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x0, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:56 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0x5460, &(0x7f0000000140)=ANY=[])

18:18:56 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0xf000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:56 executing program 3:
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc))
read(r1, &(0x7f0000000100)=""/52, 0x34)
r2 = syz_open_pts(r1, 0x2)
fcntl$dupfd(r1, 0x0, r1)
dup3(r2, r1, 0x0)
write(r1, &(0x7f0000c34fff), 0xffffff0b)
write(r1, &(0x7f0000000040), 0x0)
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f00000000c0))
tkill(r0, 0x1000000000016)

[  160.202345] IPVS: length: 228 != 24
[  160.207531] FAT-fs (loop1): bogus number of reserved sectors
[  160.213438] FAT-fs (loop1): Can't find a valid FAT filesystem
[  160.237206] IPVS: length: 228 != 24
18:18:56 executing program 4:
r0 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0)
fadvise64(r0, 0x0, 0x0, 0x5)

18:18:56 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x0, 0x41, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

[  160.283316] autofs4:pid:9500:autofs_fill_super: called with bogus options
18:18:56 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x80, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000080)={'gre0\x00', {0x2, 0x4e23, @loopback=0x7f000001}})
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_buf(r1, 0x29, 0x1f, &(0x7f00000000c0)="e4bac734010ba0a77dfe5742f6e548328ed1f4537090af2a501566348e92bb2a6a1ad3e2a50a600bae68640891d21579e710a5700188a5dd53ffacf77c413e55956ef1817bc26a23854ca5a9ad5a450f24510791ad29bb3fcfbef60e3cb2358c3cc75c", 0x63)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x210240, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000340)={&(0x7f00000001c0)='./file0\x00', 0x0, 0x18}, 0x10)
shutdown(r0, 0x0)
statx(r2, &(0x7f0000000040)='./file0\x00', 0x100, 0x0, &(0x7f0000000240))
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r3, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:56 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:56 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x9c010000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

[  160.440887] FAT-fs (loop1): bogus number of reserved sectors
[  160.446801] FAT-fs (loop1): Can't find a valid FAT filesystem
[  160.469045] autofs4:pid:9549:autofs_fill_super: called with bogus options
18:18:57 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x2f5}], 0x30}, 0x0)
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d34")
recvmsg(r1, &(0x7f0000000480)={&(0x7f0000000200)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f00000003c0)=""/140, 0x8c}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/215, 0xd7}, {&(0x7f0000000680)=""/137, 0x89}, {&(0x7f0000000300)=""/38, 0x26}, {&(0x7f0000000740)=""/130, 0x82}], 0x7, &(0x7f00000008c0)=""/233, 0xe9}, 0x0)

18:18:57 executing program 4:
r0 = memfd_create(&(0x7f000000e000)='\x00 ', 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x101801)
r2 = dup2(r1, r0)
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={0x23}, 0x8, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f000002b000)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000080), 0xffffff17)

18:18:57 executing program 5:
ioctl$TIOCLINUX6(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0xffffffffffffffc1})
r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[])
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$fiemap(r1, 0xc0045877, &(0x7f0000000140)=ANY=[])

18:18:57 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

18:18:57 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x200000, 0x0)
ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x7fc)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x4, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

18:18:57 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0xf0ffffffffffff}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000500)='autofs\x00', 0x0, 0x0)

18:18:57 executing program 6:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ppoll(&(0x7f0000000000)=[{r0}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000380), 0x8)

[  161.158862] FAT-fs (loop1): bogus number of reserved sectors
[  161.164776] FAT-fs (loop1): Can't find a valid FAT filesystem
18:18:57 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0xfffff000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=@bridge_getlink={0x20, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x20}, 0x1}, 0x0)

18:18:57 executing program 0:
r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x5, 0x14307c)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x10000}, 0x4)
fcntl$dupfd(r1, 0x406, r0)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000040)=0x8001, 0x4)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000080)={'\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}})
setsockopt$nfc_llcp_NFC_LLCP_RW(r2, 0x118, 0x0, &(0x7f0000000200), 0x1c8)

[  161.222296] autofs4:pid:9571:autofs_fill_super: called with bogus options
[  431.071208] INFO: task khugepaged:903 blocked for more than 140 seconds.
[  431.078130]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  431.083864] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  431.091932] khugepaged      D23632   903      2 0x80000000
