ffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
personality(0x20005)
uname(&(0x7f0000d38ff1)=""/15)
r0 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x401, 0x900)
write$evdev(r0, &(0x7f0000d0e000)=[{{}, 0x1, 0x1e, 0x40000000002}, {}], 0x30)

2018/04/19 14:15:28 executing program 7:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000000000)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))

2018/04/19 14:15:28 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000140)={r1, 0x3, &(0x7f0000000040)=[0xb5, 0x59994ba, 0x1], &(0x7f0000000080)=[0x1a], 0x2, 0x2, 0x3ff, &(0x7f00000000c0)=[0xfff, 0x5], &(0x7f0000000100)=[0x6a, 0x0]})
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000180))

2018/04/19 14:15:28 executing program 2 (fault-call:3 fault-nth:0):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:28 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x10000000033)
r1 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r4 = socket(0x2, 0x805, 0x0)
bind$inet(r4, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r4, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r4, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r1, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r1, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r5=>r1})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xe}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='\x009', 0x2, 0x0, 0x0, 0x0)
syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)

2018/04/19 14:15:28 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000100)=0x7fff)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000180)={0xed40, 0x1, 0x9, 'queue0\x00', 0x10000})
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000240)={0x8, 0xfffffffffffffffc, 0x5, 0x0, 0x6, 0xff, 0x8, 0xe8b, 0x5, 0x5, 0x15fdb97c, 0x1, 0x0, 0x7, 0x59, 0x7f, 0x5, 0x8, 0x8be0})
write$binfmt_misc(r0, &(0x7f0000000040)={'syz0', "240b4d8ce50ffec15c1db17021aea3d9c8135da9644964cbad145a2dfaf6872078ddf00ec83fc1eef1ba67b368295ab0"}, 0x34)

2018/04/19 14:15:28 executing program 3:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000000)={0x6, 0x665a9558})
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0x8010aa02, &(0x7f0000001ff0)={&(0x7f0000011000/0x3000)=nil, 0x3000})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20011, r1, 0x0)
r2 = syz_open_dev$evdev(&(0x7f0000057fee)='/dev/input/event#\x00', 0x0, 0x0)
ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000000200)=""/80)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))

2018/04/19 14:15:28 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2f1e, 0x28001)
write$evdev(r0, &(0x7f0000d0e000)=[{{}, 0x1, 0x1e, 0x40000000002}, {}], 0x30)
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x48000)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000080)={0x4, 0x6, 0x800, 0x401, 0x1, 0x3, 0x8, 0x200, 0x8, 0x301, 0x12a, 0x7})

2018/04/19 14:15:28 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x4, <r0=>0xffffffffffffffff})
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000080)='$&\x00')
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

[ 1074.561306] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1074.574031] FAULT_INJECTION: forcing a failure.
[ 1074.574031] name failslab, interval 1, probability 0, space 0, times 0
[ 1074.585468] CPU: 1 PID: 25739 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1074.592640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1074.601972] Call Trace:
[ 1074.604548]  dump_stack+0x1b9/0x294
2018/04/19 14:15:28 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x10000000033)
r1 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r4 = socket(0x2, 0x805, 0x0)
bind$inet(r4, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r4, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r4, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r1, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r1, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r5=>r1})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xe}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='\x009', 0x2, 0x0, 0x0, 0x0)
syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)

2018/04/19 14:15:28 executing program 6:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_IRQ_BUSID(r1, 0xc0106403, &(0x7f0000000040)={0x6, 0x8000, 0x2, 0x1})
ioctl$DRM_IOCTL_GET_MAGIC(r1, 0x80046402, &(0x7f0000000080)=0x40)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f00000000c0))
ioctl$TIOCCONS(r1, 0x541d)
socketpair$unix(0x1, 0x4000000001, 0x0, &(0x7f0000000180))

2018/04/19 14:15:28 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000100)=0x7fff)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000180)={0xed40, 0x1, 0x9, 'queue0\x00', 0x10000})
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000240)={0x8, 0xfffffffffffffffc, 0x5, 0x0, 0x6, 0xff, 0x8, 0xe8b, 0x5, 0x5, 0x15fdb97c, 0x1, 0x0, 0x7, 0x59, 0x7f, 0x5, 0x8, 0x8be0})
write$binfmt_misc(r0, &(0x7f0000000040)={'syz0', "240b4d8ce50ffec15c1db17021aea3d9c8135da9644964cbad145a2dfaf6872078ddf00ec83fc1eef1ba67b368295ab0"}, 0x34)

[ 1074.608163]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1074.613335]  ? __might_sleep+0x95/0x190
[ 1074.617293]  should_fail.cold.4+0xa/0x1a
[ 1074.621334]  ? loop_control_ioctl+0x8c/0x500
[ 1074.625727]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1074.630815]  ? mutex_trylock+0x2a0/0x2a0
[ 1074.634861]  ? graph_lock+0x170/0x170
[ 1074.638641]  ? find_held_lock+0x36/0x1c0
[ 1074.642684]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1074.648204]  ? find_held_lock+0x36/0x1c0
[ 1074.652249]  ? __lock_is_held+0xb5/0x140
[ 1074.656299]  ? check_same_owner+0x320/0x320
[ 1074.660604]  ? rcu_note_context_switch+0x710/0x710
[ 1074.665518]  __should_failslab+0x124/0x180
[ 1074.669739]  should_failslab+0x9/0x14
[ 1074.673522]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1074.678179]  loop_add+0x96/0x9c0
[ 1074.681524]  ? loop_lookup+0x102/0x220
[ 1074.685390]  ? loop_queue_rq+0x6c0/0x6c0
[ 1074.689438]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1074.694613]  loop_control_ioctl+0x178/0x500
[ 1074.698917]  ? loop_add+0x9c0/0x9c0
[ 1074.702525]  ? expand_files.part.8+0x9a0/0x9a0
[ 1074.707090]  ? kasan_check_write+0x14/0x20
[ 1074.711307]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1074.716220]  ? wait_for_completion+0x870/0x870
[ 1074.720782]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1074.725950]  ? loop_add+0x9c0/0x9c0
[ 1074.729558]  do_vfs_ioctl+0x1cf/0x16a0
[ 1074.733428]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1074.737815]  ? fget_raw+0x20/0x20
[ 1074.741253]  ? __sb_end_write+0xac/0xe0
[ 1074.745212]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1074.750729]  ? fput+0x130/0x1a0
[ 1074.753990]  ? ksys_write+0x1a6/0x250
[ 1074.757771]  ? security_file_ioctl+0x94/0xc0
[ 1074.762170]  ksys_ioctl+0xa9/0xd0
[ 1074.765606]  __x64_sys_ioctl+0x73/0xb0
[ 1074.769477]  do_syscall_64+0x1b1/0x800
[ 1074.773346]  ? finish_task_switch+0x1ca/0x810
[ 1074.777823]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1074.782736]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1074.787652]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1074.792999]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1074.797829]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1074.803001] RIP: 0033:0x455329
2018/04/19 14:15:28 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2f1e, 0x28001)
write$evdev(r0, &(0x7f0000d0e000)=[{{}, 0x1, 0x1e, 0x40000000002}, {}], 0x30)
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x48000)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000080)={0x4, 0x6, 0x800, 0x401, 0x1, 0x3, 0x8, 0x200, 0x8, 0x301, 0x12a, 0x7})

[ 1074.806168] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1074.813855] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1074.821103] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1074.828352] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1074.835600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1074.842848] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000000
2018/04/19 14:15:28 executing program 2 (fault-call:3 fault-nth:1):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

[ 1074.900223] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1074.918296] FAULT_INJECTION: forcing a failure.
[ 1074.918296] name failslab, interval 1, probability 0, space 0, times 0
[ 1074.929548] CPU: 1 PID: 25761 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1074.936715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1074.946047] Call Trace:
2018/04/19 14:15:28 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x10000000033)
r1 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r4 = socket(0x2, 0x805, 0x0)
bind$inet(r4, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r4, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r4, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r1, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r1, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r5=>r1})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xe}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='\x009', 0x2, 0x0, 0x0, 0x0)
syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)

2018/04/19 14:15:28 executing program 6:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x20001, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, @perf_bp, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, r0, 0xa)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000080)={0x4, <r1=>0x0, 0x0, 0x18a})
ioctl$DRM_IOCTL_SG_ALLOC(r0, 0xc0106438, &(0x7f00000000c0)={0x0, r1})
ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000040)="7384b75a9105c8f878109ce017a09ff636048406")
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'eql\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000180)={@loopback={0x0, 0x1}, 0x4a, r2})

[ 1074.948618]  dump_stack+0x1b9/0x294
[ 1074.952235]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1074.957583]  should_fail.cold.4+0xa/0x1a
[ 1074.961627]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1074.966707]  ? idr_destroy+0x1b0/0x1b0
[ 1074.970576]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1074.975136]  ? graph_lock+0x170/0x170
[ 1074.978913]  ? replace_slot+0x14b/0x4f0
[ 1074.982868]  ? find_held_lock+0x36/0x1c0
[ 1074.986910]  ? __lock_is_held+0xb5/0x140
[ 1074.990962]  ? check_same_owner+0x320/0x320
[ 1074.995268]  ? rcu_note_context_switch+0x710/0x710
[ 1075.000183]  __should_failslab+0x124/0x180
[ 1075.004409]  should_failslab+0x9/0x14
[ 1075.008195]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1075.013280]  ? idr_alloc_u32+0x22d/0x3d0
[ 1075.017325]  __kmalloc_node+0x33/0x70
[ 1075.021107]  blk_mq_alloc_tag_set+0x38c/0xce0
[ 1075.025585]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1075.031107]  ? idr_alloc+0x145/0x1a0
[ 1075.034803]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1075.039111]  loop_add+0x2b4/0x9c0
[ 1075.042547]  ? loop_lookup+0x102/0x220
[ 1075.046414]  ? loop_queue_rq+0x6c0/0x6c0
[ 1075.050492]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1075.055673]  loop_control_ioctl+0x178/0x500
[ 1075.059974]  ? loop_add+0x9c0/0x9c0
[ 1075.063585]  ? expand_files.part.8+0x9a0/0x9a0
[ 1075.068150]  ? kasan_check_write+0x14/0x20
[ 1075.072364]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1075.077279]  ? wait_for_completion+0x870/0x870
[ 1075.081840]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1075.087007]  ? loop_add+0x9c0/0x9c0
[ 1075.090622]  do_vfs_ioctl+0x1cf/0x16a0
[ 1075.094494]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1075.098882]  ? fget_raw+0x20/0x20
[ 1075.102313]  ? __sb_end_write+0xac/0xe0
[ 1075.106267]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1075.111781]  ? fput+0x130/0x1a0
[ 1075.115041]  ? ksys_write+0x1a6/0x250
[ 1075.118823]  ? security_file_ioctl+0x94/0xc0
[ 1075.123210]  ksys_ioctl+0xa9/0xd0
[ 1075.126646]  __x64_sys_ioctl+0x73/0xb0
[ 1075.130515]  do_syscall_64+0x1b1/0x800
[ 1075.134383]  ? finish_task_switch+0x1ca/0x810
[ 1075.138858]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1075.143765]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1075.148675]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1075.154018]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1075.158843]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1075.164012] RIP: 0033:0x455329
[ 1075.167183] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1075.174870] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1075.182119] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1075.189375] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1075.196624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1075.203872] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000001
[ 1075.258399] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/04/19 14:15:28 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0xed40, 0x1, 0x9, 'queue0\x00', 0x10000})
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000240)={0x8, 0xfffffffffffffffc, 0x5, 0x0, 0x6, 0xff, 0x8, 0xe8b, 0x5, 0x5, 0x15fdb97c, 0x1, 0x0, 0x7, 0x59, 0x7f, 0x5, 0x8, 0x8be0})

2018/04/19 14:15:28 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2f1e, 0x28001)
write$evdev(r0, &(0x7f0000d0e000)=[{{}, 0x1, 0x1e, 0x40000000002}, {}], 0x30)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x48000)

2018/04/19 14:15:28 executing program 2 (fault-call:3 fault-nth:2):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:28 executing program 3 (fault-call:2 fault-nth:0):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:28 executing program 6:
r0 = semget(0x1, 0x6, 0x420)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000040)=[0x6, 0x9, 0xcbc, 0x300000000000000, 0x2, 0x9])
socket$l2tp(0x18, 0x1, 0x1)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0xe, 0x0)
ioctl$VHOST_SET_LOG_BASE(r1, 0x4008af04, &(0x7f0000000100)=&(0x7f00000001c0))
ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000140))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:28 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f0000001780)={[{0x100000000, 0x55e1, 0xbb93, 0x1, 0xfffffffffffffffb, 0x6, 0xe63, 0x100, 0x81, 0x6a68000, 0x9689, 0x6, 0xfffffffffffffeff}, {0x1000, 0x7, 0x2fd, 0x238cd72d, 0x5, 0xb2, 0x0, 0x3, 0x6, 0x0, 0x81, 0xa2, 0x2}, {0x7, 0x8, 0x0, 0x1, 0x7, 0x3, 0x8, 0x8, 0x0, 0x42, 0xfffffffffffffffc, 0x3, 0x6}], 0x9})
readv(r0, &(0x7f00000016c0)=[{&(0x7f0000000140)=""/32, 0x20}, {&(0x7f0000000180)=""/231, 0xe7}, {&(0x7f0000000280)=""/109, 0x6d}, {&(0x7f0000000300)}, {&(0x7f0000000340)=""/124, 0x7c}, {&(0x7f00000003c0)=""/221, 0xdd}, {&(0x7f00000004c0)=""/78, 0x4e}, {&(0x7f0000000540)=""/160, 0xa0}, {&(0x7f0000000600)=""/190, 0xbe}, {&(0x7f00000006c0)=""/4096, 0x1000}], 0xa)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f0000000040)={0x5, 0x3, 0x80000000})
ioctl$KVM_ASSIGN_PCI_DEVICE(r0, 0x8040ae69, &(0x7f0000000080)={0x80, 0x7, 0x5, 0x2, 0x2})
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000000)={0x5, 0xffffffffffffffc7, 0x8, 0xffffffffffffffff, 0x7ff})
ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000100)={0x9, &(0x7f00000000c0)=[0x0, 0x0, 0x7fffffff, 0x5, 0x7fff, 0x29f7, 0x51, 0x6, 0x7ff]})

2018/04/19 14:15:28 executing program 7 (fault-call:1 fault-nth:0):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:28 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x10000000033)
r1 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r4 = socket(0x2, 0x805, 0x0)
bind$inet(r4, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r4, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r4, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r1, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r1, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r5=>r1})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xe}}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='\x009', 0x2, 0x0, 0x0, 0x0)

[ 1075.407629] FAULT_INJECTION: forcing a failure.
[ 1075.407629] name failslab, interval 1, probability 0, space 0, times 0
[ 1075.418944] CPU: 0 PID: 25780 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1075.426111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1075.435442] Call Trace:
[ 1075.438012]  dump_stack+0x1b9/0x294
[ 1075.441625]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1075.446798]  ? is_bpf_text_address+0xd7/0x170
[ 1075.451276]  should_fail.cold.4+0xa/0x1a
[ 1075.455319]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1075.460407]  ? graph_lock+0x170/0x170
[ 1075.464191]  ? save_stack+0xa9/0xd0
[ 1075.467804]  ? find_held_lock+0x36/0x1c0
[ 1075.471847]  ? __lock_is_held+0xb5/0x140
[ 1075.475905]  ? check_same_owner+0x320/0x320
[ 1075.480211]  ? rcu_note_context_switch+0x710/0x710
[ 1075.485125]  __should_failslab+0x124/0x180
[ 1075.489342]  should_failslab+0x9/0x14
[ 1075.493121]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1075.498207]  ? idr_alloc_u32+0x22d/0x3d0
[ 1075.502250]  ? kasan_unpoison_shadow+0x35/0x50
[ 1075.506813]  __kmalloc_node+0x33/0x70
[ 1075.510594]  blk_mq_alloc_tag_set+0x423/0xce0
[ 1075.515086]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1075.520606]  ? idr_alloc+0x145/0x1a0
[ 1075.524301]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1075.528607]  loop_add+0x2b4/0x9c0
[ 1075.532040]  ? loop_lookup+0x102/0x220
[ 1075.535904]  ? loop_queue_rq+0x6c0/0x6c0
[ 1075.539950]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1075.545118]  loop_control_ioctl+0x178/0x500
[ 1075.549421]  ? loop_add+0x9c0/0x9c0
[ 1075.553030]  ? expand_files.part.8+0x9a0/0x9a0
[ 1075.557595]  ? kasan_check_write+0x14/0x20
[ 1075.561809]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1075.566717]  ? wait_for_completion+0x870/0x870
[ 1075.571281]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1075.576448]  ? loop_add+0x9c0/0x9c0
[ 1075.580057]  do_vfs_ioctl+0x1cf/0x16a0
[ 1075.583927]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1075.588318]  ? fget_raw+0x20/0x20
[ 1075.591751]  ? __sb_end_write+0xac/0xe0
[ 1075.595708]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1075.601223]  ? fput+0x130/0x1a0
[ 1075.604481]  ? ksys_write+0x1a6/0x250
[ 1075.608265]  ? security_file_ioctl+0x94/0xc0
[ 1075.612654]  ksys_ioctl+0xa9/0xd0
[ 1075.616088]  __x64_sys_ioctl+0x73/0xb0
[ 1075.619957]  do_syscall_64+0x1b1/0x800
[ 1075.623827]  ? finish_task_switch+0x1ca/0x810
[ 1075.628303]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1075.633213]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1075.638135]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1075.643481]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1075.648306]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1075.653475] RIP: 0033:0x455329
[ 1075.656643] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1075.664332] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1075.671580] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1075.678830] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1075.686088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1075.693338] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000002
[ 1075.708183] FAULT_INJECTION: forcing a failure.
[ 1075.708183] name failslab, interval 1, probability 0, space 0, times 0
[ 1075.719598] CPU: 0 PID: 25782 Comm: syz-executor7 Not tainted 4.17.0-rc1+ #8
[ 1075.726761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1075.736090] Call Trace:
[ 1075.738660]  dump_stack+0x1b9/0x294
[ 1075.742272]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1075.747439]  ? __mutex_lock+0x7d9/0x17f0
[ 1075.751488]  should_fail.cold.4+0xa/0x1a
[ 1075.755532]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1075.760619]  ? graph_lock+0x170/0x170
[ 1075.764403]  ? find_held_lock+0x36/0x1c0
[ 1075.768446]  ? __lock_is_held+0xb5/0x140
[ 1075.772495]  ? check_same_owner+0x320/0x320
[ 1075.776798]  ? find_held_lock+0x36/0x1c0
[ 1075.780839]  ? rcu_note_context_switch+0x710/0x710
[ 1075.785746]  ? _parse_integer+0x13b/0x190
[ 1075.789875]  __should_failslab+0x124/0x180
[ 1075.794091]  should_failslab+0x9/0x14
[ 1075.797873]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1075.802958]  ? zap_class+0x720/0x720
[ 1075.806658]  __kmalloc_node+0x33/0x70
[ 1075.810443]  kvmalloc_node+0x6b/0x100
[ 1075.814225]  seq_read+0xa33/0x1520
[ 1075.817752]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1075.822924]  ? seq_file_path+0x30/0x30
[ 1075.826793]  ? __fget+0x40c/0x650
[ 1075.830229]  ? seq_file_path+0x30/0x30
[ 1075.834096]  proc_reg_read+0x10a/0x190
[ 1075.837966]  __vfs_read+0x10f/0xa50
[ 1075.841570]  ? fsnotify+0x415/0x1100
[ 1075.845264]  ? proc_reg_unlocked_ioctl+0x180/0x180
[ 1075.850195]  ? vfs_copy_file_range+0xb80/0xb80
[ 1075.854758]  ? fsnotify_first_mark+0x330/0x330
[ 1075.859321]  ? __fget_light+0x2ef/0x430
[ 1075.863274]  ? fget_raw+0x20/0x20
[ 1075.866710]  ? security_file_permission+0x1c6/0x240
[ 1075.871706]  ? rw_verify_area+0x118/0x360
[ 1075.875833]  vfs_read+0x17f/0x3d0
[ 1075.879270]  ksys_pread64+0x174/0x1a0
[ 1075.883049]  ? __ia32_sys_write+0xb0/0xb0
[ 1075.887176]  ? __ia32_sys_read+0xb0/0xb0
[ 1075.891222]  __x64_sys_pread64+0x97/0xf0
[ 1075.895267]  do_syscall_64+0x1b1/0x800
[ 1075.899131]  ? finish_task_switch+0x1ca/0x810
[ 1075.903608]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1075.908517]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1075.913430]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1075.918774]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1075.923600]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1075.928767] RIP: 0033:0x455329
[ 1075.931936] RSP: 002b:00007f668ecfec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1075.939624] RAX: ffffffffffffffda RBX: 00007f668ecff6d4 RCX: 0000000000455329
[ 1075.946871] RDX: 000000000000003d RSI: 0000000020000140 RDI: 0000000000000013
2018/04/19 14:15:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:29 executing program 6:
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x40, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x5452, 0x0)

2018/04/19 14:15:29 executing program 6:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f00000000c0)={0x2, 0x5})
socketpair$unix(0x1, 0xfdffffffffefffff, 0x0, &(0x7f00000013c0))
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x200000, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000100)={0x5, 0xc, [0x20, 0x92b6, 0x5]})
ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f0000000080)=0x1)

2018/04/19 14:15:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c82, 0x0)

2018/04/19 14:15:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x5451, 0x0)

2018/04/19 14:15:29 executing program 2 (fault-call:3 fault-nth:3):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:29 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

[ 1075.954120] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1075.961367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1075.968613] R13: 0000000000000477 R14: 00000000006f9bc8 R15: 0000000000000000
[ 1075.988836] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/04/19 14:15:29 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0xed40, 0x1, 0x9, 'queue0\x00', 0x10000})
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000240)={0x8, 0xfffffffffffffffc, 0x5, 0x0, 0x6, 0xff, 0x8, 0xe8b, 0x5, 0x5, 0x15fdb97c, 0x1, 0x0, 0x7, 0x59, 0x7f, 0x5, 0x8, 0x8be0})

[ 1076.061523] FAULT_INJECTION: forcing a failure.
[ 1076.061523] name failslab, interval 1, probability 0, space 0, times 0
[ 1076.072779] CPU: 1 PID: 25813 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1076.079946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1076.089276] Call Trace:
[ 1076.091866]  dump_stack+0x1b9/0x294
[ 1076.095477]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1076.100651]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1076.105826]  should_fail.cold.4+0xa/0x1a
[ 1076.109871]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1076.114969]  ? unwind_get_return_address+0x61/0xa0
[ 1076.119881]  ? __save_stack_trace+0x7e/0xd0
[ 1076.124194]  ? graph_lock+0x170/0x170
[ 1076.127980]  ? find_held_lock+0x36/0x1c0
[ 1076.132025]  ? __lock_is_held+0xb5/0x140
[ 1076.136077]  ? check_same_owner+0x320/0x320
[ 1076.140385]  ? rcu_note_context_switch+0x710/0x710
[ 1076.145295]  __should_failslab+0x124/0x180
[ 1076.149510]  should_failslab+0x9/0x14
[ 1076.153290]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1076.158374]  ? find_next_bit+0x104/0x130
[ 1076.162415]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1076.167929]  ? find_next_bit+0x104/0x130
[ 1076.171978]  blk_mq_init_tags+0x79/0x2b0
[ 1076.176023]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1076.180324]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1076.184836]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1076.189146]  loop_add+0x2b4/0x9c0
[ 1076.192580]  ? loop_lookup+0x102/0x220
[ 1076.196446]  ? loop_queue_rq+0x6c0/0x6c0
[ 1076.200492]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1076.205673]  loop_control_ioctl+0x178/0x500
[ 1076.209973]  ? loop_add+0x9c0/0x9c0
[ 1076.213579]  ? expand_files.part.8+0x9a0/0x9a0
[ 1076.218143]  ? kasan_check_write+0x14/0x20
[ 1076.222356]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1076.227265]  ? wait_for_completion+0x870/0x870
[ 1076.231828]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1076.236996]  ? loop_add+0x9c0/0x9c0
[ 1076.240605]  do_vfs_ioctl+0x1cf/0x16a0
[ 1076.244476]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1076.248864]  ? fget_raw+0x20/0x20
[ 1076.252306]  ? __sb_end_write+0xac/0xe0
[ 1076.256261]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1076.261886]  ? fput+0x130/0x1a0
[ 1076.265147]  ? ksys_write+0x1a6/0x250
[ 1076.268932]  ? security_file_ioctl+0x94/0xc0
[ 1076.273323]  ksys_ioctl+0xa9/0xd0
[ 1076.276758]  __x64_sys_ioctl+0x73/0xb0
[ 1076.280628]  do_syscall_64+0x1b1/0x800
[ 1076.284498]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1076.289407]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1076.294317]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1076.299660]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1076.304482]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1076.309649] RIP: 0033:0x455329
[ 1076.312817] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1076.320505] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1076.327753] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1076.335000] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1076.342247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1076.349504] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000003
[ 1076.359344] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:15:30 executing program 2 (fault-call:3 fault-nth:4):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:30 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x40049409, 0x0)

2018/04/19 14:15:30 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socket$inet_udp(0x2, 0x2, 0x0)
write(r0, &(0x7f0000000040)="5bd3deaa7b745fdac30909aed315c9a4e7e4836b39dc8c3f847ec26f8257e0f1a731a30ff2a5c09439e0d6cf41a4c4a5b43897f231ac4fa82811fe3820f3de5ea2c255a539b512e2777d4fab48264548439bb9429915019a5b1cd37fa9a8ad7ac1de084c0b654348d4b8dcb0394bb42c54482ae47ae02b723f00927b8bdb4b123f60769ca1edb90def445e5e68611995ab469283c200f710cdc412ac4d3ffd3ee9067b", 0xa3)
r1 = dup(r0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000100)=""/255)

2018/04/19 14:15:30 executing program 7 (fault-call:1 fault-nth:1):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:30 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x679}, {&(0x7f0000000000)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))

2018/04/19 14:15:30 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0xed40, 0x1, 0x9, 'queue0\x00', 0x10000})
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:30 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x10000000033)
r1 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r4 = socket(0x2, 0x805, 0x0)
bind$inet(r4, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r4, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r4, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r1, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r1, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r5=>r1})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="96000000ba9af518c6981b00daac6ebbf7d34b31ffc28f46d5f3135904a33381843ae6168cc85b312fab5c7c2e77af7a27b3dc6e940a539b000000047e7fef083d94e5fa86d57bdc72a028bbd17d3672f680a0093ea6fa4a6a2e26b5b2a2d746c492696383d706ce4ec1a378761b15a59e21a049e40408948cf463fb22955f725b3f90a6ff78d6b714da403c4e9c8431f0bb411844940d6f7a16fe2029f868e2cba040e9463db23f63a1930ffecba03218a3679646519997f7985a0acb7162b0355e5f3fc0c2aa10bb3c4207b201dc1c3bccc59e57df04c7b3108191d53a66f56f19f1874db3681829c20e8134bd20ad56be2228e30eb6387a1e3e13e03a960ca98493cf1c34dd4c6110d1ff29a1fbc4cf98c7d978b57c96a5a3b0fdf34536a7d3ba3c5fbef7f96ddf34b01b28beb774e4ed2abb888206a2970c2f677ddc587274bcff7fc54f552e23be125fa9c865e33200b9f9979edf2c868283c06acf20cfd0f68cfbb10c25680e5278b77a8dddad3070d23c256e0aafe71c3a581679ff3eec8da19aaa3a72bed321cc22bcecc167e488dba31640a7dd53a37fa09e2848318aada1700c8029e8b600000000421d7fb4571d18b8deff9b23b3b24b10789c0cbc04e6f941a880d6ec3d80ba"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xe}}, 0x1c)

2018/04/19 14:15:30 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x2f1e, 0x28001)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x48000)

[ 1077.045616] FAULT_INJECTION: forcing a failure.
[ 1077.045616] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1077.057457] CPU: 1 PID: 25837 Comm: syz-executor7 Not tainted 4.17.0-rc1+ #8
[ 1077.064647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1077.074008] Call Trace:
[ 1077.076612]  dump_stack+0x1b9/0x294
[ 1077.080253]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1077.085449]  ? zap_class+0x720/0x720
[ 1077.089177]  should_fail.cold.4+0xa/0x1a
[ 1077.093245]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1077.098373]  ? find_held_lock+0x36/0x1c0
[ 1077.102441]  ? graph_lock+0x170/0x170
[ 1077.106243]  ? lock_acquire+0x1dc/0x520
[ 1077.110222]  ? lock_downgrade+0x8e0/0x8e0
[ 1077.114379]  ? find_held_lock+0x36/0x1c0
[ 1077.118458]  __alloc_pages_nodemask+0x34e/0xd70
[ 1077.123138]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[ 1077.128168]  ? rcu_read_unlock+0x35/0x70
[ 1077.132237]  ? __lock_is_held+0xb5/0x140
[ 1077.136314]  ? check_same_owner+0x320/0x320
[ 1077.140640]  ? find_held_lock+0x36/0x1c0
[ 1077.144708]  cache_grow_begin+0x72/0x6c0
[ 1077.148791]  kmem_cache_alloc_node_trace+0x692/0x770
[ 1077.153902]  ? zap_class+0x720/0x720
[ 1077.157647]  __kmalloc_node+0x33/0x70
[ 1077.161472]  kvmalloc_node+0x6b/0x100
[ 1077.165289]  seq_read+0xa33/0x1520
[ 1077.168849]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1077.174051]  ? seq_file_path+0x30/0x30
[ 1077.177955]  ? __fget+0x40c/0x650
[ 1077.181421]  ? seq_file_path+0x30/0x30
[ 1077.185311]  proc_reg_read+0x10a/0x190
[ 1077.189205]  __vfs_read+0x10f/0xa50
[ 1077.192840]  ? fsnotify+0x415/0x1100
[ 1077.196556]  ? proc_reg_unlocked_ioctl+0x180/0x180
[ 1077.201497]  ? vfs_copy_file_range+0xb80/0xb80
[ 1077.206084]  ? fsnotify_first_mark+0x330/0x330
[ 1077.210675]  ? __fget_light+0x2ef/0x430
[ 1077.214656]  ? fget_raw+0x20/0x20
[ 1077.218121]  ? security_file_permission+0x1c6/0x240
[ 1077.223146]  ? rw_verify_area+0x118/0x360
[ 1077.227303]  vfs_read+0x17f/0x3d0
[ 1077.230769]  ksys_pread64+0x174/0x1a0
[ 1077.234571]  ? __ia32_sys_write+0xb0/0xb0
[ 1077.238718]  ? __ia32_sys_read+0xb0/0xb0
[ 1077.242794]  __x64_sys_pread64+0x97/0xf0
[ 1077.246864]  do_syscall_64+0x1b1/0x800
[ 1077.250754]  ? finish_task_switch+0x1ca/0x810
[ 1077.255256]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1077.260197]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1077.265137]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1077.270515]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1077.275371]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1077.280561] RIP: 0033:0x455329
[ 1077.283750] RSP: 002b:00007f668ecfec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1077.291463] RAX: ffffffffffffffda RBX: 00007f668ecff6d4 RCX: 0000000000455329
[ 1077.298735] RDX: 000000000000003d RSI: 0000000020000140 RDI: 0000000000000013
[ 1077.306006] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1077.313277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1077.320546] R13: 0000000000000477 R14: 00000000006f9bc8 R15: 0000000000000001
[ 1077.351797] FAULT_INJECTION: forcing a failure.
[ 1077.351797] name failslab, interval 1, probability 0, space 0, times 0
[ 1077.353385] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1077.363090] CPU: 0 PID: 25843 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1077.376360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1077.385710] Call Trace:
[ 1077.388308]  dump_stack+0x1b9/0x294
[ 1077.391946]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1077.397155]  should_fail.cold.4+0xa/0x1a
[ 1077.401219]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1077.406338]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1077.411530]  ? graph_lock+0x170/0x170
[ 1077.415333]  ? is_bpf_text_address+0xd7/0x170
[ 1077.419836]  ? find_held_lock+0x36/0x1c0
[ 1077.423904]  ? __lock_is_held+0xb5/0x140
[ 1077.427992]  ? check_same_owner+0x320/0x320
[ 1077.432319]  ? kasan_kmalloc+0xc4/0xe0
[ 1077.436209]  ? kmem_cache_alloc_node_trace+0x150/0x770
[ 1077.441490]  ? blk_mq_init_tags+0x79/0x2b0
[ 1077.445729]  ? rcu_note_context_switch+0x710/0x710
[ 1077.450660]  ? loop_control_ioctl+0x178/0x500
[ 1077.455161]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1077.459227]  ? ksys_ioctl+0xa9/0xd0
[ 1077.462861]  __should_failslab+0x124/0x180
[ 1077.467105]  should_failslab+0x9/0x14
[ 1077.470909]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1077.476017]  ? print_usage_bug+0xc0/0xc0
[ 1077.480091]  __kmalloc_node+0x33/0x70
[ 1077.483897]  sbitmap_init_node+0x290/0x460
[ 1077.488138]  sbitmap_queue_init_node+0xaa/0x7d0
[ 1077.492813]  ? sbitmap_init_node+0x460/0x460
[ 1077.497214]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1077.502217]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1077.507477]  ? find_next_bit+0x104/0x130
[ 1077.511787]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1077.517308]  ? find_next_bit+0x104/0x130
[ 1077.521363]  blk_mq_init_tags+0x11b/0x2b0
[ 1077.525499]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1077.529808]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1077.534295]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1077.538614]  loop_add+0x2b4/0x9c0
[ 1077.542054]  ? loop_lookup+0x102/0x220
[ 1077.545929]  ? loop_queue_rq+0x6c0/0x6c0
[ 1077.549985]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1077.555177]  loop_control_ioctl+0x178/0x500
[ 1077.559484]  ? loop_add+0x9c0/0x9c0
[ 1077.563100]  ? expand_files.part.8+0x9a0/0x9a0
[ 1077.567671]  ? kasan_check_write+0x14/0x20
[ 1077.571896]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1077.576817]  ? wait_for_completion+0x870/0x870
[ 1077.581384]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1077.586565]  ? loop_add+0x9c0/0x9c0
[ 1077.590180]  do_vfs_ioctl+0x1cf/0x16a0
[ 1077.594059]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1077.598458]  ? fget_raw+0x20/0x20
[ 1077.601901]  ? __sb_end_write+0xac/0xe0
[ 1077.605864]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1077.611383]  ? fput+0x130/0x1a0
[ 1077.614648]  ? ksys_write+0x1a6/0x250
[ 1077.618441]  ? security_file_ioctl+0x94/0xc0
[ 1077.622855]  ksys_ioctl+0xa9/0xd0
[ 1077.626302]  __x64_sys_ioctl+0x73/0xb0
[ 1077.630179]  do_syscall_64+0x1b1/0x800
[ 1077.634053]  ? finish_task_switch+0x1ca/0x810
[ 1077.638535]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1077.643452]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1077.648370]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1077.653723]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1077.658556]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1077.663729] RIP: 0033:0x455329
[ 1077.666902] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1077.674599] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1077.681852] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1077.689105] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1077.696356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:15:30 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000180)={0xed40, 0x1, 0x9, 'queue0\x00', 0x10000})
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:31 executing program 7 (fault-call:1 fault-nth:2):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:31 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x48000)

2018/04/19 14:15:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x5460, 0x0)

2018/04/19 14:15:31 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r0, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r4=>r0})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)

[ 1077.703618] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000004
[ 1077.716068] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:15:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0xc020660b, 0x0)

2018/04/19 14:15:31 executing program 2 (fault-call:3 fault-nth:5):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0xc0045877, 0x0)

[ 1077.793568] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/04/19 14:15:31 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r0, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r4=>r0})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)

2018/04/19 14:15:31 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:31 executing program 6:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x20400, 0x0)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000180)=[0x7, 0x6])
r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x1, 0x2000000010001)
ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x0)
r2 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x100, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f0000000080)={0x40, 0x0, 0x80000000})
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x1ff, 0x40000)

2018/04/19 14:15:31 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc))
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000440)={0x0, 0x7ff})
r2 = syz_open_pts(r1, 0x2)
write(r2, &(0x7f0000000240)="6c6f369b43e7fe517a1dfb096edfc6a97929975464e20bb891d4e67331514c9b45813ee6280d", 0x26)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000000)={'bpq0\x00', {0x2, 0x4e23}})

[ 1077.917720] FAULT_INJECTION: forcing a failure.
[ 1077.917720] name failslab, interval 1, probability 0, space 0, times 0
[ 1077.926455] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1077.928998] CPU: 1 PID: 25874 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1077.942288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1077.951641] Call Trace:
[ 1077.954237]  dump_stack+0x1b9/0x294
[ 1077.957871]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1077.963072]  ? find_next_zero_bit+0x111/0x140
[ 1077.967582]  should_fail.cold.4+0xa/0x1a
[ 1077.971652]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1077.976775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1077.982316]  ? graph_lock+0x170/0x170
[ 1077.986135]  ? find_held_lock+0x36/0x1c0
[ 1077.990204]  ? __lock_is_held+0xb5/0x140
[ 1077.994290]  ? check_same_owner+0x320/0x320
[ 1077.998618]  ? __kmalloc_node+0x33/0x70
[ 1078.002598]  ? rcu_note_context_switch+0x710/0x710
[ 1078.007535]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1078.012825]  __should_failslab+0x124/0x180
2018/04/19 14:15:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0xc0189436, 0x0)

2018/04/19 14:15:31 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x40000, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x5450, 0x0)

[ 1078.017072]  should_failslab+0x9/0x14
[ 1078.020881]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1078.025990]  ? __kmalloc_node+0x47/0x70
[ 1078.029975]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1078.034997]  ? find_next_bit+0x104/0x130
[ 1078.039077]  sbitmap_queue_init_node+0x3bd/0x7d0
[ 1078.043847]  ? sbitmap_init_node+0x460/0x460
[ 1078.048262]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1078.053284]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1078.058562]  ? find_next_bit+0x104/0x130
[ 1078.062625]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
2018/04/19 14:15:31 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

[ 1078.068155]  ? find_next_bit+0x104/0x130
[ 1078.072220]  blk_mq_init_tags+0x11b/0x2b0
[ 1078.076364]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1078.080678]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1078.085177]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1078.089510]  loop_add+0x2b4/0x9c0
[ 1078.092966]  ? loop_lookup+0x102/0x220
[ 1078.096854]  ? loop_queue_rq+0x6c0/0x6c0
[ 1078.100921]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1078.106110]  loop_control_ioctl+0x178/0x500
[ 1078.110428]  ? loop_add+0x9c0/0x9c0
[ 1078.114049]  ? expand_files.part.8+0x9a0/0x9a0
[ 1078.118618]  ? kasan_check_write+0x14/0x20
[ 1078.122841]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1078.127761]  ? wait_for_completion+0x870/0x870
[ 1078.132335]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1078.137509]  ? loop_add+0x9c0/0x9c0
[ 1078.141125]  do_vfs_ioctl+0x1cf/0x16a0
[ 1078.145009]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1078.149415]  ? fget_raw+0x20/0x20
[ 1078.152856]  ? __sb_end_write+0xac/0xe0
[ 1078.156822]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1078.162342]  ? fput+0x130/0x1a0
[ 1078.165609]  ? ksys_write+0x1a6/0x250
[ 1078.169405]  ? security_file_ioctl+0x94/0xc0
[ 1078.173803]  ksys_ioctl+0xa9/0xd0
[ 1078.177249]  __x64_sys_ioctl+0x73/0xb0
[ 1078.181128]  do_syscall_64+0x1b1/0x800
[ 1078.185005]  ? finish_task_switch+0x1ca/0x810
[ 1078.189493]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1078.194414]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1078.199334]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1078.204685]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1078.209528]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1078.214707] RIP: 0033:0x455329
2018/04/19 14:15:31 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r0, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r4=>r0})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)

2018/04/19 14:15:31 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x2000017d, 0x0)

[ 1078.217880] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1078.225584] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1078.232856] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1078.240117] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1078.247547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1078.254829] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000005
[ 1078.265875] blk-mq: reduced tag depth (128 -> 64)
[ 1078.344717] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/04/19 14:15:32 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x48000)

2018/04/19 14:15:32 executing program 2 (fault-call:3 fault-nth:6):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:32 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0xc0045878, 0x0)

2018/04/19 14:15:32 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x913, 0x0)

2018/04/19 14:15:32 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:32 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000200)={0x4, &(0x7f00000001c0)=[{}, {}, {}, {<r1=>0x0}]})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000240)={r1, 0x1})
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000100)={0x3, 0x4, 0x4, 0xf9, &(0x7f0000000000)=[{}, {}, {}, {}]})
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000280))
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x0, 0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)

2018/04/19 14:15:32 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0xffffffff, 0x80)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000080)={0x10000, <r1=>0x0, 0x0, 0x5})
ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f00000000c0)={r1, 0x9})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:32 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r0, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={r0})

[ 1079.208252] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1079.216821] FAULT_INJECTION: forcing a failure.
[ 1079.216821] name failslab, interval 1, probability 0, space 0, times 0
[ 1079.228089] CPU: 1 PID: 25929 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1079.235275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1079.244633] Call Trace:
[ 1079.247227]  dump_stack+0x1b9/0x294
[ 1079.250868]  ? dump_stack_print_info.cold.2+0x52/0x52
2018/04/19 14:15:32 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x500)

2018/04/19 14:15:32 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r0, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)

[ 1079.256069]  ? find_next_zero_bit+0x111/0x140
[ 1079.260587]  should_fail.cold.4+0xa/0x1a
[ 1079.264662]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1079.269782]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1079.275331]  ? graph_lock+0x170/0x170
[ 1079.279146]  ? find_held_lock+0x36/0x1c0
[ 1079.283216]  ? __lock_is_held+0xb5/0x140
[ 1079.287301]  ? check_same_owner+0x320/0x320
[ 1079.291632]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1079.296658]  ? rcu_note_context_switch+0x710/0x710
[ 1079.301592]  ? __lockdep_init_map+0x105/0x590
[ 1079.306101]  __should_failslab+0x124/0x180
[ 1079.310341]  should_failslab+0x9/0x14
[ 1079.314130]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1079.319223]  ? init_wait_entry+0x1b0/0x1b0
[ 1079.323443]  ? __kmalloc_node+0x47/0x70
[ 1079.327427]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1079.332438]  sbitmap_queue_init_node+0x3bd/0x7d0
[ 1079.337189]  ? sbitmap_init_node+0x460/0x460
[ 1079.341588]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1079.346592]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1079.351853]  ? find_next_bit+0x104/0x130
[ 1079.355902]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1079.361426]  ? find_next_bit+0x104/0x130
[ 1079.365525]  blk_mq_init_tags+0x17c/0x2b0
[ 1079.369672]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1079.373986]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1079.378477]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1079.382797]  loop_add+0x2b4/0x9c0
[ 1079.386239]  ? loop_lookup+0x102/0x220
[ 1079.390114]  ? loop_queue_rq+0x6c0/0x6c0
[ 1079.394170]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1079.399347]  loop_control_ioctl+0x178/0x500
[ 1079.403654]  ? loop_add+0x9c0/0x9c0
[ 1079.407268]  ? expand_files.part.8+0x9a0/0x9a0
[ 1079.411839]  ? kasan_check_write+0x14/0x20
[ 1079.416061]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1079.420979]  ? wait_for_completion+0x870/0x870
[ 1079.425549]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1079.430724]  ? loop_add+0x9c0/0x9c0
[ 1079.434337]  do_vfs_ioctl+0x1cf/0x16a0
[ 1079.438219]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1079.442616]  ? fget_raw+0x20/0x20
[ 1079.446059]  ? __sb_end_write+0xac/0xe0
[ 1079.450031]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1079.455554]  ? fput+0x130/0x1a0
[ 1079.458820]  ? ksys_write+0x1a6/0x250
[ 1079.462611]  ? security_file_ioctl+0x94/0xc0
[ 1079.467011]  ksys_ioctl+0xa9/0xd0
[ 1079.470461]  __x64_sys_ioctl+0x73/0xb0
[ 1079.474340]  do_syscall_64+0x1b1/0x800
[ 1079.478213]  ? finish_task_switch+0x1ca/0x810
[ 1079.482697]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1079.487612]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1079.492534]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1079.497888]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1079.502724]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
2018/04/19 14:15:33 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_extract_tcp_res(&(0x7f0000000100), 0x4, 0x1f)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000013c0))
r0 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x2, 0x4002)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)={0x0, 0x6, [@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x18}, @link_local={0x1, 0x80, 0xc2}, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty]})
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f00000000c0))

2018/04/19 14:15:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x2, 0x0)

[ 1079.507901] RIP: 0033:0x455329
[ 1079.511073] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1079.518772] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1079.526029] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1079.533286] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1079.540538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1079.547792] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000006
2018/04/19 14:15:33 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x7fff)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

[ 1079.577714] blk-mq: reduced tag depth (128 -> 64)
[ 1079.688782] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/04/19 14:15:33 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x5421, 0x0)

2018/04/19 14:15:33 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x5)

2018/04/19 14:15:33 executing program 2 (fault-call:3 fault-nth:7):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:33 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:33 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r0, 0x1)

2018/04/19 14:15:33 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x6, 0x80000)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x8080000080005000, &(0x7f0000000080))

2018/04/19 14:15:33 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffff9c, 0xc010640b, &(0x7f0000000040)={0x0, <r2=>0x0, 0x89})
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x24080, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f00000000c0)={r2, 0x80000, r3})

[ 1080.066464] FAULT_INJECTION: forcing a failure.
[ 1080.066464] name failslab, interval 1, probability 0, space 0, times 0
[ 1080.077752] CPU: 0 PID: 25969 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1080.084941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1080.094295] Call Trace:
[ 1080.096892]  dump_stack+0x1b9/0x294
[ 1080.100536]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1080.105834]  should_fail.cold.4+0xa/0x1a
[ 1080.109905]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1080.115025]  ? mark_held_locks+0xc9/0x160
[ 1080.119177]  ? graph_lock+0x170/0x170
[ 1080.122983]  ? __raw_spin_lock_init+0x1c/0x100
[ 1080.127571]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1080.132595]  ? __lockdep_init_map+0x105/0x590
[ 1080.137099]  ? __lockdep_init_map+0x105/0x590
[ 1080.141607]  ? __lock_is_held+0xb5/0x140
[ 1080.145676]  ? __init_waitqueue_head+0x96/0x140
[ 1080.150368]  ? check_same_owner+0x320/0x320
[ 1080.154715]  ? sbitmap_queue_init_node+0xc6/0x7d0
[ 1080.159576]  ? rcu_note_context_switch+0x710/0x710
[ 1080.164516]  __should_failslab+0x124/0x180
[ 1080.168767]  should_failslab+0x9/0x14
[ 1080.172572]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1080.177686]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1080.183234]  ? find_next_bit+0x104/0x130
[ 1080.187310]  __kmalloc_node+0x33/0x70
[ 1080.191116]  blk_mq_alloc_rq_map+0xcc/0x220
[ 1080.195448]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1080.199958]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1080.204290]  loop_add+0x2b4/0x9c0
[ 1080.207749]  ? loop_lookup+0x102/0x220
[ 1080.211635]  ? loop_queue_rq+0x6c0/0x6c0
[ 1080.215692]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1080.220872]  loop_control_ioctl+0x178/0x500
[ 1080.225182]  ? loop_add+0x9c0/0x9c0
[ 1080.228797]  ? expand_files.part.8+0x9a0/0x9a0
[ 1080.233369]  ? kasan_check_write+0x14/0x20
[ 1080.237590]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1080.242512]  ? wait_for_completion+0x870/0x870
[ 1080.247084]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1080.252258]  ? loop_add+0x9c0/0x9c0
[ 1080.255872]  do_vfs_ioctl+0x1cf/0x16a0
[ 1080.259751]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1080.264147]  ? fget_raw+0x20/0x20
[ 1080.267587]  ? __sb_end_write+0xac/0xe0
[ 1080.271554]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1080.277076]  ? fput+0x130/0x1a0
[ 1080.280340]  ? ksys_write+0x1a6/0x250
[ 1080.284129]  ? security_file_ioctl+0x94/0xc0
[ 1080.288526]  ksys_ioctl+0xa9/0xd0
[ 1080.291972]  __x64_sys_ioctl+0x73/0xb0
[ 1080.295849]  do_syscall_64+0x1b1/0x800
[ 1080.299721]  ? finish_task_switch+0x1ca/0x810
[ 1080.304205]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1080.309121]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1080.314043]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1080.319394]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1080.324229]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1080.329405] RIP: 0033:0x455329
[ 1080.332576] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1080.340272] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1080.347524] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1080.354778] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/04/19 14:15:33 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:33 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x700000000000000)

2018/04/19 14:15:33 executing program 1 (fault-call:0 fault-nth:0):
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:33 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_S390_INTERRUPT_CPU(r1, 0x4010ae94, &(0x7f0000000000)={0x800, 0x8001})
pread64(r1, &(0x7f0000000080)=""/45, 0xfffffffa, 0x0)
syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x7f, 0x20000)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc\x00', 0xa0000, 0x0)
ioctl$sock_bt(r1, 0x5411, &(0x7f0000000100)="a30696bfc6c801a3672b03039e464cc1e53a4fd5ff65b86d72dce6214c9ee049dfc1f3083357ebf04935727ec40ce670ff4f21602496f0a3340ba2f17157bbdd43edb25f0fa820629cbec967506f3bb99571ae7e1b01cc69fd4f69a6e6")
syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x40000000000000, 0x10400)

2018/04/19 14:15:33 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000000))

2018/04/19 14:15:33 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x400200, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x208000, 0x0)
ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000080))

[ 1080.362037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1080.369290] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000007
[ 1080.388249] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1080.393199] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:15:33 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)

2018/04/19 14:15:34 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x40000000)

[ 1080.553788] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1080.563301] FAULT_INJECTION: forcing a failure.
[ 1080.563301] name failslab, interval 1, probability 0, space 0, times 0
[ 1080.574614] CPU: 1 PID: 25999 Comm: syz-executor1 Not tainted 4.17.0-rc1+ #8
[ 1080.581802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1080.591156] Call Trace:
[ 1080.593755]  dump_stack+0x1b9/0x294
[ 1080.597395]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1080.602594]  ? kasan_check_read+0x11/0x20
[ 1080.606763]  should_fail.cold.4+0xa/0x1a
[ 1080.610837]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1080.615953]  ? _raw_spin_unlock+0x22/0x30
[ 1080.620109]  ? zap_class+0x720/0x720
[ 1080.623837]  ? vm_insert_mixed_mkwrite+0x40/0x40
[ 1080.628601]  ? graph_lock+0x170/0x170
[ 1080.632409]  ? find_held_lock+0x36/0x1c0
[ 1080.636482]  ? check_same_owner+0x320/0x320
[ 1080.640801]  ? rcu_note_context_switch+0x710/0x710
[ 1080.645717]  ? lock_downgrade+0x8e0/0x8e0
[ 1080.649853]  __should_failslab+0x124/0x180
[ 1080.654077]  should_failslab+0x9/0x14
[ 1080.657864]  kmem_cache_alloc+0x2af/0x760
[ 1080.662000]  ? __handle_mm_fault+0x4310/0x4310
[ 1080.666584]  getname_flags+0xd0/0x5a0
[ 1080.670376]  getname+0x19/0x20
[ 1080.673558]  do_sys_open+0x39a/0x740
[ 1080.677264]  ? __do_page_fault+0x4/0xe40
[ 1080.681312]  ? filp_open+0x80/0x80
[ 1080.684841]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1080.689676]  __x64_sys_open+0x7e/0xc0
[ 1080.693466]  do_syscall_64+0x1b1/0x800
[ 1080.697339]  ? finish_task_switch+0x1ca/0x810
[ 1080.701824]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1080.706744]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1080.711674]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1080.717200]  ? retint_user+0x18/0x18
[ 1080.720908]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1080.725745]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1080.730940] RIP: 0033:0x40f581
[ 1080.734130] RSP: 002b:00007fc60487d7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1080.741829] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040f581
[ 1080.749118] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fc60487d850
[ 1080.756372] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1080.763626] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000013
[ 1080.770881] R13: 0000000000000691 R14: 00000000006fce38 R15: 0000000000000000
2018/04/19 14:15:34 executing program 2 (fault-call:3 fault-nth:8):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:34 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000000)=""/97)

2018/04/19 14:15:34 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:34 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4008, 0x0, 0x607b, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x7, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:34 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)

2018/04/19 14:15:34 executing program 1 (fault-call:0 fault-nth:1):
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:34 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000000080)=[{&(0x7f0000001900)=""/4096, 0xfffffffffffffddd}, {&(0x7f00000000c0)=""/13, 0xd}], 0x2b4)
pread64(r0, &(0x7f0000000040)=""/20, 0x14, 0x0)
ioctl$int_in(r0, 0xc0000000004ffc, &(0x7f0000003ff8)=0x20000)
ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f0000000000))
pread64(r0, &(0x7f0000000140)=""/95, 0x5f, 0x0)

2018/04/19 14:15:34 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4000)

[ 1081.328836] FAULT_INJECTION: forcing a failure.
[ 1081.328836] name failslab, interval 1, probability 0, space 0, times 0
[ 1081.328950] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1081.340134] CPU: 1 PID: 26020 Comm: syz-executor2 Not tainted 4.17.0-rc1+ #8
[ 1081.340145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1081.340154] Call Trace:
[ 1081.356561] FAULT_INJECTION: forcing a failure.
[ 1081.356561] name failslab, interval 1, probability 0, space 0, times 0
[ 1081.362835]  dump_stack+0x1b9/0x294
[ 1081.362859]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1081.362877]  ? is_bpf_text_address+0xd7/0x170
[ 1081.362896]  should_fail.cold.4+0xa/0x1a
[ 1081.393930]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1081.399037]  ? graph_lock+0x170/0x170
[ 1081.402834]  ? save_stack+0xa9/0xd0
[ 1081.406454]  ? save_stack+0x43/0xd0
[ 1081.410076]  ? kasan_kmalloc+0xc4/0xe0
[ 1081.413962]  ? __kmalloc_node+0x47/0x70
[ 1081.417930]  ? blk_mq_alloc_rq_map+0xcc/0x220
[ 1081.422418]  ? blk_mq_alloc_tag_set+0x65d/0xce0
[ 1081.427078]  ? loop_add+0x2b4/0x9c0
[ 1081.430702]  ? loop_control_ioctl+0x178/0x500
[ 1081.435192]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1081.439243]  ? ksys_ioctl+0xa9/0xd0
[ 1081.442867]  ? __lock_is_held+0xb5/0x140
[ 1081.446919]  ? __init_waitqueue_head+0x96/0x140
[ 1081.451594]  ? check_same_owner+0x320/0x320
[ 1081.455911]  ? rcu_note_context_switch+0x710/0x710
[ 1081.460834]  __should_failslab+0x124/0x180
[ 1081.465063]  should_failslab+0x9/0x14
[ 1081.468858]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1081.473955]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1081.479486]  ? kasan_unpoison_shadow+0x35/0x50
[ 1081.484066]  __kmalloc_node+0x33/0x70
[ 1081.487867]  blk_mq_alloc_rq_map+0x10d/0x220
[ 1081.492267]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1081.496758]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1081.501075]  loop_add+0x2b4/0x9c0
[ 1081.504524]  ? loop_lookup+0x102/0x220
[ 1081.508400]  ? loop_queue_rq+0x6c0/0x6c0
[ 1081.512462]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1081.517643]  loop_control_ioctl+0x178/0x500
[ 1081.521954]  ? loop_add+0x9c0/0x9c0
[ 1081.525574]  ? expand_files.part.8+0x9a0/0x9a0
[ 1081.530147]  ? kasan_check_write+0x14/0x20
[ 1081.534372]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1081.539296]  ? wait_for_completion+0x870/0x870
[ 1081.543872]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1081.549051]  ? loop_add+0x9c0/0x9c0
[ 1081.552676]  do_vfs_ioctl+0x1cf/0x16a0
[ 1081.556561]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1081.560960]  ? fget_raw+0x20/0x20
[ 1081.564407]  ? __sb_end_write+0xac/0xe0
[ 1081.568376]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1081.573904]  ? fput+0x130/0x1a0
[ 1081.577174]  ? ksys_write+0x1a6/0x250
[ 1081.580970]  ? security_file_ioctl+0x94/0xc0
[ 1081.585374]  ksys_ioctl+0xa9/0xd0
[ 1081.588822]  __x64_sys_ioctl+0x73/0xb0
[ 1081.592705]  do_syscall_64+0x1b1/0x800
[ 1081.596585]  ? finish_task_switch+0x1ca/0x810
[ 1081.601078]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1081.605999]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1081.610928]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1081.616285]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1081.621123]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1081.626303] RIP: 0033:0x455329
[ 1081.629479] RSP: 002b:00007fb41abe2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1081.637178] RAX: ffffffffffffffda RBX: 00007fb41abe36d4 RCX: 0000000000455329
[ 1081.644440] RDX: 0000000000000000 RSI: 0000000000004c80 RDI: 0000000000000013
[ 1081.651703] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1081.658961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1081.666221] R13: 0000000000000288 R14: 00000000006f6d60 R15: 0000000000000008
[ 1081.673498] CPU: 0 PID: 26023 Comm: syz-executor1 Not tainted 4.17.0-rc1+ #8
[ 1081.680685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1081.690029] Call Trace:
[ 1081.692612]  dump_stack+0x1b9/0x294
[ 1081.696231]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1081.701418]  should_fail.cold.4+0xa/0x1a
[ 1081.705469]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1081.710567]  ? debug_check_no_locks_freed+0x310/0x310
[ 1081.715751]  ? find_held_lock+0x36/0x1c0
[ 1081.719819]  ? check_same_owner+0x320/0x320
[ 1081.724134]  ? rcu_note_context_switch+0x710/0x710
[ 1081.729055]  __should_failslab+0x124/0x180
[ 1081.733281]  should_failslab+0x9/0x14
[ 1081.737070]  kmem_cache_alloc+0x2af/0x760
[ 1081.741207]  ? debug_check_no_locks_freed+0x310/0x310
[ 1081.746388]  get_empty_filp+0x125/0x520
[ 1081.750348]  ? proc_nr_files+0x60/0x60
[ 1081.754228]  ? lock_downgrade+0x8e0/0x8e0
[ 1081.758363]  ? graph_lock+0x170/0x170
[ 1081.762148]  ? kasan_check_read+0x11/0x20
[ 1081.766285]  ? rcu_is_watching+0x85/0x140
[ 1081.770419]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1081.775600]  path_openat+0x116/0x4e20
[ 1081.779402]  ? unwind_get_return_address+0x61/0xa0
[ 1081.784323]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1081.789323]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1081.794068]  ? find_held_lock+0x36/0x1c0
[ 1081.798127]  ? lock_downgrade+0x8e0/0x8e0
[ 1081.802261]  ? do_sys_open+0x39a/0x740
[ 1081.806138]  ? kasan_check_read+0x11/0x20
[ 1081.810272]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1081.814666]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1081.819232]  ? __lock_is_held+0xb5/0x140
[ 1081.823288]  ? _raw_spin_unlock+0x22/0x30
[ 1081.827421]  ? __alloc_fd+0x346/0x700
[ 1081.831205]  ? usercopy_warn+0x120/0x120
[ 1081.835260]  do_filp_open+0x249/0x350
[ 1081.839050]  ? may_open_dev+0x100/0x100
[ 1081.843011]  ? strncpy_from_user+0x3b6/0x500
[ 1081.847416]  ? mpi_free.cold.1+0x19/0x19
[ 1081.851468]  ? get_unused_fd_flags+0x121/0x190
[ 1081.856039]  ? getname_flags+0xd0/0x5a0
[ 1081.860002]  ? getname_flags+0x26e/0x5a0
[ 1081.864061]  do_sys_open+0x56f/0x740
[ 1081.867766]  ? __do_page_fault+0x4/0xe40
[ 1081.871812]  ? filp_open+0x80/0x80
[ 1081.875338]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1081.880869]  __x64_sys_open+0x7e/0xc0
[ 1081.884661]  do_syscall_64+0x1b1/0x800
[ 1081.888538]  ? finish_task_switch+0x1ca/0x810
[ 1081.893030]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1081.897949]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1081.902868]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1081.908390]  ? retint_user+0x18/0x18
[ 1081.912096]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1081.916929]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1081.922104] RIP: 0033:0x40f581
2018/04/19 14:15:35 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4000000000000000)

2018/04/19 14:15:35 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)

[ 1081.925276] RSP: 002b:00007fc60487d7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1081.932972] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040f581
[ 1081.940226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fc60487d850
[ 1081.947490] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1081.954743] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000013
[ 1081.961996] R13: 0000000000000691 R14: 00000000006fce38 R15: 0000000000000001
2018/04/19 14:15:35 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x3d579e39, 0xfffffffffffffffc, 0x3f, 0x7, 0x101, 0xfff, 0x9, 0x9, 0xfffffffffffffbff, 0x1, 0x7fff, 0x6})
ioctl$KDGKBTYPE(r0, 0x4b33, &(0x7f0000000040))
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f0000000080))
ioctl$DRM_IOCTL_GET_MAGIC(r0, 0x80046402, &(0x7f00000000c0)=0xebf)
ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0)

2018/04/19 14:15:35 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = semget(0x2, 0x2, 0x0)
semctl$GETZCNT(r2, 0x0, 0xf, &(0x7f0000000040))
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={'syzkaller0\x00', {0x2, 0x4e21, @broadcast=0xffffffff}})

[ 1082.023739] blk-mq: reduced tag depth (128 -> 64)
[ 1082.111063] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/04/19 14:15:36 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x7fffffff, 0x86400)
ioctl$EVIOCGID(r1, 0x80084502, &(0x7f0000000080)=""/39)
r2 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x6, 0x400)
ioctl$EVIOCGPHYS(r2, 0x80404507, &(0x7f00000001c0)=""/218)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x200, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '/dev/dmmidi#\x00'}], 0xa, "496cfa24b66667a4d86338b9a45b88af799a351766145ecf24a7476df967308f810173e522e7036534743412625c34103238446b20d4dfd637606ea2aed1ed199e2ff83c4e25f749521ef9b3bee3c3"}, 0x68)

2018/04/19 14:15:36 executing program 2 (fault-call:3 fault-nth:9):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:36 executing program 1 (fault-call:0 fault-nth:2):
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x500000000000000)

2018/04/19 14:15:36 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x100)
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f00000000c0)={0x8, &(0x7f0000000080)=[{0x8, 0xb7, 0xfffffffffffffff7, 0x100}, {0x80000000, 0xbb27, 0x0, 0x2}, {0xdcdb, 0x2, 0x100000001, 0x18}, {0xfffffffffffff199, 0x30e671c5, 0x9}, {0x6, 0x2, 0x6, 0x7}, {0x6, 0xdf53, 0x8000, 0x6}, {0xfffffffffffffff9, 0xef, 0xb9, 0x1f}, {0xef98, 0x1828501d, 0x800, 0x5}]})
r2 = dup(r0)
readahead(r0, 0x10001, 0x3)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r3)
pwrite64(r2, &(0x7f0000000000)="a57416702c1f807bf6589fe9f185dd745b2fbe1f850560731f62ccf768f5", 0x1e, 0x0)

2018/04/19 14:15:36 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:36 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000040)={r1, 0x2})

2018/04/19 14:15:36 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)

[ 1082.940957] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[ 1082.960454] FAULT_INJECTION: forcing a failure.
[ 1082.960454] name failslab, interval 1, probability 0, space 0, times 0
[ 1082.971774] CPU: 1 PID: 26067 Comm: syz-executor1 Not tainted 4.17.0-rc1+ #8
[ 1082.978967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1082.988324] Call Trace:
2018/04/19 14:15:36 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x10400, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f0000000080)={0x7fff, 0x107005})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:36 executing program 4:
ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, &(0x7f00000000c0))
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:36 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:15:36 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0xa00)

[ 1082.990922]  dump_stack+0x1b9/0x294
[ 1082.994571]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1082.999866]  should_fail.cold.4+0xa/0x1a
[ 1083.003934]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1083.009054]  ? debug_check_no_locks_freed+0x310/0x310
[ 1083.014263]  ? find_held_lock+0x36/0x1c0
[ 1083.018352]  ? check_same_owner+0x320/0x320
[ 1083.022684]  ? rcu_note_context_switch+0x710/0x710
[ 1083.027626]  __should_failslab+0x124/0x180
[ 1083.031874]  should_failslab+0x9/0x14
[ 1083.035686]  kmem_cache_alloc+0x2af/0x760
[ 1083.039849]  ? debug_check_no_locks_freed+0x310/0x310
[ 1083.045060]  get_empty_filp+0x125/0x520
[ 1083.049046]  ? proc_nr_files+0x60/0x60
[ 1083.052948]  ? lock_downgrade+0x8e0/0x8e0
[ 1083.057108]  ? perf_trace_lock+0xd6/0x900
[ 1083.061263]  ? rcu_is_watching+0x85/0x140
[ 1083.065422]  path_openat+0x116/0x4e20
[ 1083.069251]  ? unwind_get_return_address+0x61/0xa0
[ 1083.074190]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1083.079198]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1083.083948]  ? find_held_lock+0x36/0x1c0
[ 1083.088005]  ? lock_downgrade+0x8e0/0x8e0
[ 1083.092145]  ? do_sys_open+0x39a/0x740
[ 1083.096033]  ? kasan_check_read+0x11/0x20
[ 1083.100169]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1083.104566]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1083.109135]  ? __lock_is_held+0xb5/0x140
[ 1083.113193]  ? _raw_spin_unlock+0x22/0x30
[ 1083.117330]  ? __alloc_fd+0x346/0x700
[ 1083.121117]  ? usercopy_warn+0x120/0x120
[ 1083.125176]  do_filp_open+0x249/0x350
[ 1083.128963]  ? may_open_dev+0x100/0x100
[ 1083.132925]  ? strncpy_from_user+0x3b6/0x500
[ 1083.137328]  ? mpi_free.cold.1+0x19/0x19
[ 1083.141380]  ? get_unused_fd_flags+0x121/0x190
[ 1083.145950]  ? getname_flags+0xd0/0x5a0
[ 1083.149913]  ? getname_flags+0x26e/0x5a0
[ 1083.153972]  do_sys_open+0x56f/0x740
[ 1083.157678]  ? __do_page_fault+0x4/0xe40
[ 1083.161726]  ? filp_open+0x80/0x80
[ 1083.165253]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1083.170782]  __x64_sys_open+0x7e/0xc0
[ 1083.174575]  do_syscall_64+0x1b1/0x800
[ 1083.178450]  ? finish_task_switch+0x1ca/0x810
[ 1083.182936]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1083.187852]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1083.192771]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1083.198293]  ? retint_user+0x18/0x18
[ 1083.201997]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1083.206839]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1083.212015] RIP: 0033:0x40f581
[ 1083.215194] RSP: 002b:00007fc60487d7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1083.222890] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040f581
[ 1083.230142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fc60487d850
[ 1083.237414] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1083.244667] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000013
[ 1083.251922] R13: 0000000000000691 R14: 00000000006fce38 R15: 0000000000000002
2018/04/19 14:15:37 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:37 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="d7287b4df362b56154e2646751ae8c7c99105a0b637c9bf1b8d55e39df8aac38131d23c078e6c3a4d3da4bbaeced762fdbe676941d2c4ec816c8387693d72548b5cd26fde4dfb24829de55e901250f2dac59e16e0c40775568c3f64837566c800667e4d0eca3a02a2678aafced062231b17ed7ba814412288941d17354b2d5920276332150f851eeb64892a8e783663af9f2975fb12c645b5170e39f73830b6240010e9dd66c3071fff6879504900b164a91fce00d0b03456274")
r1 = semget$private(0x0, 0x2, 0x10)
semctl$GETALL(r1, 0x0, 0xd, &(0x7f0000000040))

2018/04/19 14:15:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000040))
ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f00000000c0)=""/4096)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000000)={<r3=>0x0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r3, 0x0, r1})

2018/04/19 14:15:37 executing program 1 (fault-call:0 fault-nth:3):
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:37 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4)

2018/04/19 14:15:37 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c79, 0x0)

2018/04/19 14:15:37 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000000)={0x7, <r1=>0x0, 0x1, 0x72bd})
ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f0000000040)={r1, 0xdf3d778})

2018/04/19 14:15:37 executing program 4:
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x800, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = dup(r0)
ioctl$EVIOCGEFFECTS(r2, 0x80044584, &(0x7f0000000100)=""/96)

2018/04/19 14:15:37 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x5000000)

2018/04/19 14:15:37 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c14, 0x0)

[ 1083.938096] FAULT_INJECTION: forcing a failure.
[ 1083.938096] name failslab, interval 1, probability 0, space 0, times 0
[ 1083.949404] CPU: 1 PID: 26108 Comm: syz-executor1 Not tainted 4.17.0-rc1+ #8
[ 1083.956594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1083.965960] Call Trace:
[ 1083.965986]  dump_stack+0x1b9/0x294
[ 1083.966009]  ? dump_stack_print_info.cold.2+0x52/0x52
2018/04/19 14:15:37 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
readv(r3, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

[ 1083.966039]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:15:37 executing program 4:
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0)
clone(0x2042000, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:37 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x7000000)

[ 1083.966060]  ? fault_create_debugfs_attr+0x1f0/0x1f0
2018/04/19 14:15:37 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c5a, 0x0)

2018/04/19 14:15:37 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$EVIOCGABS3F(r1, 0x8018457f, &(0x7f0000000000)=""/168)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1083.966088]  ? debug_check_no_locks_freed+0x310/0x310
[ 1083.966105]  ? debug_check_no_locks_freed+0x310/0x310
[ 1083.966123]  ? find_held_lock+0x36/0x1c0
[ 1083.966161]  ? check_same_owner+0x320/0x320
[ 1083.966181]  ? rcu_note_context_switch+0x710/0x710
[ 1083.966201]  __should_failslab+0x124/0x180
[ 1083.966219]  should_failslab+0x9/0x14
[ 1083.966235]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1083.966250]  ? lock_downgrade+0x8e0/0x8e0
[ 1083.966267]  ? mousedev_release+0xc0/0xc0
[ 1083.966279]  mousedev_open+0xd0/0x500
[ 1083.966295]  ? kasan_check_read+0x11/0x20
[ 1083.966312]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1083.966329]  ? mousedev_release+0xc0/0xc0
[ 1083.966345]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1083.966359]  ? refcount_inc+0x29/0x70
[ 1083.966376]  ? mousedev_release+0xc0/0xc0
[ 1083.966390]  chrdev_open+0x256/0x760
[ 1083.966408]  ? cdev_put.part.0+0x50/0x50
[ 1083.966425]  ? errseq_sample+0xf9/0x160
[ 1083.966442]  ? errseq_check+0x140/0x140
[ 1083.966464]  ? security_file_open+0x14f/0x1d0
[ 1083.966485]  do_dentry_open+0x7ef/0xf10
[ 1083.966502]  ? cdev_put.part.0+0x50/0x50
[ 1083.966525]  vfs_open+0x139/0x230
[ 1083.966545]  path_openat+0x1676/0x4e20
[ 1083.966577]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1083.966620]  ? find_held_lock+0x36/0x1c0
[ 1083.966647]  ? lock_downgrade+0x8e0/0x8e0
[ 1083.966663]  ? do_sys_open+0x39a/0x740
[ 1083.966687]  ? kasan_check_read+0x11/0x20
[ 1083.966705]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1083.966723]  ? __lock_is_held+0xb5/0x140
[ 1083.966749]  ? _raw_spin_unlock+0x22/0x30
[ 1083.966767]  ? __alloc_fd+0x346/0x700
[ 1083.966783]  ? usercopy_warn+0x120/0x120
[ 1083.966810]  do_filp_open+0x249/0x350
[ 1083.966829]  ? may_open_dev+0x100/0x100
[ 1083.966847]  ? strncpy_from_user+0x3b6/0x500
[ 1083.966881]  ? mpi_free.cold.1+0x19/0x19
[ 1083.966905]  ? get_unused_fd_flags+0x121/0x190
[ 1083.966921]  ? getname_flags+0xd0/0x5a0
[ 1083.966940]  ? getname_flags+0x26e/0x5a0
[ 1083.966972]  do_sys_open+0x56f/0x740
[ 1083.966994]  ? __do_page_fault+0x4/0xe40
[ 1083.967011]  ? filp_open+0x80/0x80
[ 1083.967032]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1083.967056]  __x64_sys_open+0x7e/0xc0
[ 1083.967074]  do_syscall_64+0x1b1/0x800
[ 1083.967092]  ? finish_task_switch+0x1ca/0x810
[ 1083.967110]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1083.967129]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1083.967147]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1083.967175]  ? retint_user+0x18/0x18
[ 1083.967197]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1083.967215]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1083.967226] RIP: 0033:0x40f581
[ 1083.967234] RSP: 002b:00007fc60487d7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1083.967251] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040f581
[ 1083.967259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fc60487d850
[ 1083.967267] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1083.967276] R10: 0000000020000040 R11: 0000000000000293 R12: 0000000000000013
[ 1083.967285] R13: 0000000000000691 R14: 00000000006fce38 R15: 0000000000000003
2018/04/19 14:15:38 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
socket$pppoe(0x18, 0x1, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:38 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x700)

2018/04/19 14:15:38 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c62, 0x0)

2018/04/19 14:15:38 executing program 4:
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0)
clone(0x0, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:38 executing program 1 (fault-call:0 fault-nth:4):
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:38 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xb8d1, 0x4000)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))

2018/04/19 14:15:38 executing program 3:
r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x4, 0x40000)
ioctl$TIOCSBRK(r0, 0x5427)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:38 executing program 6:
perf_event_open(&(0x7f000025c000)={0x3, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x280800, 0x0)
ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f00000000c0)=0x9)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:38 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x300)

2018/04/19 14:15:38 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c0e, 0x0)

2018/04/19 14:15:38 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x1b, 0x0, 0x0, 'bcsf0\x00', 'teql0\x00', 'ip_vti0\x00', 'erspan0\x00', @empty, [], @random="c8992de4105a", [], 0x70, 0x70, 0xc0}}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00'}}}}]}]}, 0x1c8)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:38 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0)

2018/04/19 14:15:38 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:38 executing program 4:
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0)
clone(0x0, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:38 executing program 6:
r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x289, 0x400000)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xffff7fffffffffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, r0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:38 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x100000000000000)

2018/04/19 14:15:38 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r2=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r3 = socket(0x2, 0x805, 0x0)
bind$inet(r3, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r3, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000003c0)={r2, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:38 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c3a, 0x0)

2018/04/19 14:15:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$GIO_CMAP(r1, 0x4b70, &(0x7f0000000000))
r2 = dup(r0)
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, r3)

2018/04/19 14:15:39 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x300000000000000)

2018/04/19 14:15:39 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c0b, 0x0)

2018/04/19 14:15:39 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r2 = socket(0x2, 0x805, 0x0)
bind$inet(r2, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r2, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:39 executing program 4:
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0)
clone(0x0, &(0x7f00000012c0), &(0x7f0000001240), &(0x7f0000001380), &(0x7f0000001280))

2018/04/19 14:15:39 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/.ev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:39 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
lseek(r0, 0x3, 0xfffffffffffffffe)
ioctl$EVIOCGPHYS(r0, 0x80404507, &(0x7f0000000000)=""/57)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000040)={0x3, r0})
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))

2018/04/19 14:15:39 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe2(&(0x7f0000e3eff8)={0x0, <r2=>0x0}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = dup3(r3, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SMI(r4, 0xaeb7)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fde000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000000)="0fae81050000000f01cf0f070f063e0f09eaec05470d2c01c4c11bd08d000001009a6a170000c4000f01c965f4", 0x2d}], 0x1, 0x0, &(0x7f00000002c0), 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:39 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0xa00000000000000)

2018/04/19 14:15:39 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c08, 0x0)

2018/04/19 14:15:39 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r2 = socket(0x2, 0x805, 0x0)
bind$inet(r2, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:39 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000040)={0x2, r0})
syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x4, 0x400040)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:39 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='//ev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:39 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x6000000)

2018/04/19 14:15:39 executing program 4:
syz_mount_image$msdos(&(0x7f0000000200)='msdos\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x1, &(0x7f0000000e00)=[{&(0x7f0000000640), 0x0, 0x38e2cba6}], 0x8000, &(0x7f00000006c0))

2018/04/19 14:15:39 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/.nput/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:39 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0xa000000)

2018/04/19 14:15:40 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c41, 0x0)

2018/04/19 14:15:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x7, r1, 0x1})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:40 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
socket(0x2, 0x805, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:40 executing program 4:

2018/04/19 14:15:40 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev//nput/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:40 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x3000000)

2018/04/19 14:15:40 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$KVM_X86_SET_MCE(r0, 0x4040ae9e, &(0x7f0000000000)={0x400000000000000, 0x0, 0x9, 0x4, 0xd})
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000001900)=""/4096, 0x841}, {&(0x7f00000013c0)=""/13, 0xd}], 0x2)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))

2018/04/19 14:15:40 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$sndpcmp(&(0x7f0000001040)='/dev/snd/pcmC#D#p\x00', 0x100, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f0000001080)={r0})
write$vnet(r1, &(0x7f0000001240)={0x1, {&(0x7f0000001100)=""/201, 0xc9, &(0x7f0000001200)=""/43, 0x1, 0x4}}, 0x68)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000001400)={"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"})
ioctl$sock_proto_private(r0, 0x89eb, &(0x7f0000000040)="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")
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/qat_adf_ctl\x00', 0x402000, 0x0)
ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f00000012c0)=""/151)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$alg(0x26, 0x5, 0x0)

2018/04/19 14:15:40 executing program 4:

2018/04/19 14:15:40 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c36, 0x0)

2018/04/19 14:15:40 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x0, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:40 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4000000)

2018/04/19 14:15:40 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/.ouse#\x00', 0x0, 0x0)

2018/04/19 14:15:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$TIOCSLCKTRMIOS(r1, 0x5457, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f0000000040)={0x5, 0xfff, 0x5, 'queue0\x00', 0x1})

2018/04/19 14:15:40 executing program 4:

2018/04/19 14:15:40 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = semget(0x3, 0x3, 0x20)
semctl$GETZCNT(r0, 0x3, 0xf, &(0x7f0000000040)=""/255)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:40 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:40 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c23, 0x0)

2018/04/19 14:15:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$RNDZAPENTCNT(r1, 0x5204, &(0x7f0000000080)=0x400)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000000040)=0x6)

2018/04/19 14:15:40 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0xa)

2018/04/19 14:15:40 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000af6ff6)='/dev/dsp#\x00', 0x1, 0x0)
readv(r0, &(0x7f0000003c00)=[{&(0x7f0000002900)=""/4096, 0x12b8}, {&(0x7f0000001040)=""/13, 0xd}], 0x2)
openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x80000, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x1)
ioctl$int_in(r0, 0x80000000005000, &(0x7f0000003ff8))
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000000)={0x8})
ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000040)={0x7d, 0x0, [0x10001, 0x1f, 0x1, 0xe0000000000000]})

2018/04/19 14:15:40 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input//ouse#\x00', 0x0, 0x0)

2018/04/19 14:15:40 executing program 4:

2018/04/19 14:15:40 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:40 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x6)

2018/04/19 14:15:40 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c1c, 0x0)

2018/04/19 14:15:40 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:40 executing program 4:
syz_mount_image$minix(&(0x7f0000000000)='minix\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="100000000100010005000000ffffff7f7824", 0x12, 0x400}, {&(0x7f0000010a00)="01002e000000000000000000000000000000000000000000000000000000000001002e2e00000000000000000000000000000000000000000000000000000000", 0x40, 0x1400}], 0x0, 0x0)

2018/04/19 14:15:40 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe98a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x7f, 0x8000)
ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f0000000080)={0x2, [0x30, 0x3ff]})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f00000000c0))

2018/04/19 14:15:41 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x3)

2018/04/19 14:15:41 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:41 executing program 4:
syz_mount_image$msdos(&(0x7f0000000080)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe7fd, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="eb3c906d6b0000080000000000000000000000000000005a", 0x18}], 0x0, &(0x7f00000001c0))

2018/04/19 14:15:41 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c18, 0x0)

2018/04/19 14:15:41 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x800000000000000, 0x10001)
ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:41 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:41 executing program 0:
syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb52904e5446532020202000040200000000000000f8000000000000000000000000000080008000ff07feffffff00000800000000000000ff01000000000000f600000002", 0x45}], 0x0, &(0x7f000007e200))

2018/04/19 14:15:41 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x5, 0x400000)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x101000, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f00000000c0)={0x0, 0x3ff, 0xfffffffffffffffc, &(0x7f0000000080)})

2018/04/19 14:15:42 executing program 4:
syz_mount_image$xfs(&(0x7f0000000380)='xfs\x00', &(0x7f0000000040)='./file1\x00', 0x1000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="584653420000100000000000000010000000000000000000000000000000000034fb8fb9e4bf48b6ad26c597eb4f5c190000000000000004e4ff000000000d880000000000000d890000000000000d8a000000010000100000000001000000000000035ab4240200040000040000000000000000000000000c090a020c", 0x7d}], 0x0, &(0x7f0000000400)={'nouuid,', {[{@gquota='gquota', 0x2c}]}})

2018/04/19 14:15:42 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x7)

2018/04/19 14:15:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x8100, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c30, 0x0)

2018/04/19 14:15:42 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:42 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000001000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000080))

2018/04/19 14:15:42 executing program 4:
syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000540), 0x0, &(0x7f0000000580)={[{@subvol={'subvol', 0x3d}, 0x2c}]})

2018/04/19 14:15:42 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
write$binfmt_script(r1, &(0x7f0000000080)={'#! ', './file0', [{0x20, '/dev/usbmon#\x00'}, {0x20, '/dev/loop-control\x00'}, {0x20, '/dev/usbmon#\x00'}, {0x20, ')'}], 0xa, "d106"}, 0x3e)
r2 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x2, 0x800)
ioctl$EVIOCGBITSND(r2, 0x80404532, &(0x7f00000000c0)=""/10)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x100000000)
ioctl$DRM_IOCTL_GET_CAP(r1, 0xc010640c, &(0x7f0000000100)={0x8000, 0x3ff})

2018/04/19 14:15:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c77, 0x0)

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x600000000000000)

2018/04/19 14:15:42 executing program 6:
r0 = syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x3, 0x2000)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VT_RELDISP(r0, 0x5605)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x80000001, 0x80)

2018/04/19 14:15:42 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/arp\x00')
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000340)={'syzkaller0\x00', 0xb})
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000001c0)={{0x2, 0x0, @multicast2=0xe0000002}, {0x0, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}}, 0xa, {0x2, 0x0, @multicast1=0xe0000001}, 'syzkaller0\x00'})
pread64(r0, &(0x7f00000004c0)=""/8, 0x8, 0x4000a5)

2018/04/19 14:15:42 executing program 4:
syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000001500), 0x0, &(0x7f0000000480)={[{@utf8='utf8', 0x2c}]})

2018/04/19 14:15:42 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:42 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x79, 0x4)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x2000000)

2018/04/19 14:15:42 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
r1 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 4:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:42 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000200)='net/rt6_stats\x00')

2018/04/19 14:15:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c4a, 0x0)

2018/04/19 14:15:42 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)="2f6465762f696e7075742f6d6f75736523f6", 0x0, 0x0)

2018/04/19 14:15:42 executing program 3:
r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x4, 0x200080)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
dup(r0)

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x400000000000000)

2018/04/19 14:15:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
write$binfmt_script(r1, &(0x7f0000000080)={'#! ', './file0', [{0x20, '/dev/usbmon#\x00'}, {0x20, '/dev/loop-control\x00'}, {0x20, '/dev/usbmon#\x00'}, {0x20, ')'}], 0xa, "d106"}, 0x3e)
r2 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x2, 0x800)
ioctl$EVIOCGBITSND(r2, 0x80404532, &(0x7f00000000c0)=""/10)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x100000000)
ioctl$DRM_IOCTL_GET_CAP(r1, 0xc010640c, &(0x7f0000000100)={0x8000, 0x3ff})

2018/04/19 14:15:42 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
socket$inet(0x2, 0x0, 0x886)
r0 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 0:
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x11, &(0x7f0000000080)={[{@uid={'uid', 0x3d, [0x30]}, 0x2c}, {@errors_continue='errors=continue', 0x2c}, {@tz_utc='tz=UTC', 0x2c}, {@dmask={'dmask', 0x3d, [0x30, 0x37, 0x32, 0x37, 0x32]}, 0x2c}]})

2018/04/19 14:15:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c60, 0x0)

2018/04/19 14:15:42 executing program 6:
r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xff, 0x2200)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000080)={0x18, 0x0, {0x4, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x16}}})
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x4, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000000)={0x8, 0x1, {0x2, 0x3, 0x6, 0x0, 0x100}})

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x1000000)

2018/04/19 14:15:42 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:42 executing program 5:
socket$inet6(0xa, 0x3, 0x10000000033)
r0 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c37, 0x0)

2018/04/19 14:15:42 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x2)

2018/04/19 14:15:42 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:42 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = semget(0x3, 0x3, 0x20)
semctl$GETZCNT(r0, 0x3, 0xf, &(0x7f0000000040)=""/255)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:42 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:42 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:42 executing program 5:
r0 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:42 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x200000000000000)

2018/04/19 14:15:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f0000000180))
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f0000000040)={r1})
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000080)={'veth0_to_bridge\x00', 0x70e2c695c985029a})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x400, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000100)={0x3, 0x5})
syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x101000)

2018/04/19 14:15:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c75, 0x0)

2018/04/19 14:15:43 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = semget(0x3, 0x3, 0x20)
semctl$GETZCNT(r0, 0x3, 0xf, &(0x7f0000000040)=""/255)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:43 executing program 5:
r0 = socket$inet(0x2, 0x0, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:43 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x600)

2018/04/19 14:15:43 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:43 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x9)
r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xad41, 0x82000)
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000080)=""/91)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000100)={0x3, 0x5, 0xff, 0x2, 0xffff, 0xfff})

2018/04/19 14:15:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x5421, 0x0)

2018/04/19 14:15:43 executing program 7:
syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x13e, 0x193b287ee56854d0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{}]})
pread64(r0, &(0x7f0000000140)=""/61, 0xffffffffffffff89, 0x0)
ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000000))

2018/04/19 14:15:43 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = semget(0x3, 0x3, 0x20)
semctl$GETZCNT(r0, 0x3, 0xf, &(0x7f0000000040)=""/255)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:43 executing program 5:
r0 = socket$inet(0x2, 0x0, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:43 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c23, 0x0)

2018/04/19 14:15:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x7, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x10001, 0x2000)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r1, 0xc0045540, &(0x7f0000000040)=0x7bea)
r2 = dup(r0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x400, 0x0)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c42, 0x0)

2018/04/19 14:15:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})

2018/04/19 14:15:43 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000000)={0x7, 0x888e})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x8040ae9f, &(0x7f0000000040))

2018/04/19 14:15:43 executing program 6:
perf_event_open(&(0x7f000025c000)={0xffffffffffffffff, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:43 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:43 executing program 5:
r0 = socket$inet(0x2, 0x0, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:43 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="d7287b4df362b56154e2646751ae8c7c99105a0b637c9bf1b8d55e39df8aac38131d23c078e6c3a4d3da4bbaeced762fdbe676941d2c4ec816c8387693d72548b5cd26fde4dfb24829de55e901250f2dac59e16e0c40775568c3f64837566c800667e4d0eca3a02a2678aafced062231b17ed7ba814412288941d17354b2d5920276332150f851eeb64892a8e783663af9f2975fb12c645b5170e39f73830b6240010e9dd66c3071fff6879504900b164a91fce00d0b03456274")
r1 = semget$private(0x0, 0x2, 0x10)
semctl$GETALL(r1, 0x0, 0xd, &(0x7f0000000040))

2018/04/19 14:15:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x4, 0x200000)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c11, 0x0)

2018/04/19 14:15:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})

2018/04/19 14:15:43 executing program 7:
r0 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x8, 0x1)
ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000000100)={0x1f, 0x9, 0x7})
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00')
ioctl$VT_DISALLOCATE(r1, 0x5608)
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000000)={0x0, 0x3ff, 0x7ff, 0x6, 0x4, 0x9})

2018/04/19 14:15:43 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="d7287b4df362b56154e2646751ae8c7c99105a0b637c9bf1b8d55e39df8aac38131d23c078e6c3a4d3da4bbaeced762fdbe676941d2c4ec816c8387693d72548b5cd26fde4dfb24829de55e901250f2dac59e16e0c40775568c3f64837566c800667e4d0eca3a02a2678aafced062231b17ed7ba814412288941d17354b2d5920276332150f851eeb64892a8e783663af9f2975fb12c645b5170e39f73830b6240010e9dd66c3071fff6879504900b164a91fce00d0b03456274")
r1 = semget$private(0x0, 0x2, 0x10)
semctl$GETALL(r1, 0x0, 0xd, &(0x7f0000000040))

2018/04/19 14:15:43 executing program 3:
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = dup(0xffffffffffffffff)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r1)
syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000000)=""/156)

2018/04/19 14:15:43 executing program 5:
r0 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c1b, 0x0)

2018/04/19 14:15:43 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x407987bed291496b, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{}]})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
ioctl$KVM_PPC_GET_PVINFO(r0, 0x4080aea1, &(0x7f0000000100)=""/45)

2018/04/19 14:15:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$TIOCNXCL(r1, 0x540d)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000000)={0x2, 0x8})
ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000040)=""/78)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f00000000c0)={"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"})

2018/04/19 14:15:43 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:43 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})

2018/04/19 14:15:43 executing program 5:
r0 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:43 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="d7287b4df362b56154e2646751ae8c7c99105a0b637c9bf1b8d55e39df8aac38131d23c078e6c3a4d3da4bbaeced762fdbe676941d2c4ec816c8387693d72548b5cd26fde4dfb24829de55e901250f2dac59e16e0c40775568c3f64837566c800667e4d0eca3a02a2678aafced062231b17ed7ba814412288941d17354b2d5920276332150f851eeb64892a8e783663af9f2975fb12c645b5170e39f73830b6240010e9dd66c3071fff6879504900b164a91fce00d0b03456274")
r1 = semget$private(0x0, 0x2, 0x10)
semctl$GETALL(r1, 0x0, 0xd, &(0x7f0000000040))

2018/04/19 14:15:43 executing program 7:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='net/sctp\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:43 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:43 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x1)

2018/04/19 14:15:43 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="d7287b4df362b56154e2646751ae8c7c99105a0b637c9bf1b8d55e39df8aac38131d23c078e6c3a4d3da4bbaeced762fdbe676941d2c4ec816c8387693d72548b5cd26fde4dfb24829de55e901250f2dac59e16e0c40775568c3f64837566c800667e4d0eca3a02a2678aafced062231b17ed7ba814412288941d17354b2d5920276332150f851eeb64892a8e783663af9f2975fb12c645b5170e39f73830b6240010e9dd66c3071fff6879504900b164a91fce00d0b03456274")
semget$private(0x0, 0x2, 0x10)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c33, 0x0)

2018/04/19 14:15:43 executing program 5:
r0 = socket$inet(0x2, 0x802, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)

2018/04/19 14:15:43 executing program 3:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$EVIOCGABS0(0xffffffffffffffff, 0x80184540, &(0x7f0000000000)=""/220)

2018/04/19 14:15:43 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)="2f6465762f696e7075742f6d6f75736523ff", 0x0, 0x0)

2018/04/19 14:15:43 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000080)=""/244)

2018/04/19 14:15:43 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:43 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c43, 0x0)

2018/04/19 14:15:43 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0xfffffffffffffffe, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x40000000000, 0x2080)
ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000040)={0x0, 0x4})
r2 = dup(r0)
shmget(0x2, 0x2000, 0x800, &(0x7f0000ffc000/0x2000)=nil)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:43 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], 0x4})
socket$nl_crypto(0x10, 0x3, 0x15)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:43 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4000000000000000)

2018/04/19 14:15:44 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="d7287b4df362b56154e2646751ae8c7c99105a0b637c9bf1b8d55e39df8aac38131d23c078e6c3a4d3da4bbaeced762fdbe676941d2c4ec816c8387693d72548b5cd26fde4dfb24829de55e901250f2dac59e16e0c40775568c3f64837566c800667e4d0eca3a02a2678aafced062231b17ed7ba814412288941d17354b2d5920276332150f851eeb64892a8e783663af9f2975fb12c645b5170e39f73830b6240010e9dd66c3071fff6879504900b164a91fce00d0b03456274")

2018/04/19 14:15:44 executing program 4:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)="2f6465762f696e7075742f6d6f7573652302", 0x0, 0x0)

2018/04/19 14:15:44 executing program 6:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r2 = dup(r0)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000040)=0x1)

2018/04/19 14:15:44 executing program 7:
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc\x00', 0x400800, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:44 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4000000000000000)

2018/04/19 14:15:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000000))

2018/04/19 14:15:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c6a, 0x0)

2018/04/19 14:15:44 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x4000000000000000)

2018/04/19 14:15:44 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)

2018/04/19 14:15:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c22, 0x0)

2018/04/19 14:15:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x20000, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffff9c, 0xc008640a, &(0x7f0000000040)={0x0, <r2=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f00000000c0)={r2, 0x0, 0x8})
write(r1, &(0x7f0000000080)="012aaac7698028cce6f419f64505b65eee49b830b275ee358de3832d3d9f5ddb44eca29f8aedffa9fae6dc8ac0e7cce8acdd4faf8d6dcb0718f48e0c9b385d48", 0x40)
r3 = dup(r0)
r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_ADD(r3, 0x4c81, r4)
openat$cgroup_procs(r3, &(0x7f0000000140)='tasks\x00', 0x2, 0x0)
syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0xffffffff, 0x24141)

2018/04/19 14:15:44 executing program 7:
r0 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0xfff, 0x40041)
ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000180)=""/4096)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x40, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:44 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)="2f6465762f696e7075742f6d6f7573652304", 0x0, 0x0)

2018/04/19 14:15:44 executing program 6:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x10000, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000100))
ioctl$KVM_ASSIGN_DEV_IRQ(r0, 0x4040ae70, &(0x7f0000000080)={0x3aba, 0x1f, 0x1ee8, 0x100})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:44 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:44 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:44 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)

2018/04/19 14:15:44 executing program 7:
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000000))
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000100)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x401, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x100, 0x0)
r2 = dup(r0)
ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000100)={0x25, {0x2, 0x4e21, @broadcast=0xffffffff}, {0x2, 0x4e23, @loopback=0x7f000001}, {0x2, 0x4e24}, 0x4, 0x101, 0xfffffffffffffffd, 0x20, 0x4ab, &(0x7f00000000c0)='syzkaller0\x00', 0x0, 0x6, 0x80000001})
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000080)={0xfffffffffffffe4c, 0x7, 0xdbe, 0x8001, 0x80, 0x2})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 5:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r2 = dup(r0)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000040)=0x1)

2018/04/19 14:15:44 executing program 6 (fault-call:0 fault-nth:0):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x40049409, 0x0)

[ 1091.149493] FAULT_INJECTION: forcing a failure.
[ 1091.149493] name failslab, interval 1, probability 0, space 0, times 0
[ 1091.160867] CPU: 0 PID: 26715 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1091.168056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1091.177397] Call Trace:
[ 1091.179975]  dump_stack+0x1b9/0x294
[ 1091.183593]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1091.188778]  should_fail.cold.4+0xa/0x1a
[ 1091.192830]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1091.197925]  ? find_held_lock+0x36/0x1c0
[ 1091.201985]  ? find_held_lock+0x36/0x1c0
[ 1091.206060]  ? check_same_owner+0x320/0x320
[ 1091.210375]  ? rcu_note_context_switch+0x710/0x710
[ 1091.215292]  ? wait_for_completion+0x870/0x870
[ 1091.219865]  __should_failslab+0x124/0x180
[ 1091.224091]  should_failslab+0x9/0x14
[ 1091.227877]  kmem_cache_alloc+0x2af/0x760
[ 1091.232027]  getname_flags+0xd0/0x5a0
[ 1091.235817]  getname+0x19/0x20
[ 1091.238998]  do_sys_open+0x39a/0x740
[ 1091.242706]  ? filp_open+0x80/0x80
[ 1091.246239]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1091.251076]  __x64_sys_open+0x7e/0xc0
[ 1091.254863]  do_syscall_64+0x1b1/0x800
[ 1091.258736]  ? finish_task_switch+0x1ca/0x810
[ 1091.263219]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1091.268136]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1091.273055]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1091.278409]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1091.283242]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1091.288414] RIP: 0033:0x40f581
[ 1091.291588] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1091.299282] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1091.306555] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1091.313809] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1091.321061] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1091.328317] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000000
2018/04/19 14:15:44 executing program 7:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000))
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000000c0))
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000100)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f00000001c0)='attr/sockcreate\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:44 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x8040, 0x0)

2018/04/19 14:15:44 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000000)="76a3631df9261e7e5615583bf852445e32cdaf6d4efefdb46849f4371b1b8d0739192e613459e8d1d8d64e867891b8acdb37d97c7b87d4d196fda1f9dd0084c9b2528c68a4e0d1a9ee1432084ee817903473557aa4bc090ab9e666aabeb668c12464f90bc8351e58f5f8feb107f247fc7f7999fa9cf1ec0e268621ab3a21ab1c8a220485c143a188545a51185b4997cf9e85f5f02f85d2474da237dd1307d91e0dd697ba84cff7")
r2 = shmget(0x3, 0x1000, 0x54000000, &(0x7f0000ffe000/0x1000)=nil)
shmctl$SHM_INFO(r2, 0xe, &(0x7f00000000c0)=""/124)

2018/04/19 14:15:44 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1000000, 0x0)

2018/04/19 14:15:44 executing program 5:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r2 = dup(r0)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000040)=0x1)

2018/04/19 14:15:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:44 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x5460, 0x0)

2018/04/19 14:15:44 executing program 6 (fault-call:0 fault-nth:1):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:44 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1091.444232] FAULT_INJECTION: forcing a failure.
[ 1091.444232] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1091.456088] CPU: 0 PID: 26736 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1091.463276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1091.472631] Call Trace:
[ 1091.475232]  dump_stack+0x1b9/0x294
[ 1091.478877]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1091.484088]  should_fail.cold.4+0xa/0x1a
[ 1091.488162]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1091.493284]  ? debug_check_no_locks_freed+0x310/0x310
[ 1091.498477]  ? _parse_integer+0x13b/0x190
[ 1091.502615]  ? graph_lock+0x170/0x170
[ 1091.506404]  ? perf_trace_lock+0xd6/0x900
[ 1091.510538]  ? _kstrtoull+0x180/0x230
[ 1091.514327]  ? _parse_integer+0x190/0x190
[ 1091.518465]  ? zap_class+0x720/0x720
[ 1091.522171]  ? perf_trace_lock+0xd6/0x900
[ 1091.526301]  ? find_held_lock+0x36/0x1c0
[ 1091.530351]  ? zap_class+0x720/0x720
[ 1091.534056]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1091.539579]  ? should_fail+0x21b/0xbcd
[ 1091.543451]  ? perf_trace_lock+0xd6/0x900
[ 1091.547593]  __alloc_pages_nodemask+0x34e/0xd70
[ 1091.552246]  ? find_held_lock+0x36/0x1c0
[ 1091.556299]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[ 1091.561306]  ? find_held_lock+0x36/0x1c0
[ 1091.565375]  ? check_same_owner+0x320/0x320
[ 1091.569690]  cache_grow_begin+0x72/0x6c0
[ 1091.573744]  kmem_cache_alloc+0x689/0x760
[ 1091.577887]  getname_flags+0xd0/0x5a0
[ 1091.581679]  getname+0x19/0x20
[ 1091.584861]  do_sys_open+0x39a/0x740
[ 1091.588567]  ? filp_open+0x80/0x80
[ 1091.592095]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1091.597626]  __x64_sys_open+0x7e/0xc0
[ 1091.601418]  do_syscall_64+0x1b1/0x800
[ 1091.605295]  ? finish_task_switch+0x1ca/0x810
[ 1091.609780]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1091.614700]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1091.619623]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1091.624994]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1091.629829]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1091.635001] RIP: 0033:0x40f581
2018/04/19 14:15:45 executing program 3:
r0 = dup(0xffffffffffffffff)
ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000000))
prctl$intptr(0x3f, 0xfffffff7ffffb2fc)
clock_nanosleep(0x0, 0x1, &(0x7f0000000080)={0x0, 0x1c9c380}, &(0x7f0000000040))
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0)

2018/04/19 14:15:45 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:45 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c29, 0x0)

[ 1091.638182] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1091.645876] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1091.653132] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1091.660385] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1091.667643] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1091.674899] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000001
2018/04/19 14:15:45 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x2, 0x0)

2018/04/19 14:15:45 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:45 executing program 7:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0xcb6, 0x4000)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x12710, 0x1, 0x5002, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x80001, 0x0)
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TIOCNOTTY(r1, 0x5422)

2018/04/19 14:15:45 executing program 0 (fault-call:0 fault-nth:0):
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1091.834384] FAULT_INJECTION: forcing a failure.
[ 1091.834384] name failslab, interval 1, probability 0, space 0, times 0
[ 1091.845716] CPU: 0 PID: 26760 Comm: syz-executor0 Not tainted 4.17.0-rc1+ #8
[ 1091.852897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1091.862248] Call Trace:
[ 1091.864847]  dump_stack+0x1b9/0x294
[ 1091.868492]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1091.873694]  ? graph_lock+0x170/0x170
[ 1091.877507]  should_fail.cold.4+0xa/0x1a
[ 1091.881576]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1091.886689]  ? find_held_lock+0x36/0x1c0
[ 1091.890759]  ? find_held_lock+0x36/0x1c0
[ 1091.894846]  ? check_same_owner+0x320/0x320
[ 1091.899164]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1091.904077]  ? rcu_note_context_switch+0x710/0x710
[ 1091.908986]  ? wait_for_completion+0x870/0x870
[ 1091.913553]  __should_failslab+0x124/0x180
[ 1091.917771]  should_failslab+0x9/0x14
[ 1091.921554]  kmem_cache_alloc+0x2af/0x760
[ 1091.925689]  getname_flags+0xd0/0x5a0
[ 1091.929469]  ? __sb_end_write+0xac/0xe0
[ 1091.933423]  getname+0x19/0x20
[ 1091.936594]  do_sys_open+0x39a/0x740
[ 1091.940293]  ? filp_open+0x80/0x80
[ 1091.943809]  ? __ia32_sys_read+0xb0/0xb0
[ 1091.947852]  __x64_sys_openat+0x9d/0x100
[ 1091.951905]  do_syscall_64+0x1b1/0x800
[ 1091.955772]  ? finish_task_switch+0x1ca/0x810
[ 1091.960244]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1091.965158]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1091.970071]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1091.975416]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/04/19 14:15:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
msgget$private(0x0, 0x10)

2018/04/19 14:15:45 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c50, 0x0)

2018/04/19 14:15:45 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x4, 0x0)

2018/04/19 14:15:45 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:45 executing program 6 (fault-call:0 fault-nth:2):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:45 executing program 5:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
r2 = dup(r0)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000040)=0x1)

2018/04/19 14:15:45 executing program 0 (fault-call:0 fault-nth:1):
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:45 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000))
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x7, 0x0)
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000180)={0x3, &(0x7f0000000100)=[{0x7, 0x9}, {0x5, 0x7fff}, {0x9, 0x8}]})
r2 = syz_open_procfs(r0, &(0x7f0000000080)='net/ptype\x00')
pread64(r2, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TIOCGETD(r1, 0x5424, &(0x7f00000001c0))

[ 1091.980243]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1091.985413] RIP: 0033:0x455329
[ 1091.988581] RSP: 002b:00007fda8f1d5c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1091.996272] RAX: ffffffffffffffda RBX: 00007fda8f1d66d4 RCX: 0000000000455329
[ 1092.003520] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffff9c
[ 1092.010768] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1092.018018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013
[ 1092.025276] R13: 000000000000045a R14: 00000000006f9910 R15: 0000000000000000
[ 1092.095717] FAULT_INJECTION: forcing a failure.
[ 1092.095717] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1092.107578] CPU: 0 PID: 26782 Comm: syz-executor0 Not tainted 4.17.0-rc1+ #8
[ 1092.114779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1092.124131] Call Trace:
[ 1092.126727]  dump_stack+0x1b9/0x294
[ 1092.130365]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1092.135564]  ? graph_lock+0x170/0x170
[ 1092.139380]  should_fail.cold.4+0xa/0x1a
[ 1092.143453]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1092.148577]  ? debug_check_no_locks_freed+0x310/0x310
[ 1092.153781]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1092.159321]  ? _parse_integer+0x13b/0x190
[ 1092.163475]  ? graph_lock+0x170/0x170
[ 1092.167276]  ? perf_trace_lock+0xd6/0x900
[ 1092.171410]  ? _kstrtoull+0x180/0x230
[ 1092.175200]  ? zap_class+0x720/0x720
[ 1092.178905]  ? perf_trace_lock+0xd6/0x900
[ 1092.183042]  ? find_held_lock+0x36/0x1c0
[ 1092.187095]  ? zap_class+0x720/0x720
[ 1092.190804]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1092.196329]  ? should_fail+0x21b/0xbcd
[ 1092.200211]  __alloc_pages_nodemask+0x34e/0xd70
[ 1092.204867]  ? find_held_lock+0x36/0x1c0
[ 1092.208920]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[ 1092.213927]  ? find_held_lock+0x36/0x1c0
[ 1092.217995]  ? check_same_owner+0x320/0x320
[ 1092.222307]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1092.227226]  cache_grow_begin+0x72/0x6c0
[ 1092.231279]  kmem_cache_alloc+0x689/0x760
[ 1092.235425]  getname_flags+0xd0/0x5a0
[ 1092.239210]  ? __sb_end_write+0xac/0xe0
[ 1092.243175]  getname+0x19/0x20
[ 1092.246354]  do_sys_open+0x39a/0x740
[ 1092.250062]  ? filp_open+0x80/0x80
[ 1092.253591]  ? __ia32_sys_read+0xb0/0xb0
[ 1092.257650]  __x64_sys_openat+0x9d/0x100
[ 1092.261704]  do_syscall_64+0x1b1/0x800
[ 1092.265586]  ? finish_task_switch+0x1ca/0x810
[ 1092.270069]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1092.274990]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1092.279915]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1092.285268]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1092.290103]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
2018/04/19 14:15:45 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c0c, 0x0)

2018/04/19 14:15:45 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:45 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0x9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x8000, 0x0)

[ 1092.295275] RIP: 0033:0x455329
[ 1092.298447] RSP: 002b:00007fda8f1d5c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1092.306143] RAX: ffffffffffffffda RBX: 00007fda8f1d66d4 RCX: 0000000000455329
[ 1092.313406] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffff9c
[ 1092.320669] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1092.327924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013
[ 1092.335177] R13: 000000000000045a R14: 00000000006f9910 R15: 0000000000000001
2018/04/19 14:15:45 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000000)={r0, 0x6, 0x1, "c54c99fc7a40bfbd2231641b235306d5c8"})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:45 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0xf6ffffff00000000, 0x0)

[ 1092.391170] FAULT_INJECTION: forcing a failure.
[ 1092.391170] name failslab, interval 1, probability 0, space 0, times 0
[ 1092.402479] CPU: 0 PID: 26788 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1092.409673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1092.419026] Call Trace:
[ 1092.421622]  dump_stack+0x1b9/0x294
[ 1092.425262]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1092.430468]  should_fail.cold.4+0xa/0x1a
[ 1092.434537]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1092.439657]  ? debug_check_no_locks_freed+0x310/0x310
[ 1092.444856]  ? print_usage_bug+0xc0/0xc0
[ 1092.448917]  ? find_held_lock+0x36/0x1c0
[ 1092.452976]  ? check_same_owner+0x320/0x320
[ 1092.457282]  ? rcu_note_context_switch+0x710/0x710
[ 1092.462199]  __should_failslab+0x124/0x180
[ 1092.466419]  should_failslab+0x9/0x14
[ 1092.470231]  kmem_cache_alloc+0x2af/0x760
[ 1092.474368]  ? debug_check_no_locks_freed+0x310/0x310
[ 1092.479543]  get_empty_filp+0x125/0x520
[ 1092.483508]  ? proc_nr_files+0x60/0x60
[ 1092.487381]  ? lock_downgrade+0x8e0/0x8e0
[ 1092.491512]  ? graph_lock+0x170/0x170
[ 1092.495296]  ? kasan_check_read+0x11/0x20
[ 1092.499425]  ? rcu_is_watching+0x85/0x140
[ 1092.503559]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1092.508732]  path_openat+0x116/0x4e20
[ 1092.512524]  ? unwind_get_return_address+0x61/0xa0
[ 1092.517437]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1092.522435]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1092.527176]  ? find_held_lock+0x36/0x1c0
[ 1092.531586]  ? lock_downgrade+0x8e0/0x8e0
[ 1092.535718]  ? do_sys_open+0x39a/0x740
[ 1092.539591]  ? kasan_check_read+0x11/0x20
[ 1092.543724]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1092.548118]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1092.552679]  ? __lock_is_held+0xb5/0x140
[ 1092.556732]  ? _raw_spin_unlock+0x22/0x30
[ 1092.560866]  ? __alloc_fd+0x346/0x700
[ 1092.564650]  ? usercopy_warn+0x120/0x120
[ 1092.568700]  do_filp_open+0x249/0x350
[ 1092.572483]  ? may_open_dev+0x100/0x100
[ 1092.576441]  ? strncpy_from_user+0x3b6/0x500
[ 1092.580833]  ? mpi_free.cold.1+0x19/0x19
[ 1092.584881]  ? get_unused_fd_flags+0x121/0x190
[ 1092.589443]  ? getname_flags+0xd0/0x5a0
[ 1092.593402]  ? getname_flags+0x26e/0x5a0
[ 1092.597449]  do_sys_open+0x56f/0x740
[ 1092.601147]  ? filp_open+0x80/0x80
[ 1092.604676]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1092.609504]  __x64_sys_open+0x7e/0xc0
[ 1092.613286]  do_syscall_64+0x1b1/0x800
[ 1092.617155]  ? finish_task_switch+0x1ca/0x810
[ 1092.621634]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1092.626552]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1092.631466]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1092.636815]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1092.641641]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1092.646809] RIP: 0033:0x40f581
[ 1092.649979] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1092.657690] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1092.664941] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1092.672191] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1092.679442] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1092.686694] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000002
2018/04/19 14:15:46 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c17, 0x0)

2018/04/19 14:15:46 executing program 5:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))
dup(r0)

2018/04/19 14:15:46 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x400000000000000, 0x0)

2018/04/19 14:15:46 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000080)={{0x2, 0x4e22, @loopback=0x7f000001}, {0x800000306, @random="cab7211fd8d1"}, 0x1, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x18}}, 'syzkaller0\x00'})
r2 = dup(r0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$TIOCCONS(r2, 0x541d)

2018/04/19 14:15:46 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:46 executing program 0 (fault-call:0 fault-nth:2):
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:46 executing program 6 (fault-call:0 fault-nth:3):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:46 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)="6e65740e826586ca3742725269ba3f7b43bc747174617400000000")
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080))
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0))
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000100)=<r1=>0x0)
r2 = syz_open_procfs(r1, &(0x7f0000000140)="ca6e732f6d6e74")
pread64(r0, &(0x7f0000000000)=""/61, 0x3d, 0x0)
ioctl$PIO_FONTRESET(r2, 0x4b6d, 0x0)

[ 1092.832929] FAULT_INJECTION: forcing a failure.
[ 1092.832929] name failslab, interval 1, probability 0, space 0, times 0
[ 1092.844231] CPU: 0 PID: 26815 Comm: syz-executor0 Not tainted 4.17.0-rc1+ #8
[ 1092.851416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1092.860759] Call Trace:
[ 1092.863338]  dump_stack+0x1b9/0x294
[ 1092.866954]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1092.872136]  should_fail.cold.4+0xa/0x1a
[ 1092.876184]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1092.881275]  ? debug_check_no_locks_freed+0x310/0x310
[ 1092.886453]  ? print_usage_bug+0xc0/0xc0
[ 1092.890501]  ? find_held_lock+0x36/0x1c0
[ 1092.894564]  ? check_same_owner+0x320/0x320
[ 1092.898875]  ? rcu_note_context_switch+0x710/0x710
[ 1092.903786]  ? graph_lock+0x170/0x170
[ 1092.907573]  __should_failslab+0x124/0x180
[ 1092.911796]  should_failslab+0x9/0x14
[ 1092.915580]  kmem_cache_alloc+0x2af/0x760
[ 1092.919715]  ? debug_check_no_locks_freed+0x310/0x310
[ 1092.924894]  get_empty_filp+0x125/0x520
[ 1092.928851]  ? proc_nr_files+0x60/0x60
[ 1092.932723]  ? lock_downgrade+0x8e0/0x8e0
[ 1092.936857]  ? graph_lock+0x170/0x170
[ 1092.940641]  ? kasan_check_read+0x11/0x20
[ 1092.944773]  ? rcu_is_watching+0x85/0x140
[ 1092.948906]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1092.954082]  path_openat+0x116/0x4e20
[ 1092.957876]  ? unwind_get_return_address+0x61/0xa0
[ 1092.962795]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1092.967797]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1092.972540]  ? find_held_lock+0x36/0x1c0
[ 1092.976594]  ? lock_downgrade+0x8e0/0x8e0
[ 1092.980726]  ? do_sys_open+0x39a/0x740
[ 1092.984604]  ? kasan_check_read+0x11/0x20
[ 1092.988741]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1092.993137]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1092.997701]  ? __lock_is_held+0xb5/0x140
[ 1093.001753]  ? _raw_spin_unlock+0x22/0x30
[ 1093.005885]  ? __alloc_fd+0x346/0x700
[ 1093.009669]  ? usercopy_warn+0x120/0x120
[ 1093.013720]  ? exit_files+0xb0/0xb0
[ 1093.017332]  do_filp_open+0x249/0x350
[ 1093.021118]  ? may_open_dev+0x100/0x100
[ 1093.025084]  ? get_unused_fd_flags+0x121/0x190
[ 1093.029648]  ? getname_flags+0xd0/0x5a0
[ 1093.033606]  ? __alloc_fd+0x700/0x700
[ 1093.037391]  ? __sb_end_write+0xac/0xe0
[ 1093.041354]  do_sys_open+0x56f/0x740
[ 1093.045058]  ? filp_open+0x80/0x80
[ 1093.048583]  ? __ia32_sys_read+0xb0/0xb0
[ 1093.052633]  __x64_sys_openat+0x9d/0x100
[ 1093.056681]  do_syscall_64+0x1b1/0x800
[ 1093.060553]  ? finish_task_switch+0x1ca/0x810
[ 1093.065041]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1093.069955]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1093.074871]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1093.080225]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1093.085055]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1093.090226] RIP: 0033:0x455329
[ 1093.093396] RSP: 002b:00007fda8f1d5c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1093.101090] RAX: ffffffffffffffda RBX: 00007fda8f1d66d4 RCX: 0000000000455329
[ 1093.108341] RDX: 0000000000000000 RSI: 0000000020000040 RDI: ffffffffffffff9c
[ 1093.115592] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1093.122844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013
[ 1093.130095] R13: 000000000000045a R14: 00000000006f9910 R15: 0000000000000002
[ 1093.148772] FAULT_INJECTION: forcing a failure.
[ 1093.148772] name failslab, interval 1, probability 0, space 0, times 0
[ 1093.160072] CPU: 0 PID: 26819 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1093.167246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1093.176578] Call Trace:
[ 1093.179155]  dump_stack+0x1b9/0x294
[ 1093.182771]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1093.187946]  ? perf_trace_lock_acquire+0xe3/0x980
[ 1093.192778]  should_fail.cold.4+0xa/0x1a
[ 1093.196824]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1093.201911]  ? graph_lock+0x170/0x170
[ 1093.205704]  ? lock_downgrade+0x8e0/0x8e0
[ 1093.209839]  ? find_held_lock+0x36/0x1c0
[ 1093.213889]  ? lock_downgrade+0x8e0/0x8e0
[ 1093.218035]  ? kasan_check_read+0x11/0x20
[ 1093.222168]  ? rcu_is_watching+0x85/0x140
[ 1093.226301]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1093.231481]  __should_failslab+0x124/0x180
[ 1093.235705]  should_failslab+0x9/0x14
[ 1093.239496]  kmem_cache_alloc_trace+0x4b/0x780
[ 1093.244061]  ? delayed_put_pid+0x30/0x30
[ 1093.248107]  ? new_inode+0x40/0x40
[ 1093.251631]  ? security_inode_permission+0xd2/0x100
[ 1093.256636]  proc_thread_self_get_link+0x18c/0x1e0
[ 1093.261550]  ? proc_setup_self.cold.2+0x25/0x25
[ 1093.266207]  link_path_walk+0xfff/0x1520
[ 1093.270251]  ? pick_link+0xb00/0xb00
[ 1093.273957]  ? walk_component+0x2550/0x2550
[ 1093.278264]  ? get_empty_filp+0x37a/0x520
[ 1093.282398]  ? proc_nr_files+0x60/0x60
[ 1093.286271]  ? lock_downgrade+0x8e0/0x8e0
[ 1093.290404]  ? graph_lock+0x170/0x170
[ 1093.294191]  ? rcu_is_watching+0x85/0x140
[ 1093.298325]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1093.303507]  path_openat+0x246/0x4e20
[ 1093.307304]  ? unwind_get_return_address+0x61/0xa0
[ 1093.312222]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1093.317223]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1093.321970]  ? find_held_lock+0x36/0x1c0
[ 1093.326032]  ? lock_downgrade+0x8e0/0x8e0
[ 1093.330171]  ? kasan_check_read+0x11/0x20
[ 1093.334303]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1093.338695]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1093.343261]  ? __lock_is_held+0xb5/0x140
[ 1093.347313]  ? _raw_spin_unlock+0x22/0x30
[ 1093.351445]  ? __alloc_fd+0x346/0x700
[ 1093.355229]  ? usercopy_warn+0x120/0x120
[ 1093.359282]  do_filp_open+0x249/0x350
[ 1093.363070]  ? may_open_dev+0x100/0x100
[ 1093.367034]  ? strncpy_from_user+0x3b6/0x500
[ 1093.371449]  ? get_unused_fd_flags+0x121/0x190
[ 1093.376025]  ? getname_flags+0xd0/0x5a0
[ 1093.379986]  ? getname_flags+0x26e/0x5a0
[ 1093.384041]  do_sys_open+0x56f/0x740
[ 1093.387743]  ? filp_open+0x80/0x80
[ 1093.391270]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1093.396103]  __x64_sys_open+0x7e/0xc0
[ 1093.399888]  do_syscall_64+0x1b1/0x800
[ 1093.403763]  ? finish_task_switch+0x1ca/0x810
[ 1093.408242]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1093.413155]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1093.418068]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1093.423421]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1093.428253]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1093.433423] RIP: 0033:0x40f581
[ 1093.436597] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1093.444289] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1093.451542] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1093.458793] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1093.466043] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1093.473293] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000003
2018/04/19 14:15:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:47 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c7e, 0x0)

2018/04/19 14:15:47 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000013c0))

2018/04/19 14:15:47 executing program 6 (fault-call:0 fault-nth:4):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
sync()
dup(r0)

2018/04/19 14:15:47 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000040)=<r0=>0x0)
socket$bt_cmtp(0x1f, 0x3, 0x5)
r1 = syz_open_procfs(r0, &(0x7f0000000000)="6e65742f6e65747174d37400")
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:47 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x200000000000000, 0x0)

2018/04/19 14:15:47 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c52, 0x0)

2018/04/19 14:15:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

[ 1093.759134] FAULT_INJECTION: forcing a failure.
[ 1093.759134] name failslab, interval 1, probability 0, space 0, times 0
[ 1093.770441] CPU: 1 PID: 26849 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1093.777632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1093.786981] Call Trace:
[ 1093.789572]  dump_stack+0x1b9/0x294
[ 1093.793194]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1093.798378]  ? __lock_acquire+0x7f5/0x5140
[ 1093.802599]  should_fail.cold.4+0xa/0x1a
[ 1093.806642]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1093.811730]  ? __lock_acquire+0x7f5/0x5140
[ 1093.815952]  ? graph_lock+0x170/0x170
[ 1093.819733]  ? __lock_acquire+0x7f5/0x5140
[ 1093.823952]  ? find_held_lock+0x36/0x1c0
[ 1093.827994]  ? __lock_is_held+0xb5/0x140
[ 1093.832066]  ? check_same_owner+0x320/0x320
[ 1093.836375]  ? __lock_acquire+0x7f5/0x5140
[ 1093.840593]  ? rcu_note_context_switch+0x710/0x710
[ 1093.845506]  ? kasan_check_write+0x14/0x20
[ 1093.849724]  ? prep_compound_page+0x229/0x370
[ 1093.854202]  __should_failslab+0x124/0x180
[ 1093.858420]  should_failslab+0x9/0x14
[ 1093.862204]  kmem_cache_alloc+0x2af/0x760
[ 1093.866346]  ? debug_check_no_locks_freed+0x310/0x310
[ 1093.871525]  ? print_usage_bug+0xc0/0xc0
[ 1093.875566]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1093.880135]  __d_alloc+0xc0/0xd30
[ 1093.883572]  ? shrink_dcache_for_umount+0x290/0x290
[ 1093.888569]  ? __lock_acquire+0x7f5/0x5140
[ 1093.892786]  ? print_usage_bug+0xc0/0xc0
[ 1093.896829]  ? print_usage_bug+0xc0/0xc0
[ 1093.900875]  ? print_usage_bug+0xc0/0xc0
[ 1093.904918]  ? debug_check_no_locks_freed+0x310/0x310
[ 1093.910099]  ? __lock_acquire+0x7f5/0x5140
[ 1093.914335]  d_alloc+0x8e/0x370
[ 1093.917618]  ? __d_alloc+0xd30/0xd30
[ 1093.921324]  d_alloc_parallel+0x152/0x1e80
[ 1093.925543]  ? debug_check_no_locks_freed+0x310/0x310
[ 1093.930731]  ? __d_lookup_rcu+0xa80/0xa80
[ 1093.934862]  ? print_usage_bug+0xc0/0xc0
[ 1093.938906]  ? find_held_lock+0x36/0x1c0
[ 1093.943046]  ? lock_downgrade+0x8e0/0x8e0
[ 1093.947177]  ? mark_held_locks+0xc9/0x160
[ 1093.951305]  ? __raw_spin_lock_init+0x1c/0x100
[ 1093.955870]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1093.960865]  ? __lockdep_init_map+0x105/0x590
[ 1093.965344]  ? __lockdep_init_map+0x105/0x590
[ 1093.969825]  ? lockdep_init_map+0x9/0x10
[ 1093.973865]  ? __init_waitqueue_head+0x96/0x140
[ 1093.978516]  ? init_wait_entry+0x1b0/0x1b0
[ 1093.982733]  ? lock_release+0xa10/0xa10
[ 1093.986689]  __lookup_slow+0x1e6/0x540
[ 1093.990559]  ? vfs_unlink+0x510/0x510
[ 1093.994345]  ? down_read+0xaf/0x1b0
[ 1093.997950]  ? lookup_slow+0x49/0x80
[ 1094.001654]  ? __down_interruptible+0x6e0/0x6e0
[ 1094.006307]  ? lookup_fast+0x468/0x1290
[ 1094.010268]  ? __follow_mount_rcu.isra.35.part.36+0x880/0x880
[ 1094.016140]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1094.021148]  lookup_slow+0x57/0x80
[ 1094.024679]  walk_component+0x8f5/0x2550
[ 1094.028722]  ? find_held_lock+0x36/0x1c0
[ 1094.032777]  ? path_init+0x2320/0x2320
[ 1094.036646]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.040783]  ? kasan_check_read+0x11/0x20
[ 1094.044924]  ? rcu_is_watching+0x85/0x140
[ 1094.049056]  ? pid_task+0x10e/0x1e0
[ 1094.052671]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1094.057845]  ? sprintf+0xa7/0xd0
[ 1094.061193]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1094.066720]  ? generic_permission+0x121/0x520
[ 1094.071207]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1094.076731]  ? security_inode_permission+0xd2/0x100
[ 1094.081739]  ? inode_permission+0xb2/0x560
[ 1094.085958]  ? proc_thread_self_get_link+0x167/0x1e0
[ 1094.091049]  link_path_walk+0xa66/0x1520
[ 1094.095091]  ? pick_link+0xb00/0xb00
[ 1094.098792]  ? walk_component+0x2550/0x2550
[ 1094.103095]  ? get_empty_filp+0x37a/0x520
[ 1094.107222]  ? proc_nr_files+0x60/0x60
[ 1094.111092]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.115226]  ? graph_lock+0x170/0x170
[ 1094.119010]  ? rcu_is_watching+0x85/0x140
[ 1094.123149]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1094.128321]  path_openat+0x246/0x4e20
[ 1094.132111]  ? unwind_get_return_address+0x61/0xa0
[ 1094.137032]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1094.142042]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1094.146779]  ? find_held_lock+0x36/0x1c0
[ 1094.150827]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.154958]  ? kasan_check_read+0x11/0x20
[ 1094.159086]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1094.163477]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1094.168046]  ? __lock_is_held+0xb5/0x140
[ 1094.172103]  ? _raw_spin_unlock+0x22/0x30
[ 1094.176231]  ? __alloc_fd+0x346/0x700
[ 1094.180017]  ? usercopy_warn+0x120/0x120
[ 1094.184081]  do_filp_open+0x249/0x350
[ 1094.187864]  ? may_open_dev+0x100/0x100
[ 1094.191818]  ? strncpy_from_user+0x3b6/0x500
[ 1094.196208]  ? simple_attr_release+0x50/0x50
[ 1094.200598]  ? get_unused_fd_flags+0x121/0x190
[ 1094.205161]  ? getname_flags+0xd0/0x5a0
[ 1094.209115]  ? getname_flags+0x26e/0x5a0
[ 1094.213171]  do_sys_open+0x56f/0x740
[ 1094.216880]  ? filp_open+0x80/0x80
[ 1094.220404]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1094.225925]  __x64_sys_open+0x7e/0xc0
[ 1094.229707]  do_syscall_64+0x1b1/0x800
[ 1094.233577]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1094.238486]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1094.243398]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1094.248742]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1094.253577]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
2018/04/19 14:15:47 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c1a, 0x0)

2018/04/19 14:15:47 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x4000000, 0x0)

2018/04/19 14:15:47 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$sock_netdev_private(r0, 0x89f0, &(0x7f0000000000)="81a22d6ed3505c467bf49fb9ec41120e18bb47728864e3ce603c1e5ecec02c35dbb85093030a4fbe77f4d3ac026bf54d9e01269eccea2f5e61e30a89c7482d2fbebfbf578483b290a85540164b36c985e6dbc3eb69c4d010cb748ff89516cd07347bdad63194dfe71d20e65bcd08935207d9b3f3a710")
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:47 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x5)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000000c0)=0x3)

2018/04/19 14:15:47 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c17, 0x0)

2018/04/19 14:15:47 executing program 6 (fault-call:0 fault-nth:5):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:47 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f00000000c0))

2018/04/19 14:15:47 executing program 0 (fault-call:0 fault-nth:3):
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1094.258746] RIP: 0033:0x40f581
[ 1094.261913] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1094.269601] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1094.276852] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1094.284107] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1094.291366] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1094.298618] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000004
2018/04/19 14:15:47 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:47 executing program 4 (fault-call:2 fault-nth:0):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:47 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_GET_CPUID2(r0, 0xc008ae91, &(0x7f0000000000)={0x2, 0x0, [{}, {}]})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
msgget$private(0x0, 0x200)

2018/04/19 14:15:47 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0xc020660b, 0x0)

2018/04/19 14:15:47 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x5)

2018/04/19 14:15:47 executing program 3:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200000, 0x0)
ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f0000000040)=""/228)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1094.484858] FAULT_INJECTION: forcing a failure.
[ 1094.484858] name failslab, interval 1, probability 0, space 0, times 0
[ 1094.496167] CPU: 1 PID: 26870 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1094.503354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1094.512716] Call Trace:
[ 1094.515312]  dump_stack+0x1b9/0x294
[ 1094.518952]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1094.524151]  ? __lock_acquire+0x7f5/0x5140
[ 1094.528395]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1094.533937]  ? __d_lookup_rcu+0x54e/0xa80
[ 1094.538095]  should_fail.cold.4+0xa/0x1a
[ 1094.542168]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1094.547286]  ? graph_lock+0x170/0x170
[ 1094.551097]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.555257]  ? find_held_lock+0x36/0x1c0
[ 1094.559331]  ? __lock_is_held+0xb5/0x140
[ 1094.563413]  ? check_same_owner+0x320/0x320
[ 1094.567740]  ? graph_lock+0x170/0x170
[ 1094.571549]  ? rcu_note_context_switch+0x710/0x710
[ 1094.576487]  __should_failslab+0x124/0x180
[ 1094.580730]  should_failslab+0x9/0x14
[ 1094.584538]  kmem_cache_alloc+0x2af/0x760
[ 1094.588696]  ? find_held_lock+0x36/0x1c0
[ 1094.592763]  ? proc_i_callback+0x30/0x30
[ 1094.596817]  proc_alloc_inode+0x1b/0x190
[ 1094.600872]  alloc_inode+0x63/0x190
[ 1094.604494]  new_inode_pseudo+0x69/0x1a0
[ 1094.608549]  ? prune_icache_sb+0x1a0/0x1a0
[ 1094.612775]  ? kasan_check_read+0x11/0x20
[ 1094.616909]  ? rcu_is_watching+0x85/0x140
[ 1094.621047]  ? pid_task+0x10e/0x1e0
[ 1094.624664]  new_inode+0x1c/0x40
[ 1094.628026]  proc_pid_make_inode+0x23/0x210
[ 1094.632342]  proc_pident_instantiate+0x80/0x2a0
[ 1094.637027]  proc_pident_lookup+0x1c6/0x230
[ 1094.641348]  proc_tid_base_lookup+0x29/0x30
[ 1094.645659]  __lookup_slow+0x2b5/0x540
[ 1094.649536]  ? vfs_unlink+0x510/0x510
[ 1094.653329]  ? down_read+0xaf/0x1b0
[ 1094.656942]  ? lookup_slow+0x49/0x80
[ 1094.660646]  ? __down_interruptible+0x6e0/0x6e0
[ 1094.665302]  ? lookup_fast+0x468/0x1290
[ 1094.669273]  ? __follow_mount_rcu.isra.35.part.36+0x880/0x880
[ 1094.675146]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1094.680152]  lookup_slow+0x57/0x80
[ 1094.683680]  walk_component+0x8f5/0x2550
[ 1094.687727]  ? find_held_lock+0x36/0x1c0
[ 1094.691783]  ? path_init+0x2320/0x2320
[ 1094.695656]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.699798]  ? kasan_check_read+0x11/0x20
[ 1094.703933]  ? rcu_is_watching+0x85/0x140
[ 1094.708066]  ? pid_task+0x10e/0x1e0
[ 1094.711678]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1094.716861]  ? sprintf+0xa7/0xd0
[ 1094.720219]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1094.725740]  ? generic_permission+0x121/0x520
[ 1094.730225]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1094.735749]  ? security_inode_permission+0xd2/0x100
[ 1094.740753]  ? inode_permission+0xb2/0x560
[ 1094.744976]  ? proc_thread_self_get_link+0x167/0x1e0
[ 1094.750067]  link_path_walk+0xa66/0x1520
[ 1094.754115]  ? pick_link+0xb00/0xb00
[ 1094.757825]  ? walk_component+0x2550/0x2550
[ 1094.762137]  ? get_empty_filp+0x37a/0x520
[ 1094.766274]  ? proc_nr_files+0x60/0x60
[ 1094.770151]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.774291]  ? graph_lock+0x170/0x170
[ 1094.778082]  ? rcu_is_watching+0x85/0x140
[ 1094.782218]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1094.787396]  path_openat+0x246/0x4e20
[ 1094.791198]  ? unwind_get_return_address+0x61/0xa0
[ 1094.796116]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1094.801122]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1094.805867]  ? find_held_lock+0x36/0x1c0
[ 1094.809926]  ? lock_downgrade+0x8e0/0x8e0
[ 1094.814061]  ? do_sys_open+0x39a/0x740
[ 1094.817940]  ? kasan_check_read+0x11/0x20
[ 1094.822075]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1094.826470]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1094.831042]  ? __lock_is_held+0xb5/0x140
[ 1094.835097]  ? _raw_spin_unlock+0x22/0x30
[ 1094.839231]  ? __alloc_fd+0x346/0x700
[ 1094.843023]  ? usercopy_warn+0x120/0x120
[ 1094.847083]  do_filp_open+0x249/0x350
[ 1094.850874]  ? may_open_dev+0x100/0x100
[ 1094.854837]  ? strncpy_from_user+0x3b6/0x500
[ 1094.859238]  ? simple_attr_release+0x50/0x50
[ 1094.863638]  ? get_unused_fd_flags+0x121/0x190
[ 1094.868204]  ? getname_flags+0xd0/0x5a0
[ 1094.872165]  ? getname_flags+0x26e/0x5a0
[ 1094.876219]  do_sys_open+0x56f/0x740
[ 1094.879923]  ? filp_open+0x80/0x80
[ 1094.883459]  __x64_sys_open+0x7e/0xc0
[ 1094.887249]  do_syscall_64+0x1b1/0x800
[ 1094.891123]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1094.895952]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1094.900868]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1094.905784]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1094.911137]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1094.915971]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1094.921147] RIP: 0033:0x40f581
[ 1094.924321] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1094.932024] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1094.939283] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1094.946537] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1094.953790] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1094.961045] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000005
2018/04/19 14:15:48 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/.ev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:48 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:48 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TIOCLINUX4(r0, 0x541c, &(0x7f0000000000)=0x4)
ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000040)={0x0, 0x0, 0xfffffffffffffffb, 0x401, 0x6})

2018/04/19 14:15:48 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x2000000, 0x0)

2018/04/19 14:15:48 executing program 6 (fault-call:0 fault-nth:6):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:48 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:48 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{<r2=>0x0}]})
ioctl$DRM_IOCTL_GET_SAREA_CTX(r1, 0xc010641d, &(0x7f0000000200)={r2, &(0x7f0000000100)=""/214})
ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000040)={0x5, 0x2})
r3 = dup(r0)
syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x0, 0x101000)
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

2018/04/19 14:15:48 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c59, 0x0)

2018/04/19 14:15:48 executing program 7:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000040)='net/netstat\x00')
ioctl$DRM_IOCTL_CONTROL(r1, 0x40086414, &(0x7f0000000080)={0x1, 0x1000})
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x62a)
ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000000)=0xeb)

2018/04/19 14:15:48 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='//ev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:48 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0xf6ffffff, 0x0)

2018/04/19 14:15:48 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c26, 0x0)

[ 1095.145954] FAULT_INJECTION: forcing a failure.
[ 1095.145954] name failslab, interval 1, probability 0, space 0, times 0
[ 1095.157288] CPU: 1 PID: 26910 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1095.164479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1095.173839] Call Trace:
[ 1095.176438]  dump_stack+0x1b9/0x294
[ 1095.180081]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1095.185297]  should_fail.cold.4+0xa/0x1a
[ 1095.189372]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1095.194491]  ? zap_class+0x720/0x720
[ 1095.198197]  ? graph_lock+0x170/0x170
[ 1095.201984]  ? __lock_acquire+0x7f5/0x5140
[ 1095.206212]  ? find_held_lock+0x36/0x1c0
[ 1095.210266]  ? __lock_is_held+0xb5/0x140
[ 1095.214326]  ? check_same_owner+0x320/0x320
[ 1095.218633]  ? __lock_acquire+0x7f5/0x5140
[ 1095.222864]  ? rcu_note_context_switch+0x710/0x710
[ 1095.227782]  ? lock_downgrade+0x8e0/0x8e0
[ 1095.231922]  __should_failslab+0x124/0x180
[ 1095.236147]  should_failslab+0x9/0x14
[ 1095.239934]  kmem_cache_alloc+0x2af/0x760
[ 1095.244070]  ? debug_check_no_locks_freed+0x310/0x310
[ 1095.249243]  ? print_usage_bug+0xc0/0xc0
[ 1095.253289]  ? zap_class+0x720/0x720
[ 1095.256996]  __d_alloc+0xc0/0xd30
[ 1095.260445]  ? shrink_dcache_for_umount+0x290/0x290
[ 1095.265445]  ? __lock_acquire+0x7f5/0x5140
[ 1095.269665]  ? __lock_acquire+0x7f5/0x5140
[ 1095.273885]  ? perf_trace_lock+0xd6/0x900
[ 1095.278021]  ? __lock_acquire+0x7f5/0x5140
[ 1095.282251]  ? zap_class+0x720/0x720
[ 1095.285952]  ? debug_check_no_locks_freed+0x310/0x310
[ 1095.291128]  ? debug_check_no_locks_freed+0x310/0x310
[ 1095.296310]  ? graph_lock+0x170/0x170
[ 1095.300108]  d_alloc+0x8e/0x370
[ 1095.303376]  ? __d_alloc+0xd30/0xd30
[ 1095.307079]  ? find_held_lock+0x36/0x1c0
[ 1095.311133]  d_alloc_parallel+0x152/0x1e80
[ 1095.315356]  ? lock_downgrade+0x8e0/0x8e0
[ 1095.319503]  ? __d_lookup_rcu+0xa80/0xa80
[ 1095.323643]  ? __d_lookup+0x5b4/0x9c0
[ 1095.327438]  ? d_alloc_parallel+0x1e80/0x1e80
[ 1095.331924]  ? lock_release+0xa10/0xa10
[ 1095.335887]  ? mark_held_locks+0xc9/0x160
[ 1095.340035]  ? d_lookup+0x254/0x330
[ 1095.343656]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1095.348657]  ? d_lookup+0x219/0x330
[ 1095.352279]  ? __d_lookup+0x9c0/0x9c0
[ 1095.356071]  ? lock_acquire+0x1dc/0x520
[ 1095.360036]  ? path_openat+0x21e4/0x4e20
[ 1095.364086]  lookup_open+0x54f/0x1b40
[ 1095.367881]  ? complete_walk+0x260/0x260
[ 1095.371935]  ? down_read+0xaf/0x1b0
[ 1095.375545]  ? path_openat+0x21e4/0x4e20
[ 1095.379592]  ? __down_interruptible+0x6e0/0x6e0
[ 1095.384260]  path_openat+0x2211/0x4e20
[ 1095.388151]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1095.392897]  ? find_held_lock+0x36/0x1c0
[ 1095.396952]  ? lock_downgrade+0x8e0/0x8e0
[ 1095.401086]  ? do_sys_open+0x39a/0x740
[ 1095.404967]  ? kasan_check_read+0x11/0x20
[ 1095.409100]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1095.413494]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1095.418060]  ? __lock_is_held+0xb5/0x140
[ 1095.422115]  ? _raw_spin_unlock+0x22/0x30
[ 1095.426248]  ? __alloc_fd+0x346/0x700
[ 1095.430039]  ? usercopy_warn+0x120/0x120
[ 1095.434096]  do_filp_open+0x249/0x350
[ 1095.437895]  ? may_open_dev+0x100/0x100
[ 1095.441858]  ? strncpy_from_user+0x3b6/0x500
[ 1095.446261]  ? simple_attr_release+0x50/0x50
[ 1095.450658]  ? get_unused_fd_flags+0x121/0x190
[ 1095.455225]  ? getname_flags+0xd0/0x5a0
[ 1095.459220]  ? getname_flags+0x26e/0x5a0
[ 1095.463278]  do_sys_open+0x56f/0x740
[ 1095.466981]  ? filp_open+0x80/0x80
[ 1095.470511]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1095.476046]  __x64_sys_open+0x7e/0xc0
[ 1095.479838]  do_syscall_64+0x1b1/0x800
[ 1095.483712]  ? finish_task_switch+0x1ca/0x810
[ 1095.488194]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1095.493113]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1095.498038]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1095.503392]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1095.508227]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1095.513403] RIP: 0033:0x40f581
[ 1095.516575] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1095.524271] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1095.531524] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1095.538780] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
2018/04/19 14:15:48 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x5452, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:49 executing program 3:
r0 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f00000000c0)={0x1, 0x3, 0x5b7, 0x3, 0x3})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000000)=<r3=>0x0)
ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000040)=r3)
ioctl$EVIOCGUNIQ(r2, 0x80404508, &(0x7f0000000100))

2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/de./vcs\x00', 0x0, 0x0)

[ 1095.546037] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1095.553294] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000006
2018/04/19 14:15:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000000)=""/61, 0x27, 0x0)

2018/04/19 14:15:49 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c6d, 0x0)

2018/04/19 14:15:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c82, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:49 executing program 5:
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/de//vcs\x00', 0x0, 0x0)

2018/04/19 14:15:49 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0xfffffff6, 0x0)

2018/04/19 14:15:49 executing program 7:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x4a2000, 0x0)

2018/04/19 14:15:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x80000, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, r3)

2018/04/19 14:15:49 executing program 5:
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:49 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c7b, 0x0)

2018/04/19 14:15:49 executing program 6 (fault-call:0 fault-nth:7):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/.cs\x00', 0x0, 0x0)

2018/04/19 14:15:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x40049409, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1095.850154] FAULT_INJECTION: forcing a failure.
[ 1095.850154] name failslab, interval 1, probability 0, space 0, times 0
[ 1095.861581] CPU: 1 PID: 26961 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1095.868768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1095.878121] Call Trace:
[ 1095.880717]  dump_stack+0x1b9/0x294
[ 1095.884363]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1095.889574]  ? find_held_lock+0x36/0x1c0
[ 1095.893646]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:15:49 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x8000000000000000, 0x0)

[ 1095.897721]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1095.902840]  ? graph_lock+0x170/0x170
[ 1095.906651]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1095.911853]  ? find_held_lock+0x36/0x1c0
[ 1095.915926]  ? __lock_is_held+0xb5/0x140
[ 1095.920003]  ? check_same_owner+0x320/0x320
[ 1095.924337]  ? rcu_note_context_switch+0x710/0x710
[ 1095.929276]  __should_failslab+0x124/0x180
[ 1095.933521]  should_failslab+0x9/0x14
[ 1095.937327]  kmem_cache_alloc+0x2af/0x760
[ 1095.941480]  ? proc_i_callback+0x30/0x30
[ 1095.945543]  proc_alloc_inode+0x1b/0x190
[ 1095.949609]  alloc_inode+0x63/0x190
[ 1095.953240]  new_inode_pseudo+0x69/0x1a0
[ 1095.957298]  ? prune_icache_sb+0x1a0/0x1a0
[ 1095.961517]  ? kasan_check_read+0x11/0x20
[ 1095.965665]  proc_get_inode+0x1e/0x680
[ 1095.969559]  proc_lookup_de+0x104/0x1a0
[ 1095.973538]  ? get_proc_task_net+0x191/0x250
[ 1095.977956]  proc_tgid_net_lookup+0x62/0xb0
[ 1095.982283]  ? proc_tgid_net_readdir+0xe0/0xe0
[ 1095.986875]  lookup_open+0x71d/0x1b40
[ 1095.990694]  ? complete_walk+0x260/0x260
[ 1095.994769]  ? down_read+0xaf/0x1b0
[ 1095.998403]  ? path_openat+0x21e4/0x4e20
[ 1096.002468]  ? __down_interruptible+0x6e0/0x6e0
[ 1096.007157]  path_openat+0x2211/0x4e20
[ 1096.011067]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1096.015833]  ? find_held_lock+0x36/0x1c0
[ 1096.019898]  ? lock_downgrade+0x8e0/0x8e0
[ 1096.024038]  ? do_sys_open+0x39a/0x740
[ 1096.027912]  ? kasan_check_read+0x11/0x20
[ 1096.032048]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1096.036439]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1096.041004]  ? __lock_is_held+0xb5/0x140
[ 1096.045059]  ? _raw_spin_unlock+0x22/0x30
[ 1096.049187]  ? __alloc_fd+0x346/0x700
[ 1096.052966]  ? usercopy_warn+0x120/0x120
[ 1096.057015]  do_filp_open+0x249/0x350
[ 1096.060817]  ? may_open_dev+0x100/0x100
[ 1096.064776]  ? strncpy_from_user+0x3b6/0x500
[ 1096.069170]  ? simple_attr_release+0x50/0x50
[ 1096.073563]  ? get_unused_fd_flags+0x121/0x190
[ 1096.078124]  ? getname_flags+0xd0/0x5a0
[ 1096.082089]  ? getname_flags+0x26e/0x5a0
[ 1096.086136]  do_sys_open+0x56f/0x740
[ 1096.089830]  ? filp_open+0x80/0x80
[ 1096.093353]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1096.098875]  __x64_sys_open+0x7e/0xc0
[ 1096.102659]  do_syscall_64+0x1b1/0x800
[ 1096.106529]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1096.111441]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1096.116354]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1096.121702]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1096.126532]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1096.131701] RIP: 0033:0x40f581
[ 1096.134870] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1096.142565] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev//cs\x00', 0x0, 0x0)

2018/04/19 14:15:49 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1000000000000, 0x0)

2018/04/19 14:15:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountstats\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:49 executing program 5:
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:49 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c47, 0x0)

2018/04/19 14:15:49 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x8)
r2 = dup(r0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:49 executing program 6 (fault-call:0 fault-nth:8):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:49 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x5450, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1096.149814] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1096.157062] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1096.164310] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1096.171557] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000007
[ 1096.210382] FAULT_INJECTION: forcing a failure.
[ 1096.210382] name failslab, interval 1, probability 0, space 0, times 0
[ 1096.221686] CPU: 1 PID: 26970 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1096.228885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1096.238243] Call Trace:
[ 1096.240850]  dump_stack+0x1b9/0x294
[ 1096.244503]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1096.249711]  ? is_bpf_text_address+0xd7/0x170
[ 1096.254220]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:49 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x100000000000000, 0x0)

[ 1096.258293]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1096.263418]  ? save_stack+0xa9/0xd0
[ 1096.267052]  ? find_held_lock+0x36/0x1c0
[ 1096.271142]  ? check_same_owner+0x320/0x320
[ 1096.275470]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1096.280663]  ? rcu_note_context_switch+0x710/0x710
[ 1096.285599]  __should_failslab+0x124/0x180
[ 1096.289843]  should_failslab+0x9/0x14
[ 1096.293650]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1096.298341]  ? sockstat_seq_open+0x30/0x30
[ 1096.298360]  ? sockstat_seq_open+0x30/0x30
[ 1096.298378]  single_open+0x51/0x1e0
2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)="2f6465762f76637304", 0x0, 0x0)

[ 1096.298396]  single_open_net+0xc3/0x140
[ 1096.298412]  ? snmp_seq_open+0x30/0x30
[ 1096.298432]  netstat_seq_open+0x24/0x30
[ 1096.322287]  proc_reg_open+0x1bd/0x550
[ 1096.322305]  ? proc_alloc_inode+0x190/0x190
[ 1096.330497]  ? security_file_open+0x14f/0x1d0
[ 1096.335001]  do_dentry_open+0x7ef/0xf10
[ 1096.338977]  ? proc_alloc_inode+0x190/0x190
[ 1096.343306]  vfs_open+0x139/0x230
[ 1096.346767]  path_openat+0x1676/0x4e20
[ 1096.350669]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1096.355432]  ? find_held_lock+0x36/0x1c0
2018/04/19 14:15:49 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0xf6ffffff)

2018/04/19 14:15:49 executing program 5:
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1096.359505]  ? lock_downgrade+0x8e0/0x8e0
[ 1096.363991]  ? do_sys_open+0x39a/0x740
[ 1096.367893]  ? kasan_check_read+0x11/0x20
[ 1096.372049]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1096.376462]  ? __lock_is_held+0xb5/0x140
[ 1096.380534]  ? _raw_spin_unlock+0x22/0x30
[ 1096.384686]  ? __alloc_fd+0x346/0x700
[ 1096.388502]  ? usercopy_warn+0x120/0x120
[ 1096.392578]  do_filp_open+0x249/0x350
[ 1096.396386]  ? may_open_dev+0x100/0x100
[ 1096.400366]  ? strncpy_from_user+0x3b6/0x500
[ 1096.404787]  ? simple_attr_release+0x50/0x50
2018/04/19 14:15:49 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:49 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1096.409204]  ? get_unused_fd_flags+0x121/0x190
[ 1096.413794]  ? getname_flags+0xd0/0x5a0
[ 1096.417778]  ? getname_flags+0x26e/0x5a0
[ 1096.421851]  do_sys_open+0x56f/0x740
[ 1096.425579]  ? filp_open+0x80/0x80
[ 1096.429124]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1096.434672]  __x64_sys_open+0x7e/0xc0
[ 1096.438483]  do_syscall_64+0x1b1/0x800
[ 1096.442375]  ? finish_task_switch+0x1ca/0x810
[ 1096.446877]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1096.451812]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1096.456749]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1096.462121]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1096.466968]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1096.472158] RIP: 0033:0x40f581
[ 1096.475340] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1096.483051] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1096.490325] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
2018/04/19 14:15:50 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x4000000)

2018/04/19 14:15:50 executing program 6 (fault-call:0 fault-nth:9):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1096.497607] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1096.497615] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1096.497622] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000008
[ 1096.597934] FAULT_INJECTION: forcing a failure.
[ 1096.597934] name failslab, interval 1, probability 0, space 0, times 0
[ 1096.612063] CPU: 1 PID: 27006 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1096.612077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1096.628599] Call Trace:
[ 1096.631198]  dump_stack+0x1b9/0x294
[ 1096.634837]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1096.640039]  ? is_bpf_text_address+0xd7/0x170
[ 1096.644544]  should_fail.cold.4+0xa/0x1a
[ 1096.648607]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1096.653716]  ? save_stack+0xa9/0xd0
[ 1096.657360]  ? find_held_lock+0x36/0x1c0
[ 1096.661434]  ? check_same_owner+0x320/0x320
[ 1096.665737]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1096.670919]  ? rcu_note_context_switch+0x710/0x710
[ 1096.675831]  __should_failslab+0x124/0x180
[ 1096.680050]  should_failslab+0x9/0x14
[ 1096.683846]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1096.688502]  ? sockstat_seq_open+0x30/0x30
[ 1096.692718]  ? sockstat_seq_open+0x30/0x30
[ 1096.696934]  single_open+0x51/0x1e0
[ 1096.700542]  single_open_net+0xc3/0x140
[ 1096.704509]  ? snmp_seq_open+0x30/0x30
[ 1096.708381]  netstat_seq_open+0x24/0x30
[ 1096.712336]  proc_reg_open+0x1bd/0x550
[ 1096.716202]  ? proc_alloc_inode+0x190/0x190
[ 1096.720509]  ? security_file_open+0x14f/0x1d0
[ 1096.724985]  do_dentry_open+0x7ef/0xf10
[ 1096.728942]  ? proc_alloc_inode+0x190/0x190
[ 1096.733246]  vfs_open+0x139/0x230
[ 1096.736688]  path_openat+0x1676/0x4e20
[ 1096.740564]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1096.745318]  ? find_held_lock+0x36/0x1c0
[ 1096.749365]  ? lock_downgrade+0x8e0/0x8e0
[ 1096.753495]  ? do_sys_open+0x39a/0x740
[ 1096.757365]  ? kasan_check_read+0x11/0x20
[ 1096.761506]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1096.765916]  ? __lock_is_held+0xb5/0x140
[ 1096.769969]  ? _raw_spin_unlock+0x22/0x30
[ 1096.774098]  ? __alloc_fd+0x346/0x700
[ 1096.777888]  ? usercopy_warn+0x120/0x120
[ 1096.781946]  do_filp_open+0x249/0x350
[ 1096.785727]  ? may_open_dev+0x100/0x100
[ 1096.789681]  ? strncpy_from_user+0x3b6/0x500
[ 1096.794074]  ? simple_attr_release+0x50/0x50
[ 1096.798465]  ? get_unused_fd_flags+0x121/0x190
[ 1096.803036]  ? getname_flags+0xd0/0x5a0
[ 1096.807001]  ? getname_flags+0x26e/0x5a0
[ 1096.811058]  do_sys_open+0x56f/0x740
[ 1096.814752]  ? filp_open+0x80/0x80
[ 1096.818272]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1096.823798]  __x64_sys_open+0x7e/0xc0
[ 1096.827593]  do_syscall_64+0x1b1/0x800
[ 1096.831459]  ? finish_task_switch+0x1ca/0x810
[ 1096.835945]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1096.840853]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1096.845768]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1096.851126]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1096.855970]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1096.861141] RIP: 0033:0x40f581
2018/04/19 14:15:50 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000002c0))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000300))
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000340)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000380)="0083dddad1980de51f4fd8000000")
ioctl$LOOP_SET_FD(r1, 0x4c00, r1)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="59939307f6570f77", @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYBLOB="0a11e7457b7edc1d539ff5470bb4462a34d6cfa554150d223a8886ea4c1836f46cda8c4e01e9d65d4eafd00d23a3ee948e0bd3ba3619f0932667a35ac4d215d8fb515ede0d1b3703f372b0ca550beb95aab56dc900c0ff03b6f818acd909fbd7b43cacbfe1a6c48ea9e77b9fd10000000000000000000000000000"], @ANYBLOB="0306b90da00000000700000033f0ffffbb54c9195c611caf8e8e9d1c4aecc51025ee5dc5a8bec049b9df02f96c4bbf17deb43436b005d6d4e9d097de75ae662490f38f56d5e908613f8a7093eebe6c404ac18f70ebf3f56853361b96e19a44bf9c3389d2118be1d935ca67a44c56954800f9be23627c02b4799fa484151a5ba3bab8bfde8a54ebfb0cd6aee4718c3bd094a0a9ba60b403fc56b95a35cc0cf934f210"])
pread64(r1, &(0x7f0000000000)=""/61, 0xffffffffffffff37, 0x0)

2018/04/19 14:15:50 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x5451, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:50 executing program 5:
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

2018/04/19 14:15:50 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c38, 0x0)

2018/04/19 14:15:50 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:50 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x4)

2018/04/19 14:15:50 executing program 6 (fault-call:0 fault-nth:10):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1096.864325] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1096.872036] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1096.879292] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
[ 1096.886540] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1096.893792] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1096.901047] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 0000000000000009
2018/04/19 14:15:50 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:50 executing program 5:
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:50 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', r1})

2018/04/19 14:15:50 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4020940d, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:50 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x2)

2018/04/19 14:15:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1097.012804] FAULT_INJECTION: forcing a failure.
[ 1097.012804] name failslab, interval 1, probability 0, space 0, times 0
[ 1097.024195] CPU: 1 PID: 27029 Comm: syz-executor6 Not tainted 4.17.0-rc1+ #8
[ 1097.031393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
2018/04/19 14:15:50 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c6b, 0x0)

2018/04/19 14:15:50 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1097.031399] Call Trace:
[ 1097.031424]  dump_stack+0x1b9/0x294
[ 1097.031445]  ? dump_stack_print_info.cold.2+0x52/0x52
2018/04/19 14:15:50 executing program 7:
r0 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x0, 0x200000007fffe)
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000000)=0x5)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000180))
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KDDELIO(r1, 0x4b35, 0x1ff)
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f00000000c0)={0x7, 0xe69})

[ 1097.031463]  ? __kernel_text_address+0xd/0x40
2018/04/19 14:15:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:50 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c0f, 0x0)

2018/04/19 14:15:50 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:50 executing program 6 (fault-call:0 fault-nth:11):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:50 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0xc020660b, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1097.031479]  ? unwind_get_return_address+0x61/0xa0
[ 1097.031500]  should_fail.cold.4+0xa/0x1a
[ 1097.031518]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1097.031534]  ? save_stack+0xa9/0xd0
2018/04/19 14:15:50 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000040))
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000000c0))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000100)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000240)="6e65742f6e65747374617400154cd1df1ad1ab11cfb403108a326be113d1bc26902724d666011fb4b6f2d6a257fe5f5452a4b4e419ca038f8e84b327e68c6fbb99e8f67aaddc0ec093c773556e7291e1ecdf3d2853d06d9bbf8302228e93208931f89be907138fe1746f03ddb15a3b33bb3e0eb4cbb787c8a84d35e1854441d2ce09cecc2f419dd75930bde4e6aea983f727844a36af6eb0649a862b55e24b5bb5b9")
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:50 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x40000000040, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000740)='hfsplus\x00', &(0x7f0000000780)='./file0\x00', 0x84, 0x1, &(0x7f0000000800)=[{&(0x7f00000007c0)="470b5e743356e928f12a4109a0004b", 0xf, 0x100}], 0x810000, &(0x7f00000008c0)=ANY=[@ANYBLOB="63726561746f723d06581dbc2c75aa2fe8663ddccddd0000000000000000001bcc1da2802af8b789cd8c99a7c1424e3fdffe0ebce134490c474ba6fa61b83df7f409116104b3231bbf69808f28ea"])
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r1, 0xc1205531, &(0x7f0000000600)={0x7, 0x6, 0xfffffffffffffff8, 0x48000, [], [], [], 0x2d6c, 0x0, 0x4c, 0x80, "b39eeec2444c33ea0a9a9600cc5a809d"})
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x5e2)