[  431.097587] Call Trace:
[  431.100368]  __schedule+0x87c/0x1ed0
[  431.104154]  ? __enqueue_entity+0x10d/0x1f0
[  431.108512]  ? __sched_text_start+0x8/0x8
[  431.112676]  ? put_prev_task_fair+0x80/0x80
[  431.117006]  ? detach_entity_cfs_rq+0x6e3/0xf50
[  431.121712]  ? switched_to_fair+0xa0/0xa0
[  431.125942]  ? perf_trace_lock+0xde/0x920
[  431.130112]  schedule+0xfb/0x450
[  431.133496]  ? lock_downgrade+0x8f0/0x8f0
[  431.137663]  ? __schedule+0x1ed0/0x1ed0
[  431.141735]  ? kasan_check_read+0x11/0x20
[  431.145928]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.150358]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.154946]  ? kasan_check_write+0x14/0x20
[  431.159193]  ? do_raw_spin_lock+0xc1/0x200
[  431.163445]  __rwsem_down_write_failed_common+0x95d/0x1630
[  431.169093]  ? rwsem_spin_on_owner+0xa40/0xa40
[  431.173943]  ? dequeue_task_fair+0xa10/0xa10
[  431.178358]  ? trace_hardirqs_on+0x10/0x10
[  431.182679]  ? should_fail+0x246/0xd86
[  431.186592]  ? trace_hardirqs_on+0x10/0x10
[  431.190842]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.195489]  ? __mem_cgroup_largest_soft_limit_node.part.65+0x7f0/0x7f0
[  431.202330]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  431.207888]  ? __collapse_huge_page_swapin+0x85e/0x1670
[  431.213271]  ? collapse_shmem+0x4810/0x4810
[  431.217594]  ? lock_acquire+0x1e4/0x540
[  431.221573]  ? perf_trace_lock+0xde/0x920
[  431.225737]  ? zap_class+0x740/0x740
[  431.229456]  ? get_mem_cgroup_from_mm+0x209/0x440
[  431.234302]  ? get_mem_cgroup_from_page+0x190/0x190
[  431.239326]  ? collapse_huge_page+0x1ed/0x2140
[  431.243925]  ? lock_acquire+0x1e4/0x540
[  431.247907]  ? collapse_huge_page+0x2b9/0x2140
[  431.252588]  ? lock_release+0xa30/0xa30
[  431.256606]  ? check_same_owner+0x340/0x340
[  431.260944]  rwsem_down_write_failed+0xe/0x10
[  431.265454]  ? rwsem_down_write_failed+0xe/0x10
[  431.270328]  call_rwsem_down_write_failed+0x17/0x30
[  431.275366]  down_write+0xaa/0x130
[  431.278921]  ? collapse_huge_page+0x2b9/0x2140
[  431.284134]  ? down_read+0x1d0/0x1d0
[  431.287880]  collapse_huge_page+0x2b9/0x2140
[  431.292314]  ? zap_class+0x740/0x740
[  431.296061]  ? __collapse_huge_page_swapin+0x1670/0x1670
[  431.301691]  ? lock_acquire+0x1e4/0x540
[  431.305687]  ? khugepaged_scan_mm_slot+0x2c4/0x3200
[  431.310798]  ? lock_release+0xa30/0xa30
[  431.314779]  ? lock_acquire+0x1e4/0x540
[  431.318766]  ? khugepaged_scan_mm_slot+0x2072/0x3200
[  431.323885]  ? lock_downgrade+0x8f0/0x8f0
[  431.328048]  ? kasan_check_read+0x11/0x20
[  431.332308]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.336717]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.341368]  ? __pte_alloc_kernel+0x2e0/0x2e0
[  431.345888]  ? kasan_check_write+0x14/0x20
[  431.350129]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  431.355674]  ? khugepaged_find_target_node+0x19a/0x1e0
[  431.360967]  khugepaged_scan_mm_slot+0x2096/0x3200
[  431.365914]  ? collapse_huge_page+0x2140/0x2140
[  431.370635]  ? kasan_check_read+0x11/0x20
[  431.374995]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.379469]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.384273]  ? lock_acquire+0x1e4/0x540
[  431.388274]  ? lock_downgrade+0x8f0/0x8f0
[  431.392437]  ? kasan_check_read+0x11/0x20
[  431.396604]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.401202]  ? kasan_check_write+0x14/0x20
[  431.405448]  ? do_raw_spin_lock+0xc1/0x200
[  431.409776]  ? trace_hardirqs_on+0x10/0x10
[  431.414207]  ? finish_wait+0x25d/0x430
[  431.418114]  ? remove_wait_queue+0x360/0x360
[  431.422542]  ? check_same_owner+0x340/0x340
[  431.426937]  ? rcu_note_context_switch+0x730/0x730
[  431.431895]  ? khugepaged_wait_work+0x170/0x980
[  431.436569]  ? trace_event_raw_event_mm_collapse_huge_page_isolate+0x390/0x390
[  431.443962]  ? perf_trace_lock+0x920/0x920
[  431.448214]  ? lock_repin_lock+0x430/0x430
[  431.452483]  ? kasan_check_write+0x14/0x20
[  431.456820]  ? finish_wait+0x430/0x430
[  431.460723]  ? lock_acquire+0x1e4/0x540
[  431.464699]  ? lock_downgrade+0x8f0/0x8f0
[  431.468972]  ? lock_release+0xa30/0xa30
[  431.472944]  ? check_same_owner+0x340/0x340
[  431.477267]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.481764]  ? kasan_check_write+0x14/0x20
[  431.486028]  ? do_raw_spin_lock+0xc1/0x200
[  431.490361]  khugepaged+0x9aa/0xce0
[  431.494014]  ? khugepaged_scan_mm_slot+0x3200/0x3200
[  431.499126]  ? find_held_lock+0x36/0x1c0
[  431.503196]  ? find_held_lock+0x36/0x1c0
[  431.507355]  ? kasan_check_read+0x11/0x20
[  431.511521]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.515941]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  431.521115]  ? __kthread_parkme+0x58/0x1b0
[  431.525371]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  431.530404]  ? trace_hardirqs_on+0xd/0x10
[  431.534554]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  431.540101]  ? __kthread_parkme+0x106/0x1b0
[  431.544434]  kthread+0x345/0x410
[  431.547811]  ? khugepaged_scan_mm_slot+0x3200/0x3200
[  431.552999]  ? kthread_bind+0x40/0x40
[  431.556805]  ret_from_fork+0x3a/0x50
[  431.560563] INFO: task syz-fuzzer:4450 blocked for more than 140 seconds.
[  431.567589]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  431.573218] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  431.581201] syz-fuzzer      D20320  4450   4446 0x00000000
[  431.586860] Call Trace:
[  431.589467]  __schedule+0x87c/0x1ed0
[  431.593203]  ? __sched_text_start+0x8/0x8
[  431.597367]  ? trace_hardirqs_on+0x10/0x10
[  431.601597]  ? select_task_rq_fair+0x73b/0x32a0
[  431.606293]  ? lock_downgrade+0x8f0/0x8f0
[  431.610449]  ? account_entity_enqueue+0x3ec/0x700
[  431.615301]  ? __enqueue_entity+0x10d/0x1f0
[  431.619629]  ? perf_trace_lock+0xde/0x920
[  431.623791]  schedule+0xfb/0x450
[  431.627952]  ? lock_downgrade+0x8f0/0x8f0
[  431.632215]  ? __schedule+0x1ed0/0x1ed0
[  431.636209]  ? kasan_check_read+0x11/0x20
[  431.640361]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.644804]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.649498]  ? kasan_check_write+0x14/0x20
[  431.653732]  ? do_raw_spin_lock+0xc1/0x200
[  431.657977]  rwsem_down_read_failed+0x362/0x600
[  431.662660]  ? rwsem_down_write_failed_killable+0x10/0x10
[  431.668208]  ? lock_acquire+0x1e4/0x540
[  431.672261]  ? rcuwait_wake_up+0x1a3/0x2f0
[  431.676502]  ? lock_downgrade+0x8f0/0x8f0
[  431.680645]  ? lock_release+0xa30/0xa30
[  431.684625]  ? try_to_wake_up+0x10a/0x12b0
[  431.688887]  call_rwsem_down_read_failed+0x18/0x30
[  431.693844]  __percpu_down_read+0x16e/0x210
[  431.698193]  ? percpu_free_rwsem+0xa0/0xa0
[  431.702517]  __sb_start_write+0x2d7/0x300
[  431.706719]  ext4_page_mkwrite+0x1d0/0x1430
[  431.711081]  ? ext4_change_inode_journal_flag+0x3e0/0x3e0
[  431.716630]  ? do_wp_page+0xf70/0x19b0
[  431.720548]  do_page_mkwrite+0x14e/0x520
[  431.724633]  ? print_bad_pte+0x5f0/0x5f0
[  431.728706]  ? do_raw_spin_unlock+0xa7/0x2f0
[  431.733137]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  431.737737]  ? __pte_alloc_kernel+0x2e0/0x2e0
[  431.742241]  do_wp_page+0xf78/0x19b0
[  431.745961]  ? finish_mkwrite_fault+0x610/0x610
[  431.750630]  ? trace_hardirqs_on+0x10/0x10
[  431.754903]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  431.759981]  ? lock_acquire+0x1e4/0x540
[  431.763975]  ? __handle_mm_fault+0x1cef/0x4480
[  431.768569]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  431.774167]  ? lock_release+0xa30/0xa30
[  431.778174]  ? pmd_val+0x88/0x100
[  431.781650]  ? add_mm_counter_fast+0xd0/0xd0
[  431.786058]  ? kasan_check_write+0x14/0x20
[  431.790656]  ? do_raw_spin_lock+0xc1/0x200
[  431.794904]  __handle_mm_fault+0x2aab/0x4480
[  431.799329]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[  431.804194]  ? lock_acquire+0x1e4/0x540
[  431.808212]  ? handle_mm_fault+0x417/0xc80
[  431.812469]  ? lock_downgrade+0x8f0/0x8f0
[  431.816621]  ? lock_release+0xa30/0xa30
[  431.820606]  ? lock_release+0xa30/0xa30
[  431.824589]  ? mem_cgroup_from_task+0xcb/0x1f0
[  431.829200]  ? mem_cgroup_css_online+0x3c0/0x3c0
[  431.833973]  handle_mm_fault+0x53e/0xc80
[  431.838051]  ? __handle_mm_fault+0x4480/0x4480
[  431.842705]  ? find_vma+0x34/0x190
[  431.846310]  __do_page_fault+0x620/0xe50
[  431.850391]  ? mm_fault_error+0x380/0x380
[  431.854548]  ? __ia32_sys_read+0xb0/0xb0
[  431.858628]  do_page_fault+0xf6/0x8c0
[  431.862432]  ? vmalloc_sync_all+0x30/0x30
[  431.866589]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  431.872177]  ? do_syscall_64+0x497/0x820
[  431.876243]  ? syscall_slow_exit_work+0x500/0x500
[  431.881173]  ? syscall_return_slowpath+0x5e0/0x5e0
[  431.886113]  ? syscall_return_slowpath+0x31d/0x5e0
[  431.891050]  ? prepare_exit_to_usermode+0x291/0x3b0
[  431.896081]  ? page_fault+0x8/0x30
[  431.899632]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  431.904516]  ? page_fault+0x8/0x30
[  431.908062]  page_fault+0x1e/0x30
[  431.911522] RIP: 0033:0x70b5e1
[  431.914701] Code: Bad RIP value.
[  431.918085] RSP: 002b:000000c42a8c0858 EFLAGS: 00010212
[  431.923446] RAX: 000000c42a8c0fa0 RBX: 000000c42a8c0fa8 RCX: 00007fb4345a4000
[  431.930740] RDX: fffffffffffffffe RSI: 0000000001f6f678 RDI: 000000c42a8c0868
[  431.938019] RBP: 000000c42a8c0868 R08: 0000000000000000 R09: 0000000000000000
[  431.945403] R10: 000000000095bf8a R11: 0000000000000004 R12: 0000000000000000
[  431.952683] R13: 0000000000000020 R14: 0000000000000013 R15: 000000c42a8c1110
[  431.960108] INFO: task syz-fuzzer:4453 blocked for more than 140 seconds.
[  431.967061]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  431.973185] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  431.981176] syz-fuzzer      D19984  4453   4446 0x00000000
[  431.986839] Call Trace:
[  431.989431]  __schedule+0x87c/0x1ed0
[  431.993177]  ? __sched_text_start+0x8/0x8
[  431.997428]  ? trace_hardirqs_on+0x10/0x10
[  432.001684]  ? select_task_rq_fair+0x73b/0x32a0
[  432.006556]  ? lock_downgrade+0x8f0/0x8f0
[  432.010981]  ? account_entity_enqueue+0x3ec/0x700
[  432.015851]  ? __enqueue_entity+0x10d/0x1f0
[  432.020519]  ? perf_trace_lock+0xde/0x920
[  432.024802]  schedule+0xfb/0x450
[  432.028182]  ? lock_downgrade+0x8f0/0x8f0
[  432.032338]  ? __schedule+0x1ed0/0x1ed0
[  432.036331]  ? kasan_check_read+0x11/0x20
[  432.040497]  ? do_raw_spin_unlock+0xa7/0x2f0
[  432.044913]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  432.049505]  ? kasan_check_write+0x14/0x20
[  432.053760]  ? do_raw_spin_lock+0xc1/0x200
[  432.058092]  rwsem_down_read_failed+0x362/0x600
[  432.062777]  ? rwsem_down_write_failed_killable+0x10/0x10
[  432.068404]  ? lock_acquire+0x1e4/0x540
[  432.072383]  ? rcuwait_wake_up+0x1a3/0x2f0
[  432.076627]  ? lock_downgrade+0x8f0/0x8f0
[  432.080792]  ? lock_release+0xa30/0xa30
[  432.084771]  ? lock_downgrade+0x8f0/0x8f0