[ 1097.031547]  ? save_stack+0x43/0xd0
[ 1097.031562]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1097.031575]  ? single_open+0x51/0x1e0
[ 1097.031589]  ? single_open_net+0xc3/0x140
[ 1097.031604]  ? netstat_seq_open+0x24/0x30
[ 1097.031614]  ? proc_reg_open+0x1bd/0x550
[ 1097.031626]  ? do_dentry_open+0x7ef/0xf10
[ 1097.031643]  ? vfs_open+0x139/0x230
[ 1097.031659]  ? path_openat+0x1676/0x4e20
[ 1097.031675]  ? do_filp_open+0x249/0x350
[ 1097.031690]  ? find_held_lock+0x36/0x1c0
[ 1097.031716]  ? check_same_owner+0x320/0x320
[ 1097.031729]  ? kasan_check_read+0x11/0x20
[ 1097.031746]  ? rcu_note_context_switch+0x710/0x710
[ 1097.031760]  ? rcu_pm_notify+0xc0/0xc0
[ 1097.031773]  __should_failslab+0x124/0x180
[ 1097.031787]  should_failslab+0x9/0x14
[ 1097.031798]  kmem_cache_alloc+0x2af/0x760
[ 1097.031810]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1097.031826]  ? kmem_cache_alloc_trace+0x616/0x780
[ 1097.031843]  ? sockstat_seq_open+0x30/0x30
[ 1097.031856]  ? sockstat_seq_open+0x30/0x30
[ 1097.031867]  seq_open+0x5c/0x1c0
[ 1097.031878]  ? sockstat_seq_open+0x30/0x30
[ 1097.031890]  single_open+0x100/0x1e0
[ 1097.031906]  single_open_net+0xc3/0x140
[ 1097.031923]  ? snmp_seq_open+0x30/0x30
[ 1097.031936]  netstat_seq_open+0x24/0x30
[ 1097.031947]  proc_reg_open+0x1bd/0x550
[ 1097.031959]  ? proc_alloc_inode+0x190/0x190
[ 1097.031975]  ? security_file_open+0x14f/0x1d0
[ 1097.031993]  do_dentry_open+0x7ef/0xf10
[ 1097.032007]  ? proc_alloc_inode+0x190/0x190
[ 1097.032029]  vfs_open+0x139/0x230
[ 1097.032047]  path_openat+0x1676/0x4e20
[ 1097.032070]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1097.032084]  ? find_held_lock+0x36/0x1c0
[ 1097.032102]  ? lock_downgrade+0x8e0/0x8e0
[ 1097.032116]  ? do_sys_open+0x39a/0x740
[ 1097.032135]  ? kasan_check_read+0x11/0x20
[ 1097.032149]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1097.032161]  ? __lock_is_held+0xb5/0x140
[ 1097.032181]  ? _raw_spin_unlock+0x22/0x30
[ 1097.032197]  ? __alloc_fd+0x346/0x700
[ 1097.032210]  ? usercopy_warn+0x120/0x120
[ 1097.032233]  do_filp_open+0x249/0x350
[ 1097.032249]  ? may_open_dev+0x100/0x100
[ 1097.032264]  ? strncpy_from_user+0x3b6/0x500
[ 1097.032284]  ? simple_attr_release+0x50/0x50
[ 1097.032302]  ? get_unused_fd_flags+0x121/0x190
[ 1097.032315]  ? getname_flags+0xd0/0x5a0
[ 1097.032332]  ? getname_flags+0x26e/0x5a0
[ 1097.032353]  do_sys_open+0x56f/0x740
[ 1097.032372]  ? filp_open+0x80/0x80
[ 1097.032389]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1097.032412]  __x64_sys_open+0x7e/0xc0
[ 1097.032428]  do_syscall_64+0x1b1/0x800
[ 1097.032443]  ? finish_task_switch+0x1ca/0x810
[ 1097.032459]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1097.032476]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1097.032494]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1097.032513]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1097.032532]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1097.032543] RIP: 0033:0x40f581
[ 1097.032551] RSP: 002b:00007f4f9eac2bb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 1097.032567] RAX: ffffffffffffffda RBX: 00007f4f9eac36d4 RCX: 000000000040f581
[ 1097.032576] RDX: 00007f4f9eac2bed RSI: 0000000000000002 RDI: 00007f4f9eac2bd0
2018/04/19 14:15:51 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0xfffffff6)

2018/04/19 14:15:51 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c51, 0x0)

2018/04/19 14:15:51 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x2, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f00000000c0)={0x18, 0x0, {0x0, @empty, 'bcsf0\x00'}})
ioctl$sock_bt(r0, 0x8907, &(0x7f0000000000)="f56e9bb1b10227ea02f7349dc3a6e33fdb184e2796004ebd068ef65db8a34e18c1afea5a889760deb35b122631676f02c6a320f4f087fb28b13040f645f62617f8f66443d6e2da90e2a3f4822815d0395c3ac11f20c113dd680fd3fb95c3dc0af7adef47fac90ca93c8552a54ae3ad50b3")

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:51 executing program 3:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x420000, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x400000000000a)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$KVM_GET_NR_MMU_PAGES(r2, 0xae45, 0x3)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f0000000000)={0x8, 0xec, 0x0, 0x8, 0x6, 0x30})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000080)={0x3001, 0x10000})
ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000100)={0x0, 0x63e00000, 0xc3a, &(0x7f00000000c0)})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

[ 1097.032585] RBP: 000000000072bea0 R08: 0000000000000000 R09: 000000000000001d
[ 1097.032593] R10: 000000000000000b R11: 0000000000000293 R12: 0000000000000013
[ 1097.032602] R13: 00000000000006a2 R14: 00000000006fcfd0 R15: 000000000000000a
2018/04/19 14:15:51 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x5421, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 7:
syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xa1, 0x101a00)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000240)=<r1=>0x0)
r2 = syz_open_procfs(r1, &(0x7f00000000c0)="6e65742279f7bb7aeb1ad3b20546c7a95555d20459c207830425c46a926b562f6e65747354617400")
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000180)={0x0, 0x10001, 0x40, 'queue1\x00', 0xa2})
pread64(r2, &(0x7f0000000140)=""/61, 0x3d, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x24580, 0x0)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c04, 0x0)

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)

2018/04/19 14:15:51 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x1000000000000)

2018/04/19 14:15:51 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:51 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='.et/netstat\x00')

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)="2f6465762f766373ff", 0x0, 0x0)

2018/04/19 14:15:51 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000040))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000000c0))
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000100)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='wchan\x00')
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000000)=0x7f)
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000000100)={0x6, 0x0, [{}, {}, {}, {}, {}, {}]})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c28, 0x0)

2018/04/19 14:15:51 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='/et/netstat\x00')

2018/04/19 14:15:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x100000000000000)

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)="2f6465762f76637302", 0x0, 0x0)

2018/04/19 14:15:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000340)=""/61, 0x3be, 0x0)
fallocate(r0, 0x1, 0x20, 0x19)
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x6, 0x7, 0x3ff, 0x200})
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x1, {0x2, 0x4e22, @broadcast=0xffffffff}, {0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}, {0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, 0x104, 0x4, 0x8d, 0xfffffffffffffa67, 0x8, &(0x7f0000000000)='ifb0\x00', 0x7, 0x3, 0xfffffffffffffff7})
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000040)={0x80000001, 0x6})
write$cgroup_type(r0, &(0x7f0000000380)='threaded\x00', 0x9)
ioctl$TCSBRK(r0, 0x5409, 0x0)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000000180)={{0x7004, 0xf000, 0x3, 0x1ff, 0x36, 0x6ee00000000, 0x100000000, 0x3ff, 0x775600, 0x7, 0x7da5, 0x7}, {0x100000, 0x5000, 0x0, 0xda, 0x40, 0x1f10, 0x9, 0x9b, 0x2, 0x0, 0x5}, {0x0, 0x105004, 0x0, 0x3b90, 0x6, 0x3, 0x7, 0x48, 0x6, 0x3, 0x4f2dc8c2, 0xfff}, {0x3002, 0x2, 0xc, 0x1, 0x8, 0xffffffffffffffff, 0x2, 0x5, 0x2000, 0x4, 0x9, 0xfff}, {0x0, 0xf004, 0x1b, 0x7fff, 0x69, 0x6, 0x400, 0x1ff, 0x80, 0x7, 0x9, 0x4}, {0x4000, 0x107000, 0xa, 0x7ff, 0x6, 0xf8, 0xffff, 0x480000000000, 0x5, 0x4, 0x400, 0x6}, {0x1f000, 0x0, 0xe, 0x288, 0x86, 0x28524aa, 0x7f, 0x6, 0x3f, 0x2f, 0x7ff, 0x10000}, {0x7001, 0x6000, 0x8, 0x6, 0x2, 0x174d, 0x100, 0x81, 0x8, 0x0, 0x2, 0x9}, {0xf000, 0x100000}, {0x17002, 0xd004}, 0x8, 0x0, 0x100000, 0x400, 0x2, 0x1, 0x10000, [0xbea, 0x3, 0x1, 0x2]})

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)="2f6465762f766373f6", 0x0, 0x0)

2018/04/19 14:15:51 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:15:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)={[0x3b935038054c455b]}, 0x1)

2018/04/19 14:15:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0xc0189436, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c5c, 0x0)

2018/04/19 14:15:51 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x8000000000000000)

2018/04/19 14:15:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000040)={0x0, <r1=>0x0})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r2=>0x0, 0x80000, r0})
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000100)={r1, r2, 0x80000001})
syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x2, 0x20000)

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:51 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='ne%/netstat\x00')

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c5b, 0x0)

2018/04/19 14:15:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x6d00, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000040)=0x200)
r2 = syz_open_dev$sg(&(0x7f0000001000)='/dev/sg#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x4000, 0x0)
mmap(&(0x7f000000a000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x10000000000000)
mmap(&(0x7f000000c000/0x3000)=nil, 0x3000, 0x0, 0x5808856dab2d6b1, 0xffffffffffffffff, 0x0)
r3 = dup(r0)
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000080)={'dummy0\x00', 0xe60083090785b69a})
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x5460, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)="6e65742f7266636f6d6d007873b0d07026006f662742efc73f0b40d28bd389a51104372298051797aa54b90857bbcdf8000000000000000000000000")
ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000000)={0x12af, 0x3})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:51 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='ne./netstat\x00')

2018/04/19 14:15:51 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x200000000000000)

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x400000000000000, 0x0)

2018/04/19 14:15:51 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x5, 0x800)
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f00000000c0)={0x7ffff, 0x0, [0x6e, 0x10000, 0x3, 0x6, 0x2, 0x9, 0x9, 0x2]})
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x210300, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x101fe, 0x1, 0x10f000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r3 = dup(r0)
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000140))
r4 = msgget(0x3, 0x180)
ioctl$BINDER_SET_MAX_THREADS(r1, 0x40046205, 0x100000000)
msgsnd(r4, &(0x7f0000000180)={0x3, "676db50451e439b55ed024298b6a496477e1c80a2d343b63f16d0a0e058de953db5407e439d089685dcf16642eedbf124fe9ca2aee20cb5cf8eb7ff8d6b029443683e8e115c0f9ef1770"}, 0x52, 0x800)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c72, 0x0)

2018/04/19 14:15:51 executing program 7:
pread64(0xffffffffffffffff, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:51 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0xc0045878, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:51 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0xf6ffffff00000000)

2018/04/19 14:15:51 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='ne//netstat\x00')

2018/04/19 14:15:51 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x2000, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f0000000000)={0x5, 0x4})

2018/04/19 14:15:51 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x4000000, 0x0)

2018/04/19 14:15:51 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c35, 0x0)

2018/04/19 14:15:52 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0xc0045877, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
sync_file_range(r1, 0x1000, 0x4, 0x1)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x24000, 0x0)

2018/04/19 14:15:52 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net%netstat\x00')

2018/04/19 14:15:52 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x400000000000000)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1000000, 0x0)

2018/04/19 14:15:52 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x2000000)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c4c, 0x0)

2018/04/19 14:15:52 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net//etstat\x00')

2018/04/19 14:15:52 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x408c5333, &(0x7f0000000180)={0x0, 0x7, 0x84, 'queue0\x00', 0xff})

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000140)={0x2, <r1=>r0, 0x1})
ioctl$DRM_IOCTL_FREE_BUFS(r1, 0x4010641a, &(0x7f00000001c0)={0x5, &(0x7f0000000180)=[0x682, 0x80000000, 0x200, 0x5, 0x5]})
r2 = dup(r0)
r3 = semget(0x3, 0x4, 0x8)
semctl$SEM_STAT(r3, 0x0, 0x12, &(0x7f0000000040)=""/4)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r2, 0xc010640b, &(0x7f0000000080)={0x0, <r4=>0x0, 0x9})
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$DRM_IOCTL_GEM_OPEN(r2, 0xc010640b, &(0x7f00000000c0)={<r5=>0x0, 0x0, 0xfffffffffffffffb})
ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000000100)={r4, r5})
ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f0000000000))

2018/04/19 14:15:52 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0xf6ffffff, 0x0)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0xfffffff6, 0x0)

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0xc0045877, 0x0)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/loop-control\x00', 0x5fdffc, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000140)='/dev/usbmon#\x00', 0x8, 0x400000)
ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f0000000180)=""/111)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)=@ioapic={0x10000, 0x6, 0x1, 0xa6d, 0x0, [{0x6, 0x4, 0x80, [], 0xe87}, {0x4, 0xfa3d, 0x1ff, [], 0x4}, {0x37e7, 0x3, 0x7, [], 0x50da}, {0x7, 0x80, 0x0, [], 0x100000001}, {0x5, 0x7, 0x0, [], 0x1}, {0x3, 0x7, 0x1, [], 0x3ff}, {0x2, 0x791f, 0x80000001, [], 0x1}, {0x401, 0x9, 0x8, [], 0x1}, {0x7, 0x1ff, 0x7, [], 0x7}, {0xfffffffffffffffe, 0x3, 0x101, [], 0x7}, {0x40, 0x2, 0x7, [], 0x7}, {0x2, 0x4, 0x609a, [], 0x8000}, {0x8, 0xfff, 0x6da, [], 0x80}, {0x7, 0x1, 0x80000001, [], 0xa34c0}, {0x5, 0x7, 0x1, [], 0x8}, {0x5, 0xfffffffffffffe01, 0x8, [], 0x97}, {0xb77, 0x5, 0x9, [], 0x7}, {0x7, 0x60c6, 0xe8a1, [], 0xfff}, {0x0, 0x80, 0xdabb, [], 0x9}, {0x7ff, 0x3, 0x0, [], 0xffffffff}, {0x255, 0x100000000, 0x209a, [], 0x3f}, {0x3, 0x20, 0x7, [], 0x101}, {0x7da0000, 0x101, 0x9, [], 0x4}, {0x58a, 0x8, 0x86, [], 0x10000}]})

2018/04/19 14:15:52 executing program 5:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x1e4, 0x0)

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x210041, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x1000000)

2018/04/19 14:15:52 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/.etstat\x00')

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1000000000000, 0x0)

2018/04/19 14:15:52 executing program 7:
r0 = socket$inet6(0xa, 0x80000, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={@empty, @empty, @remote={0xfe, 0x80, [], 0xbb}, 0x88a7, 0xb7, 0x8, 0x100, 0x20, 0x40, r1})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r2, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$VT_RELDISP(r1, 0x5605)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x80)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000040))
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f00000000c0)={'erspan0\x00', 0x4})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000080)={'gretap0\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1a}}})
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000100)=""/4096)

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100)='/dev/snd/midiC#D#\x00', 0xf8, 0x200000)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000140)={{}, 'port0\x00', 0x44, 0x40000, 0x100000000, 0x40, 0x8001, 0x2, 0xc60, 0x0, 0x1, 0xffffffff})
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000040)={'ip6tnl0\x00', 0x100000001})
r2 = dup(r0)
syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x100, 0x2200)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r2, 0xc008ae05, &(0x7f0000000300)=""/205)

2018/04/19 14:15:52 executing program 5:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c65, 0x0)

2018/04/19 14:15:52 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ne%stat\x00')

2018/04/19 14:15:52 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x100000000000000, 0x0)

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0xc0045878, 0x0)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 5:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 7:
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f00000000c0)='attr/current\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
r2 = dup(r1)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000080)={r2})
openat$ion(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ion\x00', 0x505000, 0x0)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0xf6ffffff00000000, 0x0)

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000100)=0x3)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000715000003e52c38f61bdefcbb7adf0d2f80eae8c56c4e2d83475388ab6a7c573f74676"])

2018/04/19 14:15:52 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ne.stat\x00')

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c7a, 0x0)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x2, 0x0)

2018/04/19 14:15:52 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x82400, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ne/stat\x00')

2018/04/19 14:15:52 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000000)={0x4, 0x1})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:52 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480)='/dev/loop-control\x00', 0x20000, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000380)='/dev/audio#\x00', 0x5, 0x42100)
ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f00000004c0))
r2 = dup(r0)
ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f00000000c0)={0x9, {0x2, 0x4e20, @loopback=0x7f000001}, {0x2, 0x4e24, @multicast2=0xe0000002}, {0x2, 0x4e21, @multicast2=0xe0000002}, 0x2b375d0c3c65a4ab, 0x4, 0x2, 0x80000000, 0x4, &(0x7f0000000080)='veth0_to_bond\x00', 0x7, 0x101, 0x10001})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f00000001c0)=0x2)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000040))
ioctl$VT_SETMODE(r2, 0x5602, &(0x7f0000000440)={0x6, 0x100, 0x5, 0x1ad, 0x1})
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000000140)={0x45c228e2, <r3=>0x0, 0x0, 0x7e1c})
ioctl$DRM_IOCTL_AGP_BIND(r2, 0x40106436, &(0x7f0000000180)={r3, 0x4})
ioctl$void(r1, 0x1ca189b05fe6d13f)
ioctl$RNDZAPENTCNT(r2, 0x5204, &(0x7f0000000400)=0xfff)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000)={0xfffffffffffff801, 0x0, 0xfffffffffffffffd})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000200)={{0x6000, 0x5000, 0xb, 0x503, 0x8, 0x3, 0x6, 0xfffffffffffffff7, 0x0, 0x49, 0x7, 0xffffffff}, {0x10d001, 0x15000, 0xc, 0xec8, 0x0, 0x4, 0x5, 0x100000000, 0x3ff, 0x3ff, 0x6, 0x3}, {0x0, 0xd000, 0x3, 0x4, 0x3, 0x7, 0x6, 0x3f, 0xff, 0x1, 0x1857, 0x4}, {0x0, 0x1000, 0x4, 0x7, 0xfffffffffffffffb, 0x100000001, 0x0, 0x1, 0xff, 0x2, 0x0, 0x80000001}, {0xf000, 0x10000, 0x10, 0xffffffff, 0x1, 0x1, 0x7f, 0xf28, 0x4, 0xfff, 0x1a646285, 0xfffffffffffffffd}, {0x4, 0x6000, 0x0, 0x20, 0x8, 0x401, 0x4, 0x81, 0x6947, 0x8, 0x100000001, 0xf0ef}, {0x6000, 0x1f000, 0x3, 0x0, 0xfe, 0x80000000, 0x4, 0xfff, 0x9, 0x51, 0x1, 0x1984}, {0x2000, 0x1000, 0x9, 0x3, 0xa9e, 0xff, 0x7fff, 0xf1a, 0x5, 0x81, 0x100, 0x9}, {0x10f004}, {0x3000, 0x5000}, 0xc0000008, 0x0, 0x7000, 0x8, 0x9, 0x0, 0x103000, [0x100000001, 0xa29, 0x3, 0x8]})
ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f00000008c0)=""/4096)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000003c0)={0x0, 0xfffffffffffffff8, 0x8000, &(0x7f0000000340)})

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c3b, 0x0)

2018/04/19 14:15:52 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000100)={'veth0_to_bridge\x00', 0x8000})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f00000001c0)={<r2=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000200)={0x0, <r3=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000240)={r2, r3})
ioctl$KVM_SET_CPUID(r0, 0x4008ae8a, &(0x7f0000000340)=ANY=[@ANYRES64=r3])
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000002c0)={'team0\x00', r1})
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f00000000c0)=0x9)
r4 = msgget(0x1, 0x724181c8a4adafe4)
ioctl$void(r0, 0x5450)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000300)={0x1, 0x1, 0x7000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0)
ioctl$KVM_GET_CLOCK(r0, 0x8030ae7c, &(0x7f0000000280))
msgctl$MSG_STAT(r4, 0xb, &(0x7f0000000140)=""/127)
socket$nl_xfrm(0x10, 0x3, 0x6)

2018/04/19 14:15:52 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:52 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x4, 0x0)

2018/04/19 14:15:52 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0xfffffffffffffffd, 0x8800)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000000)={0x44, 0x20, 0x7fffffff, 0x0, 0x20, 0x80000001, 0x7, 0x6, 0x5, 0x374, 0x86e3, 0x100000001, 0x0, 0x1, 0xb725, 0xba, 0xffffffff, 0x5, 0xbff9})

2018/04/19 14:15:52 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
lseek(r0, 0x0, 0x7)

2018/04/19 14:15:52 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2c, 0x0)

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r1, 0x4004ae8b, &(0x7f0000000040)={0x42, "325c224ae72993d52201271922c6c53181cd5d50a3d442f6dd27d4e78e025a562c519578eb4b0ce59adeeab1a1237daecabf0f7e4746a967c6c63ab87c3d18fbb97a"})

2018/04/19 14:15:53 executing program 1:
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x8, 0x800)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8})
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x200000000000000, 0x0)

2018/04/19 14:15:53 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/net%tat\x00')

2018/04/19 14:15:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c58, 0x0)

2018/04/19 14:15:53 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x5, 0x4100)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x2000000, 0x0)

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/nets%at\x00')

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)={<r2=>0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x20, 0x0, &(0x7f00000000c0)=[@free_buffer={0x40086303, r2}, @clear_death={0x400c630f, 0x0, 0x2}, @exit_looper={0x630d}], 0x16, 0x0, &(0x7f0000000100)="1b093372f604ffa0c02ad20246bf82bbe593c1137bf6"})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000080)={0x7, 0x14000, 0x4})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCGETD(r1, 0x5424, &(0x7f0000000040))

2018/04/19 14:15:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 7:
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x88e)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c55, 0x0)

2018/04/19 14:15:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = semget$private(0x0, 0x2, 0x100)
semctl$GETVAL(r2, 0x3, 0xc, &(0x7f0000000000)=""/220)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x8000, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
syz_open_pts(r1, 0x400000)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r3)

2018/04/19 14:15:53 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-fixed-time)\x00'}, 0x58)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000000100)={0x6, <r1=>r0})
ioctl$EVIOCGID(r1, 0x80084502, &(0x7f0000000140)=""/32)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r2 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="db63fb00dd9cad6068f820d5a1bfc36271551a22849d9ab1b25cd4ff2936058d8c67d682041141017b18762214bdf90f5fed0166eab29e0000000000000000e332f05bcfd563bc015de12e7e18d18ab642efe6e70632affcaed0e6c7406a92783766e5691f882d0d795a4b6f7cab6c19", 0x70}], 0x1, &(0x7f0000000300)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmsg(r2, &(0x7f0000b2dfc8)={&(0x7f00007ebffa)=@hci, 0x80, &(0x7f0000f75000)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1, &(0x7f0000ec7000)}, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x9, 0x400800)
ioctl$KDMKTONE(r3, 0x4b30, 0x8)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/nets.at\x00')

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x200000000000000)

2018/04/19 14:15:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000180)={{0x5, 0xb7}, 'port0\x00', 0x48, 0x22, 0x2, 0xea, 0xca09, 0x1, 0x7, 0x0, 0x1, 0xdac})

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c6e, 0x0)

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
dup(r0)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/nets/at\x00')

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0xf6ffffff00000000)

2018/04/19 14:15:53 executing program 3:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xf5, 0x200000)
ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000040)={0x1000, 0x3})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x400, 0x181000)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c56, 0x0)

2018/04/19 14:15:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x10001, 0x3})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x800000420)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netst%t\x00')

2018/04/19 14:15:53 executing program 1:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000140))
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000)={0x0, 0x80000})
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x8000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f00000000c0)={0x0, 0x400, 0x5f60800000000})
ioctl$void(r1, 0xc0045c77)
syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x4000000007a, 0x44987)

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x1000000)

2018/04/19 14:15:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c3c, 0x0)

2018/04/19 14:15:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000000)={0x8, 0x2})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
semget$private(0x0, 0x0, 0x211)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x7f, 0xfffffffffffffffc})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$TIOCCBRK(r0, 0x5428)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000000)=""/76)

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x2)

2018/04/19 14:15:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000000)=""/61, 0xfffffffffffffeea, 0x0)

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c27, 0x0)

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_SET_DEBUGREGS(r1, 0x4080aea2, &(0x7f0000000140)={[0x1004, 0xd000, 0x6000, 0x7000], 0x9, 0x28, 0x100000001})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000040))

2018/04/19 14:15:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ACQUIRE(r1, 0x6430)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000000)={'syz_tun\x00', 0xffffffffffffffe1})

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netsta%\x00')

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x100000000000000)

[ 1100.361865] QAT: Invalid ioctl
[ 1100.378211] QAT: Invalid ioctl
[ 1100.405074] QAT: Invalid ioctl
[ 1100.411203] QAT: Invalid ioctl
2018/04/19 14:15:53 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x40, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$GIO_CMAP(r1, 0x4b70, &(0x7f0000000080))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x10000004000, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)

2018/04/19 14:15:53 executing program 7:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x9)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:53 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c13, 0x0)

2018/04/19 14:15:53 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netsta.\x00')

2018/04/19 14:15:53 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x103040, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:53 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000000))

2018/04/19 14:15:53 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x1000000000000)

2018/04/19 14:15:53 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ACQUIRE(r1, 0x6430)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000000)={'syz_tun\x00', 0xffffffffffffffe1})

2018/04/19 14:15:54 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netsta/\x00')

2018/04/19 14:15:54 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000080)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000100)='net/wireless\x00')
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000001180)=@ioapic={0x4000, 0x1, 0x1, 0xd6, 0x0, [{0x1, 0x2, 0x8, [], 0x7ff}, {0x9, 0x4, 0x4, [], 0x4}, {0x56154c5c, 0x80, 0xfd, [], 0x3}, {0x6, 0x8, 0x1, [], 0x7}, {0x0, 0x7, 0xffffffffffffff91, [], 0xfffffffffffffffd}, {0x7, 0x100, 0x0, [], 0x1}, {0x41, 0x1, 0x400, [], 0x4}, {0x27b65947, 0x100, 0x2, [], 0x6aa}, {0xffffffffffffff81, 0x1000, 0x4, [], 0x7fffffff}, {0x884, 0x6, 0x40, [], 0xffff}, {0x9, 0xffff, 0xe0f, [], 0x17}, {0x8, 0xe74, 0xffffffff, [], 0x40}, {0x8, 0x0, 0x200, [], 0x3}, {0x800, 0x6, 0x3, [], 0x4}, {0x0, 0x9, 0x1, [], 0x2}, {0x5, 0x10000000000000, 0x4a38, [], 0x7}, {0x101, 0x3, 0x8, [], 0x7f}, {0x7fffffff, 0x7, 0x4, [], 0x2}, {0x1, 0x4, 0x9, [], 0x2}, {0x5, 0x6, 0x5, [], 0x1}, {0x6, 0x4, 0x5, [], 0x81}, {0x2, 0xffffffffffffff1a, 0x6, [], 0x3d}, {0x8, 0xfffffffffffffffc, 0x7ff, [], 0x4}, {0x100000001, 0xfffffffffffffc01, 0x6000, [], 0x6}]})
ioctl$KDSETLED(r1, 0x4b32, 0x7)
pread64(r1, &(0x7f00000000c0)=""/61, 0xfffffe6c, 0x1)
write$cgroup_int(r1, &(0x7f0000000000)=ANY=[@ANYBLOB='{'], 0x1)
ioctl$ASHMEM_GET_PROT_MASK(r1, 0x7706, &(0x7f0000000040))
ioctl$GIO_UNISCRNMAP(r1, 0x4b69, &(0x7f0000000180)=""/4096)

2018/04/19 14:15:54 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c12, 0x0)

2018/04/19 14:15:54 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x400000000000000)

2018/04/19 14:15:54 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x81, 0x4000)
write$cgroup_int(r0, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00'], 0x2)
ioctl$DRM_IOCTL_SET_MASTER(r0, 0x641e)

2018/04/19 14:15:54 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x800000420)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:54 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000040))
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_open_dev$tun(&(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x101080)

2018/04/19 14:15:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x200000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:54 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000180))
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:54 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x2000000)

2018/04/19 14:15:54 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2d, 0x0)

2018/04/19 14:15:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x40, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$GIO_CMAP(r1, 0x4b70, &(0x7f0000000080))
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x10000004000, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)

2018/04/19 14:15:54 executing program 4:
syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x7, 0x20000)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000300)={&(0x7f00000002c0)=[0x4, 0x2c85, 0x6, 0x4, 0x80, 0xfffffffffffffffd, 0xfffffffffffffffb, 0x7fffffff, 0x9, 0x10000], 0xa, 0x8, 0x2, 0x9, 0x1ff, 0xa20b, {0x3, 0xfffffffffffffffa, 0x401, 0x1ff, 0x20, 0x101, 0x10463a85, 0x5, 0x81, 0x0, 0x9, 0x80000000, 0x0, 0x800, "c30705a1831199129218f07721bcf24d63efb3d3852887d1a9a22d7e466414b8"}})
r2 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xf, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000100)=<r3=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f0000000180)={{0x101, 0x6, 0x81, 0x1f, "ccedf6c19ee716eb820786bae0faa5c2717bb6201e9f5d114aeda8e0179a63e8f9e086bb8a4839b8ffb44fc0", 0x8}, 0x0, 0x0, 0x5, r3, 0x9, 0x8115, "7e3704868aa22ba2ba23e06483bf44fc5361e243430a2463f27fc1a0956692f9d4471788e0d7f31a9f87f5792b57380aca5e5a8628a1d839fd0c29adf8e0974d", &(0x7f0000000140)='\x00', 0x1, [], [0x5935, 0x6, 0xffff, 0x1]})
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000000080)={0x401, 0xc7b})

2018/04/19 14:15:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', <r3=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000080)={'team0\x00', r3})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:54 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:54 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000080)={0x6, 0x0, {0x2, 0x3, 0x3, 0x0, 0x6}})
ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil})
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, &(0x7f0000000000)={0x2, 0x0, 0x20, 0x1, "01d88d206807b303de8ef7aa0812519ac116be38d6721e38df33b95b4796cdc290ccc72ea417e8c997ed88d2", 0x9})

2018/04/19 14:15:54 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0xf6ffffff)

2018/04/19 14:15:54 executing program 7:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000100)={0x5, {0x2, 0x4e24, @multicast1=0xe0000001}, {0x2, 0x4e21}, {0x2, 0x4e23, @loopback=0x7f000001}, 0x28, 0x3, 0x3ff, 0x7, 0x8, &(0x7f00000000c0)='veth0_to_bond\x00', 0x5, 0x3, 0xfffffffffffffff7})
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000040))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/unix\x00')

2018/04/19 14:15:54 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x200000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:54 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000040))

2018/04/19 14:15:54 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c45, 0x0)

2018/04/19 14:15:54 executing program 3:
r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0xc9d5, 0x2)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f00000000c0)={0x4})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x400080, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r2, 0x4010aeab, &(0x7f0000000000)={0x0, 0xd000})

2018/04/19 14:15:54 executing program 7:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x0, 0x40002)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000180)=""/165)
r1 = semget$private(0x0, 0x3, 0x100)
semctl$GETVAL(r1, 0x4, 0xc, &(0x7f0000000240)=""/162)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r2, &(0x7f0000000140)=""/61, 0x3d, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00')

2018/04/19 14:15:54 executing program 1:
socket$bt_cmtp(0x1f, 0x3, 0x5)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:54 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x4000000)

2018/04/19 14:15:54 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c5f, 0x0)

2018/04/19 14:15:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x200000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:54 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000040)={0x1e, 0x4, 0xd5f})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x20000, 0x0)
r1 = dup(r0)
ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000080))
write$binfmt_elf32(r1, &(0x7f0000000140)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x7fffffff, 0x6, 0x3, 0x3f, 0x3, 0x0, 0x9, 0x3c0, 0x38, 0x1d6, 0x5, 0x2, 0x20, 0x1, 0xffffffff, 0x4}, [{0x3, 0x1, 0x6, 0x6, 0x8, 0x401, 0x1000, 0x100000000}], "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", [[], [], [], [], [], [], [], []]}, 0x1858)
ioctl$sock_bt_cmtp_CMTPCONNADD(r1, 0x400443c8, &(0x7f0000000040)={r1, 0x1})
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:54 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:54 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0xfffffff6)

2018/04/19 14:15:54 executing program 7:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x8000, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x3)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0xfffffffffffffcbc, 0x0)

2018/04/19 14:15:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x200000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:54 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c66, 0x0)

2018/04/19 14:15:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000000))
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:54 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:54 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:54 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x4)

2018/04/19 14:15:54 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x31cec245dc6447be)
r1 = syz_open_dev$admmidi(&(0x7f00000001c0)='/dev/admmidi#\x00', 0x9, 0x2)
ioctl$DRM_IOCTL_AGP_ACQUIRE(r1, 0x6430)
ioctl$ASHMEM_GET_PROT_MASK(r0, 0x7706, &(0x7f0000000000))
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000080)={0x7, 0x0, [{0x0, 0x0, 0x3d}, {0xc0000bd7}, {0x9f7}, {0x0, 0x0, 0x4}, {0x0, 0x0, 0x6}, {0x82f, 0x0, 0xffff}, {0xa8e, 0x0, 0x99}]})

2018/04/19 14:15:54 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000000)=""/61, 0xfffffffffffffe55, 0x0)

2018/04/19 14:15:54 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000000))
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:54 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs\x00', 0x200202, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x288000, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000000)={<r1=>0x0})
ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000200)=""/84)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000080)={<r2=>0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f00000000c0)=[@increfs_done={0x40106308, r1, 0x1}, @release={0x40046306}, @release={0x40046306, 0x1}, @increfs_done={0x40106308, r2, 0x3}, @exit_looper={0x630d}, @increfs={0x40046304, 0x3}, @decrefs={0x40046307, 0x2}], 0x5, 0x0, &(0x7f0000000140)="daf1d452c5"})

2018/04/19 14:15:54 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x2, 0x0)

2018/04/19 14:15:54 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0xbfffffffffffffff, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x101000)
ioctl$DRM_IOCTL_MODESET_CTL(r1, 0x40086408, &(0x7f0000000080)={0x7fff, 0xe76})

2018/04/19 14:15:54 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f00000000c0)={0x2, 0xfffffffffffffffa, 0x100000001})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f0000000080)={0x7, 0x7})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)

2018/04/19 14:15:54 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000000)={{0x9, 0x62}, {0x2, 0x9}, 0x3ff, 0x7, 0x31})

2018/04/19 14:15:54 executing program 1:
r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x80000)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r0, 0xc0bc5310, &(0x7f0000000080))
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:54 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatH')

2018/04/19 14:15:55 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000180)='net/dev\x00')

2018/04/19 14:15:55 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)
pwrite64(r0, &(0x7f0000000100)="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", 0xfc, 0x0)
ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f0000000200))
ioctl$sock_bt_cmtp_CMTPCONNDEL(r0, 0x400443c9, &(0x7f0000000000)={{0x0, 0x88, 0x29, 0x401, 0x0, 0xffffffffffff8000}, 0x6})

2018/04/19 14:15:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c4b, 0x0)

2018/04/19 14:15:55 executing program 5:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xf5, 0x200000)
ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000040)={0x1000, 0x3})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x400, 0x181000)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$TIOCLINUX4(r1, 0x541c, &(0x7f0000000040)=0x4)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_dev$audion(&(0x7f0000000300)='/dev/audio#\x00', 0xffffffff, 0x2000)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x7)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x141040)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000040)={0x1, 0x0, &(0x7f00000000c0)=""/213, &(0x7f00000001c0)=""/95, &(0x7f0000000240)=""/191, 0x100000})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:55 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e657473746174c0")

2018/04/19 14:15:55 executing program 3:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x220000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f0000000040)=0x1)
ioctl$KVM_SET_CPUID(r0, 0x4008ae8a, &(0x7f0000000080)={0x4, 0x0, [{0xc0000001, 0x1, 0x2, 0x8, 0x80000001}, {0x0, 0x8, 0x0, 0xcf, 0xfffffffffffffffb}, {0xc000000d, 0x10000, 0xffffffffffff1140, 0x8, 0x9}, {0x1, 0x200, 0x8000000000000, 0x4, 0xfffffffffffffff7}]})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$SIOCGIFMTU(r2, 0x8921, &(0x7f0000000140))
ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f0000000100)={0x2, 0x20, 0x1, r2})

2018/04/19 14:15:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x9, 0xfffffffffffffffe})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000000040)={0x3, 0x1, 0x2, 0x4})

2018/04/19 14:15:55 executing program 5:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xf5, 0x200000)
ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000040)={0x1000, 0x3})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x400, 0x181000)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c71, 0x0)

2018/04/19 14:15:55 executing program 1:
r0 = semget$private(0x0, 0x6, 0x20c)
semctl$IPC_STAT(r0, 0x0, 0x2, &(0x7f0000000080)=""/97)
semget$private(0x0, 0x3, 0x42)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:55 executing program 0:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x6, <r0=>0xffffffffffffffff})
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000080)='/dev/vcs\x00')
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x2, 0x400800)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
write$cgroup_subtree(r0, &(0x7f00000000c0)={[{0x2b, 'io', 0x20}, {0x2b, 'io', 0x20}]}, 0x8)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000000)={0x3})
pread64(r1, &(0x7f0000000140)=""/61, 0x30, 0x0)

2018/04/19 14:15:55 executing program 0:
r0 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x200000)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000040))

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c39, 0x0)

2018/04/19 14:15:55 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatH')

2018/04/19 14:15:55 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x800, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f00000000c0)={r1})
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r3 = dup(r2)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$TIOCCONS(r1, 0x541d)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:55 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000000)={0x100000000, <r1=>0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000080)={r1, 0xffffffff7fffffff})

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x1, 0xfffffffffffffff8})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:55 executing program 0:
r0 = socket$inet6(0xa, 0x800, 0x10001)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffff9c, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={@mcast1={0xff, 0x1, [], 0x1}, @remote={0xfe, 0x80, [], 0xbb}, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x3, 0x1ff, 0x8, 0x400, 0x81, 0x40, r1})
r2 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x8, 0x10000)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000140)=<r3=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f00000001c0)={{0x5f, 0x1, 0x400, 0x1f, "1373a068b3620cda24686fbe3bd6bc47412be24aacdbf4971c87305317e43c5015083c3ebd71b26b235ac0cc", 0x2}, 0x0, 0x0, 0x8, r3, 0x2, 0x1, "da4247a73bce490b706b031714023a279e35a97a9267909a95cfa02a0c9ad08afe3dd275090f7f6490385d04bc01b20564f5676ad8a80bf082238a7d01007ed5", &(0x7f0000000180)='/dev/vcs\x00', 0x9, [], [0x40, 0x3, 0x5, 0x5]})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:55 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000000)={<r2=>0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x20, 0x0, &(0x7f00000000c0)=[@free_buffer={0x40086303, r2}, @clear_death={0x400c630f, 0x0, 0x2}, @exit_looper={0x630d}], 0x16, 0x0, &(0x7f0000000100)="1b093372f604ffa0c02ad20246bf82bbe593c1137bf6"})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000080)={0x7, 0x14000, 0x4})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCGETD(r1, 0x5424, &(0x7f0000000040))

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000000)={'veth0_to_bridge\x00', 0x7fffffff})

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c74, 0x0)

2018/04/19 14:15:55 executing program 4:
r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0xffffffff, 0x44)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x7f)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000140)={0x3})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)
r2 = shmget$private(0x0, 0x2000, 0x400, &(0x7f0000ffc000/0x2000)=nil)
shmctl$SHM_LOCK(r2, 0xb)
syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x1, 0x0)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000000))

2018/04/19 14:15:55 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x40000, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0xffffffffffffffff, 0x0)
ioctl$LOOP_CLR_FD(r0, 0x4c01)
ioctl$GIO_FONT(r0, 0x4b60, &(0x7f0000000080)=""/163)
ioctl$EVIOCGEFFECTS(r1, 0x80044584, &(0x7f0000000500)=""/154)

2018/04/19 14:15:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000000)={0x707, 0x1, 0x3948})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0xb, 0x400)

2018/04/19 14:15:55 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/rt_cache\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000080)={0x3, 0x2, 'client1\x00', 0x0, "77d1b80b55cf0495", "98bedd95975be45c3a2246b6681afef91d69040fd97f7fc3e08fe3e099901267", 0x2, 0xffffffffffff3b67})

2018/04/19 14:15:55 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$EVIOCSABS3F(r0, 0x401845ff, &(0x7f0000000000)={0x4, 0x6, 0x0, 0x400, 0x7ff, 0x8})

2018/04/19 14:15:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f00000000c0)={0x0, 0xafe, &(0x7f0000000040)="c6378eab50dafeb499f7ebf2ab1beb107f959e694f23fddebadf0e8e17216d55df17a6f002b0b962db8a7dda9754d67bed6db7297142d9f145b70fe46ce68600", &(0x7f0000000080)="4aab136c41248efc690077afb6afb82f9b78a4d7740b0e42f105cbc00b9c49e10d734c3e6df2fe3e19a4", 0x40, 0x2a})
ioctl$KDADDIO(r1, 0x4b34, 0x3ff)

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c7c, 0x0)

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$TIOCMBIC(r0, 0x5417, &(0x7f0000000000)=0x7)

2018/04/19 14:15:55 executing program 3:
r0 = dup(0xffffffffffffffff)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c74, 0x0)

2018/04/19 14:15:55 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617403")

2018/04/19 14:15:55 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x4, 0x401)

2018/04/19 14:15:55 executing program 0:
r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xc0e3, 0x0)
ioctl$EVIOCSABS0(r0, 0x401845c0, &(0x7f0000000080)={0x500000, 0xea31e15, 0x9, 0x1, 0x6, 0x9f})
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
fchmod(r1, 0x100)

2018/04/19 14:15:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCCBRK(r1, 0x5428)

2018/04/19 14:15:55 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x101000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f00000001c0))
openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0)
r2 = dup(r0)
ioctl$PPPOEIOCDFWD(r2, 0xb101, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r3)
pwrite64(r2, &(0x7f0000000040)="dae488b2c5dec0ca894cb8ff8906cc00ce01a11561ace0d83ed6f0a3a14253559977a35a2151b7fbbb03b4ab496ad9ddb812de44b587797812eb98b33a7b97afdc7ea8b3ee3b3f8cf0984719c0b08c3802054b166521f951c31cd7f9737c013da7bb67dada7f5226272d4169304795068a4076cf2a3fdef9d8978c3f77f52658e0b584848c5bbee63188b2f719d4b4e634823dea8a920f0f2bf0763a616ebef03cd566976ec3a97e89073533ab1484b05e87a41526d6f6355e87e938012445a74e5a8d317c3fa3334630acb5", 0xcc, 0x0)
ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000000)=[0xffff, 0x5])

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c64, 0x0)

2018/04/19 14:15:55 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c74, 0x0)

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x40, 0x0)
r1 = dup(r0)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000180))
ioctl$TIOCSWINSZ(r1, 0x5414, &(0x7f0000000040)={0x10001, 0x100000000, 0x0, 0x800})
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000000))

2018/04/19 14:15:55 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x5, 0x0)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000000))

2018/04/19 14:15:55 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000040)={0x0, 0x3, 0x9})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:55 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:55 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c74, 0x0)

2018/04/19 14:15:55 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:55 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c3e, 0x0)

2018/04/19 14:15:56 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c70, 0x0)

2018/04/19 14:15:56 executing program 7:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x101000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:56 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$TCSBRK(r0, 0x5409, 0x9)
ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f0000000100)={0x20, &(0x7f00000000c0)=""/32})
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, &(0x7f0000000080)={0x0, 0x1, 0xe6e80000, 0x321e, "fcdac623d69418351aeb5b6168a4bdbe7b2a6344717d55790b92144ab173205e0b38df6e2d4194b679767f92", 0x401})
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f0000000000)=0x3)

2018/04/19 14:15:56 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
r4 = dup3(r3, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x1000})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001180)=[@text64={0x40, &(0x7f0000000040)="440f20c0350e000000440f22c0260f013ab805000000b9078000000f01d9b9321001c0b802000000ba000000000f30c744240000f0d9e8c744240204000000c7442406000000000f011424c4227d0ff70f353e660f38814d0ac4e27d8c07668ec5", 0x61}], 0x1, 0xffffffffffffffff, &(0x7f00000011c0), 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = dup(r0)
ioctl$PIO_UNIMAPCLR(r5, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r5, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
r1 = memfd_create(&(0x7f0000002901)='dev ', 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x6c}, [], {0x95}}, &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000011000)=""/195}, 0x48)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000000)=0x3)
ioctl$sock_proto_private(r0, 0x89e6, &(0x7f0000000180)="1c3e573b2b0540539792059bccf1a019c83255027514165e3d1f3ff9c8c9cc687c845fa0bb05fd5ba783457b8fbd708e92a45afb21e31ce256eebe925d6be953d37d4b7ee291d1d736d31aa8bb571f614f754298d475d3b3d18e235f53b96f7255267de0f44b45e5668e5278d63d9e755b9e53b7f9a38248512ec3f5fd576e10e8655b3c2dfbee55dbcad30ec06a443c3c8c5e18e9c21518cdb70ea312853e77762fba47813f47f917b0843ce3e157a90d818b97e3bd574cb58194f6b26e8415d1")
r2 = shmget(0x0, 0x4000, 0x1, &(0x7f0000ffb000/0x4000)=nil)
shmctl$SHM_INFO(r2, 0xe, &(0x7f0000000080)=""/120)

2018/04/19 14:15:56 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:56 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:56 executing program 3:
r0 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x400000)
ioctl$KVM_X86_SET_MCE(r0, 0x4040ae9e, &(0x7f00000000c0)={0x4980000000000000, 0x3000, 0x6, 0x4, 0xb})
ioctl$KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000100)=ANY=[@ANYBLOB="02000000000000000000000100000000000000000000000000000000000000000000000000000000"])
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x80000, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000040))
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x1fe, 0x2, 0xd000, 0x1000, &(0x7f0000ffe000/0x1000)=nil})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:56 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000000080)={0x7, 0xdbc, 0x3})
syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0xba, 0x12000)

2018/04/19 14:15:56 executing program 3:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c39, 0x0)

2018/04/19 14:15:56 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c16, 0x0)

2018/04/19 14:15:56 executing program 0:
r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x200, 0x4000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'team0\x00', <r1=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'veth1_to_bridge\x00', r1})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100)

2018/04/19 14:15:56 executing program 3:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x20000, 0x0)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080))
ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f00000000c0)=0x3)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000000))

2018/04/19 14:15:56 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:56 executing program 4:
r0 = syz_open_dev$urandom(&(0x7f0000000040)='/dev/urandom\x00', 0x0, 0x40)
ioctl$RNDCLEARPOOL(r0, 0x5206, &(0x7f0000000080)=0x100000000)
syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x100)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c39, 0x0)

2018/04/19 14:15:56 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c4d, 0x0)

2018/04/19 14:15:56 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0xfffffffffffffffe, 0x0)

2018/04/19 14:15:56 executing program 1:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000080)=0x1a)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x1000000000000)

[ 1102.911949] QAT: Invalid ioctl
2018/04/19 14:15:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000040)={0x6, &(0x7f0000000000)=[{}, {<r1=>0x0}, {}, {}, {}, {}]})
ioctl$DRM_IOCTL_GET_CTX(r0, 0xc0086423, &(0x7f00000000c0)={r1})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

[ 1102.952992] QAT: Invalid ioctl
2018/04/19 14:15:56 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c39, 0x0)

2018/04/19 14:15:56 executing program 0:
syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x0, 0x40400)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1102.978679] QAT: Invalid ioctl
[ 1102.982105] QAT: Invalid ioctl
2018/04/19 14:15:56 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000040)={0x4, <r3=>0x0, 0x0, 0x80000001})
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000080)={0x9, r3, 0x10002, 0x2a})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:56 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c0a, 0x0)

2018/04/19 14:15:56 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x521c80)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KDDELIO(r0, 0x4b35, 0x7f)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
fchmod(r0, 0x8)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f00000000c0)={@host=0x2})
ioctl$DRM_IOCTL_AGP_ACQUIRE(r0, 0x6430)
syz_open_dev$random(&(0x7f0000000040)='/dev/random\x00', 0x0, 0x101000)
syz_open_dev$urandom(&(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x80)

2018/04/19 14:15:56 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12013, r0, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x40, 0x0)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f0000000080)={0x2, 0x74})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x1ffb, 0x0)

2018/04/19 14:15:56 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x20000000000000)

2018/04/19 14:15:56 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:56 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
r4 = dup3(r3, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x1000})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001180)=[@text64={0x40, &(0x7f0000000040)="440f20c0350e000000440f22c0260f013ab805000000b9078000000f01d9b9321001c0b802000000ba000000000f30c744240000f0d9e8c744240204000000c7442406000000000f011424c4227d0ff70f353e660f38814d0ac4e27d8c07668ec5", 0x61}], 0x1, 0xffffffffffffffff, &(0x7f00000011c0), 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = dup(r0)
ioctl$PIO_UNIMAPCLR(r5, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r5, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
write$cgroup_subtree(r1, &(0x7f0000000000)={[{0x2f, 'memory', 0x20}]}, 0x8)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:56 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x412000, 0x0)
ioctl$EVIOCSABS2F(r2, 0x401845ef, &(0x7f0000000080)={0x1c8574e1, 0xfffffffffffffff8, 0x6, 0x7, 0x9, 0x400})

2018/04/19 14:15:56 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
r0 = msgget(0x0, 0x2)
msgrcv(r0, &(0x7f0000000080)={0x0, ""/78}, 0x56, 0x0, 0x1000)

2018/04/19 14:15:57 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c1e, 0x0)

2018/04/19 14:15:57 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000000)=""/61, 0x3d, 0x0)

2018/04/19 14:15:57 executing program 1:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2800, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000000080)={<r1=>0x0, 0x0, 0x100000001})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f00000000c0)={<r2=>0x0, 0x80000, 0xffffffffffffff9c})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000001c0)={0x4, 0x3, 0x0, 'queue0\x00', 0xffffffffffffffba})
pread64(r0, &(0x7f0000000140)=""/13, 0xd, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000100)={r1, r2, 0xffff})
r3 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)

2018/04/19 14:15:57 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x20000000, 0x400)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r1, 0xc058534f, &(0x7f0000000040)={{0x7, 0x800}, 0x1, 0x1, 0x7fff, {0x465, 0xffffffffffffff7f}, 0x2})
r2 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, r3)

2018/04/19 14:15:57 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400, 0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000180)={0x3, r1})
ioctl$EVIOCGBITSND(r1, 0x80404532, &(0x7f00000001c0)=""/122)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000140)={0x3})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000000)={'vcan0\x00', {0x2, 0x4e24, @multicast2=0xe0000002}})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000080)={<r3=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f00000000c0)={0x0, <r4=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000100)={r3, r4})

2018/04/19 14:15:57 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:57 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340), 0xfffffffffffffec9, 0x0, &(0x7f0000000240)="484218983fb518f40d95f8f165797fece368c69a746dd68ba5a750683888ec7c3a41acfdd20d3bd01cc0f3ed8d92a6f59684844be2ba0c0f465815b6cc1c14528730bc2b9dc89501828be17bd38167f80e1743538ddd0fd42628c6c6860c922a659e91121e50f4f2a7029fffddc07c967298b69c0053616bdeb3d4e480da06272fab2836d648498edf5d718db495ff8daa2a25962231e844ba2c0dec8fc1d328a64517e9f157cf7381b9a7ccf038dbe9e99acc0bcd4c1d3a72630ffb9601e643613deb9c7131d89cdb6d6f0900d8919c4ed35a27c660d3050a78786dfdb1cf1ccd9ee7c9e95482ecdb9e"})

2018/04/19 14:15:57 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000100)=0x3)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000715000003e52c38f61bdefcbb7adf0d2f80eae8c56c4e2d83475388ab6a7c573f74676"])

2018/04/19 14:15:57 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000100)=0x3)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000715000003e52c38f61bdefcbb7adf0d2f80eae8c56c4e2d83475388ab6a7c573f74676"])

2018/04/19 14:15:57 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000000)={0xffffffffffffff03, 0xfffffffffffffff9, 0x100000001, 0x100, 0x0, 0x0, 0x40, 0x7fffffff, 0x80})

2018/04/19 14:15:57 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
write$tun(r0, &(0x7f0000000000)={@pi={0x0, 0x22f0}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@mpls_mc={0x8848, {[{0x1, 0x8001, 0x100000001, 0x9}, {0x9, 0x80000000000, 0x1000, 0xcb0}, {0x10000, 0x6be, 0x3c, 0x4}, {0x7fff, 0x7b, 0x1ff}], @llc={@llc={0x80, 0xfe, "b1f7", "b8acd1b57756a8a17158d17a2e6dd5824bda3e4bc1e275022c94dcda95a5617fa6da45fc938cd0be737ce3913cafd4d3e4348b7372f3712430f5e8300f01b6fef16d8486e2"}}}}}}}, 0x6b)

2018/04/19 14:15:57 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c6c, 0x0)

2018/04/19 14:15:57 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000000)=""/207)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)

2018/04/19 14:15:57 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:57 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000180)={{0x6646, 0x8}, {0x1, 0x6a4}, 0x8, 0x2, 0x9})
fchmod(r0, 0x100)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000100)={0x9cc8, 0x3, 0x6b, 0x5, &(0x7f0000000040)=[{}, {}, {}]})
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000200)={0x0, <r2=>0x0, 0x8})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000240)={r2, 0x80000, r1})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:57 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400, 0x0)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000180)={0x3, r1})
ioctl$EVIOCGBITSND(r1, 0x80404532, &(0x7f00000001c0)=""/122)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000140)={0x3})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000000)={'vcan0\x00', {0x2, 0x4e24, @multicast2=0xe0000002}})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000080)={<r3=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f00000000c0)={0x0, <r4=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000100)={r3, r4})

2018/04/19 14:15:57 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x60000, 0x120000)
ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffff9c, 0xc008640a, &(0x7f0000000080)={<r1=>0x0})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f0000000200)={r1, 0x80000, <r2=>r0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000100)={r1, 0x80000, r2})
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x2)

2018/04/19 14:15:57 executing program 0:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2, 0x40141)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000080)={0x7, 0x8, 0x100000001})
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x200000, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x40, 0x0)

2018/04/19 14:15:57 executing program 7:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0)
ioctl$KDDISABIO(r0, 0x4b37)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', r1})
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000100))
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000001c0)=<r2=>0x0)
r3 = syz_open_procfs(r2, &(0x7f0000000200)='autogroup\x00')
pread64(r3, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:58 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x5451, 0x0)

2018/04/19 14:15:58 executing program 1:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000000)={0x7, 0x1ff, 0x5, 0x0, 0x0, 0xfffffffffffff337, 0x2, 0xff, 0x3df, 0x7aa, 0x4632, 0x200, 0x0, 0x8, 0x0, 0x3, 0x6ce, 0xc59, 0x4})

2018/04/19 14:15:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_emit_ethernet(0x1, &(0x7f0000000100)=ANY=[@ANYRES16], &(0x7f00000000c0)={0x0, 0x3, [0x253, 0x15, 0x212, 0x4dd]})
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f0000000000))

2018/04/19 14:15:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x8003, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$int_in(r1, 0x5452, &(0x7f0000000080)=0x4)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 0:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
ioctl(r0, 0xfffffffffffffe00, &(0x7f0000000080)="f54854ab31885244b3e076e5521d474284899ce4e18554b6c700f98c2e354f520b7f99d7ed03abc85e5376ddbe3eb863d8f117c517de02bfbb6374bd3902254f9bfb276c24cc08c05c4b6c6bea38cd4a4a716efea6b330c36fa05bbeb122d9c1b1ea5166a8a8d7b9ba")
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x5452, 0x0)

2018/04/19 14:15:58 executing program 7:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc\x00', 0x0, 0x0)
ioctl$LOOP_SET_CAPACITY(r0, 0x4c07)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f00000000c0)=""/61, 0x3d, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f0000000040)={0x3, 0x3, 0x7ff})
ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000140))
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x101000, 0x0)
ioctl$KVM_GET_XCRS(r0, 0x8188aea6, &(0x7f0000000180)={0x7, 0x1000, [{0xffffffff, 0x0, 0x3f84}, {0x3, 0x0, 0x3ff}, {0x100, 0x0, 0x101}, {0xff86, 0x0, 0x400}, {0xffffffff7fffffff, 0x0, 0x6}, {0x8}, {0x40, 0x0, 0xffffffff}]})

2018/04/19 14:15:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000000080)=0x7)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f00000000c0)={0x9, 0x4, [{}, {0x3f, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x100, 0x0, 0xb5}, {0xf6d}, {0x7fffffff, 0x0, 0x8}, {0x80, 0x0, 0x100000000}, {0x81, 0x0, 0x1000}, {0x5, 0x0, 0x49a00000000}]})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x1, <r3=>0x0, 0x0, 0x3})
ioctl$DRM_IOCTL_AGP_UNBIND(r1, 0x40106437, &(0x7f0000000040)={r3, 0x80000000})

2018/04/19 14:15:58 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7, 0x5)
ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000000100)=""/50)
r1 = msgget(0x0, 0x100)
msgctl$IPC_RMID(r1, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')

2018/04/19 14:15:58 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x105000, 0x0)
ioctl$TCGETA(r0, 0x5405, &(0x7f0000000040))

2018/04/19 14:15:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x3, 0x0)
ioctl$TCSBRK(r1, 0x5409, 0x100000000)
r2 = dup(r0)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r2, 0xc0105303, &(0x7f00000000c0)={0x3, 0x1000, 0x2})
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x200)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c82, 0x0)

2018/04/19 14:15:58 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x3, 0x208001)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000180))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040))
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f00000000c0))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000100))
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000200))
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f0000001240)=0xfffffffffffff294)
r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x100, 0x800)
pread64(0xffffffffffffffff, &(0x7f0000000140)=""/61, 0x3d, 0x0)
pread64(r1, &(0x7f0000000240)=""/4096, 0x1000, 0x0)

2018/04/19 14:15:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:58 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x601, 0x0)

2018/04/19 14:15:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x200)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x5, 0xfffffffffffffc5c, 0x3, 0x9, 0x2, 0x7, 0xffffffffffffffff, 0x33e, 0x38, 0x2fc, 0x8000, 0x101, 0x20, 0x2, 0x2, 0x9d9e, 0xed}, [{0x5, 0x7, 0x5a3e44f5, 0x9, 0x1, 0x6, 0x5, 0xfffffffffffffffa}], "a20c371a9b10bab5a4abcd479ca5391f817bcc7fcd04396fba14fa6d3af936f4011076e7f06e8819107be90e79912311bb6f8d9c23832635381e9cf505be4325b2359e1707b454d300501bfe8e5e520a0cbcc10248571ab93de57943dc9c7e0225d6d64507ed4db96567013b2d4a4a2bcaee14dc4c7d7c48ed79b2be2006aed9adc7e36c292d06cba9bfc7982f90a0cf6d5576bf", [[], [], [], [], []]}, 0x5ec)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000240))
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)

2018/04/19 14:15:58 executing program 1:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x208080, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f00000000c0)={0x1, [0x0]})
ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f0000000100))
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x90000, 0x0)

2018/04/19 14:15:58 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0xc0189436, 0x0)

2018/04/19 14:15:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x2, 0x4280)
ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000140))
r2 = dup(r0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
r3 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x8001, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r3, 0xc008640a, &(0x7f0000000040)={0x0, <r4=>0x0})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f0000000080)={<r5=>0x0, 0x80000, r2})
ioctl$DRM_IOCTL_GEM_OPEN(r3, 0xc010640b, &(0x7f00000000c0)={r4, r5, 0x4})

2018/04/19 14:15:58 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
r1 = msgget$private(0x0, 0x8)
msgctl$MSG_STAT(r1, 0xb, &(0x7f0000000080)=""/123)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000000)={0x9, 0x2})
ioctl$TIOCNOTTY(r0, 0x5422)

2018/04/19 14:15:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))

2018/04/19 14:15:58 executing program 5:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000080))
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x200800, 0x0)

2018/04/19 14:15:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = dup(r0)
ioctl$TCGETA(r1, 0x5405, &(0x7f0000000040))
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000080))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f0000000180)={0x1, 0x101, 0x5, 'queue1\x00', 0x4})

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c5e, 0x0)

2018/04/19 14:15:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x2000, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:58 executing program 1:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x2000)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0x81, 0x0, 0x3, 0xb5, 0x6a5, 0xfffffffffffffff8, 0x0, 0x400, 0x9, 0x81, 0x1, 0x3})
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xfd, 0x800)

2018/04/19 14:15:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0)

2018/04/19 14:15:58 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x22140, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x1000000000000, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=<r1=>0x0)
syz_open_procfs(r1, &(0x7f0000000040)='numa_maps\x00')

2018/04/19 14:15:58 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)
ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f0000000040)=0x3)

2018/04/19 14:15:58 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e657473746174ff")

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c0d, 0x0)

2018/04/19 14:15:58 executing program 1:
r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x4000)
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f00000000c0))
shmget$private(0x0, 0x4000, 0x20, &(0x7f0000ffc000/0x4000)=nil)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:58 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r1, 0xc0405519, &(0x7f0000000000)={0x401, 0x5, 0x1, 0xfffffffffffffffb, "5be24cb0c45ec451fc01b5364bacf1989b5bd7845b54dd30c276b22893a3cbb6cba31b8bb0b189120032e3e8", 0x9})

2018/04/19 14:15:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$TIOCEXCL(r1, 0x540c)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x7d})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000080)={{0x1, 0x20}, 'port1\x00', 0x11, 0x181017, 0x0, 0x2, 0x28, 0x2, 0x3, 0x0, 0x5, 0x81})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))

2018/04/19 14:15:58 executing program 0:
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000100)={0x0, 0x80000, <r0=>0xffffffffffffffff})
openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20000, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000140)={0x8000, <r1=>0x0, 0x0, 0xa29})
ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000180)={r1, 0x7})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$sock_netdev_private(r2, 0x89fc, &(0x7f0000000000)="6fcbaccfa5ba1194c2b3f602")
ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000080)=""/122)

2018/04/19 14:15:58 executing program 7:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x404001)
write$binfmt_script(r0, &(0x7f0000002200)={'#! ', './file0', [], 0xa, "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"}, 0x444)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='ns\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:15:58 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c49, 0x0)

2018/04/19 14:15:58 executing program 3:
syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x1, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatl')

2018/04/19 14:15:58 executing program 1:
r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xf24f, 0x408200)
ioctl$LOOP_CLR_FD(r0, 0x4c01)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x2, 0xfffffffffffffffd)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x200, 0x0)
ioctl$DRM_IOCTL_ADD_MAP(r1, 0xc0286415, &(0x7f00000000c0)={&(0x7f0000ffd000/0x1000)=nil, 0xe59a, 0x3, 0x80, &(0x7f0000ffd000/0x1000)=nil, 0xfffffffffffffffc})
ioctl$RNDADDTOENTCNT(r2, 0x40045201, &(0x7f0000000080)=0x9)

2018/04/19 14:15:58 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0xfffffffffffffffe, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000040)={0x1f, 0x84})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:58 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000080)={r0, 0xfffffffffffffffe, 0x1, "2a7bb54de6edcea35b5e6d742885f9f3596040c705d397183bbb48f7cea4080996c2097cad046326f43d106b12b1f3cbc19ed85d66d63ccbd50fc0bd223922145b7d9fdd2f9602cabdd3d4b2cf634f072ac600d62a85bb975e8db29e8b1a77f3e4dca722f471cb85e0c5c2c6d4bc8401008c37368a73143952d6abcfaa71e28c9d"})
ioctl$sock_bt_cmtp_CMTPCONNDEL(r0, 0x400443c9, &(0x7f0000000000)={{0xffff, 0x7, 0x5, 0x9, 0xdb, 0x8}, 0x4})

2018/04/19 14:15:58 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=<r1=>0x0)
syz_open_procfs(r1, &(0x7f0000000040)='oom_score\x00')

2018/04/19 14:15:58 executing program 0:
socket$inet6_icmp(0xa, 0x2, 0x3a)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x100, 0x0)
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f00000000c0)={0x200, 0x9})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f00000001c0)={0x944, <r1=>0x0, 0x10000, 0x1f})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000200)={0x7f, r1, 0x1, 0x100})
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000180))
ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000140)={0x104006, 0xd000, 0x0, 0x0, 0x3})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f0000000080)=0xffffffffffff0e9b)
ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f0000000100))

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c76, 0x0)

2018/04/19 14:15:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$EVIOCSCLOCKID(r1, 0x400445a0, &(0x7f00000000c0)=0x9)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
read(r1, &(0x7f0000000040)=""/98, 0x62)

2018/04/19 14:15:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1105.543876] QAT: Invalid ioctl
[ 1105.561435] QAT: Invalid ioctl
[ 1105.568928] QAT: Invalid ioctl
[ 1105.572815] QAT: Invalid ioctl
[ 1105.576817] QAT: Invalid ioctl
[ 1105.583662] QAT: Invalid ioctl
[ 1105.590857] QAT: Invalid ioctl
[ 1105.594416] QAT: Invalid ioctl
[ 1105.599419] QAT: Invalid ioctl
[ 1105.603318] QAT: Invalid ioctl
2018/04/19 14:15:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f0000000040)={{0x8, 0x1f, 0x80000000, 0x7, 0x1000, 0xfff}, 0xfffffffffffff001, 0x5, 0x42, 0x8, 0x100000000, "518a927a37f2994f6363700e5f6bce2e625cee3eb002483f042c6253e4f3a62132ddc4d6ffef326b0b1d27077cd5c615ac045acffd7fc1c8eface11cb5962e5c9553075ff1243efac299ed703f99d982000dc522d9e633cc189cf242dc0c028340b6bce3668b1058bf4e7f86bc524ef51123cf3af64bcc7ecfd526bef8167027"})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
msgget(0x1, 0x100)
ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000100)=""/157)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:59 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2, 0x200000)
openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x4000)
write$binfmt_aout(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="cf01010497000000be01000004000000a1020000000000000000000000000000d06cd39d30145ce76c5b660bed37a11f7e51aadbb19192c67edf9fc642872f03c6b826149f130b678b0658208b76989e388c7f0c7bf46887eaf33cae4dbce6e27b7372e7d516adcef761a3d8e0b3c61fcf6657e727020933eacd7f9365e6ffb975d98da45884556cdcd8e0c07cacb2ee7de30141835e9be80c8642bdaba2faccb00a46089dc981886f1df4716a793c0af68fb37be837da8841aac9d52ccd1a21f0784db68f8af5aaff58498dba9781b60e958eb6330d9e108e50799f0867beba690000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001440d9b747c5331e7c3f53236839c6c48d25c6554785022dec4a0af3"], 0x6e1)
ioctl$KVM_SMI(r0, 0xaeb7)

2018/04/19 14:15:59 executing program 7:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='net/igmp\x00')
r2 = socket$alg(0x26, 0x5, 0x0)
perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8001, 0x0, 0x0, 0x0, 0x3, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x800, 0x0, 0x0, 0x0, 0x2, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$alg(r2, &(0x7f0000000240)={0x26, 'aead\x00', 0x0, 0x0, 'authenc(poly1305-simd,ctr-camellia-asm)\x00'}, 0x58)
ioctl$DRM_IOCTL_FREE_BUFS(r1, 0x4010641a, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[0x0]})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000300)={{0x1, 0x7fff}, 'port1\x00', 0x80, 0x40000, 0x4, 0x7ff, 0x9, 0x1, 0xfffffffffffffff7, 0x0, 0x1, 0x9})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000100), 0x0)
pread64(r1, &(0x7f00000002c0)=""/61, 0xfffffffffffffd36, 0x0)

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c32, 0x0)

2018/04/19 14:15:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x509000, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x8, 0x101000)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0x40a85321, &(0x7f0000000080)={{0xfffffffffffffffe, 0x7662}, 'port1\x00', 0x88, 0x1000, 0x100000000, 0x1ff, 0xfff, 0x7ff, 0x5, 0x0, 0x6, 0xffffffffffffffff})

2018/04/19 14:15:59 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x200000, 0x0)

2018/04/19 14:15:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:59 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, &(0x7f0000000080)={0x7, 0x40})
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, &(0x7f0000000000)={0x3, 0x4, 0x8, 0x1d9, "b4e532c9b629e68aebe205db863ec755d718d7cf8c2282a29e64e036377e207e83c4c0d07d215b89e8d5d1e0", 0x33})

2018/04/19 14:15:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$DRM_IOCTL_MAP_BUFS(r1, 0xc0186419, &(0x7f0000001180)={0x2, &(0x7f0000000080)=""/81, &(0x7f0000001140)=[{0x100, 0x1000, 0x3ff, &(0x7f0000000100)=""/4096}, {0x3ff, 0x16, 0x2, &(0x7f0000001100)=""/22}]})
ioctl$RNDGETENTCNT(r1, 0x80045200, &(0x7f0000000040))

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c10, 0x0)

2018/04/19 14:15:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000000))
r2 = dup(r0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'veth1_to_bridge\x00', <r4=>r3})
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000040)={@dev={0xfe, 0x80, [], 0xf}, 0x34, r4})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$TIOCSCTTY(r2, 0x540e, 0x2)

2018/04/19 14:15:59 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)

2018/04/19 14:15:59 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:59 executing program 7:
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000040))
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000100)="6e657420d07b5211842efdcf")
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000000)=@get={0x1, &(0x7f0000000180)=""/78, 0x1f})

2018/04/19 14:15:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0xc0189436, 0x0)

2018/04/19 14:15:59 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x402, 0x0)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, &(0x7f0000000000)={{0x7, 0x4, 0x100000001, 0x0, 0x5, 0x400}, 0x800, 0x8, 0x8001})

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4020940d, 0x0)

2018/04/19 14:15:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 1:
r0 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x8, 0x2006)
ioctl$KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f0000000080)={0x0, 0x4, 0x2, &(0x7f0000000040)})

2018/04/19 14:15:59 executing program 3:
r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xffffffff, 0x40000)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x2)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$EVIOCGABS2F(r0, 0x8018456f, &(0x7f0000000040)=""/4096)
r2 = dup(r1)
ioctl$DRM_IOCTL_RES_CTX(r2, 0xc0106426, &(0x7f00000010c0)={0x7, &(0x7f0000001080)=[{}, {}, {}, {<r3=>0x0}, {}, {}, {}]})
ioctl$DRM_IOCTL_NEW_CTX(r2, 0x40086425, &(0x7f0000001100)={r3, 0x2})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000001040)='/dev/rtc\x00', 0x84000, 0x0)

2018/04/19 14:15:59 executing program 0:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x30040, 0x0)
write$binfmt_aout(r0, &(0x7f0000000100)={{0x1cf, 0x8001, 0x3, 0x208, 0x7, 0x9, 0x1a1, 0x4}, "e075830b261dff2256c0", [[], [], [], []]}, 0x42a)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000080)=[0x6, 0x4])
syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x6, 0x10000)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000540)={0x2, 0x0, [{0xa7f, 0x0, 0x3}, {0xa3d, 0x0, 0x8}]})
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:59 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000180)={0x3ff, 0x7, 0x7fffffff, 'queue1\x00', 0x3})

2018/04/19 14:15:59 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x2, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c21, 0x0)

2018/04/19 14:15:59 executing program 1:
r0 = socket$vsock_dgram(0x28, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{0x20, 'wlan1lo'}], 0xa, "909a55a77dbb73d59039570fd227a30455c06857952bc86253de9474ac6c736eca9e17085b79cf3d29dc4640b65af7f7b5d4c32a4b1b4bfd5687a1a0b444a5d55a5535c117c9897847b122c4b40f741f4af6103f5d3946c18401f9ad8d8da1b92a4fb5b272c0142fd7ee3b3877d646de54cbd20034aeae1a1f8b777553fa960cf10db1e848c8ec7d98fb60f348e54ac6736f3acda757af85d5d5550b1869fbf0ba330268a1389f35bf901223d4224c49812249b64d84be37122901a9d19c64dd7f9830f93bc6"}, 0xd9)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0xa0402, 0x0)
ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000080)={0x53, 0x7, 0x1, {0x81, 0x101}, {0x4, 0x8}, @period={0x5f, 0x4, 0x80, 0x100, 0x9, {0x10000, 0x2, 0x20, 0x5}, 0x2, [0x9, 0x8]}})
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
lseek(r0, 0x0, 0x3)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f0000000040)={0x8, 0x9, 0x7, 0x0, 0xffffffffffffffc1})
syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x2000)

2018/04/19 14:15:59 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/netstat\x00')
pread64(r0, &(0x7f0000000000)=""/61, 0x34d, 0x0)

2018/04/19 14:15:59 executing program 0:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x200, 0x200)
ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f0000000080)=""/19)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c25, 0x0)

2018/04/19 14:15:59 executing program 7:
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f00000000c0)=""/61, 0x3d, 0x0)

2018/04/19 14:15:59 executing program 5:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x420000, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x400000000000a)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$KVM_GET_NR_MMU_PAGES(r2, 0xae45, 0x3)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f0000000000)={0x8, 0xec, 0x0, 0x8, 0x6, 0x30})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000080)={0x3001, 0x10000})
ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000100)={0x0, 0x63e00000, 0xc3a, &(0x7f00000000c0)})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)

2018/04/19 14:15:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x10000, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000040)={0x0, 0x2})
r2 = dup(r0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)
ioctl$ASHMEM_GET_SIZE(r1, 0x7704, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:15:59 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:15:59 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, &(0x7f0000000000)={&(0x7f0000ffb000/0x3000)=nil, 0xffff, 0x4, 0x41, &(0x7f0000ffd000/0x2000)=nil, 0x9})

2018/04/19 14:15:59 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1000010000, 0x400000)
syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x8c1)

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c02, 0x0)

2018/04/19 14:15:59 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000000))

2018/04/19 14:15:59 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$TIOCCONS(r0, 0x541d)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)

2018/04/19 14:15:59 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000180)=""/226)
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$DRM_IOCTL_AGP_FREE(r0, 0x40206435, &(0x7f0000000040)={0x8, 0x0, 0x10001, 0xfffffffffffffffb})

2018/04/19 14:15:59 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c03, 0x0)

2018/04/19 14:15:59 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
syz_mount_image$minix(&(0x7f0000000040)='minix\x00', &(0x7f0000000080)='./file0\x00', 0x7fff, 0x8, &(0x7f00000005c0)=[{&(0x7f00000000c0)="647733a54ba0d7b9d98ea66b4d7a79f5ca045a9b529d441f7f418d8a33dc689f1cbf1b43baad459bad61a74b91e0a74c4c2905d5b8483a8921edf933f2bb11d2a7ccc602e16cb3c5e585eec5426c1250bc9033cf1fc9e28af137ac40f534fb3eed5171fe4ae593554a33fbeba8b6108912ad3cb007e71eac4307be9803f659", 0x7f, 0x5338}, {&(0x7f0000000140)="7c94319d2151bdb9a2902911ee6397cfe3cb81cbc19fa0e7598960527bde66661c9b846e6424e85057f01209fcf415e5889ceb387bcffa67cf7e0dc63b06a3db6f43a233916fc6c2ae80cc383091a37b0c829f101b51f4fc20351bcb728f1a29fd549679df6643a9fd2cccf0f899f62f7a61b44d7a51fb905a89efe8ce759b3e785178ab9dd397443b7723d8b6abf5e1e00a7b32", 0x94, 0x3e1}, {&(0x7f0000000200)="8df0019cf623b88f71bca77cb03f82b470de881ea1412513e0b5", 0x1a, 0x59}, {&(0x7f0000000240)="7b63c9063675fcc88e8a3252133a2b01446b414114387d3620f7877e9b9d98b7b1af2fc3b01c2e2ee976f259ca07e494b8d2ce47e1a43ea284fd2d781ea5d9b16f4aa86533fa64e7f52f28dfbdce273896a5d899d463e2a2928c4f1e31aa425619288c958b066a0685121ead9734cc9a20be3247789580d602369703280ef158a1966a4921e01b78f9eb5f28d084cc45a93372c91215a38a9a0d8cad3acb2ac8790cf612bab065ed0d788f716925becad9511066435c0ebbb833021741a7538947b5ebfa0fed78498a88bdf948511588241cf10b6d98b5", 0xd7}, {&(0x7f0000000340)="600c172fd1e261b760c7f3ef453eb568d4119893143972a7f4b081d35a751573dcdfd19ded30c5b5fd8efe0f", 0x2c, 0x7}, {&(0x7f0000000380)="006845a6f0f56140c2307ef2ebf40490ebd78fbc8e2d483a7a93d91ce0bc18f93e3a639f19bc4bed04baac060fa391f65f1e602889f08bcc89d3e6c0582efb9f697e9a", 0x43, 0x7}, {&(0x7f0000000400)="32094b71930cbd846a1a06e6b39f33c55b6fe81334348dc66982ca86445757f61068932b8a16cd1ba9dbfd881f92833fe69eeb47ba3460602f6e3f7b0c0b6bbe26100287cb61c13e640fea63d25c2d2b379d9b9d63faab458dc2d45a504d4696d9e2ed488c25e774d57fca68445e12a8460b1435bd3911e4a12375dfe7df19099684354ff5f1f767bf249ddc5e77241d13b412a97fa76c8eb640ed3456b380fd0fbbb8cdcf92d2662e0cf4a0b650f1dd4dc3520e0ba3564186ea6881", 0xbc, 0xffff}, {&(0x7f00000004c0)="139ffe957814e37a87399cb7e509349ee1d6e59a6709f3e30c7de23b54f0f4aad0beb4ef62f3f311d563c79e443d6176ee2baf97a04373093e03fbcf75dc6b212faa5e696fb4101e0c5b96e70e46447672d878ffc57f53831dd397ba44f70c81cbe6e4bd891a9ef8b52ece4950db7078bf42e89b628b7f3b2ba490b1b70443c4f92a7f08c66269a362023b939de3de2ac0620699d83972cd0664e87c4a6948def37c2338db19c93e61d55f64447016b9e2ace319bc4d154b3e4695aaab6f19058e5fd07c2dc2049158e1cb783167090294", 0xd1, 0x1}], 0x10080, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TCGETA(r1, 0x5405, &(0x7f0000000680))

2018/04/19 14:15:59 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x8, 0x80)
syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x1, 0x80000)
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000080)={'team0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000000c0)={@dev={0xfe, 0x80, [], 0xf}, @local={0xfe, 0x80, [], 0xaa}, @local={0xfe, 0x80, [], 0xaa}, 0x5ba5, 0xe9, 0x1, 0x500, 0xffffffffffffffff, 0x4000000, r2})
r3 = dup(r0)
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)
ioctl$TIOCGPTPEER(r1, 0x5441, 0x70f74a47)

2018/04/19 14:15:59 executing program 5:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:15:59 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:15:59 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x2, 0x4000)
ioctl$LOOP_SET_FD(r0, 0x4c00, r0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x9)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000080)=0x1)

2018/04/19 14:15:59 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstath')

2018/04/19 14:15:59 executing program 7:
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000))
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040))
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000100))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000180))
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000200)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f00000001c0)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:16:00 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x200000000002000, 0x0)