[  432.088947]  call_rwsem_down_read_failed+0x18/0x30
[  432.093883]  __percpu_down_read+0x16e/0x210
[  432.098211]  ? percpu_free_rwsem+0xa0/0xa0
[  432.102460]  __sb_start_write+0x2d7/0x300
[  432.106619]  ext4_page_mkwrite+0x1d0/0x1430
[  432.110950]  ? ext4_change_inode_journal_flag+0x3e0/0x3e0
[  432.116497]  ? do_wp_page+0xf70/0x19b0
[  432.120393]  do_page_mkwrite+0x14e/0x520
[  432.124462]  ? print_bad_pte+0x5f0/0x5f0
[  432.128540]  ? do_raw_spin_unlock+0xa7/0x2f0
[  432.132948]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  432.137525]  ? __pte_alloc_kernel+0x2e0/0x2e0
[  432.142035]  do_wp_page+0xf78/0x19b0
[  432.145749]  ? finish_mkwrite_fault+0x610/0x610
[  432.150436]  ? trace_hardirqs_on+0x10/0x10
[  432.154684]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  432.159731]  ? lock_acquire+0x1e4/0x540
[  432.163723]  ? __handle_mm_fault+0x1cef/0x4480
[  432.168328]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  432.173970]  ? lock_release+0xa30/0xa30
[  432.177957]  ? pmd_val+0x88/0x100
[  432.181418]  ? add_mm_counter_fast+0xd0/0xd0
[  432.185840]  ? kasan_check_write+0x14/0x20
[  432.190076]  ? do_raw_spin_lock+0xc1/0x200
[  432.194326]  __handle_mm_fault+0x2aab/0x4480
[  432.198884]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[  432.203834]  ? lock_acquire+0x1e4/0x540
[  432.207830]  ? handle_mm_fault+0x417/0xc80
[  432.212077]  ? lock_downgrade+0x8f0/0x8f0
[  432.216239]  ? lock_release+0xa30/0xa30
[  432.220242]  ? lock_release+0xa30/0xa30
[  432.224380]  ? mem_cgroup_from_task+0xcb/0x1f0
[  432.228969]  ? mem_cgroup_css_online+0x3c0/0x3c0
[  432.233742]  handle_mm_fault+0x53e/0xc80
[  432.237818]  ? __handle_mm_fault+0x4480/0x4480
[  432.242415]  ? find_vma+0x34/0x190
[  432.245966]  __do_page_fault+0x620/0xe50
[  432.250247]  ? mm_fault_error+0x380/0x380
[  432.254460]  ? __ia32_sys_read+0xb0/0xb0
[  432.258747]  do_page_fault+0xf6/0x8c0
[  432.262578]  ? vmalloc_sync_all+0x30/0x30
[  432.266763]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  432.272589]  ? do_syscall_64+0x497/0x820
[  432.276650]  ? syscall_slow_exit_work+0x500/0x500
[  432.281524]  ? syscall_return_slowpath+0x5e0/0x5e0
[  432.286501]  ? prepare_exit_to_usermode+0x291/0x3b0
[  432.291753]  ? page_fault+0x8/0x30
[  432.295372]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  432.300234]  ? page_fault+0x8/0x30
[  432.303780]  page_fault+0x1e/0x30
[  432.307251] RIP: 0033:0x70b5e1
[  432.310438] Code: Bad RIP value.
[  432.313818] RSP: 002b:000000c42ab111b8 EFLAGS: 00010212
[  432.319402] RAX: 000000c42ab117f0 RBX: 000000c42ab117f8 RCX: 00007fb4369a4000
[  432.326705] RDX: fffffffffffffffe RSI: 00000000020ad198 RDI: 000000c42ab111c8
[  432.333994] RBP: 000000c42ab111c8 R08: 0000000000000000 R09: 0000000000000000
[  432.341288] R10: 000000000095bf8a R11: 0000000000000004 R12: 0000000000000000
[  432.348576] R13: 0000000000000020 R14: 0000000000000013 R15: 000000c42ab11970
[  432.356126] INFO: task syz-executor2:4477 blocked for more than 140 seconds.
[  432.363322]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  432.368953] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  432.376922] syz-executor2   D22032  4477   4470 0x00000000
[  432.382684] Call Trace:
[  432.385288]  __schedule+0x87c/0x1ed0
[  432.389028]  ? kasan_check_read+0x11/0x20
[  432.393296]  ? __sched_text_start+0x8/0x8
[  432.397453]  ? perf_trace_lock+0xde/0x920
[  432.401663]  ? is_bpf_text_address+0xd7/0x170
[  432.406174]  ? perf_trace_lock+0xde/0x920
[  432.410391]  ? path_parentat.isra.43+0x20/0x160
[  432.415072]  ? zap_class+0x740/0x740
[  432.418799]  schedule+0xfb/0x450
[  432.422170]  ? lock_downgrade+0x8f0/0x8f0
[  432.426592]  ? __schedule+0x1ed0/0x1ed0
[  432.430577]  ? kasan_check_read+0x11/0x20
[  432.434766]  ? do_raw_spin_unlock+0xa7/0x2f0
[  432.439199]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  432.443830]  ? kasan_check_write+0x14/0x20
[  432.448077]  ? do_raw_spin_lock+0xc1/0x200
[  432.452316]  rwsem_down_read_failed+0x362/0x600
[  432.457028]  ? rwsem_down_write_failed_killable+0x10/0x10
[  432.463045]  ? lock_acquire+0x1e4/0x540
[  432.467054]  ? rcuwait_wake_up+0x1a3/0x2f0
[  432.471309]  ? lock_downgrade+0x8f0/0x8f0
[  432.475491]  ? lock_release+0xa30/0xa30
[  432.479487]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  432.484555]  ? mntput+0x74/0xa0
[  432.487844]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  432.493472]  ? terminate_walk+0x20a/0x5e0
[  432.497629]  ? rcuwait_wake_up+0x1cc/0x2f0
[  432.502053]  call_rwsem_down_read_failed+0x18/0x30
[  432.507095]  __percpu_down_read+0x16e/0x210
[  432.511606]  ? percpu_free_rwsem+0xa0/0xa0
[  432.515853]  __sb_start_write+0x2d7/0x300
[  432.520094]  mnt_want_write+0x3f/0xc0
[  432.523894]  do_unlinkat+0x2b7/0xa30
[  432.527634]  ? kasan_check_read+0x11/0x20
[  432.531791]  ? __ia32_sys_rmdir+0x40/0x40
[  432.535942]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  432.541482]  ? strncpy_from_user+0x3be/0x510
[  432.546162]  ? mpi_free.cold.1+0x19/0x19
[  432.550587]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  432.556139]  ? getname_flags+0x26e/0x5a0
[  432.560332]  __x64_sys_unlink+0x42/0x50
[  432.564311]  do_syscall_64+0x1b9/0x820
[  432.568291]  ? syscall_slow_exit_work+0x500/0x500
[  432.573134]  ? syscall_return_slowpath+0x5e0/0x5e0
[  432.578078]  ? syscall_return_slowpath+0x31d/0x5e0
[  432.583030]  ? prepare_exit_to_usermode+0x291/0x3b0
[  432.588053]  ? perf_trace_sys_enter+0xb10/0xb10
[  432.592726]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  432.597673]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  432.602950] RIP: 0033:0x455b77
[  432.606137] Code: Bad RIP value.