2018/04/19 14:16:00 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:00 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c61, 0x0)

2018/04/19 14:16:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:16:00 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c38, 0x0)

2018/04/19 14:16:00 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop-control\x00', 0x200000, 0x0)
r1 = dup(r0)
write$binfmt_elf32(r0, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0xe83, 0x8, 0x800, 0x6, 0x2, 0x6, 0x4, 0x247, 0x38, 0x110, 0x6de1, 0x100, 0x20, 0x1, 0x0, 0xfffffffffffffffc, 0x1}, [{0x70000000, 0xae5, 0xffffffffffff0001, 0x220, 0x4, 0xbce, 0xf0, 0x6a}, {0x2, 0x8, 0xfffffffffffffffd, 0x7fff, 0xfffffffffffffffd, 0x80, 0x22, 0x9}], "eec0ffeb6d3d119cc39ff18934eed46355dd89791b350c9d9424bd4e66ebe3371d3e412675cc40a069fa06f25dc16d9d7f1eb96297daac616e16", [[]]}, 0x1b2)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:00 executing program 1:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffff9c, 0xc018620b, &(0x7f0000000100)={<r1=>0x0})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000140)={<r2=>r0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0xc4, 0x0, &(0x7f0000000200)=[@clear_death={0x400c630f, 0x1, 0x2}, @enter_looper={0x630c}, @transaction_sg={0x40486311, {{0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f0000000080), &(0x7f00000000c0)=[0x78, 0x38]}, 0x8}}, @acquire_done={0x40106309, r1}, @register_looper={0x630b}, @reply={0x40406301, {0x1, 0x0, 0x1, 0x0, 0x10, 0x0, 0x0, 0x38, 0x8, &(0x7f0000000180)=[@fda={0x66646185, 0xa, 0x2, 0x3}, @fd={0x66642a85, 0x0, r2, 0x0, 0x1}], &(0x7f00000001c0)=[0x60]}}, @increfs={0x40046304, 0x3}], 0xa2, 0x0, &(0x7f0000000300)="0f002ad24e5e6544148b0862aa29f84c69593b69265ca2c35746b676cbddaae89a73852c1706caee4b5202b9f196cf825abfec5461758c114dff55451c205dcc601b2aea573b8b4fa7dd6d54e5a3b4d438419cff3033ec8f0c5376da4589e48583c00b54b230375ae43d30e5b57e2ff3e559d21e890b2a28b726207bd163099d936b1dcf12380ee153936d87340d86502ed1c32c1a9b7edcdc5dab33d223f256edd6"})
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:00 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:00 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:00 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c4f, 0x0)

2018/04/19 14:16:00 executing program 3:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c38, 0x0)

2018/04/19 14:16:00 executing program 7:
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='net/netstat\x00')
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f0000000180))
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x7, r1, 0x1})

2018/04/19 14:16:00 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

2018/04/19 14:16:00 executing program 0:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x80a02, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x8, 0x8, 0x0, 0x57, 0x1, 0x6, 0x400, 0x2, 0x1, 0x3})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:00 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0))
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000140)={0xfffffffffffffffc, 0xa99})
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000000040)=""/94)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$ASHMEM_GET_SIZE(r1, 0x7704, 0x0)

2018/04/19 14:16:00 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c19, 0x0)

2018/04/19 14:16:00 executing program 1:
syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x2, 0x43fff)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x80000000, 0x208000)

2018/04/19 14:16:00 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:00 executing program 3:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:00 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2a, 0x0)

2018/04/19 14:16:00 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x2400, 0x0)
ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000080)={0x9, 0x20, 0x1})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f00000000c0)={0xfffffffffffff336, 0x9, 0xdf})

2018/04/19 14:16:00 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

2018/04/19 14:16:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
r1 = dup(r0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000000)={0x0, 0x10001})
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000180)=""/210)

2018/04/19 14:16:00 executing program 3 (fault-call:2 fault-nth:0):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:00 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1106.964388] FAULT_INJECTION: forcing a failure.
[ 1106.964388] name failslab, interval 1, probability 0, space 0, times 0
[ 1106.975712] CPU: 1 PID: 28422 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1106.983473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1106.983480] Call Trace:
[ 1106.983503]  dump_stack+0x1b9/0x294
[ 1106.983524]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1106.983545]  ? __might_sleep+0x95/0x190
[ 1106.983566]  should_fail.cold.4+0xa/0x1a
[ 1106.983577]  ? loop_control_ioctl+0x8c/0x500
[ 1106.983596]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1107.021811]  ? mutex_trylock+0x2a0/0x2a0
[ 1107.021832]  ? __lock_acquire+0x7f5/0x5140
[ 1107.030102]  ? graph_lock+0x170/0x170
[ 1107.033902]  ? find_held_lock+0x36/0x1c0
[ 1107.037969]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1107.043512]  ? find_held_lock+0x36/0x1c0
[ 1107.047583]  ? __lock_is_held+0xb5/0x140
[ 1107.051665]  ? check_same_owner+0x320/0x320
[ 1107.055998]  ? rcu_note_context_switch+0x710/0x710
2018/04/19 14:16:00 executing program 5 (fault-call:3 fault-nth:0):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x100, 0x0)
ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040))

[ 1107.060931]  __should_failslab+0x124/0x180
[ 1107.065172]  should_failslab+0x9/0x14
[ 1107.068975]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1107.073654]  loop_add+0x96/0x9c0
[ 1107.077027]  ? loop_lookup+0x102/0x220
[ 1107.080919]  ? loop_queue_rq+0x6c0/0x6c0
[ 1107.084991]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1107.090178]  loop_control_ioctl+0x178/0x500
[ 1107.094478]  ? loop_add+0x9c0/0x9c0
[ 1107.098099]  ? expand_files.part.8+0x9a0/0x9a0
[ 1107.102680]  ? kasan_check_write+0x14/0x20
[ 1107.106908]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1107.111820]  ? wait_for_completion+0x870/0x870
[ 1107.116390]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1107.121566]  ? loop_add+0x9c0/0x9c0
[ 1107.125185]  do_vfs_ioctl+0x1cf/0x16a0
[ 1107.129064]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1107.133452]  ? fget_raw+0x20/0x20
[ 1107.136887]  ? __sb_end_write+0xac/0xe0
[ 1107.140855]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1107.146372]  ? fput+0x130/0x1a0
[ 1107.149630]  ? ksys_write+0x1a6/0x250
[ 1107.153424]  ? security_file_ioctl+0x94/0xc0
[ 1107.157836]  ksys_ioctl+0xa9/0xd0
[ 1107.161294]  __x64_sys_ioctl+0x73/0xb0
[ 1107.165171]  do_syscall_64+0x1b1/0x800
[ 1107.169053]  ? finish_task_switch+0x1ca/0x810
[ 1107.173535]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1107.178448]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1107.183373]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1107.188723]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1107.193573]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1107.198744] RIP: 0033:0x455329
[ 1107.201911] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1107.209609] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1107.216866] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1107.224114] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1107.231365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1107.238616] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000000
2018/04/19 14:16:00 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x100, 0x0)
openat$cgroup(r0, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)

2018/04/19 14:16:00 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000000040)={0x6, 0xfff, 0x6, 0x4})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_mount_image$iso9660(&(0x7f0000000080)='iso9660\x00', &(0x7f00000000c0)='./file0\x00', 0x2, 0x1, &(0x7f0000000180)=[{&(0x7f0000000100)="6f945373c2c6a34003998d1c1e0203b1b306b39245fdccb4e15fc74baf7eacf107623dfa03f46e3bf8b44963f63fcca7599e543b64021c4c3d505be3b94b2a1874f502d86f733e808c5b", 0x4a, 0x4}], 0x0, &(0x7f00000001c0)={[{@nocompress='nocompress', 0x2c}, {@session={'session', 0x3d, [0x36, 0x30, 0x3f, 0x0, 0x39, 0x7d, 0x32]}, 0x2c}, {@dmode={'dmode', 0x3d, [0x37, 0x38, 0x7d]}, 0x2c}, {@utf8='utf8', 0x2c}, {@cruft='cruft', 0x2c}]})

2018/04/19 14:16:00 executing program 7:
r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x100000000, 0x200000)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000240)={0x1, 0x8, 0x16})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x101000, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r1, 0x800442d3, &(0x7f0000000040)={0x100000000, 0xf5, 0x10000, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'eql\x00'})
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100))
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_procfs(r2, &(0x7f00000000c0)='net/netstat\x00')
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r3, 0x40505330, &(0x7f00000001c0)={{0xda88, 0x5}, {0x6, 0x7}, 0xc6, 0x0, 0x1})
pread64(r3, &(0x7f0000000180)=""/61, 0xfffffffffffffe65, 0x0)

2018/04/19 14:16:00 executing program 1:
r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3, 0x0)
ioctl$sock_proto_private(r0, 0x89e8, &(0x7f00000000c0)="d03c9be8d24206c06124fde986bde1936f083aa93d38d069ab1f1f774afd92d266a8cd7758d870674a83e5e70282195baf8b16520ee5d5cb03b8a7fbbad66fd7dabd8b8d6204a7dd67065c53d3d9152c059408a2276e2b9b980934a2081a72b029e5bd67b8e1bc4819b513f24d1fd7651f81690fe62678aefc273e7509337e7d1315e9876cb9585fa37374c81615816783b85847523c4c0f906962e018651c238eddb2e7e093c6c02caaad190ec8b209938aee0de1ec533a933a7412e610216806835027482285efe7eb20962e60e6a911390cde31d5c2bfe3b0cb66820a8b74df0a9677b8ed")
ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0)
ioctl$KIOCSOUND(r0, 0x4b2f, 0x4)
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$TIOCLINUX6(r1, 0x541c, &(0x7f0000000080)={0x6, 0x76f8})
fchmod(r1, 0x80)

2018/04/19 14:16:00 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:00 executing program 3 (fault-call:2 fault-nth:1):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:00 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:00 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c53, 0x0)

2018/04/19 14:16:00 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000100)=""/233)
write$binfmt_script(r0, &(0x7f0000000200)={'#! ', './file0', [{0x20}, {0x20, 'cgroupnodev.[+\\'}, {0x20, 'vboxnet1*'}, {0x20, '/dev/vcs\x00'}, {0x20, 'systemselinux'}, {0x20, 'lo@*posix_acl_access:security)'}, {0x20}], 0xa, "fbf7e3743c5ccdd02b4c3c32cfaf5166cd6b4651230f126b468dd90e32b737834814e9259974f37e15083cbfad959c911c"}, 0x8f)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000080)=""/90)

[ 1107.338111] FAULT_INJECTION: forcing a failure.
[ 1107.338111] name failslab, interval 1, probability 0, space 0, times 0
[ 1107.349421] CPU: 1 PID: 28443 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1107.356613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1107.365959] Call Trace:
[ 1107.368544]  dump_stack+0x1b9/0x294
[ 1107.372186]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1107.377387]  ? update_load_avg+0x2d9/0x2570
[ 1107.381718]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:16:00 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', r1})

[ 1107.385787]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1107.390899]  ? update_load_avg+0x2d9/0x2570
[ 1107.395229]  ? print_usage_bug+0xc0/0xc0
[ 1107.399293]  ? __wake_up_common_lock+0x1c2/0x300
[ 1107.404055]  ? graph_lock+0x170/0x170
[ 1107.407867]  ? find_held_lock+0x36/0x1c0
[ 1107.411939]  ? __lock_is_held+0xb5/0x140
[ 1107.416020]  ? check_same_owner+0x320/0x320
[ 1107.420353]  ? rcu_note_context_switch+0x710/0x710
[ 1107.425285]  ? print_usage_bug+0xc0/0xc0
[ 1107.429355]  __should_failslab+0x124/0x180
[ 1107.433600]  should_failslab+0x9/0x14
[ 1107.437406]  kmem_cache_alloc+0x2af/0x760
[ 1107.441553]  ? graph_lock+0x170/0x170
[ 1107.445346]  ? graph_lock+0x170/0x170
[ 1107.449154]  radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1107.454773]  radix_tree_extend+0x28d/0x640
[ 1107.459007]  ? radix_tree_node_alloc.constprop.19+0x310/0x310
[ 1107.464895]  ? lock_downgrade+0x8e0/0x8e0
[ 1107.469044]  ? kasan_check_read+0x11/0x20
[ 1107.473197]  idr_get_free+0x9a5/0x10a0
[ 1107.477255]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1107.481826]  ? unwind_get_return_address+0x61/0xa0
[ 1107.486748]  ? __save_stack_trace+0x7e/0xd0
[ 1107.491079]  ? save_stack+0xa9/0xd0
[ 1107.494689]  ? save_stack+0x43/0xd0
[ 1107.498296]  ? kasan_kmalloc+0xc4/0xe0
[ 1107.502179]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1107.507014]  ? loop_add+0x96/0x9c0
[ 1107.510546]  ? loop_control_ioctl+0x178/0x500
[ 1107.515031]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1107.519081]  ? ksys_ioctl+0xa9/0xd0
[ 1107.522689]  ? __x64_sys_ioctl+0x73/0xb0
[ 1107.526732]  ? do_syscall_64+0x1b1/0x800
[ 1107.530786]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1107.536143]  ? find_held_lock+0x36/0x1c0
[ 1107.540186]  ? print_usage_bug+0xc0/0xc0
[ 1107.544236]  ? graph_lock+0x170/0x170
[ 1107.548020]  ? __lock_is_held+0xb5/0x140
[ 1107.552088]  idr_alloc_u32+0x1f9/0x3d0
[ 1107.555964]  ? __fprop_inc_percpu_max+0x2c0/0x2c0
[ 1107.560795]  ? __lock_is_held+0xb5/0x140
[ 1107.564842]  idr_alloc+0x109/0x1a0
[ 1107.568365]  ? idr_alloc_u32+0x3d0/0x3d0
[ 1107.572413]  loop_add+0x10d/0x9c0
[ 1107.575846]  ? loop_lookup+0x102/0x220
[ 1107.579723]  ? loop_queue_rq+0x6c0/0x6c0
[ 1107.583788]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1107.588968]  loop_control_ioctl+0x178/0x500
[ 1107.593272]  ? loop_add+0x9c0/0x9c0
[ 1107.596881]  ? expand_files.part.8+0x9a0/0x9a0
[ 1107.601446]  ? kasan_check_write+0x14/0x20
[ 1107.605676]  ? wait_for_completion+0x870/0x870
[ 1107.610249]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1107.615419]  ? loop_add+0x9c0/0x9c0
[ 1107.619037]  do_vfs_ioctl+0x1cf/0x16a0
[ 1107.622922]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1107.627314]  ? fget_raw+0x20/0x20
[ 1107.630749]  ? __sb_end_write+0xac/0xe0
[ 1107.634709]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1107.640239]  ? exit_to_usermode_loop+0x87/0x310
[ 1107.644901]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1107.650428]  ? security_file_ioctl+0x94/0xc0
[ 1107.654843]  ksys_ioctl+0xa9/0xd0
[ 1107.658289]  __x64_sys_ioctl+0x73/0xb0
[ 1107.662160]  do_syscall_64+0x1b1/0x800
[ 1107.666041]  ? finish_task_switch+0x1ca/0x810
[ 1107.670527]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1107.675439]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1107.680350]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1107.685707]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1107.690542]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1107.695713] RIP: 0033:0x455329
[ 1107.698894] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1107.706601] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1107.713866] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1107.721121] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1107.728374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1107.735625] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000001
2018/04/19 14:16:01 executing program 7:
r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x6, 0x101000)
getdents64(r0, &(0x7f0000000180)=""/4096, 0x1000)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r1, &(0x7f0000000140)=""/61, 0x3d, 0x0)

2018/04/19 14:16:01 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f00000000c0)={{0x7, 0x6}, 0x0, 0x7, 0x2, {0x100000000, 0xfffffffffffffffc}, 0x5, 0x4})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x28000, 0x0)
syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x1b, 0x48080)
syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x100000000, 0x2)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:01 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c44, 0x0)

2018/04/19 14:16:01 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000000)={<r1=>0x0, 0x80000, r0})
ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f0000000040)={r1})

2018/04/19 14:16:01 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:01 executing program 3 (fault-call:2 fault-nth:2):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:01 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x5450, 0x0)

2018/04/19 14:16:01 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r1, 0x800443d3, &(0x7f0000000040)={{0x1, 0x6, 0x7, 0x7fffffff, 0x40, 0x2}, 0x0, 0x8000, 0x6})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:01 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x2, 0x0)

2018/04/19 14:16:01 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x3, 0x200)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_open_procfs(r1, &(0x7f0000000040)='attr/keycreate\x00')
pread64(r2, &(0x7f0000000000)=""/61, 0x3d, 0x80)

[ 1107.900442] FAULT_INJECTION: forcing a failure.
[ 1107.900442] name failslab, interval 1, probability 0, space 0, times 0
[ 1107.911789] CPU: 1 PID: 28476 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1107.918980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1107.928329] Call Trace:
[ 1107.930931]  dump_stack+0x1b9/0x294
[ 1107.934579]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1107.939868]  ? __save_stack_trace+0x7e/0xd0
[ 1107.944205]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:16:01 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:01 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
pread64(r0, &(0x7f0000000140)=""/61, 0xfffffffffffffc4c, 0x0)

2018/04/19 14:16:01 executing program 7:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f00000001c0)=0x2)
r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x25f5, 0x100)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000040)={0x2, 0x3f})
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000400)=<r2=>0x0)
r3 = syz_open_procfs(r2, &(0x7f0000000380)="6664696e666f00d586449397c5c5d30ccd0b1abdb70353ec53e6f7a7e19a60e3bc1b664a6c1f2ec3e0c1a2c832842119b03ed96fa9f4676ab0d00270fe4c66a801dd0e54ae24925eee79d0f7d58e2faab0cc2ebbe387ce967e98c8aa73c29b3e08aadd4876b835f98b35c7600b")
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000002c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], 0x3, 0x6, 0x5, 0x4})
pread64(r3, &(0x7f0000000140)=""/61, 0x3d, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e23, @multicast1=0xe0000001}, {0x1, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x20}}, 0x0, {0x2, 0x4e23, @rand_addr=0x6687}, 'veth0\x00'})
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000300)={0x9, 0xa2, 0x100000000, 0x0, 0x6e62, 0x6, 0xade6, 0x400, 0x59, 0x7, 0x4, 0x4, 0x0, 0x100, 0x7, 0x8, 0x0, 0x2, 0x3})

[ 1107.948279]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1107.953387]  ? kasan_kmalloc+0xc4/0xe0
[ 1107.957280]  ? kasan_slab_alloc+0x12/0x20
[ 1107.961434]  ? kmem_cache_alloc+0x12e/0x760
[ 1107.965769]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1107.971575]  ? radix_tree_extend+0x28d/0x640
[ 1107.975995]  ? idr_get_free+0x9a5/0x10a0
[ 1107.980062]  ? idr_alloc_u32+0x1f9/0x3d0
[ 1107.984127]  ? graph_lock+0x170/0x170
[ 1107.987933]  ? ksys_ioctl+0xa9/0xd0
[ 1107.991567]  ? __x64_sys_ioctl+0x73/0xb0
[ 1107.995642]  ? do_syscall_64+0x1b1/0x800
2018/04/19 14:16:01 executing program 7:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0x7, r0, 0x1})
pread64(r0, &(0x7f0000000140)=""/61, 0x3d, 0x0)

[ 1107.999705]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1108.005078]  ? find_held_lock+0x36/0x1c0
[ 1108.009141]  ? __lock_is_held+0xb5/0x140
[ 1108.013210]  ? check_same_owner+0x320/0x320
[ 1108.017539]  ? rcu_note_context_switch+0x710/0x710
[ 1108.022480]  __should_failslab+0x124/0x180
[ 1108.026724]  should_failslab+0x9/0x14
[ 1108.030534]  kmem_cache_alloc+0x2af/0x760
[ 1108.034685]  ? graph_lock+0x170/0x170
[ 1108.038494]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1108.044303]  radix_tree_node_alloc.constprop.19+0x81/0x310
2018/04/19 14:16:01 executing program 7 (fault-call:1 fault-nth:0):
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1108.049957]  radix_tree_extend+0x28d/0x640
[ 1108.054206]  ? radix_tree_node_alloc.constprop.19+0x310/0x310
[ 1108.060099]  ? lock_downgrade+0x8e0/0x8e0
[ 1108.064262]  ? kasan_check_read+0x11/0x20
[ 1108.068407]  idr_get_free+0x9a5/0x10a0
[ 1108.072304]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1108.076897]  ? unwind_get_return_address+0x61/0xa0
[ 1108.082357]  ? __save_stack_trace+0x7e/0xd0
[ 1108.086694]  ? save_stack+0xa9/0xd0
[ 1108.090326]  ? save_stack+0x43/0xd0
[ 1108.093955]  ? kasan_kmalloc+0xc4/0xe0
[ 1108.097850]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1108.102682]  ? loop_add+0x96/0x9c0
[ 1108.106210]  ? loop_control_ioctl+0x178/0x500
[ 1108.110697]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1108.114748]  ? ksys_ioctl+0xa9/0xd0
[ 1108.118364]  ? __x64_sys_ioctl+0x73/0xb0
[ 1108.122412]  ? do_syscall_64+0x1b1/0x800
[ 1108.126462]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1108.131819]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1108.137345]  ? find_held_lock+0x36/0x1c0
[ 1108.141393]  ? print_usage_bug+0xc0/0xc0
[ 1108.145441]  ? graph_lock+0x170/0x170
[ 1108.149224]  ? __lock_is_held+0xb5/0x140
[ 1108.153277]  idr_alloc_u32+0x1f9/0x3d0
[ 1108.157158]  ? __fprop_inc_percpu_max+0x2c0/0x2c0
[ 1108.161988]  ? __lock_is_held+0xb5/0x140
[ 1108.166049]  idr_alloc+0x109/0x1a0
[ 1108.169580]  ? idr_alloc_u32+0x3d0/0x3d0
[ 1108.173640]  loop_add+0x10d/0x9c0
[ 1108.177081]  ? loop_lookup+0x102/0x220
[ 1108.180956]  ? loop_queue_rq+0x6c0/0x6c0
[ 1108.185014]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1108.190201]  loop_control_ioctl+0x178/0x500
[ 1108.194508]  ? loop_add+0x9c0/0x9c0
[ 1108.198124]  ? expand_files.part.8+0x9a0/0x9a0
[ 1108.202696]  ? kasan_check_write+0x14/0x20
[ 1108.206917]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1108.211838]  ? wait_for_completion+0x870/0x870
[ 1108.216407]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1108.221580]  ? loop_add+0x9c0/0x9c0
[ 1108.225198]  do_vfs_ioctl+0x1cf/0x16a0
[ 1108.229076]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1108.233476]  ? fget_raw+0x20/0x20
[ 1108.236919]  ? __sb_end_write+0xac/0xe0
[ 1108.240884]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1108.246406]  ? fput+0x130/0x1a0
[ 1108.249671]  ? ksys_write+0x1a6/0x250
[ 1108.253464]  ? security_file_ioctl+0x94/0xc0
[ 1108.257863]  ksys_ioctl+0xa9/0xd0
[ 1108.261306]  __x64_sys_ioctl+0x73/0xb0
[ 1108.265184]  do_syscall_64+0x1b1/0x800
[ 1108.269063]  ? finish_task_switch+0x1ca/0x810
[ 1108.273545]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1108.278460]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1108.283383]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1108.288736]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1108.293572]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1108.298748] RIP: 0033:0x455329
2018/04/19 14:16:01 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'team_slave_0\x00', 0x800})

[ 1108.301921] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1108.309619] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1108.316873] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1108.324129] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1108.331384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1108.338637] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000002
[ 1108.380781] FAULT_INJECTION: forcing a failure.
[ 1108.380781] name failslab, interval 1, probability 0, space 0, times 0
[ 1108.392129] CPU: 0 PID: 28502 Comm: syz-executor7 Not tainted 4.17.0-rc1+ #8
[ 1108.399331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1108.408694] Call Trace:
[ 1108.411299]  dump_stack+0x1b9/0x294
[ 1108.414956]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1108.420179]  should_fail.cold.4+0xa/0x1a
[ 1108.424266]  ? fault_create_debugfs_attr+0x1f0/0x1f0
2018/04/19 14:16:01 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0xc020660b, 0x0)

2018/04/19 14:16:01 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatt')

[ 1108.429392]  ? find_held_lock+0x36/0x1c0
[ 1108.433496]  ? find_held_lock+0x36/0x1c0
[ 1108.437614]  ? check_same_owner+0x320/0x320
[ 1108.441953]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1108.446908]  ? rcu_note_context_switch+0x710/0x710
[ 1108.451865]  ? wait_for_completion+0x870/0x870
[ 1108.456477]  __should_failslab+0x124/0x180
[ 1108.460732]  should_failslab+0x9/0x14
[ 1108.464544]  kmem_cache_alloc+0x2af/0x760
[ 1108.468723]  getname_flags+0xd0/0x5a0
[ 1108.472537]  ? __sb_end_write+0xac/0xe0
[ 1108.476537]  getname+0x19/0x20
[ 1108.479753]  do_sys_open+0x39a/0x740
[ 1108.483471]  ? filp_open+0x80/0x80
[ 1108.487012]  ? __ia32_sys_read+0xb0/0xb0
[ 1108.491106]  __x64_sys_openat+0x9d/0x100
[ 1108.495174]  do_syscall_64+0x1b1/0x800
[ 1108.499064]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1108.503898]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1108.508820]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1108.513742]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1108.519104]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1108.523960]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1108.529467] RIP: 0033:0x455329
[ 1108.532650] RSP: 002b:00007f668ecfec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1108.540349] RAX: ffffffffffffffda RBX: 00007f668ecff6d4 RCX: 0000000000455329
[ 1108.547606] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 1108.554870] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1108.562135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1108.569395] R13: 0000000000000435 R14: 00000000006f9598 R15: 0000000000000000
2018/04/19 14:16:02 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1, 0x20000400000)
ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000080)=""/35)

2018/04/19 14:16:02 executing program 0:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x10000, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x3f, 0x103000)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000080)={0x10203, 0x0, &(0x7f0000fea000/0x13000)=nil})
ioctl$VT_DISALLOCATE(r0, 0x5608)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:02 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c07, 0x0)

2018/04/19 14:16:02 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x2, 0x0)

2018/04/19 14:16:02 executing program 3 (fault-call:2 fault-nth:3):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:02 executing program 4:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x4001, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000080)={0x5, 0x0, {0x1, 0x2, 0x5, 0x1, 0x5}})
ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000140))
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$EVIOCGKEYCODE_V2(r2, 0x80284504, &(0x7f0000000180)=""/183)
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000100)={0x2000000000000000, 0x0, 0x101, 0xd, 0x1a})
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000)={0x1, 0x10000})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:02 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\'')

2018/04/19 14:16:02 executing program 7 (fault-call:1 fault-nth:1):
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1108.742377] FAULT_INJECTION: forcing a failure.
[ 1108.742377] name failslab, interval 1, probability 0, space 0, times 0
[ 1108.753696] CPU: 0 PID: 28528 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1108.760891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1108.768311] FAULT_INJECTION: forcing a failure.
[ 1108.768311] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1108.770247] Call Trace:
[ 1108.784623]  dump_stack+0x1b9/0x294
[ 1108.788259]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1108.793445]  ? __save_stack_trace+0x7e/0xd0
[ 1108.797769]  should_fail.cold.4+0xa/0x1a
[ 1108.801823]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1108.806919]  ? kasan_kmalloc+0xc4/0xe0
[ 1108.810798]  ? kasan_slab_alloc+0x12/0x20
[ 1108.814935]  ? kmem_cache_alloc+0x12e/0x760
[ 1108.819249]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1108.825038]  ? radix_tree_extend+0x28d/0x640
[ 1108.829437]  ? idr_get_free+0x9a5/0x10a0
[ 1108.833489]  ? idr_alloc_u32+0x1f9/0x3d0
[ 1108.837539]  ? graph_lock+0x170/0x170
[ 1108.841328]  ? ksys_ioctl+0xa9/0xd0
[ 1108.844944]  ? __x64_sys_ioctl+0x73/0xb0
[ 1108.849000]  ? do_syscall_64+0x1b1/0x800
[ 1108.853053]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1108.858408]  ? find_held_lock+0x36/0x1c0
[ 1108.862465]  ? __lock_is_held+0xb5/0x140
[ 1108.866529]  ? check_same_owner+0x320/0x320
[ 1108.870844]  ? rcu_note_context_switch+0x710/0x710
[ 1108.875770]  __should_failslab+0x124/0x180
[ 1108.880005]  should_failslab+0x9/0x14
[ 1108.883800]  kmem_cache_alloc+0x2af/0x760
[ 1108.887934]  ? graph_lock+0x170/0x170
[ 1108.891730]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1108.897522]  radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1108.903139]  radix_tree_extend+0x28d/0x640
[ 1108.907370]  ? radix_tree_node_alloc.constprop.19+0x310/0x310
[ 1108.913245]  ? lock_downgrade+0x8e0/0x8e0
[ 1108.917387]  ? kasan_check_read+0x11/0x20
[ 1108.921526]  idr_get_free+0x9a5/0x10a0
[ 1108.925417]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1108.929994]  ? unwind_get_return_address+0x61/0xa0
[ 1108.934915]  ? __save_stack_trace+0x7e/0xd0
[ 1108.939237]  ? save_stack+0xa9/0xd0
[ 1108.942855]  ? save_stack+0x43/0xd0
[ 1108.946472]  ? kasan_kmalloc+0xc4/0xe0
[ 1108.950348]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1108.955178]  ? loop_add+0x96/0x9c0
[ 1108.958708]  ? loop_control_ioctl+0x178/0x500
[ 1108.963192]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1108.967243]  ? ksys_ioctl+0xa9/0xd0
[ 1108.970857]  ? __x64_sys_ioctl+0x73/0xb0
[ 1108.974905]  ? do_syscall_64+0x1b1/0x800
[ 1108.978954]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1108.984313]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1108.989841]  ? find_held_lock+0x36/0x1c0
[ 1108.993893]  ? print_usage_bug+0xc0/0xc0
[ 1108.997944]  ? graph_lock+0x170/0x170
[ 1109.001730]  ? __lock_is_held+0xb5/0x140
[ 1109.005785]  idr_alloc_u32+0x1f9/0x3d0
[ 1109.009669]  ? __fprop_inc_percpu_max+0x2c0/0x2c0
[ 1109.014504]  ? __lock_is_held+0xb5/0x140
[ 1109.018561]  idr_alloc+0x109/0x1a0
[ 1109.022095]  ? idr_alloc_u32+0x3d0/0x3d0
[ 1109.026153]  loop_add+0x10d/0x9c0
[ 1109.029596]  ? loop_lookup+0x102/0x220
[ 1109.033471]  ? loop_queue_rq+0x6c0/0x6c0
[ 1109.037526]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1109.042705]  loop_control_ioctl+0x178/0x500
[ 1109.047019]  ? loop_add+0x9c0/0x9c0
[ 1109.050636]  ? expand_files.part.8+0x9a0/0x9a0
[ 1109.055211]  ? kasan_check_write+0x14/0x20
[ 1109.059435]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1109.064359]  ? wait_for_completion+0x870/0x870
[ 1109.068932]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1109.074109]  ? loop_add+0x9c0/0x9c0
[ 1109.077728]  do_vfs_ioctl+0x1cf/0x16a0
[ 1109.081614]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1109.086017]  ? fget_raw+0x20/0x20
[ 1109.089465]  ? __sb_end_write+0xac/0xe0
[ 1109.093437]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1109.098963]  ? fput+0x130/0x1a0
[ 1109.102231]  ? ksys_write+0x1a6/0x250
[ 1109.106052]  ? security_file_ioctl+0x94/0xc0
[ 1109.110454]  ksys_ioctl+0xa9/0xd0
[ 1109.113900]  __x64_sys_ioctl+0x73/0xb0
[ 1109.117780]  do_syscall_64+0x1b1/0x800
[ 1109.121659]  ? finish_task_switch+0x1ca/0x810
[ 1109.126144]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1109.131065]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1109.135988]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1109.141349]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1109.146185]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1109.151360] RIP: 0033:0x455329
[ 1109.154536] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1109.162237] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1109.169495] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1109.176750] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1109.184010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1109.191267] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000003
[ 1109.198547] CPU: 1 PID: 28535 Comm: syz-executor7 Not tainted 4.17.0-rc1+ #8
[ 1109.205742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1109.215096] Call Trace:
[ 1109.217697]  dump_stack+0x1b9/0x294
[ 1109.221338]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1109.226533]  ? graph_lock+0x170/0x170
[ 1109.230348]  should_fail.cold.4+0xa/0x1a
[ 1109.234422]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1109.239538]  ? debug_check_no_locks_freed+0x310/0x310
2018/04/19 14:16:02 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x400, 0x0)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000100)={0xa, &(0x7f0000000080)=[{<r1=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}]})
r2 = syz_open_dev$mice(&(0x7f00000001c0)='/dev/input/mice\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_VERSION(r2, 0xc0406400, &(0x7f0000000400)={0x9, 0x498, 0x5, 0x11, &(0x7f0000000200)=""/17, 0xb0, &(0x7f0000000240)=""/176, 0xcd, &(0x7f0000000300)=""/205})
ioctl$DRM_IOCTL_UNLOCK(r0, 0x4008642b, &(0x7f0000000140)={r1, 0xb})
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000180)=""/40)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:02 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatm')

[ 1109.244734]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1109.250283]  ? _parse_integer+0x13b/0x190
[ 1109.254436]  ? graph_lock+0x170/0x170
[ 1109.258249]  ? perf_trace_lock+0xd6/0x900
[ 1109.262398]  ? _kstrtoull+0x180/0x230
[ 1109.266213]  ? zap_class+0x720/0x720
[ 1109.266231]  ? perf_trace_lock+0xd6/0x900
[ 1109.266245]  ? find_held_lock+0x36/0x1c0
[ 1109.266263]  ? zap_class+0x720/0x720
[ 1109.266281]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1109.266297]  ? should_fail+0x21b/0xbcd
2018/04/19 14:16:02 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1109.291297]  __alloc_pages_nodemask+0x34e/0xd70
[ 1109.291316]  ? find_held_lock+0x36/0x1c0
[ 1109.291334]  ? __alloc_pages_slowpath+0x2db0/0x2db0
[ 1109.291355]  ? find_held_lock+0x36/0x1c0
[ 1109.291391]  ? check_same_owner+0x320/0x320
[ 1109.313439]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1109.318375]  cache_grow_begin+0x72/0x6c0
[ 1109.322437]  kmem_cache_alloc+0x689/0x760
[ 1109.326598]  getname_flags+0xd0/0x5a0
[ 1109.330403]  ? __sb_end_write+0xac/0xe0
[ 1109.334384]  getname+0x19/0x20
[ 1109.337587]  do_sys_open+0x39a/0x740
[ 1109.341316]  ? filp_open+0x80/0x80
2018/04/19 14:16:02 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1109.344858]  ? __ia32_sys_read+0xb0/0xb0
[ 1109.348937]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1109.353790]  __x64_sys_openat+0x9d/0x100
[ 1109.357860]  do_syscall_64+0x1b1/0x800
[ 1109.361753]  ? finish_task_switch+0x1ca/0x810
[ 1109.366258]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1109.371197]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1109.376134]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1109.381516]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1109.386372]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1109.391562] RIP: 0033:0x455329
2018/04/19 14:16:02 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:02 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f0000000000)=0x8)

2018/04/19 14:16:02 executing program 0:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2200, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x801, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x1000)

[ 1109.394752] RSP: 002b:00007f668ecfec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1109.402465] RAX: ffffffffffffffda RBX: 00007f668ecff6d4 RCX: 0000000000455329
[ 1109.409740] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 1109.417018] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1109.424288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1109.431563] R13: 0000000000000435 R14: 00000000006f9598 R15: 0000000000000001
2018/04/19 14:16:03 executing program 3 (fault-call:2 fault-nth:4):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:03 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0xc0045877, 0x0)

2018/04/19 14:16:03 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c78, 0x0)

2018/04/19 14:16:03 executing program 7 (fault-call:1 fault-nth:2):
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1109.562791] FAULT_INJECTION: forcing a failure.
[ 1109.562791] name failslab, interval 1, probability 0, space 0, times 0
[ 1109.574096] CPU: 0 PID: 28561 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1109.581284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1109.590632] Call Trace:
[ 1109.593218]  dump_stack+0x1b9/0x294
[ 1109.596858]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1109.602055]  ? __save_stack_trace+0x7e/0xd0
[ 1109.606393]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:16:03 executing program 4:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f00008be000)='/dev/usbmon#\x00', 0x0, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r1, 0x9201, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r0)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f00000000c0)={0xe9d9, 0xfb6a, 0x100000001, 0x0, 0x24, 0x1000, 0x7fffffff, 0x7, 0x0, 0xfffffffffffffffd, 0x5, 0x4, 0x0, 0x8, 0x8000, 0x1, 0xffff, 0x1, 0x401})
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
r3 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x1, 0xf080c4a7b63222c0)
r4 = semget(0x3, 0x3, 0x280)
semctl$IPC_STAT(r4, 0x0, 0x2, &(0x7f0000000040)=""/96)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r3, 0xc0045520, &(0x7f0000000140)=0x5)

2018/04/19 14:16:03 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e657473746174eb")

[ 1109.610467]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1109.615578]  ? kasan_kmalloc+0xc4/0xe0
[ 1109.619476]  ? kasan_slab_alloc+0x12/0x20
[ 1109.623628]  ? kmem_cache_alloc+0x12e/0x760
[ 1109.627951]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1109.633744]  ? idr_get_free+0x891/0x10a0
[ 1109.637795]  ? idr_alloc_u32+0x1f9/0x3d0
[ 1109.641845]  ? idr_alloc+0x109/0x1a0
[ 1109.645550]  ? graph_lock+0x170/0x170
[ 1109.649337]  ? __x64_sys_ioctl+0x73/0xb0
[ 1109.653384]  ? do_syscall_64+0x1b1/0x800
[ 1109.657432]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1109.662788]  ? find_held_lock+0x36/0x1c0
[ 1109.666839]  ? __lock_is_held+0xb5/0x140
[ 1109.670900]  ? check_same_owner+0x320/0x320
[ 1109.675210]  ? rcu_note_context_switch+0x710/0x710
[ 1109.680133]  __should_failslab+0x124/0x180
[ 1109.684359]  should_failslab+0x9/0x14
[ 1109.688146]  kmem_cache_alloc+0x2af/0x760
[ 1109.692281]  ? radix_tree_node_alloc.constprop.19+0x310/0x310
[ 1109.698154]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1109.703942]  radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1109.709563]  idr_get_free+0x891/0x10a0
[ 1109.713451]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1109.718029]  ? unwind_get_return_address+0x61/0xa0
[ 1109.722954]  ? __save_stack_trace+0x7e/0xd0
[ 1109.727276]  ? save_stack+0xa9/0xd0
[ 1109.730895]  ? save_stack+0x43/0xd0
[ 1109.734506]  ? kasan_kmalloc+0xc4/0xe0
[ 1109.738377]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1109.743203]  ? loop_add+0x96/0x9c0
[ 1109.746726]  ? loop_control_ioctl+0x178/0x500
[ 1109.751206]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1109.755252]  ? ksys_ioctl+0xa9/0xd0
[ 1109.758864]  ? __x64_sys_ioctl+0x73/0xb0
[ 1109.762928]  ? do_syscall_64+0x1b1/0x800
[ 1109.766980]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1109.772332]  ? find_held_lock+0x36/0x1c0
[ 1109.776384]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1109.781912]  ? find_held_lock+0x36/0x1c0
[ 1109.785967]  ? print_usage_bug+0xc0/0xc0
[ 1109.790019]  ? graph_lock+0x170/0x170
[ 1109.793805]  ? __lock_is_held+0xb5/0x140
[ 1109.797857]  idr_alloc_u32+0x1f9/0x3d0
[ 1109.801738]  ? __fprop_inc_percpu_max+0x2c0/0x2c0
[ 1109.806569]  ? __lock_is_held+0xb5/0x140
[ 1109.810623]  idr_alloc+0x109/0x1a0
[ 1109.814151]  ? idr_alloc_u32+0x3d0/0x3d0
[ 1109.818207]  loop_add+0x10d/0x9c0
[ 1109.821647]  ? loop_lookup+0x102/0x220
[ 1109.825521]  ? loop_queue_rq+0x6c0/0x6c0
[ 1109.829574]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1109.834754]  loop_control_ioctl+0x178/0x500
[ 1109.839059]  ? loop_add+0x9c0/0x9c0
[ 1109.842674]  ? expand_files.part.8+0x9a0/0x9a0
[ 1109.847240]  ? kasan_check_write+0x14/0x20
[ 1109.851461]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1109.856380]  ? wait_for_completion+0x870/0x870
[ 1109.860952]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1109.866129]  ? loop_add+0x9c0/0x9c0
[ 1109.869743]  do_vfs_ioctl+0x1cf/0x16a0
[ 1109.873623]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1109.878029]  ? fget_raw+0x20/0x20
[ 1109.881474]  ? __sb_end_write+0xac/0xe0
[ 1109.885440]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1109.890962]  ? fput+0x130/0x1a0
[ 1109.894232]  ? ksys_write+0x1a6/0x250
[ 1109.898033]  ? security_file_ioctl+0x94/0xc0
[ 1109.902433]  ksys_ioctl+0xa9/0xd0
[ 1109.905880]  __x64_sys_ioctl+0x73/0xb0
[ 1109.909755]  do_syscall_64+0x1b1/0x800
[ 1109.913629]  ? finish_task_switch+0x1ca/0x810
[ 1109.918113]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1109.923038]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1109.927957]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1109.933312]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1109.938147]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1109.943328] RIP: 0033:0x455329
[ 1109.946504] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1109.954203] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1109.961459] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1109.968716] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1109.975970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1109.983225] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000004
[ 1110.005709] FAULT_INJECTION: forcing a failure.
[ 1110.005709] name failslab, interval 1, probability 0, space 0, times 0
[ 1110.017086] CPU: 0 PID: 28568 Comm: syz-executor7 Not tainted 4.17.0-rc1+ #8
[ 1110.024286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1110.033648] Call Trace:
[ 1110.036247]  dump_stack+0x1b9/0x294
[ 1110.039879]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1110.045065]  ? perf_trace_lock_acquire+0xe3/0x980
[ 1110.049917]  should_fail.cold.4+0xa/0x1a
[ 1110.053976]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1110.059089]  ? zap_class+0x720/0x720
[ 1110.062798]  ? graph_lock+0x170/0x170
[ 1110.066596]  ? __lock_acquire+0x7f5/0x5140
[ 1110.070829]  ? find_held_lock+0x36/0x1c0
[ 1110.074893]  ? __lock_is_held+0xb5/0x140
[ 1110.078973]  ? check_same_owner+0x320/0x320
[ 1110.083288]  ? __lock_acquire+0x7f5/0x5140
[ 1110.087522]  ? rcu_note_context_switch+0x710/0x710
[ 1110.092451]  __should_failslab+0x124/0x180
[ 1110.096682]  should_failslab+0x9/0x14
[ 1110.100475]  kmem_cache_alloc+0x2af/0x760
[ 1110.104619]  ? perf_tp_event+0xc30/0xc30
[ 1110.108679]  __d_alloc+0xc0/0xd30
[ 1110.112129]  ? memset+0x31/0x40
[ 1110.115403]  ? shrink_dcache_for_umount+0x290/0x290
[ 1110.120417]  ? perf_trace_lock+0x495/0x900
[ 1110.124646]  ? perf_trace_lock_acquire+0xe3/0x980
[ 1110.129488]  ? zap_class+0x720/0x720
[ 1110.133194]  ? perf_trace_lock+0x900/0x900
[ 1110.137426]  ? perf_tp_event+0xc30/0xc30
[ 1110.141483]  ? graph_lock+0x170/0x170
[ 1110.145289]  d_alloc+0x8e/0x370
[ 1110.148563]  ? __d_alloc+0xd30/0xd30
[ 1110.152271]  ? find_held_lock+0x36/0x1c0
[ 1110.156336]  d_alloc_parallel+0x152/0x1e80
[ 1110.160570]  ? lock_downgrade+0x8e0/0x8e0
[ 1110.164732]  ? __d_lookup_rcu+0xa80/0xa80
[ 1110.168887]  ? __d_lookup+0x5b4/0x9c0
[ 1110.172698]  ? d_alloc_parallel+0x1e80/0x1e80
[ 1110.177205]  ? lock_release+0xa10/0xa10
[ 1110.181177]  ? mark_held_locks+0xc9/0x160
[ 1110.185321]  ? d_lookup+0x254/0x330
[ 1110.188950]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1110.193956]  ? d_lookup+0x219/0x330
[ 1110.197580]  ? __d_lookup+0x9c0/0x9c0
[ 1110.201376]  ? lock_acquire+0x1dc/0x520
[ 1110.205340]  ? path_openat+0x21e4/0x4e20
[ 1110.209402]  lookup_open+0x54f/0x1b40
[ 1110.213208]  ? complete_walk+0x260/0x260
[ 1110.217273]  ? down_read+0xaf/0x1b0
[ 1110.220889]  ? path_openat+0x21e4/0x4e20
[ 1110.224952]  ? __down_interruptible+0x6e0/0x6e0
[ 1110.229653]  path_openat+0x2211/0x4e20
[ 1110.233560]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1110.238313]  ? find_held_lock+0x36/0x1c0
[ 1110.242381]  ? lock_downgrade+0x8e0/0x8e0
[ 1110.246540]  ? kasan_check_read+0x11/0x20
[ 1110.250683]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1110.255085]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1110.259659]  ? __lock_is_held+0xb5/0x140
[ 1110.263724]  ? _raw_spin_unlock+0x22/0x30
[ 1110.267869]  ? __alloc_fd+0x346/0x700
[ 1110.271662]  ? usercopy_warn+0x120/0x120
[ 1110.275725]  ? exit_files+0xb0/0xb0
[ 1110.279348]  do_filp_open+0x249/0x350
[ 1110.283145]  ? may_open_dev+0x100/0x100
[ 1110.287132]  ? get_unused_fd_flags+0x121/0x190
[ 1110.291708]  ? getname_flags+0xd0/0x5a0
[ 1110.295676]  ? __alloc_fd+0x700/0x700
[ 1110.299470]  ? __sb_end_write+0xac/0xe0
[ 1110.303449]  do_sys_open+0x56f/0x740
[ 1110.307162]  ? filp_open+0x80/0x80
[ 1110.310691]  ? __ia32_sys_read+0xb0/0xb0
[ 1110.314761]  __x64_sys_openat+0x9d/0x100
[ 1110.318822]  do_syscall_64+0x1b1/0x800
[ 1110.322700]  ? finish_task_switch+0x1ca/0x810
[ 1110.327189]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1110.332113]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1110.337045]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1110.342409]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1110.347252]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1110.352430] RIP: 0033:0x455329
[ 1110.355607] RSP: 002b:00007f668ecfec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1110.363324] RAX: ffffffffffffffda RBX: 00007f668ecff6d4 RCX: 0000000000455329
[ 1110.370587] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 1110.377847] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1110.385108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1110.392365] R13: 0000000000000435 R14: 00000000006f9598 R15: 0000000000000002
2018/04/19 14:16:03 executing program 1:
syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x554, 0x0)

2018/04/19 14:16:03 executing program 0:
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_INFO_BUFS(r0, 0xc0106418, &(0x7f0000000000)={0xd1, 0x401, 0x5, 0x7f, 0x2, 0x5})

2018/04/19 14:16:03 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$ASHMEM_GET_PIN_STATUS(r1, 0x7709, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:03 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)

2018/04/19 14:16:03 executing program 7 (fault-call:1 fault-nth:3):
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:03 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:03 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c48, 0x0)

2018/04/19 14:16:03 executing program 3 (fault-call:2 fault-nth:5):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:04 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r0, 0x800443d2, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{}]})
syz_open_dev$random(&(0x7f00000000c0)='/dev/random\x00', 0x0, 0x80000)

[ 1110.549328] FAULT_INJECTION: forcing a failure.
[ 1110.549328] name failslab, interval 1, probability 0, space 0, times 0
[ 1110.560729] CPU: 0 PID: 28587 Comm: syz-executor7 Not tainted 4.17.0-rc1+ #8
[ 1110.567928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1110.577289] Call Trace:
[ 1110.579896]  dump_stack+0x1b9/0x294
[ 1110.583546]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1110.588775]  should_fail.cold.4+0xa/0x1a
[ 1110.592866]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1110.598002]  ? graph_lock+0x170/0x170
[ 1110.601828]  ? __lock_acquire+0x7f5/0x5140
[ 1110.606090]  ? find_held_lock+0x36/0x1c0
[ 1110.610176]  ? __lock_is_held+0xb5/0x140
[ 1110.614280]  ? check_same_owner+0x320/0x320
[ 1110.618609]  ? __lock_acquire+0x7f5/0x5140
[ 1110.622870]  ? rcu_note_context_switch+0x710/0x710
[ 1110.627808]  __should_failslab+0x124/0x180
[ 1110.632046]  should_failslab+0x9/0x14
[ 1110.635838]  kmem_cache_alloc+0x2af/0x760
[ 1110.639993]  ? perf_tp_event+0xc30/0xc30
[ 1110.644061]  __d_alloc+0xc0/0xd30
[ 1110.647504]  ? memset+0x31/0x40
[ 1110.650771]  ? shrink_dcache_for_umount+0x290/0x290
[ 1110.655778]  ? perf_trace_lock+0x495/0x900
[ 1110.660006]  ? zap_class+0x720/0x720
[ 1110.663715]  ? perf_trace_run_bpf_submit+0x246/0x370
[ 1110.668807]  ? perf_tp_event+0xc30/0xc30
[ 1110.672861]  ? graph_lock+0x170/0x170
[ 1110.676675]  d_alloc+0x8e/0x370
[ 1110.679972]  ? __d_alloc+0xd30/0xd30
[ 1110.683684]  ? find_held_lock+0x36/0x1c0
[ 1110.687744]  d_alloc_parallel+0x152/0x1e80
[ 1110.691969]  ? lock_downgrade+0x8e0/0x8e0
[ 1110.696111]  ? dput.part.27+0x242/0x7b0
[ 1110.700093]  ? __d_lookup_rcu+0xa80/0xa80
[ 1110.704252]  ? __d_lookup+0x5b4/0x9c0
[ 1110.708060]  ? d_alloc_parallel+0x1e80/0x1e80
[ 1110.712560]  ? lock_release+0xa10/0xa10
[ 1110.716534]  ? mark_held_locks+0xc9/0x160
[ 1110.720686]  ? d_lookup+0x254/0x330
[ 1110.724315]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1110.729328]  ? d_lookup+0x219/0x330
[ 1110.732948]  ? __d_lookup+0x9c0/0x9c0
[ 1110.736746]  ? lock_acquire+0x1dc/0x520
[ 1110.740716]  ? path_openat+0x21e4/0x4e20
[ 1110.744786]  lookup_open+0x54f/0x1b40
[ 1110.748596]  ? complete_walk+0x260/0x260
[ 1110.752658]  ? down_read+0xaf/0x1b0
[ 1110.756269]  ? path_openat+0x21e4/0x4e20
[ 1110.760328]  ? __down_interruptible+0x6e0/0x6e0
[ 1110.765018]  path_openat+0x2211/0x4e20
[ 1110.768919]  ? path_lookupat.isra.44+0xbd0/0xbd0
[ 1110.773672]  ? find_held_lock+0x36/0x1c0
[ 1110.777730]  ? lock_downgrade+0x8e0/0x8e0
[ 1110.781880]  ? do_sys_open+0x39a/0x740
[ 1110.785777]  ? kasan_check_read+0x11/0x20
[ 1110.789931]  ? do_raw_spin_unlock+0x9e/0x2e0
[ 1110.794345]  ? do_raw_spin_trylock+0x1b0/0x1b0
[ 1110.798919]  ? __lock_is_held+0xb5/0x140
[ 1110.802988]  ? _raw_spin_unlock+0x22/0x30
[ 1110.807134]  ? __alloc_fd+0x346/0x700
[ 1110.810919]  ? usercopy_warn+0x120/0x120
[ 1110.814973]  ? exit_files+0xb0/0xb0
[ 1110.818593]  do_filp_open+0x249/0x350
[ 1110.822383]  ? may_open_dev+0x100/0x100
[ 1110.826355]  ? get_unused_fd_flags+0x121/0x190
[ 1110.830935]  ? getname_flags+0xd0/0x5a0
[ 1110.834907]  ? __alloc_fd+0x700/0x700
[ 1110.838694]  ? __sb_end_write+0xac/0xe0
[ 1110.842659]  do_sys_open+0x56f/0x740
[ 1110.846367]  ? filp_open+0x80/0x80
[ 1110.849903]  ? __ia32_sys_read+0xb0/0xb0
[ 1110.853969]  __x64_sys_openat+0x9d/0x100
[ 1110.858029]  do_syscall_64+0x1b1/0x800
[ 1110.861919]  ? finish_task_switch+0x1ca/0x810
[ 1110.866419]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1110.871345]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1110.876275]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1110.881645]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1110.886501]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1110.891674] RIP: 0033:0x455329
[ 1110.894856] RSP: 002b:00007f668ecfec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1110.902549] RAX: ffffffffffffffda RBX: 00007f668ecff6d4 RCX: 0000000000455329
[ 1110.909816] RDX: 0000000000000002 RSI: 0000000020000080 RDI: ffffffffffffff9c
[ 1110.917092] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1110.924357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1110.931623] R13: 0000000000000435 R14: 00000000006f9598 R15: 0000000000000003
2018/04/19 14:16:04 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:04 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

[ 1110.952695] FAULT_INJECTION: forcing a failure.
[ 1110.952695] name failslab, interval 1, probability 0, space 0, times 0
[ 1110.964085] CPU: 1 PID: 28595 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1110.971280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1110.980636] Call Trace:
[ 1110.983240]  dump_stack+0x1b9/0x294
[ 1110.986888]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1110.992091]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1110.997301]  should_fail.cold.4+0xa/0x1a
[ 1111.001381]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1111.006492]  ? unwind_get_return_address+0x61/0xa0
[ 1111.011430]  ? __save_stack_trace+0x7e/0xd0
[ 1111.015761]  ? graph_lock+0x170/0x170
[ 1111.019577]  ? find_held_lock+0x36/0x1c0
[ 1111.023650]  ? __lock_is_held+0xb5/0x140
[ 1111.027735]  ? check_same_owner+0x320/0x320
[ 1111.032069]  ? rcu_note_context_switch+0x710/0x710
[ 1111.037014]  __should_failslab+0x124/0x180
[ 1111.041252]  should_failslab+0x9/0x14
[ 1111.045045]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1111.050134]  ? find_next_bit+0x104/0x130
[ 1111.054182]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1111.059703]  ? find_next_bit+0x104/0x130
[ 1111.063761]  blk_mq_init_tags+0x79/0x2b0
[ 1111.067813]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1111.072126]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1111.076615]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1111.080931]  loop_add+0x2b4/0x9c0
[ 1111.084370]  ? loop_lookup+0x102/0x220
[ 1111.088242]  ? loop_queue_rq+0x6c0/0x6c0
[ 1111.092298]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1111.097480]  loop_control_ioctl+0x178/0x500
[ 1111.101793]  ? loop_add+0x9c0/0x9c0
[ 1111.105408]  ? expand_files.part.8+0x9a0/0x9a0
[ 1111.109978]  ? kasan_check_write+0x14/0x20
[ 1111.114202]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1111.119122]  ? wait_for_completion+0x870/0x870
[ 1111.123693]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1111.128870]  ? loop_add+0x9c0/0x9c0
[ 1111.132488]  do_vfs_ioctl+0x1cf/0x16a0
[ 1111.136366]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1111.140763]  ? fget_raw+0x20/0x20
[ 1111.144205]  ? __sb_end_write+0xac/0xe0
[ 1111.148171]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1111.153692]  ? fput+0x130/0x1a0
[ 1111.156957]  ? ksys_write+0x1a6/0x250
[ 1111.160747]  ? security_file_ioctl+0x94/0xc0
[ 1111.165146]  ksys_ioctl+0xa9/0xd0
[ 1111.168591]  __x64_sys_ioctl+0x73/0xb0
[ 1111.172470]  do_syscall_64+0x1b1/0x800
[ 1111.176345]  ? finish_task_switch+0x1ca/0x810
[ 1111.180833]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1111.185750]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1111.190669]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1111.196030]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1111.200867]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1111.206043] RIP: 0033:0x455329
[ 1111.209216] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1111.216911] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1111.224165] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1111.231421] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1111.238674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1111.245930] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000005
[ 1111.261224] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:04 executing program 7 (fault-call:1 fault-nth:4):
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:04 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x8, 0x0)

2018/04/19 14:16:04 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e657473746174ff")

2018/04/19 14:16:04 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000080)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5})

2018/04/19 14:16:04 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f00000000c0)={0x0, 0x0, 0x20})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:04 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x5452, 0x0)

2018/04/19 14:16:04 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2e, 0x0)

2018/04/19 14:16:04 executing program 3 (fault-call:2 fault-nth:6):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:04 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0xfffffffffffffffd, 0x0)
socket$pppoe(0x18, 0x1, 0x0)

[ 1111.413682] FAULT_INJECTION: forcing a failure.
[ 1111.413682] name failslab, interval 1, probability 0, space 0, times 0
[ 1111.425016] CPU: 1 PID: 28622 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1111.432206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1111.441555] Call Trace:
[ 1111.444154]  dump_stack+0x1b9/0x294
[ 1111.447798]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1111.452998]  ? __save_stack_trace+0x7e/0xd0
[ 1111.457338]  should_fail.cold.4+0xa/0x1a
[ 1111.461409]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1111.466514]  ? kasan_kmalloc+0xc4/0xe0
[ 1111.470391]  ? kasan_slab_alloc+0x12/0x20
[ 1111.474523]  ? kmem_cache_alloc+0x12e/0x760
[ 1111.478831]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1111.484613]  ? idr_get_free+0x891/0x10a0
[ 1111.488662]  ? idr_alloc_u32+0x1f9/0x3d0
[ 1111.492708]  ? idr_alloc+0x109/0x1a0
[ 1111.496408]  ? graph_lock+0x170/0x170
[ 1111.500194]  ? __x64_sys_ioctl+0x73/0xb0
[ 1111.504245]  ? do_syscall_64+0x1b1/0x800
[ 1111.508464]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1111.513820]  ? find_held_lock+0x36/0x1c0
[ 1111.517877]  ? __lock_is_held+0xb5/0x140
[ 1111.521938]  ? check_same_owner+0x320/0x320
[ 1111.526253]  ? rcu_note_context_switch+0x710/0x710
[ 1111.531177]  __should_failslab+0x124/0x180
[ 1111.535400]  should_failslab+0x9/0x14
[ 1111.539188]  kmem_cache_alloc+0x2af/0x760
[ 1111.543327]  ? radix_tree_node_alloc.constprop.19+0x310/0x310
[ 1111.549201]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1111.554989]  radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1111.560610]  idr_get_free+0x891/0x10a0
[ 1111.564496]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1111.569068]  ? unwind_get_return_address+0x61/0xa0
[ 1111.573985]  ? __save_stack_trace+0x7e/0xd0
[ 1111.578309]  ? save_stack+0xa9/0xd0
[ 1111.581927]  ? save_stack+0x43/0xd0
[ 1111.585540]  ? kasan_kmalloc+0xc4/0xe0
[ 1111.589413]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1111.594239]  ? loop_add+0x96/0x9c0
[ 1111.597764]  ? loop_control_ioctl+0x178/0x500
[ 1111.602247]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1111.606294]  ? ksys_ioctl+0xa9/0xd0
[ 1111.609907]  ? __x64_sys_ioctl+0x73/0xb0
[ 1111.613953]  ? do_syscall_64+0x1b1/0x800
[ 1111.617999]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1111.623353]  ? find_held_lock+0x36/0x1c0
[ 1111.627405]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1111.632931]  ? find_held_lock+0x36/0x1c0
[ 1111.636978]  ? print_usage_bug+0xc0/0xc0
[ 1111.641034]  ? graph_lock+0x170/0x170
[ 1111.644817]  ? __lock_is_held+0xb5/0x140
[ 1111.648868]  idr_alloc_u32+0x1f9/0x3d0
[ 1111.652746]  ? __fprop_inc_percpu_max+0x2c0/0x2c0
[ 1111.657577]  ? __lock_is_held+0xb5/0x140
[ 1111.661632]  idr_alloc+0x109/0x1a0
[ 1111.665161]  ? idr_alloc_u32+0x3d0/0x3d0
[ 1111.669214]  loop_add+0x10d/0x9c0
[ 1111.672656]  ? loop_lookup+0x102/0x220
[ 1111.676528]  ? loop_queue_rq+0x6c0/0x6c0
[ 1111.680580]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1111.685758]  loop_control_ioctl+0x178/0x500
[ 1111.690065]  ? loop_add+0x9c0/0x9c0
[ 1111.693677]  ? expand_files.part.8+0x9a0/0x9a0
[ 1111.698244]  ? kasan_check_write+0x14/0x20
[ 1111.702475]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1111.707397]  ? wait_for_completion+0x870/0x870
[ 1111.711966]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1111.717139]  ? loop_add+0x9c0/0x9c0
[ 1111.720754]  do_vfs_ioctl+0x1cf/0x16a0
[ 1111.724643]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1111.729039]  ? fget_raw+0x20/0x20
[ 1111.732482]  ? __sb_end_write+0xac/0xe0
[ 1111.736445]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1111.741971]  ? fput+0x130/0x1a0
[ 1111.745236]  ? ksys_write+0x1a6/0x250
[ 1111.749036]  ? security_file_ioctl+0x94/0xc0
[ 1111.753436]  ksys_ioctl+0xa9/0xd0
[ 1111.756888]  __x64_sys_ioctl+0x73/0xb0
[ 1111.760765]  do_syscall_64+0x1b1/0x800
[ 1111.764639]  ? finish_task_switch+0x1ca/0x810
[ 1111.769123]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1111.774042]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1111.778964]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1111.784319]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1111.789151]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1111.794328] RIP: 0033:0x455329
[ 1111.797501] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1111.805195] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
2018/04/19 14:16:05 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0xc0189436, 0x0)

2018/04/19 14:16:05 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$SNDRV_TIMER_IOCTL_TREAD(r1, 0x40045402, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:16:05 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1111.812447] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1111.819700] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1111.826953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1111.834205] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000006
2018/04/19 14:16:05 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2f, 0x0)

2018/04/19 14:16:05 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c82, 0x0)

2018/04/19 14:16:05 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1, 0x0)
ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)={0xfffffffffffffff8, 0xbee, 0x9, 0xb24})
ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000080))

2018/04/19 14:16:05 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:05 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r2)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x20)
ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000040)={0x2, 0xffffffffffff2eb9})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:05 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x60b, 0x400400)

2018/04/19 14:16:05 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/.roc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:05 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c54, 0x0)

2018/04/19 14:16:05 executing program 3 (fault-call:2 fault-nth:7):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:05 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, &(0x7f0000000000)={{0x10001, 0xffffffffffff81fd, 0xfffffffffffffffb, 0x20, 0x2, 0x1}, 0x3, 0x80000000, 0x3})
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000000c0)={{0xffffffffffffffff, 0x3, 0x2, 0x0, 0x9}, 0x9, 0x8})

[ 1112.170906] FAULT_INJECTION: forcing a failure.
[ 1112.170906] name failslab, interval 1, probability 0, space 0, times 0
[ 1112.182276] CPU: 1 PID: 28669 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1112.189466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1112.198809] Call Trace:
[ 1112.201380]  dump_stack+0x1b9/0x294
[ 1112.204992]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1112.210171]  should_fail.cold.4+0xa/0x1a
[ 1112.214216]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1112.219300]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1112.224469]  ? graph_lock+0x170/0x170
[ 1112.228256]  ? is_bpf_text_address+0xd7/0x170
[ 1112.232731]  ? find_held_lock+0x36/0x1c0
[ 1112.236775]  ? __lock_is_held+0xb5/0x140
[ 1112.240824]  ? check_same_owner+0x320/0x320
[ 1112.245125]  ? kasan_kmalloc+0xc4/0xe0
[ 1112.248993]  ? kmem_cache_alloc_node_trace+0x150/0x770
[ 1112.254261]  ? blk_mq_init_tags+0x79/0x2b0
[ 1112.258485]  ? rcu_note_context_switch+0x710/0x710
[ 1112.263394]  ? loop_control_ioctl+0x178/0x500
[ 1112.267872]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1112.271909]  ? ksys_ioctl+0xa9/0xd0
[ 1112.275519]  __should_failslab+0x124/0x180
[ 1112.279743]  should_failslab+0x9/0x14
[ 1112.283523]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1112.288615]  ? print_usage_bug+0xc0/0xc0
[ 1112.292659]  __kmalloc_node+0x33/0x70
[ 1112.296441]  sbitmap_init_node+0x290/0x460
[ 1112.300657]  sbitmap_queue_init_node+0xaa/0x7d0
[ 1112.305311]  ? sbitmap_init_node+0x460/0x460
[ 1112.309699]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1112.314695]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1112.319968]  blk_mq_init_tags+0x11b/0x2b0
[ 1112.324103]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1112.328404]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1112.332883]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1112.337186]  loop_add+0x2b4/0x9c0
[ 1112.340620]  ? loop_lookup+0x102/0x220
[ 1112.344486]  ? loop_queue_rq+0x6c0/0x6c0
[ 1112.348535]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1112.353716]  loop_control_ioctl+0x178/0x500
[ 1112.358022]  ? loop_add+0x9c0/0x9c0
[ 1112.361788]  ? expand_files.part.8+0x9a0/0x9a0
[ 1112.366349]  ? kasan_check_write+0x14/0x20
[ 1112.370565]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1112.375475]  ? wait_for_completion+0x870/0x870
[ 1112.380051]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1112.385228]  ? loop_add+0x9c0/0x9c0
[ 1112.388839]  do_vfs_ioctl+0x1cf/0x16a0
[ 1112.392712]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1112.397100]  ? fget_raw+0x20/0x20
[ 1112.400533]  ? __sb_end_write+0xac/0xe0
[ 1112.404491]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1112.410006]  ? fput+0x130/0x1a0
[ 1112.413272]  ? ksys_write+0x1a6/0x250
[ 1112.417063]  ? security_file_ioctl+0x94/0xc0
[ 1112.421455]  ksys_ioctl+0xa9/0xd0
[ 1112.424892]  __x64_sys_ioctl+0x73/0xb0
[ 1112.428759]  do_syscall_64+0x1b1/0x800
[ 1112.432638]  ? finish_task_switch+0x1ca/0x810
[ 1112.437120]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1112.442042]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1112.446957]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1112.452300]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1112.457126]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1112.462294] RIP: 0033:0x455329
[ 1112.465462] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1112.473151] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1112.480400] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1112.487652] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1112.494905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1112.502152] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000007
[ 1112.510733] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:06 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0xc0045878, 0x0)

2018/04/19 14:16:06 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x200000, 0x0)
openat$cgroup_int(r2, &(0x7f0000000080)='memory.low\x00', 0x2, 0x0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))

2018/04/19 14:16:06 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='//roc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:06 executing program 1:
r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xfffffffffffffff8, 0x183100)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000002c0))
r1 = socket$pptp(0x18, 0x1, 0x2)
ioctl$sock_bt_cmtp_CMTPCONNADD(r0, 0x400443c8, &(0x7f0000000080)={r1})
r2 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x8001, 0x0)
r3 = syz_open_dev$mouse(&(0x7f0000000380)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_SIOCADDDLCI(r2, 0x8980, &(0x7f0000000040)={'ip6gretap0\x00', 0x2a97})
ioctl$PPPIOCGFLAGS(r1, 0x8004745a, &(0x7f0000000300))
ioctl$sock_kcm_SIOCKCMUNATTACH(r3, 0x89e1, &(0x7f0000000280)={r2})
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r3, 0xc1205531, &(0x7f0000000100)={0x1f, 0x3ff, 0xfffffffffffffffc, 0x40, [], [], [], 0x20, 0x3, 0x7, 0x6, "659f016249eb8950629a123de87bc127"})
ioctl$TIOCGLCKTRMIOS(r3, 0x5456, &(0x7f0000000240)={0xde, 0x9, 0x5, 0x2, 0x7b, 0x8, 0xfd8, 0xffffffffffff9f9e, 0x80000001, 0x200, 0x0, 0x100000000})

2018/04/19 14:16:06 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:06 executing program 0:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x80, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000080)=""/171)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x4)
openat$cgroup_ro(r0, &(0x7f0000000140)='memory.events\x00', 0x0, 0x0)

2018/04/19 14:16:06 executing program 3 (fault-call:2 fault-nth:8):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:06 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c15, 0x0)

[ 1112.661928] FAULT_INJECTION: forcing a failure.
[ 1112.661928] name failslab, interval 1, probability 0, space 0, times 0
[ 1112.673279] CPU: 1 PID: 28692 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1112.680468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1112.689822] Call Trace:
[ 1112.692419]  dump_stack+0x1b9/0x294
[ 1112.696065]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1112.701251]  ? __save_stack_trace+0x7e/0xd0
[ 1112.705569]  should_fail.cold.4+0xa/0x1a
[ 1112.709618]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1112.714707]  ? kasan_kmalloc+0xc4/0xe0
[ 1112.718581]  ? kasan_slab_alloc+0x12/0x20
[ 1112.722716]  ? kmem_cache_alloc+0x12e/0x760
[ 1112.727029]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1112.732814]  ? idr_get_free+0x891/0x10a0
[ 1112.736861]  ? idr_alloc_u32+0x1f9/0x3d0
[ 1112.740906]  ? idr_alloc+0x109/0x1a0
[ 1112.744607]  ? graph_lock+0x170/0x170
[ 1112.748396]  ? __x64_sys_ioctl+0x73/0xb0
[ 1112.752465]  ? do_syscall_64+0x1b1/0x800
[ 1112.756512]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1112.761870]  ? find_held_lock+0x36/0x1c0
[ 1112.765924]  ? __lock_is_held+0xb5/0x140
[ 1112.769984]  ? check_same_owner+0x320/0x320
[ 1112.774299]  ? rcu_note_context_switch+0x710/0x710
[ 1112.779219]  __should_failslab+0x124/0x180
[ 1112.783444]  should_failslab+0x9/0x14
[ 1112.787233]  kmem_cache_alloc+0x2af/0x760
[ 1112.791370]  ? radix_tree_node_alloc.constprop.19+0x310/0x310
[ 1112.797249]  ? radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1112.803045]  radix_tree_node_alloc.constprop.19+0x81/0x310
[ 1112.808665]  idr_get_free+0x891/0x10a0
[ 1112.812552]  ? radix_tree_clear_tags+0xc0/0xc0
[ 1112.817124]  ? unwind_get_return_address+0x61/0xa0
[ 1112.822046]  ? __save_stack_trace+0x7e/0xd0
[ 1112.826369]  ? save_stack+0xa9/0xd0
[ 1112.829983]  ? save_stack+0x43/0xd0
[ 1112.833597]  ? kasan_kmalloc+0xc4/0xe0
[ 1112.837473]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1112.842298]  ? loop_add+0x96/0x9c0
[ 1112.845825]  ? loop_control_ioctl+0x178/0x500
[ 1112.850306]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1112.854351]  ? ksys_ioctl+0xa9/0xd0
[ 1112.857964]  ? __x64_sys_ioctl+0x73/0xb0
[ 1112.862014]  ? do_syscall_64+0x1b1/0x800
[ 1112.866065]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1112.871414]  ? find_held_lock+0x36/0x1c0
[ 1112.875463]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1112.880992]  ? find_held_lock+0x36/0x1c0
[ 1112.885046]  ? print_usage_bug+0xc0/0xc0
[ 1112.889097]  ? graph_lock+0x170/0x170
[ 1112.892882]  ? __lock_is_held+0xb5/0x140
[ 1112.896932]  idr_alloc_u32+0x1f9/0x3d0
[ 1112.900816]  ? __fprop_inc_percpu_max+0x2c0/0x2c0
[ 1112.905646]  ? __lock_is_held+0xb5/0x140
[ 1112.909700]  idr_alloc+0x109/0x1a0
[ 1112.913228]  ? idr_alloc_u32+0x3d0/0x3d0
[ 1112.917289]  loop_add+0x10d/0x9c0
[ 1112.920731]  ? loop_lookup+0x102/0x220
[ 1112.924605]  ? loop_queue_rq+0x6c0/0x6c0
[ 1112.928658]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1112.933834]  loop_control_ioctl+0x178/0x500
[ 1112.938139]  ? loop_add+0x9c0/0x9c0
[ 1112.941758]  ? expand_files.part.8+0x9a0/0x9a0
[ 1112.946326]  ? kasan_check_write+0x14/0x20
[ 1112.950546]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1112.955468]  ? wait_for_completion+0x870/0x870
[ 1112.960044]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1112.965220]  ? loop_add+0x9c0/0x9c0
[ 1112.968835]  do_vfs_ioctl+0x1cf/0x16a0
[ 1112.972716]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1112.977111]  ? fget_raw+0x20/0x20
[ 1112.980553]  ? __sb_end_write+0xac/0xe0
[ 1112.984520]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1112.990046]  ? fput+0x130/0x1a0
[ 1112.993313]  ? ksys_write+0x1a6/0x250
[ 1112.997104]  ? security_file_ioctl+0x94/0xc0
[ 1113.001503]  ksys_ioctl+0xa9/0xd0
[ 1113.004948]  __x64_sys_ioctl+0x73/0xb0
[ 1113.008835]  do_syscall_64+0x1b1/0x800
[ 1113.012710]  ? finish_task_switch+0x1ca/0x810
[ 1113.017193]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1113.022114]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1113.027043]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1113.032425]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1113.037259]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1113.042435] RIP: 0033:0x455329
[ 1113.045608] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1113.053312] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
2018/04/19 14:16:06 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x20000, 0x0)

2018/04/19 14:16:06 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000040)={"677265300004007f0af8ff000300", {0x2, 0x4e25, @remote={0xac, 0x14, 0x14, 0xbb}}})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:06 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x5421, 0x0)

[ 1113.060568] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1113.067822] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1113.075076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1113.082330] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000008
2018/04/19 14:16:06 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c4e, 0x0)

2018/04/19 14:16:06 executing program 0:
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000065fc8)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000e2a000)={&(0x7f00000000c0)={0x14, 0x1, 0x5, 0xfffffffffffffffd}, 0x14}, 0x1}, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:06 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/.ys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:06 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:06 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x400, 0x5, 0x9, 0x52d, 0x2, 0x3f, 0x90, 0xdd, 0x38, 0xd1, 0x6, 0x7ff, 0x20, 0x2, 0x4, 0x7fff}, [{0x60000006, 0x3f, 0x8001, 0xfe, 0x6, 0x13, 0xfff, 0xa64}, {0x70000001, 0x2, 0xfffffffffffeffff, 0x4, 0x8000, 0x70b, 0x3ff, 0x8}], "53eb8c73fe19512819d3280c918ea5a7fd0920aeb8e85d5b9523db0c3de80349c0ce3fbbbb74e2a224a220535c498a89255493314167840ee97a1e2263cdfacb3fd333e464ed9c2138a9d307abb2aea6e6a9a1bea2992f14c3bc2e490752", [[], [], [], [], [], [], [], [], []]}, 0x9d6)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000000)=""/56)

2018/04/19 14:16:06 executing program 3 (fault-call:2 fault-nth:9):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:06 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x40049409, 0x0)

2018/04/19 14:16:06 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))

[ 1113.270610] FAULT_INJECTION: forcing a failure.
[ 1113.270610] name failslab, interval 1, probability 0, space 0, times 0
[ 1113.281974] CPU: 1 PID: 28718 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1113.289163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1113.298517] Call Trace:
[ 1113.301120]  dump_stack+0x1b9/0x294
[ 1113.304764]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1113.309962]  ? is_bpf_text_address+0xd7/0x170
[ 1113.314472]  should_fail.cold.4+0xa/0x1a
[ 1113.318547]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1113.323659]  ? graph_lock+0x170/0x170
[ 1113.327450]  ? save_stack+0xa9/0xd0
[ 1113.331063]  ? save_stack+0x43/0xd0
[ 1113.334672]  ? kasan_kmalloc+0xc4/0xe0
[ 1113.338545]  ? __kmalloc_node+0x47/0x70
[ 1113.342502]  ? blk_mq_alloc_rq_map+0xcc/0x220
[ 1113.346980]  ? blk_mq_alloc_tag_set+0x65d/0xce0
[ 1113.351634]  ? loop_add+0x2b4/0x9c0
[ 1113.355243]  ? loop_control_ioctl+0x178/0x500
[ 1113.359726]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1113.363771]  ? ksys_ioctl+0xa9/0xd0
[ 1113.367384]  ? __lock_is_held+0xb5/0x140
[ 1113.371429]  ? __init_waitqueue_head+0x96/0x140
[ 1113.376090]  ? check_same_owner+0x320/0x320
[ 1113.380401]  ? rcu_note_context_switch+0x710/0x710
[ 1113.385317]  __should_failslab+0x124/0x180
[ 1113.389542]  should_failslab+0x9/0x14
[ 1113.393332]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1113.398426]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1113.403948]  ? kasan_unpoison_shadow+0x35/0x50
[ 1113.408519]  __kmalloc_node+0x33/0x70
[ 1113.412308]  blk_mq_alloc_rq_map+0x10d/0x220
[ 1113.416705]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1113.421191]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1113.425502]  loop_add+0x2b4/0x9c0
[ 1113.428940]  ? loop_lookup+0x102/0x220
[ 1113.432812]  ? loop_queue_rq+0x6c0/0x6c0
[ 1113.436866]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1113.442044]  loop_control_ioctl+0x178/0x500
[ 1113.446348]  ? loop_add+0x9c0/0x9c0
[ 1113.449959]  ? expand_files.part.8+0x9a0/0x9a0
[ 1113.454526]  ? kasan_check_write+0x14/0x20
[ 1113.458750]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1113.463665]  ? wait_for_completion+0x870/0x870
[ 1113.468235]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1113.473405]  ? loop_add+0x9c0/0x9c0
[ 1113.477022]  do_vfs_ioctl+0x1cf/0x16a0
[ 1113.480900]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1113.485293]  ? fget_raw+0x20/0x20
[ 1113.488733]  ? __sb_end_write+0xac/0xe0
[ 1113.492694]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1113.498214]  ? fput+0x130/0x1a0
[ 1113.501480]  ? ksys_write+0x1a6/0x250
[ 1113.505269]  ? security_file_ioctl+0x94/0xc0
[ 1113.509672]  ksys_ioctl+0xa9/0xd0
[ 1113.513118]  __x64_sys_ioctl+0x73/0xb0
[ 1113.516992]  do_syscall_64+0x1b1/0x800
[ 1113.520867]  ? finish_task_switch+0x1ca/0x810
[ 1113.525350]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1113.530265]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1113.535180]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1113.540528]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1113.545357]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1113.550527] RIP: 0033:0x455329
[ 1113.553697] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1113.561388] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
2018/04/19 14:16:07 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="0f7f80dc21"], &(0x7f0000000240)=0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000de9000)=[@text32={0x20, &(0x7f0000f59fc6)="0fc75fedc4c3c968fb6c0f9cfbb9040100c00f3266b842008ee80f230064672ec015dec4e245bea5d41e6082f9440f20c03506000000440f22c0", 0x3a}], 0x1, 0x8000000000000, &(0x7f0000000180), 0x0)
socket$bt_rfcomm(0x1f, 0x3, 0x3)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x20000, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0xffffffffffffffff)