[  432.609516] RSP: 002b:00007ffc9d1d83f8 EFLAGS: 00000202 ORIG_RAX: 0000000000000057
[  432.617327] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000455b77
[  432.624603] RDX: 00007ffc9d1d8400 RSI: 00007ffc9d1d8490 RDI: 00007ffc9d1d8490
[  432.631884] RBP: 00007ffc9d1da1a0 R08: 0000000000000000 R09: 000000000000000c
[  432.639156] R10: 0000000000000006 R11: 0000000000000202 R12: 0000000001305940
[  432.646432] R13: 0000000000000000 R14: 00007ffc9d1d9b70 R15: 0000000000702140
[  432.653797] INFO: task syz-executor0:4478 blocked for more than 140 seconds.
[  432.661235]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  432.666873] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  432.674841] syz-executor0   D22344  4478   4469 0x00000000
[  432.680476] Call Trace:
[  432.683065]  __schedule+0x87c/0x1ed0
[  432.686810]  ? __sched_text_start+0x8/0x8
[  432.691021]  ? __perf_event_task_sched_in+0x24f/0xbb0
[  432.696228]  ? perf_trace_lock+0xde/0x920
[  432.700379]  ? perf_sched_cb_inc+0x2e0/0x2e0
[  432.704991]  schedule+0xfb/0x450
[  432.708366]  ? lock_downgrade+0x8f0/0x8f0
[  432.712526]  ? __schedule+0x1ed0/0x1ed0
[  432.716519]  ? kasan_check_read+0x11/0x20
[  432.720676]  ? do_raw_spin_unlock+0xa7/0x2f0
[  432.725098]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  432.729680]  ? kasan_check_write+0x14/0x20
[  432.733919]  ? do_raw_spin_lock+0xc1/0x200
[  432.738152]  rwsem_down_read_failed+0x362/0x600
[  432.742826]  ? rwsem_down_write_failed_killable+0x10/0x10
[  432.748368]  ? lock_acquire+0x1e4/0x540
[  432.752355]  ? rcuwait_wake_up+0x1a3/0x2f0
[  432.756595]  ? lock_downgrade+0x8f0/0x8f0
[  432.760743]  ? lock_release+0xa30/0xa30
[  432.764714]  ? __sched_text_start+0x8/0x8
[  432.769010]  ? terminate_walk+0x20a/0x5e0
[  432.773165]  ? rcuwait_wake_up+0x1cc/0x2f0
[  432.777408]  call_rwsem_down_read_failed+0x18/0x30
[  432.782338]  __percpu_down_read+0x16e/0x210
[  432.786694]  ? percpu_free_rwsem+0xa0/0xa0
[  432.790944]  __sb_start_write+0x2d7/0x300
[  432.795107]  mnt_want_write+0x3f/0xc0
[  432.798908]  do_unlinkat+0x2b7/0xa30
[  432.802807]  ? do_raw_spin_unlock+0xa7/0x2f0
[  432.807215]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  432.811818]  ? __ia32_sys_rmdir+0x40/0x40
[  432.815980]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  432.821531]  ? strncpy_from_user+0x3be/0x510
[  432.825960]  ? mpi_free.cold.1+0x19/0x19
[  432.830033]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  432.835573]  ? getname_flags+0x26e/0x5a0
[  432.839697]  __x64_sys_unlink+0x42/0x50
[  432.843682]  do_syscall_64+0x1b9/0x820
[  432.847577]  ? syscall_slow_exit_work+0x500/0x500
[  432.852527]  ? syscall_return_slowpath+0x5e0/0x5e0
[  432.857467]  ? syscall_return_slowpath+0x31d/0x5e0
[  432.862414]  ? prepare_exit_to_usermode+0x291/0x3b0
[  432.867438]  ? perf_trace_sys_enter+0xb10/0xb10
[  432.872114]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  432.876972]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  432.882167] RIP: 0033:0x455b77
[  432.885364] Code: Bad RIP value.
[  432.888749] RSP: 002b:00007ffee5aa8238 EFLAGS: 00000202 ORIG_RAX: 0000000000000057
[  432.896477] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000455b77
[  432.903851] RDX: 00007ffee5aa8240 RSI: 00007ffee5aa82d0 RDI: 00007ffee5aa82d0
[  432.911133] RBP: 00007ffee5aa9fe0 R08: 0000000000000000 R09: 000000000000000c
[  432.918420] R10: 0000000000000006 R11: 0000000000000202 R12: 0000000001db0940
[  432.925777] R13: 0000000000000000 R14: 00007ffee5aa99b0 R15: 0000000000702140
[  432.933055] INFO: task syz-executor3:4482 blocked for more than 140 seconds.