2018/04/19 14:16:07 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc//ys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:07 executing program 1:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x101000, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNINFO(r0, 0x800448d3, &(0x7f0000000080)={{0x5, 0xc2b, 0x0, 0x2, 0x200, 0xfffffffffffffff8}, 0x8, 0xff, 0xfffffffffffffffe, 0x400, 0x1, "7b51835d76499c4c1411b49ec76c51ea79cadc923f5588a3af2ee03563ef52d905e66cc35521f9a37e3bf31514bc21cf92cd70c79435cd82d2db4feb90741b4ccdd3e58b16baa70b61e4a1d18ad6b65ebdd715aa3bd29e305bd41b6f501f8654fe89b065607008946770f32b3e1444af303d26af415eb0708267a90339594561"})
ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000040))

[ 1113.568641] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1113.575891] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1113.583141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1113.590394] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000009
[ 1113.608272] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:07 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x5451, 0x0)

2018/04/19 14:16:07 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000080)=0x40000)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x0)

2018/04/19 14:16:07 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c1d, 0x0)

2018/04/19 14:16:07 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sy//net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:07 executing program 3 (fault-call:2 fault-nth:10):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1113.812302] FAULT_INJECTION: forcing a failure.
[ 1113.812302] name failslab, interval 1, probability 0, space 0, times 0
[ 1113.823618] CPU: 1 PID: 28752 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1113.830813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1113.840163] Call Trace:
[ 1113.842758]  dump_stack+0x1b9/0x294
[ 1113.846399]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1113.851607]  should_fail.cold.4+0xa/0x1a
[ 1113.855680]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1113.860801]  ? graph_lock+0x170/0x170
[ 1113.864612]  ? save_stack+0xa9/0xd0
[ 1113.868254]  ? find_held_lock+0x36/0x1c0
[ 1113.872325]  ? __lock_is_held+0xb5/0x140
[ 1113.876409]  ? check_same_owner+0x320/0x320
[ 1113.880742]  ? rcu_note_context_switch+0x710/0x710
[ 1113.885674]  __should_failslab+0x124/0x180
[ 1113.889898]  should_failslab+0x9/0x14
[ 1113.893704]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1113.898796]  ? idr_alloc_u32+0x22d/0x3d0
[ 1113.902849]  ? kasan_unpoison_shadow+0x35/0x50
[ 1113.907420]  __kmalloc_node+0x33/0x70
[ 1113.911208]  blk_mq_alloc_tag_set+0x423/0xce0
[ 1113.915692]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1113.921211]  ? idr_alloc+0x145/0x1a0
[ 1113.924909]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1113.929220]  loop_add+0x2b4/0x9c0
[ 1113.932657]  ? loop_lookup+0x102/0x220
[ 1113.936529]  ? loop_queue_rq+0x6c0/0x6c0
[ 1113.940578]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1113.945752]  loop_control_ioctl+0x178/0x500
[ 1113.950061]  ? loop_add+0x9c0/0x9c0
[ 1113.953676]  ? expand_files.part.8+0x9a0/0x9a0
[ 1113.958241]  ? kasan_check_write+0x14/0x20
[ 1113.962461]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1113.967378]  ? wait_for_completion+0x870/0x870
[ 1113.971945]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1113.977118]  ? loop_add+0x9c0/0x9c0
[ 1113.980732]  do_vfs_ioctl+0x1cf/0x16a0
[ 1113.984611]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1113.989006]  ? fget_raw+0x20/0x20
[ 1113.992452]  ? __sb_end_write+0xac/0xe0
[ 1113.996412]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1114.001933]  ? fput+0x130/0x1a0
[ 1114.005198]  ? ksys_write+0x1a6/0x250
[ 1114.008986]  ? security_file_ioctl+0x94/0xc0
[ 1114.013384]  ksys_ioctl+0xa9/0xd0
[ 1114.016824]  __x64_sys_ioctl+0x73/0xb0
[ 1114.020696]  do_syscall_64+0x1b1/0x800
[ 1114.024570]  ? finish_task_switch+0x1ca/0x810
[ 1114.029056]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1114.033971]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1114.038886]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1114.044236]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1114.049070]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1114.054240] RIP: 0033:0x455329
[ 1114.057409] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1114.065105] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1114.072355] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1114.079608] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1114.086860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1114.094114] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000000a
2018/04/19 14:16:07 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x5460, 0x0)

2018/04/19 14:16:07 executing program 1:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x3ff, 0x408400)
ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f0000000080)={0xa, [0x1, 0x9, 0x7, 0x2, 0xfffffffffffffffc, 0x6, 0x2, 0x5, 0x8, 0x4]})
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:07 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:07 executing program 0:
r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x80000000, 0x80200)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000140)={0xa, 0x5, 0x22bf})
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x400, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000180)={0x4, 0x0, [{0x0, 0x7ff, 0x2, 0x9e10, 0x100, 0x4, 0x80000000}, {0x1, 0x3f, 0x2, 0x5, 0x7fffffff, 0x825, 0x5}, {0xb, 0x5, 0x1, 0xffff, 0x3, 0x3ff, 0xffff}, {0xf, 0x4952, 0x1, 0xfff, 0x0, 0xdca6, 0x2d0}]})
syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x401, 0x1)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x8400, 0x0)

2018/04/19 14:16:07 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sy./net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:07 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c73, 0x0)

2018/04/19 14:16:07 executing program 3 (fault-call:2 fault-nth:11):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:07 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$SNDRV_TIMER_IOCTL_STOP(r1, 0x54a1)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000040))
ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000000)=0x3)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1114.211643] FAULT_INJECTION: forcing a failure.
[ 1114.211643] name failslab, interval 1, probability 0, space 0, times 0
[ 1114.222964] CPU: 0 PID: 28771 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1114.230148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1114.239501] Call Trace:
[ 1114.242117]  dump_stack+0x1b9/0x294
[ 1114.245758]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1114.250955]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1114.256161]  should_fail.cold.4+0xa/0x1a
[ 1114.260231]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1114.265338]  ? unwind_get_return_address+0x61/0xa0
[ 1114.270257]  ? __save_stack_trace+0x7e/0xd0
[ 1114.274565]  ? graph_lock+0x170/0x170
[ 1114.278357]  ? find_held_lock+0x36/0x1c0
[ 1114.282408]  ? __lock_is_held+0xb5/0x140
[ 1114.286466]  ? check_same_owner+0x320/0x320
[ 1114.290776]  ? rcu_note_context_switch+0x710/0x710
[ 1114.295695]  __should_failslab+0x124/0x180
[ 1114.299918]  should_failslab+0x9/0x14
[ 1114.303707]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1114.308795]  ? find_next_bit+0x104/0x130
[ 1114.312843]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1114.318365]  ? find_next_bit+0x104/0x130
[ 1114.322419]  blk_mq_init_tags+0x79/0x2b0
[ 1114.326472]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1114.330782]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1114.335270]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1114.339586]  loop_add+0x2b4/0x9c0
[ 1114.343032]  ? loop_lookup+0x102/0x220
[ 1114.346908]  ? loop_queue_rq+0x6c0/0x6c0
[ 1114.350962]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1114.356141]  loop_control_ioctl+0x178/0x500
[ 1114.360461]  ? loop_add+0x9c0/0x9c0
[ 1114.364076]  ? expand_files.part.8+0x9a0/0x9a0
[ 1114.368646]  ? kasan_check_write+0x14/0x20
[ 1114.372868]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1114.377786]  ? wait_for_completion+0x870/0x870
[ 1114.382360]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1114.387539]  ? loop_add+0x9c0/0x9c0
[ 1114.391154]  do_vfs_ioctl+0x1cf/0x16a0
[ 1114.395042]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1114.399439]  ? fget_raw+0x20/0x20
[ 1114.402881]  ? __sb_end_write+0xac/0xe0
[ 1114.406845]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1114.412365]  ? fput+0x130/0x1a0
[ 1114.415632]  ? ksys_write+0x1a6/0x250
[ 1114.419426]  ? security_file_ioctl+0x94/0xc0
[ 1114.423824]  ksys_ioctl+0xa9/0xd0
[ 1114.427267]  __x64_sys_ioctl+0x73/0xb0
[ 1114.431146]  do_syscall_64+0x1b1/0x800
[ 1114.435023]  ? finish_task_switch+0x1ca/0x810
[ 1114.439515]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1114.444430]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1114.449350]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1114.454704]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/04/19 14:16:08 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x400000000000000, 0x0)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x400, 0x0)
ioctl$KDADDIO(r1, 0x4b34, 0x8000)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r3)
ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f00000000c0)={&(0x7f0000ff8000/0x8000)=nil, 0x9, 0x5, 0xc, &(0x7f0000ffc000/0x3000)=nil, 0x6})

2018/04/19 14:16:08 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617497")

[ 1114.459542]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1114.464716] RIP: 0033:0x455329
[ 1114.467892] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1114.475590] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1114.482843] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1114.490096] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1114.497351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1114.504603] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000000b
2018/04/19 14:16:08 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys//et/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:08 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_SET_SAREA_CTX(r0, 0x4010641c, &(0x7f0000001080)={r1, &(0x7f0000000080)=""/4096})

2018/04/19 14:16:08 executing program 1:
r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x3, 0x80002)
ioctl$DRM_IOCTL_SET_MASTER(r0, 0x641e)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000040)={r0, r0, 0xffffffffffffff00, 0x6a38, &(0x7f0000000100)="54a8acc9fe43e6ccb3b33b616d22a0413ea7944f9796c850f1254eb1b0875ef68639182338b62c1efdd8f797a023380d171f104aab5d2696a66fc06a864810ff46f9c7bdb9c4abd7b81e99efd6d9ba8a76e8b455088266aace88913e1a1ab1c5c4a748dd25de3d14de200d1263863d58737a7bc11b3b9fe4d81d48016c04e411457fcfed922f0146d6fd8d77dc4e9b0db3e533f17cf26c8e", 0x9, 0x5, 0x4, 0x56f4, 0xe52, 0x7, 0x10000, "a6a639"})
socket$nl_crypto(0x10, 0x3, 0x15)

[ 1114.538255] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:08 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c6f, 0x0)

2018/04/19 14:16:08 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/.et/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:08 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617406")

2018/04/19 14:16:08 executing program 3 (fault-call:2 fault-nth:12):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1114.742452] FAULT_INJECTION: forcing a failure.
[ 1114.742452] name failslab, interval 1, probability 0, space 0, times 0
[ 1114.753778] CPU: 0 PID: 28803 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1114.760965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1114.770320] Call Trace:
[ 1114.772919]  dump_stack+0x1b9/0x294
[ 1114.776559]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1114.781754]  should_fail.cold.4+0xa/0x1a
[ 1114.785802]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1114.790893]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1114.796072]  ? graph_lock+0x170/0x170
[ 1114.799872]  ? is_bpf_text_address+0xd7/0x170
[ 1114.804371]  ? find_held_lock+0x36/0x1c0
[ 1114.808426]  ? __lock_is_held+0xb5/0x140
[ 1114.812482]  ? check_same_owner+0x320/0x320
[ 1114.816785]  ? kasan_kmalloc+0xc4/0xe0
[ 1114.820654]  ? kmem_cache_alloc_node_trace+0x150/0x770
[ 1114.825914]  ? blk_mq_init_tags+0x79/0x2b0
[ 1114.830135]  ? rcu_note_context_switch+0x710/0x710
[ 1114.835061]  ? loop_control_ioctl+0x178/0x500
[ 1114.839545]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1114.843586]  ? ksys_ioctl+0xa9/0xd0
[ 1114.847200]  __should_failslab+0x124/0x180
[ 1114.851433]  should_failslab+0x9/0x14
[ 1114.855216]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1114.860315]  ? print_usage_bug+0xc0/0xc0
[ 1114.864376]  __kmalloc_node+0x33/0x70
[ 1114.868172]  sbitmap_init_node+0x290/0x460
[ 1114.872402]  sbitmap_queue_init_node+0xaa/0x7d0
[ 1114.877066]  ? sbitmap_init_node+0x460/0x460
[ 1114.881464]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1114.886471]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1114.891742]  ? find_next_bit+0x104/0x130
[ 1114.895800]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1114.901331]  ? find_next_bit+0x104/0x130
[ 1114.905381]  blk_mq_init_tags+0x11b/0x2b0
[ 1114.909512]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1114.913815]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1114.918295]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1114.922603]  loop_add+0x2b4/0x9c0
[ 1114.926049]  ? loop_lookup+0x102/0x220
[ 1114.929928]  ? loop_queue_rq+0x6c0/0x6c0
[ 1114.933972]  ? __mutex_lock+0x32/0x17f0
[ 1114.937933]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1114.943110]  loop_control_ioctl+0x178/0x500
[ 1114.947410]  ? loop_add+0x9c0/0x9c0
[ 1114.951030]  ? expand_files.part.8+0x9a0/0x9a0
[ 1114.955600]  ? kasan_check_write+0x14/0x20
[ 1114.959815]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1114.964729]  ? wait_for_completion+0x870/0x870
[ 1114.969293]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1114.974473]  ? loop_add+0x9c0/0x9c0
[ 1114.978099]  do_vfs_ioctl+0x1cf/0x16a0
[ 1114.981983]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1114.986377]  ? fget_raw+0x20/0x20
[ 1114.989827]  ? __sb_end_write+0xac/0xe0
[ 1114.993796]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1114.999315]  ? fput+0x130/0x1a0
[ 1115.002577]  ? ksys_write+0x1a6/0x250
[ 1115.006364]  ? security_file_ioctl+0x94/0xc0
[ 1115.010755]  ksys_ioctl+0xa9/0xd0
[ 1115.014193]  __x64_sys_ioctl+0x73/0xb0
[ 1115.018073]  do_syscall_64+0x1b1/0x800
[ 1115.021954]  ? finish_task_switch+0x1ca/0x810
[ 1115.026432]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1115.031350]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1115.036263]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1115.041610]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1115.046440]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1115.051622] RIP: 0033:0x455329
[ 1115.054803] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1115.062490] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1115.069739] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1115.077424] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1115.084684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:16:08 executing program 0:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x6, <r0=>0xffffffffffffffff})
ioctl$VT_RELDISP(r0, 0x5605)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000140)={0x5, 0x0, [{0xc000000d, 0x7, 0x7, 0x400, 0x1, 0xffffffffd7a7559f, 0x9}, {0x8000000f, 0x650, 0x5, 0x100, 0x80000001, 0xb05, 0xff}, {0xc0000000, 0x7f, 0x7, 0x40, 0xffffffff, 0xbf4, 0x1}, {0x0, 0x2, 0x1, 0x2, 0xd0, 0x1, 0x9}, {0xc0000001, 0x6, 0x0, 0x6, 0x94, 0x3, 0x5}]})
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x210800, 0x0)
write$binfmt_misc(r1, &(0x7f0000000080)={'syz1', "33454b495c0c14d42c3a5e97044a1b2a23deaf54589380fdb5d73e604c2efa5d6a09f7eba05d417e7d1d65f8f3442ce0219c1491928bd1de3db4eb3d6c47dea9907e26b5f0c90bf1f3571946d1d0292aff0c59345a43a62f2b8f1642e014cbe1193b76c2c6847eaad55c22bc733ab51e9dddfd5b2747759a5f042c83c4417d9e60b158b0888cd267a4104d32c33c234173b1f64a99cda11a720a8fd6bdea9e2500bc100f7361"}, 0x3120c824e2b042bf)

2018/04/19 14:16:08 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000040)=<r2=>0x0)
ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000080)=r2)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:16:08 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x1d2)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r1, 0xc008551c, &(0x7f0000000040)={0x0, 0xc, [0x8000000000000000, 0x1, 0x4]})
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:08 executing program 1:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x7, 0x80000)
ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000080)={0x80000001, 0x3, 0x2})
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:08 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\t')

2018/04/19 14:16:08 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c7d, 0x0)

2018/04/19 14:16:08 executing program 3 (fault-call:2 fault-nth:13):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:08 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net//pv4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1115.091939] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000000c
[ 1115.102855] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:08 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c67, 0x0)

2018/04/19 14:16:08 executing program 0:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x400, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xffffffffffffff52)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8, 0x60041)
ioctl$KVM_SET_DEBUGREGS(r1, 0x4080aea2, &(0x7f0000000100)={[0xd000, 0x4000, 0x10d004, 0x4000], 0x7, 0x8, 0x9})
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000080)={0x400, 0x1000, 0x3, 0x6, 0x4, 0x6})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1115.210175] FAULT_INJECTION: forcing a failure.
[ 1115.210175] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.221545] CPU: 1 PID: 28824 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1115.228740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1115.238091] Call Trace:
[ 1115.240689]  dump_stack+0x1b9/0x294
[ 1115.244330]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1115.249544]  should_fail.cold.4+0xa/0x1a
[ 1115.253613]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1115.258726]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1115.264263]  ? graph_lock+0x170/0x170
[ 1115.268062]  ? find_held_lock+0x36/0x1c0
[ 1115.272115]  ? __lock_is_held+0xb5/0x140
[ 1115.276176]  ? check_same_owner+0x320/0x320
[ 1115.280484]  ? __kmalloc_node+0x33/0x70
[ 1115.284449]  ? rcu_note_context_switch+0x710/0x710
[ 1115.289365]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1115.294630]  __should_failslab+0x124/0x180
[ 1115.298855]  should_failslab+0x9/0x14
[ 1115.302640]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1115.307728]  ? __kmalloc_node+0x47/0x70
[ 1115.311689]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1115.316691]  ? find_next_bit+0x104/0x130
[ 1115.320744]  sbitmap_queue_init_node+0x3bd/0x7d0
[ 1115.325492]  ? sbitmap_init_node+0x460/0x460
[ 1115.329885]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1115.334887]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1115.340147]  ? find_next_bit+0x104/0x130
[ 1115.344195]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1115.349716]  ? find_next_bit+0x104/0x130
[ 1115.353770]  blk_mq_init_tags+0x11b/0x2b0
[ 1115.357907]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1115.362237]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1115.366726]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1115.371048]  loop_add+0x2b4/0x9c0
[ 1115.374487]  ? loop_lookup+0x102/0x220
[ 1115.378362]  ? loop_queue_rq+0x6c0/0x6c0
[ 1115.382417]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1115.387596]  loop_control_ioctl+0x178/0x500
[ 1115.391902]  ? loop_add+0x9c0/0x9c0
[ 1115.395517]  ? expand_files.part.8+0x9a0/0x9a0
[ 1115.400100]  ? kasan_check_write+0x14/0x20
[ 1115.404322]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1115.409241]  ? wait_for_completion+0x870/0x870
[ 1115.413811]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1115.418987]  ? loop_add+0x9c0/0x9c0
[ 1115.422605]  do_vfs_ioctl+0x1cf/0x16a0
[ 1115.426485]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1115.430881]  ? fget_raw+0x20/0x20
[ 1115.434321]  ? __sb_end_write+0xac/0xe0
[ 1115.438285]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1115.443805]  ? fput+0x130/0x1a0
[ 1115.447069]  ? ksys_write+0x1a6/0x250
[ 1115.450861]  ? security_file_ioctl+0x94/0xc0
[ 1115.455258]  ksys_ioctl+0xa9/0xd0
[ 1115.458700]  __x64_sys_ioctl+0x73/0xb0
[ 1115.462575]  do_syscall_64+0x1b1/0x800
[ 1115.466448]  ? finish_task_switch+0x1ca/0x810
[ 1115.470932]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1115.475847]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1115.480767]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1115.486119]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1115.490951]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1115.496133] RIP: 0033:0x455329
[ 1115.499308] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/19 14:16:09 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:09 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/.pv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:09 executing program 1:
r0 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x83, 0x1ffe)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000080)={0x0, 0x2, 0x3, 0x3, 0x9})
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

[ 1115.507003] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1115.514261] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1115.521516] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1115.528770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1115.536027] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000000d
[ 1115.549132] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:09 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c24, 0x0)

2018/04/19 14:16:09 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
fallocate(r1, 0x1, 0x1, 0x7)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$GIO_FONT(r1, 0x4b60, &(0x7f0000000040)=""/243)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:09 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

2018/04/19 14:16:09 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:09 executing program 3 (fault-call:2 fault-nth:14):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:09 executing program 0:
r0 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x20, 0x200000)
ioctl$DRM_IOCTL_RM_MAP(r0, 0x4028641b, &(0x7f0000000040)={&(0x7f0000ffa000/0x3000)=nil, 0x5, 0x5, 0x20, &(0x7f0000ffd000/0x1000)=nil, 0x40000000800000})

2018/04/19 14:16:09 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/i.v4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:09 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c68, 0x0)

2018/04/19 14:16:09 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000040)={'bpq0\x00', @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}})
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="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")

2018/04/19 14:16:09 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:09 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00')
r1 = socket$kcm(0x29, 0x802, 0x0)
sendfile(r1, r0, &(0x7f0000301ff8), 0x10000100000003)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r0, 0x4040aea4, &(0x7f0000000040)={0x1, 0xffff, 0x22, 0x2, 0x8})
r3 = dup(r2)
ioctl$PIO_UNIMAPCLR(r3, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

[ 1115.829108] FAULT_INJECTION: forcing a failure.
[ 1115.829108] name failslab, interval 1, probability 0, space 0, times 0
[ 1115.840410] CPU: 0 PID: 28867 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1115.847597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1115.856948] Call Trace:
[ 1115.859550]  dump_stack+0x1b9/0x294
[ 1115.863193]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1115.868395]  ? find_next_zero_bit+0x111/0x140
[ 1115.872906]  should_fail.cold.4+0xa/0x1a
2018/04/19 14:16:09 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x1})
ioctl$TCXONC(r1, 0x540a, 0x40000000000000)
ioctl$TCFLSH(r1, 0x540b, 0x100)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:09 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c34, 0x0)

[ 1115.876977]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1115.882103]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1115.887648]  ? graph_lock+0x170/0x170
[ 1115.891465]  ? find_held_lock+0x36/0x1c0
[ 1115.895540]  ? __lock_is_held+0xb5/0x140
[ 1115.899623]  ? check_same_owner+0x320/0x320
[ 1115.903952]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1115.908983]  ? rcu_note_context_switch+0x710/0x710
[ 1115.913912]  ? __lockdep_init_map+0x105/0x590
[ 1115.918401]  __should_failslab+0x124/0x180
[ 1115.922625]  should_failslab+0x9/0x14
[ 1115.926412]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1115.931504]  ? init_wait_entry+0x1b0/0x1b0
[ 1115.935723]  ? __kmalloc_node+0x47/0x70
[ 1115.939688]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1115.944698]  sbitmap_queue_init_node+0x3bd/0x7d0
[ 1115.949452]  ? sbitmap_init_node+0x460/0x460
[ 1115.953848]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1115.958851]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1115.964115]  ? find_next_bit+0x104/0x130
[ 1115.968163]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1115.973683]  ? find_next_bit+0x104/0x130
[ 1115.977739]  blk_mq_init_tags+0x17c/0x2b0
[ 1115.981880]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1115.986193]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1115.990683]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1115.995003]  loop_add+0x2b4/0x9c0
[ 1115.998452]  ? loop_lookup+0x102/0x220
[ 1116.002325]  ? loop_queue_rq+0x6c0/0x6c0
[ 1116.006382]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1116.011558]  loop_control_ioctl+0x178/0x500
[ 1116.015864]  ? loop_add+0x9c0/0x9c0
[ 1116.019477]  ? expand_files.part.8+0x9a0/0x9a0
[ 1116.024048]  ? kasan_check_write+0x14/0x20
[ 1116.028269]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1116.033188]  ? wait_for_completion+0x870/0x870
[ 1116.037756]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1116.042934]  ? loop_add+0x9c0/0x9c0
[ 1116.046550]  do_vfs_ioctl+0x1cf/0x16a0
[ 1116.050430]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1116.054824]  ? fget_raw+0x20/0x20
[ 1116.058267]  ? __sb_end_write+0xac/0xe0
[ 1116.062232]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1116.067753]  ? fput+0x130/0x1a0
[ 1116.071023]  ? ksys_write+0x1a6/0x250
[ 1116.074816]  ? security_file_ioctl+0x94/0xc0
[ 1116.079220]  ksys_ioctl+0xa9/0xd0
[ 1116.082663]  __x64_sys_ioctl+0x73/0xb0
[ 1116.086541]  do_syscall_64+0x1b1/0x800
[ 1116.090416]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1116.095335]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1116.100259]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1116.105615]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1116.110449]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1116.115620] RIP: 0033:0x455329
[ 1116.118796] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/19 14:16:09 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1116.126490] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1116.133742] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1116.140993] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1116.148249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1116.155500] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000000e
2018/04/19 14:16:09 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x1, 0x0)

2018/04/19 14:16:09 executing program 1:
ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, &(0x7f0000000000)=0x401)

2018/04/19 14:16:09 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/i/v4/vs/pmtu_disc\x00', 0x2, 0x0)

[ 1116.178382] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:09 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
chdir(&(0x7f0000000080)='./file0\x00')
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x80000, 0x0)

2018/04/19 14:16:09 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x5450, 0x0)

2018/04/19 14:16:09 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ip.4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:09 executing program 3 (fault-call:2 fault-nth:15):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:09 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
syz_mount_image$minix(&(0x7f0000000200)='minix\x00', &(0x7f0000000240)='./file0\x00', 0x101, 0x5, &(0x7f00000015c0)=[{&(0x7f0000000280)="8d384ad1a55960b1b6af0bff12f8bc4768d6469280e58ea1a0e12ff418270ecb2b938c8d8cdea445653ada28319312d2a4506cb2b0a4b2845ae943a1a0e32db5131897fcb30d0ddaec9b33cab4cb7aca4a078f9a8dda33125c8d377423836270a7ffd85e470fa01f786a6508f64e", 0x6e, 0x2800000000}, {&(0x7f0000000300)="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", 0x1000, 0x1ff}, {&(0x7f0000001300)="6730679d975c7a8e86e76997828e10dd0e1d0eb2a29b5799462ba287a281bafe503dafa94c5596d050f61a069d7be39cb0d0bb4ea6405ffcb5b7b19831dfd668397c471e02895e98e2bbdff6642fcf106a3be035f30b3dd3228509ee7bd647282288348eb909f42178b0eda7d96ffb3b83f3e47b08730444c3aeff921cd0dadc62d12ecc162348253d15c21fc6f8bd2cf026b450263e36b26b59dba62139de5c16ea468db15081", 0xa7, 0x6}, {&(0x7f00000013c0)="0c93c5b05bbf09c39b2e74dff073b45d2a27376f3f2d083f3110ff7692a41a8e45e7759bc576debba6afd5089ee158a833ad8065c8799e29933af34e75dba9092ba1ee1908244605103efdd0d8f97132a67cfe0ab12c03e621a7f68c9ddacc3eef92cb56559ffffc4abc3f002dc65aee484da1d89b2bfcd5338112e89b861e7d88e9f01b95730bf48c0030e7eb3237a88bf16d483bc4585bc50deb111d38ea34302923d6603061ee4f4c3cec685d9a4e4c58fafb086ad337a99b634b5d5c2d5230328aca9ab83bef55cd7eef1a3adf0ec66cc3556b06", 0xd6, 0x80000000}, {&(0x7f00000014c0)="4ec5ef604332ccbfd2a5bf3eaeeb53c5ea770372843b206a0949ef67371a07e7e6b144db39b8e33d69fda6f7e82168c34dcab33afaa5925c08f860af5240231a1775147663b321ee73ec126bc66b6fa77def5a4ee36ea6ea16e211e96f92ffb3aed47f1b5d40f0faf50d5f41a539c430c121400b6bed2caeabf03ddc9ec1ae4ac927c246dd581334241c96f114f8398c06ba58ad2b0d2ef646ebe3ce822a204804d2d8f2d0ea9cadecc7eed48925408a07a5ebcd84ae433e3334fcde75a2285585337b603dab41dbb2", 0xc9, 0x100}], 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_SET_FPU(r1, 0x41a0ae8d, &(0x7f0000000040)={[], 0x2, 0x1, 0xffff, 0x0, 0x1, 0x7004, 0x10000, [], 0xfffffffff014cfbe})

2018/04/19 14:16:09 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1, 0x1)
lseek(r0, 0x0, 0x1)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{}, {<r1=>0x0}]})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f00000000c0)={r1, 0x22})
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$DRM_IOCTL_GET_SAREA_CTX(r0, 0xc010641d, &(0x7f0000001100)={r1, &(0x7f0000000100)=""/4096})

2018/04/19 14:16:09 executing program 0:
socket$can_raw(0x1d, 0x3, 0x1)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)

[ 1116.370660] FAULT_INJECTION: forcing a failure.
[ 1116.370660] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.381955] CPU: 1 PID: 28908 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1116.389148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1116.398503] Call Trace:
[ 1116.401103]  dump_stack+0x1b9/0x294
[ 1116.404749]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1116.409955]  should_fail.cold.4+0xa/0x1a
[ 1116.414030]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1116.419125]  ? mark_held_locks+0xc9/0x160
[ 1116.423260]  ? graph_lock+0x170/0x170
[ 1116.427051]  ? __raw_spin_lock_init+0x1c/0x100
[ 1116.431620]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1116.436622]  ? __lockdep_init_map+0x105/0x590
[ 1116.441109]  ? __lockdep_init_map+0x105/0x590
[ 1116.445592]  ? __lock_is_held+0xb5/0x140
[ 1116.449638]  ? __init_waitqueue_head+0x96/0x140
[ 1116.454305]  ? check_same_owner+0x320/0x320
[ 1116.458615]  ? sbitmap_queue_init_node+0xc6/0x7d0
[ 1116.463448]  ? rcu_note_context_switch+0x710/0x710
[ 1116.468369]  __should_failslab+0x124/0x180
[ 1116.472593]  should_failslab+0x9/0x14
[ 1116.476379]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1116.481471]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1116.486993]  ? find_next_bit+0x104/0x130
[ 1116.491057]  __kmalloc_node+0x33/0x70
[ 1116.494849]  blk_mq_alloc_rq_map+0xcc/0x220
[ 1116.499161]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1116.503652]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1116.507970]  loop_add+0x2b4/0x9c0
[ 1116.511410]  ? loop_lookup+0x102/0x220
[ 1116.515286]  ? loop_queue_rq+0x6c0/0x6c0
[ 1116.519347]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1116.524527]  loop_control_ioctl+0x178/0x500
[ 1116.528847]  ? loop_add+0x9c0/0x9c0
[ 1116.532464]  ? expand_files.part.8+0x9a0/0x9a0
[ 1116.537039]  ? kasan_check_write+0x14/0x20
[ 1116.541262]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1116.546189]  ? wait_for_completion+0x870/0x870
[ 1116.550769]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1116.555948]  ? loop_add+0x9c0/0x9c0
[ 1116.559563]  do_vfs_ioctl+0x1cf/0x16a0
[ 1116.563446]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1116.567844]  ? fget_raw+0x20/0x20
[ 1116.571380]  ? __sb_end_write+0xac/0xe0
[ 1116.575345]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1116.580867]  ? fput+0x130/0x1a0
[ 1116.584137]  ? ksys_write+0x1a6/0x250
[ 1116.587930]  ? security_file_ioctl+0x94/0xc0
[ 1116.592330]  ksys_ioctl+0xa9/0xd0
[ 1116.595774]  __x64_sys_ioctl+0x73/0xb0
[ 1116.599652]  do_syscall_64+0x1b1/0x800
[ 1116.603531]  ? finish_task_switch+0x1ca/0x810
[ 1116.608023]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1116.612943]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1116.617862]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1116.623216]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1116.628051]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1116.633225] RIP: 0033:0x455329
[ 1116.636398] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1116.644102] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1116.651359] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1116.658614] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1116.665868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1116.673122] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000000f
[ 1116.684201] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:10 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:10 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c46, 0x0)

2018/04/19 14:16:10 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ip/4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:10 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0)
dup(r0)

2018/04/19 14:16:10 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x400040, 0x0)
ioctl$TTUNGETFILTER(r0, 0x801054db, &(0x7f00000000c0)=""/32)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000100))
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r1, 0x40045402, &(0x7f0000000140)=0x1)
ioctl$ASHMEM_GET_SIZE(r1, 0x7704, 0x0)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/qat_adf_ctl\x00', 0x400000, 0x0)

2018/04/19 14:16:10 executing program 4:
r0 = syz_open_pts(0xffffffffffffff9c, 0x800)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0xffffffffffffffff)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:10 executing program 3 (fault-call:2 fault-nth:16):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:10 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1116.854306] FAULT_INJECTION: forcing a failure.
[ 1116.854306] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.865608] CPU: 0 PID: 28936 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1116.872797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1116.882148] Call Trace:
[ 1116.884739]  dump_stack+0x1b9/0x294
[ 1116.888357]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1116.893541]  ? is_bpf_text_address+0xd7/0x170
[ 1116.898035]  should_fail.cold.4+0xa/0x1a
[ 1116.902086]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1116.907181]  ? graph_lock+0x170/0x170
[ 1116.910974]  ? save_stack+0xa9/0xd0
[ 1116.914594]  ? save_stack+0x43/0xd0
[ 1116.918207]  ? kasan_kmalloc+0xc4/0xe0
[ 1116.922081]  ? __kmalloc_node+0x47/0x70
[ 1116.926045]  ? blk_mq_alloc_rq_map+0xcc/0x220
[ 1116.930526]  ? blk_mq_alloc_tag_set+0x65d/0xce0
[ 1116.935183]  ? loop_add+0x2b4/0x9c0
[ 1116.938793]  ? loop_control_ioctl+0x178/0x500
[ 1116.943279]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1116.947327]  ? ksys_ioctl+0xa9/0xd0
[ 1116.950944]  ? __lock_is_held+0xb5/0x140
[ 1116.954993]  ? __init_waitqueue_head+0x96/0x140
[ 1116.959663]  ? check_same_owner+0x320/0x320
[ 1116.963976]  ? rcu_note_context_switch+0x710/0x710
[ 1116.968895]  __should_failslab+0x124/0x180
[ 1116.973120]  should_failslab+0x9/0x14
[ 1116.976910]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1116.982005]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1116.987535]  ? kasan_unpoison_shadow+0x35/0x50
[ 1116.992109]  __kmalloc_node+0x33/0x70
[ 1116.995902]  blk_mq_alloc_rq_map+0x10d/0x220
[ 1117.000301]  blk_mq_alloc_tag_set+0x65d/0xce0
[ 1117.004794]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1117.009112]  loop_add+0x2b4/0x9c0
[ 1117.012550]  ? loop_lookup+0x102/0x220
[ 1117.016426]  ? loop_queue_rq+0x6c0/0x6c0
[ 1117.020480]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1117.025656]  loop_control_ioctl+0x178/0x500
[ 1117.029962]  ? loop_add+0x9c0/0x9c0
[ 1117.033574]  ? expand_files.part.8+0x9a0/0x9a0
[ 1117.038148]  ? kasan_check_write+0x14/0x20
[ 1117.042369]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1117.047290]  ? wait_for_completion+0x870/0x870
[ 1117.051868]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1117.057046]  ? loop_add+0x9c0/0x9c0
[ 1117.060661]  do_vfs_ioctl+0x1cf/0x16a0
[ 1117.064543]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1117.068940]  ? fget_raw+0x20/0x20
[ 1117.072383]  ? __sb_end_write+0xac/0xe0
[ 1117.076348]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1117.081880]  ? fput+0x130/0x1a0
[ 1117.085148]  ? ksys_write+0x1a6/0x250
[ 1117.088939]  ? security_file_ioctl+0x94/0xc0
[ 1117.093340]  ksys_ioctl+0xa9/0xd0
[ 1117.096783]  __x64_sys_ioctl+0x73/0xb0
[ 1117.100661]  do_syscall_64+0x1b1/0x800
[ 1117.104535]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1117.109366]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1117.114283]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1117.119205]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1117.124562]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1117.129395]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1117.134568] RIP: 0033:0x455329
[ 1117.137744] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1117.145441] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
2018/04/19 14:16:10 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x3, r1, 0x201})
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
socket$key(0xf, 0x3, 0x2)

[ 1117.152697] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1117.159950] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1117.167206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1117.174461] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000010
[ 1117.213505] blk-mq: reduced tag depth (128 -> 64)
2018/04/19 14:16:10 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
getdents64(r1, &(0x7f0000000080)=""/112, 0x70)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000040)={0x5, 0x7, 0x2})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:10 executing program 0:
r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x1, 0x10000)
getdents64(r0, &(0x7f0000000180)=""/242, 0xffffffffffffffd1)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000080)=0x440)

2018/04/19 14:16:10 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:10 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/.s/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:10 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c57, 0x0)

2018/04/19 14:16:10 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bcsf0\x00', <r1=>0x0})
ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000100)=r1)

2018/04/19 14:16:10 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000040)={0x3, 0x3, 0x8})
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:10 executing program 3 (fault-call:2 fault-nth:17):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1117.390480] FAULT_INJECTION: forcing a failure.
[ 1117.390480] name failslab, interval 1, probability 0, space 0, times 0
[ 1117.401809] CPU: 1 PID: 28960 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1117.409009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1117.418362] Call Trace:
[ 1117.420956]  dump_stack+0x1b9/0x294
[ 1117.424595]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1117.429808]  should_fail.cold.4+0xa/0x1a
[ 1117.433880]  ? fault_create_debugfs_attr+0x1f0/0x1f0
2018/04/19 14:16:10 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x4000, 0x0)

[ 1117.439004]  ? graph_lock+0x170/0x170
[ 1117.442855]  ? find_held_lock+0x36/0x1c0
[ 1117.446979]  ? __lock_is_held+0xb5/0x140
[ 1117.451064]  ? check_same_owner+0x320/0x320
[ 1117.455397]  ? kasan_kmalloc+0xc4/0xe0
[ 1117.459289]  ? __kmalloc_node+0x47/0x70
[ 1117.463268]  ? blk_mq_alloc_rq_map+0x10d/0x220
[ 1117.467866]  ? rcu_note_context_switch+0x710/0x710
[ 1117.472801]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1117.476866]  ? ksys_ioctl+0xa9/0xd0
[ 1117.480493]  ? __x64_sys_ioctl+0x73/0xb0
[ 1117.484564]  __should_failslab+0x124/0x180
[ 1117.488809]  should_failslab+0x9/0x14
[ 1117.492612]  kmem_cache_alloc_node+0x272/0x780
[ 1117.497197]  ? debug_mutex_init+0x1c/0x60
[ 1117.501352]  blk_alloc_queue_node+0xe5/0xe40
[ 1117.505760]  ? lockdep_init_map+0x9/0x10
[ 1117.509822]  ? debug_mutex_init+0x2d/0x60
[ 1117.513972]  ? blk_init_allocated_queue+0x620/0x620
[ 1117.518991]  ? __mutex_init+0x1ef/0x280
[ 1117.522973]  ? __ia32_sys_membarrier+0x150/0x150
[ 1117.527745]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1117.532337]  ? __kmalloc_node+0x47/0x70
[ 1117.536322]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1117.540911]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1117.545593]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1117.549926]  blk_mq_init_queue+0x4b/0xb0
[ 1117.553988]  loop_add+0x32b/0x9c0
[ 1117.557442]  ? loop_lookup+0x102/0x220
[ 1117.561331]  ? loop_queue_rq+0x6c0/0x6c0
[ 1117.565408]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1117.570611]  loop_control_ioctl+0x178/0x500
[ 1117.574932]  ? loop_add+0x9c0/0x9c0
[ 1117.578547]  ? expand_files.part.8+0x9a0/0x9a0
[ 1117.583119]  ? kasan_check_write+0x14/0x20
[ 1117.587344]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1117.592267]  ? wait_for_completion+0x870/0x870
[ 1117.596837]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1117.602013]  ? loop_add+0x9c0/0x9c0
[ 1117.605631]  do_vfs_ioctl+0x1cf/0x16a0
[ 1117.609510]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1117.613907]  ? fget_raw+0x20/0x20
[ 1117.617349]  ? __sb_end_write+0xac/0xe0
[ 1117.621314]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1117.626837]  ? fput+0x130/0x1a0
[ 1117.630104]  ? ksys_write+0x1a6/0x250
[ 1117.633897]  ? security_file_ioctl+0x94/0xc0
[ 1117.638297]  ksys_ioctl+0xa9/0xd0
[ 1117.641743]  __x64_sys_ioctl+0x73/0xb0
[ 1117.645621]  do_syscall_64+0x1b1/0x800
[ 1117.649494]  ? finish_task_switch+0x1ca/0x810
[ 1117.653985]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1117.658905]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1117.663827]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1117.669186]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1117.674029]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1117.679201] RIP: 0033:0x455329
[ 1117.682377] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/19 14:16:11 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\a')

2018/04/19 14:16:11 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c09, 0x0)

[ 1117.690074] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1117.697330] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1117.704603] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1117.711856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1117.719109] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000011
2018/04/19 14:16:11 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x3, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000100)={&(0x7f00000000c0)=[0x3, 0x4, 0x2, 0x0, 0x1, 0x8000, 0x1], 0x7, 0x100, 0x0, 0xffff, 0x1, 0x68, {0x75c37176, 0x30eb, 0x2, 0x8, 0x0, 0x7fffffff, 0xffffffffffff2664, 0x4, 0x5, 0x6, 0x400, 0x8000000000, 0x10000, 0x5, "456f5bc415456a3dc2bb4f5a6079c7f03e1929b1388553a067c40aefcf9f9c90"}})
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000040)={'nr0\x00', {0x2, 0x4e24, @rand_addr=0x10001}})
ioctl$KVM_GET_XCRS(r0, 0x8188aea6, &(0x7f00000001c0)={0x7, 0x3, [{0x7ff, 0x0, 0x7ff}, {0x93, 0x0, 0x7}, {0x3, 0x0, 0x5}, {0x1, 0x0, 0x6}, {0xfffffffffffffffa, 0x0, 0x8}, {0x100000001, 0x0, 0x7}, {0x4, 0x0, 0x2}]})
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000180)={0x0, 0x6})

2018/04/19 14:16:11 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4//s/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:11 executing program 1:
syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xe2, 0x40940)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:11 executing program 3 (fault-call:2 fault-nth:18):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:11 executing program 4:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x20000, 0x0)
ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, &(0x7f0000000140)={0x0, 0x5})
r1 = syz_open_dev$sndtimer(&(0x7f0000000100)='/dev/snd/timer\x00', 0x0, 0x480100)
ioctl$LOOP_SET_FD(r0, 0x4c00, r1)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r3 = dup(r2)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000080)=r3)

2018/04/19 14:16:11 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x0, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000080)={0x10f000, 0x108000})
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:11 executing program 0:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x880, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:11 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617405")

2018/04/19 14:16:11 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c69, 0x0)

[ 1117.948681] FAULT_INJECTION: forcing a failure.
[ 1117.948681] name failslab, interval 1, probability 0, space 0, times 0
[ 1117.959972] CPU: 1 PID: 28992 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1117.967164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1117.976520] Call Trace:
[ 1117.979119]  dump_stack+0x1b9/0x294
[ 1117.982766]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1117.987972]  should_fail.cold.4+0xa/0x1a
[ 1117.992042]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1117.997141]  ? zap_class+0x720/0x720
[ 1118.000844]  ? graph_lock+0x170/0x170
[ 1118.004666]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1118.010199]  ? find_next_zero_bit+0x111/0x140
[ 1118.014688]  ? find_held_lock+0x36/0x1c0
[ 1118.018739]  ? __lock_is_held+0xb5/0x140
[ 1118.022800]  ? check_same_owner+0x320/0x320
[ 1118.027114]  ? rcu_note_context_switch+0x710/0x710
[ 1118.032033]  ? lock_downgrade+0x8e0/0x8e0
[ 1118.036175]  __should_failslab+0x124/0x180
[ 1118.040399]  should_failslab+0x9/0x14
[ 1118.044186]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1118.048844]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[ 1118.053945]  bioset_create+0xa8/0x900
[ 1118.057740]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1118.063269]  ? bioset_free+0x320/0x320
[ 1118.067143]  ? debug_mutex_init+0x1c/0x60
[ 1118.071284]  blk_alloc_queue_node+0x16e/0xe40
[ 1118.075780]  ? blk_init_allocated_queue+0x620/0x620
[ 1118.080782]  ? __mutex_init+0x1ef/0x280
[ 1118.084744]  ? __ia32_sys_membarrier+0x150/0x150
[ 1118.089493]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1118.094069]  ? __kmalloc_node+0x47/0x70
[ 1118.098040]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1118.102613]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1118.107275]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1118.111588]  blk_mq_init_queue+0x4b/0xb0
[ 1118.115636]  loop_add+0x32b/0x9c0
[ 1118.119080]  ? loop_lookup+0x102/0x220
[ 1118.122952]  ? loop_queue_rq+0x6c0/0x6c0
[ 1118.127010]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1118.132196]  loop_control_ioctl+0x178/0x500
[ 1118.136503]  ? loop_add+0x9c0/0x9c0
[ 1118.140116]  ? expand_files.part.8+0x9a0/0x9a0
[ 1118.144685]  ? kasan_check_write+0x14/0x20
[ 1118.148908]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1118.153827]  ? wait_for_completion+0x870/0x870
[ 1118.158396]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1118.163570]  ? loop_add+0x9c0/0x9c0
[ 1118.167187]  do_vfs_ioctl+0x1cf/0x16a0
[ 1118.171071]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1118.175470]  ? fget_raw+0x20/0x20
[ 1118.178917]  ? __sb_end_write+0xac/0xe0
[ 1118.182886]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1118.188411]  ? fput+0x130/0x1a0
[ 1118.191682]  ? ksys_write+0x1a6/0x250
[ 1118.195474]  ? security_file_ioctl+0x94/0xc0
[ 1118.199876]  ksys_ioctl+0xa9/0xd0
[ 1118.203319]  __x64_sys_ioctl+0x73/0xb0
[ 1118.207195]  do_syscall_64+0x1b1/0x800
[ 1118.211073]  ? finish_task_switch+0x1ca/0x810
[ 1118.215557]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1118.220493]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1118.225415]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1118.230768]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1118.235601]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1118.240772] RIP: 0033:0x455329
2018/04/19 14:16:11 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2, 0x2000)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f00000000c0)={0x0, &(0x7f0000000080)})
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x10, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000001100)=ANY=[@ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="3f00fdff00000000", @ANYPTR=&(0x7f0000000100)=ANY=[@ANYBLOB="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"], @ANYBLOB="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"])

[ 1118.243947] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1118.251640] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1118.258895] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1118.266157] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1118.273410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1118.280667] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000012
2018/04/19 14:16:11 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0xffffffffffffffff, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000)={0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0x101004, 0x100000})
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
socket$inet_dccp(0x2, 0x6, 0x0)

2018/04/19 14:16:11 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/v./pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:11 executing program 3 (fault-call:2 fault-nth:19):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:11 executing program 0:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x400000, 0x0)
r1 = socket$inet6(0xa, 0x7, 0x1)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000080)={r1})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:11 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x2, 0x0)
socket$kcm(0x29, 0x5, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$KVM_GET_TSC_KHZ(r1, 0xaea3)

2018/04/19 14:16:11 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c06, 0x0)

2018/04/19 14:16:11 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatz')

2018/04/19 14:16:11 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='io.stat\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x8910, &(0x7f0000000100))
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000080)=0x1)
syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x80000000, 0x4000)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f0000000000)={0x35, 0xfffffffffffffff9, 0xffff, 0x0, 0x7})

[ 1118.469813] FAULT_INJECTION: forcing a failure.
[ 1118.469813] name failslab, interval 1, probability 0, space 0, times 0
[ 1118.481151] CPU: 1 PID: 29021 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1118.488344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1118.497695] Call Trace:
[ 1118.500292]  dump_stack+0x1b9/0x294
[ 1118.503937]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1118.509148]  should_fail.cold.4+0xa/0x1a
[ 1118.513222]  ? fault_create_debugfs_attr+0x1f0/0x1f0
2018/04/19 14:16:12 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x440080, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f0000000040))

2018/04/19 14:16:12 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c3d, 0x0)

2018/04/19 14:16:12 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1118.518335]  ? zap_class+0x720/0x720
[ 1118.522060]  ? graph_lock+0x170/0x170
[ 1118.525901]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1118.531469]  ? find_next_zero_bit+0x111/0x140
[ 1118.535978]  ? find_held_lock+0x36/0x1c0
[ 1118.540054]  ? __lock_is_held+0xb5/0x140
[ 1118.544141]  ? check_same_owner+0x320/0x320
[ 1118.548489]  ? rcu_note_context_switch+0x710/0x710
[ 1118.553427]  ? lock_downgrade+0x8e0/0x8e0
[ 1118.557589]  __should_failslab+0x124/0x180
[ 1118.561839]  should_failslab+0x9/0x14
[ 1118.565656]  kmem_cache_alloc_trace+0x2cb/0x780
2018/04/19 14:16:12 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/v//pmtu_disc\x00', 0x2, 0x0)

[ 1118.570337]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[ 1118.575459]  bioset_create+0xa8/0x900
[ 1118.579271]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1118.584823]  ? bioset_free+0x320/0x320
[ 1118.588731]  blk_alloc_queue_node+0x16e/0xe40
[ 1118.588750]  ? blk_init_allocated_queue+0x620/0x620
2018/04/19 14:16:12 executing program 5:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x448000, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f0000000040)={0x9, 0x3, 0x200, 0x1})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x1, 0x0)
r2 = dup(r1)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000080))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:12 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c5d, 0x0)

[ 1118.588762]  ? __mutex_init+0x1ef/0x280
[ 1118.588777]  ? __ia32_sys_membarrier+0x150/0x150
[ 1118.588796]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1118.588816]  ? __kmalloc_node+0x47/0x70
[ 1118.588831]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1118.588848]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1118.588869]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1118.588887]  blk_mq_init_queue+0x4b/0xb0
[ 1118.588900]  loop_add+0x32b/0x9c0
[ 1118.588912]  ? loop_lookup+0x102/0x220
[ 1118.588924]  ? loop_queue_rq+0x6c0/0x6c0
[ 1118.588941]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1118.588955]  loop_control_ioctl+0x178/0x500
[ 1118.588966]  ? loop_add+0x9c0/0x9c0
[ 1118.588979]  ? expand_files.part.8+0x9a0/0x9a0
[ 1118.588991]  ? kasan_check_write+0x14/0x20
[ 1118.589006]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1118.589027]  ? wait_for_completion+0x870/0x870
[ 1118.589043]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1118.589054]  ? loop_add+0x9c0/0x9c0
[ 1118.589067]  do_vfs_ioctl+0x1cf/0x16a0
[ 1118.589085]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1118.589099]  ? fget_raw+0x20/0x20
[ 1118.589112]  ? __sb_end_write+0xac/0xe0
[ 1118.589129]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1118.589139]  ? fput+0x130/0x1a0
[ 1118.589152]  ? ksys_write+0x1a6/0x250
[ 1118.589167]  ? security_file_ioctl+0x94/0xc0
[ 1118.589183]  ksys_ioctl+0xa9/0xd0
[ 1118.589199]  __x64_sys_ioctl+0x73/0xb0
[ 1118.589213]  do_syscall_64+0x1b1/0x800
[ 1118.589225]  ? finish_task_switch+0x1ca/0x810
[ 1118.589238]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1118.589251]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1118.589267]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1118.589284]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1118.589300]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1118.589310] RIP: 0033:0x455329
2018/04/19 14:16:12 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000080)={0x6, 0xfffffffffffffffd, 'client1\x00', 0xe, "3874ea5684b70416", "f6749cafc049af555369290f01811c38fa0ac474aa17e7b9473d40a299bbcaca", 0x400000006b97e6e7, 0x3})
sync_file_range(r0, 0x0, 0x1, 0x5)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000180)={0x1, 0x8, [0x400001, 0x191, 0x5, 0x4, 0x8]})

2018/04/19 14:16:12 executing program 3 (fault-call:2 fault-nth:20):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:12 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c05, 0x0)

2018/04/19 14:16:12 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000040))
ioctl$TIOCCONS(r1, 0x541d)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, &(0x7f0000000080)={{0x3, 0x1, 0x8, 0x3, 0x52f}, 0x4, 0x40, 'id0\x00', 'timer1\x00', 0x0, 0xeaa, 0xaa61, 0x1ff, 0x41})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:12 executing program 5:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x10a01, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000080)={0x3, 0x6, 0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, 'bond0\x00'})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$int_in(r1, 0x5473, &(0x7f00000000c0)=0x1)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$TIOCEXCL(r2, 0x540c)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, r3)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)

2018/04/19 14:16:12 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617419")

2018/04/19 14:16:12 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x2, 0x0)

2018/04/19 14:16:12 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/.mtu_disc\x00', 0x2, 0x0)

[ 1118.589316] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1118.589330] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1118.589337] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1118.589345] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1118.589352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1118.589359] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000013
[ 1119.012411] FAULT_INJECTION: forcing a failure.
[ 1119.012411] name failslab, interval 1, probability 0, space 0, times 0
[ 1119.023724] CPU: 0 PID: 29068 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1119.030915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1119.040266] Call Trace:
[ 1119.042867]  dump_stack+0x1b9/0x294
[ 1119.046505]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1119.051687]  ? __kernel_text_address+0xd/0x40
[ 1119.056179]  should_fail.cold.4+0xa/0x1a
[ 1119.060233]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1119.065329]  ? save_stack+0xa9/0xd0
[ 1119.068948]  ? graph_lock+0x170/0x170
[ 1119.072735]  ? mempool_create+0x37/0x40
[ 1119.076695]  ? bioset_create+0x477/0x900
[ 1119.080742]  ? blk_alloc_queue_node+0x16e/0xe40
[ 1119.085395]  ? blk_mq_init_queue+0x4b/0xb0
[ 1119.089615]  ? loop_add+0x32b/0x9c0
[ 1119.093226]  ? loop_control_ioctl+0x178/0x500
[ 1119.097712]  ? find_held_lock+0x36/0x1c0
[ 1119.101764]  ? __lock_is_held+0xb5/0x140
[ 1119.105826]  ? check_same_owner+0x320/0x320
[ 1119.110146]  ? rcu_note_context_switch+0x710/0x710
[ 1119.115072]  __should_failslab+0x124/0x180
[ 1119.119297]  should_failslab+0x9/0x14
[ 1119.123087]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1119.128175]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1119.133181]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1119.138451]  __kmalloc_node+0x33/0x70
[ 1119.142238]  ? mempool_free+0x370/0x370
[ 1119.146200]  mempool_create_node+0x111/0x610
[ 1119.150597]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1119.155600]  ? mempool_alloc_slab+0x60/0x60
[ 1119.159909]  ? mempool_free+0x370/0x370
[ 1119.163869]  ? mempool_alloc_slab+0x60/0x60
[ 1119.168179]  mempool_create+0x37/0x40
[ 1119.171971]  bioset_create+0x477/0x900
[ 1119.175850]  ? bioset_free+0x320/0x320
[ 1119.179723]  ? debug_mutex_init+0x1c/0x60
[ 1119.183863]  blk_alloc_queue_node+0x16e/0xe40
[ 1119.188347]  ? blk_init_allocated_queue+0x620/0x620
[ 1119.193345]  ? __mutex_init+0x1ef/0x280
[ 1119.197305]  ? __ia32_sys_membarrier+0x150/0x150
[ 1119.202060]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1119.206636]  ? __kmalloc_node+0x47/0x70
[ 1119.210615]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1119.215187]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1119.219850]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1119.224165]  blk_mq_init_queue+0x4b/0xb0
[ 1119.228213]  loop_add+0x32b/0x9c0
[ 1119.231654]  ? loop_lookup+0x102/0x220
[ 1119.235526]  ? loop_queue_rq+0x6c0/0x6c0
[ 1119.239579]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1119.244756]  loop_control_ioctl+0x178/0x500
[ 1119.249067]  ? loop_add+0x9c0/0x9c0
[ 1119.252684]  ? expand_files.part.8+0x9a0/0x9a0
[ 1119.257257]  ? kasan_check_write+0x14/0x20
[ 1119.261476]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1119.266396]  ? wait_for_completion+0x870/0x870
[ 1119.270965]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1119.276139]  ? loop_add+0x9c0/0x9c0
[ 1119.279754]  do_vfs_ioctl+0x1cf/0x16a0
[ 1119.283633]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1119.288037]  ? fget_raw+0x20/0x20
[ 1119.291481]  ? __sb_end_write+0xac/0xe0
[ 1119.295446]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1119.300969]  ? fput+0x130/0x1a0
[ 1119.304236]  ? ksys_write+0x1a6/0x250
[ 1119.308035]  ? security_file_ioctl+0x94/0xc0
[ 1119.312439]  ksys_ioctl+0xa9/0xd0
[ 1119.315881]  __x64_sys_ioctl+0x73/0xb0
[ 1119.319755]  do_syscall_64+0x1b1/0x800
[ 1119.323634]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1119.328553]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1119.333469]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1119.338833]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1119.343666]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1119.348838] RIP: 0033:0x455329
[ 1119.352019] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/19 14:16:12 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:12 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs//mtu_disc\x00', 0x2, 0x0)

[ 1119.359724] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1119.366978] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1119.374233] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1119.381485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1119.388739] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000014
2018/04/19 14:16:12 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c31, 0x0)

2018/04/19 14:16:12 executing program 0:
syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x81, 0x20000)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000080)={0xffffffffffffff9c})
syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x3, 0x101000)

2018/04/19 14:16:12 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
write$cgroup_int(r1, &(0x7f0000000040)={[0x2f, 0x3e, 0x3f, 0x3f, 0x3d, 0x0]}, 0x6)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000080)={[{0x8000, 0x6, 0xda2, 0x3ff, 0x3, 0x3, 0x9, 0x7, 0x2, 0x0, 0x3ff, 0xfffffffffffffff7, 0x3}, {0x9, 0xab66, 0x8001, 0x1f, 0x1, 0x9, 0x8000000, 0x81, 0x5, 0x7, 0x9, 0x3cc000000000, 0x3}, {0xe68, 0x100000000, 0xfff, 0x3, 0x6, 0xb0, 0x853, 0xa1f, 0x2, 0x4, 0x4, 0x1, 0x10001}], 0x4000000000000000})

2018/04/19 14:16:12 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000040)={0x40, 0xff})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:13 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x17)
ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000000)={'syzkaller1\x00', 0xfffffffffffffbff})
syz_mount_image$hfs(&(0x7f0000000080)='hfs\x00', &(0x7f00000000c0)='./file0\x00', 0xd4f, 0x4, &(0x7f0000000300)=[{&(0x7f0000000100)="a2515873b0663416e0808a7f5b867fba005af8a92a4b9947aef93ac36a4e390a12bb3147d6e14ec39f7c4901a3021c66a176a2c9cf6585f2a25a0cbb4f621733aaa18d91b45717d2b13b3d571addf69e27a61aef670fb5ad0f62d229da90e2f7df57592d03cd3d2b1e2e789f5e09a2422c05ed56828b7f47e264229c98321318ea508c9f661b66996f859c046c6128988f4be1b051039563d928039a8ad981c1972d0f8e2e11d8bd062d035e418fa6", 0xaf, 0x35}, {&(0x7f00000001c0)="17fc6870b15ac38645b139cb9bf16e43981d3496e19df081801be924afff4aace9ae4d5e8ea126ed9c92ff24cf", 0x2d, 0xffff}, {&(0x7f0000000200)="e45f3936253ca0e2c6c0dad57e678bc9ffc9954089b6116de4eabaca61b05393d225fc3c442086e40a24f5125e4e2d3cb4b4ea4dd6d1f3976ac60901018d08486730ba36089529cff1c188fcf26b1d527af5c8722566420f2a085a7049261118cf0b14a9291e3e3c52feff6c261a654d599cfa2f99326a8e9a7e", 0x7a, 0x5}, {&(0x7f0000000280)="c2965bac52854c545aebd7aa52f57812fa5bf969d8c7b20a8d68a64fdd303ef8889ad13dad6e07246f36bb72adb1acbea61b98c61415fbbb076588fc716358334fad8c0112c5c22cc6bbaf46524113d02dec8c30342e5af690c38264bc3ffaa8e45bc67d759834eff6054a01c36f9c5da279d208d4", 0x75, 0x3}], 0x2840040, &(0x7f0000000380)={[{@file_umask={'file_umask', 0x3d, [0x32]}, 0x2c}, {@file_umask={'file_umask', 0x3d, [0x35, 0x34]}, 0x2c}, {@quiet='quiet', 0x2c}]})
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r1, 0xc0045540, &(0x7f00000003c0)=0x8)

2018/04/19 14:16:13 executing program 3 (fault-call:2 fault-nth:21):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:13 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c63, 0x0)

2018/04/19 14:16:13 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000000c0)={'team0\x00', <r1=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', r1})

[ 1119.659424] FAULT_INJECTION: forcing a failure.
[ 1119.659424] name failslab, interval 1, probability 0, space 0, times 0
[ 1119.670743] CPU: 1 PID: 29099 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1119.677934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1119.687279] Call Trace:
[ 1119.689852]  dump_stack+0x1b9/0x294
[ 1119.693470]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1119.698646]  ? is_bpf_text_address+0xd7/0x170
[ 1119.703138]  ? kernel_text_address+0x79/0xf0
[ 1119.707552]  should_fail.cold.4+0xa/0x1a
[ 1119.711600]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1119.716689]  ? graph_lock+0x170/0x170
[ 1119.720470]  ? save_stack+0xa9/0xd0
[ 1119.724087]  ? print_usage_bug+0xc0/0xc0
[ 1119.728140]  ? kasan_kmalloc+0xc4/0xe0
[ 1119.732019]  ? find_held_lock+0x36/0x1c0
[ 1119.736080]  ? __lock_is_held+0xb5/0x140
[ 1119.740128]  ? check_same_owner+0x320/0x320
[ 1119.744435]  ? rcu_note_context_switch+0x710/0x710
[ 1119.749352]  ? __lockdep_init_map+0x105/0x590
[ 1119.753843]  __should_failslab+0x124/0x180
[ 1119.758064]  ? mempool_free+0x370/0x370
[ 1119.762030]  should_failslab+0x9/0x14
[ 1119.765819]  kmem_cache_alloc+0x2af/0x760
[ 1119.769962]  ? init_wait_entry+0x1b0/0x1b0
[ 1119.774181]  ? mempool_free+0x370/0x370
[ 1119.778142]  mempool_alloc_slab+0x44/0x60
[ 1119.782275]  mempool_create_node+0x2cf/0x610
[ 1119.786671]  ? mempool_free+0x370/0x370
[ 1119.790628]  ? mempool_alloc_slab+0x60/0x60
[ 1119.794933]  mempool_create+0x37/0x40
[ 1119.798720]  bioset_create+0x477/0x900
[ 1119.802591]  ? bioset_free+0x320/0x320
[ 1119.806462]  ? debug_mutex_init+0x1c/0x60
[ 1119.810592]  blk_alloc_queue_node+0x16e/0xe40
[ 1119.815069]  ? blk_init_allocated_queue+0x620/0x620
[ 1119.820063]  ? __mutex_init+0x1ef/0x280
[ 1119.824027]  ? __ia32_sys_membarrier+0x150/0x150
[ 1119.828772]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1119.833337]  ? __kmalloc_node+0x47/0x70
[ 1119.837300]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1119.841868]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1119.846525]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1119.850830]  blk_mq_init_queue+0x4b/0xb0
[ 1119.854881]  loop_add+0x32b/0x9c0
[ 1119.858322]  ? loop_lookup+0x102/0x220
[ 1119.862191]  ? loop_queue_rq+0x6c0/0x6c0
[ 1119.866241]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1119.871417]  loop_control_ioctl+0x178/0x500
[ 1119.875724]  ? loop_add+0x9c0/0x9c0
[ 1119.879342]  ? expand_files.part.8+0x9a0/0x9a0
[ 1119.883904]  ? kasan_check_write+0x14/0x20
[ 1119.888128]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1119.893050]  ? wait_for_completion+0x870/0x870
[ 1119.897612]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1119.902781]  ? loop_add+0x9c0/0x9c0
[ 1119.906391]  do_vfs_ioctl+0x1cf/0x16a0
[ 1119.910263]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1119.914653]  ? fget_raw+0x20/0x20
[ 1119.918087]  ? __sb_end_write+0xac/0xe0
[ 1119.922057]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1119.927586]  ? fput+0x130/0x1a0
[ 1119.930858]  ? ksys_write+0x1a6/0x250
[ 1119.934643]  ? security_file_ioctl+0x94/0xc0
[ 1119.939054]  ksys_ioctl+0xa9/0xd0
[ 1119.942502]  __x64_sys_ioctl+0x73/0xb0
[ 1119.946375]  do_syscall_64+0x1b1/0x800
[ 1119.950246]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1119.955156]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1119.960068]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1119.965416]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1119.970240]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1119.975405] RIP: 0033:0x455329
[ 1119.978574] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1119.986260] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1119.993508] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1120.000763] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1120.008018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1120.015275] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000015
2018/04/19 14:16:13 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_d.sc\x00', 0x2, 0x0)

2018/04/19 14:16:13 executing program 5:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x800, 0x0)
ioctl$KDSKBLED(r0, 0x4b65, 0xb)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:13 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:13 executing program 4:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x1, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
r3 = semget$private(0x0, 0x2, 0x80)
semctl$IPC_STAT(r3, 0x0, 0x2, &(0x7f0000000180)=""/4096)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000100)=&(0x7f00000000c0))
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000001180)={'ifb0\x00', {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}})
ioctl$sock_SIOCBRADDBR(r2, 0x89a0, &(0x7f0000000080)='veth0_to_team\x00')

2018/04/19 14:16:13 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x8001, 0x4ff7, 0xa2, 0x105, 0x7fff, 0x3, 0x3f, 0x7, 0x27e, 0x38, 0x315, 0x4, 0x58, 0x20, 0x1, 0x100, 0x200, 0xffffffff}, [{0x4, 0x401, 0xffffffffffffaf0c, 0x8d, 0x5, 0x10000, 0x2, 0x5}, {0x70000002, 0x0, 0x4, 0x2, 0x5, 0x40f, 0x9, 0x7f}], "af534e697d86b6f161fb67965825368f8ad084c8cc62b602bcec6f535c93b7f5ca6270e68ed136e39b6f5f845235c2b3472deaee8c83cec4a1723756472aa2d5b1fb3154c777c2d523ac4cc09738c2188234871396b6a8dd879c21e0e5287bf89131ca5166f9579f5eab25ce88237b96ac8e2eb777b054270ba62ddfed70bc08310a9aca1952365c0184cee1f71493bfe3b32190b9036da0b999ca4e43d4dc295a7ff2a4be42eea8dad3dc2c524dc5224ced7f3c83473e9107ed0bb18da9245a86a98578831b6c542aee6b314a79b4a81c81fbf491", [[], [], []]}, 0x44d)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000000000)=0x8001)

2018/04/19 14:16:13 executing program 1:
r0 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x40, 0x800)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000080)=""/30)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:13 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2b, 0x0)

2018/04/19 14:16:13 executing program 3 (fault-call:2 fault-nth:22):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:13 executing program 0:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x200000, 0x0)
ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000080)={0x2, 0x4})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1120.140071] FAULT_INJECTION: forcing a failure.
[ 1120.140071] name failslab, interval 1, probability 0, space 0, times 0
[ 1120.151393] CPU: 1 PID: 29119 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1120.158590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1120.167951] Call Trace:
[ 1120.170554]  dump_stack+0x1b9/0x294
[ 1120.174198]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1120.179398]  ? __save_stack_trace+0x7e/0xd0
[ 1120.183731]  should_fail.cold.4+0xa/0x1a
[ 1120.187783]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1120.192872]  ? kasan_kmalloc+0xc4/0xe0
[ 1120.196748]  ? kasan_slab_alloc+0x12/0x20
[ 1120.200881]  ? kmem_cache_alloc+0x12e/0x760
[ 1120.205190]  ? mempool_alloc_slab+0x44/0x60
[ 1120.209495]  ? mempool_create_node+0x2cf/0x610
[ 1120.214066]  ? mempool_create+0x37/0x40
[ 1120.218030]  ? bioset_create+0x477/0x900
[ 1120.222079]  ? graph_lock+0x170/0x170
[ 1120.225868]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1120.229917]  ? ksys_ioctl+0xa9/0xd0
[ 1120.233529]  ? __x64_sys_ioctl+0x73/0xb0
[ 1120.237582]  ? do_syscall_64+0x1b1/0x800
[ 1120.241632]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1120.246984]  ? find_held_lock+0x36/0x1c0
[ 1120.251043]  ? __lock_is_held+0xb5/0x140
[ 1120.255108]  ? check_same_owner+0x320/0x320
[ 1120.259419]  ? rcu_note_context_switch+0x710/0x710
[ 1120.264342]  __should_failslab+0x124/0x180
[ 1120.268568]  ? mempool_free+0x370/0x370
[ 1120.272531]  should_failslab+0x9/0x14
[ 1120.276317]  kmem_cache_alloc+0x2af/0x760
[ 1120.280464]  ? init_wait_entry+0x1b0/0x1b0
[ 1120.284688]  ? mempool_alloc_slab+0x44/0x60
[ 1120.288998]  ? mempool_free+0x370/0x370
[ 1120.292966]  mempool_alloc_slab+0x44/0x60
[ 1120.297103]  mempool_create_node+0x2cf/0x610
[ 1120.301502]  ? mempool_free+0x370/0x370
[ 1120.305468]  ? mempool_alloc_slab+0x60/0x60
[ 1120.309776]  mempool_create+0x37/0x40
[ 1120.313568]  bioset_create+0x477/0x900
[ 1120.317444]  ? bioset_free+0x320/0x320
[ 1120.321320]  ? debug_mutex_init+0x1c/0x60
[ 1120.325465]  blk_alloc_queue_node+0x16e/0xe40
[ 1120.329950]  ? blk_init_allocated_queue+0x620/0x620
[ 1120.334948]  ? __mutex_init+0x1ef/0x280
[ 1120.338911]  ? __ia32_sys_membarrier+0x150/0x150
[ 1120.343654]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1120.348229]  ? __kmalloc_node+0x47/0x70
[ 1120.352190]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1120.356760]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1120.361727]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1120.366046]  blk_mq_init_queue+0x4b/0xb0
[ 1120.370095]  loop_add+0x32b/0x9c0
[ 1120.373537]  ? loop_lookup+0x102/0x220
[ 1120.377411]  ? loop_queue_rq+0x6c0/0x6c0
[ 1120.381467]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1120.386644]  loop_control_ioctl+0x178/0x500
[ 1120.390953]  ? loop_add+0x9c0/0x9c0
[ 1120.394567]  ? expand_files.part.8+0x9a0/0x9a0
[ 1120.399139]  ? kasan_check_write+0x14/0x20
[ 1120.403361]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1120.408278]  ? wait_for_completion+0x870/0x870
[ 1120.412851]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1120.418028]  ? loop_add+0x9c0/0x9c0
[ 1120.421642]  do_vfs_ioctl+0x1cf/0x16a0
[ 1120.425523]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1120.429921]  ? fget_raw+0x20/0x20
[ 1120.433365]  ? __sb_end_write+0xac/0xe0
[ 1120.437329]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1120.442849]  ? fput+0x130/0x1a0
[ 1120.446115]  ? ksys_write+0x1a6/0x250
[ 1120.449918]  ? security_file_ioctl+0x94/0xc0
[ 1120.454334]  ksys_ioctl+0xa9/0xd0
[ 1120.457778]  __x64_sys_ioctl+0x73/0xb0
[ 1120.461661]  do_syscall_64+0x1b1/0x800
[ 1120.465547]  ? finish_task_switch+0x1ca/0x810
[ 1120.470034]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1120.474952]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1120.479881]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1120.485245]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1120.490083]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1120.495257] RIP: 0033:0x455329
[ 1120.498431] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1120.506131] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1120.513385] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1120.520638] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1120.527897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1120.535155] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000016
2018/04/19 14:16:14 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = semget$private(0x0, 0x0, 0x2)
semctl$GETVAL(r1, 0x2, 0xc, &(0x7f0000000040)=""/4096)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x20)
syz_open_dev$tun(&(0x7f0000001040)='/dev/net/tun\x00', 0x0, 0x200000)

2018/04/19 14:16:14 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$EVIOCGABS2F(r1, 0x8018456f, &(0x7f0000000040)=""/183)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0xa)

2018/04/19 14:16:14 executing program 3 (fault-call:2 fault-nth:23):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:14 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000040)={'gre0\x00', {0x2, 0x4e21, @multicast2=0xe0000002}})
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$ASHMEM_SET_NAME(r1, 0x41007701, &(0x7f0000000080)='gre0\x00')
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:14 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x400, 0x0)

2018/04/19 14:16:14 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatA')

2018/04/19 14:16:14 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_d/sc\x00', 0x2, 0x0)

2018/04/19 14:16:14 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x39c42c01, 0x80400)
ioctl$KDGKBENT(r1, 0x4b46, &(0x7f00000000c0)={0x34, 0x40, 0x7f})
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$sock_inet6_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:14 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, r2)

2018/04/19 14:16:14 executing program 1:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x400000, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xfffffffffffffff7)
ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000080)={'veth0_to_team\x00', 0xff})
ioctl$DRM_IOCTL_MODESET_CTL(r0, 0x40086408, &(0x7f00000000c0)={0x5, 0x2})
ioctl$KVM_SMI(r0, 0xaeb7)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:14 executing program 1:
syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x8, 0x101000)

[ 1120.769399] FAULT_INJECTION: forcing a failure.
[ 1120.769399] name failslab, interval 1, probability 0, space 0, times 0
[ 1120.780727] CPU: 1 PID: 29153 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1120.780738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
2018/04/19 14:16:14 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_di/c\x00', 0x2, 0x0)

2018/04/19 14:16:14 executing program 3 (fault-call:2 fault-nth:24):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:14 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f0000000040)=""/80)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000000)={'bcsf0\x00', 0x400})

[ 1120.780744] Call Trace:
[ 1120.780769]  dump_stack+0x1b9/0x294
[ 1120.780791]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1120.780820]  should_fail.cold.4+0xa/0x1a
[ 1120.780840]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1120.780856]  ? kmem_cache_alloc+0x12e/0x760
[ 1120.780871]  ? mempool_alloc_slab+0x44/0x60
[ 1120.780885]  ? mempool_create_node+0x2cf/0x610
[ 1120.780899]  ? mempool_create+0x37/0x40
[ 1120.780913]  ? bioset_create+0x477/0x900
[ 1120.780927]  ? blk_alloc_queue_node+0x16e/0xe40
[ 1120.780941]  ? blk_mq_init_queue+0x4b/0xb0
2018/04/19 14:16:14 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080))
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000000c0)={0x7, <r3=>0x0, 0x10000, 0x401})
ioctl$DRM_IOCTL_AGP_UNBIND(r2, 0x40106437, &(0x7f0000000100)={r3, 0x2})
ioctl$DRM_IOCTL_ADD_BUFS(r2, 0xc0206416, &(0x7f0000000040)={0x7ff, 0x7fffffff, 0x4, 0x1, 0x8})

2018/04/19 14:16:14 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
openat$cgroup(r1, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$int_out(r0, 0x2, &(0x7f0000000080))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:14 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e657473746174f6")

2018/04/19 14:16:14 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x6, 0x0)

[ 1120.780958]  ? graph_lock+0x170/0x170
[ 1120.780974]  ? __x64_sys_ioctl+0x73/0xb0
[ 1120.780989]  ? do_syscall_64+0x1b1/0x800
[ 1120.781007]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1120.781029]  ? find_held_lock+0x36/0x1c0
[ 1120.781051]  ? __lock_is_held+0xb5/0x140
[ 1120.781084]  ? check_same_owner+0x320/0x320
[ 1120.781099]  ? __lock_is_held+0xb5/0x140
[ 1120.781121]  ? rcu_note_context_switch+0x710/0x710
[ 1120.781144]  __should_failslab+0x124/0x180
[ 1120.781165]  should_failslab+0x9/0x14
[ 1120.781182]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1120.781200]  ? init_wait_entry+0x1b0/0x1b0
[ 1120.781220]  ? mempool_alloc_slab+0x44/0x60
[ 1120.781237]  ? mempool_free+0x370/0x370
[ 1120.781254]  mempool_create_node+0x84/0x610
[ 1120.781271]  ? mempool_alloc_slab+0x60/0x60
[ 1120.781288]  ? mempool_free+0x370/0x370
[ 1120.781303]  ? mempool_alloc_slab+0x60/0x60
[ 1120.781321]  mempool_create+0x37/0x40
[ 1120.781339]  bioset_create+0x6b3/0x900
[ 1120.781359]  ? bioset_free+0x320/0x320
[ 1120.781374]  ? debug_mutex_init+0x1c/0x60
[ 1120.781396]  blk_alloc_queue_node+0x16e/0xe40
2018/04/19 14:16:14 executing program 1:
r0 = msgget$private(0x0, 0x2)
msgrcv(r0, &(0x7f00000002c0)={0x0, ""/116}, 0x45436889acfa1697, 0x3, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x800, 0x80000)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x805, 0x0)
ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000240)={0x3, r2})
r3 = syz_open_dev$mouse(&(0x7f00000003c0)='/dev/input/mouse#\x00', 0x7, 0x58000)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000280))
getdents64(r3, &(0x7f0000000080)=""/219, 0xdb)
syz_open_dev$binder(&(0x7f0000000180)='/dev/binder#\x00', 0x0, 0x800)

[ 1120.781422]  ? blk_init_allocated_queue+0x620/0x620
[ 1120.781435]  ? __mutex_init+0x1ef/0x280
[ 1120.781452]  ? __ia32_sys_membarrier+0x150/0x150
[ 1120.781474]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1120.781497]  ? __kmalloc_node+0x47/0x70
[ 1120.781517]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1120.781537]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1120.781563]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1120.781587]  blk_mq_init_queue+0x4b/0xb0
[ 1120.781604]  loop_add+0x32b/0x9c0
[ 1120.781622]  ? loop_lookup+0x102/0x220
[ 1120.781637]  ? loop_queue_rq+0x6c0/0x6c0
[ 1120.781660]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1120.781677]  loop_control_ioctl+0x178/0x500
[ 1120.781692]  ? loop_add+0x9c0/0x9c0
[ 1120.781709]  ? expand_files.part.8+0x9a0/0x9a0
[ 1120.781726]  ? kasan_check_write+0x14/0x20
[ 1120.781742]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1120.781762]  ? wait_for_completion+0x870/0x870
[ 1120.781780]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1120.781793]  ? loop_add+0x9c0/0x9c0
[ 1120.781811]  do_vfs_ioctl+0x1cf/0x16a0
[ 1120.781834]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1120.781852]  ? fget_raw+0x20/0x20
[ 1120.781870]  ? __sb_end_write+0xac/0xe0
[ 1120.781891]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1120.781905]  ? fput+0x130/0x1a0
[ 1120.781920]  ? ksys_write+0x1a6/0x250
[ 1120.781940]  ? security_file_ioctl+0x94/0xc0
[ 1120.781961]  ksys_ioctl+0xa9/0xd0
[ 1120.781982]  __x64_sys_ioctl+0x73/0xb0
[ 1120.782000]  do_syscall_64+0x1b1/0x800
[ 1120.782014]  ? finish_task_switch+0x1ca/0x810
[ 1120.782032]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1120.782050]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1120.782070]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1120.782091]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1120.782113]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1120.782124] RIP: 0033:0x455329
[ 1120.782133] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1120.782149] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1120.782158] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1120.782165] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/04/19 14:16:14 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x0)
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r0, 0x800442d4, &(0x7f0000000000)=0x9)
ioctl$KDADDIO(r0, 0x4b34, 0x8739)
ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000080)={'eql\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x15}}})

[ 1120.782174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1120.782181] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000017
[ 1120.869246] FAULT_INJECTION: forcing a failure.
[ 1120.869246] name failslab, interval 1, probability 0, space 0, times 0
[ 1121.243065] CPU: 1 PID: 29172 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1121.243074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1121.243079] Call Trace:
[ 1121.243105]  dump_stack+0x1b9/0x294
[ 1121.243126]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1121.271005]  ? __kernel_text_address+0xd/0x40
[ 1121.275510]  ? unwind_get_return_address+0x61/0xa0
[ 1121.280438]  should_fail.cold.4+0xa/0x1a
[ 1121.284489]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1121.289576]  ? save_stack+0xa9/0xd0
[ 1121.293199]  ? graph_lock+0x170/0x170
[ 1121.296996]  ? mempool_create+0x37/0x40
[ 1121.300958]  ? bioset_create+0x6b3/0x900
[ 1121.305006]  ? blk_alloc_queue_node+0x16e/0xe40
[ 1121.309675]  ? blk_mq_init_queue+0x4b/0xb0
[ 1121.313905]  ? loop_add+0x32b/0x9c0
[ 1121.317528]  ? loop_control_ioctl+0x178/0x500
[ 1121.322023]  ? find_held_lock+0x36/0x1c0
[ 1121.326077]  ? __lock_is_held+0xb5/0x140
[ 1121.330128]  ? check_same_owner+0x320/0x320
[ 1121.334433]  ? rcu_note_context_switch+0x710/0x710
[ 1121.339361]  __should_failslab+0x124/0x180
[ 1121.343589]  should_failslab+0x9/0x14
[ 1121.347387]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1121.352483]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1121.357490]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1121.362751]  ? init_wait_entry+0x1b0/0x1b0
[ 1121.366981]  __kmalloc_node+0x33/0x70
[ 1121.370764]  ? mempool_free+0x370/0x370
[ 1121.374730]  mempool_create_node+0x111/0x610
[ 1121.379129]  ? mempool_alloc_slab+0x60/0x60
[ 1121.383442]  ? mempool_free+0x370/0x370
[ 1121.387404]  ? mempool_alloc_slab+0x60/0x60
[ 1121.391710]  mempool_create+0x37/0x40
[ 1121.395516]  bioset_create+0x6b3/0x900
[ 1121.399393]  ? bioset_free+0x320/0x320
[ 1121.403263]  ? debug_mutex_init+0x1c/0x60
[ 1121.407397]  blk_alloc_queue_node+0x16e/0xe40
[ 1121.411900]  ? blk_init_allocated_queue+0x620/0x620
[ 1121.416905]  ? __mutex_init+0x1ef/0x280
[ 1121.420871]  ? __ia32_sys_membarrier+0x150/0x150
[ 1121.425618]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1121.430185]  ? __kmalloc_node+0x47/0x70
[ 1121.434154]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1121.438727]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1121.443382]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1121.447688]  blk_mq_init_queue+0x4b/0xb0
[ 1121.451732]  loop_add+0x32b/0x9c0
[ 1121.455168]  ? loop_lookup+0x102/0x220
[ 1121.459052]  ? loop_queue_rq+0x6c0/0x6c0
[ 1121.463107]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1121.468278]  loop_control_ioctl+0x178/0x500
[ 1121.472580]  ? loop_add+0x9c0/0x9c0
[ 1121.476190]  ? expand_files.part.8+0x9a0/0x9a0
[ 1121.480751]  ? kasan_check_write+0x14/0x20
[ 1121.484968]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1121.489895]  ? wait_for_completion+0x870/0x870
[ 1121.494479]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1121.499657]  ? loop_add+0x9c0/0x9c0
[ 1121.503266]  do_vfs_ioctl+0x1cf/0x16a0
[ 1121.507137]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1121.511540]  ? fget_raw+0x20/0x20
[ 1121.514988]  ? schedule+0xef/0x430
[ 1121.518525]  ? __schedule+0x1e30/0x1e30
[ 1121.522484]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1121.528005]  ? fput+0x130/0x1a0
[ 1121.531278]  ? ksys_write+0x1a6/0x250
[ 1121.535061]  ? security_file_ioctl+0x94/0xc0
[ 1121.539459]  ksys_ioctl+0xa9/0xd0
[ 1121.542912]  __x64_sys_ioctl+0x73/0xb0
[ 1121.546795]  do_syscall_64+0x1b1/0x800
[ 1121.550674]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1121.555506]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1121.560427]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1121.565434]  ? retint_user+0x18/0x18
[ 1121.569146]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1121.573993]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1121.579175] RIP: 0033:0x455329
[ 1121.582352] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1121.590053] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1121.597309] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1121.604570] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1121.611832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:16:15 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_di.c\x00', 0x2, 0x0)

[ 1121.619084] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000018
2018/04/19 14:16:15 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstatL')

2018/04/19 14:16:15 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:15 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:15 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:15 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)=<r1=>0x0)
syz_open_procfs(r1, &(0x7f0000000080)='net/dev_mcast\x00')

2018/04/19 14:16:15 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-net\x00', 0x2, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0x8)
ioctl$FIONREAD(r1, 0x541b, &(0x7f00000000c0))

2018/04/19 14:16:15 executing program 3 (fault-call:2 fault-nth:25):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:15 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:15 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:15 executing program 0:
chroot(&(0x7f0000000000)='./file0\x00')
chroot(&(0x7f00000001c0)='./file1\x00')
syz_mount_image$bfs(&(0x7f0000000040)='bfs\x00', &(0x7f0000000080)='./file0\x00', 0x7, 0x2, &(0x7f0000000180)=[{&(0x7f00000000c0)="f5e43458d89ac9cddeb0da7c7482459f84d7c3a470dbec46036cccc24b241b472d4197f5b71a5ab7c0d3887487da52805d24ba1a3b283ac4c29553b997679f7fd42ecbe7f7ffc8ed064e7739ef863189376c901a7a51a4cb1023c9728a2f33d1ac3128", 0x63, 0xcf60}, {&(0x7f0000000140)="d467e13bcfba66f5", 0x8, 0x6573}], 0x800010, 0x0)

2018/04/19 14:16:15 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000)={0x5, 0x105, 0x5})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:15 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x400, 0xfffffffffffffffe)
socket$rds(0x15, 0x5, 0x0)

2018/04/19 14:16:15 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

[ 1122.140308] FAULT_INJECTION: forcing a failure.
[ 1122.140308] name failslab, interval 1, probability 0, space 0, times 0
[ 1122.151638] CPU: 1 PID: 29234 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1122.158833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1122.168185] Call Trace:
[ 1122.170783]  dump_stack+0x1b9/0x294
[ 1122.174427]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1122.179627]  ? is_bpf_text_address+0xd7/0x170
[ 1122.184137]  should_fail.cold.4+0xa/0x1a
[ 1122.188210]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1122.193329]  ? graph_lock+0x170/0x170
[ 1122.197135]  ? save_stack+0xa9/0xd0
[ 1122.200775]  ? print_usage_bug+0xc0/0xc0
[ 1122.204846]  ? kasan_kmalloc+0xc4/0xe0
[ 1122.208748]  ? find_held_lock+0x36/0x1c0
[ 1122.212822]  ? __lock_is_held+0xb5/0x140
[ 1122.216908]  ? check_same_owner+0x320/0x320
[ 1122.221237]  ? rcu_note_context_switch+0x710/0x710
[ 1122.226168]  ? __lockdep_init_map+0x105/0x590
[ 1122.230677]  __should_failslab+0x124/0x180
[ 1122.234921]  ? mempool_free+0x370/0x370
[ 1122.238909]  should_failslab+0x9/0x14
[ 1122.242722]  kmem_cache_alloc+0x2af/0x760
[ 1122.246876]  ? init_wait_entry+0x1b0/0x1b0
[ 1122.251125]  ? mempool_free+0x370/0x370
[ 1122.255098]  mempool_alloc_slab+0x44/0x60
[ 1122.259236]  mempool_create_node+0x2cf/0x610
[ 1122.263640]  ? mempool_free+0x370/0x370
[ 1122.267604]  ? mempool_alloc_slab+0x60/0x60
[ 1122.271914]  mempool_create+0x37/0x40
[ 1122.275704]  bioset_create+0x6b3/0x900
[ 1122.279582]  ? bioset_free+0x320/0x320
[ 1122.283455]  ? debug_mutex_init+0x1c/0x60
[ 1122.287596]  blk_alloc_queue_node+0x16e/0xe40
[ 1122.292082]  ? blk_init_allocated_queue+0x620/0x620
[ 1122.297081]  ? __mutex_init+0x1ef/0x280
[ 1122.301045]  ? __ia32_sys_membarrier+0x150/0x150
[ 1122.305795]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1122.310369]  ? __kmalloc_node+0x47/0x70
[ 1122.314333]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1122.318903]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1122.323569]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1122.327881]  blk_mq_init_queue+0x4b/0xb0
[ 1122.331931]  loop_add+0x32b/0x9c0
[ 1122.335374]  ? loop_lookup+0x102/0x220
[ 1122.339247]  ? loop_queue_rq+0x6c0/0x6c0
[ 1122.343304]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1122.348483]  loop_control_ioctl+0x178/0x500
[ 1122.352793]  ? loop_add+0x9c0/0x9c0
[ 1122.356408]  ? expand_files.part.8+0x9a0/0x9a0
[ 1122.361293]  ? kasan_check_write+0x14/0x20
[ 1122.365520]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1122.370439]  ? wait_for_completion+0x870/0x870
[ 1122.375015]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1122.380195]  ? loop_add+0x9c0/0x9c0
[ 1122.383817]  do_vfs_ioctl+0x1cf/0x16a0
[ 1122.387696]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1122.392094]  ? fget_raw+0x20/0x20
[ 1122.395536]  ? __sb_end_write+0xac/0xe0
[ 1122.399500]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1122.405025]  ? fput+0x130/0x1a0
[ 1122.408293]  ? ksys_write+0x1a6/0x250
[ 1122.412084]  ? security_file_ioctl+0x94/0xc0
[ 1122.416484]  ksys_ioctl+0xa9/0xd0
[ 1122.419928]  __x64_sys_ioctl+0x73/0xb0
[ 1122.423805]  do_syscall_64+0x1b1/0x800
[ 1122.427677]  ? finish_task_switch+0x1ca/0x810
[ 1122.432162]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1122.437080]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1122.442000]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1122.447360]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1122.452194]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1122.457366] RIP: 0033:0x455329
[ 1122.460538] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1122.468234] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1122.475491] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1122.482746] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1122.490000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1122.497260] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000019
2018/04/19 14:16:16 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
ioctl$KVM_GET_IRQCHIP(r0, 0xc208ae62, &(0x7f0000000040))
socket$inet6_udp(0xa, 0x2, 0x0)

2018/04/19 14:16:16 executing program 1:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000740)='/dev/rfkill\x00', 0x40, 0x0)
syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x200, 0x8, &(0x7f0000000640)=[{&(0x7f0000000080)="4ec920def7f1a6c04db0d1ae39c3eddddbcdd4390780e92c1245285fe89507d8642dac34201fd526a7d1c7d04c6b321e1a24569126774f7109ee38d47dc5c6fc59d0e655ccab70664a12d1b6e6de9c978e60e810d5203554f265817b7895ea50efb84963915e4901c5524af2cf38aa7b9cd27ae2707b2343cbb2efd45cd9c548d6954591090101dd853bc900eeaba3b799601bc45412ab693fbea5fa3825b4a9894d235f98bd034be281878053257400635507a3a5d9e19d", 0xb8, 0x7fffffff}, {&(0x7f0000000140)="1191ee99d04aaba62f6fa4f0faad1964bf5ced06b31b571cebea32090301598bde8311cf31ae2b1576bc37d3781bd88fa7b1542745792c0c1ad8cf5ce0e020d40d3cb99157e4cf6c97d2a6659438f60e7c4a698d467cbec8f7f65f48d6d5b909f2f18f6f1a82126b9d25a07109d281953304fb28135b1f91a32dda337e3875f9bab7de16fe547cb13bc601d032c152f9c18a7452af389e35604ef99f2bb1bf0e715e90a146f6a512d50270e64457717d2be62cfb319396e50c22f004792facb33967e5db36267dabf3a4bf524224e3e8a3294e2b3f438658fff5cf6689b50c181279010d9fb1744d68567a", 0xeb, 0x7}, {&(0x7f0000000240)="6f6ae875a98c504cd38c508f711fcda83df1328e3d61eb03d6e238a4c9eec8e22270fa719e370fd9d39a4d61e5", 0x2d, 0x800}, {&(0x7f0000000280)="7072685debffbaec2cd19c62d59b77eae239f11c88448dc026128748e553fec6dfc81fb372438bfbcd6e4acd62e55ed50d16c77b076e1705af6f4cfa7c1290d7d07cadb69c002a1ac42b1bd17a77723d0dcdf768a945e2c5d53c2ea24df2c330d2714b1f210aba9271d95c51843209d5111a927cf20ab53379a0c2e1696c4355f9ebe632fc3262198e9adb459897222f23b758fe62587c4c2fd5abd81b4d1a06b93db7d3f23d70ab4dc6d790f90b538597869a2b783d1808213cb8897e1ad7afa9d06bd0acb644264c9b79fb89d62dd50667b2ead2", 0xd5, 0x80}, {&(0x7f0000000380)="fb46beaa51a296c55b883aecbca0221f61aeb1802d9df2aa3e116911c45e27b37afb737cbc4ba3d488f8059ca7c6d105cbd6763faf310e5824256f96b51fbfc26d587b36c4ba799ddb6902c089678fec8b2ce0632813ed2b742db6e7df0039663330097b3c866c6b011c30696fcb3a00302ee8f4bb66dfbfa00284a6a3ae2ca1ab259d52838a2e3c2161ba557cee83c9926bef3ded4a1b7c01ebdb667f1515e2db17d941a9ed39e28742ac42f6eb2b6eafe8021df0e2457ad2081c22818b6ab5b21a349bc0ddf86f6b2afde262d9a6002fa8", 0xd2, 0x200}, {&(0x7f0000000480)="e6a5087db6a7f760cf36d34c9cfbabfe6a01e2c72ddc2d5375e50a1f646fd7670335bdf9099cd0cdd3e7db6923d0174a03525e07f672038edda3b773939b3e8b34ee262485fe56872b5d73d15c45ed63f451b4eeac53f3bd81cc7cb21a095e3e051daf20c7dfa47c4ac3a806ab0a42055680c32489", 0x75, 0x100}, {&(0x7f0000000500)="ca2c4c89cf68c659c17ac88ecb67fff525cf3d1b7fc9017033d8d16719551020bacce6299720b042fdcb069f5a5c1952de7a8d2e56420583c8199507d744a01373c9e287ccdcc5", 0x47, 0x6}, {&(0x7f0000000580)="5ca0bc5e08fdb84ab14d78fb41b024f00924f4a7f98cf21b8ef1673eff87b87ecba67e46a5edcd483d5305e128ef27029229873e5231003a11052798c3607bace37d8c9cc203e7bf015902e8b1cc72eac9503fa6b1df780ac3c3309920824d61cb3c1c97d2f0f69e100392a0befff08b40dacb7b4c647ad9fd3622448d09481a5a8a66d00cead9fbc5b61d9151dc1eb2f79f4a995df585310a3e6cc72ba26752374c5ed04e848aa096aaaa9e0c7983b17692d89e9c173776", 0xb8, 0x800}], 0x200000, &(0x7f0000000700)={[{@user_subvol_rm='user_subvol_rm_allowed', 0x2c}]})

2018/04/19 14:16:16 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000040)={0x0, 0x4, 0x401})

2018/04/19 14:16:16 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:16 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f64697363eb", 0x2, 0x0)

2018/04/19 14:16:16 executing program 3 (fault-call:2 fault-nth:26):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:16 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000000))
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r1)

2018/04/19 14:16:16 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000)={0x0, 0xfffffffffffffffd})
ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0)

[ 1122.653552] FAULT_INJECTION: forcing a failure.
[ 1122.653552] name failslab, interval 1, probability 0, space 0, times 0
[ 1122.664926] CPU: 0 PID: 29257 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1122.672114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1122.681453] Call Trace:
[ 1122.684035]  dump_stack+0x1b9/0x294
[ 1122.687653]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1122.692829]  ? __save_stack_trace+0x7e/0xd0
[ 1122.697144]  should_fail.cold.4+0xa/0x1a
[ 1122.701193]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1122.706284]  ? kasan_kmalloc+0xc4/0xe0
[ 1122.710160]  ? kasan_slab_alloc+0x12/0x20
[ 1122.714291]  ? kmem_cache_alloc+0x12e/0x760
[ 1122.718600]  ? mempool_alloc_slab+0x44/0x60
[ 1122.722905]  ? mempool_create_node+0x2cf/0x610
[ 1122.727477]  ? mempool_create+0x37/0x40
[ 1122.731435]  ? bioset_create+0x6b3/0x900
[ 1122.735482]  ? graph_lock+0x170/0x170
[ 1122.739270]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1122.743316]  ? ksys_ioctl+0xa9/0xd0
[ 1122.746927]  ? __x64_sys_ioctl+0x73/0xb0
[ 1122.750975]  ? do_syscall_64+0x1b1/0x800
[ 1122.755027]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1122.760380]  ? find_held_lock+0x36/0x1c0
[ 1122.764432]  ? __lock_is_held+0xb5/0x140
[ 1122.768491]  ? check_same_owner+0x320/0x320
[ 1122.772807]  ? rcu_note_context_switch+0x710/0x710
[ 1122.777735]  __should_failslab+0x124/0x180
[ 1122.781957]  ? mempool_free+0x370/0x370
[ 1122.785920]  should_failslab+0x9/0x14
[ 1122.789707]  kmem_cache_alloc+0x2af/0x760
[ 1122.793849]  ? init_wait_entry+0x1b0/0x1b0
[ 1122.798073]  ? mempool_alloc_slab+0x44/0x60
[ 1122.802381]  ? mempool_free+0x370/0x370
[ 1122.806346]  mempool_alloc_slab+0x44/0x60
[ 1122.810482]  mempool_create_node+0x2cf/0x610
[ 1122.814884]  ? mempool_free+0x370/0x370
[ 1122.818843]  ? mempool_alloc_slab+0x60/0x60
[ 1122.823151]  mempool_create+0x37/0x40
[ 1122.826940]  bioset_create+0x6b3/0x900
[ 1122.830817]  ? bioset_free+0x320/0x320
[ 1122.834694]  ? debug_mutex_init+0x1c/0x60
[ 1122.838836]  blk_alloc_queue_node+0x16e/0xe40
[ 1122.843320]  ? blk_init_allocated_queue+0x620/0x620
[ 1122.848323]  ? __mutex_init+0x1ef/0x280
[ 1122.852286]  ? __ia32_sys_membarrier+0x150/0x150
[ 1122.857036]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1122.861609]  ? __kmalloc_node+0x47/0x70
[ 1122.865573]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1122.870143]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1122.874809]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1122.879122]  blk_mq_init_queue+0x4b/0xb0
[ 1122.883171]  loop_add+0x32b/0x9c0
[ 1122.886610]  ? loop_lookup+0x102/0x220
[ 1122.890489]  ? loop_queue_rq+0x6c0/0x6c0
[ 1122.894542]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1122.899725]  loop_control_ioctl+0x178/0x500
[ 1122.904034]  ? loop_add+0x9c0/0x9c0
[ 1122.907647]  ? expand_files.part.8+0x9a0/0x9a0
[ 1122.912219]  ? kasan_check_write+0x14/0x20
[ 1122.916441]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1122.921360]  ? wait_for_completion+0x870/0x870
[ 1122.925929]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1122.931102]  ? loop_add+0x9c0/0x9c0
[ 1122.934719]  do_vfs_ioctl+0x1cf/0x16a0
[ 1122.938598]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1122.942992]  ? fget_raw+0x20/0x20
[ 1122.946436]  ? __sb_end_write+0xac/0xe0
[ 1122.950399]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1122.955919]  ? fput+0x130/0x1a0
[ 1122.959184]  ? ksys_write+0x1a6/0x250
[ 1122.962974]  ? security_file_ioctl+0x94/0xc0
[ 1122.967372]  ksys_ioctl+0xa9/0xd0
[ 1122.970816]  __x64_sys_ioctl+0x73/0xb0
[ 1122.974694]  do_syscall_64+0x1b1/0x800
[ 1122.978572]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1122.983489]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1122.988407]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1122.993760]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1122.998596]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
2018/04/19 14:16:16 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000c41ff7)='/dev/kvm\x00', 0xfffffffffffffffc, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000000)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000100)={0x0, 0x0, 0x0, &(0x7f0000000140)})
r4 = dup(r0)
ioctl$PIO_UNIMAPCLR(r4, 0x4b68, &(0x7f0000000000))
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a85320, &(0x7f0000000180)={{0x0, 0x2}, 'port1\x00', 0x8, 0x20048, 0x4, 0x2, 0x7, 0x7, 0x7, 0x0, 0x0, 0xc800000})
ioctl$KDDISABIO(r4, 0x4b37)
ioctl$LOOP_CTL_ADD(r4, 0x4c81, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r4, 0x40a85321, &(0x7f0000000040)={{0x0, 0xfff}, 'port1\x00', 0x20, 0x1000, 0x3ff, 0x5, 0x10000, 0x3, 0x1000, 0x0, 0x2, 0x9})

2018/04/19 14:16:16 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="73797ace5d3140facffc5344f8aae6a1f0107c10082625bd148372299472368447b8d7fcadddfedded1041a4ec060000000266c471331d5fcc3ba6b8a8ccecd47d77cebe33bba2c379f253101f18"], 0x4c)
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000080)={0x10005, 0x0, 0x3})

[ 1123.003769] RIP: 0033:0x455329
[ 1123.006940] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1123.014636] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1123.021890] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1123.029143] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1123.036394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1123.043651] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000001a
2018/04/19 14:16:16 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:16 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:16 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x4, 0x200008)
ioctl$LOOP_SET_FD(r0, 0x4c00, r0)

2018/04/19 14:16:16 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x100, 0x0)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000080))
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:16 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KVM_S390_INTERRUPT_CPU(r1, 0x4010ae94, &(0x7f0000000040)={0x4, 0xf1d, 0x2})

2018/04/19 14:16:16 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000140)={0x7, &(0x7f0000000100)=[{}, {}, {}, {}, {<r1=>0x0}, {}, {}]})
ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000180)={r1, 0x3})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000080)={&(0x7f0000000000)=[0x233f9545, 0x7fff, 0xffff], 0x3, 0x79, 0xffffffff, 0x800, 0x1, 0xaa6, {0x100, 0x7fff, 0xfffffffffffffe00, 0x7ff, 0x5, 0x4, 0xbd47, 0x9, 0x9, 0x100, 0x7, 0x7fff, 0x6, 0x9, "7c5e14f22012f2ff939bf698c7f767f8371a9a1ba08771719cbc363852b9489a"}})

2018/04/19 14:16:16 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000080)={0x44f, 0xd, 0x6, 0x4, 0x3, [{0x80000001, 0x3, 0x7, 0x0, 0x0, 0x1000}, {0x2, 0x6, 0x4, 0x0, 0x0, 0xffe9653c572e4f4}, {0xffffffffffffffff, 0x6, 0xfffffffffffffffb, 0x0, 0x0, 0x1}]})

2018/04/19 14:16:16 executing program 3 (fault-call:2 fault-nth:27):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:16 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, <r2=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={r2, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:16 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:16 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:16 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000080)={0x0, &(0x7f0000000040)})
syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:16 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000040)={0xbc0})

[ 1123.360814] FAULT_INJECTION: forcing a failure.
[ 1123.360814] name failslab, interval 1, probability 0, space 0, times 0
[ 1123.372150] CPU: 1 PID: 29304 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1123.379358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1123.388711] Call Trace:
[ 1123.391309]  dump_stack+0x1b9/0x294
[ 1123.394945]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1123.400152]  should_fail.cold.4+0xa/0x1a
[ 1123.404226]  ? __lock_is_held+0xb5/0x140
[ 1123.408287]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1123.413383]  ? graph_lock+0x170/0x170
[ 1123.417175]  ? __lock_is_held+0xb5/0x140
[ 1123.421231]  ? find_held_lock+0x36/0x1c0
[ 1123.425284]  ? __lock_is_held+0xb5/0x140
[ 1123.429346]  ? check_same_owner+0x320/0x320
[ 1123.433659]  ? rcu_note_context_switch+0x710/0x710
[ 1123.438581]  __should_failslab+0x124/0x180
[ 1123.442813]  should_failslab+0x9/0x14
[ 1123.446606]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1123.451699]  ? bioset_free+0x320/0x320
[ 1123.455576]  bdi_alloc_node+0x67/0xe0
[ 1123.459363]  blk_alloc_queue_node+0x1c1/0xe40
[ 1123.463849]  ? blk_init_allocated_queue+0x620/0x620
[ 1123.468848]  ? __mutex_init+0x1ef/0x280
[ 1123.472810]  ? __ia32_sys_membarrier+0x150/0x150
[ 1123.477556]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1123.482129]  ? __kmalloc_node+0x47/0x70
[ 1123.486091]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1123.490667]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1123.495331]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1123.499647]  blk_mq_init_queue+0x4b/0xb0
[ 1123.503700]  loop_add+0x32b/0x9c0
[ 1123.507144]  ? loop_lookup+0x102/0x220
[ 1123.511030]  ? loop_queue_rq+0x6c0/0x6c0
[ 1123.515090]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1123.520272]  loop_control_ioctl+0x178/0x500
[ 1123.524583]  ? loop_add+0x9c0/0x9c0
[ 1123.528198]  ? expand_files.part.8+0x9a0/0x9a0
[ 1123.532768]  ? kasan_check_write+0x14/0x20
[ 1123.536990]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1123.541912]  ? wait_for_completion+0x870/0x870
[ 1123.546483]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1123.551657]  ? loop_add+0x9c0/0x9c0
[ 1123.555273]  do_vfs_ioctl+0x1cf/0x16a0
[ 1123.559156]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1123.563551]  ? fget_raw+0x20/0x20
[ 1123.566994]  ? __sb_end_write+0xac/0xe0
[ 1123.570963]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1123.576484]  ? fput+0x130/0x1a0
[ 1123.579751]  ? ksys_write+0x1a6/0x250
[ 1123.583540]  ? security_file_ioctl+0x94/0xc0
[ 1123.587937]  ksys_ioctl+0xa9/0xd0
[ 1123.591382]  __x64_sys_ioctl+0x73/0xb0
[ 1123.595260]  do_syscall_64+0x1b1/0x800
[ 1123.599136]  ? finish_task_switch+0x1ca/0x810
[ 1123.603626]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1123.608550]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1123.613471]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1123.618827]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1123.623661]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1123.628833] RIP: 0033:0x455329
[ 1123.632010] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1123.639711] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1123.646967] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1123.654219] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/04/19 14:16:16 executing program 0:
r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xfb9, 0x200004)
ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))
pwrite64(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)

2018/04/19 14:16:17 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:17 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:17 executing program 1:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x100000000, 0x2)

[ 1123.661471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1123.668723] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000001b
2018/04/19 14:16:17 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:17 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:17 executing program 0:
openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-vsock\x00', 0x2, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x80, 0x0)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000040))
ioctl$TIOCLINUX7(r0, 0x541c, &(0x7f0000000080)={0x7, 0x8001})

2018/04/19 14:16:17 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x7dd7, 0xfffffffffffffffd)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0xfffffffffffffffe, 0x7fff, 0x2})

2018/04/19 14:16:17 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000080)=0xf000)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x8001, <r3=>0x0, 0x10002, 0xff})
ioctl$DRM_IOCTL_SG_FREE(r1, 0x40106439, &(0x7f0000000040)={0x101, r3})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:17 executing program 3 (fault-call:2 fault-nth:28):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:17 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x40000)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1123.910257] FAULT_INJECTION: forcing a failure.
[ 1123.910257] name failslab, interval 1, probability 0, space 0, times 0
[ 1123.921610] CPU: 1 PID: 29335 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1123.928804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1123.938154] Call Trace:
[ 1123.940750]  dump_stack+0x1b9/0x294
[ 1123.944392]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1123.949597]  should_fail.cold.4+0xa/0x1a
[ 1123.953653]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1123.958743]  ? zap_class+0x720/0x720
[ 1123.962441]  ? trace_hardirqs_on+0xd/0x10
[ 1123.966579]  ? graph_lock+0x170/0x170
[ 1123.970368]  ? graph_lock+0x170/0x170
[ 1123.974161]  ? find_held_lock+0x36/0x1c0
[ 1123.978217]  ? __lock_is_held+0xb5/0x140
[ 1123.982279]  ? check_same_owner+0x320/0x320
[ 1123.986591]  ? rcu_note_context_switch+0x710/0x710
[ 1123.991513]  __should_failslab+0x124/0x180
[ 1123.995738]  should_failslab+0x9/0x14
[ 1123.999525]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1124.004184]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[ 1124.009275]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1124.014284]  wb_congested_get_create+0x1ca/0x450
[ 1124.019037]  ? wb_wakeup_delayed+0xf0/0xf0
[ 1124.023260]  ? __lockdep_init_map+0x105/0x590
[ 1124.027747]  wb_init+0x62e/0x9e0
[ 1124.031103]  ? bdi_put+0x180/0x180
[ 1124.034636]  ? mark_held_locks+0xc9/0x160
[ 1124.038773]  ? __x64_sys_ioctl+0x73/0xb0
[ 1124.042823]  ? __raw_spin_lock_init+0x1c/0x100
[ 1124.047397]  ? mark_held_locks+0xc9/0x160
[ 1124.051537]  ? __raw_spin_lock_init+0x1c/0x100
[ 1124.056108]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1124.061118]  ? lockdep_init_map+0x9/0x10
[ 1124.065170]  bdi_init+0x353/0x510
[ 1124.068612]  ? wb_init+0x9e0/0x9e0
[ 1124.072138]  ? bdi_alloc_node+0x67/0xe0
[ 1124.076098]  ? bdi_alloc_node+0x67/0xe0
[ 1124.080064]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1124.085066]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1124.090331]  ? bioset_free+0x320/0x320
[ 1124.094210]  bdi_alloc_node+0x81/0xe0
[ 1124.097999]  blk_alloc_queue_node+0x1c1/0xe40
[ 1124.102489]  ? blk_init_allocated_queue+0x620/0x620
[ 1124.107488]  ? __mutex_init+0x1ef/0x280
[ 1124.111450]  ? __ia32_sys_membarrier+0x150/0x150
[ 1124.116194]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1124.120769]  ? __kmalloc_node+0x47/0x70
[ 1124.124733]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1124.129303]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1124.133968]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1124.138283]  blk_mq_init_queue+0x4b/0xb0
[ 1124.142331]  loop_add+0x32b/0x9c0
[ 1124.145770]  ? loop_lookup+0x102/0x220
[ 1124.149641]  ? loop_queue_rq+0x6c0/0x6c0
[ 1124.153696]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1124.158880]  loop_control_ioctl+0x178/0x500
[ 1124.163187]  ? loop_add+0x9c0/0x9c0
[ 1124.166801]  ? expand_files.part.8+0x9a0/0x9a0
[ 1124.171370]  ? kasan_check_write+0x14/0x20
[ 1124.175592]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1124.180509]  ? wait_for_completion+0x870/0x870
[ 1124.185078]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1124.190253]  ? loop_add+0x9c0/0x9c0
[ 1124.193866]  do_vfs_ioctl+0x1cf/0x16a0
[ 1124.197744]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1124.202138]  ? fget_raw+0x20/0x20
[ 1124.205579]  ? __sb_end_write+0xac/0xe0
[ 1124.209546]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1124.215066]  ? fput+0x130/0x1a0
[ 1124.218338]  ? ksys_write+0x1a6/0x250
[ 1124.222130]  ? security_file_ioctl+0x94/0xc0
[ 1124.226526]  ksys_ioctl+0xa9/0xd0
[ 1124.229969]  __x64_sys_ioctl+0x73/0xb0
[ 1124.233846]  do_syscall_64+0x1b1/0x800
[ 1124.237720]  ? syscall_slow_exit_work+0x4f0/0x4f0
[ 1124.242555]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1124.247474]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1124.252391]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1124.257744]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1124.262578]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1124.267753] RIP: 0033:0x455329
[ 1124.270926] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1124.278632] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1124.285886] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1124.293139] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1124.300393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:16:17 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
read(r0, &(0x7f0000000080)=""/74, 0x4a)

2018/04/19 14:16:17 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x40000, 0x0)
ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f0000000080))
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1124.307648] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000001c
2018/04/19 14:16:17 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f64697363ff", 0x2, 0x0)

2018/04/19 14:16:17 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000080)={0x0, 0x0, 0x10000})
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$EVIOCSABS3F(r1, 0x401845ff, &(0x7f0000000000)={0x85d, 0x7fffffff, 0x7, 0x804, 0x9, 0x7})
ioctl$KDGKBTYPE(r1, 0x4b33, &(0x7f0000000040))
ioctl$KDSKBLED(r1, 0x4b65, 0x5)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f00000000c0)={0x401, 0x20, [0x80000001, 0x5, 0xe2e, 0x38000000000, 0x80000001, 0x4, 0x8, 0x7ff]})

2018/04/19 14:16:17 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
pwrite64(r0, &(0x7f0000000080)="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", 0xfc, 0x0)

2018/04/19 14:16:17 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:17 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000040))
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000000)={'veth0_to_bond\x00', {0x2, 0x4e20}})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:17 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x800, 0x0)

2018/04/19 14:16:17 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000080)='./file0\x00', 0x2, 0x7, &(0x7f0000001500)=[{&(0x7f00000001c0)="db386394cfda481a95f094f1b3e4bbab98df89e19157adaf23b49639f36942d24f54fdaed3f225be166b5b9f43cd4c62dfac3ab16c0cca3dac5b7e8285e0482aabee05b49c83aef171bf4681a438258733d57424fdeb2b8eb194b15eecc21ee31dcf794f97", 0x65, 0x9}, {&(0x7f0000000240)="8fec3e842b0fcf711cc87d67034f934abd24b84697fadbe2b0d2161b9816c18e0244c02c0a7e91721bb0b126bf39cab907b7ad71b0590743cddc686eaf0f61a29a51c341fb2a058b830f115a0421edd771124f38527b8e7317845a144b2a4a80b57049b359605c974945f2df867bd3e563cbc2ee4d9532edb4a1b5ac55d504d70bea2f1ef7967d6e21918ffed8818efe8c67245c", 0x94, 0x6}, {&(0x7f0000000300)="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", 0x1000, 0x3c}, {&(0x7f0000001300)="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", 0xfc, 0x401}, {&(0x7f0000001400)="588458bf710d83819c2c4f93fad6577e5e1433183bb7171714e36268fa3d", 0x1e, 0x3}, {&(0x7f0000001440)="ef84cfdd0bac51f9bd43f62a524b18abf2af228a1ecc4621be964700893981348f41f3101480f585e506e15c27b78a40fdb94591345036ec281ea22e71a5bf490be77eda0c8a4ffe340b6f4b50c0fa230312a5ffd9b366624a02e7b189bb92099bb8651d682ccd6811029f87e1e7b830fc394dab36", 0x75, 0x8000}, {&(0x7f00000014c0)="db108bd791", 0x5}], 0x200000, &(0x7f00000015c0)=ANY=[@ANYBLOB='hide,utf8,norock,check=strict,map=acorn,map=normal,unhide,cruft map=off,\x00'])
ioctl$LOOP_SET_CAPACITY(r0, 0x4c07)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f00000000c0)=0x1a66)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000100)={{0x1, 0x9}, 'port0\x00', 0xb1, 0x0, 0x9, 0x401, 0x47c, 0x220, 0xfffffffffffeffff, 0x0, 0x5, 0xffffffff})

2018/04/19 14:16:17 executing program 3 (fault-call:2 fault-nth:29):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1124.482581] FAULT_INJECTION: forcing a failure.
[ 1124.482581] name failslab, interval 1, probability 0, space 0, times 0
[ 1124.493937] CPU: 1 PID: 29361 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1124.501121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1124.510458] Call Trace:
[ 1124.513042]  dump_stack+0x1b9/0x294
[ 1124.516662]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1124.521840]  ? __percpu_counter_init+0x2aa/0x360
[ 1124.526603]  should_fail.cold.4+0xa/0x1a
[ 1124.530656]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1124.535749]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1124.541270]  ? wb_init+0x6ea/0x9e0
[ 1124.544798]  ? graph_lock+0x170/0x170
[ 1124.548589]  ? bdi_put+0x180/0x180
[ 1124.552121]  ? find_held_lock+0x36/0x1c0
[ 1124.556172]  ? __lock_is_held+0xb5/0x140
[ 1124.560237]  ? check_same_owner+0x320/0x320
[ 1124.564549]  ? rcu_note_context_switch+0x710/0x710
[ 1124.569469]  __should_failslab+0x124/0x180
[ 1124.573695]  should_failslab+0x9/0x14
[ 1124.577482]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1124.582138]  ? bdi_alloc_node+0x67/0xe0
[ 1124.586102]  ? bdi_alloc_node+0x67/0xe0
[ 1124.590065]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1124.595075]  blk_alloc_queue_stats+0x88/0x1b0
[ 1124.599561]  ? blk_stat_enable_accounting+0xe0/0xe0
[ 1124.604571]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1124.610097]  blk_alloc_queue_node+0x1f6/0xe40
[ 1124.614584]  ? blk_init_allocated_queue+0x620/0x620
[ 1124.619588]  ? __mutex_init+0x1ef/0x280
[ 1124.623550]  ? __ia32_sys_membarrier+0x150/0x150
[ 1124.628294]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1124.632867]  ? __kmalloc_node+0x47/0x70
[ 1124.636833]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1124.641403]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1124.646068]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1124.650383]  blk_mq_init_queue+0x4b/0xb0
[ 1124.654434]  loop_add+0x32b/0x9c0
[ 1124.657875]  ? loop_lookup+0x102/0x220
[ 1124.661747]  ? loop_queue_rq+0x6c0/0x6c0
[ 1124.665799]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1124.670977]  loop_control_ioctl+0x178/0x500
[ 1124.675285]  ? loop_add+0x9c0/0x9c0
[ 1124.678898]  ? expand_files.part.8+0x9a0/0x9a0
[ 1124.683469]  ? kasan_check_write+0x14/0x20
[ 1124.687694]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1124.692612]  ? wait_for_completion+0x870/0x870
[ 1124.697181]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1124.702354]  ? loop_add+0x9c0/0x9c0
[ 1124.705970]  do_vfs_ioctl+0x1cf/0x16a0
[ 1124.709852]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1124.714249]  ? fget_raw+0x20/0x20
[ 1124.717691]  ? __sb_end_write+0xac/0xe0
[ 1124.721656]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1124.727177]  ? fput+0x130/0x1a0
[ 1124.730444]  ? ksys_write+0x1a6/0x250
[ 1124.734238]  ? security_file_ioctl+0x94/0xc0
[ 1124.738636]  ksys_ioctl+0xa9/0xd0
[ 1124.742083]  __x64_sys_ioctl+0x73/0xb0
[ 1124.745961]  do_syscall_64+0x1b1/0x800
[ 1124.749833]  ? finish_task_switch+0x1ca/0x810
[ 1124.754319]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1124.759236]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1124.764158]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1124.769514]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1124.774348]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1124.779520] RIP: 0033:0x455329
2018/04/19 14:16:18 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f6469736314", 0x2, 0x0)

[ 1124.782704] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1124.790427] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1124.797688] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1124.804945] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1124.812197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1124.819451] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000001d
2018/04/19 14:16:18 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0xa3, 0x200000)
openat$cgroup_type(r1, &(0x7f0000000100)='cgroup.type\x00', 0x2, 0x0)
ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f00000000c0))
r2 = dup(r0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
r3 = semget$private(0x0, 0x1, 0xc)
semctl$GETVAL(r3, 0x1, 0xc, &(0x7f0000000040)=""/12)
r4 = msgget(0x2, 0x20040)
msgctl$MSG_STAT(r4, 0xb, &(0x7f0000000140)=""/78)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
lseek(r0, 0x0, 0x0)

2018/04/19 14:16:18 executing program 3 (fault-call:2 fault-nth:30):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:18 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$TCFLSH(r1, 0x540b, 0x1)
ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f00000004c0)={0x3, r1})
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
write$binfmt_elf64(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x44a)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:18 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:18 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000000)={<r2=>0x0})
r3 = socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$DRM_IOCTL_RM_CTX(r1, 0xc0086421, &(0x7f0000000040)={r2, 0x2})
write$binfmt_elf32(r3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x9ff)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$sock_SIOCGSKNS(r3, 0x894c, &(0x7f0000000a80)=0x9)
r4 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, r4)

2018/04/19 14:16:18 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x200200, 0x0)

2018/04/19 14:16:18 executing program 1:
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x180000000, 0x10200)

[ 1124.976387] FAULT_INJECTION: forcing a failure.
[ 1124.976387] name failslab, interval 1, probability 0, space 0, times 0
[ 1124.987705] CPU: 0 PID: 29388 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1124.994895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1125.004252] Call Trace:
[ 1125.006850]  dump_stack+0x1b9/0x294
[ 1125.010493]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1125.015695]  ? pcpu_next_fit_region.constprop.23+0x334/0x410
[ 1125.021508]  should_fail.cold.4+0xa/0x1a
[ 1125.025585]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1125.030692]  ? graph_lock+0x170/0x170
[ 1125.034495]  ? wait_for_completion+0x870/0x870
[ 1125.039088]  ? graph_lock+0x170/0x170
[ 1125.042893]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1125.048432]  ? find_next_zero_bit+0x111/0x140
[ 1125.052934]  ? find_held_lock+0x36/0x1c0
[ 1125.057009]  ? __lock_is_held+0xb5/0x140
[ 1125.061085]  ? check_same_owner+0x320/0x320
[ 1125.065397]  ? rcu_note_context_switch+0x710/0x710
[ 1125.070310]  ? pcpu_balance_workfn+0x16d0/0x16d0
[ 1125.075059]  ? trace_hardirqs_on+0xd/0x10
[ 1125.079196]  __should_failslab+0x124/0x180
[ 1125.083431]  should_failslab+0x9/0x14
[ 1125.087225]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1125.092318]  ? mark_held_locks+0xc9/0x160
[ 1125.096451]  blkg_alloc+0x11c/0x7f0
[ 1125.100064]  ? blkcg_reset_stats+0x3c0/0x3c0
[ 1125.104455]  ? __raw_spin_lock_init+0x1c/0x100
[ 1125.109035]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1125.114044]  ? __lockdep_init_map+0x105/0x590
[ 1125.118546]  ? kasan_check_write+0x14/0x20
[ 1125.122763]  ? percpu_ref_init+0x1f7/0x280
[ 1125.126983]  ? blk_delay_queue+0x1a0/0x1a0
[ 1125.131202]  ? percpu_ref_noop_confirm_switch+0x10/0x10
[ 1125.136550]  blkcg_init_queue+0x29/0x390
[ 1125.140594]  blk_alloc_queue_node+0x8bd/0xe40
[ 1125.145086]  ? blk_init_allocated_queue+0x620/0x620
[ 1125.150089]  ? __mutex_init+0x1ef/0x280
[ 1125.154049]  ? __ia32_sys_membarrier+0x150/0x150
[ 1125.158786]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1125.163365]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1125.167928]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1125.172591]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1125.176903]  blk_mq_init_queue+0x4b/0xb0
[ 1125.180947]  loop_add+0x32b/0x9c0
[ 1125.184380]  ? loop_lookup+0x102/0x220
[ 1125.188244]  ? loop_queue_rq+0x6c0/0x6c0
[ 1125.192290]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1125.197462]  loop_control_ioctl+0x178/0x500
[ 1125.201760]  ? loop_add+0x9c0/0x9c0
[ 1125.205368]  ? expand_files.part.8+0x9a0/0x9a0
[ 1125.209941]  ? kasan_check_write+0x14/0x20
[ 1125.214166]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1125.219077]  ? wait_for_completion+0x870/0x870
[ 1125.223640]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1125.228818]  ? loop_add+0x9c0/0x9c0
[ 1125.232434]  do_vfs_ioctl+0x1cf/0x16a0
[ 1125.236305]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1125.240693]  ? fget_raw+0x20/0x20
[ 1125.244140]  ? __sb_end_write+0xac/0xe0
[ 1125.248114]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1125.253642]  ? fput+0x130/0x1a0
[ 1125.256910]  ? ksys_write+0x1a6/0x250
[ 1125.260693]  ? security_file_ioctl+0x94/0xc0
[ 1125.265087]  ksys_ioctl+0xa9/0xd0
[ 1125.268523]  __x64_sys_ioctl+0x73/0xb0
[ 1125.272394]  do_syscall_64+0x1b1/0x800
[ 1125.276263]  ? finish_task_switch+0x1ca/0x810
[ 1125.280742]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1125.285652]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1125.290566]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1125.295916]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1125.300741]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1125.305909] RIP: 0033:0x455329
[ 1125.309081] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1125.316784] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1125.324042] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1125.331289] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1125.338536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1125.345785] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000001e
2018/04/19 14:16:18 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f64697363f6", 0x2, 0x0)

2018/04/19 14:16:18 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xfffffffffffffffc, 0x0)

2018/04/19 14:16:18 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:18 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x40, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
r2 = semget(0x0, 0x0, 0x20)
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000100)={0x0, <r3=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000140)={<r4=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000180)={r3, r4, 0x400})
semctl$SEM_STAT(r2, 0x3, 0x12, &(0x7f0000000040)=""/188)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)

2018/04/19 14:16:18 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000000)={0xfff, 0x3ff, 0x2})
ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000080)={0xfffffffffffffffa, 0x8001})

2018/04/19 14:16:18 executing program 3 (fault-call:2 fault-nth:31):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:18 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, r2)
ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f0000000000)={"595dff97ec111e8fdd116b3b23fb6d33b8d009d1b1cb390f9329420d4a2a538327c59338db8cdc033158ce187752635c990fcb56e2cfccffdb026bdda6bed0ae9f07e0f7dcbac782dfe14a7629c08e2d909487e9bd6e6c215b49780ec727e8f9b109fc6e888eaf0aeafeb6d9ad272e839a43905211ed9bd73966dbb43e791eff801c92cdf9dcf7f00b5397bbc16a9466e6ea8bb3826be81c9af5f77cddc9fa70206a3c90b6c6300a360e0ef92d6e5b24e871f7900e3e4b1e381c10bf9aa6188d58877c749f430ece7997d01350c277dface5a4ac58f22e51b3285eeada388ff0017c56f58e577014a3c354fbc1fc3571301cc3a18ee423ecb42b37e072c94bdcf0c499b26ea374163dbcb2d6ff94d5d74fb6b79a18a300280cd2de27ef84441f4c3f133718e2253a6a200f740ff7b174a11cdddd5a1d1b9d244ea7e75d9c05b30abb5eeee1b2da809194979540109d7cb3bb2103657209128a79cc96be712d08a0c4c364be9d47135ba38caf1488aecce5acbc458bd827c3ef10bec227e75e2563562a2ab36af459685ca20814e03e17094e6bc89dd19d987b8286925ee0b08e7006c3a4534399da01b94812b97f82faba999fda3167c426218d375391353ff701beee201dff6caac5ca869185fc99e51513ac45ba05303bab573ac3d0c3e82f09f6bbf3fae736c3e3b57ee85b6d000e2e54b111cf84a2add475f1c8be5182330a9c70c75133a097109854542cdab68af604ae62f68a788828f2dcb5333a08317d5b1948d613cf2376c390fe9348c6680b34f2194bcd0bafbb647763706ad0d743e93ccc7e4b407002fec875f9b90ff68754ebc87a5049d7535f5f914782d0f7d9b3520e148402e724f6b5ef912ca5e6d9a996752ff8addb3d9eb0d6d9670bd59179e497d267db581bbd2836158a43f8342eac0dfa7f69cf5cd43a48c7e48ede1eea46478365547c79c5f9af53ec0e4122f8ef8012bf65f4237ac70f3aa1783304b6072868e171af25d767e57ac0b8d93a9111000db9d7a511a07ec50aa3fc1901a7e1a621b1f63c8e4213fc2d6429cf1995aa3d5ee303d0b8da325bb255dd20796ae467d8008fd8bbe26e1e371a766ba5022d7f059c52d8b32058eefa45680f1272794ea60459f21ff8062c78ab19b5172207723b0564824bd4ad6b362238c8e562298171bce2af7310603960a5db01f4068bcab1a237f59c3ade3b3f4596ffba21065a6cee67879406355f261c591fad904d6ab115ad0eba021ea573d64bf225ece1af57553318fb4d13c0ce8bdbacf26f573eb5ed0500a7c3a585d21a3e4db4921d8ebfd5fffa63f36a7a586560429a40edacba8d77def6455bb82181f5ae05e65cae1e5ad3c197af29db98e86e5edfc0fc920090a461c0e39a8ecdd9e51c2f64bbc46b01123f02b3a992a549bb06686d707f77be4a71bf15d571dddef29a"})

2018/04/19 14:16:18 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000040)={0x5, 0x0, [{0x6, 0x7, 0x0, 0x0, @irqchip={0x10001, 0x3}}, {0x329, 0x3, 0x0, 0x0, @msi={0x4, 0x401, 0xfffffffffffffff7}}, {0x4, 0x3, 0x0, 0x0, @adapter={0xfffffffffffffffa, 0x0, 0x80000001, 0x8, 0x7}}, {0x4, 0x2, 0x0, 0x0, @msi={0x2a8d, 0x9}}, {0x0, 0x2, 0x0, 0x0, @sint={0x9, 0x6}}]})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{}]})
ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000001c0)={r1})

2018/04/19 14:16:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000bc0)={"a2f44c7487f7a2b1cdfaf678d717da9b45a94f36c3531e5b1ed000ee615f091985964e14474bab91a86857ead2e98efdb030821ffc94c5e52a260d7ad6ba42c4050ed346f887af8f6cb219f472e4acf08ae6adab2fa9cb8745b87e9d4bcc5ff753b681ecdad13a966ee0300582e2d8c720582d90f0026062fd9ba1a8e07addcbb552a3add4d5e8d59a32faeb3dde0b63a33f9a90918ca8e05e1e866b02e388c759c64708a3e12635521df7a2e0b458b75e56f64959954d38c4c9338a333890a0a29c37ab34fc797062b2ea41c55869b40458f04b52233fd4ecd5abc181d876d14b7850edb9c8a863cc6db0f9d5b55fa24d76747e6eae1d0f73003d52ca2a8d9d53659d6716ab52402304870e6cd2c993f953ee0c63eab478eb6ea5910048255ef506ae6bdb2a07a55a38b41b852de0da8a1e69a93dda5779919f3a5feee7b2dfe93239c5109fff770dec75f425a38e131ff07df2ff8f9cbc73f4e6ddb382ead13fc02a15ba7258971e32f17ffadebf44f7cdf9713336f3254fbd0ee125824eb148ee3850e774b461eb1a5b918d70fd91c654767b953352c22163335a4386141166f38d6dac431bb830bd98bf816d993e3fa9290f7924f7ffd29aad19d1cebe77e5f65971678a02dcff1bb63ba3d3d57ca5766ca437098675e3306c891654186b2de6a152b01d6979b8654d38d96ee4dd9efc6453c19f0d44abd7dbd91c884d4c4472fdd1539b13937a48bc96b03344c4a0598fc5fc993d9ab01f6e61a61ce504084204b1d253a6af85ae87feca1463f983d04d3648602b3ee6614af91f125315af67d31f28f008df88dbd054441fa6068f2332ac11a82c4a62b5ba8092032a31086c6504e9a2406ab66a6cbdf58d1d2f7b8ff7ee69d8ce77681e2153df03f844db46e240bddec89b8ea7a8e1cbb47ffee1ca0d34e4ac5adf88f994314ccf34039f999a6f0345c2bf743b57a53ef0779ff7139fbc1777ca6070af5be48be164ecf5c09604e0b3bb66e0039f2ffba995ded013874a74c8ecff77a0c496b6809f8ace482441791fde21a7de1baa6722b7bcaac77733df58fec7983ed0501c62353da4e5050734e7d55f61a37abb8d7540aba33bbb5667a1d3d85dadd3f0ce41d3e661d704c4c176099f4d9b6034ba10d0ea5df98e57d512289285317009d640e6af72d4bd06fff0c3f8ab975a20af7eb5a18c24e641ce46ff7ce0c52d9b7ed2bdfa6b2d8b485764e8504ee9c427535b972385f679c9ef9e1a2bd85cfc6d051aec133629fad318707e28af1c39a680c0de826245ef1f1a1458593ac80696c87d9369301b901dd4e42467cbfeedbad5dae354f31d8c9afea00136b35a180b2829c1b75f2229592f700fe993622f55c34a265cb9ee32c93ad4d90a24efe4c5b2495addcc08636ebf2929d819d3315107b31265de45c4ba75cce2ff84db385f317c331d"})
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000007c0)={"0006d92ac2987ab6ce000df10d3269fa08fd357c49d8fadf570a2ed86d0bc1995a963d635c8048f86d055dddfa0c384d5b185008b71f7e5a8ac719e8e41ec8d12664ed0a280ff548cd5c70d39da7870c933f03652135f46aa731329530d162bd45222809d83f3e404d1457065f5e1c21dded794e150badce6fd788ea6e9d7ceb2ef9083f5aa5626cd579deb5e77944898bc0a0a7b471a588b6022094cddbe125067bc2a2545ed8c78c89877c0a547c23da47ce5a8f8adc626cbeed657573c39629f654442c72444dada486c7e6e4ce47fcf606b4bd061250e2a7014c918c60d4fc49d89c9ea85d4b6eaaa1be818f5312dbadbc33f85651cb422a70af753fd7ea2dae99d5baa7214c9b2611b5b17c3c98680225ceebea1f77f272c87fcce407ca44bd5976aec4839b1083f2258bc1dc375d1e130203436dd72ef923773c263be0dbe22390834a619f70e792973ee6468366c974ac466a41bd67d898a1f368d44feb5e779658e6f9c682956a02f0f2df770e91b417ef75f308da34635908cd586d6d55354ad5b4a73f4e881f5362dfdc16604a7b18f68d34e9186a93b6aac5286681764db964fdd5f8a700ca6abf7c0f54ff39a6509d6c9ee5b6a2ec4fae0e18972ae016cc8308b954ec9bbd005ae5876430c11b8abb47656be7f6051448eac60fac28b2dc5646b8141b9e992eac801babffe369c5d30e9f45ee0cafaed698d385ca7019b72a914d9f26db8af1f99b65317a43c1b0b65b0c5dd4bdb78d924bf4e60774a93013f6fe8a765cd706706e1b7c740a120ba4928ba174bda6758a442cecac78b791d165bc07615c6d63f6fd182ed5a62ac955bde98e2f19358f7d3443478940f33745c0210fbd74caa5d35c63dc4d21dbc16f53c551d0b16ed80eb18b390d4cf51198376d600d37125d66401ab385bd5eed69540f3106677003722ab1037a4d55a327ebd60245893e315d31d2bba584db6fee58687d29d995fb3b2139547627437f8fdcacebfa0ea84cadcb30f585a32e2bd731d6282b75862b9ed7d1b55d3901762f1db43be4c6abed8e8d7452d04ccf664efbcf6f173c3367098ea62126c186be24acd52bce7589ba0253bcaecc99cba84106f3ba5d1341ff64bd328f28cf87ee22fba9b9015b849e726093f1dc0e2867362546e13178a96992d04217c64ca7b0b402ddf94c157b2705dd57079a68abafe72330ff32d10be3a2cee845dd6e7ce471770985b440cfe70bbacdac49af0edf216438138285f4968adb27a79aa6978a86f2eed5d4c2d6fa99ebe8e858214ef854050f9c5a30af4e84a121f696a94ee138cbf37f1999ffaeeab9ad17cceffa9b0e69a93edadd2a32993181bd1a1d1b3455e81fea1294dc85ed1b9848e62b3e32f483e487205d68b01906389d4abbee03e07f7125b04ac8e90b7bed31ffd851f8046307cda6777c56b2b6f4f6"})
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)
lseek(r3, 0x0, 0x0)

[ 1125.503118] FAULT_INJECTION: forcing a failure.
[ 1125.503118] name failslab, interval 1, probability 0, space 0, times 0
[ 1125.514440] CPU: 1 PID: 29418 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1125.521628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1125.530981] Call Trace:
[ 1125.533578]  dump_stack+0x1b9/0x294
[ 1125.537220]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1125.542430]  should_fail.cold.4+0xa/0x1a
[ 1125.546498]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1125.551588]  ? zap_class+0x720/0x720
[ 1125.555286]  ? trace_hardirqs_on+0xd/0x10
[ 1125.559424]  ? graph_lock+0x170/0x170
[ 1125.563212]  ? graph_lock+0x170/0x170
[ 1125.566999]  ? find_held_lock+0x36/0x1c0
[ 1125.571058]  ? __lock_is_held+0xb5/0x140
[ 1125.575118]  ? check_same_owner+0x320/0x320
[ 1125.579429]  ? rcu_note_context_switch+0x710/0x710
[ 1125.584350]  __should_failslab+0x124/0x180
[ 1125.588573]  should_failslab+0x9/0x14
[ 1125.592363]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1125.597029]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[ 1125.602120]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1125.607130]  wb_congested_get_create+0x1ca/0x450
[ 1125.611877]  ? wb_wakeup_delayed+0xf0/0xf0
[ 1125.616107]  ? __lockdep_init_map+0x105/0x590
[ 1125.620594]  wb_init+0x62e/0x9e0
[ 1125.623949]  ? bdi_put+0x180/0x180
[ 1125.627484]  ? mark_held_locks+0xc9/0x160
[ 1125.631618]  ? __x64_sys_ioctl+0x73/0xb0
[ 1125.635670]  ? __raw_spin_lock_init+0x1c/0x100
[ 1125.640244]  ? mark_held_locks+0xc9/0x160
[ 1125.644381]  ? __raw_spin_lock_init+0x1c/0x100
[ 1125.648950]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1125.653967]  ? lockdep_init_map+0x9/0x10
[ 1125.658020]  bdi_init+0x353/0x510
[ 1125.661461]  ? wb_init+0x9e0/0x9e0
[ 1125.664988]  ? bdi_alloc_node+0x67/0xe0
[ 1125.668950]  ? bdi_alloc_node+0x67/0xe0
[ 1125.672914]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1125.677916]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1125.683185]  ? bioset_free+0x320/0x320
[ 1125.687064]  bdi_alloc_node+0x81/0xe0
[ 1125.690852]  blk_alloc_queue_node+0x1c1/0xe40
[ 1125.695337]  ? blk_init_allocated_queue+0x620/0x620
[ 1125.700340]  ? __mutex_init+0x1ef/0x280
[ 1125.704305]  ? __ia32_sys_membarrier+0x150/0x150
[ 1125.709052]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1125.713625]  ? __kmalloc_node+0x47/0x70
[ 1125.717589]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1125.722157]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1125.726819]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1125.731134]  blk_mq_init_queue+0x4b/0xb0
[ 1125.735182]  loop_add+0x32b/0x9c0
[ 1125.738620]  ? loop_lookup+0x102/0x220
[ 1125.742495]  ? loop_queue_rq+0x6c0/0x6c0
[ 1125.746550]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1125.751729]  loop_control_ioctl+0x178/0x500
[ 1125.756036]  ? loop_add+0x9c0/0x9c0
[ 1125.759648]  ? expand_files.part.8+0x9a0/0x9a0
[ 1125.764218]  ? kasan_check_write+0x14/0x20
[ 1125.768438]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1125.773356]  ? wait_for_completion+0x870/0x870
[ 1125.777924]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1125.783101]  ? loop_add+0x9c0/0x9c0
[ 1125.786718]  do_vfs_ioctl+0x1cf/0x16a0
[ 1125.790601]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1125.794996]  ? fget_raw+0x20/0x20
[ 1125.798444]  ? __sb_end_write+0xac/0xe0
[ 1125.802411]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1125.807933]  ? fput+0x130/0x1a0
[ 1125.811202]  ? ksys_write+0x1a6/0x250
[ 1125.814995]  ? security_file_ioctl+0x94/0xc0
[ 1125.819398]  ksys_ioctl+0xa9/0xd0
[ 1125.822840]  __x64_sys_ioctl+0x73/0xb0
[ 1125.826714]  do_syscall_64+0x1b1/0x800
[ 1125.830585]  ? finish_task_switch+0x1ca/0x810
[ 1125.835067]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1125.839984]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1125.844904]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1125.850257]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1125.855091]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1125.860263] RIP: 0033:0x455329
[ 1125.863438] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1125.871134] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1125.878387] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1125.885639] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1125.892895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:16:19 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)
socket$inet6_icmp(0xa, 0x2, 0x3a)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)

2018/04/19 14:16:19 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x121000, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080))
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000)={0xfffffffffffffffd, 0x0, 0x7f})
ioctl$TIOCMGET(r2, 0x5415, &(0x7f00000000c0))
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000140)=""/73)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000100)={0x7fff, 0x1})
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, r3)
write$cgroup_int(r0, &(0x7f00000001c0)={[0x38, 0x2d, 0x38, 0x2c, 0x39, 0x32, 0x3b, 0x3d]}, 0x8)

2018/04/19 14:16:19 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x200, 0x0)
openat$cgroup_type(r0, &(0x7f00000000c0)='cgroup.type\x00', 0x2, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
write$cgroup_type(r1, &(0x7f0000000100)='threaded\x00', 0x9)
syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x9, 0x2)

[ 1125.900150] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000001f
2018/04/19 14:16:19 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f6469736304", 0x2, 0x0)

2018/04/19 14:16:19 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:19 executing program 3 (fault-call:2 fault-nth:32):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1126.135379] FAULT_INJECTION: forcing a failure.
[ 1126.135379] name failslab, interval 1, probability 0, space 0, times 0
[ 1126.146691] CPU: 0 PID: 29444 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1126.153880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1126.163230] Call Trace:
[ 1126.165825]  dump_stack+0x1b9/0x294
[ 1126.169472]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1126.174669]  should_fail.cold.4+0xa/0x1a
[ 1126.178722]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1126.183827]  ? __debug_object_init+0x57f/0x12c0
[ 1126.188491]  ? print_usage_bug+0xc0/0xc0
[ 1126.192536]  ? graph_lock+0x170/0x170
[ 1126.196316]  ? debug_object_free+0x5f0/0x5f0
[ 1126.200709]  ? find_held_lock+0x36/0x1c0
[ 1126.204751]  ? __lock_is_held+0xb5/0x140
[ 1126.208800]  ? check_same_owner+0x320/0x320
[ 1126.213106]  ? rcu_note_context_switch+0x710/0x710
[ 1126.218029]  __should_failslab+0x124/0x180
[ 1126.222253]  should_failslab+0x9/0x14
[ 1126.226044]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1126.231135]  ? lock_downgrade+0x8e0/0x8e0
[ 1126.235267]  throtl_pd_alloc+0xd7/0x970
[ 1126.239222]  ? blk_throtl_dispatch_work_fn+0x480/0x480
[ 1126.244480]  ? _raw_spin_unlock_irq+0x27/0x70
[ 1126.248956]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1126.253955]  ? trace_hardirqs_on+0xd/0x10
[ 1126.258089]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1126.263613]  ? blk_throtl_dispatch_work_fn+0x480/0x480
[ 1126.268870]  blkcg_activate_policy+0xf4/0x580
[ 1126.273349]  blk_throtl_init+0x3d0/0x630
[ 1126.277389]  ? blk_throtl_drain+0x7e0/0x7e0
[ 1126.281701]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1126.286714]  blkcg_init_queue+0x277/0x390
[ 1126.290852]  blk_alloc_queue_node+0x8bd/0xe40
[ 1126.295343]  ? blk_init_allocated_queue+0x620/0x620
[ 1126.300349]  ? __mutex_init+0x1ef/0x280
[ 1126.304304]  ? __ia32_sys_membarrier+0x150/0x150
[ 1126.309048]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1126.313617]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1126.318179]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1126.322828]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1126.327134]  blk_mq_init_queue+0x4b/0xb0
[ 1126.331175]  loop_add+0x32b/0x9c0
[ 1126.334608]  ? loop_lookup+0x102/0x220
[ 1126.338473]  ? loop_queue_rq+0x6c0/0x6c0
[ 1126.342518]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1126.347687]  loop_control_ioctl+0x178/0x500
[ 1126.351988]  ? loop_add+0x9c0/0x9c0
[ 1126.355597]  ? expand_files.part.8+0x9a0/0x9a0
[ 1126.360158]  ? kasan_check_write+0x14/0x20
[ 1126.364384]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1126.369308]  ? wait_for_completion+0x870/0x870
[ 1126.373872]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1126.379046]  ? loop_add+0x9c0/0x9c0
[ 1126.382652]  do_vfs_ioctl+0x1cf/0x16a0
[ 1126.386522]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1126.390908]  ? fget_raw+0x20/0x20
[ 1126.394343]  ? __sb_end_write+0xac/0xe0
[ 1126.398299]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1126.403814]  ? fput+0x130/0x1a0
[ 1126.407076]  ? ksys_write+0x1a6/0x250
[ 1126.410860]  ? security_file_ioctl+0x94/0xc0
[ 1126.415248]  ksys_ioctl+0xa9/0xd0
[ 1126.418685]  __x64_sys_ioctl+0x73/0xb0
[ 1126.422555]  do_syscall_64+0x1b1/0x800
[ 1126.426421]  ? finish_task_switch+0x1ca/0x810
[ 1126.430898]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1126.435809]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1126.440718]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1126.446065]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1126.450893]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1126.456068] RIP: 0033:0x455329
[ 1126.459241] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1126.466927] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1126.474176] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1126.481425] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1126.488672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1126.495919] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000020
2018/04/19 14:16:20 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x2, 0x0)
r1 = dup(r0)
ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000000040)=0x7)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:20 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000080)=""/4096)
ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000001080)={0xf251, {0x2, 0x4e24, @rand_addr=0x7fff}, {0x2, 0x4e20, @multicast1=0xe0000001}, {0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}, 0x60, 0xfffffffffffffffa, 0x2, 0x3, 0x101, &(0x7f0000000000)='veth0_to_bond\x00', 0x7f, 0x3, 0x2})

2018/04/19 14:16:20 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:20 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
openat$cgroup_int(r1, &(0x7f0000000040)='cpuset.mem_exclusive\x00', 0x2, 0x0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl(r0, 0xc06, &(0x7f0000000280)="d9c34a6829d9dd81edaa1881f2e1d6bf63b6d4e0bfb71dc3a96806fee5ffa9410e48c4c47a0c6d73e4cc7b62f274f45c3767a468f365ac8471e21988760d45738eb1df7169cce79fb1a31d655aac3776aff08843e265a94e2790e314157f7c706be166964278d399ade78298a3424dea4b882eebbab05e95654e28de7826bfcbbb36e1b6b6e374ab3b38")
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f00000000c0)={@mcast1={0xff, 0x1, [], 0x1}, 0x13, r2})
ioctl$KVM_SET_CPUID(r1, 0x4008ae8a, &(0x7f0000000340)=ANY=[@ANYBLOB="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"])
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f0000000200)={@mcast1={0xff, 0x1, [], 0x1}, @dev={0xfe, 0x80, [], 0x21}, @local={0xfe, 0x80, [], 0xaa}, 0xffffffff80000001, 0x2, 0x8, 0x100, 0x96, 0x10, r2})

2018/04/19 14:16:20 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x2000b, 0x0)
socket$vsock_dgram(0x28, 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000180)={0x3, 0x0, [{0x2000, 0x6f, &(0x7f0000000040)=""/111}, {0x0, 0x1e, &(0x7f00000000c0)=""/30}, {0x4000, 0x49, &(0x7f0000000100)=""/73}]})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x200000, 0x0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000200)={0x1, 0x10, 0x4, 0x3, "de83cbf9b43a020c79d691e9a1b8ca5dc38571007f355a009e83e5f6d4a30af9"})

2018/04/19 14:16:20 executing program 3 (fault-call:2 fault-nth:33):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:20 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617404")

2018/04/19 14:16:20 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$int_out(r1, 0x5462, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r3 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x200000)
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000080))
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, r2)
ioctl$DRM_IOCTL_SET_MASTER(r1, 0x641e)
ioctl$void(r1, 0x5451)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000000c0)={"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"})

2018/04/19 14:16:20 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x4001, 0x0)

[ 1126.631852] FAULT_INJECTION: forcing a failure.
[ 1126.631852] name failslab, interval 1, probability 0, space 0, times 0
[ 1126.643499] CPU: 1 PID: 29466 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1126.650685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1126.660037] Call Trace:
[ 1126.662626]  dump_stack+0x1b9/0x294
[ 1126.666245]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1126.671424]  ? __save_stack_trace+0x7e/0xd0
[ 1126.675741]  should_fail.cold.4+0xa/0x1a
[ 1126.679792]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1126.684886]  ? save_stack+0x43/0xd0
[ 1126.688500]  ? kasan_kmalloc+0xc4/0xe0
[ 1126.692376]  ? throtl_pd_alloc+0xd7/0x970
[ 1126.696510]  ? blkcg_activate_policy+0xf4/0x580
[ 1126.701170]  ? __lock_is_held+0xb5/0x140
[ 1126.705222]  ? __lockdep_init_map+0x105/0x590
[ 1126.709705]  ? lockdep_init_map+0x9/0x10
[ 1126.713750]  ? init_timer_key+0x17f/0x470
[ 1126.717886]  ? throtl_pd_offline+0x210/0x210
[ 1126.722279]  ? init_timer_on_stack_key+0xe0/0xe0
[ 1126.727035]  ? __lock_is_held+0xb5/0x140
[ 1126.731088]  __should_failslab+0x124/0x180
[ 1126.735313]  should_failslab+0x9/0x14
[ 1126.739103]  kmem_cache_alloc_node_trace+0x5a/0x770
[ 1126.744108]  ? lock_acquire+0x1dc/0x520
[ 1126.748073]  ? blkcg_activate_policy+0x12c/0x580
[ 1126.752820]  throtl_pd_alloc+0xd7/0x970
[ 1126.756785]  ? blk_throtl_dispatch_work_fn+0x480/0x480
[ 1126.762050]  ? _raw_spin_unlock_irq+0x27/0x70
[ 1126.766534]  ? kasan_check_write+0x14/0x20
[ 1126.770758]  ? do_raw_spin_lock+0xc1/0x200
[ 1126.774986]  ? blk_throtl_dispatch_work_fn+0x480/0x480
[ 1126.780256]  blkcg_activate_policy+0x221/0x580
[ 1126.784833]  blk_throtl_init+0x3d0/0x630
[ 1126.788885]  ? blk_throtl_drain+0x7e0/0x7e0
[ 1126.793197]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1126.798204]  blkcg_init_queue+0x277/0x390
[ 1126.802345]  blk_alloc_queue_node+0x8bd/0xe40
[ 1126.806830]  ? blk_init_allocated_queue+0x620/0x620
[ 1126.811831]  ? __mutex_init+0x1ef/0x280
[ 1126.815794]  ? __ia32_sys_membarrier+0x150/0x150
[ 1126.820538]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1126.825115]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1126.829684]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1126.834347]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1126.838663]  blk_mq_init_queue+0x4b/0xb0
[ 1126.842711]  loop_add+0x32b/0x9c0
[ 1126.846152]  ? loop_lookup+0x102/0x220
[ 1126.850029]  ? loop_queue_rq+0x6c0/0x6c0
[ 1126.854083]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1126.859261]  loop_control_ioctl+0x178/0x500
[ 1126.863568]  ? loop_add+0x9c0/0x9c0
[ 1126.867181]  ? expand_files.part.8+0x9a0/0x9a0
[ 1126.871752]  ? kasan_check_write+0x14/0x20
[ 1126.876014]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1126.880937]  ? wait_for_completion+0x870/0x870
[ 1126.885506]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1126.890680]  ? loop_add+0x9c0/0x9c0
[ 1126.894296]  do_vfs_ioctl+0x1cf/0x16a0
[ 1126.898175]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1126.902570]  ? fget_raw+0x20/0x20
[ 1126.906014]  ? __sb_end_write+0xac/0xe0
[ 1126.909986]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1126.915512]  ? fput+0x130/0x1a0
[ 1126.918780]  ? ksys_write+0x1a6/0x250
[ 1126.922579]  ? security_file_ioctl+0x94/0xc0
[ 1126.926978]  ksys_ioctl+0xa9/0xd0
[ 1126.930420]  __x64_sys_ioctl+0x73/0xb0
[ 1126.934298]  do_syscall_64+0x1b1/0x800
[ 1126.938180]  ? finish_task_switch+0x1ca/0x810
[ 1126.942662]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1126.947578]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1126.952498]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1126.957856]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1126.962697]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1126.967873] RIP: 0033:0x455329
[ 1126.971046] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/19 14:16:20 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KDDELIO(r1, 0x4b35, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:20 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
socket$rds(0x15, 0x5, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:20 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x0, <r1=>r0, 0x1})
ioctl$VT_ACTIVATE(r1, 0x5606, 0x3)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1126.978740] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1126.985995] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1126.993252] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1127.000505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1127.007758] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000021
2018/04/19 14:16:20 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:20 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:20 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x88000, 0x0)

2018/04/19 14:16:20 executing program 3 (fault-call:2 fault-nth:34):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:20 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = shmget(0x1, 0x4000, 0x240, &(0x7f0000ffb000/0x4000)=nil)
shmctl$SHM_LOCK(r1, 0xb)
r2 = dup(r0)
ioctl$SIOCGIFHWADDR(r2, 0x8927, &(0x7f0000000040))
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$KVM_KVMCLOCK_CTRL(r2, 0xaead)

[ 1127.210422] FAULT_INJECTION: forcing a failure.
[ 1127.210422] name failslab, interval 1, probability 0, space 0, times 0
[ 1127.221777] CPU: 0 PID: 29496 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1127.228966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1127.238326] Call Trace:
[ 1127.240918]  dump_stack+0x1b9/0x294
[ 1127.244537]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1127.249714]  ? save_stack+0x43/0xd0
[ 1127.253331]  ? __kasan_slab_free+0x11a/0x170
[ 1127.257724]  ? kasan_slab_free+0xe/0x10
[ 1127.261683]  ? kfree+0xd9/0x260
[ 1127.264959]  should_fail.cold.4+0xa/0x1a
[ 1127.269007]  ? do_syscall_64+0x1b1/0x800
[ 1127.273063]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1127.278154]  ? print_usage_bug+0xc0/0xc0
[ 1127.282203]  ? do_raw_spin_lock+0xc1/0x200
[ 1127.286426]  ? graph_lock+0x170/0x170
[ 1127.290215]  ? trace_hardirqs_off+0xd/0x10
[ 1127.294439]  ? _raw_spin_unlock_irqrestore+0x63/0xc0
[ 1127.299532]  ? find_held_lock+0x36/0x1c0
[ 1127.303585]  ? __lock_is_held+0xb5/0x140
[ 1127.307643]  ? check_same_owner+0x320/0x320
[ 1127.311952]  ? throtl_pd_free+0x21/0x30
[ 1127.315913]  ? rcu_note_context_switch+0x710/0x710
[ 1127.320834]  __should_failslab+0x124/0x180
[ 1127.325057]  should_failslab+0x9/0x14
[ 1127.328848]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1127.333676]  ? blk_throtl_init+0x3e6/0x630
[ 1127.337899]  ? blk_throtl_drain+0x7e0/0x7e0
[ 1127.342209]  ? blk_mq_can_queue+0x50/0x50
[ 1127.346340]  ? plug_ctx_cmp+0x110/0x110
[ 1127.350311]  blk_stat_alloc_callback+0x5b/0x280
[ 1127.354975]  blk_mq_init_allocated_queue+0x125/0x1580
[ 1127.360156]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1127.365678]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1127.370342]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1127.375346]  ? __mutex_init+0x1ef/0x280
[ 1127.379310]  ? __ia32_sys_membarrier+0x150/0x150
[ 1127.384054]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1127.388631]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1127.393201]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1127.397862]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1127.402173]  blk_mq_init_queue+0x63/0xb0
[ 1127.406222]  loop_add+0x32b/0x9c0
[ 1127.409663]  ? loop_lookup+0x102/0x220
[ 1127.413538]  ? loop_queue_rq+0x6c0/0x6c0
[ 1127.417589]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1127.422770]  loop_control_ioctl+0x178/0x500
[ 1127.427079]  ? loop_add+0x9c0/0x9c0
[ 1127.430695]  ? expand_files.part.8+0x9a0/0x9a0
[ 1127.435270]  ? kasan_check_write+0x14/0x20
[ 1127.439494]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1127.444411]  ? wait_for_completion+0x870/0x870
[ 1127.448979]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1127.454153]  ? loop_add+0x9c0/0x9c0
[ 1127.457768]  do_vfs_ioctl+0x1cf/0x16a0
[ 1127.461647]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1127.466048]  ? fget_raw+0x20/0x20
[ 1127.469488]  ? __sb_end_write+0xac/0xe0
[ 1127.473451]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1127.478973]  ? fput+0x130/0x1a0
[ 1127.482238]  ? ksys_write+0x1a6/0x250
[ 1127.486031]  ? security_file_ioctl+0x94/0xc0
[ 1127.490429]  ksys_ioctl+0xa9/0xd0
[ 1127.493870]  __x64_sys_ioctl+0x73/0xb0
[ 1127.497749]  do_syscall_64+0x1b1/0x800
[ 1127.501621]  ? finish_task_switch+0x1ca/0x810
[ 1127.506102]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1127.511023]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1127.515944]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1127.521300]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1127.526133]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1127.531306] RIP: 0033:0x455329
[ 1127.534481] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1127.542177] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1127.549429] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1127.556683] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1127.563934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1127.571185] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000022
2018/04/19 14:16:21 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, &(0x7f0000000040)={'bcsf0\x00', {0x2, 0x4e22, @multicast2=0xe0000002}})
dup(r1)