[  432.940236]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  432.945849] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  432.953819] syz-executor3   D22032  4482   4472 0x00000000
[  432.959461] Call Trace:
[  432.962057]  __schedule+0x87c/0x1ed0
[  432.965782]  ? kasan_check_read+0x11/0x20
[  432.969949]  ? __sched_text_start+0x8/0x8
[  432.974209]  ? perf_trace_lock+0xde/0x920
[  432.978362]  ? is_bpf_text_address+0xd7/0x170
[  432.982855]  ? perf_trace_lock+0xde/0x920
[  432.987009]  ? path_parentat.isra.43+0x20/0x160
[  432.991689]  ? zap_class+0x740/0x740
[  432.995418]  schedule+0xfb/0x450
[  432.998786]  ? lock_downgrade+0x8f0/0x8f0
[  433.002945]  ? __schedule+0x1ed0/0x1ed0
[  433.006921]  ? kasan_check_read+0x11/0x20
[  433.011074]  ? do_raw_spin_unlock+0xa7/0x2f0
[  433.015575]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.020159]  ? kasan_check_write+0x14/0x20
[  433.024391]  ? do_raw_spin_lock+0xc1/0x200
[  433.028648]  rwsem_down_read_failed+0x362/0x600
[  433.033320]  ? rwsem_down_write_failed_killable+0x10/0x10
[  433.038877]  ? lock_acquire+0x1e4/0x540
[  433.042850]  ? rcuwait_wake_up+0x1a3/0x2f0
[  433.047111]  ? lock_downgrade+0x8f0/0x8f0
[  433.051354]  ? lock_release+0xa30/0xa30
[  433.055362]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  433.060478]  ? mntput+0x74/0xa0
[  433.063819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  433.071286]  ? terminate_walk+0x20a/0x5e0
[  433.075481]  ? rcuwait_wake_up+0x1cc/0x2f0
[  433.079764]  call_rwsem_down_read_failed+0x18/0x30
[  433.084735]  __percpu_down_read+0x16e/0x210
[  433.089077]  ? percpu_free_rwsem+0xa0/0xa0
[  433.093329]  __sb_start_write+0x2d7/0x300
[  433.097491]  mnt_want_write+0x3f/0xc0
[  433.101334]  do_unlinkat+0x2b7/0xa30
[  433.105061]  ? do_raw_spin_unlock+0xa7/0x2f0
[  433.109485]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.114090]  ? __ia32_sys_rmdir+0x40/0x40
[  433.118249]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  433.123798]  ? strncpy_from_user+0x3be/0x510
[  433.128254]  ? mpi_free.cold.1+0x19/0x19
[  433.132339]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  433.137888]  ? getname_flags+0x26e/0x5a0
[  433.142070]  __x64_sys_unlink+0x42/0x50
[  433.146097]  do_syscall_64+0x1b9/0x820
[  433.149994]  ? syscall_slow_exit_work+0x500/0x500
[  433.154872]  ? syscall_return_slowpath+0x5e0/0x5e0
[  433.159843]  ? syscall_return_slowpath+0x31d/0x5e0
[  433.164808]  ? prepare_exit_to_usermode+0x291/0x3b0
[  433.169849]  ? perf_trace_sys_enter+0xb10/0xb10
[  433.174536]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  433.179396]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  433.184602] RIP: 0033:0x455b77
[  433.187805] Code: Bad RIP value.
[  433.191185] RSP: 002b:00007ffe9e8c6448 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[  433.198987] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000455b77
[  433.206272] RDX: 00007ffe9e8c6450 RSI: 00007ffe9e8c64e0 RDI: 00007ffe9e8c64e0
[  433.213545] RBP: 00007ffe9e8c81f0 R08: 0000000000000000 R09: 000000000000000c
[  433.220830] R10: 0000000000000006 R11: 0000000000000206 R12: 0000000001228940
[  433.228099] R13: 0000000000000000 R14: 00007ffe9e8c7bc0 R15: 0000000000702140
[  433.235743] INFO: task syz-executor4:4483 blocked for more than 140 seconds.
[  433.242944]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  433.248571] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  433.256546] syz-executor4   D21352  4483   4474 0x00000000
[  433.262207] Call Trace:
[  433.264811]  __schedule+0x87c/0x1ed0
[  433.268560]  ? __sched_text_start+0x8/0x8
[  433.272725]  ? __perf_event_task_sched_in+0x24f/0xbb0
[  433.277923]  ? perf_trace_lock+0xde/0x920
[  433.282089]  ? perf_sched_cb_inc+0x2e0/0x2e0
[  433.286530]  schedule+0xfb/0x450
[  433.289914]  ? lock_downgrade+0x8f0/0x8f0
[  433.294076]  ? __schedule+0x1ed0/0x1ed0
[  433.298075]  ? kasan_check_read+0x11/0x20
[  433.302234]  ? do_raw_spin_unlock+0xa7/0x2f0
[  433.306655]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.311353]  ? kasan_check_write+0x14/0x20
[  433.315857]  ? do_raw_spin_lock+0xc1/0x200
[  433.320127]  rwsem_down_read_failed+0x362/0x600
[  433.324815]  ? rwsem_down_write_failed_killable+0x10/0x10
[  433.330368]  ? lock_acquire+0x1e4/0x540
[  433.334352]  ? rcuwait_wake_up+0x1a3/0x2f0
[  433.338610]  ? lock_downgrade+0x8f0/0x8f0
[  433.342769]  ? lock_release+0xa30/0xa30
[  433.346765]  ? __sched_text_start+0x8/0x8
[  433.350925]  ? terminate_walk+0x20a/0x5e0
[  433.355096]  ? rcuwait_wake_up+0x1cc/0x2f0
[  433.359347]  call_rwsem_down_read_failed+0x18/0x30
[  433.364300]  __percpu_down_read+0x16e/0x210
[  433.368646]  ? percpu_free_rwsem+0xa0/0xa0
[  433.372897]  __sb_start_write+0x2d7/0x300
[  433.377058]  mnt_want_write+0x3f/0xc0
[  433.380870]  do_unlinkat+0x2b7/0xa30
[  433.384601]  ? __ia32_sys_rmdir+0x40/0x40
[  433.388771]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  433.394325]  ? strncpy_from_user+0x3be/0x510
[  433.398753]  ? mpi_free.cold.1+0x19/0x19
[  433.402824]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  433.408377]  ? getname_flags+0x26e/0x5a0
[  433.412552]  ? do_syscall_64+0x16b/0x820
[  433.416626]  __x64_sys_unlink+0x42/0x50
[  433.420622]  do_syscall_64+0x1b9/0x820
[  433.424546]  ? syscall_slow_exit_work+0x500/0x500
[  433.429407]  ? syscall_return_slowpath+0x5e0/0x5e0
[  433.434357]  ? syscall_return_slowpath+0x31d/0x5e0
[  433.439303]  ? prepare_exit_to_usermode+0x291/0x3b0
[  433.444332]  ? perf_trace_sys_enter+0xb10/0xb10
[  433.449018]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  433.453895]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  433.459181] RIP: 0033:0x455b77
[  433.462379] Code: Bad RIP value.