2018/04/19 14:16:21 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:21 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, 0x0)
ioctl$VT_RELDISP(r1, 0x5605)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000))

2018/04/19 14:16:21 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:21 executing program 5:
r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x3, 0x40000)
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000040)={0x1000, 0x8, 0x100000001, 0x0, 0x10001, 0x7ff, 0xfffffffffffffbff, 0x8, 0x5, 0xe3, 0x1, 0x10000, 0x0, 0x4, 0x64, 0x2, 0xa855, 0x27919c35, 0x2})
r1 = syz_open_dev$amidi(&(0x7f0000000180)='/dev/amidi#\x00', 0x10001, 0x1)
ioctl$LOOP_GET_STATUS64(r1, 0x4c05, &(0x7f0000000080))
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r3 = dup(r2)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f00000001c0)={0x80000001, 0x3})
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

2018/04/19 14:16:21 executing program 3 (fault-call:2 fault-nth:35):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:21 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7f, 0x0)
ioctl$DRM_IOCTL_AGP_RELEASE(r0, 0x6431)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:21 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

[ 1127.699907] FAULT_INJECTION: forcing a failure.
[ 1127.699907] name failslab, interval 1, probability 0, space 0, times 0
[ 1127.711211] CPU: 1 PID: 29512 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
2018/04/19 14:16:21 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:21 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:21 executing program 3 (fault-call:2 fault-nth:36):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:21 executing program 5:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400401, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000080)='/dev/loop-control\x00')
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$EVIOCSREP(r2, 0x40084503, &(0x7f00000000c0)=[0xbc, 0x6])
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$KDSETMODE(r0, 0x4b3a, 0xed)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1127.711222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1127.711228] Call Trace:
[ 1127.711253]  dump_stack+0x1b9/0x294
[ 1127.711275]  ? dump_stack_print_info.cold.2+0x52/0x52
2018/04/19 14:16:21 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x251)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:21 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000000))
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000040)={0xfffffffffffffffd, 0x0, 0xffffffffffffffff})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1127.711300]  should_fail.cold.4+0xa/0x1a
[ 1127.711318]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1127.711334]  ? __debug_object_init+0x57f/0x12c0
[ 1127.711349]  ? print_usage_bug+0xc0/0xc0
2018/04/19 14:16:21 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x6, 0x0)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x1, 0xa06, 0xfffffffffffffffe})
r2 = dup(r0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

[ 1127.711365]  ? graph_lock+0x170/0x170
[ 1127.711380]  ? perf_trace_lock+0xd6/0x900
[ 1127.711393]  ? debug_object_free+0x5f0/0x5f0
[ 1127.711409]  ? find_held_lock+0x36/0x1c0
[ 1127.711428]  ? __lock_is_held+0xb5/0x140
[ 1127.711452]  ? check_same_owner+0x320/0x320
[ 1127.711467]  ? rcu_note_context_switch+0x710/0x710
[ 1127.711484]  __should_failslab+0x124/0x180
[ 1127.711501]  should_failslab+0x9/0x14
[ 1127.711515]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1127.711531]  ? lock_downgrade+0x8e0/0x8e0
[ 1127.711552]  throtl_pd_alloc+0xd7/0x970
[ 1127.711568]  ? blk_throtl_dispatch_work_fn+0x480/0x480
[ 1127.711584]  ? _raw_spin_unlock_irq+0x27/0x70
[ 1127.711596]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1127.711609]  ? trace_hardirqs_on+0xd/0x10
[ 1127.711628]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1127.711643]  ? blk_throtl_dispatch_work_fn+0x480/0x480
[ 1127.711658]  blkcg_activate_policy+0xf4/0x580
[ 1127.711681]  blk_throtl_init+0x3d0/0x630
[ 1127.711694]  ? blk_throtl_drain+0x7e0/0x7e0
[ 1127.711710]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1127.711727]  blkcg_init_queue+0x277/0x390
[ 1127.711742]  blk_alloc_queue_node+0x8bd/0xe40
[ 1127.711758]  ? blk_init_allocated_queue+0x620/0x620
[ 1127.711777]  ? __mutex_init+0x1ef/0x280
[ 1127.711794]  ? __ia32_sys_membarrier+0x150/0x150
[ 1127.711814]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1127.711840]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1127.711857]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1127.711878]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1127.711894]  blk_mq_init_queue+0x4b/0xb0
[ 1127.711907]  loop_add+0x32b/0x9c0
[ 1127.711921]  ? loop_lookup+0x102/0x220
[ 1127.711933]  ? loop_queue_rq+0x6c0/0x6c0
[ 1127.711953]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1127.711968]  loop_control_ioctl+0x178/0x500
[ 1127.711980]  ? loop_add+0x9c0/0x9c0
[ 1127.711994]  ? expand_files.part.8+0x9a0/0x9a0
[ 1127.712013]  ? kasan_check_write+0x14/0x20
[ 1127.712032]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1127.712051]  ? wait_for_completion+0x870/0x870
[ 1127.712068]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1127.712078]  ? loop_add+0x9c0/0x9c0
[ 1127.712093]  do_vfs_ioctl+0x1cf/0x16a0
[ 1127.712113]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1127.712127]  ? fget_raw+0x20/0x20
[ 1127.712142]  ? __sb_end_write+0xac/0xe0
[ 1127.712160]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1127.712171]  ? fput+0x130/0x1a0
[ 1127.712185]  ? ksys_write+0x1a6/0x250
[ 1127.712201]  ? security_file_ioctl+0x94/0xc0
[ 1127.712217]  ksys_ioctl+0xa9/0xd0
[ 1127.712235]  __x64_sys_ioctl+0x73/0xb0
[ 1127.712251]  do_syscall_64+0x1b1/0x800
[ 1127.712268]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1127.712281]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1127.712297]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1127.712317]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1127.712337]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1127.712347] RIP: 0033:0x455329
[ 1127.712353] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1127.712369] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1127.712378] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1127.712386] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1127.712395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1127.712404] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000023
[ 1127.886189] FAULT_INJECTION: forcing a failure.
[ 1127.886189] name failslab, interval 1, probability 0, space 0, times 0
[ 1127.886209] CPU: 0 PID: 29533 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1127.886219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1127.886226] Call Trace:
[ 1127.886256]  dump_stack+0x1b9/0x294
[ 1127.886279]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1127.886299]  ? lock_downgrade+0x8e0/0x8e0
[ 1127.886323]  should_fail.cold.4+0xa/0x1a
[ 1127.886342]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1127.886363]  ? graph_lock+0x170/0x170
[ 1127.886383]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1127.886398]  ? pcpu_alloc+0x188/0x1380
[ 1127.886417]  ? find_held_lock+0x36/0x1c0
[ 1127.886438]  ? __lock_is_held+0xb5/0x140
[ 1127.886467]  ? check_same_owner+0x320/0x320
[ 1127.886482]  ? blk_mq_can_queue+0x50/0x50
[ 1127.886500]  ? rcu_note_context_switch+0x710/0x710
[ 1127.886514]  ? kobject_init+0x226/0x2d0
[ 1127.886532]  __should_failslab+0x124/0x180
[ 1127.886550]  should_failslab+0x9/0x14
[ 1127.886567]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1127.886583]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1127.886598]  ? find_next_bit+0x104/0x130
[ 1127.886622]  __kmalloc_node+0x33/0x70
[ 1127.886642]  blk_mq_init_allocated_queue+0x220/0x1580
[ 1127.886658]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1127.886669]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1127.886684]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1127.886693]  ? __mutex_init+0x1ef/0x280
[ 1127.886705]  ? __ia32_sys_membarrier+0x150/0x150
[ 1127.886719]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1127.886737]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1127.886752]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1127.886769]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1127.886784]  blk_mq_init_queue+0x63/0xb0
[ 1127.886796]  loop_add+0x32b/0x9c0
[ 1127.886813]  ? loop_lookup+0x102/0x220
[ 1127.886823]  ? loop_queue_rq+0x6c0/0x6c0
[ 1127.886839]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1127.886851]  loop_control_ioctl+0x178/0x500
[ 1127.886861]  ? loop_add+0x9c0/0x9c0
[ 1127.886874]  ? expand_files.part.8+0x9a0/0x9a0
[ 1127.886886]  ? kasan_check_write+0x14/0x20
[ 1127.886899]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1127.886915]  ? wait_for_completion+0x870/0x870
[ 1127.886930]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1127.886941]  ? loop_add+0x9c0/0x9c0
[ 1127.886956]  do_vfs_ioctl+0x1cf/0x16a0
[ 1127.886975]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1127.886987]  ? fget_raw+0x20/0x20
[ 1127.887000]  ? __sb_end_write+0xac/0xe0
[ 1127.887021]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1127.887034]  ? fput+0x130/0x1a0
[ 1127.887049]  ? ksys_write+0x1a6/0x250
[ 1127.887064]  ? security_file_ioctl+0x94/0xc0
[ 1127.887078]  ksys_ioctl+0xa9/0xd0
[ 1127.887093]  __x64_sys_ioctl+0x73/0xb0
[ 1127.887107]  do_syscall_64+0x1b1/0x800
[ 1127.887118]  ? finish_task_switch+0x1ca/0x810
[ 1127.887131]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1127.887144]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1127.887158]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1127.887173]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1127.887188]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1127.887197] RIP: 0033:0x455329
[ 1127.887203] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1127.887216] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1127.887223] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1127.887229] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1127.887236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1127.887243] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000024
2018/04/19 14:16:22 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f6469736302", 0x2, 0x0)

2018/04/19 14:16:22 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:22 executing program 3 (fault-call:2 fault-nth:37):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:22 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:22 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r0, 0xc028ae92, &(0x7f0000000000)={0x81, 0x6c1})
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000300)=ANY=[@ANYBLOB="0258dff5000000c2300000009fe662330aeb133aa5ebcd6cd35b232b3b94087b30a5cf71c0a0b6e471b9d9173f36e9f03b7994cc7b42398393134eb433b5f395172a11daf6a4ce869a709c8e7e0d547aac048b892a1e"])
ioctl$KVM_SET_FPU(r0, 0x41a0ae8d, &(0x7f0000000080)={[], 0x7, 0xffff, 0x4, 0x0, 0x7, 0x3001, 0x2, [], 0x25})
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000240)={0x3f, 0x5, 0xc6, 0x0, 0x0, 0xffff, 0x4, 0x3, 0x70bf4ad6, 0x2, 0x9a, 0x8, 0x0, 0xab, 0x800, 0x7, 0x1, 0x8, 0x7f})

2018/04/19 14:16:22 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x0, 0x0)

2018/04/19 14:16:22 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000000))
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0xffffffffffffffff, 0x2, 0x80, 0x3, 0x8e97}})

2018/04/19 14:16:22 executing program 0:
r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x204801)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680)={0xa, 0x0, [{0x4, 0x4f, &(0x7f0000000080)=""/79}, {0x4, 0xa9, &(0x7f0000000100)=""/169}, {0x2000, 0x1c, &(0x7f00000001c0)=""/28}, {0x0, 0x85, &(0x7f0000000200)=""/133}, {0xf000, 0xee, &(0x7f00000002c0)=""/238}, {0x10000, 0x35, &(0x7f00000003c0)=""/53}, {0x3000, 0x6d, &(0x7f0000000400)=""/109}, {0x6000, 0xcf, &(0x7f0000000480)=""/207}, {0xd000, 0xe1, &(0x7f0000000580)=""/225}, {0x100002, 0x1000, &(0x7f0000000680)=""/4096}]})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1128.738142] FAULT_INJECTION: forcing a failure.
[ 1128.738142] name failslab, interval 1, probability 0, space 0, times 0
[ 1128.749495] CPU: 0 PID: 29564 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1128.756688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1128.766041] Call Trace:
[ 1128.768640]  dump_stack+0x1b9/0x294
[ 1128.772286]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1128.777491]  ? __save_stack_trace+0x7e/0xd0
[ 1128.781828]  should_fail.cold.4+0xa/0x1a
[ 1128.785902]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1128.791019]  ? save_stack+0x43/0xd0
[ 1128.794649]  ? kasan_kmalloc+0xc4/0xe0
[ 1128.798542]  ? kmem_cache_alloc_trace+0x152/0x780
[ 1128.803395]  ? blk_stat_alloc_callback+0x5b/0x280
[ 1128.808242]  ? blk_mq_init_allocated_queue+0x125/0x1580
[ 1128.813614]  ? graph_lock+0x170/0x170
[ 1128.817422]  ? ksys_ioctl+0xa9/0xd0
[ 1128.821053]  ? __x64_sys_ioctl+0x73/0xb0
[ 1128.825122]  ? do_syscall_64+0x1b1/0x800
[ 1128.829197]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1128.834574]  ? find_held_lock+0x36/0x1c0
2018/04/19 14:16:22 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)="6e65742f6e65747374617402")

[ 1128.838647]  ? __lock_is_held+0xb5/0x140
[ 1128.842729]  ? check_same_owner+0x320/0x320
[ 1128.847060]  ? rcu_note_context_switch+0x710/0x710
[ 1128.851995]  __should_failslab+0x124/0x180
[ 1128.856238]  should_failslab+0x9/0x14
[ 1128.860045]  __kmalloc+0x2c8/0x760
[ 1128.863592]  ? kmem_cache_alloc_trace+0x616/0x780
[ 1128.868442]  ? blk_throtl_init+0x3e6/0x630
[ 1128.872681]  ? blk_throtl_drain+0x7e0/0x7e0
[ 1128.877002]  ? blk_stat_alloc_callback+0x84/0x280
[ 1128.881839]  ? blk_mq_can_queue+0x50/0x50
[ 1128.885971]  ? plug_ctx_cmp+0x110/0x110
[ 1128.889931]  blk_stat_alloc_callback+0x84/0x280
[ 1128.894595]  blk_mq_init_allocated_queue+0x125/0x1580
[ 1128.899775]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1128.905296]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1128.909954]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1128.914954]  ? __mutex_init+0x1ef/0x280
[ 1128.918916]  ? __ia32_sys_membarrier+0x150/0x150
[ 1128.923662]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1128.928239]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1128.932812]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1128.937478]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1128.941789]  blk_mq_init_queue+0x63/0xb0
[ 1128.945836]  loop_add+0x32b/0x9c0
[ 1128.949275]  ? loop_lookup+0x102/0x220
[ 1128.953154]  ? loop_queue_rq+0x6c0/0x6c0
[ 1128.957206]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1128.962383]  loop_control_ioctl+0x178/0x500
[ 1128.966689]  ? loop_add+0x9c0/0x9c0
[ 1128.970305]  ? expand_files.part.8+0x9a0/0x9a0
[ 1128.974874]  ? kasan_check_write+0x14/0x20
[ 1128.979097]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1128.984022]  ? wait_for_completion+0x870/0x870
[ 1128.988595]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1128.993772]  ? loop_add+0x9c0/0x9c0
[ 1128.997385]  do_vfs_ioctl+0x1cf/0x16a0
[ 1129.001266]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1129.005665]  ? fget_raw+0x20/0x20
[ 1129.009107]  ? __sb_end_write+0xac/0xe0
[ 1129.013072]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1129.018596]  ? fput+0x130/0x1a0
[ 1129.021861]  ? ksys_write+0x1a6/0x250
[ 1129.025651]  ? security_file_ioctl+0x94/0xc0
[ 1129.030050]  ksys_ioctl+0xa9/0xd0
[ 1129.033493]  __x64_sys_ioctl+0x73/0xb0
[ 1129.037370]  do_syscall_64+0x1b1/0x800
[ 1129.041245]  ? finish_task_switch+0x1ca/0x810
[ 1129.045729]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1129.050647]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1129.055564]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1129.060918]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1129.065750]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1129.070932] RIP: 0033:0x455329
[ 1129.074110] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1129.081811] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
2018/04/19 14:16:22 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x100408000, 0x0)
ioctl$EVIOCGABS2F(r0, 0x8018456f, &(0x7f0000000040)=""/24)
ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000000)={0x0, 0xe1c, 0x5})
ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000080)=0x40)

2018/04/19 14:16:22 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:22 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2000000802, 0x0)
connect$inet6(r1, &(0x7f000000cfe4)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c)
sendmmsg(r1, &(0x7f0000ad9000), 0xec, 0x0)
write$binfmt_elf32(r1, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x20}, [{}], "", [[], []]}, 0x258)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:22 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0)

[ 1129.089065] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1129.096320] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1129.103572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1129.110826] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000025
2018/04/19 14:16:22 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x40000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:22 executing program 3 (fault-call:2 fault-nth:38):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1129.346730] FAULT_INJECTION: forcing a failure.
[ 1129.346730] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.358526] CPU: 1 PID: 29595 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1129.365715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1129.375068] Call Trace:
[ 1129.377654]  dump_stack+0x1b9/0x294
[ 1129.381266]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1129.386441]  should_fail.cold.4+0xa/0x1a
[ 1129.390490]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1129.395576]  ? debug_object_free+0x5f0/0x5f0
[ 1129.399966]  ? graph_lock+0x170/0x170
[ 1129.403746]  ? trace_hardirqs_on+0xd/0x10
[ 1129.407891]  ? find_held_lock+0x36/0x1c0
[ 1129.411945]  ? __lock_is_held+0xb5/0x140
[ 1129.415996]  ? check_same_owner+0x320/0x320
[ 1129.420307]  ? rcu_note_context_switch+0x710/0x710
[ 1129.425216]  ? lock_downgrade+0x8e0/0x8e0
[ 1129.429348]  __should_failslab+0x124/0x180
[ 1129.433567]  should_failslab+0x9/0x14
[ 1129.437349]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1129.442449]  __kmalloc_node+0x33/0x70
[ 1129.446235]  blk_mq_realloc_hw_ctxs+0x6a4/0x1250
[ 1129.450979]  ? blk_mq_free_map_and_requests+0x160/0x160
[ 1129.456342]  ? __kmalloc_node+0x33/0x70
[ 1129.460308]  ? __kmalloc_node+0x33/0x70
[ 1129.464262]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1129.469257]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1129.474522]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1129.479532]  ? kasan_unpoison_shadow+0x35/0x50
[ 1129.484101]  ? kasan_kmalloc+0xc4/0xe0
[ 1129.487977]  blk_mq_init_allocated_queue+0x2b8/0x1580
[ 1129.493150]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1129.498667]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1129.503317]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1129.508311]  ? __mutex_init+0x1ef/0x280
[ 1129.512277]  ? __ia32_sys_membarrier+0x150/0x150
[ 1129.517032]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1129.521607]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1129.526169]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1129.530820]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1129.535128]  blk_mq_init_queue+0x63/0xb0
[ 1129.539172]  loop_add+0x32b/0x9c0
[ 1129.542610]  ? loop_lookup+0x102/0x220
[ 1129.546477]  ? loop_queue_rq+0x6c0/0x6c0
[ 1129.550537]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1129.555712]  loop_control_ioctl+0x178/0x500
[ 1129.560022]  ? loop_add+0x9c0/0x9c0
[ 1129.563648]  ? expand_files.part.8+0x9a0/0x9a0
[ 1129.568212]  ? kasan_check_write+0x14/0x20
[ 1129.572433]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1129.577346]  ? wait_for_completion+0x870/0x870
[ 1129.581914]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1129.587091]  ? loop_add+0x9c0/0x9c0
[ 1129.590701]  do_vfs_ioctl+0x1cf/0x16a0
[ 1129.594574]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1129.598966]  ? fget_raw+0x20/0x20
[ 1129.602401]  ? __sb_end_write+0xac/0xe0
[ 1129.606358]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1129.611881]  ? fput+0x130/0x1a0
[ 1129.615143]  ? ksys_write+0x1a6/0x250
[ 1129.618927]  ? security_file_ioctl+0x94/0xc0
[ 1129.623316]  ksys_ioctl+0xa9/0xd0
[ 1129.626754]  __x64_sys_ioctl+0x73/0xb0
[ 1129.630622]  do_syscall_64+0x1b1/0x800
[ 1129.634503]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1129.639421]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1129.644341]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1129.649695]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1129.654521]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1129.659689] RIP: 0033:0x455329
[ 1129.662867] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1129.670571] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1129.677821] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1129.685069] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/04/19 14:16:23 executing program 0:
socket$nl_generic(0x10, 0x3, 0x10)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:23 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:23 executing program 2:
r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x3, 0x40)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000140)={0x6, 0xc9, "cb75d9aa189247f7c405f6200117c7607852c04526985bcf183ba9966a1f64b5d00f90d5b36f4d7a80d9e4fc4da287cb012d8f45f076358a37b23be46d04a38a66d33297b41befc0294460a35bb810864a6153cba219f56aa9ff9614e7255447142448d7a9a180d9dba50f5121d2429c8294724c228f4a4969fad6c45de4e9f59e1d5ac16845265b79c0c97e20a8a321de8cfcd3f500c83bc0524dddde01b7877330dcf857ec45d5d98eaeea6d23a5bbfec1d4c4cf25a917d0c13ef642dd6f34692006aa26995f7c1e"})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100)='/dev/snd/controlC#\x00', 0x9, 0x8040)
r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, r3)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0], 0x1})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0)

2018/04/19 14:16:23 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:23 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xb, 0x22004)

2018/04/19 14:16:23 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
socket$netlink(0x10, 0x3, 0x9)

2018/04/19 14:16:23 executing program 3 (fault-call:2 fault-nth:39):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:23 executing program 5:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x8000, 0x0)
ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000080)={{0x5, 0x1, 0x1, 0xe20, 0x8, 0x4}, 0x8})
ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000100)='gre0\x00')
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f00000000c0)={0x76, 0x66})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1129.692323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1129.699584] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000026
[ 1129.813578] FAULT_INJECTION: forcing a failure.
[ 1129.813578] name failslab, interval 1, probability 0, space 0, times 0
[ 1129.824900] CPU: 1 PID: 29616 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1129.832091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1129.841449] Call Trace:
[ 1129.844048]  dump_stack+0x1b9/0x294
[ 1129.847670]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1129.852853]  ? blk_mq_realloc_hw_ctxs+0xf3/0x1250
[ 1129.857692]  should_fail.cold.4+0xa/0x1a
[ 1129.861745]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1129.866843]  ? lock_downgrade+0x8e0/0x8e0
[ 1129.870979]  ? graph_lock+0x170/0x170
[ 1129.874774]  ? find_held_lock+0x36/0x1c0
[ 1129.878828]  ? __lock_is_held+0xb5/0x140
[ 1129.882886]  ? check_same_owner+0x320/0x320
[ 1129.887216]  ? rcu_note_context_switch+0x710/0x710
[ 1129.892147]  __should_failslab+0x124/0x180
[ 1129.896373]  should_failslab+0x9/0x14
[ 1129.900161]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1129.905255]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1129.910781]  ? find_next_bit+0x104/0x130
[ 1129.914837]  __kmalloc_node+0x33/0x70
[ 1129.918627]  blk_mq_realloc_hw_ctxs+0x28d/0x1250
[ 1129.923381]  ? blk_mq_free_map_and_requests+0x160/0x160
[ 1129.928737]  ? __kmalloc_node+0x33/0x70
[ 1129.932697]  ? __kmalloc_node+0x33/0x70
[ 1129.936659]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1129.941662]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1129.946924]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1129.951932]  ? kasan_unpoison_shadow+0x35/0x50
[ 1129.956503]  ? kasan_kmalloc+0xc4/0xe0
[ 1129.960386]  blk_mq_init_allocated_queue+0x2b8/0x1580
[ 1129.965566]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1129.971089]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1129.975748]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1129.980747]  ? __mutex_init+0x1ef/0x280
[ 1129.984707]  ? __ia32_sys_membarrier+0x150/0x150
[ 1129.989450]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1129.994049]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1129.998620]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1130.003286]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1130.007597]  blk_mq_init_queue+0x63/0xb0
[ 1130.011644]  loop_add+0x32b/0x9c0
[ 1130.015084]  ? loop_lookup+0x102/0x220
[ 1130.018957]  ? loop_queue_rq+0x6c0/0x6c0
[ 1130.023011]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1130.028220]  loop_control_ioctl+0x178/0x500
[ 1130.032526]  ? loop_add+0x9c0/0x9c0
[ 1130.036143]  ? expand_files.part.8+0x9a0/0x9a0
[ 1130.040710]  ? kasan_check_write+0x14/0x20
[ 1130.044934]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1130.049854]  ? wait_for_completion+0x870/0x870
[ 1130.054424]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1130.059600]  ? loop_add+0x9c0/0x9c0
[ 1130.063215]  do_vfs_ioctl+0x1cf/0x16a0
[ 1130.067095]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1130.071490]  ? fget_raw+0x20/0x20
[ 1130.074930]  ? __sb_end_write+0xac/0xe0
[ 1130.078895]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1130.084415]  ? fput+0x130/0x1a0
[ 1130.087688]  ? ksys_write+0x1a6/0x250
[ 1130.091479]  ? security_file_ioctl+0x94/0xc0
[ 1130.095875]  ksys_ioctl+0xa9/0xd0
[ 1130.099319]  __x64_sys_ioctl+0x73/0xb0
[ 1130.103194]  do_syscall_64+0x1b1/0x800
[ 1130.107069]  ? finish_task_switch+0x1ca/0x810
[ 1130.111555]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1130.116472]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1130.121392]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1130.126746]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1130.131579]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1130.136752] RIP: 0033:0x455329
[ 1130.139926] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1130.147622] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1130.154876] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
2018/04/19 14:16:23 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:23 executing program 5:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x100, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_bt_cmtp_CMTPCONNADD(r0, 0x400443c8, &(0x7f0000000080)={r1, 0x7f})
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f00000000c0))
r3 = dup(r2)
ioctl$PIO_UNIMAPCLR(r3, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

2018/04/19 14:16:23 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x9)
ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, &(0x7f00000002c0)={0x0, 0x3, 0x7, 0x2, &(0x7f0000fff000/0x1000)=nil, 0x80})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)=<r1=>0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000240)={0x80000000, 0x7, 0x200, 0x95, 0x4c2b})
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000000c0)={{0x9, 0x3, 0x9, 0x1, "193bd0c09efff6a8c159d4e5b7e1f84ad261c7c526057807df0762f55c3976380f7b49e4c5d8082f590330c3", 0xff}, 0x0, 0x0, 0x3, r1, 0x9, 0x6, "fed72ee3e3555bbeaee041b04a26619bd103b8f4f84373f887ddd8074b8a2d1e061a84fa2f521b93a294107e7471d014e93f70c100c22e40669105b419bad1a7", &(0x7f0000000080)='/dev/input/mouse#\x00', 0x12, [], [0x6, 0x8, 0x2b0b, 0x9]})

[ 1130.162132] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1130.169384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1130.176636] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000027
2018/04/19 14:16:23 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)="2f70726f632f7379732f6e65742f697076342f76732f706d74755f64697363ff", 0x2, 0x0)

2018/04/19 14:16:23 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:23 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:23 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = shmget(0x1, 0x4000, 0x78000000, &(0x7f0000ffb000/0x4000)=nil)
shmctl$SHM_LOCK(r2, 0xb)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
socket$nl_crypto(0x10, 0x3, 0x15)

2018/04/19 14:16:23 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x2004, 0x0)
ioctl$TIOCSTI(r0, 0x5412, 0x1)

2018/04/19 14:16:23 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000040)={0x11f, 0x80000001})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:23 executing program 6:
syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xd1b, 0x18000)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)="6e65742f6e657473748374f9e3ccf83541777c54d0bb09a470d300")

2018/04/19 14:16:23 executing program 0:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x2000, 0x0)
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r0, 0x800442d4, &(0x7f0000000080)=0x1)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

2018/04/19 14:16:23 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:23 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f00000000c0)={0xffffffff, 0x4})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:23 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
memfd_create(&(0x7f00000001c0)='proc@+$wlan0ppp1em1\x00', 0x3)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getpgid(0x0)
getpgrp(0xffffffffffffffff)
r1 = request_key(&(0x7f00000012c0)='trusted\x00', &(0x7f0000001300)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000001340)='proc@+$wlan0ppp1em1\x00', 0xfffffffffffffff8)
add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, r1)
flistxattr(0xffffffffffffffff, &(0x7f0000000040)=""/26, 0x1a)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, &(0x7f0000000080))
ptrace$pokeuser(0x6, 0x0, 0x0, 0x0)
r2 = openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f00006f4000)={0x80fed, 0x11, 0x0, <r3=>0x0})
dup3(r2, r3, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00003c4ff7)='/dev/kvm\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000002d40)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000433000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000445000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="0f350f01cac4e3d17e2b3666baf80cb8b73e9582ef66bafc0cec0f20e035000100000f22e066baf80cb84e823d89ef66bafc0ceceabb3e00003f00c174920000b805000000b9000000000f01d99a000000005b00", 0x54}], 0x1, 0x0, &(0x7f0000000140), 0x0)
ioctl$KVM_GET_DIRTY_LOG(r5, 0x4010ae42, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000ffd000/0x1000)=nil})
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000240)=""/107, &(0x7f00000002c0)=0x6b)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$DRM_IOCTL_GET_UNIQUE(0xffffffffffffffff, 0xc0106401, &(0x7f0000001280)={0x1000, &(0x7f0000000280)=""/4096})
ioctl$KVM_DIRTY_TLB(0xffffffffffffffff, 0x4010aeaa, &(0x7f00000000c0)={0x80000000, 0x1})
setsockopt$sock_int(r6, 0x1, 0xc, &(0x7f0000001380)=0x1, 0x4)
r7 = dup(r0)
ioctl$LOOP_CTL_ADD(r7, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:24 executing program 1:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x8000, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x4)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:24 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x2, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:24 executing program 6:
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000))
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000040))
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000240)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000180)="0720b7e1db7c0cfb9ba427e247ef46a1bd4036ec5a8c16bdf932aff718373a7298a50f351836065ab581e5dbaead79b1ae0952e6616b43e73c6ee53bc97919bd119efcbf01c8d89ba79bc3df791322e0ffdb04abec51caa6e7b643840fa733b322e7cab8047c828672ae17b382abefde7682578ded551e14806c0d2c1fac6f25c7d9aced73d0183561090000000000000000000000000000")

2018/04/19 14:16:24 executing program 3 (fault-call:2 fault-nth:40):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:24 executing program 0:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x2, 0x0)

2018/04/19 14:16:24 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001200)='/dev/hwrng\x00', 0x1, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000001240)=0x1)
sync_file_range(r0, 0x8, 0xb7f5, 0x6)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$EVIOCGUNIQ(r2, 0x80404508, &(0x7f0000000080)=""/4096)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f0000000040)=0xeaf)
ioctl$DRM_IOCTL_GET_MAGIC(r2, 0x80046402, &(0x7f0000001100)=0xdce)
socket$can_bcm(0x1d, 0x2, 0x2)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/audio\x00', 0x10040, 0x0)
fallocate(r2, 0x2, 0x1000, 0x5f3ad671)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f0000001080)=0x10000)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r3, 0xc08c5335, &(0x7f0000001140)={0x4, 0x5972, 0x3, 'queue0\x00', 0x5})

2018/04/19 14:16:24 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
socket$alg(0x26, 0x5, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)
readahead(r1, 0x6, 0x7)
ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f0000000240)=""/144)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04)

2018/04/19 14:16:24 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xffffffeb)

[ 1130.682731] FAULT_INJECTION: forcing a failure.
[ 1130.682731] name failslab, interval 1, probability 0, space 0, times 0
[ 1130.694068] CPU: 1 PID: 29676 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1130.701257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1130.710610] Call Trace:
[ 1130.713211]  dump_stack+0x1b9/0x294
[ 1130.716853]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1130.722062]  should_fail.cold.4+0xa/0x1a
[ 1130.726136]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1130.731253]  ? is_bpf_text_address+0xd7/0x170
[ 1130.735760]  ? kernel_text_address+0x79/0xf0
[ 1130.740174]  ? graph_lock+0x170/0x170
[ 1130.743981]  ? unwind_get_return_address+0x61/0xa0
[ 1130.748916]  ? find_held_lock+0x36/0x1c0
[ 1130.752971]  ? __lock_is_held+0xb5/0x140
[ 1130.757040]  ? check_same_owner+0x320/0x320
[ 1130.761346]  ? __lock_is_held+0xb5/0x140
[ 1130.765397]  ? rcu_note_context_switch+0x710/0x710
[ 1130.770320]  __should_failslab+0x124/0x180
[ 1130.774543]  should_failslab+0x9/0x14
[ 1130.778330]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1130.783417]  ? __lock_is_held+0xb5/0x140
[ 1130.787478]  blk_alloc_flush_queue+0xc5/0x3d0
[ 1130.791961]  ? blk_insert_flush+0xaf0/0xaf0
[ 1130.796273]  ? kasan_unpoison_shadow+0x35/0x50
[ 1130.800843]  ? kasan_kmalloc+0xc4/0xe0
[ 1130.804721]  ? __kmalloc_node+0x47/0x70
[ 1130.808684]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1130.813690]  ? blk_mq_sched_init_hctx+0x117/0x1a0
[ 1130.818522]  blk_mq_realloc_hw_ctxs+0x956/0x1250
[ 1130.823274]  ? blk_mq_free_map_and_requests+0x160/0x160
[ 1130.828630]  ? __kmalloc_node+0x33/0x70
[ 1130.832597]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1130.837609]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1130.842882]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1130.847891]  ? kasan_unpoison_shadow+0x35/0x50
[ 1130.852462]  ? kasan_kmalloc+0xc4/0xe0
[ 1130.856348]  blk_mq_init_allocated_queue+0x2b8/0x1580
[ 1130.861526]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1130.867062]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1130.871729]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1130.876729]  ? __mutex_init+0x1ef/0x280
[ 1130.880690]  ? __ia32_sys_membarrier+0x150/0x150
[ 1130.885434]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1130.890013]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1130.894585]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1130.899249]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1130.903561]  blk_mq_init_queue+0x63/0xb0
[ 1130.907609]  loop_add+0x32b/0x9c0
[ 1130.911049]  ? loop_lookup+0x102/0x220
[ 1130.914920]  ? loop_queue_rq+0x6c0/0x6c0
[ 1130.918976]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1130.924153]  loop_control_ioctl+0x178/0x500
[ 1130.928459]  ? loop_add+0x9c0/0x9c0
[ 1130.932076]  ? expand_files.part.8+0x9a0/0x9a0
[ 1130.936643]  ? kasan_check_write+0x14/0x20
[ 1130.940865]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1130.945783]  ? wait_for_completion+0x870/0x870
[ 1130.950351]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1130.955526]  ? loop_add+0x9c0/0x9c0
[ 1130.959139]  do_vfs_ioctl+0x1cf/0x16a0
[ 1130.963022]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1130.967419]  ? fget_raw+0x20/0x20
[ 1130.970861]  ? __sb_end_write+0xac/0xe0
[ 1130.974824]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1130.980343]  ? fput+0x130/0x1a0
[ 1130.983611]  ? ksys_write+0x1a6/0x250
[ 1130.987404]  ? security_file_ioctl+0x94/0xc0
[ 1130.991800]  ksys_ioctl+0xa9/0xd0
[ 1130.995247]  __x64_sys_ioctl+0x73/0xb0
[ 1130.999123]  do_syscall_64+0x1b1/0x800
[ 1131.003000]  ? finish_task_switch+0x1ca/0x810
[ 1131.007488]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1131.012403]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1131.017321]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1131.022674]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1131.027507]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1131.032689] RIP: 0033:0x455329
[ 1131.035863] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1131.043560] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1131.050813] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1131.058065] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1131.065316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1131.072569] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000028
2018/04/19 14:16:24 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x40000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:24 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0x3, &(0x7f0000001280)=[{&(0x7f0000000140)="8bd9b336b8e6c90aed6fde", 0xb, 0x5}, {&(0x7f0000000180)="e6a0b8ecd17bed5368c41d759848a09249788f4bfe5f3555a069d0dcf3036db9189b77430ffe9a664879be1e41df4dfc4eccc6202a9c4054b57fd5ddcb3f36f62eda52f7bc337dc99e90bf3846f75318cc49013a3648a266071dfd56cda8fae7ad0c4c577a7aa8be8941902ad766424687e4c166208cd6fe3c0df265abc7834fc805eb6f4fee8050e3d551e723fef951702347370cffc0d51213479f072f64167a93973073462ee4d207e83f3c5615ad6a6d4933f1045e063b0a3146f87d665f2f3c6c490d01ceb3f22836cd02a0bb66", 0xd0, 0x7fff}, {&(0x7f0000000280)="8c6bf02a6a8ed64859595e7af42a892b32d4443aacfaecd003a0b90d51cdc86b409a46f4fdc5760045d26be93e2939dc765559bb5edd1491c9d7e219c51313ff9e2950dd2e8181a0b00c170a219e9275a1fac4ead7ab81cac81736dd045bdb49b30cf6c9a2c90ae68de1ca1f673ad559d081ec20f74ea72a57a7dcfa0047bbe2c7a66f1b9b44fee0c7882ef6bc47b71594ba8281227b9396f3c551f0094826416d5ff50172677255fa51fc42c88091f9de29beed96d363e2158195354f860c9ffd858e3ce54a370b014e428fba9c3aed4ecd58f95fe7a2c4f0d4ff2e0a9827c3952b3b1c0268945a10cea0382abcae124090e4cdeace696b78c35e1a6ff0f0b78eead66c706c291ceb1c87a282229569c4e4e2fd4b68fed85efd3248777d39e2448563feebd04925d3233255a5648be83e7bf5e025104d668d01708007765e11e9ba6e3e013e413e3b490721f52cd1439fc2426c73a057ba919e5a9f1a31481e7501f04e7186ce11cc3821ca4e647b89a435f40302ae54e399c499b0e972274438083a37ffc61f8dca1093ad76ee9a23a7e51b08643bd6475956d42d56f19c577e659675859034ac326b0961efa3af6fba2c7e37e0bf63c121c07127df08d44678b4078a2cccca92bd67785269cd50aa30bdbed43338620354038979d75d02420a4c2325a15acf4fd13d2b79a9b357b1052655128244ae1c3ed234c1c500bbeb2032f58f956d1e32716332ad08f040d38ce0d2fa6a69be9a40335494a242f7a87c0c84ea2caf7f796cf62ea68fa6610ce92cc4a055017db4921c572459036bc7f36fc1ed5e8b6f7da3fa4b7d82d62950391f8771debca476dc93e14ac808915dae90ecacfa49e8b113ef194fcaa45d7bf2b93b9d495d57d1b18646739816cfbb24eb2af2c879ae99b505add8da224f9d9a91c398151357e865ac2a58c189ed394df8c24a89e5dc87547161f6cbe9673e5142506e21065bfdc368480dbdcaed637bb0f52000eaa5f1a2ebe0d961b462a5c865d5ffd9d4f721399962799924b01750a0d959193119298b83fa45c18e7297fd8ccd46a034f1c215232e35c2cff4c410fa28c87af599a96d3b15fc4156f99a15df208b63f85034b307998234148f3e591b1cb744a275bfe882c20f30dc304676d405e4d2cf746f4e6b24393eb769f6372448c708e95c8e82335581e00815ab57d73dabbcc7f6e7410114bb6e728db73b108bf8dd08d890936435636d5e725642918e3815f92247af463890cc0486a10056b8276d93832af5e3dbebd823ff0d3719cc4f0216df3b9b2685b54e3834385809d0c4d6565293326dce208592cc8dfb8f6436eae1a06e26ae117c271307dc3f4291c1f4ef182735e5329671385392986fb3f8ce55ce3fb53c9cc94c88f99aad029cd4c5f862c232cd46d868334857fd6ca83d95f079728060b051375de6f1fc940253d7d5e0232e1f841dd9713faff08e320988deb6ba6adf62f405169d724f1c694d582d8b0d9b2c59025085bfbffc18ef50efa6a5cac371fc9a6c331f3a9299faa63ea11f45ad79e5cded95686f1d8d37ca0bb7059b60b6f41a819cf335de4d67d219dbf9674b74af1cabaf461a980d0bf6629ba218c3e8f9d7a66407ee63c67bbae794728e3dddecc8362d1070cdc4f60d29eb4716474c0835ee43eaf37cf8072adb72948236e6a4078b77886e58df7aaf817bcd2f2614b8972817f07a1de83c5f7fd392b45e3ffedb20858ef9957be0da1f4bc1c9ad7c58caad41f4777dc3617c717dee8444631476ec9b26932b719bb2e81ce1c76f5c260861556d954fc0b632237277cee3e1567c3a9e9c38334c02235a32d2a48b762c42e7c7d4ba5fe6af32f42dcf58a64ab9c3a967bc65d7241b42224f4fc5a6fea6f226009d105fd671088209d0314dbeb7bd28dfca1dc760e09adb30643469dbafa89de15a79694555b1bfa56073d676b336717b360814ffd8cbcb6a0fad6ee4f7e4313aeea035b4c44f98d75b8b9b86f72ab4d6ab7dc368aa4d8a5c04c0fa61172b7fa0244895168bfff78579ca4a9dcee93d04ee42cbbaa4c3f2d15ad5844aa1127a192fc37fe3d858b75a0b61945c7825f69b6e330cac205158a21a42fa97d0cadfa7268e504ea34d6da376b6ad896730edac4f2b914a12649251b98aaac91863ae20d47e9cfb3672093baf13343d7cab9a2ee26925b4f6a013c3e19e7df45e7e8f417adb7bc50ef71372590889be0d9e7a3b596d2a13de7d87c26d85944214054ca2016a6874f9e03b84118192edd60e266f589a7c081307f9fb7b5191fe0fef1b0fd0c7b1cab3b770bb539254edf88919dd904b079b4fdd907660cb53386ab84d0eee86257e4c30f85678abd9c8e74769f0faebb82505b4f63da11ffd9720635dd4113d17bd0fe9efa9a1b13adf2f04c0e80f42d5cde197b6fd20da803eb750853139cd8f338cbe9feb39a54a34664dc2c134c7d08ada3af35a73cf4a8e341e8afe8ad1f9886608e5cb30571fe66006f8ef18f453465ccc39b5b9be03b5be5673d89fcc249874edd726d3ef714ed1a3db378f2c5d17aab8eed76ad628ecd5a5c38ba8005261147673a6773fdd7bd07f031e3b10575b9f2e43d43b0784e289bbe06fb3d7308c8f50fb7646b1e8a9b900a172352ddc0427e1fd1c4b80deb9f538639305a85a323a367970ca5f33e87a4a8db7470414b4ed0dea4360df08802fe050ee98f031b7ce430b5fce06150cfc14200a73c5aa40c16f80471b1fa97fba0d4706015ac12a2e87bdc76fefddb554494328f1d99df858ea1953de0b8cea87cde61b6179882b7fa13c1771f750347528ccbc3a4ecc67fe5729ae99a88a41189887b0616a7c95da72124fe50e5541b9e9f5357b4d39a3d6f064e98b2ab83711dfa71c38ad0adf455452b27f035bd19efb5a621a6b86c95c66bf31fc583912614bbc0afa0e0f366f6212f938ff33a012cb4031beb4ac72b36c188de871d6ad45af262aad8b5ffaa90dd1b98ae990ec1276682f9a442143f122a1b400f17b000c672175f0d2281276301cad3080be5b65906646fc2a5c50d24dfa5a0e47549167098c0893c3c922ab0180444be99e161faa1caa5bc2041035550579e563492a1248b62174dc3aa321fcf392c9ae0c808de07da0a07d62d5312783391801ededa4705813efa3a351b0c8a66ce532f88573a1aa77666915d7090f179ce2c430bbedc337ba425fcd1998f6aea159727071898189829c1a8f8249d1b0b46ee3a676a516bd0673930b498cc59a069bc60ae83bd2c7b75f0e7beb76fc51728d00421322242d942fa99e1387fb52f9d7468ca05f230df1d2cb99e97062bd85c9828d67bf9cc9cb02b73d137b983848e4085836b43e9f3e1e00d2bbc7e2c38a788e9f4e42864f07fcbfdc9631c84875a3713f4ca4e79eb0a14ee9d3ca65078783586d9301281c0f474e8b71c646f4719aecc225106b28c719ea1e6951efd5bb4bd0cb27d10019cf818c4f946030cc4c2acd0c022ab3baec4e51e061851f183f13a86702b8f1748248fbb09c0cab984d984ce967373227a0170357915e9a0b064ceeb32866c48f42679720e31a156fe5a3f8d12ccf0dcdab80eda08e88193ec9c003f12b7fd1888add5d44be0906991fa34c98fbbfe83faee0118b6333a518781127b092b521ee2930e739fa8cb213c26add34b83ceee067e3fb119c6ab0aaeba16188a438e7d46f5b4f60745c82b2a2941fc44650b4d245183c5b1304e082c3739d3f6a165b5ad8ec29df180f1995438dd35f3d4a9de96973828839fdf0fa45cddd84a09861f299bfb1845836dd5f4087b6f97f5e4259dac3f3c13fdedfd3dde3719a08d53695d55378e4c87722a860a5dbbcde9d392fb413a2cf41b701e4cd3da5ce186a4c29aabe77635692a1cc48c0d103cc931e3770aca54c83ea0606a794eddd5171c33aba64e1260392dfde57f0ea05d2d3826eeb056ca85539208e5448ec22e375852e4287ba91c28a7bab0877cc837f0bfc7129083f3375e68c3fb22091393c6b18fb2e5183623b2cda12fdaa0aad24336098549245be4309a44ff6879a99217b73a823c6b014a9931852035e12d21226c26a7089ebd1aa450d3621863b95695d0ebb45d82485e8d89ee61d8a7e867b3dde13bae667145514618c2343d0e7816277311813119610344fead18b5a7de4c4a552c564599bf4bbf36328c3151eb81c280d5c9201073dd71628b8e53ca84e467475b4d62533abab3aac21ee442aff65ed412c74f0380009ff76883e7df272ff08fdcbf9a84b2ebb99294fa12d6405f5af2d7ebf381613c9df78a0935712edbc9a8a53a5834a77f2689a2927bb11d6d2ed51f07755010885056db92154ee4d9730717d93671c16e1a3babeb0dfcf3c707f7fb924b8dc3f217edad8fe0af8706e93b91332a915c1d538e05eeb5d3313e8c3a300ecb229d8587889f2ee58c7692e491e2910673e9cc2d1e21207503d52e3af4c47cecda9dbb1de2cda6d1e3655529dbd9b566488b98ef016f8453a103b9d2b0743a11f61a1082824f6017888237042de141424ad00c1df3b8c3214ffb6cc9814ad15c5cdf8776e96f747885c6f6cef6d2598ee140b1d5ada9b5625a7bfaaa14d62ddb53e43c5417d3af44e82749c4e56b4affc2a35f103454465c31e8bd3f2a2bc7c7d00810c1adab0069aadc3474f8af1728177f4f29dbc5c112d60e724526fdecb8a4bc1999bc84005e49aaf1002a165924696b80a6ad2aa5eef6d5899c0da30f4f7beaeb7adeb7a90b4ab635aa8f02b5e713bc74627256fc6db5b6a33a94e1df458ada8a0b48fd049f030069557aea86d940862f9e7ccd2de113c3cee5d8ba5e4a129c9186ed95adf8bcf494e54d8558701438f67f1904d6ba65ba26e4dcb0f1fb99fb493a1edc102f25e449c358099895f636b45571eab919a9903961865a5c528cd401913e3999e0526257837089e98e66f1205ae8f1c33ddf1ba7d2834454a1ed7ecaa0378641adca0e59dbd5b33caf20b52a45164c10adcd0e4ecce6669c5450c5f85dbd5d09ee3a8e23125b706151871bc746f439ec52453caeb54ab1cf27abe4f0a1a56a199ba7ca65c9a074503ff36f6fc46bcb78430e4ff9c522f1656cb47a0b881f3112851626d61968bd3d83f267a48e1fc8da8f5b9a0128826b064748405a6bfc7b9c6d9c91804befdf3a03fcf9f103bdeb78c5ac703f3e74725fe6f9d8e6766a0ee27cd5ed46c60da1f0d00b70a6cd32c8a39aec740c9cd0efd0d6341640e42c98e586416ca352861fdb8347a75ed7400d91f350647083f366c4cb238bbe4cf490d045803c84db442760c04c59012fc25eaeadc570ad5c57ed76c42c220f13288fc3b693343573ac38ba9d2d765dcc1fcbe9e2b183d11a501fc532b93137ac847653993ff4026cae27a8d7346cd3ec16708e59d99747a45d2cccce310e92a0a678b262293c0b9597a440b0685dbaae4b6acc641792647a9fde5fb4142fb387a81b10506a4804df307de12800138a4fdc558d546dc355f03530851d9c032952392022856b800ef9d7a9931db6877a2621cd9e726c1ee6b749cc97eec01693bd97be39c260ad806954cda6c9427a7f83a11fede9425f8944791cf17ccaf6fb8584dbc3fe51122e8b9f96d6e482a888c34b1906ab4ce4a748346565666dc1a2a7c4449ca4f3c9b9eb6e8a401541431a2b0a2271e4195f225d95a261736cddeffec560475b926a65ead1a05d9afd12a11827ff3a2960ca191234ae24449876a07ca82feb1fd6fb473913f8a5cb697d96b9974d8ffd39795598c6fa8a35b", 0x1000, 0x9}], 0x240080, &(0x7f0000001300)={'nouuid,', {[{@quota='quota', 0x2c}]}})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x40000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000080)={0x55c6, 0x3, 0x6, 0x20000000000000})

2018/04/19 14:16:24 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000000)=<r2=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000080)={{0xfffffffffffffff9, 0x2, 0x8db, 0x6, "8b5e83f18fe3f2e5206db0c8530faf83510c8df2a01ba5ee63080178c61c309e87dfb222d0ac7f4d9a368b50", 0x2}, 0x0, 0x0, 0xff, r2, 0x2, 0x8, "3583732d90cfd0f2ba47e5a260822a18452569ffb11656f45c736a63a64bca3f155efa2b07b8a6a29760538669bc315692a8cd2c5c0b8a7ee8e8a838770a7722", &(0x7f0000000040)='/dev/loop-control\x00', 0x12, [], [0x96, 0x1ff, 0x1, 0xfff]})

2018/04/19 14:16:24 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000080)={0x10001, 0x3208, 0x2, 0x0, 0x9, 0xb1})
syz_open_dev$urandom(&(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x400000)

2018/04/19 14:16:24 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xffffffff00000000)

2018/04/19 14:16:24 executing program 3 (fault-call:2 fault-nth:41):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:24 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_ASSIGN_SET_INTX_MASK(r0, 0x4040aea4, &(0x7f0000000000)={0x9, 0x4, 0x2, 0x1, 0x7})
ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000040)="706f7369785f61636c5f616363657373237d2824f000")

2018/04/19 14:16:24 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000)={0x0, 0x0, 0xfff})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x1, 0x102)

[ 1131.230331] FAULT_INJECTION: forcing a failure.
[ 1131.230331] name failslab, interval 1, probability 0, space 0, times 0
[ 1131.241770] CPU: 1 PID: 29698 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1131.248969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1131.258315] Call Trace:
[ 1131.260895]  dump_stack+0x1b9/0x294
[ 1131.264514]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1131.269690]  ? kasan_check_read+0x11/0x20
[ 1131.273824]  should_fail.cold.4+0xa/0x1a
[ 1131.277873]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1131.282960]  ? is_bpf_text_address+0xd7/0x170
[ 1131.287442]  ? kernel_text_address+0x79/0xf0
[ 1131.291839]  ? graph_lock+0x170/0x170
[ 1131.295627]  ? unwind_get_return_address+0x61/0xa0
[ 1131.300545]  ? find_held_lock+0x36/0x1c0
[ 1131.304603]  ? __lock_is_held+0xb5/0x140
[ 1131.308659]  ? check_same_owner+0x320/0x320
[ 1131.312963]  ? __lock_is_held+0xb5/0x140
[ 1131.317013]  ? rcu_note_context_switch+0x710/0x710
[ 1131.321939]  __should_failslab+0x124/0x180
[ 1131.326159]  should_failslab+0x9/0x14
[ 1131.329944]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1131.335035]  ? __lock_is_held+0xb5/0x140
[ 1131.339091]  blk_alloc_flush_queue+0xc5/0x3d0
[ 1131.343571]  ? blk_insert_flush+0xaf0/0xaf0
[ 1131.347881]  ? kasan_unpoison_shadow+0x35/0x50
[ 1131.352448]  ? kasan_kmalloc+0xc4/0xe0
[ 1131.356324]  ? __kmalloc_node+0x47/0x70
[ 1131.360291]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[ 1131.365295]  ? blk_mq_sched_init_hctx+0x117/0x1a0
[ 1131.370124]  blk_mq_realloc_hw_ctxs+0x956/0x1250
[ 1131.374876]  ? blk_mq_free_map_and_requests+0x160/0x160
[ 1131.380226]  ? __kmalloc_node+0x33/0x70
[ 1131.384185]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1131.389194]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1131.394457]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1131.399458]  ? kasan_unpoison_shadow+0x35/0x50
[ 1131.404030]  ? kasan_kmalloc+0xc4/0xe0
[ 1131.407909]  blk_mq_init_allocated_queue+0x2b8/0x1580
[ 1131.413083]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1131.418606]  ? blk_alloc_queue_node+0x8d3/0xe40
[ 1131.423262]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1131.428259]  ? __mutex_init+0x1ef/0x280
[ 1131.432217]  ? __ia32_sys_membarrier+0x150/0x150
[ 1131.436958]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1131.441529]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1131.446097]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1131.450754]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1131.455063]  blk_mq_init_queue+0x63/0xb0
[ 1131.459111]  loop_add+0x32b/0x9c0
[ 1131.462551]  ? loop_lookup+0x102/0x220
[ 1131.466422]  ? loop_queue_rq+0x6c0/0x6c0
[ 1131.470473]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1131.475650]  loop_control_ioctl+0x178/0x500
[ 1131.479956]  ? loop_add+0x9c0/0x9c0
[ 1131.483567]  ? expand_files.part.8+0x9a0/0x9a0
[ 1131.488134]  ? kasan_check_write+0x14/0x20
[ 1131.492357]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1131.497271]  ? wait_for_completion+0x870/0x870
[ 1131.501837]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1131.507013]  ? loop_add+0x9c0/0x9c0
[ 1131.510629]  do_vfs_ioctl+0x1cf/0x16a0
[ 1131.514505]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1131.518899]  ? fget_raw+0x20/0x20
[ 1131.522338]  ? __sb_end_write+0xac/0xe0
[ 1131.526304]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1131.531823]  ? fput+0x130/0x1a0
[ 1131.535087]  ? ksys_write+0x1a6/0x250
[ 1131.538875]  ? security_file_ioctl+0x94/0xc0
[ 1131.543280]  ksys_ioctl+0xa9/0xd0
[ 1131.546723]  __x64_sys_ioctl+0x73/0xb0
[ 1131.550598]  do_syscall_64+0x1b1/0x800
[ 1131.554469]  ? finish_task_switch+0x1ca/0x810
[ 1131.558948]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1131.563861]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1131.568775]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1131.574125]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1131.578954]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1131.584125] RIP: 0033:0x455329
[ 1131.587295] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1131.594987] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1131.602240] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1131.609490] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1131.616749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1131.624002] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000029
2018/04/19 14:16:25 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x40000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:25 executing program 6:
syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x1, 0x40000)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')

2018/04/19 14:16:25 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x40600, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x0, 0x0)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
socket$alg(0x26, 0x5, 0x0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:25 executing program 3 (fault-call:2 fault-nth:42):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:25 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000040)={[{0x9, 0x6, 0x8, 0x0, 0x8, 0x3, 0x1, 0xcf92, 0x8, 0x1, 0x0, 0x12, 0x27}, {0x0, 0x4, 0x80000001, 0x7, 0xffffffffffffffff, 0x2, 0x6d728a26, 0x400, 0x8, 0x4, 0x5, 0x6, 0x5}, {0x1ff, 0x2, 0x5, 0xffff, 0x3, 0x7, 0xfffffffffe2437fa, 0x1000, 0xc181, 0x69, 0x5, 0x8, 0x6}], 0xfffffffffffff39c})
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000001200)=""/68)
syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00')
ioctl$DRM_IOCTL_AGP_INFO(r2, 0x80386433, &(0x7f0000001100)=""/167)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f0000000100)=""/4096)

2018/04/19 14:16:25 executing program 1:
syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xfffffffffffff37e, 0x200)

[ 1131.792285] FAULT_INJECTION: forcing a failure.
[ 1131.792285] name failslab, interval 1, probability 0, space 0, times 0
[ 1131.803632] CPU: 1 PID: 29724 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1131.810818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1131.820174] Call Trace:
[ 1131.822767]  dump_stack+0x1b9/0x294
[ 1131.826405]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1131.831614]  should_fail.cold.4+0xa/0x1a
[ 1131.835688]  ? debug_check_no_locks_freed+0x310/0x310
2018/04/19 14:16:25 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000040)=@add_del={0x2, &(0x7f0000000000)='vcan0\x00'})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:25 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000000)=<r2=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000080)={{0xfffffffffffffff9, 0x2, 0x8db, 0x6, "8b5e83f18fe3f2e5206db0c8530faf83510c8df2a01ba5ee63080178c61c309e87dfb222d0ac7f4d9a368b50", 0x2}, 0x0, 0x0, 0xff, r2, 0x2, 0x8, "3583732d90cfd0f2ba47e5a260822a18452569ffb11656f45c736a63a64bca3f155efa2b07b8a6a29760538669bc315692a8cd2c5c0b8a7ee8e8a838770a7722", &(0x7f0000000040)='/dev/loop-control\x00', 0x12, [], [0x96, 0x1ff, 0x1, 0xfff]})

2018/04/19 14:16:25 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, &(0x7f0000000040))

[ 1131.840887]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1131.845995]  ? zap_class+0x720/0x720
[ 1131.849718]  ? rcu_note_context_switch+0x710/0x710
[ 1131.854654]  ? kasan_check_write+0x14/0x20
[ 1131.858895]  ? graph_lock+0x170/0x170
[ 1131.862718]  ? __might_sleep+0x95/0x190
[ 1131.866711]  ? find_held_lock+0x36/0x1c0
[ 1131.870784]  ? __lock_is_held+0xb5/0x140
[ 1131.874862]  ? check_same_owner+0x320/0x320
[ 1131.879186]  ? lock_downgrade+0x8e0/0x8e0
[ 1131.883344]  ? rcu_note_context_switch+0x710/0x710
[ 1131.888275]  __should_failslab+0x124/0x180
[ 1131.892499]  should_failslab+0x9/0x14
[ 1131.896283]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1131.901379]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1131.906900]  ? find_next_bit+0x104/0x130
[ 1131.910951]  blk_mq_init_tags+0x79/0x2b0
[ 1131.914997]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1131.919309]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1131.924662]  blk_mq_init_sched+0x1e2/0x530
[ 1131.928886]  elevator_init+0x3c8/0x500
[ 1131.932767]  ? elevator_get+0x180/0x180
[ 1131.936739]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1131.941238]  blk_mq_sched_init+0x2b/0x40
[ 1131.945284]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1131.950474]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1131.955489]  ? __mutex_init+0x1ef/0x280
[ 1131.959458]  ? __ia32_sys_membarrier+0x150/0x150
[ 1131.964200]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1131.968774]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1131.973340]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1131.978010]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1131.982337]  blk_mq_init_queue+0x63/0xb0
[ 1131.986391]  loop_add+0x32b/0x9c0
[ 1131.989829]  ? loop_lookup+0x102/0x220
[ 1131.993697]  ? loop_queue_rq+0x6c0/0x6c0
[ 1131.997752]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1132.002923]  loop_control_ioctl+0x178/0x500
[ 1132.007236]  ? loop_add+0x9c0/0x9c0
[ 1132.010856]  ? expand_files.part.8+0x9a0/0x9a0
[ 1132.015439]  ? kasan_check_write+0x14/0x20
[ 1132.019671]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1132.024603]  ? wait_for_completion+0x870/0x870
[ 1132.029174]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1132.034351]  ? loop_add+0x9c0/0x9c0
[ 1132.037980]  do_vfs_ioctl+0x1cf/0x16a0
[ 1132.041867]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1132.046267]  ? fget_raw+0x20/0x20
[ 1132.049706]  ? __sb_end_write+0xac/0xe0
[ 1132.053664]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1132.059182]  ? fput+0x130/0x1a0
[ 1132.062446]  ? ksys_write+0x1a6/0x250
[ 1132.066230]  ? security_file_ioctl+0x94/0xc0
[ 1132.070632]  ksys_ioctl+0xa9/0xd0
[ 1132.074074]  __x64_sys_ioctl+0x73/0xb0
[ 1132.077944]  do_syscall_64+0x1b1/0x800
[ 1132.081821]  ? finish_task_switch+0x1ca/0x810
[ 1132.086314]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1132.091244]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1132.096168]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1132.101520]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1132.106349]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1132.111525] RIP: 0033:0x455329
[ 1132.114708] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1132.122421] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1132.129681] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
2018/04/19 14:16:25 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000080)=""/4096)

[ 1132.136940] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1132.144194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1132.151443] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000002a
2018/04/19 14:16:25 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:25 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000)={0x0, 0x0, 0x2000})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000040)=""/90)

2018/04/19 14:16:25 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x1000000000000)

2018/04/19 14:16:25 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, &(0x7f0000000000)={0x6, 0xfffffffffffffffd, 0x3})
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)

2018/04/19 14:16:25 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0x3, &(0x7f0000001280)=[{&(0x7f0000000140)="8bd9b336b8e6c90aed6fde", 0xb, 0x5}, {&(0x7f0000000180)="e6a0b8ecd17bed5368c41d759848a09249788f4bfe5f3555a069d0dcf3036db9189b77430ffe9a664879be1e41df4dfc4eccc6202a9c4054b57fd5ddcb3f36f62eda52f7bc337dc99e90bf3846f75318cc49013a3648a266071dfd56cda8fae7ad0c4c577a7aa8be8941902ad766424687e4c166208cd6fe3c0df265abc7834fc805eb6f4fee8050e3d551e723fef951702347370cffc0d51213479f072f64167a93973073462ee4d207e83f3c5615ad6a6d4933f1045e063b0a3146f87d665f2f3c6c490d01ceb3f22836cd02a0bb66", 0xd0, 0x7fff}, {&(0x7f0000000280)="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", 0x1000, 0x9}], 0x240080, &(0x7f0000001300)={'nouuid,', {[{@quota='quota', 0x2c}]}})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x40000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000080)={0x55c6, 0x3, 0x6, 0x20000000000000})

2018/04/19 14:16:25 executing program 3 (fault-call:2 fault-nth:43):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:25 executing program 6:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000))
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f00000000c0)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000040)='net/netstat\x00')

2018/04/19 14:16:25 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x100000})

2018/04/19 14:16:25 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x4000000)

2018/04/19 14:16:25 executing program 2:
r0 = dup(0xffffffffffffffff)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, r1)
write$cgroup_int(r0, &(0x7f0000000000)={[0x30]}, 0x1)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c80, 0x0)

2018/04/19 14:16:25 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0)
ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f0000000080)=""/185)
write$binfmt_misc(r1, &(0x7f0000000140)={'syz1', "1e8973baa0c8b4e3fdaff890ff138026a62b35aba2a6b334e028eb4c39504002878f201b690e3d46f751b5e5f6b1f88524aa0f695de1f34dd04754ed786a34cdd3087177e6952506ed560834d1a492533082e6dce6139ee27c97429fc9f47d15025300f86826cf4039b12b768fb33cfaef746dab28691a14e06cdb10d857b96141c9f3200316bebf74df07a4a134b74478f4a9fd8b3c94727ba8b5a67831039be44a9b037cac69ecc65b060b45e3651698d72a5a50ad765ce7471fb662049c5b334cab7948973a48cff1dbe0e8"}, 0xd1)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1132.458600] FAULT_INJECTION: forcing a failure.
[ 1132.458600] name failslab, interval 1, probability 0, space 0, times 0
[ 1132.469967] CPU: 1 PID: 29769 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1132.477162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1132.486513] Call Trace:
[ 1132.489114]  dump_stack+0x1b9/0x294
[ 1132.492754]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1132.497967]  should_fail.cold.4+0xa/0x1a
[ 1132.502039]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1132.507139]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1132.512320]  ? graph_lock+0x170/0x170
[ 1132.516111]  ? is_bpf_text_address+0xd7/0x170
[ 1132.520595]  ? find_held_lock+0x36/0x1c0
[ 1132.524656]  ? __lock_is_held+0xb5/0x140
[ 1132.528722]  ? check_same_owner+0x320/0x320
[ 1132.533036]  ? kasan_kmalloc+0xc4/0xe0
[ 1132.536908]  ? kmem_cache_alloc_node_trace+0x150/0x770
[ 1132.542169]  ? blk_mq_init_tags+0x79/0x2b0
[ 1132.546392]  ? rcu_note_context_switch+0x710/0x710
[ 1132.551306]  ? elevator_init+0x3c8/0x500
[ 1132.555359]  ? blk_mq_sched_init+0x2b/0x40
[ 1132.559578]  ? blk_mq_init_allocated_queue+0xf19/0x1580
[ 1132.564929]  __should_failslab+0x124/0x180
[ 1132.569152]  should_failslab+0x9/0x14
[ 1132.572938]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1132.578031]  ? print_usage_bug+0xc0/0xc0
[ 1132.582085]  __kmalloc_node+0x33/0x70
[ 1132.585878]  sbitmap_init_node+0x290/0x460
[ 1132.590103]  sbitmap_queue_init_node+0xaa/0x7d0
[ 1132.594769]  ? sbitmap_init_node+0x460/0x460
[ 1132.599165]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1132.604167]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1132.609435]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1132.614959]  ? find_next_bit+0x104/0x130
[ 1132.619019]  blk_mq_init_tags+0x11b/0x2b0
[ 1132.623163]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1132.627478]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1132.632834]  blk_mq_init_sched+0x1e2/0x530
[ 1132.637064]  elevator_init+0x3c8/0x500
[ 1132.640938]  ? elevator_get+0x180/0x180
[ 1132.644898]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1132.649386]  blk_mq_sched_init+0x2b/0x40
[ 1132.653438]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1132.658618]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1132.663617]  ? __mutex_init+0x1ef/0x280
[ 1132.667578]  ? __ia32_sys_membarrier+0x150/0x150
[ 1132.672328]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1132.676908]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1132.681479]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1132.686142]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1132.690458]  blk_mq_init_queue+0x63/0xb0
[ 1132.694504]  loop_add+0x32b/0x9c0
[ 1132.697947]  ? loop_lookup+0x102/0x220
[ 1132.701819]  ? loop_queue_rq+0x6c0/0x6c0
[ 1132.705872]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1132.711052]  loop_control_ioctl+0x178/0x500
[ 1132.715358]  ? loop_add+0x9c0/0x9c0
[ 1132.718971]  ? expand_files.part.8+0x9a0/0x9a0
[ 1132.723539]  ? kasan_check_write+0x14/0x20
[ 1132.727760]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1132.732681]  ? wait_for_completion+0x870/0x870
[ 1132.737250]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1132.742424]  ? loop_add+0x9c0/0x9c0
[ 1132.746042]  do_vfs_ioctl+0x1cf/0x16a0
[ 1132.749924]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1132.754323]  ? fget_raw+0x20/0x20
[ 1132.757766]  ? __sb_end_write+0xac/0xe0
[ 1132.761734]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1132.767256]  ? fput+0x130/0x1a0
[ 1132.770520]  ? ksys_write+0x1a6/0x250
[ 1132.774313]  ? security_file_ioctl+0x94/0xc0
[ 1132.778710]  ksys_ioctl+0xa9/0xd0
[ 1132.782156]  __x64_sys_ioctl+0x73/0xb0
[ 1132.786039]  do_syscall_64+0x1b1/0x800
[ 1132.789912]  ? finish_task_switch+0x1ca/0x810
[ 1132.794397]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1132.799315]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1132.804233]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1132.809586]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1132.814422]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1132.819594] RIP: 0033:0x455329
[ 1132.822768] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1132.830465] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1132.837717] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1132.844969] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1132.852224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:16:26 executing program 1:
syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:26 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x1400)

2018/04/19 14:16:26 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x400000, 0x0)
ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f0000000080)=""/117)
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1132.859476] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000002b
2018/04/19 14:16:26 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)={<r2=>0x0})
ioctl$DRM_IOCTL_SWITCH_CTX(r1, 0x40086424, &(0x7f0000000040)={r2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f00000000c0)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_mount_image$vfat(&(0x7f0000000100)='vfat\x00', &(0x7f0000000180)='./file0\x00', 0x3, 0x1, &(0x7f0000000280)=[{&(0x7f00000001c0)="46702d516564066a75eda9ec24ef0a834ee9a6b5734f1ddcaf8a01c58a09937ea2cf2997339f6b55544fa47c84a37087cee4e37eba5ae13f947e4ce406d09a990c78c94c38f209a5915be060df40a6fac769005c586fe30fd06526975084a8778d7fe4623c004795448b54f823db295ddfc1ff39b608eaa94931bf0830e60e1c1c183ceee97c04304ae1e24b16f6ddf1e257946047a463bea2884a98ccecc3e53fcb578f", 0xa4, 0x5}], 0x800000, &(0x7f0000000380)=ANY=[@ANYBLOB="fad94d12e8de497ea3c48f2e03cedfd7bc"])
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000300)={0x0, <r3=>0x0, 0x9})
ioctl$fiemap(r0, 0xc020660b, &(0x7f00000003c0)={0x81, 0x8, 0x6, 0x47b, 0x4, [{0x4, 0x88fb, 0x9d9, 0x0, 0x0, 0x1802}, {0xffff, 0x0, 0x3, 0x0, 0x0, 0x2401}, {0x83e4, 0x2, 0x5, 0x0, 0x0, 0x607}, {0x4, 0xd15, 0x4085, 0x0, 0x0, 0x1000}]})
ioctl$DRM_IOCTL_GEM_CLOSE(r1, 0x40086409, &(0x7f0000000340)={r3})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:26 executing program 6:
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r0=>0x0)
r1 = syz_open_procfs(r0, &(0x7f0000001200)='net/sockstat\x00')
ioctl$PPPIOCSMRU(r1, 0x40047452, &(0x7f0000000040)=0x8)
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f00000000c0)=""/47)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000100)={<r2=>0x0})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000140)={<r3=>0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000011c0)={0x28, 0x0, &(0x7f0000000180)=[@acquire_done={0x40106309, r2}, @acquire_done={0x40106309, r3}], 0x1000, 0x0, &(0x7f00000001c0)="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"})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000014c0)={0x88, 0x0, &(0x7f0000001300)=[@increfs_done={0x40106308, r2, 0x1}, @reply_sg={0x40486312, {{0x4, 0x0, 0x4, 0x0, 0x10, 0x0, 0x0, 0x58, 0x38, &(0x7f0000001240)=[@flat={0x73682a85, 0x1, r3, 0x2}, @fd={0x66642a85, 0x0, r1, 0x0, 0x4}, @ptr={0x70742a85, 0x1, &(0x7f0000000080), 0x1, 0x2, 0xd}], &(0x7f00000012c0)=[0x0, 0x48, 0x78, 0x78, 0x40, 0x48, 0x78]}, 0x8}}, @request_death={0x400c630e, 0x3, 0x2}, @decrefs={0x40046307, 0x2}, @request_death={0x400c630e, 0x2}], 0xe2, 0x0, &(0x7f00000013c0)="dd3eb6f437a09a1f9fe0725d07210f60eb89fb471a4d3736d7c572e2d79d06853603c2ba102a9a9435ed7e4eb98cdb8819fa73f32545c5e561d95325f862ea1ae1056c755a09f0d80c0c734e0c901449ea96897b523c5350171271f338b543c8fb9680dd0b080c3aef4c59b4997b02b2f4587da5d8eb2290e1c5a8b39458aca43d31fb8d8bf579963bd4c010d743647fe466a177397f1f04fceb15f88105662bd06578fe8924fd45fd361ef9f0174394cae1d387fbd21c69565ad7a6771000dcf4984ecffe11b5b8bab23787e65700ad8454b2b2e757380bd35014e5882602570f06"})

2018/04/19 14:16:26 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xfffffff6)

2018/04/19 14:16:26 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x4, 0x0)
ioctl$TUNGETSNDBUF(r0, 0x800454d3, &(0x7f00000000c0))
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x6, &(0x7f0000000000)=[{0x1000, 0xe1, 0xfffffffffffffffb, 0x8001}, {0x6, 0x7fffffff, 0x8, 0x2}, {0x3f, 0x0, 0x7fff, 0x7f}, {0x1, 0xfffffffffffffff7, 0x9, 0x4}, {0x3, 0x6, 0x7f, 0x800}, {0xffffffff, 0x8, 0x0, 0x8}]})