[  433.465777] RSP: 002b:00007ffe7e989dd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[  433.473512] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000455b77
[  433.480791] RDX: 00007ffe7e989de0 RSI: 00007ffe7e989e70 RDI: 00007ffe7e989e70
[  433.488079] RBP: 00007ffe7e98bb80 R08: 0000000000000000 R09: 000000000000000c
[  433.495356] R10: 0000000000000006 R11: 0000000000000206 R12: 00000000019e1940
[  433.502636] R13: 0000000000000000 R14: 00007ffe7e98b550 R15: 0000000000702140
[  433.509942] INFO: task syz-executor1:9569 blocked for more than 140 seconds.
[  433.517137]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  433.522861] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  433.530834] syz-executor1   D24904  9569   4484 0x00000004
[  433.536475] Call Trace:
[  433.539073]  __schedule+0x87c/0x1ed0
[  433.542816]  ? __sched_text_start+0x8/0x8
[  433.546985]  ? trace_hardirqs_on+0x10/0x10
[  433.551254]  ? trace_hardirqs_on+0x10/0x10
[  433.555503]  ? _raw_spin_unlock_irq+0x27/0x70
[  433.560019]  ? __update_load_avg_blocked_se.isra.34+0x460/0x460
[  433.566090]  ? lock_acquire+0x1e4/0x540
[  433.570083]  ? cpuacct_charge+0x2eb/0x5d0
[  433.574236]  ? perf_trace_lock+0xde/0x920
[  433.578481]  schedule+0xfb/0x450
[  433.581865]  ? lock_downgrade+0x8f0/0x8f0
[  433.586044]  ? __schedule+0x1ed0/0x1ed0
[  433.590037]  ? kasan_check_read+0x11/0x20
[  433.594205]  ? do_raw_spin_unlock+0xa7/0x2f0
[  433.598616]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.603207]  ? kasan_check_write+0x14/0x20
[  433.607461]  ? do_raw_spin_lock+0xc1/0x200
[  433.611705]  rwsem_down_read_failed+0x362/0x600
[  433.616383]  ? rwsem_down_write_failed_killable+0x10/0x10
[  433.621924]  ? lock_acquire+0x1e4/0x540
[  433.625898]  ? rcuwait_wake_up+0x1a3/0x2f0
[  433.630159]  ? lock_downgrade+0x8f0/0x8f0
[  433.634348]  ? lock_release+0xa30/0xa30
[  433.638405]  ? __free_object+0x173/0x340
[  433.642489]  ? __account_cfs_rq_runtime+0x770/0x770
[  433.647529]  call_rwsem_down_read_failed+0x18/0x30
[  433.652568]  __percpu_down_read+0x16e/0x210
[  433.656912]  ? percpu_free_rwsem+0xa0/0xa0
[  433.661154]  __sb_start_write+0x2d7/0x300
[  433.665318]  ext4_page_mkwrite+0x1d0/0x1430
[  433.669651]  ? ext4_change_inode_journal_flag+0x3e0/0x3e0
[  433.675200]  ? do_wp_page+0xf70/0x19b0
[  433.679095]  do_page_mkwrite+0x14e/0x520
[  433.683165]  ? print_bad_pte+0x5f0/0x5f0
[  433.687231]  ? do_raw_spin_unlock+0xa7/0x2f0
[  433.691683]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.696274]  ? __pte_alloc_kernel+0x2e0/0x2e0
[  433.700775]  ? finish_task_switch+0x1d3/0x870
[  433.705275]  do_wp_page+0xf78/0x19b0
[  433.709018]  ? finish_mkwrite_fault+0x610/0x610
[  433.713708]  ? trace_hardirqs_on+0x10/0x10
[  433.717965]  ? __schedule+0x884/0x1ed0
[  433.721880]  ? lock_acquire+0x1e4/0x540
[  433.725866]  ? __handle_mm_fault+0x1cef/0x4480
[  433.730456]  ? lock_release+0xa30/0xa30
[  433.734441]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.739049]  ? pmd_val+0x88/0x100
[  433.742515]  ? add_mm_counter_fast+0xd0/0xd0
[  433.746941]  ? kasan_check_write+0x14/0x20
[  433.751199]  ? do_raw_spin_lock+0xc1/0x200
[  433.755461]  __handle_mm_fault+0x2aab/0x4480
[  433.759888]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[  433.764739]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  433.769331]  ? kasan_check_write+0x14/0x20
[  433.773571]  ? do_raw_spin_lock+0xc1/0x200
[  433.777819]  ? lock_acquire+0x1e4/0x540
[  433.781808]  ? handle_mm_fault+0x417/0xc80
[  433.786073]  ? lock_downgrade+0x8f0/0x8f0
[  433.790231]  ? lock_release+0xa30/0xa30
[  433.794222]  ? lock_release+0xa30/0xa30
[  433.798218]  ? do_raw_spin_lock+0xc1/0x200
[  433.802480]  ? mem_cgroup_from_task+0xcb/0x1f0
[  433.807072]  ? mem_cgroup_css_online+0x3c0/0x3c0
[  433.811843]  handle_mm_fault+0x53e/0xc80
[  433.815912]  ? __handle_mm_fault+0x4480/0x4480
[  433.820500]  ? find_vma+0x34/0x190
[  433.824055]  __do_page_fault+0x620/0xe50
[  433.828200]  ? clock_was_set_work+0x30/0x30
[  433.832540]  ? mm_fault_error+0x380/0x380
[  433.836721]  ? __x64_sys_nanosleep+0x1f8/0x280
[  433.841309]  ? hrtimer_nanosleep+0x620/0x620
[  433.845734]  do_page_fault+0xf6/0x8c0
[  433.849549]  ? vmalloc_sync_all+0x30/0x30
[  433.853712]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  433.859261]  ? do_syscall_64+0x497/0x820
[  433.863342]  ? syscall_return_slowpath+0x5e0/0x5e0
[  433.868294]  ? syscall_return_slowpath+0x31d/0x5e0
[  433.873244]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  433.878282]  ? prepare_exit_to_usermode+0x291/0x3b0
[  433.883319]  ? page_fault+0x8/0x30
[  433.886883]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  433.891735]  ? page_fault+0x8/0x30
[  433.895322]  page_fault+0x1e/0x30
[  433.898796] RIP: 0033:0x4084b0
[  433.901982] Code: 00 00 2e 23 40 00 00 00 00 00 3e 23 40 00 00 00 00 00 4e 23 40 00 00 00 00 00 5e 23 40 00 00 00 00 00 6e 23 40 00 00 00 00 00 <7e> 23 40 00 00 00 00 00 8e 23 40 00 00 00 00 00 9e 23 40 00 00 00 
[  433.921214] RSP: 002b:00007ffea4627080 EFLAGS: 00010283
[  433.926584] RAX: 0000001b33823edc RBX: 0000000000000000 RCX: 0000001b34820000
[  433.933864] RDX: 0000001b33823ee0 RSI: 0000000000000002 RDI: 0000000000000002
[  433.941227] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  433.948514] R10: 00007ffea46270c0 R11: 0000000000000000 R12: 0000000000000016
[  433.955801] R13: 0000000000000002 R14: 000000000072bea0 R15: 000000000072bea0
[  433.963117] INFO: task syz-executor5:9573 blocked for more than 140 seconds.