2018/04/19 14:16:26 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0x3, &(0x7f0000001280)=[{&(0x7f0000000140)="8bd9b336b8e6c90aed6fde", 0xb, 0x5}, {&(0x7f0000000180)="e6a0b8ecd17bed5368c41d759848a09249788f4bfe5f3555a069d0dcf3036db9189b77430ffe9a664879be1e41df4dfc4eccc6202a9c4054b57fd5ddcb3f36f62eda52f7bc337dc99e90bf3846f75318cc49013a3648a266071dfd56cda8fae7ad0c4c577a7aa8be8941902ad766424687e4c166208cd6fe3c0df265abc7834fc805eb6f4fee8050e3d551e723fef951702347370cffc0d51213479f072f64167a93973073462ee4d207e83f3c5615ad6a6d4933f1045e063b0a3146f87d665f2f3c6c490d01ceb3f22836cd02a0bb66", 0xd0, 0x7fff}, {&(0x7f0000000280)="8c6bf02a6a8ed64859595e7af42a892b32d4443aacfaecd003a0b90d51cdc86b409a46f4fdc5760045d26be93e2939dc765559bb5edd1491c9d7e219c51313ff9e2950dd2e8181a0b00c170a219e9275a1fac4ead7ab81cac81736dd045bdb49b30cf6c9a2c90ae68de1ca1f673ad559d081ec20f74ea72a57a7dcfa0047bbe2c7a66f1b9b44fee0c7882ef6bc47b71594ba8281227b9396f3c551f0094826416d5ff50172677255fa51fc42c88091f9de29beed96d363e2158195354f860c9ffd858e3ce54a370b014e428fba9c3aed4ecd58f95fe7a2c4f0d4ff2e0a9827c3952b3b1c0268945a10cea0382abcae124090e4cdeace696b78c35e1a6ff0f0b78eead66c706c291ceb1c87a282229569c4e4e2fd4b68fed85efd3248777d39e2448563feebd04925d3233255a5648be83e7bf5e025104d668d01708007765e11e9ba6e3e013e413e3b490721f52cd1439fc2426c73a057ba919e5a9f1a31481e7501f04e7186ce11cc3821ca4e647b89a435f40302ae54e399c499b0e972274438083a37ffc61f8dca1093ad76ee9a23a7e51b08643bd6475956d42d56f19c577e659675859034ac326b0961efa3af6fba2c7e37e0bf63c121c07127df08d44678b4078a2cccca92bd67785269cd50aa30bdbed43338620354038979d75d02420a4c2325a15acf4fd13d2b79a9b357b1052655128244ae1c3ed234c1c500bbeb2032f58f956d1e32716332ad08f040d38ce0d2fa6a69be9a40335494a242f7a87c0c84ea2caf7f796cf62ea68fa6610ce92cc4a055017db4921c572459036bc7f36fc1ed5e8b6f7da3fa4b7d82d62950391f8771debca476dc93e14ac808915dae90ecacfa49e8b113ef194fcaa45d7bf2b93b9d495d57d1b18646739816cfbb24eb2af2c879ae99b505add8da224f9d9a91c398151357e865ac2a58c189ed394df8c24a89e5dc87547161f6cbe9673e5142506e21065bfdc368480dbdcaed637bb0f52000eaa5f1a2ebe0d961b462a5c865d5ffd9d4f721399962799924b01750a0d959193119298b83fa45c18e7297fd8ccd46a034f1c215232e35c2cff4c410fa28c87af599a96d3b15fc4156f99a15df208b63f85034b307998234148f3e591b1cb744a275bfe882c20f30dc304676d405e4d2cf746f4e6b24393eb769f6372448c708e95c8e82335581e00815ab57d73dabbcc7f6e7410114bb6e728db73b108bf8dd08d890936435636d5e725642918e3815f92247af463890cc0486a10056b8276d93832af5e3dbebd823ff0d3719cc4f0216df3b9b2685b54e3834385809d0c4d6565293326dce208592cc8dfb8f6436eae1a06e26ae117c271307dc3f4291c1f4ef182735e5329671385392986fb3f8ce55ce3fb53c9cc94c88f99aad029cd4c5f862c232cd46d868334857fd6ca83d95f079728060b051375de6f1fc940253d7d5e0232e1f841dd9713faff08e320988deb6ba6adf62f405169d724f1c694d582d8b0d9b2c59025085bfbffc18ef50efa6a5cac371fc9a6c331f3a9299faa63ea11f45ad79e5cded95686f1d8d37ca0bb7059b60b6f41a819cf335de4d67d219dbf9674b74af1cabaf461a980d0bf6629ba218c3e8f9d7a66407ee63c67bbae794728e3dddecc8362d1070cdc4f60d29eb4716474c0835ee43eaf37cf8072adb72948236e6a4078b77886e58df7aaf817bcd2f2614b8972817f07a1de83c5f7fd392b45e3ffedb20858ef9957be0da1f4bc1c9ad7c58caad41f4777dc3617c717dee8444631476ec9b26932b719bb2e81ce1c76f5c260861556d954fc0b632237277cee3e1567c3a9e9c38334c02235a32d2a48b762c42e7c7d4ba5fe6af32f42dcf58a64ab9c3a967bc65d7241b42224f4fc5a6fea6f226009d105fd671088209d0314dbeb7bd28dfca1dc760e09adb30643469dbafa89de15a79694555b1bfa56073d676b336717b360814ffd8cbcb6a0fad6ee4f7e4313aeea035b4c44f98d75b8b9b86f72ab4d6ab7dc368aa4d8a5c04c0fa61172b7fa0244895168bfff78579ca4a9dcee93d04ee42cbbaa4c3f2d15ad5844aa1127a192fc37fe3d858b75a0b61945c7825f69b6e330cac205158a21a42fa97d0cadfa7268e504ea34d6da376b6ad896730edac4f2b914a12649251b98aaac91863ae20d47e9cfb3672093baf13343d7cab9a2ee26925b4f6a013c3e19e7df45e7e8f417adb7bc50ef71372590889be0d9e7a3b596d2a13de7d87c26d85944214054ca2016a6874f9e03b84118192edd60e266f589a7c081307f9fb7b5191fe0fef1b0fd0c7b1cab3b770bb539254edf88919dd904b079b4fdd907660cb53386ab84d0eee86257e4c30f85678abd9c8e74769f0faebb82505b4f63da11ffd9720635dd4113d17bd0fe9efa9a1b13adf2f04c0e80f42d5cde197b6fd20da803eb750853139cd8f338cbe9feb39a54a34664dc2c134c7d08ada3af35a73cf4a8e341e8afe8ad1f9886608e5cb30571fe66006f8ef18f453465ccc39b5b9be03b5be5673d89fcc249874edd726d3ef714ed1a3db378f2c5d17aab8eed76ad628ecd5a5c38ba8005261147673a6773fdd7bd07f031e3b10575b9f2e43d43b0784e289bbe06fb3d7308c8f50fb7646b1e8a9b900a172352ddc0427e1fd1c4b80deb9f538639305a85a323a367970ca5f33e87a4a8db7470414b4ed0dea4360df08802fe050ee98f031b7ce430b5fce06150cfc14200a73c5aa40c16f80471b1fa97fba0d4706015ac12a2e87bdc76fefddb554494328f1d99df858ea1953de0b8cea87cde61b6179882b7fa13c1771f750347528ccbc3a4ecc67fe5729ae99a88a41189887b0616a7c95da72124fe50e5541b9e9f5357b4d39a3d6f064e98b2ab83711dfa71c38ad0adf455452b27f035bd19efb5a621a6b86c95c66bf31fc583912614bbc0afa0e0f366f6212f938ff33a012cb4031beb4ac72b36c188de871d6ad45af262aad8b5ffaa90dd1b98ae990ec1276682f9a442143f122a1b400f17b000c672175f0d2281276301cad3080be5b65906646fc2a5c50d24dfa5a0e47549167098c0893c3c922ab0180444be99e161faa1caa5bc2041035550579e563492a1248b62174dc3aa321fcf392c9ae0c808de07da0a07d62d5312783391801ededa4705813efa3a351b0c8a66ce532f88573a1aa77666915d7090f179ce2c430bbedc337ba425fcd1998f6aea159727071898189829c1a8f8249d1b0b46ee3a676a516bd0673930b498cc59a069bc60ae83bd2c7b75f0e7beb76fc51728d00421322242d942fa99e1387fb52f9d7468ca05f230df1d2cb99e97062bd85c9828d67bf9cc9cb02b73d137b983848e4085836b43e9f3e1e00d2bbc7e2c38a788e9f4e42864f07fcbfdc9631c84875a3713f4ca4e79eb0a14ee9d3ca65078783586d9301281c0f474e8b71c646f4719aecc225106b28c719ea1e6951efd5bb4bd0cb27d10019cf818c4f946030cc4c2acd0c022ab3baec4e51e061851f183f13a86702b8f1748248fbb09c0cab984d984ce967373227a0170357915e9a0b064ceeb32866c48f42679720e31a156fe5a3f8d12ccf0dcdab80eda08e88193ec9c003f12b7fd1888add5d44be0906991fa34c98fbbfe83faee0118b6333a518781127b092b521ee2930e739fa8cb213c26add34b83ceee067e3fb119c6ab0aaeba16188a438e7d46f5b4f60745c82b2a2941fc44650b4d245183c5b1304e082c3739d3f6a165b5ad8ec29df180f1995438dd35f3d4a9de96973828839fdf0fa45cddd84a09861f299bfb1845836dd5f4087b6f97f5e4259dac3f3c13fdedfd3dde3719a08d53695d55378e4c87722a860a5dbbcde9d392fb413a2cf41b701e4cd3da5ce186a4c29aabe77635692a1cc48c0d103cc931e3770aca54c83ea0606a794eddd5171c33aba64e1260392dfde57f0ea05d2d3826eeb056ca85539208e5448ec22e375852e4287ba91c28a7bab0877cc837f0bfc7129083f3375e68c3fb22091393c6b18fb2e5183623b2cda12fdaa0aad24336098549245be4309a44ff6879a99217b73a823c6b014a9931852035e12d21226c26a7089ebd1aa450d3621863b95695d0ebb45d82485e8d89ee61d8a7e867b3dde13bae667145514618c2343d0e7816277311813119610344fead18b5a7de4c4a552c564599bf4bbf36328c3151eb81c280d5c9201073dd71628b8e53ca84e467475b4d62533abab3aac21ee442aff65ed412c74f0380009ff76883e7df272ff08fdcbf9a84b2ebb99294fa12d6405f5af2d7ebf381613c9df78a0935712edbc9a8a53a5834a77f2689a2927bb11d6d2ed51f07755010885056db92154ee4d9730717d93671c16e1a3babeb0dfcf3c707f7fb924b8dc3f217edad8fe0af8706e93b91332a915c1d538e05eeb5d3313e8c3a300ecb229d8587889f2ee58c7692e491e2910673e9cc2d1e21207503d52e3af4c47cecda9dbb1de2cda6d1e3655529dbd9b566488b98ef016f8453a103b9d2b0743a11f61a1082824f6017888237042de141424ad00c1df3b8c3214ffb6cc9814ad15c5cdf8776e96f747885c6f6cef6d2598ee140b1d5ada9b5625a7bfaaa14d62ddb53e43c5417d3af44e82749c4e56b4affc2a35f103454465c31e8bd3f2a2bc7c7d00810c1adab0069aadc3474f8af1728177f4f29dbc5c112d60e724526fdecb8a4bc1999bc84005e49aaf1002a165924696b80a6ad2aa5eef6d5899c0da30f4f7beaeb7adeb7a90b4ab635aa8f02b5e713bc74627256fc6db5b6a33a94e1df458ada8a0b48fd049f030069557aea86d940862f9e7ccd2de113c3cee5d8ba5e4a129c9186ed95adf8bcf494e54d8558701438f67f1904d6ba65ba26e4dcb0f1fb99fb493a1edc102f25e449c358099895f636b45571eab919a9903961865a5c528cd401913e3999e0526257837089e98e66f1205ae8f1c33ddf1ba7d2834454a1ed7ecaa0378641adca0e59dbd5b33caf20b52a45164c10adcd0e4ecce6669c5450c5f85dbd5d09ee3a8e23125b706151871bc746f439ec52453caeb54ab1cf27abe4f0a1a56a199ba7ca65c9a074503ff36f6fc46bcb78430e4ff9c522f1656cb47a0b881f3112851626d61968bd3d83f267a48e1fc8da8f5b9a0128826b064748405a6bfc7b9c6d9c91804befdf3a03fcf9f103bdeb78c5ac703f3e74725fe6f9d8e6766a0ee27cd5ed46c60da1f0d00b70a6cd32c8a39aec740c9cd0efd0d6341640e42c98e586416ca352861fdb8347a75ed7400d91f350647083f366c4cb238bbe4cf490d045803c84db442760c04c59012fc25eaeadc570ad5c57ed76c42c220f13288fc3b693343573ac38ba9d2d765dcc1fcbe9e2b183d11a501fc532b93137ac847653993ff4026cae27a8d7346cd3ec16708e59d99747a45d2cccce310e92a0a678b262293c0b9597a440b0685dbaae4b6acc641792647a9fde5fb4142fb387a81b10506a4804df307de12800138a4fdc558d546dc355f03530851d9c032952392022856b800ef9d7a9931db6877a2621cd9e726c1ee6b749cc97eec01693bd97be39c260ad806954cda6c9427a7f83a11fede9425f8944791cf17ccaf6fb8584dbc3fe51122e8b9f96d6e482a888c34b1906ab4ce4a748346565666dc1a2a7c4449ca4f3c9b9eb6e8a401541431a2b0a2271e4195f225d95a261736cddeffec560475b926a65ead1a05d9afd12a11827ff3a2960ca191234ae24449876a07ca82feb1fd6fb473913f8a5cb697d96b9974d8ffd39795598c6fa8a35b", 0x1000, 0x9}], 0x240080, &(0x7f0000001300)={'nouuid,', {[{@quota='quota', 0x2c}]}})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x40000, 0x0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000080)={0x55c6, 0x3, 0x6, 0x20000000000000})

2018/04/19 14:16:26 executing program 4:
syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x2)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:16:26 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x4000, 0x0)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000000c0)={0xe067af1f83c6fec6, r2})
r3 = dup(r0)
ioctl$PIO_UNIMAPCLR(r3, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)

2018/04/19 14:16:26 executing program 2:
r0 = semget(0x3, 0x3, 0x4)
r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x7ff, 0x0)
ioctl$TIOCCONS(r1, 0x541d)
semctl$SEM_INFO(r0, 0x0, 0x13, &(0x7f0000000000)=""/189)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r3 = dup(r2)
ioctl$LOOP_CTL_ADD(r3, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c80, 0x0)

2018/04/19 14:16:26 executing program 3 (fault-call:2 fault-nth:44):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:26 executing program 6:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x10500, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000040)={'bond0\x00', @random="dbb4e782bf19"})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x7, 0x200000)

2018/04/19 14:16:26 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x14)

2018/04/19 14:16:26 executing program 1:
r0 = socket$bt_hidp(0x1f, 0x3, 0x6)
r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000000)=<r2=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r1, 0xc1105518, &(0x7f00000000c0)={{0x3, 0x5, 0x9, 0x69, "c77d58e8f94df1462bdb45c812cd6f6493fdf68944091835f1c024c856ce4334666cedd5d2845e3815186178", 0xbd6b}, 0x0, 0x0, 0x2, r2, 0x5, 0x3, "270bcfe70f5224572e2dd831a906ee720d0ab8e220e447f9d58bd35eb0ad5147a70dabebf41f69784222b5f736c804b897cee63f1d90e8cc190f7a08b3bb0411", &(0x7f0000000080)='/dev/input/mouse#\x00', 0x12, [], [0xb00, 0x1, 0x41, 0x400]})
ioctl$EVIOCGBITSND(r0, 0x80404532, &(0x7f0000000200))

2018/04/19 14:16:26 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x6, 0x0)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x1, 0xa06, 0xfffffffffffffffe})
r2 = dup(r0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:26 executing program 4:
syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x2)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

[ 1133.194205] FAULT_INJECTION: forcing a failure.
[ 1133.194205] name failslab, interval 1, probability 0, space 0, times 0
[ 1133.205495] CPU: 1 PID: 29817 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1133.212686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1133.222041] Call Trace:
[ 1133.224624]  dump_stack+0x1b9/0x294
[ 1133.228254]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1133.233447]  should_fail.cold.4+0xa/0x1a
[ 1133.237497]  ? debug_check_no_locks_freed+0x310/0x310
[ 1133.242676]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1133.247771]  ? __might_sleep+0x95/0x190
[ 1133.251737]  ? kasan_check_write+0x14/0x20
[ 1133.255960]  ? graph_lock+0x170/0x170
[ 1133.259752]  ? blk_mq_sched_init+0x21/0x40
[ 1133.263977]  ? find_held_lock+0x36/0x1c0
[ 1133.268037]  ? __lock_is_held+0xb5/0x140
[ 1133.272101]  ? check_same_owner+0x320/0x320
[ 1133.276409]  ? lock_downgrade+0x8e0/0x8e0
[ 1133.280547]  ? rcu_note_context_switch+0x710/0x710
[ 1133.285553]  __should_failslab+0x124/0x180
[ 1133.289779]  should_failslab+0x9/0x14
[ 1133.293568]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1133.298662]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1133.304190]  ? find_next_bit+0x104/0x130
[ 1133.308250]  blk_mq_init_tags+0x79/0x2b0
[ 1133.312306]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1133.316619]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1133.321975]  blk_mq_init_sched+0x1e2/0x530
[ 1133.326203]  elevator_init+0x3c8/0x500
[ 1133.330078]  ? elevator_get+0x180/0x180
[ 1133.334042]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1133.338543]  blk_mq_sched_init+0x2b/0x40
[ 1133.342596]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1133.347779]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1133.352782]  ? __mutex_init+0x1ef/0x280
[ 1133.356745]  ? __ia32_sys_membarrier+0x150/0x150
[ 1133.361490]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1133.366071]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1133.370643]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1133.375306]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1133.379622]  blk_mq_init_queue+0x63/0xb0
[ 1133.383670]  loop_add+0x32b/0x9c0
[ 1133.387110]  ? loop_lookup+0x102/0x220
[ 1133.390984]  ? loop_queue_rq+0x6c0/0x6c0
[ 1133.395048]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1133.400225]  loop_control_ioctl+0x178/0x500
[ 1133.404534]  ? loop_add+0x9c0/0x9c0
[ 1133.408148]  ? expand_files.part.8+0x9a0/0x9a0
[ 1133.412717]  ? kasan_check_write+0x14/0x20
[ 1133.416940]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1133.421859]  ? wait_for_completion+0x870/0x870
[ 1133.426429]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1133.431605]  ? loop_add+0x9c0/0x9c0
[ 1133.435221]  do_vfs_ioctl+0x1cf/0x16a0
[ 1133.439105]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1133.443500]  ? fget_raw+0x20/0x20
[ 1133.446941]  ? __sb_end_write+0xac/0xe0
[ 1133.450909]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1133.456429]  ? fput+0x130/0x1a0
[ 1133.459698]  ? ksys_write+0x1a6/0x250
[ 1133.463489]  ? security_file_ioctl+0x94/0xc0
[ 1133.467885]  ksys_ioctl+0xa9/0xd0
[ 1133.471329]  __x64_sys_ioctl+0x73/0xb0
[ 1133.475206]  do_syscall_64+0x1b1/0x800
[ 1133.479084]  ? finish_task_switch+0x1ca/0x810
[ 1133.483568]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1133.488487]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1133.493406]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1133.498760]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1133.503593]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1133.508780] RIP: 0033:0x455329
[ 1133.511964] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1133.519659] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1133.526912] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1133.534167] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/04/19 14:16:27 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x1, <r0=>0xffffffffffffff9c, 0x1})
ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000180)={0xfffffffffffffffc, 0x3, 0x400000, 0x1f})
ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f00000000c0)=0xab8)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x10000, 0x80)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc\x00', 0x0, 0x0)

[ 1133.541428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1133.548683] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000002c
2018/04/19 14:16:27 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f0000000000)={0x7fff, @random="8202366a5966"})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)

2018/04/19 14:16:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, <r2=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={r2, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:27 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xf6ffffff00000000)

2018/04/19 14:16:27 executing program 3 (fault-call:2 fault-nth:45):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
syz_open_dev$random(&(0x7f0000000000)='/dev/random\x00', 0x0, 0x400000)
ioctl$DRM_IOCTL_RM_MAP(r1, 0x4028641b, &(0x7f0000000040)={&(0x7f0000ffb000/0x2000)=nil, 0xfff, 0x4, 0x1f, &(0x7f0000ffb000/0x4000)=nil, 0x6f6})

[ 1133.762132] FAULT_INJECTION: forcing a failure.
[ 1133.762132] name failslab, interval 1, probability 0, space 0, times 0
[ 1133.773454] CPU: 0 PID: 29845 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1133.780649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1133.789998] Call Trace:
[ 1133.792584]  dump_stack+0x1b9/0x294
[ 1133.796203]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1133.801381]  ? find_next_zero_bit+0x111/0x140
[ 1133.805869]  should_fail.cold.4+0xa/0x1a
[ 1133.809919]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1133.815022]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1133.820552]  ? graph_lock+0x170/0x170
[ 1133.824345]  ? find_held_lock+0x36/0x1c0
[ 1133.828399]  ? __lock_is_held+0xb5/0x140
[ 1133.832459]  ? check_same_owner+0x320/0x320
[ 1133.836768]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1133.841775]  ? rcu_note_context_switch+0x710/0x710
[ 1133.846695]  ? __lockdep_init_map+0x105/0x590
[ 1133.851184]  __should_failslab+0x124/0x180
[ 1133.855410]  should_failslab+0x9/0x14
[ 1133.859198]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1133.864288]  ? init_wait_entry+0x1b0/0x1b0
[ 1133.868509]  ? __kmalloc_node+0x47/0x70
[ 1133.872469]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1133.877482]  sbitmap_queue_init_node+0x3bd/0x7d0
[ 1133.882233]  ? sbitmap_init_node+0x460/0x460
[ 1133.886628]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1133.891630]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1133.896896]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1133.902428]  ? find_next_bit+0x104/0x130
[ 1133.906484]  blk_mq_init_tags+0x17c/0x2b0
[ 1133.910621]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1133.914933]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1133.920290]  blk_mq_init_sched+0x1e2/0x530
[ 1133.924520]  elevator_init+0x3c8/0x500
[ 1133.928394]  ? elevator_get+0x180/0x180
[ 1133.932354]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1133.936844]  blk_mq_sched_init+0x2b/0x40
[ 1133.940893]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1133.946078]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1133.951079]  ? __mutex_init+0x1ef/0x280
[ 1133.955048]  ? __ia32_sys_membarrier+0x150/0x150
[ 1133.959795]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1133.964371]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1133.968941]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1133.973604]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1133.977918]  blk_mq_init_queue+0x63/0xb0
[ 1133.981968]  loop_add+0x32b/0x9c0
[ 1133.985408]  ? loop_lookup+0x102/0x220
[ 1133.989282]  ? loop_queue_rq+0x6c0/0x6c0
[ 1133.993336]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1133.998513]  loop_control_ioctl+0x178/0x500
[ 1134.002821]  ? loop_add+0x9c0/0x9c0
[ 1134.006438]  ? expand_files.part.8+0x9a0/0x9a0
[ 1134.011008]  ? kasan_check_write+0x14/0x20
[ 1134.015237]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1134.020155]  ? wait_for_completion+0x870/0x870
[ 1134.024727]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1134.029901]  ? loop_add+0x9c0/0x9c0
[ 1134.033516]  do_vfs_ioctl+0x1cf/0x16a0
[ 1134.037394]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1134.041787]  ? fget_raw+0x20/0x20
[ 1134.045240]  ? __sb_end_write+0xac/0xe0
[ 1134.049206]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1134.054816]  ? fput+0x130/0x1a0
[ 1134.058081]  ? ksys_write+0x1a6/0x250
[ 1134.061873]  ? security_file_ioctl+0x94/0xc0
[ 1134.066271]  ksys_ioctl+0xa9/0xd0
[ 1134.069715]  __x64_sys_ioctl+0x73/0xb0
[ 1134.073591]  do_syscall_64+0x1b1/0x800
[ 1134.077467]  ? finish_task_switch+0x1ca/0x810
[ 1134.081948]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1134.086865]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1134.091784]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1134.097136]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1134.101968]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1134.107141] RIP: 0033:0x455329
[ 1134.110316] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1134.118016] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1134.125277] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1134.133226] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1134.140479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1134.147734] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000002d
2018/04/19 14:16:27 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000040)={0x0, 0x4, 0x401})

2018/04/19 14:16:27 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:27 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x200000000000000)

2018/04/19 14:16:27 executing program 6:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x42000, 0x0)
ioctl$KIOCSOUND(r1, 0x4b2f, 0x78)
syz_open_procfs(r0, &(0x7f00000000c0)='net/dev_snmp6\x00')

2018/04/19 14:16:27 executing program 1:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x1, 0x101000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team0\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={@empty, 0x65, r1})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-net\x00', 0x2, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000180)={0x40000, 0x0, [0x7, 0x83e, 0xf95a, 0x1, 0x8, 0x0, 0x6, 0x9]})

2018/04/19 14:16:27 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, <r2=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={r2, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:27 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, r2)

2018/04/19 14:16:27 executing program 3 (fault-call:2 fault-nth:46):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1134.296326] FAULT_INJECTION: forcing a failure.
[ 1134.296326] name failslab, interval 1, probability 0, space 0, times 0
[ 1134.307717] CPU: 0 PID: 29862 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1134.314898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1134.324245] Call Trace:
[ 1134.326837]  dump_stack+0x1b9/0x294
[ 1134.330451]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1134.335632]  should_fail.cold.4+0xa/0x1a
[ 1134.339683]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1134.344772]  ? rcu_bh_force_quiescent_state+0x20/0x20
[ 1134.349944]  ? graph_lock+0x170/0x170
[ 1134.353727]  ? is_bpf_text_address+0xd7/0x170
[ 1134.358217]  ? find_held_lock+0x36/0x1c0
[ 1134.362277]  ? __lock_is_held+0xb5/0x140
[ 1134.366351]  ? check_same_owner+0x320/0x320
[ 1134.370672]  ? kasan_kmalloc+0xc4/0xe0
[ 1134.374554]  ? kmem_cache_alloc_node_trace+0x150/0x770
[ 1134.379816]  ? blk_mq_init_tags+0x79/0x2b0
[ 1134.384047]  ? rcu_note_context_switch+0x710/0x710
[ 1134.388970]  ? elevator_init+0x3c8/0x500
[ 1134.393017]  ? blk_mq_sched_init+0x2b/0x40
[ 1134.397241]  ? blk_mq_init_allocated_queue+0xf19/0x1580
[ 1134.402596]  __should_failslab+0x124/0x180
[ 1134.406830]  should_failslab+0x9/0x14
[ 1134.410643]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1134.415745]  ? print_usage_bug+0xc0/0xc0
[ 1134.419798]  __kmalloc_node+0x33/0x70
[ 1134.423599]  sbitmap_init_node+0x290/0x460
[ 1134.427829]  sbitmap_queue_init_node+0xaa/0x7d0
[ 1134.432483]  ? sbitmap_init_node+0x460/0x460
[ 1134.436908]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1134.441929]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1134.447194]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1134.452714]  ? find_next_bit+0x104/0x130
[ 1134.456777]  blk_mq_init_tags+0x11b/0x2b0
[ 1134.460930]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1134.465237]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1134.470597]  blk_mq_init_sched+0x1e2/0x530
[ 1134.474833]  elevator_init+0x3c8/0x500
[ 1134.478706]  ? elevator_get+0x180/0x180
[ 1134.482678]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1134.487164]  blk_mq_sched_init+0x2b/0x40
[ 1134.491214]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1134.496397]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1134.501399]  ? __mutex_init+0x1ef/0x280
[ 1134.505362]  ? __ia32_sys_membarrier+0x150/0x150
[ 1134.510108]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1134.514680]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1134.519246]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1134.524068]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1134.528390]  blk_mq_init_queue+0x63/0xb0
[ 1134.532439]  loop_add+0x32b/0x9c0
[ 1134.535872]  ? loop_lookup+0x102/0x220
[ 1134.539750]  ? loop_queue_rq+0x6c0/0x6c0
[ 1134.543816]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1134.548999]  loop_control_ioctl+0x178/0x500
[ 1134.553308]  ? loop_add+0x9c0/0x9c0
[ 1134.556928]  ? expand_files.part.8+0x9a0/0x9a0
[ 1134.561510]  ? kasan_check_write+0x14/0x20
[ 1134.565744]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1134.570662]  ? wait_for_completion+0x870/0x870
[ 1134.575226]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1134.580398]  ? loop_add+0x9c0/0x9c0
[ 1134.584012]  do_vfs_ioctl+0x1cf/0x16a0
[ 1134.587909]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1134.592317]  ? fget_raw+0x20/0x20
[ 1134.595767]  ? __sb_end_write+0xac/0xe0
[ 1134.599724]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1134.605240]  ? fput+0x130/0x1a0
[ 1134.608500]  ? ksys_write+0x1a6/0x250
[ 1134.612293]  ? security_file_ioctl+0x94/0xc0
[ 1134.616710]  ksys_ioctl+0xa9/0xd0
[ 1134.620157]  __x64_sys_ioctl+0x73/0xb0
[ 1134.624034]  do_syscall_64+0x1b1/0x800
[ 1134.627916]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1134.632835]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1134.637761]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1134.643129]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1134.647966]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1134.653139] RIP: 0033:0x455329
[ 1134.656325] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1134.664032] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1134.671302] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1134.678564] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1134.685815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
2018/04/19 14:16:28 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x2000000)

2018/04/19 14:16:28 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000000))

[ 1134.693068] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000002e
2018/04/19 14:16:28 executing program 6:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000001c0))
syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x3c63, 0x20000)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x10d000, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mixer\x00', 0x10000, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000240)={'ip6gre0\x00'})
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)=<r2=>0x0)
r3 = syz_open_procfs(r2, &(0x7f0000000140)='ns/ipc\x00')
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x80, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r3, 0xc0086420, &(0x7f0000000040)={<r4=>0x0})
ioctl$DRM_IOCTL_SWITCH_CTX(r1, 0x40086424, &(0x7f0000000100)={r4, 0x3})

2018/04/19 14:16:28 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080))
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000000c0)={0x7, <r3=>0x0, 0x10000, 0x401})
ioctl$DRM_IOCTL_AGP_UNBIND(r2, 0x40106437, &(0x7f0000000100)={r3, 0x2})
ioctl$DRM_IOCTL_ADD_BUFS(r2, 0xc0206416, &(0x7f0000000040)={0x7ff, 0x7fffffff, 0x4, 0x1, 0x8})

2018/04/19 14:16:28 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_bond\x00'})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x20, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000080)=0x8001)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000000)={0x40000, 0x0, [0x8000, 0x8, 0x6, 0x9, 0x6, 0x8bd8, 0x81, 0x1ff]})

2018/04/19 14:16:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, <r2=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={r2, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:28 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x400000000000000)

2018/04/19 14:16:28 executing program 3 (fault-call:2 fault-nth:47):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:28 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x8, 0x0)
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000000)={0x537, 0xffffffff})

2018/04/19 14:16:28 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_GET_REGS(r0, 0x8090ae81, &(0x7f00000000c0))

2018/04/19 14:16:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, <r2=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={r2, 0x6})
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:28 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000500)='/dev/audio\x00', 0x200500, 0x0)
ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000000540)=""/157)
r2 = dup(r0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f00000004c0)={0x8, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}, {}, {}]})
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:28 executing program 5:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000080)='fdinfo\x00')
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:28 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080))
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4b68, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000000c0)={0x7, <r3=>0x0, 0x10000, 0x401})
ioctl$DRM_IOCTL_AGP_UNBIND(r2, 0x40106437, &(0x7f0000000100)={r3, 0x2})
ioctl$DRM_IOCTL_ADD_BUFS(r2, 0xc0206416, &(0x7f0000000040)={0x7ff, 0x7fffffff, 0x4, 0x1, 0x8})

2018/04/19 14:16:28 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc\x00', 0x400, 0x0)
sync_file_range(r0, 0x80000001, 0x0, 0x4)
syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x0, 0x200)

[ 1135.011208] FAULT_INJECTION: forcing a failure.
[ 1135.011208] name failslab, interval 1, probability 0, space 0, times 0
[ 1135.022519] CPU: 1 PID: 29899 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1135.029710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1135.039066] Call Trace:
[ 1135.041667]  dump_stack+0x1b9/0x294
[ 1135.045307]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1135.050511]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1135.054580]  ? ksys_ioctl+0xa9/0xd0
[ 1135.058217]  ? __x64_sys_ioctl+0x73/0xb0
[ 1135.062286]  ? do_syscall_64+0x1b1/0x800
[ 1135.066358]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1135.071738]  should_fail.cold.4+0xa/0x1a
[ 1135.075810]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1135.080929]  ? mark_held_locks+0xc9/0x160
[ 1135.085083]  ? graph_lock+0x170/0x170
[ 1135.088895]  ? __raw_spin_lock_init+0x1c/0x100
[ 1135.093485]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1135.098507]  ? __lockdep_init_map+0x105/0x590
[ 1135.103014]  ? __lockdep_init_map+0x105/0x590
[ 1135.107505]  ? __lock_is_held+0xb5/0x140
[ 1135.111555]  ? __init_waitqueue_head+0x96/0x140
[ 1135.116221]  ? check_same_owner+0x320/0x320
[ 1135.120531]  ? sbitmap_queue_init_node+0xc6/0x7d0
[ 1135.125363]  ? rcu_note_context_switch+0x710/0x710
[ 1135.130284]  __should_failslab+0x124/0x180
[ 1135.134509]  should_failslab+0x9/0x14
[ 1135.138297]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1135.143390]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1135.148914]  ? find_next_bit+0x104/0x130
[ 1135.152996]  __kmalloc_node+0x33/0x70
[ 1135.156791]  blk_mq_alloc_rq_map+0xcc/0x220
[ 1135.161108]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1135.166570]  blk_mq_init_sched+0x1e2/0x530
[ 1135.170801]  elevator_init+0x3c8/0x500
[ 1135.174684]  ? elevator_get+0x180/0x180
[ 1135.178645]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1135.183133]  blk_mq_sched_init+0x2b/0x40
[ 1135.187185]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1135.192376]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1135.197376]  ? __mutex_init+0x1ef/0x280
[ 1135.201340]  ? __ia32_sys_membarrier+0x150/0x150
[ 1135.206086]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1135.210663]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1135.215233]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1135.219895]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1135.224210]  blk_mq_init_queue+0x63/0xb0
[ 1135.228258]  loop_add+0x32b/0x9c0
[ 1135.231697]  ? loop_lookup+0x102/0x220
[ 1135.235571]  ? loop_queue_rq+0x6c0/0x6c0
[ 1135.239627]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1135.244813]  loop_control_ioctl+0x178/0x500
[ 1135.249120]  ? loop_add+0x9c0/0x9c0
[ 1135.252734]  ? expand_files.part.8+0x9a0/0x9a0
[ 1135.257304]  ? kasan_check_write+0x14/0x20
[ 1135.261526]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1135.266447]  ? wait_for_completion+0x870/0x870
[ 1135.271023]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1135.276197]  ? loop_add+0x9c0/0x9c0
[ 1135.279812]  do_vfs_ioctl+0x1cf/0x16a0
[ 1135.283693]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1135.288088]  ? fget_raw+0x20/0x20
[ 1135.291541]  ? __sb_end_write+0xac/0xe0
[ 1135.295504]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1135.301031]  ? fput+0x130/0x1a0
[ 1135.304304]  ? ksys_write+0x1a6/0x250
[ 1135.308104]  ? security_file_ioctl+0x94/0xc0
[ 1135.312503]  ksys_ioctl+0xa9/0xd0
[ 1135.315947]  __x64_sys_ioctl+0x73/0xb0
[ 1135.319822]  do_syscall_64+0x1b1/0x800
[ 1135.323698]  ? finish_task_switch+0x1ca/0x810
[ 1135.328184]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1135.333108]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1135.338032]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1135.343392]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1135.348226]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1135.353397] RIP: 0033:0x455329
2018/04/19 14:16:28 executing program 1:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x100, 0x0)
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000100)=ANY=[@ANYBLOB="dc986932ee4714b577eaad1470bdc0ca9fc6ab437910dac958630bc85b23e6345a1134afdb2cc5d419ea86b1ae4a8628c7a74f059f0293d9d3199f7b9aa5c3f39a23fb1cef1924884814f77c26375c361adb4a3acedd1eb67efb1544470b7ba83192d434721e40e0c583a90c50c98ac27723"])

2018/04/19 14:16:28 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xebffffff00000000)

[ 1135.356572] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1135.364266] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1135.371519] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1135.378775] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1135.386030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1135.393289] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 000000000000002f
2018/04/19 14:16:28 executing program 6:
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000))
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f00000001c0)='net/netstat\x00')

2018/04/19 14:16:28 executing program 3 (fault-call:2 fault-nth:48):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:28 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, 0x0, 0x3, 0x2})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
r2 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000001080)={'team0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f00000010c0)={@dev={0xfe, 0x80, [], 0xc}, 0x62, r3})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0x401, 0x6, 0x10000, 0xffffffffffffffff, 0x3d62, 0x0, 0x6, 0x6, 0x1f6, 0x40, 0x25c, 0x8001, 0xecf, 0x38, 0x1, 0x9, 0x6842, 0x10000}, [], "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"}, 0x1040)

2018/04/19 14:16:29 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x3f, 0x440a00)

2018/04/19 14:16:29 executing program 0:
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x400000, 0x0)
r1 = socket$inet6(0xa, 0x7, 0x1)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000080)={r1})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0)

[ 1135.550948] FAULT_INJECTION: forcing a failure.
[ 1135.550948] name failslab, interval 1, probability 0, space 0, times 0
[ 1135.562268] CPU: 1 PID: 29924 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1135.569459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1135.578809] Call Trace:
[ 1135.581391]  dump_stack+0x1b9/0x294
[ 1135.585012]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1135.590201]  ? find_next_zero_bit+0x111/0x140
[ 1135.594693]  should_fail.cold.4+0xa/0x1a
[ 1135.598743]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1135.603843]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1135.609371]  ? graph_lock+0x170/0x170
[ 1135.613164]  ? find_held_lock+0x36/0x1c0
[ 1135.617216]  ? __lock_is_held+0xb5/0x140
[ 1135.621279]  ? check_same_owner+0x320/0x320
[ 1135.625587]  ? __kmalloc_node+0x33/0x70
[ 1135.629550]  ? rcu_note_context_switch+0x710/0x710
[ 1135.634466]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1135.639731]  __should_failslab+0x124/0x180
[ 1135.643957]  should_failslab+0x9/0x14
[ 1135.647750]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1135.652837]  ? __kmalloc_node+0x47/0x70
[ 1135.656803]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[ 1135.661803]  ? find_next_bit+0x104/0x130
[ 1135.665858]  sbitmap_queue_init_node+0x3bd/0x7d0
[ 1135.670610]  ? sbitmap_init_node+0x460/0x460
[ 1135.675005]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1135.680023]  ? kmem_cache_alloc_node_trace+0x34e/0x770
[ 1135.685289]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1135.690811]  ? find_next_bit+0x104/0x130
[ 1135.694864]  blk_mq_init_tags+0x11b/0x2b0
[ 1135.699004]  blk_mq_alloc_rq_map+0x9f/0x220
[ 1135.703324]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1135.708679]  blk_mq_init_sched+0x1e2/0x530
[ 1135.712909]  elevator_init+0x3c8/0x500
[ 1135.716784]  ? elevator_get+0x180/0x180
[ 1135.720746]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1135.725236]  blk_mq_sched_init+0x2b/0x40
[ 1135.729284]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1135.734467]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1135.739470]  ? __mutex_init+0x1ef/0x280
[ 1135.743430]  ? __ia32_sys_membarrier+0x150/0x150
[ 1135.748175]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1135.752756]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1135.757324]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1135.761986]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1135.766303]  blk_mq_init_queue+0x63/0xb0
[ 1135.770353]  loop_add+0x32b/0x9c0
[ 1135.773795]  ? loop_lookup+0x102/0x220
[ 1135.777666]  ? loop_queue_rq+0x6c0/0x6c0
[ 1135.781718]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1135.786895]  loop_control_ioctl+0x178/0x500
[ 1135.791206]  ? loop_add+0x9c0/0x9c0
[ 1135.794829]  ? expand_files.part.8+0x9a0/0x9a0
[ 1135.799409]  ? kasan_check_write+0x14/0x20
[ 1135.803634]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1135.808553]  ? wait_for_completion+0x870/0x870
[ 1135.813124]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1135.818298]  ? loop_add+0x9c0/0x9c0
[ 1135.821917]  do_vfs_ioctl+0x1cf/0x16a0
[ 1135.825797]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1135.830195]  ? fget_raw+0x20/0x20
[ 1135.833635]  ? __sb_end_write+0xac/0xe0
[ 1135.837599]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1135.843123]  ? fput+0x130/0x1a0
[ 1135.846392]  ? ksys_write+0x1a6/0x250
[ 1135.850183]  ? security_file_ioctl+0x94/0xc0
[ 1135.854580]  ksys_ioctl+0xa9/0xd0
[ 1135.858031]  __x64_sys_ioctl+0x73/0xb0
[ 1135.861910]  do_syscall_64+0x1b1/0x800
[ 1135.865783]  ? finish_task_switch+0x1ca/0x810
[ 1135.870268]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1135.875186]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1135.880104]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1135.885456]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1135.890288]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1135.895460] RIP: 0033:0x455329
2018/04/19 14:16:29 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xebffffff)

[ 1135.898633] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1135.906329] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1135.913592] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1135.920847] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1135.928102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1135.935356] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000030
2018/04/19 14:16:29 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$EVIOCGUNIQ(r0, 0x80404508, &(0x7f00000000c0)=""/143)

2018/04/19 14:16:29 executing program 1:
syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:29 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x100000001, 0x20040)
ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000140)=0x1)

2018/04/19 14:16:29 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, 0x0, 0x3, 0x2})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:29 executing program 3 (fault-call:2 fault-nth:49):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:29 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000000)=""/119)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$VT_WAITACTIVE(r1, 0x5607)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:29 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x3, r1, 0x201})
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
socket$key(0xf, 0x3, 0x2)

2018/04/19 14:16:29 executing program 5:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80, 0x1)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x2, 0x2)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:29 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x14000000)

2018/04/19 14:16:29 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x1000000)

2018/04/19 14:16:29 executing program 1:
shmget(0x0, 0x1000, 0x8, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f0000000080)={0x8000, 0xb1, 0x1, 'queue1\x00', 0x3})
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000000)={0x3, 0xfff, 0xe98d, 0x9, 0xffffffff, 0x9, 0xba4, 0x9, 0xfffffffffffffffa, 0x7fff})
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000140)={0x400, 0x1, 0xfffffffeffffffff, 0x3, 0x20, 0x5, 0x7, 0x7, 0x1, 0x8e})

[ 1136.250337] FAULT_INJECTION: forcing a failure.
[ 1136.250337] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.261655] CPU: 0 PID: 29970 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1136.268846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1136.278188] Call Trace:
[ 1136.280767]  dump_stack+0x1b9/0x294
[ 1136.284387]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1136.289575]  should_fail.cold.4+0xa/0x1a
[ 1136.293625]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1136.298714]  ? blk_mq_sched_init+0x2b/0x40
[ 1136.302944]  ? blk_mq_init_allocated_queue+0xf19/0x1580
[ 1136.308293]  ? blk_mq_init_queue+0x63/0xb0
[ 1136.312514]  ? loop_add+0x32b/0x9c0
[ 1136.316126]  ? loop_control_ioctl+0x178/0x500
[ 1136.320606]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1136.324652]  ? ksys_ioctl+0xa9/0xd0
[ 1136.328269]  ? graph_lock+0x170/0x170
[ 1136.332063]  ? find_held_lock+0x36/0x1c0
[ 1136.336117]  ? __lock_is_held+0xb5/0x140
[ 1136.340176]  ? check_same_owner+0x320/0x320
[ 1136.344483]  ? __ia32_sys_membarrier+0x150/0x150
[ 1136.349222]  ? kasan_check_write+0x14/0x20
[ 1136.353448]  ? rcu_note_context_switch+0x710/0x710
[ 1136.358377]  ? kset_unregister+0x40/0x40
[ 1136.362434]  __should_failslab+0x124/0x180
[ 1136.366662]  should_failslab+0x9/0x14
[ 1136.370458]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1136.375553]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1136.381085]  dd_init_queue+0x109/0x5e0
[ 1136.384960]  ? dd_exit_queue+0x240/0x240
[ 1136.389015]  ? __kmalloc_node+0x47/0x70
[ 1136.392984]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1136.397558]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1136.403081]  ? blk_mq_sched_alloc_tags.isra.13+0xee/0x160
[ 1136.408610]  blk_mq_init_sched+0x27c/0x530
[ 1136.412839]  elevator_init+0x3c8/0x500
[ 1136.416713]  ? elevator_get+0x180/0x180
[ 1136.420675]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1136.425161]  blk_mq_sched_init+0x2b/0x40
[ 1136.429208]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1136.434390]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1136.439389]  ? __mutex_init+0x1ef/0x280
[ 1136.443351]  ? __ia32_sys_membarrier+0x150/0x150
[ 1136.448094]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1136.452670]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1136.457241]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1136.461903]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1136.466214]  blk_mq_init_queue+0x63/0xb0
[ 1136.470264]  loop_add+0x32b/0x9c0
[ 1136.473706]  ? loop_lookup+0x102/0x220
[ 1136.477577]  ? loop_queue_rq+0x6c0/0x6c0
[ 1136.481629]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1136.486810]  loop_control_ioctl+0x178/0x500
[ 1136.491117]  ? loop_add+0x9c0/0x9c0
[ 1136.494733]  ? expand_files.part.8+0x9a0/0x9a0
[ 1136.499301]  ? kasan_check_write+0x14/0x20
[ 1136.503522]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1136.508446]  ? wait_for_completion+0x870/0x870
[ 1136.513022]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1136.518201]  ? loop_add+0x9c0/0x9c0
[ 1136.521815]  do_vfs_ioctl+0x1cf/0x16a0
[ 1136.525945]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1136.530342]  ? fget_raw+0x20/0x20
[ 1136.533785]  ? __sb_end_write+0xac/0xe0
[ 1136.537753]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1136.543274]  ? fput+0x130/0x1a0
[ 1136.546542]  ? ksys_write+0x1a6/0x250
[ 1136.550331]  ? security_file_ioctl+0x94/0xc0
[ 1136.554729]  ksys_ioctl+0xa9/0xd0
[ 1136.558176]  __x64_sys_ioctl+0x73/0xb0
[ 1136.562055]  do_syscall_64+0x1b1/0x800
[ 1136.565930]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1136.570848]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1136.575768]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1136.581124]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1136.585961]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1136.591136] RIP: 0033:0x455329
[ 1136.594309] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1136.602016] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1136.609273] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1136.616539] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1136.623790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1136.631044] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000031
2018/04/19 14:16:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={0x0, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:30 executing program 6:

2018/04/19 14:16:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x10000, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f0000000040)=0x9)
syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x4, 0x6742648c76a41331)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c80, r2)

2018/04/19 14:16:30 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x2)

2018/04/19 14:16:30 executing program 3 (fault-call:2 fault-nth:50):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x3, r1, 0x201})
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
socket$key(0xf, 0x3, 0x2)

2018/04/19 14:16:30 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x8000000400, 0x1)
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000000)=0x4fd5)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f00000000c0)={0x2, 0x4})
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000040)=""/39)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000100)=<r1=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000180)={{0x2, 0x6, 0x211, 0xf8, "9d90e24b48f793cbdff8d6d212a22fb49e2d7a1102ea0c9ce37e214640159554cebb3c16bb7b373155742452", 0x8}, 0x0, 0x0, 0x4, r1, 0x9, 0x1, "243848f9f7c9cef2f3a8a6ffaa306447c9ce6284ecda44b54f1f0729fdf956746c28ce2de9babe87e2d1dffc6093cedaa43262de266bbdb45b1f3850422ec39f", &(0x7f0000000140)='/dev/input/mouse#\x00', 0x12, [], [0x8, 0x36e27b61, 0x4, 0x40100000000000]})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f00000002c0)={0x5, <r2=>0x0, 0x10002, 0x538e3282})
ioctl$DRM_IOCTL_SG_ALLOC(r0, 0xc0106438, &(0x7f0000000300)={0x4, r2})

[ 1136.802623] FAULT_INJECTION: forcing a failure.
[ 1136.802623] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.813903] CPU: 0 PID: 29992 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1136.821096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1136.830448] Call Trace:
[ 1136.833048]  dump_stack+0x1b9/0x294
[ 1136.836695]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1136.841893]  ? do_vfs_ioctl+0x1cf/0x16a0
[ 1136.845942]  ? ksys_ioctl+0xa9/0xd0
[ 1136.849558]  ? __x64_sys_ioctl+0x73/0xb0
[ 1136.853605]  ? do_syscall_64+0x1b1/0x800
[ 1136.857654]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1136.863013]  should_fail.cold.4+0xa/0x1a
[ 1136.867067]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1136.872180]  ? mark_held_locks+0xc9/0x160
[ 1136.876316]  ? graph_lock+0x170/0x170
[ 1136.880107]  ? __raw_spin_lock_init+0x1c/0x100
[ 1136.884678]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1136.889722]  ? __lockdep_init_map+0x105/0x590
[ 1136.894205]  ? __lockdep_init_map+0x105/0x590
[ 1136.898692]  ? __lock_is_held+0xb5/0x140
[ 1136.902738]  ? __init_waitqueue_head+0x96/0x140
[ 1136.907411]  ? check_same_owner+0x320/0x320
[ 1136.911722]  ? sbitmap_queue_init_node+0xc6/0x7d0
[ 1136.916552]  ? rcu_note_context_switch+0x710/0x710
[ 1136.921476]  __should_failslab+0x124/0x180
[ 1136.925703]  should_failslab+0x9/0x14
[ 1136.929495]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1136.934583]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1136.940114]  ? find_next_bit+0x104/0x130
[ 1136.944173]  __kmalloc_node+0x33/0x70
[ 1136.947963]  blk_mq_alloc_rq_map+0xcc/0x220
[ 1136.952280]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1136.957651]  blk_mq_init_sched+0x1e2/0x530
[ 1136.961882]  elevator_init+0x3c8/0x500
[ 1136.965758]  ? elevator_get+0x180/0x180
[ 1136.969719]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1136.974208]  blk_mq_sched_init+0x2b/0x40
[ 1136.978257]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1136.983439]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1136.988443]  ? __mutex_init+0x1ef/0x280
[ 1136.992410]  ? __ia32_sys_membarrier+0x150/0x150
[ 1136.997155]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1137.001732]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1137.006305]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1137.010966]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1137.015278]  blk_mq_init_queue+0x63/0xb0
[ 1137.019325]  loop_add+0x32b/0x9c0
[ 1137.022767]  ? loop_lookup+0x102/0x220
[ 1137.026639]  ? loop_queue_rq+0x6c0/0x6c0
[ 1137.030693]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1137.035869]  loop_control_ioctl+0x178/0x500
[ 1137.040176]  ? loop_add+0x9c0/0x9c0
[ 1137.043796]  ? expand_files.part.8+0x9a0/0x9a0
[ 1137.048369]  ? kasan_check_write+0x14/0x20
[ 1137.052592]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1137.057512]  ? wait_for_completion+0x870/0x870
[ 1137.062079]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1137.067255]  ? loop_add+0x9c0/0x9c0
[ 1137.070871]  do_vfs_ioctl+0x1cf/0x16a0
[ 1137.074752]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1137.079148]  ? fget_raw+0x20/0x20
[ 1137.082588]  ? __sb_end_write+0xac/0xe0
[ 1137.086555]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1137.092079]  ? fput+0x130/0x1a0
[ 1137.095344]  ? ksys_write+0x1a6/0x250
[ 1137.099137]  ? security_file_ioctl+0x94/0xc0
[ 1137.103536]  ksys_ioctl+0xa9/0xd0
[ 1137.106979]  __x64_sys_ioctl+0x73/0xb0
[ 1137.110859]  do_syscall_64+0x1b1/0x800
[ 1137.114732]  ? finish_task_switch+0x1ca/0x810
[ 1137.119218]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1137.124135]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1137.129057]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1137.134411]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1137.139244]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1137.144428] RIP: 0033:0x455329
2018/04/19 14:16:30 executing program 6:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r0=>0x0)
syz_open_procfs(r0, &(0x7f0000000180)="6e65742f192d53a0c3f816383c998b24369d4e8f4a747374f261d47871b2312c8e3961740077d82287d12dfad0bdd7c41863873580f69ca68ed658f5f332f7c712526333648b284df7e93a24c4d6ab7fff5b3281eeab39b34879c7a5900559b9702954261b37dabcc0235a4fe5a0e60d91b2612000e6802f34b9b343bae2384c005e06fa980b574090c3dd")

2018/04/19 14:16:30 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, 0x0, 0x3, 0x2})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop-control\x00', 0x3, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000000)=r1)

2018/04/19 14:16:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x3, r1, 0x201})
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
socket$key(0xf, 0x3, 0x2)

[ 1137.147600] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1137.155299] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1137.162551] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1137.169802] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1137.177056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1137.184312] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000032
2018/04/19 14:16:30 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x4)

2018/04/19 14:16:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={0x0, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x80000, 0x0)
ioctl$TIOCCBRK(r1, 0x5428)
r2 = dup(r0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x709)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

2018/04/19 14:16:30 executing program 6:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x200, 0x0)
ioctl$VT_WAITACTIVE(r0, 0x5607)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000001c0))
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000180)=<r1=>0x0)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x28000, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x5)
syz_open_pts(0xffffffffffffffff, 0x40)
ioctl$GIO_FONTX(r2, 0x4b6b, &(0x7f0000000000)=""/32)
syz_open_procfs(r1, &(0x7f0000000080)='setgroups\x00')

2018/04/19 14:16:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c2e, 0x0)

2018/04/19 14:16:30 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x1400000000000000)

2018/04/19 14:16:30 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000440)={0x5, &(0x7f0000000140)=[{}, {}, {}, {}, {}]})
ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f00000004c0)=""/53)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000480)={0x1000, 0x2000})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)=@ioapic={0x3000, 0x5, 0x100000001, 0x80, 0x0, [{0x7f, 0x3, 0xffffffffffff4d74, [], 0x1000000000000000}, {0x20, 0x1ff00, 0x6, [], 0x2}, {0x5, 0x4, 0xffffffffffffffff, [], 0xa00}, {0x1000, 0x40, 0x69a, [], 0xd6}, {0x9, 0x7, 0xec, [], 0xfffffffffffffff9}, {0x1f, 0x800, 0x6b7, [], 0x7d7}, {0xffff, 0x0, 0x7ff, [], 0xc70d}, {0x4d4c596c, 0xfffffffffffffff9, 0x6}, {0x100, 0x1f, 0x3f, [], 0x4}, {0x2, 0xfffffffffffffff9, 0x3e651b1d}, {0x2, 0xad, 0x3, [], 0x7}, {0x2d9, 0x0, 0x1ff, [], 0x5}, {0xffffffff, 0x2, 0x3, [], 0xfff}, {0x9, 0x4, 0x4, [], 0x3}, {0x6, 0x1f, 0xffffffff, [], 0x3}, {0x30a, 0x100000001, 0x8, [], 0x4}, {0x6, 0x446, 0x400, [], 0x1f}, {0x80000001, 0x8, 0x4}, {0x5, 0x20, 0x401, [], 0xeed}, {0x5, 0xdd, 0x1ff, [], 0xfffffffffffffffa}, {0x0, 0x1fc00, 0x3, [], 0x7}, {0x20, 0x97d, 0xffffffff, [], 0x3ff}, {0x8, 0x9, 0x6, [], 0x3}, {0x7fffffff, 0x1, 0x6, [], 0x401}]})

2018/04/19 14:16:30 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={0x0, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:30 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$VHOST_GET_FEATURES(r1, 0x8008af00, &(0x7f0000000040))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r1, 0x800442d3, &(0x7f0000000000)={0x6, 0x81, 0x400, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xb}, 'ifb0\x00'})
pwrite64(r0, &(0x7f0000000080)="b326e637102e1cd4d7e8ae56425ae05cd61f37064290f05879deb6a554c170f4773982a07e4aebac9ec40e5031cf5e12860157033fc1468c8a2927d79e7fc6f0c822c763c3a80dcb989f9b8d9e816db8b9c412756c20998aa53417ef03d4cae159099fc8a3e1c7a2621cb18a7c040f3a89425cc8334c90d76bcf303ddaf95015a04be8040980f9fab89cd23fee9e182c77b02ba145d77dbd083af8d94661b50681", 0xa1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r1, 0x4008af13, &(0x7f0000000140)={0x1, 0x8})

2018/04/19 14:16:30 executing program 6:
ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000000))
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000000c0)=<r0=>0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x6, 0x200)
ioctl$KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000180)={0x8, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]})
syz_open_procfs(r0, &(0x7f0000000140)='net/icmp\x00')

2018/04/19 14:16:30 executing program 0:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c48, 0x0)

2018/04/19 14:16:30 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

2018/04/19 14:16:30 executing program 3 (fault-call:2 fault-nth:51):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

[ 1137.492340] FAULT_INJECTION: forcing a failure.
[ 1137.492340] name failslab, interval 1, probability 0, space 0, times 0
[ 1137.503801] CPU: 1 PID: 30027 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1137.510985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1137.520337] Call Trace:
[ 1137.522939]  dump_stack+0x1b9/0x294
[ 1137.526586]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1137.531813]  ? is_bpf_text_address+0xd7/0x170
[ 1137.536356]  should_fail.cold.4+0xa/0x1a
[ 1137.540421]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1137.545536]  ? graph_lock+0x170/0x170
[ 1137.549337]  ? save_stack+0xa9/0xd0
[ 1137.552949]  ? save_stack+0x43/0xd0
[ 1137.556577]  ? kasan_kmalloc+0xc4/0xe0
[ 1137.560454]  ? __kmalloc_node+0x47/0x70
[ 1137.564417]  ? blk_mq_alloc_rq_map+0xcc/0x220
[ 1137.568908]  ? blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1137.574445]  ? blk_mq_init_sched+0x1e2/0x530
[ 1137.578854]  ? elevator_init+0x3c8/0x500
[ 1137.582915]  ? blk_mq_sched_init+0x2b/0x40
[ 1137.587151]  ? blk_mq_init_allocated_queue+0xf19/0x1580
[ 1137.592516]  ? __lock_is_held+0xb5/0x140
[ 1137.596576]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1137.601944]  ? check_same_owner+0x320/0x320
[ 1137.606255]  ? rcu_note_context_switch+0x710/0x710
[ 1137.611179]  __should_failslab+0x124/0x180
[ 1137.615419]  should_failslab+0x9/0x14
[ 1137.619218]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1137.624325]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[ 1137.629877]  ? kasan_unpoison_shadow+0x35/0x50
[ 1137.634473]  __kmalloc_node+0x33/0x70
[ 1137.638270]  blk_mq_alloc_rq_map+0x10d/0x220
[ 1137.642668]  blk_mq_sched_alloc_tags.isra.13+0x7b/0x160
[ 1137.648024]  blk_mq_init_sched+0x1e2/0x530
[ 1137.652254]  elevator_init+0x3c8/0x500
[ 1137.656125]  ? elevator_get+0x180/0x180
[ 1137.660089]  ? blk_mq_map_swqueue+0x5e7/0x800
[ 1137.664577]  blk_mq_sched_init+0x2b/0x40
[ 1137.668632]  blk_mq_init_allocated_queue+0xf19/0x1580
[ 1137.673816]  ? blk_mq_realloc_hw_ctxs+0x1250/0x1250
[ 1137.678819]  ? __mutex_init+0x1ef/0x280
[ 1137.682789]  ? __ia32_sys_membarrier+0x150/0x150
[ 1137.687537]  ? blk_mq_alloc_rq_map+0x220/0x220
[ 1137.692107]  ? blk_mq_alloc_rq_map+0x142/0x220
[ 1137.696687]  ? blk_mq_alloc_tag_set+0x515/0xce0
[ 1137.701351]  ? blk_mq_alloc_rqs+0x8b0/0x8b0
[ 1137.705655]  blk_mq_init_queue+0x63/0xb0
[ 1137.709697]  loop_add+0x32b/0x9c0
[ 1137.713142]  ? loop_lookup+0x102/0x220
[ 1137.717028]  ? loop_queue_rq+0x6c0/0x6c0
[ 1137.721140]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1137.726331]  loop_control_ioctl+0x178/0x500
[ 1137.730645]  ? loop_add+0x9c0/0x9c0
[ 1137.734257]  ? expand_files.part.8+0x9a0/0x9a0
[ 1137.738837]  ? kasan_check_write+0x14/0x20
[ 1137.743065]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1137.747980]  ? wait_for_completion+0x870/0x870
[ 1137.752545]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1137.757719]  ? loop_add+0x9c0/0x9c0
[ 1137.761328]  do_vfs_ioctl+0x1cf/0x16a0
[ 1137.765210]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1137.769613]  ? fget_raw+0x20/0x20
[ 1137.773062]  ? __sb_end_write+0xac/0xe0
[ 1137.777038]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1137.782578]  ? fput+0x130/0x1a0
[ 1137.785847]  ? ksys_write+0x1a6/0x250
[ 1137.789636]  ? security_file_ioctl+0x94/0xc0
[ 1137.794042]  ksys_ioctl+0xa9/0xd0
[ 1137.797518]  __x64_sys_ioctl+0x73/0xb0
[ 1137.801404]  do_syscall_64+0x1b1/0x800
[ 1137.805284]  ? finish_task_switch+0x1ca/0x810
[ 1137.809761]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1137.814672]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1137.819601]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1137.824948]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1137.829778]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1137.834945] RIP: 0033:0x455329
2018/04/19 14:16:31 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x100000000000000)

[ 1137.838119] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1137.845824] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1137.853081] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1137.860340] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1137.867600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1137.874860] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000033
2018/04/19 14:16:31 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

2018/04/19 14:16:31 executing program 0:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'team_slave_0\x00', 0x800})

2018/04/19 14:16:31 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='attr/fscreate\x00')

2018/04/19 14:16:31 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0)
ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f0000000080)={0xff, 0x7fffffff, 0x4, 0x80000000, 0x1, 0x7, 0x3, 0xffffffffffffaf51, 0x11be000, 0x9, 0x4, 0x7})
r2 = dup(r0)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r3)
ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f00000000c0)={0x100000001, 0x10001, 0xb3b})

2018/04/19 14:16:31 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000000)={0x9d, <r1=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(0xffffffffffffffff, 0x40106436, &(0x7f0000000040)={r1, 0x6})
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

2018/04/19 14:16:31 executing program 3 (fault-call:2 fault-nth:52):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:31 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0xf6ffffff)

2018/04/19 14:16:31 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000000))
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000040)={0x1, 0x10000, 0x80, 0x1000000000000000, 0x200, 0x7f})
ioctl$TIOCNOTTY(r1, 0x5422)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

[ 1138.127465] FAULT_INJECTION: forcing a failure.
[ 1138.127465] name failslab, interval 1, probability 0, space 0, times 0
[ 1138.138774] CPU: 0 PID: 30066 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1138.145968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1138.155320] Call Trace:
[ 1138.157918]  dump_stack+0x1b9/0x294
[ 1138.161560]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1138.166773]  should_fail.cold.4+0xa/0x1a
[ 1138.170847]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[ 1138.175963]  ? graph_lock+0x170/0x170
[ 1138.179779]  ? find_held_lock+0x36/0x1c0
[ 1138.183851]  ? __lock_is_held+0xb5/0x140
[ 1138.187933]  ? check_same_owner+0x320/0x320
[ 1138.192260]  ? kasan_unpoison_shadow+0x35/0x50
[ 1138.196854]  ? rcu_note_context_switch+0x710/0x710
[ 1138.201797]  __should_failslab+0x124/0x180
[ 1138.206047]  should_failslab+0x9/0x14
[ 1138.209851]  kmem_cache_alloc_trace+0x2cb/0x780
[ 1138.214507]  ? part_uevent+0x120/0x120
[ 1138.218382]  ? percpu_ref_noop_confirm_switch+0x10/0x10
[ 1138.223740]  rand_initialize_disk+0x43/0xc0
[ 1138.228050]  __alloc_disk_node+0x2b4/0x500
[ 1138.232276]  ? disk_expand_part_tbl+0x3c0/0x3c0
[ 1138.236941]  ? blk_queue_flag_set+0xf6/0x160
[ 1138.241338]  loop_add+0x40e/0x9c0
[ 1138.244779]  ? loop_queue_rq+0x6c0/0x6c0
[ 1138.248835]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1138.254016]  loop_control_ioctl+0x178/0x500
[ 1138.258332]  ? loop_add+0x9c0/0x9c0
[ 1138.261946]  ? expand_files.part.8+0x9a0/0x9a0
[ 1138.266514]  ? kasan_check_write+0x14/0x20
[ 1138.270742]  ? wait_for_completion+0x870/0x870
[ 1138.275318]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1138.280493]  ? loop_add+0x9c0/0x9c0
[ 1138.284108]  do_vfs_ioctl+0x1cf/0x16a0
[ 1138.287992]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1138.292397]  ? fget_raw+0x20/0x20
[ 1138.295842]  ? __sb_end_write+0xac/0xe0
[ 1138.299809]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1138.305334]  ? exit_to_usermode_loop+0x87/0x310
[ 1138.309994]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1138.315520]  ? security_file_ioctl+0x94/0xc0
[ 1138.319920]  ksys_ioctl+0xa9/0xd0
[ 1138.323367]  __x64_sys_ioctl+0x73/0xb0
[ 1138.327246]  do_syscall_64+0x1b1/0x800
[ 1138.331121]  ? finish_task_switch+0x1ca/0x810
[ 1138.335603]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1138.340519]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1138.345437]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1138.350791]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1138.355627]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1138.360807] RIP: 0033:0x455329
[ 1138.363980] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/19 14:16:31 executing program 5:
r0 = socket$bt_rfcomm(0x1f, 0x3, 0x3)
lseek(r0, 0x0, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r2 = dup(r1)
ioctl$PIO_UNIMAPCLR(r2, 0x4c81, &(0x7f0000000000))
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0xa0000, 0x0)
ioctl$LOOP_CTL_ADD(r2, 0x4c81, 0x0)

[ 1138.371678] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1138.378929] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1138.386183] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1138.393437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1138.400690] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000034
2018/04/19 14:16:32 executing program 6:
r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_INFO_BUFS(r0, 0xc0106418, &(0x7f0000000000)={0x7, 0x7ff, 0x1, 0x2, 0x18, 0x6})
pipe2(&(0x7f000041eff8)={<r1=>0xffffffffffffffff}, 0x0)
vmsplice(r1, &(0x7f0000000080), 0x392, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f00000000c0)={0x74, 0x0, [0x0, 0xfffffffffffffffc, 0x1, 0x6]})
syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x80000)
ioctl$TCGETS(r1, 0x5401, &(0x7f0000000180))
socket$inet_icmp(0x2, 0x2, 0x1)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f00000001c0)={0x3eae59d9, 0x6000})

2018/04/19 14:16:32 executing program 0:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'team_slave_0\x00', 0x800})

2018/04/19 14:16:32 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000000)={0x9d, <r1=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f0000000040)={r1, 0x6})
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c80, 0x0)

2018/04/19 14:16:32 executing program 7:
r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0xfff, 0x511081)
ioctl$KDGETLED(r0, 0x4b31, &(0x7f00000000c0))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000100))
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:32 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
sync_file_range(r0, 0x1, 0x9, 0x6)
r1 = dup(r0)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x5, 0x0)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, r2)

2018/04/19 14:16:32 executing program 5:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x140, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000080)={0x400000, 0x7ffffffe, 0xfffffffffffffffe})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:32 executing program 3 (fault-call:2 fault-nth:53):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:32 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

2018/04/19 14:16:32 executing program 0:
r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'team_slave_0\x00', 0x800})

2018/04/19 14:16:32 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000000)={0x9d, <r1=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f0000000040)={r1, 0x6})
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c80, 0x0)

2018/04/19 14:16:32 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)
openat$cgroup_int(r1, &(0x7f0000000000)='notify_on_release\x00', 0x2, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r1, 0x80045400, &(0x7f0000000040))

[ 1138.690243] FAULT_INJECTION: forcing a failure.
[ 1138.690243] name failslab, interval 1, probability 0, space 0, times 0
[ 1138.701559] CPU: 0 PID: 30101 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1138.708752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1138.718104] Call Trace:
[ 1138.720701]  dump_stack+0x1b9/0x294
[ 1138.724341]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1138.729548]  should_fail.cold.4+0xa/0x1a
[ 1138.733625]  ? fault_create_debugfs_attr+0x1f0/0x1f0
2018/04/19 14:16:32 executing program 6:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/netstat\x00')
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x80000, 0x0)

2018/04/19 14:16:32 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x10003e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0)

2018/04/19 14:16:32 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))

[ 1138.738741]  ? lock_downgrade+0x8e0/0x8e0
[ 1138.742904]  ? unwind_get_return_address+0x61/0xa0
[ 1138.747839]  ? graph_lock+0x170/0x170
[ 1138.751654]  ? find_held_lock+0x36/0x1c0
[ 1138.755730]  ? __lock_is_held+0xb5/0x140
[ 1138.759814]  ? check_same_owner+0x320/0x320
[ 1138.764135]  ? rcu_note_context_switch+0x710/0x710
[ 1138.769062]  __should_failslab+0x124/0x180
[ 1138.773292]  should_failslab+0x9/0x14
[ 1138.777084]  kmem_cache_alloc_node_trace+0x26f/0x770
[ 1138.782181]  ? lockdep_init_map+0x9/0x10
[ 1138.786240]  __kmalloc_node+0x33/0x70
[ 1138.790040]  disk_expand_part_tbl+0x236/0x3c0
[ 1138.794543]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1138.799552]  ? blk_free_devt+0x60/0x60
[ 1138.803424]  __alloc_disk_node+0x16f/0x500
[ 1138.807650]  ? disk_expand_part_tbl+0x3c0/0x3c0
[ 1138.812311]  ? trace_hardirqs_on+0xd/0x10
[ 1138.816444]  ? blk_queue_flag_set+0xf6/0x160
[ 1138.820850]  loop_add+0x40e/0x9c0
[ 1138.824297]  ? loop_queue_rq+0x6c0/0x6c0
[ 1138.828346]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1138.833519]  loop_control_ioctl+0x178/0x500
[ 1138.837823]  ? loop_add+0x9c0/0x9c0
[ 1138.841436]  ? expand_files.part.8+0x9a0/0x9a0
[ 1138.846014]  ? kasan_check_write+0x14/0x20
[ 1138.850249]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1138.855167]  ? wait_for_completion+0x870/0x870
[ 1138.859733]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1138.864902]  ? loop_add+0x9c0/0x9c0
[ 1138.868514]  do_vfs_ioctl+0x1cf/0x16a0
[ 1138.872388]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1138.876783]  ? fget_raw+0x20/0x20
[ 1138.880234]  ? __sb_end_write+0xac/0xe0
[ 1138.884214]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1138.889746]  ? fput+0x130/0x1a0
[ 1138.893023]  ? ksys_write+0x1a6/0x250
[ 1138.896815]  ? security_file_ioctl+0x94/0xc0
[ 1138.901207]  ksys_ioctl+0xa9/0xd0
[ 1138.904657]  __x64_sys_ioctl+0x73/0xb0
[ 1138.908538]  do_syscall_64+0x1b1/0x800
[ 1138.912418]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1138.917340]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1138.922268]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1138.927628]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1138.932458]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1138.937628] RIP: 0033:0x455329
[ 1138.940808] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1138.948495] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1138.955742] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1138.962996] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1138.970259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1138.977509] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000035
2018/04/19 14:16:32 executing program 4:
r0 = dup(0xffffffffffffffff)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000000)={0x9d, <r1=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40106436, &(0x7f0000000040)={r1, 0x6})
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c80, 0x0)

2018/04/19 14:16:32 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x2, 0x4000)
ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000140)={0xfffffffffffeffff, {0x2, 0x4e24, @multicast1=0xe0000001}, {0x2, 0x4e21, @rand_addr=0x9}, {0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, 0xffffffffffffffff, 0x4, 0xe4, 0x8c91, 0x8, &(0x7f0000000080)='\x00eth1_to_bridge\x00', 0xfffffffffffffff9, 0x1a7a, 0x10001})

2018/04/19 14:16:32 executing program 0:
syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x0)

2018/04/19 14:16:32 executing program 3 (fault-call:2 fault-nth:54):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c80, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)

2018/04/19 14:16:32 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ne_/netstat\x00')
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f00000001c0)={<r1=>0x0})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000280)={<r2=>r1})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x14, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="03630840", @ANYRES64=r2, @ANYBLOB="fd2add806fd9c2e26cb38cbf4fa7f96dadbb356a8d"], 0x8b, 0x0, &(0x7f00000000c0)="59953e871710be68738c295ef4c3e24f3a76901e81955b54fd50273d46dafb37c8d072bed19568ed5d64e7a75aa24d66dc780a79c17ab28b0c7a1072120503cf5ebc766986d5d95b0facc644d6db10b5b0501d4207f4bc5ec8cc15ec6a4ca7192491ee93f9788e5b618db415baa44d2b388e79d87d642fd87ff85de0b78546cede78797cbf3e224ae4be41"})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000080)={{0x1, 0x3, 0x3f, 0x3, 0x1}})

2018/04/19 14:16:32 executing program 1:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4020940d, 0x0)

2018/04/19 14:16:32 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x201, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, 0x0)

2018/04/19 14:16:32 executing program 2:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c81, r2)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000000))
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

[ 1139.140495] FAULT_INJECTION: forcing a failure.
[ 1139.140495] name failslab, interval 1, probability 0, space 0, times 0
[ 1139.151777] CPU: 1 PID: 30128 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1139.158966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1139.168323] Call Trace:
[ 1139.170921]  dump_stack+0x1b9/0x294
[ 1139.174564]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1139.179775]  should_fail.cold.4+0xa/0x1a
[ 1139.183845]  ? fault_create_debugfs_attr+0x1f0/0x1f0
2018/04/19 14:16:32 executing program 4:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0x9d, <r2=>0x0, 0x3, 0x2})
ioctl$DRM_IOCTL_AGP_BIND(r1, 0x40106436, &(0x7f0000000040)={r2, 0x6})
ioctl$LOOP_CTL_ADD(r1, 0x4c81, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c80, 0x0)

[ 1139.188957]  ? trace_hardirqs_on_caller+0x421/0x5c0
[ 1139.193982]  ? __lockdep_init_map+0x105/0x590
[ 1139.198484]  ? graph_lock+0x170/0x170
[ 1139.202298]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1139.207850]  ? put_dec_trunc8+0x273/0x300
[ 1139.212011]  ? find_held_lock+0x36/0x1c0
[ 1139.216082]  ? __lock_is_held+0xb5/0x140
[ 1139.220150]  ? check_same_owner+0x320/0x320
[ 1139.224465]  ? device_pm_sleep_init+0xe8/0x200
[ 1139.229050]  ? rcu_note_context_switch+0x710/0x710
[ 1139.233974]  __should_failslab+0x124/0x180
[ 1139.238198]  should_failslab+0x9/0x14
[ 1139.241985]  __kmalloc_track_caller+0x2c4/0x760
[ 1139.246643]  ? pointer+0xa20/0xa20
[ 1139.250174]  ? kvasprintf_const+0x67/0x190
[ 1139.254396]  kvasprintf+0xa9/0x130
[ 1139.257924]  ? bust_spinlocks+0xe0/0xe0
[ 1139.261888]  ? rcu_read_lock_sched_held+0x108/0x120
[ 1139.266896]  kvasprintf_const+0x67/0x190
[ 1139.270949]  kobject_set_name_vargs+0x5b/0x150
[ 1139.275522]  device_create_groups_vargs+0x1ce/0x270
[ 1139.280529]  device_create_vargs+0x46/0x60
[ 1139.284761]  bdi_register_va.part.10+0xbb/0x970
[ 1139.289416]  ? __lockdep_init_map+0x105/0x590
[ 1139.293898]  ? cgwb_kill+0x630/0x630
[ 1139.297597]  ? lockdep_init_map+0x9/0x10
[ 1139.301656]  ? __init_waitqueue_head+0x96/0x140
[ 1139.306316]  ? init_wait_entry+0x1b0/0x1b0
[ 1139.310541]  ? __lockdep_init_map+0x105/0x590
[ 1139.315036]  ? pm_runtime_init+0x451/0x540
[ 1139.319260]  ? update_pm_runtime_accounting+0x1b0/0x1b0
[ 1139.324611]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[ 1139.330136]  ? put_dec_trunc8+0x273/0x300
[ 1139.334273]  bdi_register+0x101/0x110
[ 1139.338062]  ? bdi_register_va+0x80/0x80
[ 1139.342108]  ? graph_lock+0x170/0x170
[ 1139.345902]  bdi_register_owner+0x5e/0x100
[ 1139.350127]  __device_add_disk+0xf07/0x1340
[ 1139.354445]  ? blk_alloc_devt+0x2a0/0x2a0
[ 1139.358581]  ? vsnprintf+0x242/0x1b40
[ 1139.362377]  ? pointer+0xa20/0xa20
[ 1139.365900]  ? __mutex_init+0x1ef/0x280
[ 1139.369869]  ? sprintf+0xa7/0xd0
[ 1139.373221]  ? scnprintf+0x120/0x120
[ 1139.376922]  ? __lockdep_init_map+0x105/0x590
[ 1139.381407]  device_add_disk+0x22/0x30
[ 1139.385281]  loop_add+0x70b/0x9c0
[ 1139.388732]  ? loop_queue_rq+0x6c0/0x6c0
[ 1139.392786]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1139.397965]  loop_control_ioctl+0x178/0x500
[ 1139.402274]  ? loop_add+0x9c0/0x9c0
[ 1139.405888]  ? expand_files.part.8+0x9a0/0x9a0
[ 1139.410459]  ? kasan_check_write+0x14/0x20
[ 1139.414683]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1139.419605]  ? wait_for_completion+0x870/0x870
[ 1139.424177]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1139.429352]  ? loop_add+0x9c0/0x9c0
[ 1139.432970]  do_vfs_ioctl+0x1cf/0x16a0
[ 1139.436849]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1139.441250]  ? fget_raw+0x20/0x20
[ 1139.444695]  ? __sb_end_write+0xac/0xe0
[ 1139.448660]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1139.454186]  ? fput+0x130/0x1a0
[ 1139.457454]  ? ksys_write+0x1a6/0x250
[ 1139.461247]  ? security_file_ioctl+0x94/0xc0
[ 1139.465646]  ksys_ioctl+0xa9/0xd0
[ 1139.469094]  __x64_sys_ioctl+0x73/0xb0
[ 1139.472973]  do_syscall_64+0x1b1/0x800
[ 1139.476846]  ? finish_task_switch+0x1ca/0x810
[ 1139.481333]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1139.486251]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1139.491173]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1139.496527]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1139.501364]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.506535] RIP: 0033:0x455329
[ 1139.509708] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1139.517406] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1139.524663] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1139.531927] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/04/19 14:16:33 executing program 1:
r0 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r0, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r0, 0x4020940d, 0x0)

[ 1139.539182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1139.546436] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000036
[ 1139.554118] WARNING: CPU: 1 PID: 30128 at block/genhd.c:685 __device_add_disk+0x104a/0x1340
[ 1139.562612] Kernel panic - not syncing: panic_on_warn set ...
[ 1139.562612] 
[ 1139.569986] CPU: 1 PID: 30128 Comm: syz-executor3 Not tainted 4.17.0-rc1+ #8
[ 1139.577169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1139.586519] Call Trace:
2018/04/19 14:16:33 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PIO_UNIMAPCLR(r1, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

[ 1139.589113]  dump_stack+0x1b9/0x294
[ 1139.592751]  ? dump_stack_print_info.cold.2+0x52/0x52
[ 1139.597953]  ? __device_add_disk+0xfe0/0x1340
[ 1139.602455]  panic+0x22f/0x4de
[ 1139.605657]  ? add_taint.cold.5+0x16/0x16
[ 1139.609813]  ? __warn.cold.8+0x148/0x1b3
[ 1139.613883]  ? __device_add_disk+0x104a/0x1340
[ 1139.618467]  __warn.cold.8+0x163/0x1b3
[ 1139.622360]  ? __device_add_disk+0x104a/0x1340
[ 1139.626952]  report_bug+0x252/0x2d0
[ 1139.630594]  do_error_trap+0x1de/0x490
[ 1139.634488]  ? math_error+0x420/0x420
2018/04/19 14:16:33 executing program 1:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f000030efee)='/dev/loop-control\x00', 0x0, 0x0)
r1 = dup(r0)
ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4c81, &(0x7f0000000000))
ioctl$LOOP_CTL_ADD(r1, 0x4020940d, 0x0)

[ 1139.638295]  ? __lockdep_init_map+0x105/0x590
[ 1139.642801]  ? pm_runtime_init+0x451/0x540
[ 1139.647042]  ? update_pm_runtime_accounting+0x1b0/0x1b0
[ 1139.652415]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1139.657267]  do_invalid_op+0x1b/0x20
[ 1139.660983]  invalid_op+0x14/0x20
[ 1139.664442] RIP: 0010:__device_add_disk+0x104a/0x1340
[ 1139.669623] RSP: 0018:ffff8801b320f8a8 EFLAGS: 00010246
[ 1139.674995] RAX: 0000000000040000 RBX: ffff8801d7fbe880 RCX: ffffc90007714000
[ 1139.682263] RDX: 0000000000040000 RSI: ffffffff83434d6a RDI: 0000000000000005
[ 1139.689532] RBP: ffff8801b320fa78 R08: ffff8801a9364400 R09: ffffed003b5e46c2
[ 1139.696801] R10: ffffed003b5e46c2 R11: ffff8801daf23613 R12: 00000000fffffff4
[ 1139.704077] R13: ffff8801b320fa50 R14: ffff8801d7fbede0 R15: ffff8801d7fbe884
[ 1139.711353]  ? __device_add_disk+0x104a/0x1340
[ 1139.715941]  ? __device_add_disk+0x104a/0x1340
[ 1139.720532]  ? blk_alloc_devt+0x2a0/0x2a0
[ 1139.724686]  ? vsnprintf+0x242/0x1b40
[ 1139.728499]  ? pointer+0xa20/0xa20
[ 1139.732040]  ? __mutex_init+0x1ef/0x280
[ 1139.736016]  ? sprintf+0xa7/0xd0
[ 1139.739374]  ? scnprintf+0x120/0x120
[ 1139.743082]  ? __lockdep_init_map+0x105/0x590
[ 1139.747568]  device_add_disk+0x22/0x30
[ 1139.751443]  loop_add+0x70b/0x9c0
[ 1139.754886]  ? loop_queue_rq+0x6c0/0x6c0
[ 1139.758940]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1139.764119]  loop_control_ioctl+0x178/0x500
[ 1139.768430]  ? loop_add+0x9c0/0x9c0
[ 1139.772045]  ? expand_files.part.8+0x9a0/0x9a0
[ 1139.776616]  ? kasan_check_write+0x14/0x20
[ 1139.780842]  ? __mutex_unlock_slowpath+0x180/0x8a0
[ 1139.785763]  ? wait_for_completion+0x870/0x870
[ 1139.790335]  ? __sanitizer_cov_trace_switch+0x53/0x90
[ 1139.795598]  ? loop_add+0x9c0/0x9c0
[ 1139.799215]  do_vfs_ioctl+0x1cf/0x16a0
[ 1139.803098]  ? ioctl_preallocate+0x2e0/0x2e0
[ 1139.807495]  ? fget_raw+0x20/0x20
[ 1139.810937]  ? __sb_end_write+0xac/0xe0
[ 1139.814908]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[ 1139.820432]  ? fput+0x130/0x1a0
[ 1139.823699]  ? ksys_write+0x1a6/0x250
[ 1139.827491]  ? security_file_ioctl+0x94/0xc0
[ 1139.831888]  ksys_ioctl+0xa9/0xd0
[ 1139.835338]  __x64_sys_ioctl+0x73/0xb0
[ 1139.839216]  do_syscall_64+0x1b1/0x800
[ 1139.843090]  ? finish_task_switch+0x1ca/0x810
[ 1139.847574]  ? syscall_return_slowpath+0x5c0/0x5c0
[ 1139.852493]  ? syscall_return_slowpath+0x30f/0x5c0
[ 1139.857412]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[ 1139.862766]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[ 1139.867598]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1139.872770] RIP: 0033:0x455329
[ 1139.875945] RSP: 002b:00007fee9fefbc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1139.883642] RAX: ffffffffffffffda RBX: 00007fee9fefc6d4 RCX: 0000000000455329
[ 1139.890895] RDX: 0000000020000000 RSI: 0000000000004c80 RDI: 0000000000000014
[ 1139.898149] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[ 1139.905403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1139.912660] R13: 00000000000002a2 R14: 00000000006f6fd0 R15: 0000000000000036
[ 1139.920817] Dumping ftrace buffer:
[ 1139.924645]    (ftrace buffer empty)
[ 1139.928337] Kernel Offset: disabled
[ 1139.931953] Rebooting in 86400 seconds..