[  433.970316]       Not tainted 4.18.0-rc3-next-20180709+ #2
[  433.975951] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  433.983926] syz-executor5   D25072  9573   4481 0x00000004
[  433.989570] Call Trace:
[  433.992168]  __schedule+0x87c/0x1ed0
[  433.995896]  ? __sched_text_start+0x8/0x8
[  434.000061]  ? trace_hardirqs_on+0x10/0x10
[  434.004319]  ? trace_hardirqs_on+0x10/0x10
[  434.008565]  ? _raw_spin_unlock_irq+0x27/0x70
[  434.013077]  ? perf_trace_lock+0xde/0x920
[  434.017226]  schedule+0xfb/0x450
[  434.020599]  ? lock_downgrade+0x8f0/0x8f0
[  434.024758]  ? __schedule+0x1ed0/0x1ed0
[  434.028742]  ? kasan_check_read+0x11/0x20
[  434.032905]  ? do_raw_spin_unlock+0xa7/0x2f0
[  434.037328]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  434.041929]  ? kasan_check_write+0x14/0x20
[  434.046183]  ? do_raw_spin_lock+0xc1/0x200
[  434.050435]  rwsem_down_read_failed+0x362/0x600
[  434.055124]  ? rwsem_down_write_failed_killable+0x10/0x10
[  434.060677]  ? lock_acquire+0x1e4/0x540
[  434.064662]  ? rcuwait_wake_up+0x1a3/0x2f0
[  434.068996]  ? lock_downgrade+0x8f0/0x8f0
[  434.073162]  ? lock_release+0xa30/0xa30
[  434.077156]  ? zap_class+0x740/0x740
[  434.080888]  call_rwsem_down_read_failed+0x18/0x30
[  434.085868]  __percpu_down_read+0x16e/0x210
[  434.090339]  ? percpu_free_rwsem+0xa0/0xa0
[  434.094594]  __sb_start_write+0x2d7/0x300
[  434.098762]  ext4_page_mkwrite+0x1d0/0x1430
[  434.103099]  ? ext4_change_inode_journal_flag+0x3e0/0x3e0
[  434.108655]  ? do_wp_page+0xf70/0x19b0
[  434.112553]  do_page_mkwrite+0x14e/0x520
[  434.116622]  ? print_bad_pte+0x5f0/0x5f0
[  434.120688]  ? do_raw_spin_unlock+0xa7/0x2f0
[  434.125099]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  434.129685]  ? __pte_alloc_kernel+0x2e0/0x2e0
[  434.134193]  do_wp_page+0xf78/0x19b0
[  434.137923]  ? finish_mkwrite_fault+0x610/0x610
[  434.142613]  ? trace_hardirqs_on+0x10/0x10
[  434.146860]  ? __schedule+0x884/0x1ed0
[  434.150760]  ? lock_acquire+0x1e4/0x540
[  434.154737]  ? __handle_mm_fault+0x1cef/0x4480
[  434.159350]  ? lock_release+0xa30/0xa30
[  434.163367]  ? pmd_val+0x88/0x100
[  434.166842]  ? add_mm_counter_fast+0xd0/0xd0
[  434.171288]  ? kasan_check_write+0x14/0x20
[  434.175544]  ? do_raw_spin_lock+0xc1/0x200
[  434.179805]  __handle_mm_fault+0x2aab/0x4480
[  434.184257]  ? vmf_insert_mixed_mkwrite+0xa0/0xa0
[  434.189125]  ? do_raw_spin_trylock+0x1c0/0x1c0
[  434.193733]  ? kasan_check_write+0x14/0x20
[  434.197986]  ? do_raw_spin_lock+0xc1/0x200
[  434.202252]  ? lock_acquire+0x1e4/0x540
[  434.206260]  ? handle_mm_fault+0x417/0xc80
[  434.210513]  ? lock_downgrade+0x8f0/0x8f0
[  434.214666]  ? lock_release+0xa30/0xa30
[  434.218648]  ? lock_release+0xa30/0xa30
[  434.222628]  ? do_raw_spin_lock+0xc1/0x200
[  434.226965]  ? mem_cgroup_from_task+0xcb/0x1f0
[  434.231562]  ? mem_cgroup_css_online+0x3c0/0x3c0
[  434.236344]  handle_mm_fault+0x53e/0xc80
[  434.240432]  ? __handle_mm_fault+0x4480/0x4480
[  434.245030]  ? find_vma+0x34/0x190
[  434.248572]  __do_page_fault+0x620/0xe50
[  434.252637]  ? clock_was_set_work+0x30/0x30
[  434.256982]  ? mm_fault_error+0x380/0x380
[  434.261144]  ? __x64_sys_nanosleep+0x1f8/0x280
[  434.265747]  ? hrtimer_nanosleep+0x620/0x620
[  434.270164]  do_page_fault+0xf6/0x8c0
[  434.273971]  ? vmalloc_sync_all+0x30/0x30
[  434.278125]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  434.283668]  ? do_syscall_64+0x497/0x820
[  434.287736]  ? syscall_return_slowpath+0x5e0/0x5e0
[  434.292672]  ? syscall_return_slowpath+0x31d/0x5e0
[  434.297707]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  434.302746]  ? prepare_exit_to_usermode+0x291/0x3b0
[  434.307778]  ? page_fault+0x8/0x30
[  434.311437]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  434.316308]  ? page_fault+0x8/0x30
[  434.319881]  page_fault+0x1e/0x30
[  434.323443] RIP: 0033:0x4084b0
[  434.326634] Code: 00 00 2e 23 40 00 00 00 00 00 3e 23 40 00 00 00 00 00 4e 23 40 00 00 00 00 00 5e